Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-08-2014 01
Ran by Administrator (administrator) on SEBA-KOMP on 11-08-2014 19:22:21
Running from C:\Users\Administrator\Downloads\logi
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Innovative Solutions) C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-05-20] (Microsoft Corporation)
HKU\S-1-5-21-1934045388-852915893-379320470-500\...\Run: [DriverMax] => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [8552312 2014-08-05] (Innovative Solutions)
HKU\S-1-5-21-1934045388-852915893-379320470-500\...\Run: [DriverMax_RESTART] => [X]
HKU\S-1-5-21-1934045388-852915893-379320470-500\...\Run: [Mobile Partner] => C:\Program Files (x86)\Huawei E5372\Huawei E5372
HKU\S-1-5-21-1934045388-852915893-379320470-500\...\MountPoints2: G - G:\AutoRun.exe
HKU\S-1-5-21-1934045388-852915893-379320470-500\...\MountPoints2: {ef79ce35-216b-11e4-a981-1c6f65b2a0d0} - G:\AutoRun.exe
HKU\S-1-5-21-1934045388-852915893-379320470-500\...\MountPoints2: {ef79ce42-216b-11e4-a981-1c6f65b2a0d0} - G:\AutoRun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> D:\Office\OSA9.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
URLSearchHook: HKLM-x32 - Default Value = {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=294&src=ds&p={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=294&src=ds&p={searchTerms}
SearchScopes: HKCU - {1705DCC5-5A72-493C-A98E-3997EFA19025} URL = http://websearch.ask.com/redirect?client=ie&tb=NG1V5&o=101787&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^N0&apn_dtid=^YYYYYY^YY^PL&apn_uid=80E5D6D9-DFEC-406B-A442-CF3900D88E1C&apn_sauid=31920601-F1E3-494C-AE73-AF9598F8BA3B
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=294&src=ds&p={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 217.172.224.160 89.231.1.206

FireFox:
========
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\a1z2rak7.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @ei.VideoDownloadConverter_4z.com/Plugin -> C:\Program Files (x86)\VideoDownloadConverter_4zEI\Installr\1.bin\NP4zEISB.dll (VideoDownloadConverter)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\a1z2rak7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-11]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome: 
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-04-10] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
S2 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3543056 2014-04-28] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [36240 2014-04-28] () [File not signed]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-11 19:23 - 2014-08-11 19:23 - 00000000 ____D () C:\Users\Administrator\Downloads\otl
2014-08-11 19:18 - 2014-08-11 19:22 - 00000000 ____D () C:\FRST
2014-08-11 19:12 - 2014-08-11 19:22 - 00000000 ____D () C:\Users\Administrator\Downloads\logi
2014-08-11 18:58 - 2014-08-11 18:59 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-08-11 18:58 - 2014-08-11 18:58 - 00002117 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-08-11 18:58 - 2014-08-11 18:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-08-11 18:55 - 2014-08-11 18:59 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-08-11 18:43 - 2014-08-11 18:43 - 13849280 _____ (Microsoft Corporation) C:\Users\Administrator\Downloads\MSEInstall.exe
2014-08-11 18:26 - 2014-08-11 18:26 - 00062768 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-11 18:05 - 2014-08-11 18:05 - 00000000 ____D () C:\Windows\Sun
2014-08-11 18:05 - 2014-08-11 18:05 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Oracle
2014-08-11 18:04 - 2014-08-11 18:03 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-11 18:03 - 2014-08-11 18:03 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-11 18:03 - 2014-08-11 18:03 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-11 18:03 - 2014-08-11 18:03 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-08-11 18:03 - 2014-08-11 18:03 - 00000000 ____D () C:\Program Files\Java
2014-08-11 18:01 - 2014-08-11 18:02 - 31013800 _____ (Oracle Corporation) C:\Users\Administrator\Downloads\jre-7u67-windows-x64.exe
2014-08-11 18:01 - 2014-08-11 18:02 - 31013800 _____ (Oracle Corporation) C:\Users\Administrator\Downloads\jre-7u67-windows-x64(1).exe
2014-08-11 18:00 - 2014-08-11 18:00 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-11 18:00 - 2014-07-25 12:49 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-11 17:59 - 2014-07-25 12:55 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-11 17:59 - 2014-07-25 12:49 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-11 17:59 - 2014-07-25 12:49 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-11 17:58 - 2014-08-11 17:59 - 00006078 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_67-b01.log
2014-08-11 17:58 - 2014-08-11 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-11 17:35 - 2014-08-11 17:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2014-08-11 17:35 - 2014-08-11 17:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2014-08-11 17:34 - 2013-08-22 04:33 - 00375040 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_wwanecm.sys
2014-08-11 17:34 - 2013-08-22 04:32 - 00121728 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_cdcacm.sys
2014-08-11 17:34 - 2013-07-01 02:29 - 00455680 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys
2014-08-11 17:34 - 2013-06-29 11:17 - 00246272 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys
2014-08-11 17:34 - 2013-03-04 10:32 - 00110592 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys
2014-08-11 17:34 - 2013-03-04 10:32 - 00091648 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys
2014-08-11 17:34 - 2013-03-04 10:32 - 00077312 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys
2014-08-11 17:34 - 2013-03-04 10:32 - 00030720 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys
2014-08-11 17:34 - 2013-03-04 10:21 - 00226048 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys
2014-08-11 17:34 - 2013-01-25 03:16 - 00109568 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys
2014-08-11 17:34 - 2012-12-22 03:46 - 00014976 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys
2014-08-11 17:34 - 2010-10-08 10:59 - 00032768 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys
2014-08-11 17:34 - 2010-09-26 12:09 - 00022016 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys
2014-08-11 17:34 - 2010-08-06 01:43 - 01001472 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys
2014-08-11 17:33 - 2014-08-11 17:34 - 00000000 ____D () C:\Program Files (x86)\Huawei E5372
2014-08-11 17:32 - 2014-08-11 17:35 - 00000000 ____D () C:\ProgramData\DatacardService
2014-08-11 16:48 - 2014-08-11 16:48 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\WinRAR
2014-08-11 16:44 - 2014-08-11 16:44 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-08-11 16:44 - 2014-08-11 16:44 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-08-11 16:42 - 2014-08-11 16:42 - 00001230 _____ () C:\Users\Administrator\Desktop\DriverMax.lnk
2014-08-11 16:42 - 2014-08-11 16:42 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Innovative Solutions
2014-08-11 16:42 - 2014-08-11 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
2014-08-11 16:42 - 2014-08-11 16:42 - 00000000 ____D () C:\Program Files (x86)\Innovative Solutions
2014-08-11 16:40 - 2014-08-11 16:41 - 05363840 _____ (Innovative Solutions ) C:\Users\Administrator\Downloads\drivermax.exe
2014-08-11 16:36 - 2014-08-11 16:36 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Apple
2014-08-11 16:32 - 2014-08-11 16:32 - 00244320 _____ () C:\Users\Administrator\Downloads\Firefox Setup Stub 31.0.exe
2014-08-11 16:30 - 2014-08-11 19:08 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-11 16:30 - 2014-08-11 16:30 - 00001098 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-11 16:30 - 2014-08-11 16:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-11 16:30 - 2014-08-11 16:30 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-11 16:30 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-11 16:30 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-11 16:30 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-11 16:29 - 2014-08-11 16:33 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-11 16:29 - 2014-08-11 16:29 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Malwarebytes
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mozilla
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Macromedia
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Mozilla
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Macromedia
2014-08-06 19:15 - 2014-08-06 19:15 - 00000017 _____ () C:\Users\Administrator\AppData\Local\resmon.resmoncfg
2014-08-06 19:06 - 2014-08-06 19:06 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2014-08-06 19:05 - 2014-08-06 19:05 - 00001417 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-06 19:05 - 2014-08-06 19:05 - 00000020 ___SH () C:\Users\Administrator\ntuser.ini
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Ustawienia lokalne
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Szablony
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Moje dokumenty
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Menu Start
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Documents\Moje wideo
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Documents\Moje obrazy
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Documents\Moja muzyka
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Dane aplikacji
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Historia
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Dane aplikacji
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Adobe
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator
2014-08-06 19:05 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-06 19:05 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-05 18:47 - 2014-08-05 18:47 - 00003168 _____ () C:\Windows\System32\Tasks\{DBF52E11-66B5-4E48-BD0C-22F59F991067}
2014-08-03 16:22 - 2013-05-03 16:15 - 75016696 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-31 18:13 - 2014-07-31 18:13 - 00003140 _____ () C:\Windows\System32\Tasks\{F06C9B39-A43A-4357-9C72-54AC69AF51BA}
2014-07-31 17:58 - 2014-07-31 17:58 - 00003236 _____ () C:\Windows\System32\Tasks\{D1D0F2D8-04E4-460E-8422-73237B1CB5E2}

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-11 19:23 - 2014-08-11 19:23 - 00000000 ____D () C:\Users\Administrator\Downloads\otl
2014-08-11 19:22 - 2014-08-11 19:18 - 00000000 ____D () C:\FRST
2014-08-11 19:22 - 2014-08-11 19:12 - 00000000 ____D () C:\Users\Administrator\Downloads\logi
2014-08-11 19:08 - 2014-08-11 16:30 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-11 19:00 - 2010-01-01 02:13 - 01894322 _____ () C:\Windows\WindowsUpdate.log
2014-08-11 18:59 - 2014-08-11 18:58 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-08-11 18:59 - 2014-08-11 18:55 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-08-11 18:58 - 2014-08-11 18:58 - 00002117 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-08-11 18:58 - 2014-08-11 18:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-08-11 18:57 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-11 18:57 - 2009-07-14 06:51 - 00148132 _____ () C:\Windows\setupact.log
2014-08-11 18:51 - 2013-07-14 20:27 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-11 18:43 - 2014-08-11 18:43 - 13849280 _____ (Microsoft Corporation) C:\Users\Administrator\Downloads\MSEInstall.exe
2014-08-11 18:26 - 2014-08-11 18:26 - 00062768 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-11 18:05 - 2014-08-11 18:05 - 00000000 ____D () C:\Windows\Sun
2014-08-11 18:05 - 2014-08-11 18:05 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Oracle
2014-08-11 18:03 - 2014-08-11 18:04 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-11 18:03 - 2014-08-11 18:03 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-11 18:03 - 2014-08-11 18:03 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-11 18:03 - 2014-08-11 18:03 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-08-11 18:03 - 2014-08-11 18:03 - 00000000 ____D () C:\Program Files\Java
2014-08-11 18:02 - 2014-08-11 18:01 - 31013800 _____ (Oracle Corporation) C:\Users\Administrator\Downloads\jre-7u67-windows-x64.exe
2014-08-11 18:02 - 2014-08-11 18:01 - 31013800 _____ (Oracle Corporation) C:\Users\Administrator\Downloads\jre-7u67-windows-x64(1).exe
2014-08-11 18:00 - 2014-08-11 18:00 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-11 17:59 - 2014-08-11 17:58 - 00006078 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_67-b01.log
2014-08-11 17:59 - 2010-01-01 03:00 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-11 17:58 - 2014-08-11 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-11 17:37 - 2009-07-14 19:55 - 00737730 _____ () C:\Windows\system32\perfh015.dat
2014-08-11 17:37 - 2009-07-14 19:55 - 00026180 _____ () C:\Windows\system32\perfc015.dat
2014-08-11 17:37 - 2009-07-14 07:13 - 01530830 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-11 17:35 - 2014-08-11 17:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2014-08-11 17:35 - 2014-08-11 17:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2014-08-11 17:35 - 2014-08-11 17:32 - 00000000 ____D () C:\ProgramData\DatacardService
2014-08-11 17:34 - 2014-08-11 17:33 - 00000000 ____D () C:\Program Files (x86)\Huawei E5372
2014-08-11 17:27 - 2013-04-03 17:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-11 17:27 - 2010-01-01 02:51 - 00021896 _____ () C:\Windows\PFRO.log
2014-08-11 17:26 - 2014-04-06 22:06 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-08-11 17:26 - 2014-03-22 15:53 - 00000000 ____D () C:\ProgramData\Wincert
2014-08-11 17:26 - 2013-07-08 16:18 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\SafePCRepair_89
2014-08-11 17:25 - 2014-04-06 22:06 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\SupTab
2014-08-11 16:48 - 2014-08-11 16:48 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\WinRAR
2014-08-11 16:44 - 2014-08-11 16:44 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-08-11 16:44 - 2014-08-11 16:44 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-08-11 16:44 - 2013-07-14 17:10 - 00001845 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-11 16:44 - 2013-03-05 15:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-11 16:42 - 2014-08-11 16:42 - 00001230 _____ () C:\Users\Administrator\Desktop\DriverMax.lnk
2014-08-11 16:42 - 2014-08-11 16:42 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Innovative Solutions
2014-08-11 16:42 - 2014-08-11 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
2014-08-11 16:42 - 2014-08-11 16:42 - 00000000 ____D () C:\Program Files (x86)\Innovative Solutions
2014-08-11 16:41 - 2014-08-11 16:40 - 05363840 _____ (Innovative Solutions ) C:\Users\Administrator\Downloads\drivermax.exe
2014-08-11 16:36 - 2014-08-11 16:36 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Apple
2014-08-11 16:33 - 2014-08-11 16:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-11 16:33 - 2014-02-08 11:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-11 16:33 - 2010-01-01 09:36 - 00001155 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-11 16:33 - 2010-01-01 09:36 - 00001143 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-08-11 16:32 - 2014-08-11 16:32 - 00244320 _____ () C:\Users\Administrator\Downloads\Firefox Setup Stub 31.0.exe
2014-08-11 16:30 - 2014-08-11 16:30 - 00001098 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-11 16:30 - 2014-08-11 16:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-11 16:30 - 2014-08-11 16:30 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-11 16:29 - 2014-08-11 16:29 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Malwarebytes
2014-08-07 16:13 - 2013-07-14 20:27 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-07 16:08 - 2013-07-14 20:27 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-07 16:08 - 2013-07-14 20:27 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Mozilla
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Macromedia
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Mozilla
2014-08-07 15:40 - 2014-08-07 15:40 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Macromedia
2014-08-06 19:15 - 2014-08-06 19:15 - 00000017 _____ () C:\Users\Administrator\AppData\Local\resmon.resmoncfg
2014-08-06 19:06 - 2014-08-06 19:06 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2014-08-06 19:05 - 2014-08-06 19:05 - 00001417 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-06 19:05 - 2014-08-06 19:05 - 00000020 ___SH () C:\Users\Administrator\ntuser.ini
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Ustawienia lokalne
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Szablony
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Moje dokumenty
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Menu Start
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Documents\Moje wideo
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Documents\Moje obrazy
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Documents\Moja muzyka
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\Dane aplikacji
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Historia
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Dane aplikacji
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Adobe
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA
2014-08-06 19:05 - 2014-08-06 19:05 - 00000000 ____D () C:\Users\Administrator
2014-08-06 19:05 - 2009-07-14 06:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-08-06 18:45 - 2013-11-20 17:47 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Skype
2014-08-05 18:47 - 2014-08-05 18:47 - 00003168 _____ () C:\Windows\System32\Tasks\{DBF52E11-66B5-4E48-BD0C-22F59F991067}
2014-08-04 13:48 - 2013-07-15 12:04 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 13
2014-08-03 17:11 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-31 18:13 - 2014-07-31 18:13 - 00003140 _____ () C:\Windows\System32\Tasks\{F06C9B39-A43A-4357-9C72-54AC69AF51BA}
2014-07-31 17:58 - 2014-07-31 17:58 - 00003236 _____ () C:\Windows\System32\Tasks\{D1D0F2D8-04E4-460E-8422-73237B1CB5E2}
2014-07-31 13:28 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing
2014-07-25 12:55 - 2014-08-11 17:59 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-25 12:49 - 2014-08-11 18:00 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-25 12:49 - 2014-08-11 17:59 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-25 12:49 - 2014-08-11 17:59 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-20 22:23 - 2010-01-01 08:33 - 00489032 _____ () C:\Windows\DirectX.log
2014-07-20 21:46 - 2012-12-01 13:45 - 00000000 ____D () C:\Users\Sebastian\Documents\FIFA 12
2014-07-12 15:51 - 2013-04-20 13:19 - 00000000 ____D () C:\Users\Sebastian\Documents\NFS Most Wanted

Some content of TEMP:
====================
C:\Users\Administrator\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Sebastian\AppData\Local\Temp\adminrun.exe
C:\Users\Sebastian\AppData\Local\Temp\AutoRun.exe
C:\Users\Sebastian\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Sebastian\AppData\Local\Temp\BuenoSearchTB.exe
C:\Users\Sebastian\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Sebastian\AppData\Local\Temp\installerdll2193467.dll
C:\Users\Sebastian\AppData\Local\Temp\installerdll2212109.dll
C:\Users\Sebastian\AppData\Local\Temp\installerdll2535421.dll
C:\Users\Sebastian\AppData\Local\Temp\installerdll2619833.dll
C:\Users\Sebastian\AppData\Local\Temp\installerdll390798.dll
C:\Users\Sebastian\AppData\Local\Temp\installerdll4044372.dll
C:\Users\Sebastian\AppData\Local\Temp\installerdll466068.dll
C:\Users\Sebastian\AppData\Local\Temp\not_bundled_icytower15_install.exe
C:\Users\Sebastian\AppData\Local\Temp\NVI2_29.DLL
C:\Users\Sebastian\AppData\Local\Temp\ResetDevice.exe
C:\Users\Sebastian\AppData\Local\Temp\rootsupd.exe
C:\Users\Sebastian\AppData\Local\Temp\SettingsManagerSetup.exe
C:\Users\Sebastian\AppData\Local\Temp\SettingsManagerSetup[1].exe
C:\Users\Sebastian\AppData\Local\Temp\Setup.exe
C:\Users\Sebastian\AppData\Local\Temp\Shockwave_Installer_FF.exe
C:\Users\Sebastian\AppData\Local\Temp\SimBundD.exe
C:\Users\Sebastian\AppData\Local\Temp\SimBundD[1].exe
C:\Users\Sebastian\AppData\Local\Temp\Softonic_PL_1-5-9_PL-Production_10_CleanRelease.exe
C:\Users\Sebastian\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Sebastian\AppData\Local\Temp\swt-win32-3740.dll
C:\Users\Sebastian\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Sebastian\AppData\Local\Temp\vcredist_x86.exe
C:\Users\Sebastian\AppData\Local\Temp\WindowsInstaller-KB893803-v2-x86.exe
C:\Users\Sebastian\AppData\Local\Temp\_is77DE.exe
C:\Users\Sebastian\AppData\Local\Temp\_isDB12.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-31 17:33

==================== End Of Log ============================