Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-02-2014 03
Ran by Mateusz (administrator) on AUTO on 10-02-2014 12:03:07
Running from H:\
Microsoft Windows 7 Ultimate  (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\helppane.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ProfilerU] - C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [227840 2010-07-29] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [123392 2010-07-29] (Saitek)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7539232 2009-06-09] (Realtek Semiconductor)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [340520 2012-06-10] (Kaspersky Lab)
HKLM\...\Run: [hpqSRMon] - C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [OM2_Monitor] - C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe [54672 2009-11-25] (OLYMPUS IMAGING CORP.)
HKLM\...\Run: [BrMfcWnd] - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM\...\Run: [ControlCenter3] - C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM\...\Run: [SweetIM] - C:\Program Files\SweetIM\Messenger\SweetIM.exe [115032 2012-10-04] (SweetIM Technologies Ltd.)
HKLM\...\Run: [Sweetpacks Communicator] - C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [231768 2012-08-15] (SweetIM Technologies Ltd.)
HKLM\...\Run: [CheckRun22find_uninstaller] - C:\Users\Mateusz\AppData\Roaming\CheckRun22find.exe [102912 2013-01-16] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
Winlogon\Notify\klogon: C:\Windows\system32\klogon.dll (Kaspersky Lab)
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\.DEFAULT\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\.DEFAULT\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\.DEFAULT\...\Policies\Explorer: [NoResolveSearch] 1
HKU\.DEFAULT\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\.DEFAULT\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [1813928 2013-10-09] (Valve Corporation)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [AQQ] - C:\Program Files\WapSter\WapSter AQQ\AQQ.exe [10591232 2012-05-04] (Creative Team S.A.)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [OM2_Monitor] - C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [95632 2009-11-25] (OLYMPUS IMAGING CORP.)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [cacaoweb] - C:\Users\Mateusz\AppData\Roaming\cacaoweb\cacaoweb.exe [471552 2014-01-13] ()
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [GoogleDriveSync] - C:\Program Files\Google\Drive\googledrivesync.exe [20203904 2013-12-06] (Google)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\Run: [GoogleChromeAutoLaunch_AD39DCBBF0C8E335115CF32EE510DE61] - C:\Program Files\Google\Chrome\Application\chrome.exe [866584 2014-01-11] (Google Inc.)
HKU\S-1-5-21-4269427377-1325461651-3473510218-1000\...\MountPoints2: {fd6c7118-b5f9-11e1-9bc8-0026187c97bd} - E:\autorun.exe
AppInit_DLLs: c:\progra~2\bitguard\271832~1.68\{c16c1~1\bitguard.dll => File Not Found

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.22find.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182322
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.searchgol.com/?babsrc=HP_ss&mntrId=4208001E651853EC&affID=125032&tsp=5034
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.22find.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182322
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.22find.com/newtab?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182322
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
URLSearchHook: HKCU - (No Name) - {6c97a91e-4524-4019-86af-2aa2d567bf5c} -  No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.22find.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182232
SearchScopes: HKLM - DefaultScope Yandex URL = http://www.yandex.ru/yandsearch?stype=&nl=0&text={searchTerms}\
SearchScopes: HKLM - Google URL = http://www.google.ru/search?hl=ru&q={searchTerms}\
SearchScopes: HKLM - Wikipedia URL = http://ru.wikipedia.org/wiki/{searchTerms}\
SearchScopes: HKLM - Yahoo URL = http://ru.search.yahoo.com/search?p={searchTerms}\
SearchScopes: HKLM - Yandex URL = http://www.yandex.ru/yandsearch?stype=&nl=0&text={searchTerms}\
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.22find.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182326
SearchScopes: HKCU - Google URL = 
SearchScopes: HKCU - Wikipedia URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.v9.com/web/?q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=4208001E651853EC&affID=125032&tsp=5034
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.22find.com/web/?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182326
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6PQUNSAQk1&i=26
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: IB Updater - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\IB Updater\Extension32.dll ()
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll (Kaspersky Lab)
BHO: Incredibar.com Helper Object - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll (Montera Technologeis LTD)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
BHO: searchgol Helper Object - {8F547BDD-FCD4-48F8-A06F-573D6F404A3C} - C:\Program Files\searchgol\searchgol\1.8.16.19\bh\searchgol.dll (Montera Technologeis LTD)
BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.21.5\bh\delta.dll (Delta-search.com)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll (Kaspersky Lab)
BHO: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM - Incredibar Toolbar - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll (Montera Technologeis LTD)
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.21.5\deltaTlbr.dll (Delta-search.com)
Toolbar: HKLM - searchgol Toolbar - {00078E95-3A4A-4137-8DE7-2824908D1C17} - C:\Program Files\searchgol\searchgol\1.8.16.19\searchgolTlbr.dll (Montera Technologeis LTD)
Toolbar: HKCU - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_25-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 82.139.8.40 95.160.170.92 88.156.222.92
Tcpip\..\Interfaces\{B55806E2-FE4D-45BD-83FE-7DAEFC3DB5D2}: [NameServer]8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

FireFox:
========
FF ProfilePath: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default
FF user.js: detected! => C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\user.js
FF NewTab: hxxp://mystart.incredibar.com/?a=6PQUNSAQk1&i=26&loc=skw
FF DefaultSearchEngine: MyStart Search
FF SearchEngineOrder.1: 22find
FF SelectedSearchEngine: MyStart Search
FF Keyword.URL: hxxp://mystart.incredibar.com/?a=6PQUNSAQk1&i=26&loc=skw&search=
FF Homepage: user_pref("browser.startup.homepage", "");
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.4.1 - C:\Windows\system32\npdeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Mateusz\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\searchplugins\MyStart Search.xml
FF SearchPlugin: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\searchplugins\MyStart.xml
FF SearchPlugin: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\searchplugins\searchgol.xml
FF SearchPlugin: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\searchplugins\sweetim.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\22find.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\v9.xml
FF Extension: cacaoweb - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\Extensions\cacaoweb@cacaoweb.org [2013-02-07]
FF Extension: Delta Toolbar - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\Extensions\ffxtlbr@delta.com [2013-07-02]
FF Extension: SearchGol - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\Extensions\ffxtlbr@searchgol.com [2013-10-13]
FF Extension: Lavasoft Search Plugin - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\Extensions\jid1-yZwVFzbsyfMrqQ@jetpack [2013-02-06]
FF Extension: Google Translator for Firefox - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\Extensions\translator@zoli.bod.xpi [2012-08-15]
FF Extension: SweetPacks Toolbar for Firefox - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\psg896ry.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2012-10-22]
FF Extension: Kaspersky URL Advisor - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2013-06-09]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013-06-27]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-08-13]
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\IB Updater\Firefox
FF Extension: IB Updater - C:\Program Files\IB Updater\Firefox [2013-01-04]
FF HKLM\...\Firefox\Extensions: [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}] - C:\Program Files\IB Updater\Firefox
FF Extension: IB Updater - C:\Program Files\IB Updater\Firefox [2013-01-04]
FF HKLM\...\Thunderbird\Extensions: [{eea12ec4-729d-4703-bc37-106ce9879ce2}] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt
FF Extension: Kaspersky Anti-Spam Extension - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\THBExt [2012-06-10]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-08-13]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe http://www.22find.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182232

Chrome: 
=======
CHR HomePage: hxxp://mystart.incredibar.com/?a=6PQUNSAQk1&loc=skw
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.76\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U7) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.70.11) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Unity Player) - C:\Users\Mateusz\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Extension: (Dysk Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-18]
CHR Extension: (YouTube) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-10-13]
CHR Extension: (Szukaj w Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-10-13]
CHR Extension: (Transferuj.pl) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmbhnokcfchfkdgechgkhcfekdfpdjld [2014-01-18]
CHR Extension: (AdBlock) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-11-28]
CHR Extension: (GlowModified) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhabmhnmepifdbcjioefehlfipkhmgnh [2013-02-06]
CHR Extension: (Google Wallet) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-10]
CHR Extension: (Norton Identity Protection) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob [2014-01-24]
CHR Extension: (SweetPacks Chrome Extension) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj [2014-02-10]
CHR Extension: (Gmail) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-10-13]
CHR HKLM\...\Chrome\Extension: [aipfmkinhleccnodemkoofnnofpbbpac] - C:\Users\Mateusz\AppData\Roaming\BabSolution\CR\searchgol.crx [2013-10-13]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx [2013-01-04]
CHR HKLM\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Mateusz\AppData\Roaming\BabSolution\CR\Delta.crx [2013-07-02]
CHR HKLM\...\Chrome\Extension: [ijblflkdjdopkpdgllkmlbgcffjbnfda] - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2013-02-06]
CHR HKLM\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2012-10-22]
CHR HKLM\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Windows\System32\jmdp\SweetNT.crx [2014-02-04]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Mateusz\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-05-07]
CHR StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe http://www.22find.com/?utm_source=b&utm_medium=mlv&from=mlv&uid=HITACHIXHTS727550A9E364_J3310081G8A6PBG8A6PBX&ts=1360182232

========================== Services (Whitelisted) =================

S2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [340520 2012-06-10] (Kaspersky Lab)
S2 Brother XP spl Service; C:\Windows\system32\brsvc01a.exe [57344 2001-11-23] (brother Industries Ltd)
S2 IB Updater; C:\Program Files\IB Updater\ExtensionUpdaterService.exe [188760 2013-01-29] ()
S2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1527600 2014-02-04] ()
S2 MSSQL$INSERTGT; c:\Program Files\Microsoft SQL Server\MSSQL10_50.INSERTGT\MSSQL\Binn\sqlservr.exe [43040096 2011-06-17] (Microsoft Corporation)
S2 nTuneService; C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe [192832 2011-09-19] (NVIDIA)
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2013-11-27] ()
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [770432 2013-07-17] (Enigma Software Group USA, LLC.)
S4 SQLAgent$INSERTGT; c:\Program Files\Microsoft SQL Server\MSSQL10_50.INSERTGT\MSSQL\Binn\SQLAGENT.EXE [370016 2011-06-17] (Microsoft Corporation)
S2 Virtual Router; C:\Program Files\Virtual Router\VirtualRouterService.exe [12288 2009-11-18] (Chris Pietschmann (http://pietschsoft.com))

==================== Drivers (Whitelisted) ====================

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-06-18] (DT Soft Ltd)
S1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376920 2014-01-28] (Symantec Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [35896 2013-02-11] (GFI Software)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2013-02-06] (GFI Software)
S1 kl1; C:\Windows\System32\DRIVERS\kl1.sys [128016 2009-09-01] (Kaspersky Lab)
R0 klbg; C:\Windows\System32\drivers\klbg.sys [36880 2009-10-14] (Kaspersky Lab)
S1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [311312 2012-06-10] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [21520 2009-09-14] (Kaspersky Lab)
S3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [19472 2009-10-02] (Kaspersky Lab)
S4 RsFx0151; C:\Windows\System32\DRIVERS\RsFx0151.sys [240736 2011-06-17] (Microsoft Corporation)
S3 SaiK0CCB; C:\Windows\System32\DRIVERS\SaiK0CCB.sys [138760 2010-04-22] (Saitek)
S3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [20744 2010-04-22] (Saitek)
S3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [43528 2010-04-22] (Saitek)
S3 SaiU0CCB; C:\Windows\System32\DRIVERS\SaiU0CCB.sys [35336 2010-04-22] (Saitek)
S2 BrPar; \SystemRoot\System32\drivers\BrPar.sys [X]
S3 EraserUtilDrv11312; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11312.sys [X]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-10 12:02 - 2014-02-10 12:03 - 00000000 ____D () C:\FRST
2014-02-10 00:34 - 2014-02-10 00:34 - 00000000 ____D () C:\Windows\system32\jmdp
2014-02-10 00:04 - 2014-02-10 00:04 - 00003304 ____N () C:\bootsqm.dat
2014-02-09 20:22 - 2014-02-09 20:22 - 09216904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-02-09 19:54 - 2014-02-09 19:54 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-AUTO-Microsoft-Windows-7-Ultimate-(32-bit).dat
2014-02-09 19:54 - 2014-02-09 19:54 - 00000000 ____D () C:\RegBackup
2014-02-09 19:53 - 2014-02-09 19:53 - 00002130 _____ () C:\Users\Mateusz\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-02-09 19:53 - 2014-02-09 19:53 - 00000000 ____D () C:\Program Files\Tweaking.com
2014-01-28 23:09 - 2014-01-29 05:39 - 00000000 ____D () C:\SMSTSLog
2014-01-26 23:16 - 2014-01-26 23:16 - 00085390 _____ () C:\Users\Mateusz\Downloads\DF10.tmp
2014-01-24 21:10 - 2014-02-10 00:39 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\CrashDumps
2014-01-24 20:08 - 2014-01-24 20:08 - 00145680 _____ () C:\Windows\Minidump\012414-14008-01.dmp
2014-01-24 19:04 - 2014-02-10 00:57 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-01-24 19:03 - 2014-02-10 00:57 - 00000000 ____D () C:\ProgramData\Norton
2014-01-24 19:03 - 2014-01-24 19:03 - 220978320 ____N (Symantec Corporation) C:\Users\Mateusz\Downloads\NAV-ESD-21.1.0-PL.exe
2014-01-24 19:02 - 2014-01-24 19:02 - 00666648 _____ () C:\Users\Mateusz\Downloads\Norton-AntiVirus(12646).exe
2014-01-24 18:41 - 2014-01-24 18:42 - 00000000 ____D () C:\Users\Mateusz\Desktop\forum import
2014-01-24 17:48 - 2014-01-24 17:48 - 00000009 _____ () C:\Users\Mateusz\Desktop\zamówienie 7 ramek.txt
2014-01-24 17:46 - 2014-01-24 17:46 - 00000021 _____ () C:\Users\Mateusz\Desktop\Mazury 26 ramek.txt
2014-01-20 22:03 - 2014-01-20 22:04 - 06951048 _____ (Microsoft Corporation) C:\Users\Mateusz\Downloads\Silverlight (2).exe
2014-01-20 12:02 - 2014-01-20 12:02 - 00000000 _____ () C:\Users\Mateusz\Downloads\3.zip
2014-01-20 12:02 - 2014-01-20 12:02 - 00000000 _____ () C:\Users\Mateusz\Downloads\3 (1).zip
2014-01-20 11:58 - 2014-01-20 11:58 - 00000000 _____ () C:\Users\Mateusz\Downloads\2.zip
2014-01-20 11:55 - 2014-01-20 11:55 - 00000000 _____ () C:\Users\Mateusz\Downloads\1.zip
2014-01-16 14:06 - 2014-01-16 14:06 - 00000406 _____ () C:\Users\Mateusz\Desktop\bbb.txt
2014-01-15 18:45 - 2014-01-15 18:45 - 00063144 _____ () C:\Users\Mateusz\AppData\Roaming\GDIPFONTCACHEV1.DAT

==================== One Month Modified Files and Folders =======

2014-02-10 12:03 - 2014-02-10 12:02 - 00000000 ____D () C:\FRST
2014-02-10 12:01 - 2012-05-16 16:09 - 00373832 _____ () C:\Windows\PFRO.log
2014-02-10 12:01 - 2010-08-03 20:03 - 00000000 ____D () C:\Windows\system32\Shellext
2014-02-10 01:04 - 2010-08-02 23:05 - 00791360 _____ () C:\Windows\system32\perfh015.dat
2014-02-10 01:04 - 2010-08-02 23:05 - 00174758 _____ () C:\Windows\system32\perfc015.dat
2014-02-10 01:04 - 2010-06-21 12:39 - 02799400 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-10 01:04 - 2009-07-14 09:41 - 00775478 _____ () C:\Windows\system32\perfh019.dat
2014-02-10 01:04 - 2009-07-14 09:41 - 00169450 _____ () C:\Windows\system32\perfc019.dat
2014-02-10 00:57 - 2014-01-24 19:04 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-02-10 00:57 - 2014-01-24 19:03 - 00000000 ____D () C:\ProgramData\Norton
2014-02-10 00:56 - 2013-05-14 17:51 - 00000000 ____D () C:\Program Files\KM Remote
2014-02-10 00:42 - 2012-10-13 11:44 - 00001034 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-10 00:42 - 2012-05-16 21:14 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-10 00:42 - 2012-05-16 16:10 - 00063147 _____ () C:\Windows\setupact.log
2014-02-10 00:42 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-10 00:40 - 2012-05-16 16:12 - 01185072 _____ () C:\Windows\WindowsUpdate.log
2014-02-10 00:39 - 2014-01-24 21:10 - 00000000 ____D () C:\Users\Mateusz\AppData\Local\CrashDumps
2014-02-10 00:38 - 2009-07-14 05:34 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-10 00:38 - 2009-07-14 05:34 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-10 00:34 - 2014-02-10 00:34 - 00000000 ____D () C:\Windows\system32\jmdp
2014-02-10 00:34 - 2013-01-04 19:05 - 00000000 ____D () C:\Windows\system32\WNLT
2014-02-10 00:34 - 2013-01-04 19:05 - 00000000 ____D () C:\Windows\system32\ARFC
2014-02-10 00:09 - 2012-06-10 13:09 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-10 00:07 - 2012-05-16 19:42 - 00000000 ____D () C:\Program Files\Steam
2014-02-10 00:04 - 2014-02-10 00:04 - 00003304 ____N () C:\bootsqm.dat
2014-02-09 23:29 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-02-09 20:22 - 2014-02-09 20:22 - 09216904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-02-09 20:22 - 2012-05-17 08:18 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-09 20:21 - 2012-05-16 21:11 - 00063144 _____ () C:\Users\Mateusz\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-09 20:19 - 2012-05-16 16:10 - 00273032 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-09 19:54 - 2014-02-09 19:54 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-AUTO-Microsoft-Windows-7-Ultimate-(32-bit).dat
2014-02-09 19:54 - 2014-02-09 19:54 - 00000000 ____D () C:\RegBackup
2014-02-09 19:53 - 2014-02-09 19:53 - 00002130 _____ () C:\Users\Mateusz\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-02-09 19:53 - 2014-02-09 19:53 - 00000000 ____D () C:\Program Files\Tweaking.com
2014-02-04 10:28 - 2013-01-04 19:05 - 01527600 _____ () C:\Windows\system32\dmwu.exe
2014-02-04 10:22 - 2013-01-04 19:05 - 00027136 _____ (IncrediMail, Ltd.) C:\Windows\system32\ImHttpComm.dll
2014-02-04 09:39 - 2013-01-04 19:05 - 00773968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100.dll
2014-02-04 09:39 - 2013-01-04 19:05 - 00632656 _____ (Microsoft Corporation) C:\Windows\system32\msvcr80.dll
2014-02-04 09:39 - 2013-01-04 19:05 - 00554832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp80.dll
2014-02-04 09:39 - 2013-01-04 19:05 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\msvcm80.dll
2014-02-04 09:39 - 2013-01-04 19:05 - 00421200 _____ (Microsoft Corporation) C:\Windows\system32\msvcp100.dll
2014-02-04 09:39 - 2013-01-04 19:05 - 00001870 _____ () C:\Windows\system32\Microsoft.VC80.CRT.manifest
2014-01-29 05:39 - 2014-01-28 23:09 - 00000000 ____D () C:\SMSTSLog
2014-01-28 19:53 - 2012-10-13 11:44 - 00001038 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-28 19:31 - 2013-09-30 14:49 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\File Scout
2014-01-28 18:22 - 2013-02-06 21:24 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\cacaoweb
2014-01-28 18:22 - 2012-05-19 19:53 - 00000000 ____D () C:\Program Files\Virtual Router
2014-01-28 16:30 - 2013-01-26 22:53 - 00000000 ____D () C:\Users\Mateusz\AppData\Roaming\Skype
2014-01-28 16:05 - 2012-05-18 17:09 - 00000432 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-01-28 16:02 - 2013-03-08 17:47 - 00000000 ___RD () C:\Users\Mateusz\Dysk Google
2014-01-26 23:21 - 2013-04-09 15:33 - 00000000 ____D () C:\Users\Mateusz\Desktop\dzban
2014-01-26 23:16 - 2014-01-26 23:16 - 00085390 _____ () C:\Users\Mateusz\Downloads\DF10.tmp
2014-01-24 20:08 - 2014-01-24 20:08 - 00145680 _____ () C:\Windows\Minidump\012414-14008-01.dmp
2014-01-24 20:08 - 2012-05-16 19:04 - 296028347 _____ () C:\Windows\MEMORY.DMP
2014-01-24 20:08 - 2012-05-16 19:04 - 00000000 ____D () C:\Windows\Minidump
2014-01-24 19:03 - 2014-01-24 19:03 - 220978320 ____N (Symantec Corporation) C:\Users\Mateusz\Downloads\NAV-ESD-21.1.0-PL.exe
2014-01-24 19:02 - 2014-01-24 19:02 - 00666648 _____ () C:\Users\Mateusz\Downloads\Norton-AntiVirus(12646).exe
2014-01-24 18:44 - 2009-07-14 05:53 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-24 18:42 - 2014-01-24 18:41 - 00000000 ____D () C:\Users\Mateusz\Desktop\forum import
2014-01-24 17:48 - 2014-01-24 17:48 - 00000009 _____ () C:\Users\Mateusz\Desktop\zamówienie 7 ramek.txt
2014-01-24 17:46 - 2014-01-24 17:46 - 00000021 _____ () C:\Users\Mateusz\Desktop\Mazury 26 ramek.txt
2014-01-23 15:28 - 2012-06-10 10:11 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-01-21 20:41 - 2014-01-06 23:29 - 00000000 ____D () C:\Users\Mateusz\Desktop\kurier
2014-01-20 22:04 - 2014-01-20 22:03 - 06951048 _____ (Microsoft Corporation) C:\Users\Mateusz\Downloads\Silverlight (2).exe
2014-01-20 12:48 - 2013-06-09 21:09 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-01-20 12:02 - 2014-01-20 12:02 - 00000000 _____ () C:\Users\Mateusz\Downloads\3.zip
2014-01-20 12:02 - 2014-01-20 12:02 - 00000000 _____ () C:\Users\Mateusz\Downloads\3 (1).zip
2014-01-20 11:58 - 2014-01-20 11:58 - 00000000 _____ () C:\Users\Mateusz\Downloads\2.zip
2014-01-20 11:55 - 2014-01-20 11:55 - 00000000 _____ () C:\Users\Mateusz\Downloads\1.zip
2014-01-18 21:21 - 2012-10-19 20:21 - 00000284 _____ () C:\Windows\Tasks\DLL-files.com Fixer_UPDATES.job
2014-01-16 14:06 - 2014-01-16 14:06 - 00000406 _____ () C:\Users\Mateusz\Desktop\bbb.txt
2014-01-15 21:24 - 2012-10-19 20:21 - 00000268 _____ () C:\Windows\Tasks\DLL-files.com Fixer_MONTHLY.job
2014-01-15 18:45 - 2014-01-15 18:45 - 00063144 _____ () C:\Users\Mateusz\AppData\Roaming\GDIPFONTCACHEV1.DAT

Some content of TEMP:
====================
C:\Users\Mateusz\AppData\Local\Temp\-2alg9go.dll
C:\Users\Mateusz\AppData\Local\Temp\7za.exe
C:\Users\Mateusz\AppData\Local\Temp\8586ab57-e0a4-4e48-ab82-14a7f81e962b.exe
C:\Users\Mateusz\AppData\Local\Temp\AVSDVDPlayer.exe
C:\Users\Mateusz\AppData\Local\Temp\Contra Game.exe
C:\Users\Mateusz\AppData\Local\Temp\CRCCheck.exe
C:\Users\Mateusz\AppData\Local\Temp\d85c74d2-5e4a-4e3e-8b8e-7a8c676bc8ff.exe
C:\Users\Mateusz\AppData\Local\Temp\i4legltd.dll
C:\Users\Mateusz\AppData\Local\Temp\incredibar_installer.exe
C:\Users\Mateusz\AppData\Local\Temp\InstallerBT.exe
C:\Users\Mateusz\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\Mateusz\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Mateusz\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Mateusz\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Mateusz\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Mateusz\AppData\Local\Temp\MyBabylonTB.exe
C:\Users\Mateusz\AppData\Local\Temp\Shortcut_bundlesweetimsetup.exe
C:\Users\Mateusz\AppData\Local\Temp\Shortcut_SweetImSetup (1).exe
C:\Users\Mateusz\AppData\Local\Temp\Shortcut_SweetImSetup.exe
C:\Users\Mateusz\AppData\Local\Temp\SHSetup.exe
C:\Users\Mateusz\AppData\Local\Temp\SIMEEI2Installer.exe
C:\Users\Mateusz\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Mateusz\AppData\Local\Temp\SQLite.dll
C:\Users\Mateusz\AppData\Local\Temp\ubi527E.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2009-07-14 00:41] - [2010-08-03 14:39] - 3144704 ____A (Microsoft Corporation) 08029ADC4B734BF36B7C17A1C2DBC54E

C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll
[2009-07-14 00:24] - [2010-06-04 08:53] - 0808448 ____A (Microsoft Corporation) 3D7778DA786063D589EA56D928A39FB1

C:\Windows\system32\userinit.exe
[2009-07-14 00:34] - [2010-06-04 08:51] - 0026624 ____A (Microsoft Corporation) A1C9C01C02AF6A2C81CAC34CD5E65F9B

C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 19:38

==================== End Of Log ============================