Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014
Ran by Łukasz (administrator) on ŁUKASZ-KOMPUTER on 29-01-2014 14:45:58
Running from C:\Users\Łukasz\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11057768 2010-07-06] (Realtek Semiconductor)
HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [fssui] - C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe [454000 2009-02-06] (Microsoft Corporation)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [4090824 2012-11-16] (ESET)
HKLM-x32\...\Run: [iPlusManager] - C:\Program Files (x86)\iPlus CDMA\iPlusChecker.exe [406848 2011-01-26] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.pl/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.adax.pl/witamy
BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files (x86)\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{74C53515-99F2-4DED-B58F-6DC19BA8DAE2}: [NameServer]8.8.8.8,8.8.4.4

FireFox:
========
FF ProfilePath: C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\ibpkfzd6.default-1364481946243
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1206147.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8064.0206 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Łukasz\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Extension: British English Dictionary (Updated) - C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\ibpkfzd6.default-1364481946243\Extensions\en-gb@flyingtophat.co.uk [2013-10-22]
FF Extension: Adblock Plus - C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\ibpkfzd6.default-1364481946243\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-03-28]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-08-09]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-08-09]

==================== Services (Whitelisted) =================

R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [913184 2012-11-16] (ESET)

==================== Drivers (Whitelisted) ====================

S3 adusbser; C:\Windows\System32\DRIVERS\adusbser.sys [145024 2008-01-02] (AnyDATA Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [209808 2012-11-16] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [148528 2012-03-14] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [137144 2012-03-14] (ESET)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-07-18] ()
S3 massfilter_lte; C:\Windows\System32\DRIVERS\massfilter_LTE.sys [18456 2013-04-09] (HandSet Incorporated)
R2 WCMVCAM; C:\Windows\System32\DRIVERS\wcmvcam64.sys [1071032 2012-04-15] (Windows (R) Win 7 DDK provider)
S3 zgdcat; C:\Windows\System32\DRIVERS\zgdcat.sys [130200 2013-04-09] (ZTE Incorporated)
S3 zgdcdiag; C:\Windows\System32\DRIVERS\zgdcdiag.sys [130200 2013-04-09] (ZTE Incorporated)
S3 zgdcmdm; C:\Windows\System32\DRIVERS\zgdcmdm.sys [130200 2013-04-09] (ZTE Incorporated)
S3 zgdcnet; C:\Windows\System32\DRIVERS\zgdcnet.sys [169496 2013-04-09] (ZTE Incorporated)
S3 zgdcnmea; C:\Windows\System32\DRIVERS\zgdcnmea.sys [130200 2013-04-09] (ZTE Incorporated)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-29 14:40 - 2014-01-29 14:41 - 00448512 _____ (OldTimer Tools) C:\Users\Łukasz\Desktop\TFC.exe
2014-01-29 14:32 - 2014-01-29 14:34 - 00000000 ____D C:\AdwCleaner
2014-01-29 14:31 - 2014-01-29 14:31 - 01166132 _____ C:\Users\Łukasz\Desktop\adwcleaner.exe
2014-01-29 13:50 - 2014-01-29 14:28 - 00000000 ____D C:\Users\Łukasz\Desktop\skany i logi
2014-01-29 13:47 - 2014-01-29 13:49 - 00003304 _____ C:\Users\Łukasz\Desktop\FSS.txt
2014-01-29 13:39 - 2014-01-29 13:39 - 00019724 _____ C:\Users\Łukasz\Desktop\Addition.txt
2014-01-29 13:37 - 2014-01-29 14:45 - 00009587 _____ C:\Users\Łukasz\Desktop\FRST.txt
2014-01-29 13:33 - 2014-01-29 14:45 - 00000000 ____D C:\FRST
2014-01-29 13:32 - 2014-01-29 13:33 - 00361185 _____ (Farbar) C:\Users\Łukasz\Desktop\FSS.exe
2014-01-29 13:31 - 2014-01-29 13:32 - 02079744 _____ (Farbar) C:\Users\Łukasz\Desktop\FRST64.exe
2014-01-27 09:41 - 2014-01-27 09:41 - 01059840 _____ C:\Users\Łukasz\Downloads\MicrosoftFixit50981(1).msi
2014-01-27 09:40 - 2014-01-27 09:41 - 01059840 _____ C:\Users\Łukasz\Downloads\MicrosoftFixit50981.msi
2014-01-26 13:29 - 2014-01-26 13:29 - 00000000 ____D C:\_OTL
2014-01-26 12:34 - 2014-01-26 12:34 - 00602112 _____ (OldTimer Tools) C:\Users\Łukasz\Desktop\OTL.exe
2014-01-26 12:22 - 2014-01-26 12:22 - 00000314 _____ C:\Windows\PFRO.log
2014-01-26 12:04 - 2014-01-26 12:04 - 00062654 _____ C:\Users\Łukasz\Desktop\Extras.Txt
2014-01-26 12:00 - 2014-01-26 12:00 - 00071818 _____ C:\Users\Łukasz\Desktop\OTL.Txt
2014-01-22 13:41 - 2014-01-22 13:41 - 00000443 _____ C:\Users\Łukasz\Documents\życzenia noworoczne ;d.txt
2014-01-20 22:12 - 2014-01-20 22:12 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Spotify
2014-01-15 15:42 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 15:41 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:41 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:41 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:41 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:41 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:41 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:41 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 01:31 - 2014-01-15 01:35 - 00000000 ____D C:\ProgramData\Recovery
2014-01-14 18:01 - 2014-01-14 18:01 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-14 18:01 - 2014-01-14 18:01 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Malwarebytes
2014-01-14 18:01 - 2014-01-14 18:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-14 18:01 - 2014-01-14 18:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-14 18:01 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-14 18:00 - 2014-01-14 18:00 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Łukasz\Downloads\Malwarebytes Anti-Malware Free 1.75.0.1300.exe
2014-01-14 17:23 - 2014-01-14 17:23 - 00003380 _____ C:\Windows\System32\Tasks\Odkurzacz
2014-01-14 17:23 - 2014-01-14 17:23 - 00001059 _____ C:\Users\Łukasz\Desktop\Odkurzacz.lnk
2014-01-14 17:22 - 2014-01-14 17:23 - 00000000 ____D C:\Program Files (x86)\Odkurzacz
2014-01-14 16:37 - 2014-01-14 16:37 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-01-14 16:37 - 2014-01-14 16:37 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll
2014-01-14 16:37 - 2014-01-14 16:37 - 00113543 _____ C:\Windows\SysWOW64\slmgr.vbs
2014-01-14 16:37 - 2014-01-14 16:37 - 00002048 _____ C:\Windows\SysWOW64\winver.exe
2014-01-14 16:37 - 2014-01-14 16:37 - 00001536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
2014-01-14 15:55 - 2014-01-14 15:55 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\GHISLER
2014-01-14 15:53 - 2014-01-14 15:55 - 04329488 _____ (Ghisler Software GmbH) C:\Users\Łukasz\Downloads\tcm801x64.exe
2014-01-05 14:37 - 2014-01-05 14:37 - 00001717 _____ C:\Users\Łukasz\Desktop\Minecraft — skrót.lnk

==================== One Month Modified Files and Folders =======

2014-01-29 14:46 - 2014-01-29 13:37 - 00009587 _____ C:\Users\Łukasz\Desktop\FRST.txt
2014-01-29 14:45 - 2014-01-29 13:33 - 00000000 ____D C:\FRST
2014-01-29 14:41 - 2014-01-29 14:40 - 00448512 _____ (OldTimer Tools) C:\Users\Łukasz\Desktop\TFC.exe
2014-01-29 14:40 - 2009-07-14 18:55 - 00711280 _____ C:\Windows\system32\perfh015.dat
2014-01-29 14:40 - 2009-07-14 18:55 - 00140162 _____ C:\Windows\system32\perfc015.dat
2014-01-29 14:40 - 2009-07-14 06:13 - 01577080 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-29 14:36 - 2013-04-03 22:37 - 00051090 _____ C:\Windows\setupact.log
2014-01-29 14:36 - 2012-12-21 15:42 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2014-01-29 14:36 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-29 14:35 - 2009-07-14 05:45 - 00018064 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 14:35 - 2009-07-14 05:45 - 00018064 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 14:34 - 2014-01-29 14:32 - 00000000 ____D C:\AdwCleaner
2014-01-29 14:33 - 2012-03-02 16:12 - 00000000 ____D C:\Users\Łukasz
2014-01-29 14:31 - 2014-01-29 14:31 - 01166132 _____ C:\Users\Łukasz\Desktop\adwcleaner.exe
2014-01-29 14:28 - 2014-01-29 13:50 - 00000000 ____D C:\Users\Łukasz\Desktop\skany i logi
2014-01-29 13:56 - 2013-10-12 17:40 - 00000376 _____ C:\Windows\Tasks\WpsUpdateTask_Łukasz.job
2014-01-29 13:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2014-01-29 13:49 - 2014-01-29 13:47 - 00003304 _____ C:\Users\Łukasz\Desktop\FSS.txt
2014-01-29 13:39 - 2014-01-29 13:39 - 00019724 _____ C:\Users\Łukasz\Desktop\Addition.txt
2014-01-29 13:33 - 2014-01-29 13:32 - 00361185 _____ (Farbar) C:\Users\Łukasz\Desktop\FSS.exe
2014-01-29 13:32 - 2014-01-29 13:31 - 02079744 _____ (Farbar) C:\Users\Łukasz\Desktop\FRST64.exe
2014-01-29 11:54 - 2012-04-19 14:16 - 00003998 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{45F08B78-0121-479F-B4B9-3DE8424E7A62}
2014-01-29 08:55 - 2012-03-02 16:09 - 01544748 _____ C:\Windows\WindowsUpdate.log
2014-01-28 21:19 - 2012-03-05 16:35 - 00000000 ____D C:\Users\Łukasz\AppData\Local\CrashDumps
2014-01-28 21:17 - 2013-01-13 09:45 - 00000439 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2014-01-27 09:41 - 2014-01-27 09:41 - 01059840 _____ C:\Users\Łukasz\Downloads\MicrosoftFixit50981(1).msi
2014-01-27 09:41 - 2014-01-27 09:40 - 01059840 _____ C:\Users\Łukasz\Downloads\MicrosoftFixit50981.msi
2014-01-26 14:40 - 2012-03-02 19:54 - 00000000 ____D C:\Windows\System32\Tasks\Games
2014-01-26 13:29 - 2014-01-26 13:29 - 00000000 ____D C:\_OTL
2014-01-26 12:34 - 2014-01-26 12:34 - 00602112 _____ (OldTimer Tools) C:\Users\Łukasz\Desktop\OTL.exe
2014-01-26 12:22 - 2014-01-26 12:22 - 00000314 _____ C:\Windows\PFRO.log
2014-01-26 12:04 - 2014-01-26 12:04 - 00062654 _____ C:\Users\Łukasz\Desktop\Extras.Txt
2014-01-26 12:00 - 2014-01-26 12:00 - 00071818 _____ C:\Users\Łukasz\Desktop\OTL.Txt
2014-01-25 20:34 - 2012-03-02 16:13 - 00000000 ___RD C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-22 13:41 - 2014-01-22 13:41 - 00000443 _____ C:\Users\Łukasz\Documents\życzenia noworoczne ;d.txt
2014-01-20 22:12 - 2014-01-20 22:12 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Spotify
2014-01-18 11:45 - 2013-01-20 12:18 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-18 11:45 - 2013-01-20 12:18 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-18 08:54 - 2013-01-20 12:18 - 00004056 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-18 08:54 - 2013-01-20 12:18 - 00003804 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-16 15:37 - 2009-07-14 05:45 - 00319736 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 20:20 - 2013-07-14 14:51 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 20:16 - 2012-12-22 21:06 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 01:35 - 2014-01-15 01:31 - 00000000 ____D C:\ProgramData\Recovery
2014-01-14 18:06 - 2013-04-01 12:48 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-14 18:01 - 2014-01-14 18:01 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-14 18:01 - 2014-01-14 18:01 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Malwarebytes
2014-01-14 18:01 - 2014-01-14 18:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-14 18:01 - 2014-01-14 18:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-14 18:00 - 2014-01-14 18:00 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Łukasz\Downloads\Malwarebytes Anti-Malware Free 1.75.0.1300.exe
2014-01-14 17:36 - 2013-09-07 10:19 - 00000000 ____D C:\Program Files (x86)\iPlus CDMA
2014-01-14 17:36 - 2013-08-28 11:05 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\.minecraft
2014-01-14 17:36 - 2013-08-09 16:32 - 00000000 ____D C:\Program Files (x86)\Plus Internet
2014-01-14 17:32 - 2013-04-01 12:48 - 00003870 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-14 17:28 - 2012-12-26 13:18 - 00000000 ____D C:\Windows\Downloaded Installations
2014-01-14 17:28 - 2012-03-06 15:08 - 00000000 ____D C:\ProgramData\Skype
2014-01-14 17:27 - 2013-10-07 17:59 - 00000000 ____D C:\Users\Łukasz\Desktop\iPhone tapety
2014-01-14 17:23 - 2014-01-14 17:23 - 00003380 _____ C:\Windows\System32\Tasks\Odkurzacz
2014-01-14 17:23 - 2014-01-14 17:23 - 00001059 _____ C:\Users\Łukasz\Desktop\Odkurzacz.lnk
2014-01-14 17:23 - 2014-01-14 17:22 - 00000000 ____D C:\Program Files (x86)\Odkurzacz
2014-01-14 16:37 - 2014-01-14 16:37 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-01-14 16:37 - 2014-01-14 16:37 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll
2014-01-14 16:37 - 2014-01-14 16:37 - 00113543 _____ C:\Windows\SysWOW64\slmgr.vbs
2014-01-14 16:37 - 2014-01-14 16:37 - 00002048 _____ C:\Windows\SysWOW64\winver.exe
2014-01-14 16:37 - 2014-01-14 16:37 - 00001536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
2014-01-14 15:55 - 2014-01-14 15:55 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\GHISLER
2014-01-14 15:55 - 2014-01-14 15:53 - 04329488 _____ (Ghisler Software GmbH) C:\Users\Łukasz\Downloads\tcm801x64.exe
2014-01-09 15:56 - 2013-12-20 15:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-09 15:56 - 2013-10-27 16:36 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-09 15:56 - 2013-10-27 16:36 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-09 15:56 - 2013-10-27 16:36 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-09 15:56 - 2013-10-27 16:36 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-09 15:56 - 2013-10-27 16:36 - 00000000 ____D C:\Users\Gość
2014-01-09 15:56 - 2013-09-07 10:21 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\iPlus CDMA
2014-01-09 15:56 - 2013-08-09 16:38 - 00000000 ____D C:\Program Files (x86)\Plus Internet Monitor
2014-01-09 15:56 - 2013-08-09 16:34 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Plus Internet
2014-01-09 15:56 - 2013-05-12 08:17 - 00000000 ____D C:\Program Files\Speccy
2014-01-09 15:56 - 2013-04-06 08:56 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 15:56 - 2013-02-10 10:08 - 00000000 ____D C:\Windows\ShellNew
2014-01-09 15:56 - 2013-02-10 10:08 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-09 15:56 - 2013-01-13 09:18 - 00000000 ____D C:\Users\Łukasz\AppData\Local\Samsung
2014-01-09 15:56 - 2013-01-13 09:01 - 00000000 ____D C:\Users\Łukasz\AppData\Local\Downloaded Installations
2014-01-09 15:56 - 2013-01-07 18:00 - 00000000 ____D C:\ProgramData\GG
2014-01-09 15:56 - 2012-12-25 00:02 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2014-01-09 15:56 - 2012-12-23 11:19 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-09 15:56 - 2012-12-23 11:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-09 15:56 - 2012-12-22 14:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-09 15:56 - 2012-12-21 17:54 - 00000000 ____D C:\Windows\system32\Macromed
2014-01-09 15:56 - 2012-12-21 15:30 - 00000000 ____D C:\Program Files\Broadcom
2014-01-09 15:56 - 2012-11-26 16:49 - 00000000 ____D C:\Users\Łukasz\Documents\Euro Truck Simulator 2
2014-01-09 15:56 - 2012-11-26 16:46 - 00000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2
2014-01-09 15:56 - 2012-03-08 17:38 - 00000000 ____D C:\Users\Łukasz\Desktop\Filmy
2014-01-09 15:56 - 2012-03-06 18:29 - 00000000 ____D C:\Users\Łukasz\Desktop\gry
2014-01-09 15:56 - 2009-07-14 18:55 - 00000000 ____D C:\Windows\SysWOW64\pl
2014-01-09 15:56 - 2009-07-14 18:55 - 00000000 ____D C:\Windows\system32\pl
2014-01-09 15:56 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2014-01-09 15:56 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-09 15:56 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker
2014-01-09 15:56 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2014-01-09 15:56 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\uk-UA
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\th-TH
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-CS
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sppui
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sl-SI
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ro-RO
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ras
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\lv-LV
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\lt-LT
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\hr-HR
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\he-IL
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\et-EE
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\bg-BG
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\ar-SA
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-HK
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\uk-UA
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\tr-TR
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\th-TH
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sppui
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\SMI
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sl-SI
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sk-SK
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Setup
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ro-RO
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ras
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\oobe
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\migwiz
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\lv-LV
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\lt-LT
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ias
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\hr-HR
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\he-IL
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\et-EE
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\bg-BG
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\ar-SA
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\servicing
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\schemas
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\L2Schemas
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Services
2014-01-09 15:56 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-09 15:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2014-01-05 14:37 - 2014-01-05 14:37 - 00001717 _____ C:\Users\Łukasz\Desktop\Minecraft — skrót.lnk

Files to move or delete:
====================
C:\ProgramData\D__programy_WebcamMax_wcmmon.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-29 12:31

==================== End Of Log ============================