Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by szczepan (administrator) on SAMSUNG on 09-10-2013 12:29:36
Running from C:\Users\szczepan\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\windows\system32\srvany.exe
() C:\windows\KMService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
() C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\windows\system32\igfxext.exe
(Intel Corporation) C:\windows\system32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(CyberLink) C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(BitTorrent, Inc.) C:\Program Files\uTorrent\uTorrent.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.0.229\SSScheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\windows\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-15] (Realtek Semiconductor)
HKLM\...\Run: [UpdateLBPShortCut] - C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM\...\Run: [UpdatePDRShortCut] - C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [RemoteControl8] - C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [PDVD8LanguageShortcut] - C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] - C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2009-07-21] (CyberLink Corp.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [facemoods] - C:\Program Files\facemoods.com\facemoods\1.4.8.1\facemoodssrv.exe [323584 2010-07-06] (facemoods.com)
HKLM\...\Run: [NeroFilterCheck] - C:\windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [iPlusManager] - C:\Program Files\iPlus\iPlusChecker.exe [409600 2008-05-30] ()
HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [NeroCheck] - C:\windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,userinit.exe
HKCU\...\Run: [ALLUpdate] - C:\Program Files\ALLPlayer\ALLUpdate.exe [2995712 2013-07-19] (ALLPlayer Group Ltd.)
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-06-14] (Google Inc.)
HKCU\...\Run: [uTorrent] - C:\Program Files\uTorrent\uTorrent.exe [896400 2012-08-12] (BitTorrent, Inc.)
HKCU\...\Run: [GG] - C:\Users\szczepan\AppData\Local\GG\Application\gghub.exe [4009024 2013-09-02] (GG Network S.A.)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: G - G:\AutoRun.exe
MountPoints2: H - H:\AutoRun.exe
MountPoints2: {012491d7-1ef7-11e0-bd9a-002454ada8aa} - F:\AutoRun.exe
MountPoints2: {2ea4c70f-d62c-11df-a3a3-002454ada8aa} - F:\LaunchU3.exe -a
MountPoints2: {51cd8ba2-1ef6-11e0-851b-002454ada8aa} - F:\AutoRun.exe
MountPoints2: {72bf5979-a87f-11df-9fea-002454ada8aa} - F:\AutoRun.exe
MountPoints2: {ad160924-9e32-11df-a0bc-002454ada8aa} - F:\AutoRun.exe
MountPoints2: {ad16093a-9e32-11df-a0bc-002454ada8aa} - F:\AutoRun.exe
MountPoints2: {ad16095b-9e32-11df-a0bc-002454ada8aa} - F:\AutoRun.exe
MountPoints2: {fc5ed5c0-9e3c-11df-a4cb-002454ada8aa} - F:\AutoRun.exe
AppInit_DLLs: c:\progra~2\bitguard\261694~1.246\{c16c1~1\bitguard.dll  [ 2013-10-01] ()
Startup: C:\Users\szczepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TorpedoCopy.lnk
ShortcutTarget: TorpedoCopy.lnk -> C:\Users\szczepan\AppData\Local\Torpedo\Torpedo.exe (No File)
Startup: C:\Users\szczepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk
ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * aswBoot.exe /M:5ace4c97c

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=150
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=p1&from=p1&uid=SAMSUNGXHM250HI_S20TJ9AZ676577&ts=1358020482
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://search.babylon.com/?affID=113480&tt=3212_2&babsrc=HP_ss&mntrId=8cc990bc000000000000000000000000
HKCU\Software\Microsoft\Internet Explorer\Main,BrowserMngr Start Page = http://search.babylon.com/?affID=113480&tt=120812_bandext_3212_7&babsrc=HP_ss&mntrId=8cc990bc000000000000000000000000
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=113480&tt=120812_bandext_3212_7&babsrc=HP_ss&mntrId=8cc990bc000000000000000000000000
SearchScopes: HKLM - DefaultScope {12995981-2FD6-4BEE-9FB0-B1674E8E5E7E} URL = 
SearchScopes: HKCU - BrowserMngrDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - URL http://isearch.babylon.com/?q={searchTerms}&affID=119370&babsrc=SP_ss_Btisdt4&mntrId=8CC9EE39DF59DA98
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=8CC9EE39DF59DA98&affID=119357&tsp=4960
SearchScopes: HKCU - {12995981-2FD6-4BEE-9FB0-B1674E8E5E7E} URL = http://websearch.4shared.com/results?q={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {70BA3E6B-1059-2266-0B2C-40E4A85231B8} URL = http://www.ddlstart.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=yahoo&provider_code=&partner_id=750&product_id=872&affiliate_id=&channel=&toolbar_id=200&toolbar_version=2.5.0&install_country=PL&install_date=20120807&user_guid=47C0BF5EB06D450784CD0AC13F04F835&machine_id=f9a75c26771e596bca21e9ed38394831&browser=IE&os=win&os_version=6.1-x86-SP1&iesrc={referrer:source}
BHO: Claro LTD Helper Object - {000F18F2-09EB-4A59-82B2-5AE4184C39C3} - C:\Program Files\Claro LTD\claro\1.6.4.1\bh\claro.dll (Montera Technologeis LTD)
BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\bh\BabylonToolbar.dll (Babylon BHO)
BHO: Conduit Engine  - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
BHO: CescrtHlpr Object - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.8.1\bh\facemoods.dll (facemoods.com BHO)
BHO: StartNow Toolbar Helper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll ()
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: 4sharedExt - {95525BD9-6136-4A26-8263-9CEE295D442D} - C:\Program Files\4Shared Toolbar\4sharedExt32.dll (New IT Solutions Ltd)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Softonic-Polska Toolbar - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\Users\szczepan\AppData\Roaming\MEDIAF~1\EXTENS~1\GENCRA~1.DLL ()
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\PROGRA~1\ALLPLA~1\Iplex\IPLEXT~1.DLL (ALLCinema Ltd.)
Toolbar: HKLM - facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.8.1\facemoodsTlbr.dll (facemoods.com)
Toolbar: HKLM - Softonic-Polska Toolbar - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
Toolbar: HKLM - Conduit Engine  - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.6.4.6\BabylonToolbarTlbr.dll (Babylon Ltd.)
Toolbar: HKLM - StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll ()
Toolbar: HKLM - Claro LTD Toolbar - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} - C:\Program Files\Claro LTD\claro\1.6.4.1\claroTlbr.dll (Montera Technologeis LTD)
Toolbar: HKLM - 4shared Toolbar - {95080B13-AA71-4EE8-B951-7E98221E1ED5} - C:\Program Files\4Shared Toolbar\4sharedbar32.dll (New IT Solutions Ltd)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Softonic-Polska Toolbar - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\prxtbSof2.dll (Conduit Ltd.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

Chrome: 
=======
CHR HomePage: hxxp://search.babylon.com/?babsrc=HP_ss_wls&mntrId=8CC9EE39DF59DA98&affID=119357&tsp=4960
CHR RestoreOnStartup: "hxxp://search.babylon.com/?babsrc=HP_ss_wls&mntrId=8CC9EE39DF59DA98&affID=119357&tsp=4960"
CHR DefaultSearchURL: (Babylon) - http://search.babylon.com/?q={searchTerms}&affID=119370&babsrc=SP_ss_gin2g&mntrId=8CC9EE39DF59DA98
CHR DefaultSuggestURL: (Babylon) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.69\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (GanymedeNet.Detector) - C:\Program Files\Ganymede\Plugins\npganymedenet.dll ( )
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Unity Player) - C:\Users\szczepan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Extension: (YouTube) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (General Crawler) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel\2.5_0
CHR Extension: (AT_MEcko) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbdglekpmmdlmdfogflhiponnndbokpk\2_0
CHR Extension: (Shopping price comparison) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjokjdicpfckeiihaniimbbmhadclefc\2.2.0_0
CHR Extension: (Coupons Malibu) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnofepcmbghfcimfbjicplikedjcnalm\2.0.1.9_0
CHR Extension: (wxDfast) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibkgifddgkkpoaapijehlceccdkecman\1.0_0
CHR Extension: (InfoBird Pro) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\icanoneicgaahjbilcgdmnhoocddknbl\3.0.0.0_0
CHR Extension: (Facemoods) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\9.4.1.1_0
CHR Extension: (v9) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijblflkdjdopkpdgllkmlbgcffjbnfda\2.0.1_0
CHR Extension: (StartNow Search) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\incfcgceegpikennjoplhfghaaikdgei\2.5.0_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (xSpeechKit) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfkoajfaiokpnjcniepkgabjbgpjkegb\0.1_0
CHR Extension: (Gmail) - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [dednnpigldgdbpgcdpfppmlcnnbjciel] - C:\Users\szczepan\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx
CHR HKLM\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Users\szczepan\AppData\Roaming\BabylonToolbar\CR\BabylonChrome1.crx
CHR HKLM\...\Chrome\Extension: [gjokjdicpfckeiihaniimbbmhadclefc] - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\novo_price_comparison.crx
CHR HKLM\...\Chrome\Extension: [hnofepcmbghfcimfbjicplikedjcnalm] - C:\Users\szczepan\AppData\Local\CouponsMalibu.crx
CHR HKLM\...\Chrome\Extension: [ibkgifddgkkpoaapijehlceccdkecman] - C:\ProgramData\wxDfast\ibkgifddgkkpoaapijehlceccdkecman.crx
CHR HKLM\...\Chrome\Extension: [icanoneicgaahjbilcgdmnhoocddknbl] - C:\Users\szczepan\AppData\Local\InfoBirdPro.crx
CHR HKLM\...\Chrome\Extension: [ihflimipbcaljfnojhhknppphnnciiif] - C:\Program Files\facemoods.com\facemoods\1.4.8.1\facemoods.crx
CHR HKLM\...\Chrome\Extension: [ijblflkdjdopkpdgllkmlbgcffjbnfda] - C:\Users\szczepan\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
CHR HKLM\...\Chrome\Extension: [lpmkgpnbiojfaoklbkpfneikocaobfai] - C:\Users\szczepan\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 KMService; C:\windows\system32\srvany.exe [8192 2011-11-03] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.229\McCHSvc.exe [237008 2011-09-20] (McAfee, Inc.)
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()
R2 Updater Service for StartNow Toolbar; C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe [265952 2012-05-25] ()

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [66336 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-07-17] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-07-17] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [175176 2013-07-17] ()
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
S3 GVCplDrv; C:\Windows\System32\Drivers\GVCplDrv.sys [23040 2004-05-02] ()
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [657408 2009-07-14] (Ralink Technology Corp.)
S3 rtport; C:\windows\system32\drivers\rtport.sys [15656 2010-07-12] (Windows (R) 2003 DDK 3790 provider)
R1 SABI; C:\windows\system32\Drivers\SABI.sys [10752 2010-03-31] (SAMSUNG ELECTRONICS)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [477240 2012-08-07] (Duplex Secure Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [181912 2013-06-04] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2010-12-21] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2010-12-21] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2010-12-21] (MCCI Corporation)
S3 ss_bserd; C:\Windows\System32\DRIVERS\ss_bserd.sys [100224 2010-12-21] (MCCI Corporation)
S3 Xponaut_WBD; C:\Windows\System32\drivers\xpntwbd.sys [13184 2007-01-19] (Xponaut)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
S3 EagleNT; \??\C:\windows\system32\drivers\EagleNT.sys [x]
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 usbbus; system32\DRIVERS\lgusbbus.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-09 12:29 - 2013-10-09 12:29 - 00000000 ____D C:\FRST
2013-10-09 12:28 - 2013-10-09 12:29 - 01087213 _____ (Farbar) C:\Users\szczepan\Downloads\FRST.exe
2013-10-09 11:02 - 2013-10-09 11:02 - 00137386 _____ C:\Users\szczepan\Downloads\Extras.Txt
2013-10-09 10:57 - 2013-10-09 10:57 - 00114192 _____ C:\Users\szczepan\Downloads\OTL.Txt
2013-10-09 10:51 - 2013-10-09 10:52 - 01045226 _____ C:\Users\szczepan\Downloads\adwcleaner.exe
2013-10-09 10:39 - 2013-10-09 10:39 - 00602112 _____ (OldTimer Tools) C:\Users\szczepan\Downloads\OTL.exe
2013-10-08 09:52 - 2013-10-09 08:40 - 00000000 ____D C:\Users\szczepan\Desktop\ST
2013-10-04 10:06 - 2013-08-31 19:38 - 728217600 ____R C:\Users\szczepan\Desktop\Olympus.Has.Fallen.2013.PL.BRRip.XviD-GHW.avi
2013-10-04 10:06 - 2012-04-19 15:44 - 1531138798 _____ C:\Users\szczepan\Desktop\Sherlock Holmes A Game Of Shadows gf 2011.avi
2013-10-02 16:56 - 2013-10-02 16:56 - 00001112 _____ C:\Users\szczepan\Desktop\GG.lnk
2013-10-02 16:56 - 2013-10-02 16:56 - 00000000 ___SD C:\Users\szczepan\GG dysk
2013-10-02 16:55 - 2013-10-09 09:52 - 00000000 ____D C:\Users\szczepan\AppData\Roaming\GG
2013-10-02 16:55 - 2013-10-02 16:56 - 00000000 ____D C:\Users\szczepan\AppData\Local\GG
2013-10-02 16:55 - 2013-10-02 16:55 - 00001120 _____ C:\Users\szczepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
2013-10-01 18:55 - 2013-10-01 18:55 - 00000000 ____D C:\Users\szczepan\AppData\Local\{CAC7AD38-70B8-4479-962F-B50B0AE35530}
2013-10-01 18:06 - 2013-10-01 18:06 - 00000000 ____D C:\Users\szczepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-10-01 13:59 - 2013-10-04 10:04 - 00000000 ____D C:\Users\szczepan\Desktop\58 NSK
2013-09-24 22:14 - 2013-09-24 22:14 - 00000000 ____D C:\Users\szczepan\AppData\Local\{16D6FA02-1BE4-479B-9675-DD7828BB1C7F}
2013-09-21 01:34 - 2013-09-21 01:34 - 00001020 _____ C:\Users\Public\Desktop\ALLConverter PRO.lnk
2013-09-21 01:34 - 2013-09-21 01:34 - 00001001 _____ C:\Users\Public\Desktop\ALL Media Server.lnk
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Users\szczepan\AppData\Local\ALLMediaServer
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Users\szczepan\AppData\Local\ALLConverter
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Program Files\ALLMediaServer
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Program Files\ALLConverter PRO
2013-09-21 01:33 - 2013-04-05 21:26 - 00276992 _____ (IntelleSoft) C:\windows\system32\BugTrap.dll
2013-09-17 14:18 - 2013-09-17 14:18 - 00072123 _____ C:\Users\szczepan\AppData\Local\CouponsMalibu.crx
2013-09-17 12:31 - 2013-09-17 12:31 - 00000577 _____ C:\Users\szczepan\Desktop\umowa-regwalbrzych (10).zip
2013-09-14 22:07 - 2013-09-14 22:07 - 00000000 ____D C:\Users\szczepan\AppData\Local\avgchrome
2013-09-14 16:20 - 2013-10-01 22:49 - 00000000 ____D C:\ProgramData\BitGuard
2013-09-13 15:57 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-09-13 15:57 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-09-13 15:57 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-09-13 15:57 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-09-13 15:57 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-09-13 15:57 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-09-13 15:57 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-09-12 18:55 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2013-09-12 18:55 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2013-09-12 18:54 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-09-12 18:54 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2013-09-12 18:54 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2013-09-12 18:54 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2013-09-12 18:54 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2013-09-12 18:54 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 18:54 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll

==================== One Month Modified Files and Folders =======

2013-10-09 12:29 - 2013-10-09 12:29 - 00000000 ____D C:\FRST
2013-10-09 12:29 - 2013-10-09 12:28 - 01087213 _____ (Farbar) C:\Users\szczepan\Downloads\FRST.exe
2013-10-09 12:29 - 2010-10-21 21:49 - 00000000 ____D C:\Users\szczepan\AppData\Roaming\uTorrent
2013-10-09 12:17 - 2009-07-14 06:34 - 00014736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-09 12:17 - 2009-07-14 06:34 - 00014736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-09 11:54 - 2012-07-26 20:32 - 00000930 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-10-09 11:39 - 2010-08-02 15:52 - 00001036 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-09 11:32 - 2013-07-31 22:33 - 00000298 _____ C:\windows\Tasks\DSite.job
2013-10-09 11:22 - 2013-04-12 14:23 - 02035220 _____ C:\windows\WindowsUpdate.log
2013-10-09 11:02 - 2013-10-09 11:02 - 00137386 _____ C:\Users\szczepan\Downloads\Extras.Txt
2013-10-09 10:57 - 2013-10-09 10:57 - 00114192 _____ C:\Users\szczepan\Downloads\OTL.Txt
2013-10-09 10:52 - 2013-10-09 10:51 - 01045226 _____ C:\Users\szczepan\Downloads\adwcleaner.exe
2013-10-09 10:39 - 2013-10-09 10:39 - 00602112 _____ (OldTimer Tools) C:\Users\szczepan\Downloads\OTL.exe
2013-10-09 09:52 - 2013-10-02 16:55 - 00000000 ____D C:\Users\szczepan\AppData\Roaming\GG
2013-10-09 09:48 - 2010-08-02 14:01 - 00000000 ____D C:\Users\szczepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2013-10-09 09:47 - 2010-08-02 15:52 - 00001032 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-09 09:46 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-10-09 09:15 - 2010-06-14 22:57 - 00737980 _____ C:\windows\system32\perfh015.dat
2013-10-09 09:15 - 2010-06-14 22:57 - 00154636 _____ C:\windows\system32\perfc015.dat
2013-10-09 09:15 - 2009-07-26 22:06 - 01662556 _____ C:\windows\system32\PerfStringBackup.INI
2013-10-09 08:46 - 2010-09-19 10:40 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2013-10-09 08:40 - 2013-10-08 09:52 - 00000000 ____D C:\Users\szczepan\Desktop\ST
2013-10-09 08:33 - 2013-08-02 12:32 - 00000006 _____ C:\Users\szczepan\AppData\Roaming\WBPU-TTL.DAT
2013-10-09 08:33 - 2013-07-31 23:32 - 00000106 _____ C:\Users\szczepan\AppData\Roaming\WB.CFG
2013-10-04 10:04 - 2013-10-01 13:59 - 00000000 ____D C:\Users\szczepan\Desktop\58 NSK
2013-10-03 21:33 - 2011-04-16 15:35 - 00000000 ____D C:\Users\szczepan\Desktop\muza natii
2013-10-03 08:56 - 2010-08-04 12:37 - 00000000 ____D C:\Program Files\Gadu-Gadu 10
2013-10-02 16:56 - 2013-10-02 16:56 - 00001112 _____ C:\Users\szczepan\Desktop\GG.lnk
2013-10-02 16:56 - 2013-10-02 16:56 - 00000000 ___SD C:\Users\szczepan\GG dysk
2013-10-02 16:56 - 2013-10-02 16:55 - 00000000 ____D C:\Users\szczepan\AppData\Local\GG
2013-10-02 16:56 - 2010-08-02 14:01 - 00000000 ____D C:\Users\szczepan
2013-10-02 16:55 - 2013-10-02 16:55 - 00001120 _____ C:\Users\szczepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
2013-10-01 22:49 - 2013-09-14 16:20 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-01 18:55 - 2013-10-01 18:55 - 00000000 ____D C:\Users\szczepan\AppData\Local\{CAC7AD38-70B8-4479-962F-B50B0AE35530}
2013-10-01 18:06 - 2013-10-01 18:06 - 00000000 ____D C:\Users\szczepan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-09-30 16:35 - 2010-10-14 21:55 - 00000000 ___RD C:\Users\szczepan\Desktop\MUZA MONINI
2013-09-28 22:25 - 2010-08-04 15:40 - 00000000 ____D C:\Users\szczepan\AppData\Roaming\Skype
2013-09-24 22:14 - 2013-09-24 22:14 - 00000000 ____D C:\Users\szczepan\AppData\Local\{16D6FA02-1BE4-479B-9675-DD7828BB1C7F}
2013-09-24 22:14 - 2010-10-24 21:13 - 00000000 ____D C:\Users\szczepan\AppData\Local\Windows Live
2013-09-21 01:34 - 2013-09-21 01:34 - 00001020 _____ C:\Users\Public\Desktop\ALLConverter PRO.lnk
2013-09-21 01:34 - 2013-09-21 01:34 - 00001001 _____ C:\Users\Public\Desktop\ALL Media Server.lnk
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Users\szczepan\AppData\Local\ALLMediaServer
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Users\szczepan\AppData\Local\ALLConverter
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Program Files\ALLMediaServer
2013-09-21 01:34 - 2013-09-21 01:34 - 00000000 ____D C:\Program Files\ALLConverter PRO
2013-09-21 01:34 - 2012-07-28 11:53 - 00000904 _____ C:\Users\szczepan\Desktop\NapiProjekt.lnk
2013-09-21 01:34 - 2012-07-28 11:53 - 00000000 ____D C:\Program Files\NapiProjekt
2013-09-21 01:33 - 2012-07-28 11:53 - 00000941 _____ C:\Users\szczepan\Desktop\ALLPlayer.lnk
2013-09-21 01:33 - 2011-04-28 19:41 - 00000000 ____D C:\Users\szczepan\AppData\Local\ALLPlayer
2013-09-21 01:33 - 2010-10-30 21:50 - 00000000 ____D C:\Program Files\ALLPlayer
2013-09-17 14:18 - 2013-09-17 14:18 - 00072123 _____ C:\Users\szczepan\AppData\Local\CouponsMalibu.crx
2013-09-17 12:31 - 2013-09-17 12:31 - 00000577 _____ C:\Users\szczepan\Desktop\umowa-regwalbrzych (10).zip
2013-09-14 22:07 - 2013-09-14 22:07 - 00000000 ____D C:\Users\szczepan\AppData\Local\avgchrome
2013-09-14 14:05 - 2009-07-14 04:37 - 00000000 ____D C:\windows\Microsoft.NET
2013-09-14 12:33 - 2009-07-14 06:33 - 00422040 _____ C:\windows\system32\FNTCACHE.DAT
2013-09-14 12:29 - 2009-07-14 04:37 - 00000000 ____D C:\windows\system32\pl-PL
2013-09-13 23:30 - 2011-08-23 18:00 - 00000000 ____D C:\ProgramData\Microsoft Help

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-21 17:43

==================== End Of Log ============================