Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-09-2014 ([color=red]ATTENTION: ====> FRST version is 11 days old and could be outdated[/color])
Ran by Grzesiek (administrator) on GRZESIEKXD on 18-09-2014 16:24:14
Running from C:\Users\Grzesiek\Desktop
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (All) =========================

(Microsoft Corporation) C:\Windows\System32\smss.exe
(Microsoft Corporation) C:\Windows\System32\csrss.exe
(Microsoft Corporation) C:\Windows\System32\wininit.exe
(Microsoft Corporation) C:\Windows\System32\csrss.exe
(Microsoft Corporation) C:\Windows\System32\services.exe
(Microsoft Corporation) C:\Windows\System32\lsass.exe
(Microsoft Corporation) C:\Windows\System32\lsm.exe
(Microsoft Corporation) C:\Windows\System32\winlogon.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\spoolsv.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\taskhost.exe
(Microsoft Corporation) C:\Windows\System32\sppsvc.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\dwm.exe
(Microsoft Corporation) C:\Windows\explorer.exe
() F:\RocketDock\RocketDock.exe
(Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\taskeng.exe
(Microsoft Corporation) C:\Windows\System32\taskeng.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Grzesiek\Desktop\FRST (2).exe
(Microsoft Corporation) C:\Windows\System32\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
(Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-3397978267-1128441615-3336433578-1000\...\Run: [RocketDock] => F:\RocketDock\RocketDock.exe [495616 2007-09-02] ()
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)

==================== Internet (All) ===========================

HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
HKCU\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_page_url = http://go.microsoft.com/fwlink/?LinkId=69157
HKCU\Software\Microsoft\Internet Explorer\Main,Search bar = http://go.microsoft.com/fwlink/?linkid=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
URLSearchHook: HKCU - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> D:\Arc\Plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll (Microsoft Corporation)
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll (Microsoft Corporation)
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll (Microsoft Corporation)
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation)
Winsock: Catalog5 01 %SystemRoot%\system32\NLAapi.dll [52224] (Microsoft Corporation)
Winsock: Catalog5 02 %SystemRoot%\system32\napinsp.dll [52224] (Microsoft Corporation)
Winsock: Catalog5 03 %SystemRoot%\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Winsock: Catalog5 04 %SystemRoot%\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Winsock: Catalog5 05 %SystemRoot%\System32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog5 06 %SystemRoot%\System32\winrnr.dll [20992] (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Winsock: Catalog9 01 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 02 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 03 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 04 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 05 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 06 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 07 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 08 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 09 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 10 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 11 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 12 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 13 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 14 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 15 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 16 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 17 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 18 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 19 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 20 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 21 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 22 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 23 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 24 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 25 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 26 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 27 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Winsock: Catalog9 28 %SystemRoot%\system32\mswsock.dll [232448] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{3CB10C66-3360-4ABD-B4FF-667903B3CB51}: [NameServer] 220.67.222.222,208.67.220.220

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> H:\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Grzesiek\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Grzesiek\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Grzesiek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-08-15]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.gazeta.pl/0,0.html?p=128
CHR StartupUrls: Default -> "hxxp://bing.pl/", "hxxp://www.interia.pl/#utm_source=sft&utm_medium=installer&utm_campaign=sft"
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSearchProvider: Default -> Bing
CHR DefaultSearchURL: Default -> https://mail.google.com/mail/?extsrc=mailto&url=%s
CHR DefaultNewTabURL: Default -> https://www.bing.com/chrome/newtab?setmkt=pl-PL
CHR DefaultSuggestURL: Default -> http://api.bing.com/osjson.aspx?query={searchTerms}&language={language}
CHR CustomProfile: C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dysk Google) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-20]
CHR Extension: (YouTube) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-03-08]
CHR Extension: (Adblock Plus) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-07-03]
CHR Extension: (Szukaj w Google) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-03-08]
CHR Extension: (Battlefield Play4Free) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkejhbcdagodjdndmfnhaibnealjonei [2012-07-25]
CHR Extension: (AdBlock) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-07-03]
CHR Extension: (Google Wallet) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Battlefield Play4Free) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2013-04-26]
CHR Extension: (Gmail) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-03-08]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-07-26]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Grzesiek\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-09-20]
CHR StartMenuInternet: Google Chrome - "C:\Users\Grzesiek\AppData\Local\Google\Chrome\Application\chrome.exe"

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdvancedSystemCareService6; G:\Advanced SystemCare 6\ASCService.exe [465216 2013-01-15] (IObit)
S4 ArcService; D:\Arc\ArcService.exe [88400 2014-07-24] (Perfect World Entertainment Inc)
S4 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S4 npggsvc; C:\Windows\system32\GameMon.des [5131672 2013-12-02] (INCA Internet Co., Ltd.)
S4 RzKLService; H:\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-06-16] (DT Soft Ltd)
R3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd6.sys [44032 2009-07-14] (VIA Technologies, Inc.              )
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [39624 2014-05-17] (AnchorFree Inc.)
R3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28944 2008-02-29] (Logitech, Inc.)
R3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.)
R3 SCREAMINGBDRIVER; C:\Windows\System32\drivers\ScreamingBAudio.sys [34896 2010-07-01] (Screaming Bee LLC)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [37064 2014-05-17] (Anchorfree Inc.)
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [17792 2008-12-26] (Avnex) [File not signed]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-18 16:24 - 2014-09-18 16:27 - 00021338 _____ () C:\Users\Grzesiek\Desktop\FRST.txt
2014-09-15 17:38 - 2014-09-16 20:02 - 00000000 ____D () C:\Windows\pss
2014-09-07 20:33 - 2014-09-07 20:33 - 01097728 _____ (Farbar) C:\Users\Grzesiek\Desktop\FRST (2).exe
2014-09-07 09:03 - 2014-09-07 09:03 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-09-07 09:02 - 2014-09-07 20:49 - 00000000 ____D () C:\Program Files\Windows Live
2014-09-07 08:59 - 2014-09-07 10:06 - 00000000 ____D () C:\Users\Grzesiek\AppData\Local\Windows Live
2014-09-07 08:58 - 2014-09-07 08:58 - 00000000 ____D () C:\Program Files\Common Files\Windows Live
2014-09-05 16:12 - 2014-09-18 16:20 - 00000000 ____D () C:\Users\Grzesiek\Desktop\Porgramy do skanu
2014-09-05 15:45 - 2014-09-18 16:24 - 00000000 ____D () C:\FRST
2014-09-04 21:33 - 2014-09-04 21:33 - 00000000 ____D () C:\ProgramData\IObit
2014-09-04 20:56 - 2014-09-04 20:56 - 00000000 ____D () C:\Program Files\9-lab
2014-08-31 11:02 - 2014-08-31 11:02 - 00143120 _____ () C:\Windows\Minidump\083114-18766-01.dmp
2014-08-29 12:21 - 2014-08-29 12:21 - 00000000 ____D () C:\Program Files\LG Electronics
2014-08-26 16:19 - 2014-08-26 16:19 - 00143168 _____ () C:\Windows\Minidump\082614-20872-01.dmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-18 16:32 - 2013-09-20 16:49 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-18 16:27 - 2014-09-18 16:24 - 00021338 _____ () C:\Users\Grzesiek\Desktop\FRST.txt
2014-09-18 16:24 - 2014-09-05 15:45 - 00000000 ____D () C:\FRST
2014-09-18 16:20 - 2014-09-05 16:12 - 00000000 ____D () C:\Users\Grzesiek\Desktop\Porgramy do skanu
2014-09-18 16:20 - 2012-11-29 19:14 - 00001070 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3397978267-1128441615-3336433578-1000UA.job
2014-09-18 16:20 - 2012-10-06 22:59 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-18 15:45 - 2012-03-08 20:54 - 01411201 _____ () C:\Windows\WindowsUpdate.log
2014-09-18 15:28 - 2013-09-20 16:49 - 00001036 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-18 15:27 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-18 15:27 - 2009-07-14 06:39 - 00309461 _____ () C:\Windows\setupact.log
2014-09-17 17:58 - 2009-07-14 06:34 - 00010128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-17 17:58 - 2009-07-14 06:34 - 00010128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-16 20:30 - 2014-03-09 10:10 - 00037162 _____ () C:\Users\Grzesiek\Desktop\Playlista.asx
2014-09-16 20:02 - 2014-09-15 17:38 - 00000000 ____D () C:\Windows\pss
2014-09-16 19:53 - 2013-05-14 16:12 - 00037182 _____ () C:\Users\Grzesiek\Desktop\najnowsza.asx
2014-09-16 19:20 - 2012-11-29 19:14 - 00001018 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3397978267-1128441615-3336433578-1000Core.job
2014-09-15 17:57 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-15 17:39 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-09-15 17:36 - 2012-12-09 12:04 - 00000000 ____D () C:\Users\Grzesiek\AppData\Local\PMB Files
2014-09-15 16:58 - 2012-03-08 20:59 - 01679202 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-15 16:58 - 2009-07-14 10:07 - 00743770 _____ () C:\Windows\system32\perfh015.dat
2014-09-15 16:58 - 2009-07-14 10:07 - 00157252 _____ () C:\Windows\system32\perfc015.dat
2014-09-14 10:55 - 2012-07-01 12:29 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-13 11:49 - 2013-07-15 00:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-13 09:14 - 2012-03-17 15:16 - 98758480 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-12 22:04 - 2012-03-29 16:27 - 00000000 ____D () C:\Users\Grzesiek\AppData\Roaming\Skype
2014-09-10 16:21 - 2012-10-06 22:59 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-09-10 16:21 - 2012-03-08 21:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-09-07 20:49 - 2014-09-07 09:02 - 00000000 ____D () C:\Program Files\Windows Live
2014-09-07 20:49 - 2012-05-13 08:25 - 00000000 ____D () C:\Users\Grzesiek\AppData\Roaming\GRETECH
2014-09-07 20:49 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-09-07 20:49 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration
2014-09-07 20:48 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-09-07 20:33 - 2014-09-07 20:33 - 01097728 _____ (Farbar) C:\Users\Grzesiek\Desktop\FRST (2).exe
2014-09-07 20:22 - 2012-03-08 20:55 - 00000000 ____D () C:\Users\Grzesiek\AppData\Local\VirtualStore
2014-09-07 19:50 - 2012-03-08 20:55 - 00000000 ____D () C:\Users\Grzesiek
2014-09-07 10:06 - 2014-09-07 08:59 - 00000000 ____D () C:\Users\Grzesiek\AppData\Local\Windows Live
2014-09-07 09:03 - 2014-09-07 09:03 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-09-07 08:58 - 2014-09-07 08:58 - 00000000 ____D () C:\Program Files\Common Files\Windows Live
2014-09-07 08:58 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-09-06 19:59 - 2012-03-09 19:16 - 01032730 _____ () C:\Windows\PFRO.log
2014-09-06 19:37 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-09-05 20:14 - 2012-03-24 22:39 - 00000000 ____D () C:\Program Files\FoxTabPDFReader
2014-09-05 19:28 - 2014-07-31 16:48 - 00001595 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-05 19:28 - 2014-07-31 16:48 - 00001587 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-09-05 19:28 - 2014-07-31 16:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-05 19:28 - 2009-07-14 04:04 - 00001036 _____ () C:\Windows\win.ini
2014-09-04 21:33 - 2014-09-04 21:33 - 00000000 ____D () C:\ProgramData\IObit
2014-09-04 20:56 - 2014-09-04 20:56 - 00000000 ____D () C:\Program Files\9-lab
2014-09-04 20:55 - 2014-07-11 14:27 - 07828120 _____ () C:\Users\Grzesiek\Downloads\rmtool-setup-x86.exe
2014-09-03 14:41 - 2014-01-20 16:50 - 00003860 _____ () C:\Windows\windefendam.log
2014-09-03 14:41 - 2014-01-20 16:50 - 00000020 _____ () C:\Windows\capsys184523.log
2014-09-02 23:01 - 2013-01-05 12:07 - 00000000 ____D () C:\Users\Grzesiek\.gimp-2.6
2014-09-02 19:46 - 2013-05-17 16:23 - 00000000 ____D () C:\Program Files\Audioblast
2014-09-02 19:46 - 2012-08-07 09:33 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-08-31 11:02 - 2014-08-31 11:02 - 00143120 _____ () C:\Windows\Minidump\083114-18766-01.dmp
2014-08-31 11:02 - 2014-05-18 15:08 - 1669521076 _____ () C:\Windows\MEMORY.DMP
2014-08-31 11:02 - 2012-08-04 20:41 - 00000000 ____D () C:\Windows\Minidump
2014-08-29 21:56 - 2014-08-06 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-29 15:06 - 2014-01-05 10:08 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-08-29 13:13 - 2014-04-08 22:05 - 00000000 ____D () C:\Users\Grzesiek\AppData\Roaming\Audacity
2014-08-29 12:21 - 2014-08-29 12:21 - 00000000 ____D () C:\Program Files\LG Electronics
2014-08-27 12:50 - 2012-03-08 21:02 - 00000000 ____D () C:\Users\Grzesiek\AppData\Local\WMTools Downloaded Files
2014-08-27 12:37 - 2012-03-08 21:01 - 00016896 _____ () C:\Users\Grzesiek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-08-26 16:19 - 2014-08-26 16:19 - 00143168 _____ () C:\Windows\Minidump\082614-20872-01.dmp
2014-08-25 06:53 - 2012-03-09 18:58 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-24 22:57 - 2009-07-14 06:53 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-24 21:04 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-08-22 11:12 - 2014-02-22 15:54 - 00000000 ____D () C:\Users\Grzesiek\AppData\Local\Battle.net
2014-08-22 10:52 - 2014-04-28 18:23 - 00000000 ____D () C:\Program Files\Battle.net

Some content of TEMP:
====================
C:\Users\Grzesiek\AppData\Local\temp\silent-1-.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 19:29

==================== End Of Log ============================