Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-03-2014 01
Ran by Tomasz (administrator) on LENOVO on 08-03-2014 21:47:25
Running from C:\Users\Tomasz\Downloads
Windows 8 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Arcabit) C:\Program Files\Arcabit\common\arcaconfsv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Arcabit) C:\Program Files\Arcabit\arcaagent\arcaremotesvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Arcabit) C:\Program Files\Arcabit\arcatools\arcabackup\arcabackupservice.exe
(Arcabit) C:\Program Files\Arcabit\arcaupdate\update.exe
() C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSvcm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\windows\SysWOW64\PnkBstrA.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\ProgramData\{$3483-6183-1568-3845$}\comhost.exe
(Microsoft Corporation) C:\windows\SysWOW64\WScript.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
() C:\ProgramData\{$3483-6183-1568-3845$}\4813394.exe
(Microsoft Corporation) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtsFT] - C:\windows\RTFTrack.exe [6334096 2012-08-27] (Realtek semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2864016 2012-08-24] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13191824 2012-08-10] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-06] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] - C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [764032 2012-08-11] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-08-11] (Atheros Communications)
HKLM\...\Run: [OnekeyStudio] - C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-08-10] (Lenovo)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2014-01-13] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2014-01-13] (Lenovo(beijing) Limited)
HKLM\...\Run: [Nvtmru] - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] - C:\windows\system32\nvspcap64.dll [1179576 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [AVMENU] - C:\Program Files\Arcabit\ArcaVir\AVMenu.exe [508088 2014-03-08] (Arcabit)
HKLM\...\Run: [ARCACLEAN] - C:\Program Files\Arcabit\ArcaVir\ArcaClean.exe [60056 2014-03-08] (ArcaBit)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [vProt] - "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761024 2013-12-13] ()
HKLM-x32\...\Run: [Start_BusinessEverywhere_{ad30a369-08e3-414c-9d2c-7f47dbe748da}] - C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BusinessEverywhere.exe [3363808 2012-06-06] ()
HKLM-x32\...\Run: [Start_Update_{ad30a369-08e3-414c-9d2c-7f47dbe748da}] - C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\UpdteApp.exe [966600 2012-06-06] ()
HKLM-x32\...\Run: [Start_SMSNotifier_{ad30a369-08e3-414c-9d2c-7f47dbe748da}] - C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\SMSNotifier.exe [1359824 2012-06-06] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [windows COM Host] - C:\Users\Tomasz\AppData\Local\Temp\IXP000.TMP\jan10.exe -rundll32 /SYSTEM32 "C:\Windows\System32\taskmgr.exe" "C:\Program Files\Microsoft\Windows"
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2984077462-71462054-4283282391-1002\...\Run: [BrowserChoice] - C:\Windows\BrowserChoice\browserchoice.exe [86696 2012-08-15] (Microsoft Corporation)
HKU\S-1-5-21-2984077462-71462054-4283282391-1002\...\Run: [Bloody2] - C:\Program Files (x86)\Bloody4\Bloody4\Bloody4.exe [11895808 2013-08-30] ()
HKU\S-1-5-21-2984077462-71462054-4283282391-1002\...\RunOnce: [Windows Base Branding] - C:\Users\Tomasz\AppData\Roaming\WinRAR\AMD External Events Client.exe
HKU\S-1-5-21-2984077462-71462054-4283282391-1002\...\CurrentVersion\Windows: [Load] C:\ProgramData\{$3483-6183-1568-3845$}\comhost.exe <===== ATTENTION
HKU\S-1-5-21-2984077462-71462054-4283282391-1002\...\MountPoints2: {96d60a10-7e22-11e3-be7d-20689df4e2a7} - "H:\Setup.exe" 
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [168616 2013-12-19] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [141336 2013-12-19] (NVIDIA Corporation)
IFEO\arcamainsv.exe: [Debugger] nsjw.exe
IFEO\avcenter.exe: [Debugger] nsjw.exe
IFEO\avguard.exe: [Debugger] nsjw.exe
IFEO\avmenu.exe: [Debugger] nsjw.exe
IFEO\avp.exe: [Debugger] nsjw.exe
IFEO\bdagent.exe: [Debugger] nsjw.exe
IFEO\ccuac.exe: [Debugger] nsjw.exe
IFEO\ComboFix.exe: [Debugger] nsjw.exe
IFEO\egui.exe: [Debugger] nsjw.exe
IFEO\hijackthis.exe: [Debugger] nsjw.exe
IFEO\keyscrambler.exe: [Debugger] nsjw.exe
IFEO\loggingserver.exe: [Debugger] nsjw.exe
IFEO\mbam.exe: [Debugger] nsjw.exe
IFEO\MpCmdRun.exe: [Debugger] nsjw.exe
IFEO\MSASCui.exe: [Debugger] nsjw.exe
IFEO\MsMpEng.exe: [Debugger] nsjw.exe
IFEO\msseces.exe: [Debugger] nsjw.exe
IFEO\spybotsd.exe: [Debugger] nsjw.exe
IFEO\ToolbarUpdater.exe: [Debugger] nsjw.exe
IFEO\wireshark.exe: [Debugger] nsjw.exe
IFEO\zlclient.exe: [Debugger] nsjw.exe
InternetURL: C:\Users\Tomasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\google.com.url -> 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mysearch.avg.com?cid={84BB60B2-A64A-49D2-9954-30E9CB5A216F}&mid=e7864a6db33947d29dc1f121db100b54-06efd81080514e2c9e9770590ae45e774ec02b32&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-01-15 20:58:43&v=17.2.0.38&pid=safeguard&sg=&sap=hp
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://lenovo13.msn.com
http://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
SearchScopes: HKLM - DefaultScope {986A71D1-40E9-4820-B5DB-690ABE37FF74} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM - {986A71D1-40E9-4820-B5DB-690ABE37FF74} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM-x32 - DefaultScope {986A71D1-40E9-4820-B5DB-690ABE37FF74} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKLM-x32 - {986A71D1-40E9-4820-B5DB-690ABE37FF74} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
SearchScopes: HKCU - DefaultScope {986A71D1-40E9-4820-B5DB-690ABE37FF74} URL = 
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={84BB60B2-A64A-49D2-9954-30E9CB5A216F}&mid=e7864a6db33947d29dc1f121db100b54-06efd81080514e2c9e9770590ae45e774ec02b32&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-01-15 20:58:43&v=17.2.0.38&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {986A71D1-40E9-4820-B5DB-690ABE37FF74} URL = 
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll No File
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll No File
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.0\ViProtocol.dll (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome: 
=======
CHR HomePage: https://www.google.pl/
CHR Extension: (Dokumenty Google) - C:\Users\Tomasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-14]
CHR Extension: (Dysk Google) - C:\Users\Tomasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-14]
CHR Extension: (YouTube) - C:\Users\Tomasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-14]
CHR Extension: (Szukaj w Google) - C:\Users\Tomasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-14]
CHR Extension: (Google Wallet) - C:\Users\Tomasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-14]
CHR Extension: (Gmail) - C:\Users\Tomasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-14]
CHR HKLM-x32\...\Chrome\Extension: [debmkdhphjfcbaomiknnceliiclnpmfg] - C:\Program Files (x86)\Jump Flip\debmkdhphjfcbaomiknnceliiclnpmfg.crx [2014-01-14]
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2014-03-08]
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\18.0.0.248\avg.crx [2014-03-08]

==================== Services (Whitelisted) =================

R2 ABConfSV; C:\Program Files\Arcabit\common\arcaconfsv.exe [206304 2014-03-08] (Arcabit)
S2 ABMainSV; C:\Program Files\Arcabit\arcavir\arcamainsv.exe [237704 2014-03-08] (Arcabit)
R2 ArcaRemoteService; C:\Program Files\Arcabit\arcaagent\arcaremotesvc.exe [985008 2014-03-08] (Arcabit)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-11] (Qualcomm Atheros Commnucations)
R2 AVBackup; C:\Program Files\Arcabit\arcatools\arcabackup\arcabackupservice.exe [257304 2014-03-08] (Arcabit)
S2 AVTasks2; C:\Program Files\Arcabit\common\arcatasksservice.exe [200136 2014-03-08] (ArcaBit)
R2 AVUpdate; C:\Program Files\Arcabit\arcaupdate\update.exe [307232 2014-03-08] (Arcabit)
R2 BEWConfigSrv; C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe [173008 2012-06-06] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 msoidsvc; C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE [1380592 2013-04-29] (Microsoft Corp.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2014-02-01] ()
S2 vToolbarUpdater18.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe [1759768 2014-03-02] (AVG Secure Search)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-11] (Atheros)

==================== Drivers (Whitelisted) ====================

S3 ABFLT; C:\Program Files\Arcabit\ArcaVir\ABFLT.sys [85232 2014-03-08] (ArcaBit)
S3 ABndis; C:\Windows\system32\DRIVERS\abndis.sys [49904 2014-03-08] (ArcaBit)
R3 ABndisMP; C:\Windows\system32\DRIVERS\abndis.sys [49904 2014-03-08] (ArcaBit)
R1 arcawfp; C:\Windows\System32\drivers\arcawfp.sys [46184 2014-03-08] (NetFilterSDK.com)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-11] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8227216 2012-08-27] (Realtek Semiconductor Corp.)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S3 ABWFP; \??\C:\Program Files\Arcabit\ArcaVir\ABWFP8.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-08 21:47 - 2014-03-08 21:47 - 00018611 _____ () C:\Users\Tomasz\Downloads\FRST.txt
2014-03-08 21:46 - 2014-03-08 21:47 - 00000000 ____D () C:\FRST
2014-03-08 21:45 - 2014-03-08 21:45 - 02156544 _____ (Farbar) C:\Users\Tomasz\Downloads\FRST64.exe
2014-03-08 21:44 - 2014-03-08 21:44 - 00146136 _____ () C:\Users\Tomasz\Desktop\OTL.Txt
2014-03-08 21:44 - 2014-03-08 21:44 - 00078102 _____ () C:\Users\Tomasz\Desktop\Extras.Txt
2014-03-08 21:40 - 2014-03-08 21:40 - 00146136 _____ () C:\Users\Tomasz\Downloads\OTL.Txt
2014-03-08 21:40 - 2014-03-08 21:40 - 00078102 _____ () C:\Users\Tomasz\Downloads\Extras.Txt
2014-03-08 21:32 - 2014-03-08 21:32 - 00602112 _____ (OldTimer Tools) C:\Users\Tomasz\Downloads\OTL.exe
2014-03-08 20:32 - 2014-03-08 20:34 - 48134045 _____ () C:\Users\Tomasz\Desktop\end.wmv
2014-03-08 20:32 - 2014-03-08 20:32 - 01909457 _____ () C:\Users\Tomasz\Documents\zakonczone.wmv
2014-03-08 20:25 - 2014-03-08 20:35 - 00068264 _____ () C:\Users\Tomasz\Documents\perfekt.wmv.sfk
2014-03-08 20:25 - 2014-03-08 20:25 - 08729048 _____ () C:\Users\Tomasz\Documents\perfekt.wmv.sfap0
2014-03-08 20:19 - 2014-03-08 20:22 - 13541715 _____ () C:\Users\Tomasz\Documents\perfekt.wmv
2014-03-08 19:59 - 2014-03-08 19:59 - 00000000 _____ () C:\Users\Tomasz\AppData\Roaming\system.ini
2014-03-08 18:42 - 2014-03-08 18:42 - 03189359 _____ () C:\Users\Tomasz\Documents\Untitled2.wmv
2014-03-08 18:38 - 2014-03-08 18:38 - 00909553 _____ () C:\Users\Tomasz\Documents\Untitled.wmv
2014-03-08 18:35 - 2014-03-08 18:35 - 113273432 _____ () C:\Users\Tomasz\Documents\koniec.wmv.sfap0
2014-03-08 18:35 - 2014-03-08 18:35 - 04596824 _____ () C:\Users\Tomasz\Documents\Gameplay Intro.wmv.sfap0
2014-03-08 18:35 - 2014-03-08 18:35 - 02306648 _____ () C:\Users\Tomasz\Documents\codghosts.wmv.sfap0
2014-03-08 18:35 - 2014-03-08 18:35 - 00885016 _____ () C:\Users\Tomasz\Documents\koniec.wmv.sfk
2014-03-08 18:35 - 2014-03-08 18:35 - 00035976 _____ () C:\Users\Tomasz\Documents\Gameplay Intro.wmv.sfk
2014-03-08 18:35 - 2014-03-08 18:35 - 00018088 _____ () C:\Users\Tomasz\Documents\codghosts.wmv.sfk
2014-03-08 18:33 - 2014-03-08 18:33 - 00000000 ____D () C:\Users\Tomasz\Desktop\New folder
2014-03-08 18:15 - 2014-03-08 18:33 - 01323928 _____ () C:\Users\Tomasz\Downloads\Top 10 Epic Songs OF ALL TIME.mp3.sfk
2014-03-08 17:49 - 2014-03-08 17:49 - 12068912 _____ () C:\Users\Tomasz\Desktop\IMG_0551.wmv.sfap0
2014-03-08 17:49 - 2014-03-08 17:49 - 00094352 _____ () C:\Users\Tomasz\Desktop\IMG_0551.wmv.sfk
2014-03-08 17:44 - 2014-03-08 17:46 - 07549613 _____ () C:\Users\Tomasz\Documents\codghosts.wmv
2014-03-08 17:28 - 2014-03-08 17:30 - 00054448 _____ () C:\Users\Tomasz\Desktop\IMG_0550.wmv.sfk
2014-03-08 17:28 - 2014-03-08 17:28 - 06960720 _____ () C:\Users\Tomasz\Desktop\IMG_0550.wmv.sfap0
2014-03-08 17:27 - 2014-03-08 17:29 - 40271589 _____ () C:\Users\Tomasz\Desktop\IMG_0551.wmv
2014-03-08 17:27 - 2014-03-08 17:27 - 23619175 _____ () C:\Users\Tomasz\Desktop\IMG_0550.wmv
2014-03-08 17:25 - 2014-03-08 17:25 - 00001331 _____ () C:\Users\Public\Desktop\Freemake Video Converter.lnk
2014-03-08 17:25 - 2014-03-08 17:25 - 00000000 ____D () C:\Users\Tomasz\Documents\Freemake
2014-03-08 17:25 - 2014-03-08 17:25 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-03-08 17:25 - 2014-03-08 17:25 - 00000000 ____D () C:\ProgramData\Freemake
2014-03-08 17:24 - 2014-03-08 17:25 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-03-08 17:23 - 2014-03-08 17:23 - 01308224 _____ (Ellora Assets Corporation ) C:\Users\Tomasz\Downloads\FreemakeVideoConverterSetup.exe
2014-03-08 17:14 - 2014-03-08 17:14 - 05344058 _____ (ALLPlayer.org ) C:\Users\Tomasz\Downloads\ALLConverterTo3GP.exe
2014-03-08 17:14 - 2014-03-08 17:14 - 00000000 ____D () C:\Program Files (x86)\ALLConverter
2014-03-08 17:06 - 2014-03-08 17:06 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-03-08 17:05 - 2014-03-08 17:05 - 41945432 _____ (Apple Inc.) C:\Users\Tomasz\Downloads\QuickTimeInstaller.exe
2014-03-08 16:19 - 2014-03-08 16:23 - 14645583 _____ () C:\Users\Tomasz\Documents\Gameplay Intro.wmv
2014-03-08 16:16 - 2014-03-08 16:17 - 00021216 _____ () C:\Users\Tomasz\Documents\intro_epic_warrior.wmv.sfk
2014-03-08 16:16 - 2014-03-08 16:16 - 03371672 _____ () C:\Users\Tomasz\Documents\intro_movie.wmv.sfap0
2014-03-08 16:16 - 2014-03-08 16:16 - 02706968 _____ () C:\Users\Tomasz\Documents\intro_epic_warrior.wmv.sfap0
2014-03-08 16:16 - 2014-03-08 16:16 - 00026408 _____ () C:\Users\Tomasz\Documents\intro_movie.wmv.sfk
2014-03-08 16:14 - 2014-03-08 16:15 - 08389631 _____ () C:\Users\Tomasz\Documents\intro_epic_warrior.wmv
2014-03-08 15:37 - 2014-03-08 15:38 - 05317635 _____ () C:\Users\Tomasz\Documents\intro_movie.wmv
2014-03-08 15:32 - 2014-03-08 15:32 - 03376300 _____ () C:\Users\Tomasz\Documents\intro_movie.wav
2014-03-08 15:06 - 2014-03-08 15:09 - 00020960 _____ () C:\Users\Tomasz\Downloads\intro_gaming_channel_background.mp4.sfk
2014-03-08 15:05 - 2014-01-26 16:40 - 00098448 _____ () C:\Users\Tomasz\Downloads\intro_gaming_channel.veg
2014-03-08 15:05 - 2013-12-22 18:47 - 00200072 _____ () C:\Users\Tomasz\Downloads\flash.mp4
2014-03-08 15:05 - 2013-12-22 18:45 - 32922187 _____ () C:\Users\Tomasz\Downloads\3.mp4
2014-03-08 15:05 - 2013-12-22 18:44 - 28603816 _____ () C:\Users\Tomasz\Downloads\2.mp4
2014-03-08 15:05 - 2013-12-22 18:43 - 32816649 _____ () C:\Users\Tomasz\Downloads\1.mp4
2014-03-08 15:05 - 2013-12-22 18:33 - 01975346 _____ () C:\Users\Tomasz\Downloads\intro_gaming_channel_top.mp4
2014-03-08 15:05 - 2013-12-22 18:29 - 12836937 _____ () C:\Users\Tomasz\Downloads\intro_gaming_channel_background.mp4
2014-03-08 15:05 - 2012-11-20 19:00 - 00035412 _____ () C:\Users\Tomasz\Downloads\Bank Gothic Medium BT.ttf
2014-03-08 15:05 - 2000-09-28 01:41 - 00024424 _____ () C:\Users\Tomasz\Downloads\DIMITRI.TTF
2014-03-08 15:00 - 2014-03-08 15:02 - 109266350 _____ () C:\Users\Tomasz\Downloads\intro_gaming_channel.rar
2014-03-08 14:49 - 2014-03-08 21:47 - 00138176 _____ () C:\Users\Tomasz\AppData\Roaming\msconfig.ini
2014-03-08 14:49 - 2014-03-08 14:50 - 00000000 ___HD () C:\{$3483-6183-1568-3845$}
2014-03-08 14:49 - 2014-01-11 06:23 - 00346624 __RSH () C:\ProgramData\335936624.exe
2014-03-08 14:43 - 2014-03-08 14:45 - 00000000 ____D () C:\ProgramData\Sony
2014-03-08 14:41 - 2014-03-08 14:44 - 00046184 _____ (NetFilterSDK.com) C:\windows\system32\Drivers\arcawfp.sys
2014-03-08 14:40 - 2014-03-08 14:41 - 00000000 ____D () C:\ProgramData\ArcaBit
2014-03-08 14:40 - 2014-03-08 14:40 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Opera Software
2014-03-08 14:40 - 2014-03-08 14:40 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\Opera Software
2014-03-08 14:40 - 2014-03-08 14:39 - 00049904 _____ (ArcaBit) C:\windows\system32\Drivers\abndis.sys
2014-03-08 14:39 - 2014-03-08 14:40 - 00000000 ____D () C:\Program Files\Arcabit
2014-03-08 14:38 - 2014-03-08 14:38 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-08 14:37 - 2014-03-08 14:37 - 299454696 _____ (Arcabit Ltd.) C:\Users\Tomasz\Downloads\ArcabitSetup_av_demo.exe
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D7
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D6
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D5
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D4
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D3
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D2
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D1
2014-03-08 14:36 - 2014-03-08 14:36 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-08 14:32 - 2014-01-19 08:33 - 00270496 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2014-03-08 14:31 - 2014-03-08 14:31 - 00673248 _____ ( ) C:\Users\Tomasz\Downloads\Arcabit-AntiVirus(13023).exe
2014-03-08 13:10 - 2014-03-08 19:58 - 00000000 ___HD () C:\ProgramData\{$3483-6183-1568-3845$}
2014-03-08 00:16 - 2014-03-08 00:16 - 00000000 ____D () C:\Users\Tomasz\Documents\OFX Presets
2014-03-07 22:49 - 2014-03-08 16:52 - 00000000 ____D () C:\Users\Tomasz\Downloads\Nowy folder
2014-03-07 22:41 - 2014-03-08 14:48 - 00002412 _____ () C:\Users\Tomasz\Documents\Register Vegas Pro.htm
2014-03-07 22:41 - 2014-03-07 22:41 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Publish Providers
2014-03-07 22:41 - 2014-03-07 22:41 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\NVIDIA
2014-03-07 22:35 - 2014-03-07 22:39 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\Sony
2014-03-07 22:35 - 2014-03-07 22:35 - 00000000 ____D () C:\Program Files\Sony
2014-03-07 22:35 - 2014-03-07 22:35 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-03-07 22:34 - 2014-03-08 14:48 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Sony
2014-03-02 12:58 - 2014-03-02 12:58 - 01394145 _____ () C:\Users\Tomasz\Downloads\Oficjalna aktualizacja od EA Sports.rar
2014-03-02 12:09 - 2014-03-08 13:55 - 00000000 ____D () C:\Program Files (x86)\Spyware Terminator
2014-03-02 12:09 - 2014-03-08 13:55 - 00000000 ____D () C:\Program Files (x86)\CStart8
2014-03-02 12:09 - 2014-03-08 13:54 - 00000000 ____D () C:\ProgramData\Spyware Terminator
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Spyware Terminator
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\CStart8
2014-03-02 10:45 - 2014-03-08 13:56 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-03-02 10:41 - 2014-03-02 10:43 - 00000000 ____D () C:\Users\TEMP.Lenovo.001
2014-03-02 10:41 - 2014-03-02 10:41 - 00000000 ____D () C:\Users\TEMP.Lenovo.001\AppData\Local\NVIDIA
2014-02-18 17:39 - 2014-02-18 17:39 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\PD Design Studio
2014-02-18 17:19 - 2013-12-27 19:42 - 00039200 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2014-02-18 17:19 - 2013-12-27 19:42 - 00033056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2014-02-16 21:58 - 2013-12-05 00:43 - 00583680 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2014-02-16 21:58 - 2013-12-05 00:37 - 00451072 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2014-02-16 21:03 - 2013-12-09 01:45 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-02-16 21:03 - 2013-12-09 00:59 - 00600064 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-02-16 21:03 - 2013-11-01 06:53 - 02232664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-02-16 21:02 - 2014-02-01 10:20 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-02-16 21:02 - 2014-02-01 10:19 - 02241536 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-02-16 21:02 - 2014-02-01 10:19 - 01365504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-02-16 21:02 - 2014-02-01 10:19 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2014-02-16 21:02 - 2014-02-01 10:19 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 19274240 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 15403520 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 03960320 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 02648576 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-02-16 21:02 - 2014-02-01 10:18 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-02-16 21:02 - 2014-02-01 08:58 - 01767936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-02-16 21:02 - 2014-02-01 08:58 - 01140736 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-02-16 21:02 - 2014-02-01 08:58 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 14359040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 13760512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 02877952 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 02049024 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 00039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-02-16 21:02 - 2014-02-01 08:57 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-02-16 21:02 - 2014-02-01 08:40 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-02-16 21:02 - 2014-02-01 08:34 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-02-16 21:02 - 2014-02-01 06:08 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2014-02-16 21:02 - 2013-12-05 00:43 - 01845248 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-02-16 21:02 - 2013-12-05 00:37 - 01419264 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2014-02-16 21:01 - 2014-01-13 00:30 - 02238976 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-02-16 21:01 - 2014-01-13 00:30 - 02032640 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-02-16 21:01 - 2013-11-20 01:15 - 03842560 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2014-02-16 21:01 - 2013-11-20 00:57 - 03288576 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll

==================== One Month Modified Files and Folders =======

2014-03-08 21:47 - 2014-03-08 21:47 - 00018611 _____ () C:\Users\Tomasz\Downloads\FRST.txt
2014-03-08 21:47 - 2014-03-08 21:46 - 00000000 ____D () C:\FRST
2014-03-08 21:47 - 2014-03-08 14:49 - 00138176 _____ () C:\Users\Tomasz\AppData\Roaming\msconfig.ini
2014-03-08 21:45 - 2014-03-08 21:45 - 02156544 _____ (Farbar) C:\Users\Tomasz\Downloads\FRST64.exe
2014-03-08 21:44 - 2014-03-08 21:44 - 00146136 _____ () C:\Users\Tomasz\Desktop\OTL.Txt
2014-03-08 21:44 - 2014-03-08 21:44 - 00078102 _____ () C:\Users\Tomasz\Desktop\Extras.Txt
2014-03-08 21:40 - 2014-03-08 21:40 - 00146136 _____ () C:\Users\Tomasz\Downloads\OTL.Txt
2014-03-08 21:40 - 2014-03-08 21:40 - 00078102 _____ () C:\Users\Tomasz\Downloads\Extras.Txt
2014-03-08 21:32 - 2014-03-08 21:32 - 00602112 _____ (OldTimer Tools) C:\Users\Tomasz\Downloads\OTL.exe
2014-03-08 21:00 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\system32\sru
2014-03-08 20:35 - 2014-03-08 20:25 - 00068264 _____ () C:\Users\Tomasz\Documents\perfekt.wmv.sfk
2014-03-08 20:34 - 2014-03-08 20:32 - 48134045 _____ () C:\Users\Tomasz\Desktop\end.wmv
2014-03-08 20:32 - 2014-03-08 20:32 - 01909457 _____ () C:\Users\Tomasz\Documents\zakonczone.wmv
2014-03-08 20:25 - 2014-03-08 20:25 - 08729048 _____ () C:\Users\Tomasz\Documents\perfekt.wmv.sfap0
2014-03-08 20:22 - 2014-03-08 20:19 - 13541715 _____ () C:\Users\Tomasz\Documents\perfekt.wmv
2014-03-08 19:59 - 2014-03-08 19:59 - 00000000 _____ () C:\Users\Tomasz\AppData\Roaming\system.ini
2014-03-08 19:59 - 2014-01-14 21:55 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\WinRAR
2014-03-08 19:59 - 2014-01-14 15:29 - 00000000 ___RD () C:\Users\Tomasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-08 19:58 - 2014-03-08 13:10 - 00000000 ___HD () C:\ProgramData\{$3483-6183-1568-3845$}
2014-03-08 19:55 - 2014-01-13 21:46 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-08 19:55 - 2012-08-01 16:51 - 00007468 _____ () C:\windows\PFRO.log
2014-03-08 18:58 - 2014-01-14 15:34 - 00003596 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2984077462-71462054-4283282391-1002
2014-03-08 18:55 - 2014-01-23 21:58 - 00000930 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-03-08 18:42 - 2014-03-08 18:42 - 03189359 _____ () C:\Users\Tomasz\Documents\Untitled2.wmv
2014-03-08 18:38 - 2014-03-08 18:38 - 00909553 _____ () C:\Users\Tomasz\Documents\Untitled.wmv
2014-03-08 18:35 - 2014-03-08 18:35 - 113273432 _____ () C:\Users\Tomasz\Documents\koniec.wmv.sfap0
2014-03-08 18:35 - 2014-03-08 18:35 - 04596824 _____ () C:\Users\Tomasz\Documents\Gameplay Intro.wmv.sfap0
2014-03-08 18:35 - 2014-03-08 18:35 - 02306648 _____ () C:\Users\Tomasz\Documents\codghosts.wmv.sfap0
2014-03-08 18:35 - 2014-03-08 18:35 - 00885016 _____ () C:\Users\Tomasz\Documents\koniec.wmv.sfk
2014-03-08 18:35 - 2014-03-08 18:35 - 00035976 _____ () C:\Users\Tomasz\Documents\Gameplay Intro.wmv.sfk
2014-03-08 18:35 - 2014-03-08 18:35 - 00018088 _____ () C:\Users\Tomasz\Documents\codghosts.wmv.sfk
2014-03-08 18:33 - 2014-03-08 18:33 - 00000000 ____D () C:\Users\Tomasz\Desktop\New folder
2014-03-08 18:33 - 2014-03-08 18:15 - 01323928 _____ () C:\Users\Tomasz\Downloads\Top 10 Epic Songs OF ALL TIME.mp3.sfk
2014-03-08 18:22 - 2014-01-13 22:17 - 01491883 _____ () C:\windows\WindowsUpdate.log
2014-03-08 18:02 - 2014-01-14 21:46 - 00001062 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-08 17:49 - 2014-03-08 17:49 - 12068912 _____ () C:\Users\Tomasz\Desktop\IMG_0551.wmv.sfap0
2014-03-08 17:49 - 2014-03-08 17:49 - 00094352 _____ () C:\Users\Tomasz\Desktop\IMG_0551.wmv.sfk
2014-03-08 17:46 - 2014-03-08 17:44 - 07549613 _____ () C:\Users\Tomasz\Documents\codghosts.wmv
2014-03-08 17:30 - 2014-03-08 17:28 - 00054448 _____ () C:\Users\Tomasz\Desktop\IMG_0550.wmv.sfk
2014-03-08 17:29 - 2014-03-08 17:27 - 40271589 _____ () C:\Users\Tomasz\Desktop\IMG_0551.wmv
2014-03-08 17:28 - 2014-03-08 17:28 - 06960720 _____ () C:\Users\Tomasz\Desktop\IMG_0550.wmv.sfap0
2014-03-08 17:27 - 2014-03-08 17:27 - 23619175 _____ () C:\Users\Tomasz\Desktop\IMG_0550.wmv
2014-03-08 17:25 - 2014-03-08 17:25 - 00001331 _____ () C:\Users\Public\Desktop\Freemake Video Converter.lnk
2014-03-08 17:25 - 2014-03-08 17:25 - 00000000 ____D () C:\Users\Tomasz\Documents\Freemake
2014-03-08 17:25 - 2014-03-08 17:25 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-03-08 17:25 - 2014-03-08 17:25 - 00000000 ____D () C:\ProgramData\Freemake
2014-03-08 17:25 - 2014-03-08 17:24 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-03-08 17:23 - 2014-03-08 17:23 - 01308224 _____ (Ellora Assets Corporation ) C:\Users\Tomasz\Downloads\FreemakeVideoConverterSetup.exe
2014-03-08 17:14 - 2014-03-08 17:14 - 05344058 _____ (ALLPlayer.org ) C:\Users\Tomasz\Downloads\ALLConverterTo3GP.exe
2014-03-08 17:14 - 2014-03-08 17:14 - 00000000 ____D () C:\Program Files (x86)\ALLConverter
2014-03-08 17:08 - 2014-01-23 22:13 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\Apple Computer
2014-03-08 17:06 - 2014-03-08 17:06 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-03-08 17:05 - 2014-03-08 17:05 - 41945432 _____ (Apple Inc.) C:\Users\Tomasz\Downloads\QuickTimeInstaller.exe
2014-03-08 16:52 - 2014-03-07 22:49 - 00000000 ____D () C:\Users\Tomasz\Downloads\Nowy folder
2014-03-08 16:23 - 2014-03-08 16:19 - 14645583 _____ () C:\Users\Tomasz\Documents\Gameplay Intro.wmv
2014-03-08 16:17 - 2014-03-08 16:16 - 00021216 _____ () C:\Users\Tomasz\Documents\intro_epic_warrior.wmv.sfk
2014-03-08 16:16 - 2014-03-08 16:16 - 03371672 _____ () C:\Users\Tomasz\Documents\intro_movie.wmv.sfap0
2014-03-08 16:16 - 2014-03-08 16:16 - 02706968 _____ () C:\Users\Tomasz\Documents\intro_epic_warrior.wmv.sfap0
2014-03-08 16:16 - 2014-03-08 16:16 - 00026408 _____ () C:\Users\Tomasz\Documents\intro_movie.wmv.sfk
2014-03-08 16:15 - 2014-03-08 16:14 - 08389631 _____ () C:\Users\Tomasz\Documents\intro_epic_warrior.wmv
2014-03-08 15:38 - 2014-03-08 15:37 - 05317635 _____ () C:\Users\Tomasz\Documents\intro_movie.wmv
2014-03-08 15:34 - 2014-01-14 20:19 - 00000000 ____D () C:\windows\system32\MRT
2014-03-08 15:32 - 2014-03-08 15:32 - 03376300 _____ () C:\Users\Tomasz\Documents\intro_movie.wav
2014-03-08 15:19 - 2014-01-14 20:19 - 88567024 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-03-08 15:19 - 2012-07-26 06:26 - 00262144 ___SH () C:\windows\system32\config\ELAM
2014-03-08 15:09 - 2014-03-08 15:06 - 00020960 _____ () C:\Users\Tomasz\Downloads\intro_gaming_channel_background.mp4.sfk
2014-03-08 15:02 - 2014-03-08 15:00 - 109266350 _____ () C:\Users\Tomasz\Downloads\intro_gaming_channel.rar
2014-03-08 14:50 - 2014-03-08 14:49 - 00000000 ___HD () C:\{$3483-6183-1568-3845$}
2014-03-08 14:48 - 2014-03-07 22:41 - 00002412 _____ () C:\Users\Tomasz\Documents\Register Vegas Pro.htm
2014-03-08 14:48 - 2014-03-07 22:34 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Sony
2014-03-08 14:45 - 2014-03-08 14:43 - 00000000 ____D () C:\ProgramData\Sony
2014-03-08 14:44 - 2014-03-08 14:41 - 00046184 _____ (NetFilterSDK.com) C:\windows\system32\Drivers\arcawfp.sys
2014-03-08 14:41 - 2014-03-08 14:40 - 00000000 ____D () C:\ProgramData\ArcaBit
2014-03-08 14:40 - 2014-03-08 14:40 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Opera Software
2014-03-08 14:40 - 2014-03-08 14:40 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\Opera Software
2014-03-08 14:40 - 2014-03-08 14:39 - 00000000 ____D () C:\Program Files\Arcabit
2014-03-08 14:39 - 2014-03-08 14:40 - 00049904 _____ (ArcaBit) C:\windows\system32\Drivers\abndis.sys
2014-03-08 14:38 - 2014-03-08 14:38 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-08 14:37 - 2014-03-08 14:37 - 299454696 _____ (Arcabit Ltd.) C:\Users\Tomasz\Downloads\ArcabitSetup_av_demo.exe
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D7
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D6
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D5
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D4
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D3
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D2
2014-03-08 14:36 - 2014-03-08 14:36 - 00003252 _____ () C:\windows\System32\Tasks\Opera D1
2014-03-08 14:36 - 2014-03-08 14:36 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-08 14:31 - 2014-03-08 14:31 - 00673248 _____ ( ) C:\Users\Tomasz\Downloads\Arcabit-AntiVirus(13023).exe
2014-03-08 14:25 - 2014-01-14 15:46 - 00000000 ____D () C:\ProgramData\MFAData
2014-03-08 14:23 - 2014-01-14 21:46 - 00001058 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-08 14:21 - 2012-07-26 08:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-03-08 14:20 - 2012-07-26 06:26 - 00524288 ___SH () C:\windows\system32\config\BBI
2014-03-08 14:19 - 2014-01-14 15:46 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\Avg2014
2014-03-08 14:18 - 2014-01-14 15:47 - 00000000 ___HD () C:\$AVG
2014-03-08 14:18 - 2012-07-26 09:12 - 00000000 ___HD () C:\windows\ELAMBKUP
2014-03-08 14:12 - 2014-01-16 02:57 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\CrashDumps
2014-03-08 14:06 - 2012-11-21 11:50 - 00794946 _____ () C:\windows\system32\perfh015.dat
2014-03-08 14:06 - 2012-11-21 11:50 - 00159530 _____ () C:\windows\system32\perfc015.dat
2014-03-08 14:06 - 2012-07-26 08:28 - 01793398 _____ () C:\windows\system32\PerfStringBackup.INI
2014-03-08 13:59 - 2014-01-16 04:53 - 00000000 ____D () C:\Users\bocze_000
2014-03-08 13:59 - 2014-01-14 15:28 - 00000000 ____D () C:\Users\Tomasz
2014-03-08 13:58 - 2012-07-26 06:38 - 00000000 ____D () C:\windows\system32\Sysprep
2014-03-08 13:57 - 2012-07-26 06:37 - 00000000 ____D () C:\windows\servicing
2014-03-08 13:56 - 2014-03-02 10:45 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-03-08 13:56 - 2014-01-17 17:03 - 00000000 ____D () C:\Users\Tomasz\Documents\FIFA 14
2014-03-08 13:56 - 2014-01-15 20:58 - 00000000 ____D () C:\ProgramData\AVG SafeGuard toolbar
2014-03-08 13:56 - 2014-01-14 15:47 - 00000000 ____D () C:\ProgramData\AVG2014
2014-03-08 13:55 - 2014-03-02 12:09 - 00000000 ____D () C:\Program Files (x86)\Spyware Terminator
2014-03-08 13:55 - 2014-03-02 12:09 - 00000000 ____D () C:\Program Files (x86)\CStart8
2014-03-08 13:55 - 2014-01-15 20:58 - 00000000 ____D () C:\Program Files (x86)\AVG SafeGuard toolbar
2014-03-08 13:54 - 2014-03-02 12:09 - 00000000 ____D () C:\ProgramData\Spyware Terminator
2014-03-08 13:53 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\registration
2014-03-08 13:50 - 2014-01-14 15:47 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-03-08 13:32 - 2014-01-14 15:46 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\MFAData
2014-03-08 00:16 - 2014-03-08 00:16 - 00000000 ____D () C:\Users\Tomasz\Documents\OFX Presets
2014-03-07 23:30 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\AUInstallAgent
2014-03-07 22:41 - 2014-03-07 22:41 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Publish Providers
2014-03-07 22:41 - 2014-03-07 22:41 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\NVIDIA
2014-03-07 22:39 - 2014-03-07 22:35 - 00000000 ____D () C:\Users\Tomasz\AppData\Local\Sony
2014-03-07 22:35 - 2014-03-07 22:35 - 00000000 ____D () C:\Program Files\Sony
2014-03-07 22:35 - 2014-03-07 22:35 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-03-02 12:58 - 2014-03-02 12:58 - 01394145 _____ () C:\Users\Tomasz\Downloads\Oficjalna aktualizacja od EA Sports.rar
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\Spyware Terminator
2014-03-02 12:09 - 2014-03-02 12:09 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\CStart8
2014-03-02 10:57 - 2014-01-14 21:46 - 00004034 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-02 10:57 - 2014-01-14 21:46 - 00003798 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-02 10:55 - 2014-01-23 21:58 - 00003818 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-03-02 10:45 - 2014-01-15 20:58 - 00050976 _____ (AVG Technologies) C:\windows\system32\Drivers\avgtpx64.sys
2014-03-02 10:43 - 2014-03-02 10:41 - 00000000 ____D () C:\Users\TEMP.Lenovo.001
2014-03-02 10:41 - 2014-03-02 10:41 - 00000000 ____D () C:\Users\TEMP.Lenovo.001\AppData\Local\NVIDIA
2014-02-18 17:43 - 2014-01-23 22:02 - 00000000 ___RD () C:\Users\Tomasz\Desktop\GRY
2014-02-18 17:43 - 2014-01-15 21:48 - 00000000 ____D () C:\GRY
2014-02-18 17:39 - 2014-02-18 17:39 - 00000000 ____D () C:\Users\Tomasz\AppData\Roaming\PD Design Studio
2014-02-18 17:19 - 2014-01-13 21:45 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-02-18 17:19 - 2012-07-26 08:21 - 00045028 _____ () C:\windows\setupact.log
2014-02-17 23:03 - 2012-07-26 09:14 - 00694240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-02-17 23:03 - 2012-07-26 09:14 - 00078304 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-16 20:01 - 2012-07-26 09:12 - 00000000 ____D () C:\windows\rescache

Files to move or delete:
====================
C:\Users\Tomasz\AppData\Roaming\system.ini
C:\ProgramData\335936624.exe
C:\Users\Tomasz\AppData\Roaming\msconfig.ini


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-08 15:21

==================== End Of Log ============================