Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-01-2014 05
Ran by GRY (administrator) on ALFATROX on 12-01-2014 11:06:22
Running from D:\BUFFON 2\Gra
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(ASUSTeK Computer Inc.) C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
() C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\Tor\tor.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(ASUS) C:\Windows\AsScrPro.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(OldTimer Tools) D:\BUFFON 2\Gra\OTL.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [BackgroundContainer] - C:\Users\GRY\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll [319264 2013-10-15] (Conduit Ltd.) <===== ATTENTION
HKCU\...\Policies\system: [EnableLUA] 0
HKU\DAMIANO\...\Run: [NVIDIA nTune] - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe resetprofile
HKU\DAMIANO\...\Run: [KiesPDLR] - D:\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [21432 2012-06-08] ()
HKU\DAMIANO\...\Run: [KiesHelper] - D:\Samsung\Kies\KiesHelper.exe [958392 2012-06-08] (Samsung)
HKU\DAMIANO\...\Run: [Google Update] - C:\Users\DAMIANO\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2010-12-10] (Google Inc.)
HKU\DAMIANO\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [369200 2009-10-30] (DT Soft Ltd)
HKU\DAMIANO\...\Run: [ALLUpdate] - C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [870400 2009-11-11] ()
HKU\DAMIANO\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1815464 2014-01-09] (Valve Corporation)
HKU\DAMIANO\...\Run: [Gadu-Gadu 10] - C:\Program Files (x86)\Gadu-Gadu 10\gg.exe [13374048 2011-07-04] (GG Network S.A.)
HKU\DAMIANO\...\Run: [Spotify Web Helper] - C:\Users\DAMIANO\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1199000 2013-02-13] (Spotify Ltd)
HKU\DAMIANO\...\Run: [Spotify] - C:\Users\GRY\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-05] (Spotify Ltd)
HKU\DAMIANO\...\Policies\system: [EnableLUA] 0
HKU\Gość.ALFATROX\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [ ] ()
Startup: C:\Users\DAMIANO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk
ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://wyborcza.pl/0,0.html?p=139
URLSearchHook: HKLM-x32 - (No Name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - No File
URLSearchHook: HKLM-x32 - uTorrentControl_v6 Toolbar - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.)
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.golsearch.com/?q={searchTerms}&babsrc=SP_ss_Btisdt6&mntrId=08642225D3C05E28&affID=120695&tsp=4986
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.golsearch.com/?q={searchTerms}&babsrc=SP_ss_Btisdt6&mntrId=08642225D3C05E28&affID=120695&tsp=4986
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = 
SearchScopes: HKCU - {2E91281E-B6FB-277A-C09D-0B1D48F759FC} URL = http://www2.iesearch.com/s/?q={searchTerms}&iesrc={referrer:source?}
SearchScopes: HKCU - {3AED8853-2F69-4AE0-8E67-3EF39FE362C5} URL = http://tuvaro.com/ws/?source=e0c8d0ad&tbp=rbox&toolbarid=base&u=086443cf0000000000002225d3c05e28&q={searchTerms}
SearchScopes: HKCU - {530E573B-8374-4ED7-8C2B-B546C114EB4A} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {BFF15ED2-D80B-40BB-B07F-F30BB3EDABEA} URL = http://websearch.ask.com/redirect?client=ie&src=kw&tb=PF&o=15180&locale=en_US&apn_ptnrs=RX&apn_dtid=YYYYYYYYPL&apn_uid=5b3d0e74-6827-400a-a016-575f9ced82c5&apn_sauid=c16ae905-856f-4d2a-abda-10c4bd55e183&hpds=1&hdoi=2012-09-04&q={searchTerms}
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocnik logowania za pomocą identyfikatora Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: uTorrentControl_v6 Toolbar - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Skype Plug-In - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IEPluginBHO Class - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} -  No File
Toolbar: HKLM-x32 - No Name - {0124123D-61B4-456f-AF86-78C53A0790C5} -  No File
Toolbar: HKLM-x32 - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKLM-x32 - No Name - {687578b9-7132-4a7a-80e4-30ee31099e03} -  No File
Toolbar: HKLM-x32 - No Name - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} -  No File
Toolbar: HKLM-x32 - uTorrentControl_v6 Toolbar - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
Toolbar: HKCU - No Name - {96F454EA-9D38-474F-B504-56193E00C1A5} -  No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{BA40B7F6-62C7-40B6-9067-46CC7C2DEF40}: [NameServer]213.154.124.1,194.204.159.1

FireFox:
========
FF ProfilePath: C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default
FF user.js: detected! => C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX Player Plugin,version=1.0.0 - C:\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 - C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 - C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @wolfram.com/Mathematica - C:\Program Files (x86)\Common Files\Wolfram Research\Browser\8.0.4.2609412\npmathplugin.dll (Wolfram Research, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\searchplugins\BrowserProtect.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF Extension: YoutubeAdblocker - C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\Extensions\fgio-wvka@eyie-vzwh.net [2014-01-10]
FF Extension: No Name - C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\Extensions\staged [2013-10-25]
FF Extension: Transferuj.pl - C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\Extensions\trtransferfill@transferuj.pl [2013-10-23]
FF Extension: Transferuj.pl - C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\Extensions\trtransferfill@transferuj.pl.xpi [2013-10-23]
FF Extension: Address Bar Search - C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}.xpi [2013-10-25]
FF Extension: Adblock Plus - C:\Users\GRY\AppData\Roaming\Mozilla\Firefox\Profiles\xgjplo9v.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-02-02]
FF Extension: ArcaBit Ext. - C:\Program Files (x86)\Mozilla Firefox\extensions\arcabit@www.arcabit.pl [2013-04-13]
FF Extension: QuickStores-Toolbar - C:\Program Files (x86)\Mozilla Firefox\extensions\quickstores@quickstores.de [2013-05-13]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-11-12]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011-12-18]
FF HKLM-x32\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files (x86)\BetterSurf\ff
FF HKLM-x32\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files (x86)\Better-Surf\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@bettersurfplus.com] - C:\Program Files (x86)\BetterSurf\BetterSurfPlus\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta883.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta883\ff
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-11-12]

==================== Services (Whitelisted) =================

R2 Akamai; c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll [4569856 2013-07-01] (Akamai Technologies, Inc.)
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-07] ()
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 FastBootAgent; C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe [306232 2009-07-23] (ASUSTeK Computer Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [128928 2010-11-11] (Futuremark Corporation)
S2 HDDlife HDD Access service; C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [2050312 2013-09-13] (BinarySense, Inc.)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15122208 2013-10-18] (NVIDIA Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-13] ()
S3 WMZuneComm; d:\Zune Player\WMZuneComm.exe [306400 2011-08-05] (Microsoft Corporation)
S3 ZuneNetworkSvc; d:\Zune Player\ZuneNss.exe [8277728 2011-08-05] (Microsoft Corporation)
S3 ZuneWlanCfgSvc; d:\Zune Player\ZuneWlanCfgSvc.exe [467680 2011-08-05] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 ASMMAP64; C:\Program Files\ATKGFNEX\ASMMAP64.sys [14904 2007-07-24] ()
R1 aswFW; C:\Windows\System32\Drivers\aswFW.sys [141144 2012-03-07] (AVAST Software)
R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12368 2012-03-06] (ALWIL Software)
R0 aswNdis2; C:\Windows\System32\Drivers\aswNdis2.sys [258904 2012-03-07] (AVAST Software)
S3 athrusb; C:\Windows\System32\DRIVERS\athrxusb.sys [1075712 2008-07-29] (Atheros Communications, Inc.)
R3 DFX11_0; C:\Windows\System32\drivers\dfx11_0x64.sys [28008 2012-08-16] (Windows (R) Win 7 DDK provider)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 gHidPnp; C:\Windows\System32\Drivers\gHidPnp.Sys [25088 2009-06-27] ()
S3 gMouUsb; C:\Windows\System32\DRIVERS\gMouUsb.sys [14336 2009-06-25] ()
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 NVR0Dev; C:\Windows\nvoclk64.sys [40480 2008-08-18] (NVidia Corp.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1806400 2009-06-05] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2009-12-21] ()
S3 SRS_HDAL_Service; C:\Windows\System32\drivers\SRS_HDAL_amd64.sys [533280 2010-11-15] ()
S3 SRS_iWowPC_Service; C:\Windows\System32\drivers\srs_iWowPC_amd64.sys [51200 2008-11-17] ()
S3 Tosrfcom; No ImagePath
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
U3 arjwl8ao; C:\Windows\System32\Drivers\arjwl8ao.sys [0 ] (Microsoft Corporation)
S3 ABndis; system32\DRIVERS\abndis.sys [x]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
S3 esihdrv; \??\C:\Users\GRY\AppData\Local\Temp\esihdrv.sys [x]
S2 NVR0FLASHDev; \??\C:\Windows\nvflsh64.sys [x]
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-12 10:59 - 2014-01-12 10:59 - 00000000 ____D C:\FRST
2014-01-12 01:23 - 2014-01-12 01:23 - 00809136 ____N C:\Windows\Minidump\011214-35927-01.dmp
2014-01-11 22:17 - 2014-01-11 22:17 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2014-01-11 22:16 - 2014-01-11 22:16 - 00219248 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dum.dll
2014-01-11 22:15 - 2014-01-11 22:16 - 03223152 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dgl.dll
2014-01-11 22:14 - 2014-01-11 22:16 - 00063088 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2014-01-11 22:13 - 2014-01-11 22:16 - 00053360 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLib.dll
2014-01-11 22:13 - 2014-01-11 22:16 - 00050800 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmhgfs.dll
2014-01-11 22:13 - 2014-01-11 22:16 - 00034416 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLibJava.dll
2014-01-11 22:13 - 2014-01-11 22:15 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2014-01-11 22:13 - 2014-01-11 22:15 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2014-01-11 22:13 - 2014-01-11 22:15 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2014-01-11 22:13 - 2014-01-11 22:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2014-01-11 22:13 - 2014-01-11 22:15 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2014-01-11 22:13 - 2014-01-11 22:15 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\corpol.dll
2014-01-11 21:39 - 2014-01-11 21:39 - 00000000 ____D C:\ProgramData\Weskysoft
2014-01-11 21:38 - 2014-01-11 21:38 - 00000000 ____D C:\Users\GRY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2013
2014-01-11 18:02 - 2014-01-11 18:02 - 00000000 ____D C:\7074aef29cc27f5776
2014-01-11 17:17 - 2014-01-11 17:17 - 00000000 ____D C:\Users\GRY\Documents\Notesy programu OneNote
2014-01-11 14:45 - 2014-01-11 14:45 - 00000000 ____D C:\b0cb7a98a70f0c663c
2014-01-11 11:45 - 2014-01-11 15:11 - 00027936 _____ C:\Windows\IE11_main.log
2014-01-11 10:07 - 2014-01-11 10:07 - 00000000 ____D C:\Windows\CheckSur
2014-01-11 01:05 - 2014-01-11 01:05 - 00000000 ____D C:\Program Files (x86)\Universal Extractor
2014-01-11 00:25 - 2014-01-11 00:25 - 00002918 _____ C:\Windows\System32\Tasks\{EABE0527-1D0C-46CB-8906-27E0027EEA35}
2014-01-10 21:43 - 2014-01-10 21:43 - 00000000 ____D C:\Users\GRY\AppData\Roaming\BinarySense
2014-01-10 21:43 - 2014-01-10 21:43 - 00000000 ____D C:\ProgramData\Licenses
2014-01-10 21:43 - 2014-01-10 21:43 - 00000000 ____D C:\Program Files (x86)\BinarySense
2014-01-10 18:55 - 2014-01-10 18:55 - 00010460 _____ C:\Windows\DPINST.LOG
2014-01-10 15:56 - 2014-01-12 02:33 - 00054429 _____ C:\Windows\DirectX.log
2014-01-10 14:16 - 2014-01-10 14:16 - 00000000 ____D C:\ProgramData\YoutubeAdblocker
2014-01-10 14:16 - 2014-01-10 14:16 - 00000000 ____D C:\Program Files (x86)\YoutubeAdblocker
2014-01-10 14:15 - 2014-01-10 14:16 - 00000000 ____D C:\ProgramData\f97cc0b1e8744545
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\GRY\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\GRY\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\ProgramData\greatssaveR
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Program Files (x86)\greatssaveR
2014-01-10 14:13 - 2014-01-10 14:13 - 00000000 ____D C:\ProgramData\InstallMate
2014-01-10 14:02 - 2014-01-12 10:50 - 00004368 _____ C:\Windows\setupact.log
2014-01-10 14:02 - 2014-01-10 14:02 - 00000000 _____ C:\Windows\setuperr.log
2014-01-10 14:01 - 2014-01-11 18:18 - 00016570 _____ C:\Windows\PFRO.log
2014-01-10 13:51 - 2014-01-10 13:51 - 00131920 _____ C:\Users\GRY\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-10 13:39 - 2014-01-10 13:39 - 00003010 _____ C:\Windows\System32\Tasks\SlimCleaner Run
2014-01-10 13:12 - 2014-01-10 13:12 - 00002768 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-01-10 12:56 - 2014-01-10 12:56 - 00000000 ____D C:\Users\GRY\AppData\Local\SlimWare Utilities Inc
2014-01-10 12:00 - 2014-01-10 12:00 - 00002028 _____ C:\Users\Gość.ALFATROX\Desktop\Customize Fences.lnk
2014-01-10 11:59 - 2014-01-10 11:59 - 00131920 _____ C:\Users\Gość.ALFATROX\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-10 11:59 - 2014-01-10 11:59 - 00001423 _____ C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ___RD C:\Users\Gość.ALFATROX\Podcasts
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ___RD C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ___RD C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Stardock
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Logitech
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\ESET
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Adobe
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\ESET
2014-01-10 11:58 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX
2014-01-10 11:58 - 2014-01-10 11:58 - 00000020 ___SH C:\Users\Gość.ALFATROX\ntuser.ini
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Ustawienia lokalne
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Szablony
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Moje dokumenty
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Menu Start
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Documents\Moje wideo
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Documents\Moje obrazy
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Documents\Moja muzyka
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Dane aplikacji
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\AppData\Local\Historia
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\AppData\Local\Dane aplikacji
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\VirtualStore
2014-01-10 11:58 - 2012-06-16 02:10 - 00000000 ____D C:\Users\Gość.ALFATROX\Documents\Visual Studio 2010
2014-01-10 11:58 - 2011-06-16 15:19 - 00000000 ____D C:\Users\Gość.ALFATROX\Documents\Visual Studio 2008
2014-01-10 11:58 - 2010-01-23 20:15 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Macromedia
2014-01-10 11:58 - 2009-12-23 16:27 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-01-10 11:58 - 2009-12-22 16:01 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\Microsoft Help
2014-01-10 11:58 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-10 11:58 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-09 23:02 - 2014-01-09 23:02 - 00000000 ____D C:\Program Files\Windows Kits
2014-01-09 19:36 - 2014-01-11 18:14 - 00000790 _____ C:\0.bak
2014-01-09 19:17 - 2014-01-09 19:17 - 00000000 ____D C:\Users\GRY\AppData\Roaming\SpeedyPC Software
2014-01-09 19:17 - 2014-01-09 19:17 - 00000000 ____D C:\Users\GRY\AppData\Roaming\DriverCure
2014-01-09 19:16 - 2014-01-09 19:37 - 00000000 ____D C:\ProgramData\SpeedyPC Software
2014-01-09 15:34 - 2014-01-09 15:34 - 00003644 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2348062116-2839357597-3823208277-1000Core1cf0d47dd8ac677
2014-01-09 15:34 - 2014-01-09 15:34 - 00001014 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2348062116-2839357597-3823208277-1000Core1cf0d47dd8ac677.job
2014-01-09 12:11 - 2014-01-09 12:11 - 00000000 ____D C:\81b3b7cff8fbf70a79ce
2014-01-09 00:07 - 2014-01-09 00:07 - 00001914 _____ C:\Bug.txt
2014-01-09 00:07 - 2014-01-09 00:07 - 00000000 ____D C:\ProgramData\Oracle
2014-01-09 00:07 - 2014-01-09 00:07 - 00000000 ____D C:\32788R22FWJFW
2014-01-09 00:06 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-09 00:06 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-09 00:06 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-09 00:06 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-09 00:03 - 2014-01-09 00:06 - 00004746 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2014-01-08 23:43 - 2014-01-08 23:43 - 00003152 _____ C:\Windows\System32\Tasks\{D8C55C2E-9D58-49C9-AD35-D555B5B8026C}
2013-12-19 00:52 - 2014-01-04 00:52 - 00000073 _____ C:\Users\GRY\AppData\Roaming\WB.CFG
2013-12-18 22:26 - 2014-01-10 02:28 - 00000749 _____ C:\Users\GRY\Desktop\Cookie Clicker.txt

==================== One Month Modified Files and Folders =======

2014-01-12 10:59 - 2014-01-12 10:59 - 00000000 ____D C:\FRST
2014-01-12 10:58 - 2009-07-14 05:45 - 00016112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-12 10:58 - 2009-07-14 05:45 - 00016112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-12 10:57 - 2009-08-03 20:55 - 03383932 _____ C:\Windows\system32\perfh015.dat
2014-01-12 10:57 - 2009-08-03 20:55 - 01095026 _____ C:\Windows\system32\perfc015.dat
2014-01-12 10:57 - 2009-07-14 06:13 - 00006632 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-12 10:50 - 2014-01-10 14:02 - 00004368 _____ C:\Windows\setupact.log
2014-01-12 10:50 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-12 10:49 - 2013-05-13 16:09 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-12 10:47 - 2013-12-11 23:21 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-12 02:33 - 2014-01-10 15:56 - 00054429 _____ C:\Windows\DirectX.log
2014-01-12 02:12 - 2010-12-10 21:09 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2348062116-2839357597-3823208277-1000UA.job
2014-01-12 01:52 - 2009-12-20 14:35 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-12 01:24 - 2010-05-11 22:44 - 00000000 ____D C:\Windows\Minidump
2014-01-12 01:23 - 2014-01-12 01:23 - 00809136 ____N C:\Windows\Minidump\011214-35927-01.dmp
2014-01-12 01:23 - 2009-12-22 19:10 - 01401726 _____ C:\Windows\WindowsUpdate.log
2014-01-11 23:56 - 2012-09-27 23:43 - 00000000 ____D C:\Users\GRY\AppData\Local\CrashDumps
2014-01-11 22:17 - 2014-01-11 22:17 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2014-01-11 22:16 - 2014-01-11 22:16 - 00219248 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dum.dll
2014-01-11 22:16 - 2014-01-11 22:15 - 03223152 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dgl.dll
2014-01-11 22:16 - 2014-01-11 22:14 - 00063088 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2014-01-11 22:16 - 2014-01-11 22:13 - 00053360 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLib.dll
2014-01-11 22:16 - 2014-01-11 22:13 - 00050800 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmhgfs.dll
2014-01-11 22:16 - 2014-01-11 22:13 - 00034416 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLibJava.dll
2014-01-11 22:15 - 2014-01-11 22:13 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2014-01-11 22:15 - 2014-01-11 22:13 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2014-01-11 22:15 - 2014-01-11 22:13 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2014-01-11 22:15 - 2014-01-11 22:13 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2014-01-11 22:15 - 2014-01-11 22:13 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2014-01-11 22:15 - 2014-01-11 22:13 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\corpol.dll
2014-01-11 21:39 - 2014-01-11 21:39 - 00000000 ____D C:\ProgramData\Weskysoft
2014-01-11 21:38 - 2014-01-11 21:38 - 00000000 ____D C:\Users\GRY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2013
2014-01-11 18:18 - 2014-01-10 14:01 - 00016570 _____ C:\Windows\PFRO.log
2014-01-11 18:16 - 2012-09-27 02:01 - 00000000 ____D C:\Users\GRY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-11 18:16 - 2011-09-08 18:19 - 00000000 ____D C:\Windows\pss
2014-01-11 18:14 - 2014-01-09 19:36 - 00000790 _____ C:\0.bak
2014-01-11 18:02 - 2014-01-11 18:02 - 00000000 ____D C:\7074aef29cc27f5776
2014-01-11 17:17 - 2014-01-11 17:17 - 00000000 ____D C:\Users\GRY\Documents\Notesy programu OneNote
2014-01-11 16:08 - 2013-07-28 16:32 - 00003976 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{31A98AEC-9E0E-4AEC-9618-289D0A673D54}
2014-01-11 15:11 - 2014-01-11 11:45 - 00027936 _____ C:\Windows\IE11_main.log
2014-01-11 15:07 - 2013-01-03 01:51 - 00000000 ____D C:\Users\GRY\AppData\Local\Google
2014-01-11 15:07 - 2012-09-03 21:37 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-11 14:45 - 2014-01-11 14:45 - 00000000 ____D C:\b0cb7a98a70f0c663c
2014-01-11 14:30 - 2010-08-31 10:23 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-11 13:02 - 2011-11-15 23:02 - 00000000 ____D C:\Users\DAMIANO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2014-01-11 13:02 - 2009-12-20 22:48 - 00000000 ___RD C:\Users\DAMIANO\Desktop\Skróty
2014-01-11 10:34 - 2010-01-20 19:33 - 00000000 ____D C:\Program Files (x86)\Windows Live
2014-01-11 10:07 - 2014-01-11 10:07 - 00000000 ____D C:\Windows\CheckSur
2014-01-11 01:05 - 2014-01-11 01:05 - 00000000 ____D C:\Program Files (x86)\Universal Extractor
2014-01-11 00:25 - 2014-01-11 00:25 - 00002918 _____ C:\Windows\System32\Tasks\{EABE0527-1D0C-46CB-8906-27E0027EEA35}
2014-01-10 23:07 - 2011-11-04 00:30 - 00000687 _____ C:\0
2014-01-10 21:43 - 2014-01-10 21:43 - 00000000 ____D C:\Users\GRY\AppData\Roaming\BinarySense
2014-01-10 21:43 - 2014-01-10 21:43 - 00000000 ____D C:\ProgramData\Licenses
2014-01-10 21:43 - 2014-01-10 21:43 - 00000000 ____D C:\Program Files (x86)\BinarySense
2014-01-10 19:51 - 2009-07-14 06:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-10 18:56 - 2013-05-20 09:52 - 00000000 ____D C:\Users\GRY\AppData\Local\SwvUpdater
2014-01-10 18:55 - 2014-01-10 18:55 - 00010460 _____ C:\Windows\DPINST.LOG
2014-01-10 17:52 - 2013-05-20 09:52 - 00000282 _____ C:\Windows\Tasks\Dealply.job
2014-01-10 14:18 - 2013-08-26 21:52 - 00000000 ____D C:\Users\GRY\Desktop\Port Forwards
2014-01-10 14:16 - 2014-01-10 14:16 - 00000000 ____D C:\ProgramData\YoutubeAdblocker
2014-01-10 14:16 - 2014-01-10 14:16 - 00000000 ____D C:\Program Files (x86)\YoutubeAdblocker
2014-01-10 14:16 - 2014-01-10 14:15 - 00000000 ____D C:\ProgramData\f97cc0b1e8744545
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\GRY\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\GRY\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Torch
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Comodo
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\ProgramData\greatssaveR
2014-01-10 14:15 - 2014-01-10 14:15 - 00000000 ____D C:\Program Files (x86)\greatssaveR
2014-01-10 14:15 - 2010-03-21 01:22 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\Google
2014-01-10 14:13 - 2014-01-10 14:13 - 00000000 ____D C:\ProgramData\InstallMate
2014-01-10 14:02 - 2014-01-10 14:02 - 00000000 _____ C:\Windows\setuperr.log
2014-01-10 13:51 - 2014-01-10 13:51 - 00131920 _____ C:\Users\GRY\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-10 13:46 - 2012-09-04 09:39 - 00000000 ____D C:\Qoobox
2014-01-10 13:46 - 2009-07-29 07:03 - 00000000 ____D C:\Windows\Panther
2014-01-10 13:43 - 2013-02-08 14:50 - 00003072 _____ C:\Windows\System32\Tasks\GoforFilesUpdate
2014-01-10 13:41 - 2011-07-01 18:26 - 00000000 ____D C:\Program Files (x86)\SlimCleaner
2014-01-10 13:39 - 2014-01-10 13:39 - 00003010 _____ C:\Windows\System32\Tasks\SlimCleaner Run
2014-01-10 13:38 - 2012-12-13 00:55 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2014-01-10 13:35 - 2013-02-08 20:36 - 00000000 ____D C:\Users\GRY\AppData\Roaming\uTorrent
2014-01-10 13:35 - 2012-10-02 09:10 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-10 13:23 - 2013-02-18 13:36 - 00000000 ____D C:\Users\GRY\AppData\Roaming\Spotify
2014-01-10 13:12 - 2014-01-10 13:12 - 00002768 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-01-10 13:12 - 2012-03-19 16:02 - 00000000 ____D C:\Program Files\CCleaner
2014-01-10 12:56 - 2014-01-10 12:56 - 00000000 ____D C:\Users\GRY\AppData\Local\SlimWare Utilities Inc
2014-01-10 12:00 - 2014-01-10 12:00 - 00002028 _____ C:\Users\Gość.ALFATROX\Desktop\Customize Fences.lnk
2014-01-10 11:59 - 2014-01-10 11:59 - 00131920 _____ C:\Users\Gość.ALFATROX\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-10 11:59 - 2014-01-10 11:59 - 00001423 _____ C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ___RD C:\Users\Gość.ALFATROX\Podcasts
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ___RD C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ___RD C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Stardock
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Logitech
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\ESET
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Roaming\Adobe
2014-01-10 11:59 - 2014-01-10 11:59 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\ESET
2014-01-10 11:59 - 2014-01-10 11:58 - 00000000 ____D C:\Users\Gość.ALFATROX
2014-01-10 11:58 - 2014-01-10 11:58 - 00000020 ___SH C:\Users\Gość.ALFATROX\ntuser.ini
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Ustawienia lokalne
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Szablony
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Moje dokumenty
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Menu Start
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Documents\Moje wideo
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Documents\Moje obrazy
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Documents\Moja muzyka
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\Dane aplikacji
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\AppData\Local\Historia
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 _SHDL C:\Users\Gość.ALFATROX\AppData\Local\Dane aplikacji
2014-01-10 11:58 - 2014-01-10 11:58 - 00000000 ____D C:\Users\Gość.ALFATROX\AppData\Local\VirtualStore
2014-01-10 02:28 - 2013-12-18 22:26 - 00000749 _____ C:\Users\GRY\Desktop\Cookie Clicker.txt
2014-01-09 23:19 - 2012-09-27 02:00 - 00000000 ____D C:\Users\GRY\AppData\Local\VirtualStore
2014-01-09 23:02 - 2014-01-09 23:02 - 00000000 ____D C:\Program Files\Windows Kits
2014-01-09 19:37 - 2014-01-09 19:16 - 00000000 ____D C:\ProgramData\SpeedyPC Software
2014-01-09 19:36 - 2012-09-27 02:00 - 00000000 ____D C:\Users\GRY
2014-01-09 19:36 - 2011-03-13 12:07 - 00000000 ____D C:\Users\DAMIANO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RockMelt
2014-01-09 19:36 - 2009-12-20 21:00 - 00000000 ____D C:\Users\DAMIANO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 19:36 - 2009-12-20 13:46 - 00000000 ___RD C:\Users\DAMIANO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-09 19:34 - 2011-02-02 00:26 - 00003360 _____ C:\Users\DAMIANO\Desktop\Photo Editor_ Online Photo Editor_ Photoshop Express _ Photoshop.lnk
2014-01-09 19:17 - 2014-01-09 19:17 - 00000000 ____D C:\Users\GRY\AppData\Roaming\SpeedyPC Software
2014-01-09 19:17 - 2014-01-09 19:17 - 00000000 ____D C:\Users\GRY\AppData\Roaming\DriverCure
2014-01-09 15:35 - 2010-03-16 23:19 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\CrashDumps
2014-01-09 15:34 - 2014-01-09 15:34 - 00003644 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2348062116-2839357597-3823208277-1000Core1cf0d47dd8ac677
2014-01-09 15:34 - 2014-01-09 15:34 - 00001014 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2348062116-2839357597-3823208277-1000Core1cf0d47dd8ac677.job
2014-01-09 15:34 - 2009-12-21 16:09 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\Mozilla
2014-01-09 15:33 - 2013-02-13 19:57 - 00000000 ____D C:\Users\DAMIANO\AppData\Local\Spotify
2014-01-09 15:33 - 2013-02-13 19:56 - 00000000 ____D C:\Users\DAMIANO\AppData\Roaming\Spotify
2014-01-09 13:45 - 2009-12-21 16:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-09 13:43 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-09 12:11 - 2014-01-09 12:11 - 00000000 ____D C:\81b3b7cff8fbf70a79ce
2014-01-09 10:47 - 2013-02-18 13:36 - 00000000 ____D C:\Users\GRY\AppData\Local\Spotify
2014-01-09 00:07 - 2014-01-09 00:07 - 00001914 _____ C:\Bug.txt
2014-01-09 00:07 - 2014-01-09 00:07 - 00000000 ____D C:\ProgramData\Oracle
2014-01-09 00:07 - 2014-01-09 00:07 - 00000000 ____D C:\32788R22FWJFW
2014-01-09 00:07 - 2009-12-24 19:22 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.execf
2014-01-09 00:06 - 2014-01-09 00:03 - 00004746 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2014-01-09 00:06 - 2013-06-26 16:27 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-08 23:54 - 2012-10-16 00:04 - 00000000 ____D C:\Users\GRY\AppData\Local\Adobe
2014-01-08 23:54 - 2012-09-27 02:03 - 00000000 ____D C:\Users\GRY\AppData\Roaming\Adobe
2014-01-08 23:43 - 2014-01-08 23:43 - 00003152 _____ C:\Windows\System32\Tasks\{D8C55C2E-9D58-49C9-AD35-D555B5B8026C}
2014-01-08 23:12 - 2009-12-20 13:44 - 00131920 _____ C:\Users\DAMIANO\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-08 22:46 - 2012-09-27 09:15 - 00000000 ____D C:\Users\GRY\AppData\Roaming\DAEMON Tools Lite
2014-01-05 10:07 - 2013-08-26 20:50 - 00000000 ____D C:\Windows\system32\MRT
2014-01-05 07:42 - 2012-05-06 19:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-05 07:10 - 2009-12-20 16:05 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-04 00:52 - 2013-12-19 00:52 - 00000073 _____ C:\Users\GRY\AppData\Roaming\WB.CFG
2014-01-03 22:37 - 2012-09-27 02:05 - 00000000 ____D C:\Users\GRY\Documents\My Games
2013-12-23 23:48 - 2013-10-16 22:41 - 00000000 ____D C:\ProgramData\Origin
2013-12-22 13:08 - 2013-04-13 08:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

Files to move or delete:
====================
C:\Users\GRY\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll
C:\Users\DAMIANO\ffdshow.reg
C:\Users\DAMIANO\ffdshow2.reg


Some content of TEMP:
====================
C:\Users\DAMIANO\AppData\Local\temp\Uninst.exe
C:\Users\GRY\AppData\Local\temp\htmlayout.dll
C:\Users\GRY\AppData\Local\temp\Setup1.exe
C:\Users\GRY\AppData\Local\temp\Tsu466B602F.dll
C:\Users\GRY\AppData\Local\temp\uninst1.exe
C:\Users\GRY\AppData\Local\temp\uninstall732253.exe
C:\Users\GRY\AppData\Local\temp\uninstall740599.exe
C:\Users\GRY\AppData\Local\temp\uninstall740677.exe
C:\Users\GRY\AppData\Local\temp\UpdUninstall.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-10 21:10

==================== End Of Log ============================