Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-02-2014 01
Ran by Robert (administrator) on LAPTOP on 26-02-2014 17:12:41
Running from C:\Users\Robert\Downloads\FRST
Windows 8 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Intel Corporation) C:\Windows\system32\igfxpers.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11554688 2012-08-08] (Motorola Solutions, Inc.)
HKLM\...\Run: [ACMON] - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-08-24] (ASUS)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [6330568 2013-03-21] (ESET)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe [3417984 2012-08-28] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-781218168-1252475549-3310685138-1002\...\MountPoints2: {43719aaf-60e0-11e2-be75-84a6c8d2263d} - "E:\setup.exe" 
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-12-19] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [141336 2013-12-19] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&amp;form=IE10TR&amp;src=IE10TR&amp;pc=ASU2JS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&amp;form=IE10TR&amp;src=IE10TR&amp;pc=ASU2JS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - d:\Program Files\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll No File
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 127.0.0.1	api.crashtastic.com 
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\6tnpyhqv.default-1393430709367
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Robert\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Robert\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: thehappycloud.com/HappyCloudPlugin - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll (The Happy Cloud)
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-08-15]

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.510.13) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U51) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Microsoft Office 2013) - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Happy Cloud Plugin) - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll (The Happy Cloud)
CHR Plugin: (Unity Player) - C:\Users\Robert\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Robert\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
CHR Extension: (Dokumenty Google) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-07]
CHR Extension: (Dysk Google) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-07]
CHR Extension: (YouTube) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-07]
CHR Extension: (Szukaj w Google) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-07]
CHR Extension: (Google Wallet) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-26]
CHR Extension: (Gmail) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-07]

==================== Services (Whitelisted) =================

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1341664 2013-03-21] (ESET)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-10-31] (Microsoft Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2014-02-14] ()
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-23] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [213416 2013-02-20] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [150616 2013-01-10] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [139768 2013-01-10] (ESET)
R3 jumi; C:\Windows\System32\drivers\jumi.sys [15160 2010-06-03] (Windows (R) Codename Longhorn DDK provider)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2014-02-14] ()
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-10-08] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [13696 2012-09-17] (ASUSTek Computer Inc.)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [48096 2012-08-09] (Windows (R) Win 7 DDK provider)
S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)
U0 msahci; 
U3 uxloapow; \??\C:\Users\Robert\AppData\Local\Temp\uxloapow.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-26 17:10 - 2014-02-26 17:10 - 00000000 ____D () C:\Users\Robert\Downloads\FSS
2014-02-26 17:05 - 2014-02-26 17:05 - 00000000 ____D () C:\Users\Robert\Desktop\Stare dane programu Firefox
2014-02-26 16:42 - 2014-02-26 16:56 - 00000000 ____D () C:\Users\Robert\Downloads\GrantPerms64
2014-02-26 16:42 - 2014-02-26 16:42 - 00628779 _____ () C:\Users\Robert\Downloads\GrantPerms64.zip
2014-02-26 16:39 - 2014-02-26 16:40 - 00000000 ____D () C:\Users\Robert\Downloads\MiniRegTool
2014-02-25 22:56 - 2014-02-26 16:37 - 00000000 ____D () C:\Users\Robert\Downloads\GMER
2014-02-25 22:56 - 2014-02-25 23:16 - 00000000 ____D () C:\Users\Robert\Downloads\OTL
2014-02-25 20:40 - 2014-02-26 17:12 - 00000000 ____D () C:\Users\Robert\Downloads\FRST
2014-02-25 20:14 - 2014-02-26 17:11 - 00000000 ____D () C:\FRST
2014-02-25 18:34 - 2014-02-25 18:34 - 00000000 ____D () C:\_OTL
2014-02-25 18:25 - 2014-02-25 18:59 - 00000000 ____D () C:\AdwCleaner
2014-02-25 18:25 - 2014-02-25 18:25 - 01241834 _____ () C:\Users\Robert\Downloads\adwcleaner.exe
2014-02-24 19:08 - 2014-02-26 06:42 - 00000000 ____D () C:\Users\Robert\Desktop\antropologia
2014-02-24 18:56 - 2014-02-24 19:08 - 00000000 ____D () C:\Users\Robert\Desktop\osobowości i róznic
2014-02-24 18:55 - 2014-02-24 18:57 - 00000000 ____D () C:\Users\Robert\Desktop\wielkie
2014-02-24 18:55 - 2014-02-24 18:55 - 00000000 ____D () C:\Users\Robert\Desktop\małe
2014-02-24 18:21 - 2014-02-24 18:21 - 00000161 _____ () C:\Users\Robert\Desktop\Nowy dokument tekstowy.txt
2014-02-22 20:54 - 2014-02-22 20:54 - 02869264 _____ (Microsoft Corporation) C:\Users\Robert\Downloads\dotNetFx35setup.exe
2014-02-22 20:40 - 2014-02-22 20:41 - 00000000 ____D () C:\Users\Riot GAMES\League of Legends
2014-02-22 20:40 - 2014-02-22 20:40 - 00000000 ____D () C:\Users\Riot GAMES
2014-02-22 20:26 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-02-22 20:26 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-02-22 20:26 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-02-22 20:25 - 2014-02-23 17:05 - 00000000 ____D () C:\Users\Robert\AppData\Local\PMB Files
2014-02-22 20:25 - 2014-02-23 17:05 - 00000000 ____D () C:\ProgramData\PMB Files
2014-02-22 20:25 - 2014-02-22 20:25 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-02-22 20:24 - 2014-02-22 20:25 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Riot Games
2014-02-22 15:28 - 2014-02-22 15:29 - 01276661 _____ () C:\Users\Robert\Downloads\MCInstaller.rar
2014-02-21 16:52 - 2014-02-21 17:14 - 00000000 ____D () C:\Users\Robert\Desktop\skan
2014-02-20 22:02 - 2014-02-20 22:02 - 03727418 _____ (Zyczu) C:\Users\Robert\Downloads\MinecraftZyczu.exe
2014-02-20 14:23 - 2014-02-22 15:28 - 00000000 ____D () C:\Users\Robert\Downloads\psychologia
2014-02-20 13:43 - 2014-02-24 18:57 - 00000000 ____D () C:\Users\Robert\Desktop\demografia
2014-02-20 13:43 - 2014-02-20 14:21 - 00000000 ____D () C:\Users\Robert\Desktop\psychologia społeczna
2014-02-18 14:03 - 2014-02-18 15:26 - 00000000 ____D () C:\Users\Robert\Desktop\z samsunga
2014-02-15 19:54 - 2014-02-24 22:46 - 00000000 ____D () C:\Users\Robert\AppData\Local\The Witcher
2014-02-15 19:54 - 2014-02-15 23:17 - 00000000 ____D () C:\Users\Robert\Documents\The Witcher
2014-02-15 14:40 - 2014-02-15 19:49 - 00000000 ____D () C:\Users\Public\Documents\The Witcher
2014-02-15 14:02 - 2014-02-15 14:18 - 333817295 _____ () C:\Users\Robert\Downloads\wiedzmin_pl_patch_1.3.0.1198.zip
2014-02-15 14:02 - 2014-02-15 14:12 - 115624442 _____ () C:\Users\Robert\Downloads\wiedzmin_pl_patch_1.2.0.1160.zip
2014-02-15 00:17 - 2014-02-15 00:35 - 953769624 _____ (Macrovision Corporation) C:\Users\Robert\Downloads\TWEE_Upgrade.exe
2014-02-15 00:07 - 2014-02-15 00:14 - 386762750 _____ () C:\Users\Robert\Downloads\wiedzmin_pl_patch_15.zip
2014-02-15 00:06 - 2014-02-15 00:06 - 01415855 _____ () C:\Users\Robert\Downloads\8902-instalator_sciagnij.exe
2014-02-14 23:59 - 2014-02-14 23:59 - 00235936 _____ (Tagès SA) C:\Users\Robert\Downloads\TagesSetup_x64.exe
2014-02-14 14:27 - 2014-02-14 23:30 - 00000000 ____D () C:\Users\Robert\Downloads\Diablo II & Diablo II LoD (Lic)
2014-02-14 14:27 - 2014-02-14 14:27 - 00000834 _____ () C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-02-14 07:28 - 2014-02-22 19:33 - 00001070 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf294dfc98f9e4.job
2014-02-14 07:28 - 2014-02-14 07:28 - 00004042 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf294dfc98f9e4
2014-02-14 07:12 - 2014-02-14 07:17 - 227531817 _____ () C:\Users\Robert\Desktop\kozak.zip
2014-02-12 12:09 - 2014-02-01 10:20 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 12:09 - 2014-02-01 10:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 12:09 - 2014-02-01 10:19 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 12:09 - 2014-02-01 10:19 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-02-12 12:09 - 2014-02-01 10:19 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 19274240 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 15403520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 12:09 - 2014-02-01 10:18 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 12:09 - 2014-02-01 08:58 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 12:09 - 2014-02-01 08:58 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 12:09 - 2014-02-01 08:58 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 14359040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 12:09 - 2014-02-01 08:57 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 12:09 - 2014-02-01 08:40 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 12:09 - 2014-02-01 08:34 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 12:09 - 2014-02-01 06:08 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-02-12 12:09 - 2013-12-09 01:45 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 12:09 - 2013-12-09 00:59 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 12:09 - 2013-12-05 00:43 - 01845248 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 12:09 - 2013-12-05 00:37 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 12:09 - 2013-11-26 00:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-12 12:09 - 2013-11-01 06:53 - 02232664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-12 12:08 - 2014-01-13 00:30 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 12:08 - 2014-01-13 00:30 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 12:08 - 2013-11-20 01:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-12 12:08 - 2013-11-20 00:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-01-31 15:33 - 2014-01-31 15:39 - 00000000 ____D () C:\Users\Robert\Documents\Endless Space
2014-01-30 15:28 - 2014-01-31 14:46 - 1407318690 _____ () C:\Users\Robert\Downloads\EndlessSpace-Disharmony-1.1.39.exe

==================== One Month Modified Files and Folders =======

2014-02-26 17:12 - 2014-02-25 20:40 - 00000000 ____D () C:\Users\Robert\Downloads\FRST
2014-02-26 17:12 - 2014-02-25 20:14 - 00000000 ____D () C:\FRST
2014-02-26 17:10 - 2014-02-26 17:10 - 00000000 ____D () C:\Users\Robert\Downloads\FSS
2014-02-26 17:05 - 2014-02-26 17:05 - 00000000 ____D () C:\Users\Robert\Desktop\Stare dane programu Firefox
2014-02-26 17:04 - 2013-02-11 20:05 - 00000000 ____D () C:\ProgramData\InstallMate
2014-02-26 17:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-02-26 16:56 - 2014-02-26 16:42 - 00000000 ____D () C:\Users\Robert\Downloads\GrantPerms64
2014-02-26 16:42 - 2014-02-26 16:42 - 00628779 _____ () C:\Users\Robert\Downloads\GrantPerms64.zip
2014-02-26 16:40 - 2014-02-26 16:39 - 00000000 ____D () C:\Users\Robert\Downloads\MiniRegTool
2014-02-26 16:39 - 2013-12-25 23:35 - 00000000 ____D () C:\Users\Robert\Downloads\Kingdoms.of.Amalur.Reckoning-SKIDROW
2014-02-26 16:37 - 2014-02-25 22:56 - 00000000 ____D () C:\Users\Robert\Downloads\GMER
2014-02-26 15:48 - 2012-08-02 19:02 - 00804172 _____ () C:\Windows\system32\perfh015.dat
2014-02-26 15:48 - 2012-08-02 19:02 - 00164686 _____ () C:\Windows\system32\perfc015.dat
2014-02-26 15:48 - 2012-07-26 08:28 - 01820540 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-26 15:47 - 2013-01-16 05:05 - 00000401 _____ () C:\Users\Robert\AppData\Roaming\sp_data.sys
2014-02-26 11:35 - 2013-12-31 14:58 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-02-26 06:42 - 2014-02-24 19:08 - 00000000 ____D () C:\Users\Robert\Desktop\antropologia
2014-02-25 23:16 - 2014-02-25 22:56 - 00000000 ____D () C:\Users\Robert\Downloads\OTL
2014-02-25 20:43 - 2013-01-16 05:03 - 00000000 ____D () C:\Users\Robert
2014-02-25 20:09 - 2014-01-18 21:03 - 00003336 _____ () C:\Windows\PFRO.log
2014-02-25 20:09 - 2013-01-16 05:05 - 00000000 ___RD () C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-25 18:59 - 2014-02-25 18:25 - 00000000 ____D () C:\AdwCleaner
2014-02-25 18:34 - 2014-02-25 18:34 - 00000000 ____D () C:\_OTL
2014-02-25 18:29 - 2014-01-18 22:40 - 01450690 _____ () C:\Windows\WindowsUpdate.log
2014-02-25 18:25 - 2014-02-25 18:25 - 01241834 _____ () C:\Users\Robert\Downloads\adwcleaner.exe
2014-02-25 18:15 - 2013-02-10 11:14 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\uTorrent
2014-02-24 22:46 - 2014-02-15 19:54 - 00000000 ____D () C:\Users\Robert\AppData\Local\The Witcher
2014-02-24 19:08 - 2014-02-24 18:56 - 00000000 ____D () C:\Users\Robert\Desktop\osobowości i róznic
2014-02-24 18:57 - 2014-02-24 18:55 - 00000000 ____D () C:\Users\Robert\Desktop\wielkie
2014-02-24 18:57 - 2014-02-20 13:43 - 00000000 ____D () C:\Users\Robert\Desktop\demografia
2014-02-24 18:55 - 2014-02-24 18:55 - 00000000 ____D () C:\Users\Robert\Desktop\małe
2014-02-24 18:21 - 2014-02-24 18:21 - 00000161 _____ () C:\Users\Robert\Desktop\Nowy dokument tekstowy.txt
2014-02-23 18:22 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-02-23 18:03 - 2013-02-20 19:46 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-23 17:11 - 2013-03-15 16:26 - 00000000 ____D () C:\ProgramData\Ubisoft
2014-02-23 17:05 - 2014-02-22 20:25 - 00000000 ____D () C:\Users\Robert\AppData\Local\PMB Files
2014-02-23 17:05 - 2014-02-22 20:25 - 00000000 ____D () C:\ProgramData\PMB Files
2014-02-23 01:07 - 2013-03-06 18:29 - 00000000 ___RD () C:\Users\Robert\AppData\Roaming\Skype
2014-02-22 20:54 - 2014-02-22 20:54 - 02869264 _____ (Microsoft Corporation) C:\Users\Robert\Downloads\dotNetFx35setup.exe
2014-02-22 20:41 - 2014-02-22 20:40 - 00000000 ____D () C:\Users\Riot GAMES\League of Legends
2014-02-22 20:40 - 2014-02-22 20:40 - 00000000 ____D () C:\Users\Riot GAMES
2014-02-22 20:25 - 2014-02-22 20:25 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-02-22 20:25 - 2014-02-22 20:24 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\Riot Games
2014-02-22 19:33 - 2014-02-14 07:28 - 00001070 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf294dfc98f9e4.job
2014-02-22 19:29 - 2013-11-25 19:24 - 00000924 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-781218168-1252475549-3310685138-1002Core.job
2014-02-22 19:02 - 2013-02-28 19:36 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-22 15:30 - 2013-11-01 13:34 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\.minecraft
2014-02-22 15:30 - 2013-02-07 11:59 - 00000000 ____D () C:\Users\Robert\Desktop\Gry
2014-02-22 15:29 - 2014-02-22 15:28 - 01276661 _____ () C:\Users\Robert\Downloads\MCInstaller.rar
2014-02-22 15:28 - 2014-02-20 14:23 - 00000000 ____D () C:\Users\Robert\Downloads\psychologia
2014-02-22 13:38 - 2013-01-16 05:10 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-781218168-1252475549-3310685138-1002
2014-02-22 13:07 - 2013-04-23 19:27 - 00001058 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-21 23:05 - 2013-12-14 16:32 - 00000000 ____D () C:\Users\Robert\AppData\Roaming\.minecraftzyczu
2014-02-21 17:14 - 2014-02-21 16:52 - 00000000 ____D () C:\Users\Robert\Desktop\skan
2014-02-21 12:54 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-02-20 22:02 - 2014-02-20 22:02 - 03727418 _____ (Zyczu) C:\Users\Robert\Downloads\MinecraftZyczu.exe
2014-02-20 20:02 - 2013-02-28 19:36 - 00003818 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 14:21 - 2014-02-20 13:43 - 00000000 ____D () C:\Users\Robert\Desktop\psychologia społeczna
2014-02-20 13:43 - 2013-10-21 14:50 - 00000000 ____D () C:\Users\Robert\Desktop\aks
2014-02-18 16:12 - 2014-01-14 22:17 - 00000000 ____D () C:\Users\Robert\Desktop\muzyka
2014-02-18 15:26 - 2014-02-18 14:03 - 00000000 ____D () C:\Users\Robert\Desktop\z samsunga
2014-02-18 15:26 - 2013-07-26 11:50 - 00894464 ___SH () C:\Users\Robert\Desktop\Thumbs.db
2014-02-17 23:03 - 2013-02-10 08:30 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-17 23:03 - 2013-02-10 08:30 - 00078304 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-17 10:21 - 2013-08-15 01:44 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 10:19 - 2013-02-07 12:45 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-15 23:17 - 2014-02-15 19:54 - 00000000 ____D () C:\Users\Robert\Documents\The Witcher
2014-02-15 19:49 - 2014-02-15 14:40 - 00000000 ____D () C:\Users\Public\Documents\The Witcher
2014-02-15 19:43 - 2012-10-28 08:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-15 14:41 - 2013-12-20 15:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-15 14:41 - 2013-02-07 11:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-15 14:18 - 2014-02-15 14:02 - 333817295 _____ () C:\Users\Robert\Downloads\wiedzmin_pl_patch_1.3.0.1198.zip
2014-02-15 14:12 - 2014-02-15 14:02 - 115624442 _____ () C:\Users\Robert\Downloads\wiedzmin_pl_patch_1.2.0.1160.zip
2014-02-15 00:35 - 2014-02-15 00:17 - 953769624 _____ (Macrovision Corporation) C:\Users\Robert\Downloads\TWEE_Upgrade.exe
2014-02-15 00:14 - 2014-02-15 00:07 - 386762750 _____ () C:\Users\Robert\Downloads\wiedzmin_pl_patch_15.zip
2014-02-15 00:06 - 2014-02-15 00:06 - 01415855 _____ () C:\Users\Robert\Downloads\8902-instalator_sciagnij.exe
2014-02-14 23:59 - 2014-02-14 23:59 - 00235936 _____ (Tagès SA) C:\Users\Robert\Downloads\TagesSetup_x64.exe
2014-02-14 23:59 - 2013-09-08 10:21 - 00088480 _____ () C:\Windows\system32\Drivers\atksgt.sys
2014-02-14 23:59 - 2013-09-08 10:21 - 00046400 _____ () C:\Windows\system32\Drivers\lirsgt.sys
2014-02-14 23:34 - 2014-01-24 18:19 - 00233676 _____ () C:\Windows\DirectX.log
2014-02-14 23:30 - 2014-02-14 14:27 - 00000000 ____D () C:\Users\Robert\Downloads\Diablo II & Diablo II LoD (Lic)
2014-02-14 23:26 - 2013-09-07 17:22 - 00000000 ____D () C:\Users\Robert\Downloads\Wiedźmin PL
2014-02-14 14:28 - 2013-02-07 11:58 - 00000000 ____D () C:\Users\Robert\Desktop\Programy
2014-02-14 14:27 - 2014-02-14 14:27 - 00000834 _____ () C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-02-14 11:29 - 2013-10-29 17:15 - 00199680 ___SH () C:\Users\Robert\Downloads\Thumbs.db
2014-02-14 11:29 - 2013-04-25 17:34 - 10263889 _____ () C:\Users\Robert\Downloads\Fraps 3599 full.rar
2014-02-14 07:28 - 2014-02-14 07:28 - 00004042 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf294dfc98f9e4
2014-02-14 07:28 - 2013-11-30 17:53 - 00004042 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1ceedec9f2048fb
2014-02-14 07:28 - 2013-04-23 19:27 - 00003798 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-14 07:17 - 2014-02-14 07:12 - 227531817 _____ () C:\Users\Robert\Desktop\kozak.zip
2014-02-13 14:58 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-08 12:39 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-01 10:20 - 2014-02-12 12:09 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-01 10:19 - 2014-02-12 12:09 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-01 10:19 - 2014-02-12 12:09 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-01 10:19 - 2014-02-12 12:09 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-02-01 10:19 - 2014-02-12 12:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 19274240 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 15403520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-01 10:18 - 2014-02-12 12:09 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-01 08:58 - 2014-02-12 12:09 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-01 08:58 - 2014-02-12 12:09 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-01 08:58 - 2014-02-12 12:09 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 14359040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-01 08:57 - 2014-02-12 12:09 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-01 08:40 - 2014-02-12 12:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-01 08:34 - 2014-02-12 12:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-01 06:08 - 2014-02-12 12:09 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-01-31 15:39 - 2014-01-31 15:33 - 00000000 ____D () C:\Users\Robert\Documents\Endless Space
2014-01-31 15:33 - 2013-08-09 20:42 - 00000000 ____D () C:\Users\Robert\AppData\Local\SKIDROW
2014-01-31 14:46 - 2014-01-30 15:28 - 1407318690 _____ () C:\Users\Robert\Downloads\EndlessSpace-Disharmony-1.1.39.exe
2014-01-31 14:32 - 2013-03-06 18:29 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-01-31 14:32 - 2013-03-06 18:29 - 00000000 ____D () C:\ProgramData\Skype

Some content of TEMP:
====================
C:\Users\Robert\AppData\Local\Temp\_TinDel.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-16 20:50

==================== End Of Log ============================