Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by MB (administrator) on MARCIN on 18-03-2014 19:11:42
Running from D:\Z internetu
Windows 8 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
() C:\Program Files (x86)\Opera\20.0.1387.77\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\20.0.1387.77\opera.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Eyeo GmbH) C:\Program Files\Adblock Plus for IE\AdblockPlusEngine.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4962320 2014-01-22] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641704 2012-11-16] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKU\S-1-5-21-3905042303-2910020944-1063780956-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-3905042303-2910020944-1063780956-1001\...\Run: [NextLive] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\MB\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-3905042303-2910020944-1063780956-1001\...\Run: [SpeedUpMyComputer] - C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss
HKU\S-1-5-21-3905042303-2910020944-1063780956-1001\...\Run: [FixMyRegistry] - C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBD4B873A988BCE01
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - DefaultScope {2C582628-88C8-4887-8470-2DF01EB9A18D} URL = http://www.google.com/search?hl=pl&q={searchTerms}
SearchScopes: HKCU - {2C582628-88C8-4887-8470-2DF01EB9A18D} URL = http://www.google.com/search?hl=pl&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 62.179.1.62 62.179.1.63

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchProvider: qvo6
CHR DefaultSearchURL: http://www.google.com
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\pdf.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Extension: (HQ-Video-Pro-1.4) - C:\Users\MB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apehpgkcgpefnlpfindggfdecmgihlaj [2014-03-05]
CHR Extension: (Google Search) - C:\Users\MB\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-28]
CHR Extension: (Gmail) - C:\Users\MB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-28]

==================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3788816 2014-01-22] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2014-01-03] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 wampapache; c:\wamp\bin\apache\apache2.4.4\bin\httpd.exe [24576 2013-06-23] (Apache Software Foundation)
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe [12867584 2013-06-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-10-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [243480 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [196376 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [252728 2013-10-21] (AVG Technologies CZ, s.r.o.)
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-04] (www.winchiphead.com)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-11-09] (Disc Soft Ltd)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-18 19:10 - 2014-03-18 19:11 - 00000000 ____D () C:\FRST
2014-03-17 23:42 - 2014-03-17 23:43 - 00323984 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-17 22:54 - 2014-03-17 22:54 - 00000071 _____ () C:\Users\MB\Desktop\A.Davis defense.txt
2014-03-17 22:42 - 2014-03-17 22:52 - 00003854 _____ () C:\Users\MB\AppData\Roaming\gns3.ini
2014-03-17 22:40 - 2014-03-18 18:30 - 00001785 _____ () C:\Users\MB\Desktop\GNS3.lnk
2014-03-17 22:40 - 2014-03-17 22:40 - 00001616 _____ () C:\Users\pb\Desktop\GNS3.lnk
2014-03-17 22:39 - 2014-03-17 22:40 - 00000000 ____D () C:\Program Files\GNS3
2014-03-17 22:39 - 2014-03-17 22:39 - 00000000 ____D () C:\Program Files (x86)\Wireshark
2014-03-17 15:51 - 2014-03-17 15:51 - 00001290 _____ () C:\Users\MB\Desktop\Havlicek all time.txt
2014-03-15 22:57 - 2014-03-15 22:57 - 00001007 _____ () C:\Users\MB\Desktop\rwghw.txt
2014-03-14 22:40 - 2014-03-14 22:40 - 00000267 _____ () C:\Users\MB\Desktop\whw.txt
2014-03-14 11:28 - 2014-03-14 11:28 - 00000000 ____D () C:\Users\MB\Desktop\Unix
2014-03-12 15:07 - 2013-10-25 08:34 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-03-12 15:07 - 2013-10-24 23:34 - 00248240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-03-12 15:06 - 2014-02-23 09:13 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-12 15:06 - 2014-02-23 09:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-12 15:06 - 2014-02-23 09:13 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-03-12 15:06 - 2014-02-23 09:13 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-03-12 15:06 - 2014-02-23 09:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-12 15:06 - 2014-02-23 09:12 - 19273216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-12 15:06 - 2014-02-23 09:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-12 15:06 - 2014-02-23 09:12 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-12 15:06 - 2014-02-23 09:11 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-12 15:06 - 2014-02-23 07:54 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-12 15:06 - 2014-02-23 07:54 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-12 15:06 - 2014-02-23 07:54 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 14358016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-12 15:06 - 2014-02-23 07:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-12 15:06 - 2014-02-23 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-12 15:06 - 2014-02-23 07:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-12 15:06 - 2014-02-23 05:06 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-03-12 15:06 - 2014-02-08 05:34 - 04036608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-12 15:06 - 2014-02-06 00:41 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-12 15:06 - 2014-02-06 00:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-12 15:06 - 2014-01-31 01:48 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-12 15:06 - 2014-01-31 01:06 - 01628160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-12 15:06 - 2013-12-07 07:36 - 19751936 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-03-12 15:06 - 2013-12-07 06:15 - 17560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-03-11 00:09 - 2014-03-11 00:18 - 00000581 _____ () C:\Users\MB\Desktop\qwq.txt
2014-03-09 18:01 - 2014-03-09 18:01 - 00000000 ____D () C:\Windows\Minidump
2014-03-09 11:26 - 2014-03-09 11:26 - 00000046 _____ () C:\Windows\SysWOW64\error.log
2014-03-08 16:32 - 2014-03-14 11:28 - 00000000 ____D () C:\DC
2014-03-07 14:56 - 2014-03-07 15:23 - 00000000 ____D () C:\wamp
2014-03-06 00:50 - 2014-03-06 00:52 - 00003874 _____ () C:\Users\MB\Desktop\lys.txt
2014-03-05 16:05 - 2014-03-18 16:05 - 00003120 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-chromeinstaller.job
2014-03-05 16:05 - 2014-03-18 16:05 - 00002606 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
2014-03-05 16:05 - 2014-03-18 16:05 - 00001508 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job
2014-03-05 16:05 - 2014-03-05 16:19 - 00000000 ____D () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
2014-03-05 16:05 - 2014-03-05 16:19 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-03-05 16:05 - 2014-03-05 16:06 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-05 16:05 - 2014-03-05 16:05 - 00004512 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader
2014-03-05 14:47 - 2014-03-05 14:47 - 00000000 ____D () C:\Users\MB\AppData\Local\GHISLER
2014-03-05 14:47 - 2014-03-05 14:45 - 00001294 _____ () C:\config.inc.php.dist
2014-03-05 14:25 - 2014-03-05 14:25 - 00000000 ____D () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-05 14:25 - 2014-03-05 14:25 - 00000000 ____D () C:\Users\MB\AppData\Roaming\GHISLER
2014-03-05 14:25 - 2014-03-05 14:25 - 00000000 ____D () C:\totalcmd
2014-03-05 14:01 - 2014-03-07 13:37 - 00000000 ____D () C:\xampp
2014-03-02 23:26 - 2014-03-02 23:48 - 00001227 _____ () C:\Users\MB\Desktop\qetqe.txt
2014-03-02 21:48 - 2014-03-02 21:48 - 00000000 ____D () C:\Games
2014-03-02 21:36 - 2014-03-02 21:36 - 00000066 _____ () C:\Users\MB\Desktop\Kosmos PROGRAMY.txt
2014-03-02 00:09 - 2014-03-02 13:43 - 00008120 _____ () C:\Users\MB\Desktop\ara.txt
2014-02-28 13:03 - 2014-02-28 13:03 - 00000069 _____ () C:\Users\MB\Desktop\NPI RAPM a PI RAPM.txt
2014-02-25 17:50 - 2014-02-28 20:50 - 00000074 _____ () C:\Users\MB\Desktop\co zrobic.txt
2014-02-23 13:56 - 2014-02-23 14:27 - 00150303 _____ () C:\Users\MB\Desktop\pka.pka
2014-02-22 21:27 - 2014-02-22 21:27 - 00000180 _____ () C:\Users\MB\Desktop\numery.txt
2014-02-19 21:06 - 2014-02-19 21:06 - 00000000 ____D () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LearnKey
2014-02-19 21:06 - 2014-02-19 21:06 - 00000000 ____D () C:\Program Files\LearnKey
2014-02-19 21:06 - 2004-02-12 10:11 - 00600576 _____ (LearnKey, Inc.) C:\Windows\LkUnInst.exe
2014-02-19 21:06 - 2004-02-12 10:10 - 00003460 _____ () C:\Windows\splash.ini
2014-02-19 21:06 - 2004-02-12 06:52 - 00475136 _____ (Sequiter Software Inc.) C:\Windows\lk_c4.dll
2014-02-19 21:06 - 2004-02-12 06:52 - 00399872 _____ () C:\Windows\c4dstand.dll
2014-02-19 21:06 - 2001-01-25 02:12 - 00098304 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid.dll
2014-02-19 20:51 - 2014-02-19 20:51 - 00000863 _____ () C:\Users\pb\Desktop\CCNA® Router and Switch eSIM.lnk
2014-02-19 20:51 - 1999-12-17 09:13 - 00086016 _____ (MindVision Software) C:\Windows\unvise32.exe

==================== One Month Modified Files and Folders =======

2014-03-18 19:11 - 2014-03-18 19:10 - 00000000 ____D () C:\FRST
2014-03-18 19:01 - 2013-09-28 11:39 - 00001054 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-18 19:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-03-18 18:53 - 2013-07-28 14:55 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-18 18:37 - 2013-07-28 15:05 - 00000183 _____ () C:\Users\MB\Desktop\ro.txt
2014-03-18 18:30 - 2014-03-17 22:40 - 00001785 _____ () C:\Users\MB\Desktop\GNS3.lnk
2014-03-18 18:21 - 2013-07-28 15:52 - 00000000 ____D () C:\Users\MB\AppData\Roaming\GG
2014-03-18 17:38 - 2013-08-13 17:13 - 00000000 ____D () C:\ProgramData\MFAData
2014-03-18 16:05 - 2014-03-05 16:05 - 00003120 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-chromeinstaller.job
2014-03-18 16:05 - 2014-03-05 16:05 - 00002606 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-firefoxinstaller.job
2014-03-18 16:05 - 2014-03-05 16:05 - 00001508 _____ () C:\Windows\Tasks\HQ-Video-Pro-1.4-codedownloader.job
2014-03-18 13:27 - 2013-07-28 11:07 - 01890249 _____ () C:\Windows\WindowsUpdate.log
2014-03-18 13:16 - 2013-07-31 11:52 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-18 13:14 - 2013-07-30 10:49 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-18 13:14 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-03-18 10:48 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-03-18 10:42 - 2013-09-28 11:39 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-17 23:43 - 2014-03-17 23:42 - 00323984 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-17 23:43 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-17 23:42 - 2013-07-28 10:57 - 00014880 _____ () C:\Windows\PFRO.log
2014-03-17 22:54 - 2014-03-17 22:54 - 00000071 _____ () C:\Users\MB\Desktop\A.Davis defense.txt
2014-03-17 22:52 - 2014-03-17 22:42 - 00003854 _____ () C:\Users\MB\AppData\Roaming\gns3.ini
2014-03-17 22:40 - 2014-03-17 22:40 - 00001616 _____ () C:\Users\pb\Desktop\GNS3.lnk
2014-03-17 22:40 - 2014-03-17 22:39 - 00000000 ____D () C:\Program Files\GNS3
2014-03-17 22:39 - 2014-03-17 22:39 - 00000000 ____D () C:\Program Files (x86)\Wireshark
2014-03-17 19:57 - 2012-07-26 10:51 - 00793704 _____ () C:\Windows\system32\perfh015.dat
2014-03-17 19:57 - 2012-07-26 10:51 - 00159324 _____ () C:\Windows\system32\perfc015.dat
2014-03-17 19:57 - 2012-07-26 08:28 - 01793398 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-17 15:51 - 2014-03-17 15:51 - 00001290 _____ () C:\Users\MB\Desktop\Havlicek all time.txt
2014-03-15 22:57 - 2014-03-15 22:57 - 00001007 _____ () C:\Users\MB\Desktop\rwghw.txt
2014-03-15 21:05 - 2012-07-26 08:21 - 00018088 _____ () C:\Windows\setupact.log
2014-03-15 15:37 - 2014-01-07 20:54 - 00000000 ____D () C:\Users\MB\Cisco Packet Tracer 6.0.1
2014-03-15 15:33 - 2013-07-31 14:23 - 00000360 _____ () C:\Users\MB\.packettracer
2014-03-15 15:32 - 2014-02-06 23:17 - 00001605 _____ () C:\Users\MB\Desktop\Moje odp.txt
2014-03-14 22:40 - 2014-03-14 22:40 - 00000267 _____ () C:\Users\MB\Desktop\whw.txt
2014-03-14 17:17 - 2013-07-28 15:05 - 00000255 _____ () C:\Users\MB\Desktop\wisz.txt
2014-03-14 11:28 - 2014-03-14 11:28 - 00000000 ____D () C:\Users\MB\Desktop\Unix
2014-03-14 11:28 - 2014-03-08 16:32 - 00000000 ____D () C:\DC
2014-03-14 11:27 - 2013-09-21 22:01 - 00000000 ____D () C:\Users\MB\Desktop\Kosz
2014-03-13 20:53 - 2013-07-28 14:44 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-03-13 17:35 - 2013-09-10 09:27 - 00000000 ____D () C:\Users\MB\AppData\Local\DM
2014-03-13 17:34 - 2013-09-05 16:49 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-13 17:31 - 2014-01-08 19:47 - 00000000 ____D () C:\Program Files (x86)\EWB512
2014-03-13 17:31 - 2013-10-03 19:43 - 00000995 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-03-13 17:31 - 2012-07-26 06:26 - 00000107 _____ () C:\Windows\win.ini
2014-03-13 08:49 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\rescache
2014-03-13 08:30 - 2013-07-28 15:52 - 00000000 ____D () C:\Users\MB\AppData\Local\GG
2014-03-13 08:21 - 2013-07-28 11:08 - 00000000 ___RD () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-13 08:21 - 2013-07-28 11:08 - 00000000 ___RD () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-13 08:17 - 2013-11-18 13:44 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-13 08:17 - 2013-11-18 13:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-13 08:16 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-03-13 08:15 - 2012-07-26 09:12 - 00000000 ___RD () C:\Windows\ToastData
2014-03-13 08:15 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-13 08:15 - 2012-07-26 09:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-13 08:15 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-13 08:15 - 2012-07-26 09:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-12 09:47 - 2013-07-28 11:13 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3905042303-2910020944-1063780956-1001
2014-03-11 18:53 - 2013-07-28 14:55 - 00003818 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-11 00:18 - 2014-03-11 00:09 - 00000581 _____ () C:\Users\MB\Desktop\qwq.txt
2014-03-09 18:01 - 2014-03-09 18:01 - 00000000 ____D () C:\Windows\Minidump
2014-03-09 18:01 - 2013-07-28 10:57 - 00081920 ____N () C:\Windows\Minidump\030914-41387-01.dmp
2014-03-09 11:26 - 2014-03-09 11:26 - 00000046 _____ () C:\Windows\SysWOW64\error.log
2014-03-07 15:23 - 2014-03-07 14:56 - 00000000 ____D () C:\wamp
2014-03-07 13:41 - 2013-12-25 18:26 - 00000000 ____D () C:\Users\MB\AppData\Roaming\newnext.me
2014-03-07 13:40 - 2013-07-28 11:07 - 00000000 ____D () C:\Users\MB
2014-03-07 13:37 - 2014-03-05 14:01 - 00000000 ____D () C:\xampp
2014-03-07 13:37 - 2013-07-28 15:58 - 00000000 ____D () C:\Users\pb
2014-03-07 13:36 - 2013-10-03 19:41 - 00000000 ____D () C:\ProgramData\AVG2014
2014-03-07 13:36 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\registration
2014-03-06 15:45 - 2013-08-01 14:40 - 00000000 ____D () C:\Users\MB\AppData\Roaming\vlc
2014-03-06 00:52 - 2014-03-06 00:50 - 00003874 _____ () C:\Users\MB\Desktop\lys.txt
2014-03-05 16:19 - 2014-03-05 16:05 - 00000000 ____D () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
2014-03-05 16:19 - 2014-03-05 16:05 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-03-05 16:06 - 2014-03-05 16:05 - 00000000 ____D () C:\Program Files (x86)\HQ-Video-Pro-1.4
2014-03-05 16:05 - 2014-03-05 16:05 - 00004512 _____ () C:\Windows\System32\Tasks\HQ-Video-Pro-1.4-codedownloader
2014-03-05 14:47 - 2014-03-05 14:47 - 00000000 ____D () C:\Users\MB\AppData\Local\GHISLER
2014-03-05 14:45 - 2014-03-05 14:47 - 00001294 _____ () C:\config.inc.php.dist
2014-03-05 14:25 - 2014-03-05 14:25 - 00000000 ____D () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2014-03-05 14:25 - 2014-03-05 14:25 - 00000000 ____D () C:\Users\MB\AppData\Roaming\GHISLER
2014-03-05 14:25 - 2014-03-05 14:25 - 00000000 ____D () C:\totalcmd
2014-03-04 23:52 - 2013-09-12 09:09 - 00694240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-04 23:52 - 2013-09-12 09:09 - 00078304 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-03 23:51 - 2013-10-29 18:00 - 00000772 _____ () C:\Users\MB\Desktop\strony wpisy.txt
2014-03-03 00:26 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-03-02 23:48 - 2014-03-02 23:26 - 00001227 _____ () C:\Users\MB\Desktop\qetqe.txt
2014-03-02 21:48 - 2014-03-02 21:48 - 00000000 ____D () C:\Games
2014-03-02 21:36 - 2014-03-02 21:36 - 00000066 _____ () C:\Users\MB\Desktop\Kosmos PROGRAMY.txt
2014-03-02 13:43 - 2014-03-02 00:09 - 00008120 _____ () C:\Users\MB\Desktop\ara.txt
2014-02-28 20:50 - 2014-02-25 17:50 - 00000074 _____ () C:\Users\MB\Desktop\co zrobic.txt
2014-02-28 13:03 - 2014-02-28 13:03 - 00000069 _____ () C:\Users\MB\Desktop\NPI RAPM a PI RAPM.txt
2014-02-23 14:27 - 2014-02-23 13:56 - 00150303 _____ () C:\Users\MB\Desktop\pka.pka
2014-02-23 09:13 - 2014-03-12 15:06 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-23 09:13 - 2014-03-12 15:06 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-23 09:13 - 2014-03-12 15:06 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-02-23 09:13 - 2014-03-12 15:06 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-02-23 09:13 - 2014-03-12 15:06 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-23 09:12 - 2014-03-12 15:06 - 19273216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-23 09:12 - 2014-03-12 15:06 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-23 09:12 - 2014-03-12 15:06 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-23 09:11 - 2014-03-12 15:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-23 07:54 - 2014-03-12 15:06 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-23 07:54 - 2014-03-12 15:06 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-23 07:54 - 2014-03-12 15:06 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 14358016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-23 07:53 - 2014-03-12 15:06 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-23 07:35 - 2014-03-12 15:06 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-23 07:31 - 2014-03-12 15:06 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-23 05:06 - 2014-03-12 15:06 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-02-22 21:27 - 2014-02-22 21:27 - 00000180 _____ () C:\Users\MB\Desktop\numery.txt
2014-02-19 21:06 - 2014-02-19 21:06 - 00000000 ____D () C:\Users\MB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LearnKey
2014-02-19 21:06 - 2014-02-19 21:06 - 00000000 ____D () C:\Program Files\LearnKey
2014-02-19 20:51 - 2014-02-19 20:51 - 00000863 _____ () C:\Users\pb\Desktop\CCNA® Router and Switch eSIM.lnk
2014-02-19 20:51 - 2001-10-25 16:54 - 00000842 _____ () C:\windowsboot.ini
2014-02-18 09:56 - 2013-09-28 11:39 - 00004026 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-18 09:56 - 2013-09-28 11:39 - 00003790 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

Files to move or delete:
====================
C:\Users\MB\AppData\Roaming\CamLayout.ini
C:\Users\MB\AppData\Roaming\CamShapes.ini


Some content of TEMP:
====================
C:\Users\MB\AppData\Local\Temp\bdfilters.dll
C:\Users\MB\AppData\Local\Temp\DownloadManager.exe
C:\Users\MB\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\MB\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\MB\AppData\Local\Temp\FixMyRegistry.exe
C:\Users\MB\AppData\Local\Temp\ggdrive-menu.exe
C:\Users\MB\AppData\Local\Temp\ggdrive-overlay.exe
C:\Users\MB\AppData\Local\Temp\gkc.exe
C:\Users\MB\AppData\Local\Temp\hq-video-pro-1-4.exe
C:\Users\MB\AppData\Local\Temp\htmlayout.dll
C:\Users\MB\AppData\Local\Temp\installstats.exe
C:\Users\MB\AppData\Local\Temp\Quarantine.exe
C:\Users\MB\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\MB\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\MB\AppData\Local\Temp\SpeedUpMyComputer.exe
C:\Users\MB\AppData\Local\Temp\toolbar349395922.exe
C:\Users\MB\AppData\Local\Temp\toolbar349396640.exe
C:\Users\MB\AppData\Local\Temp\uninstall349436888.exe
C:\Users\MB\AppData\Local\Temp\uninstall349443565.exe
C:\Users\MB\AppData\Local\Temp\VuuPC.exe
C:\Users\MB\AppData\Local\Temp\_is9155.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-18 13:14

==================== End Of Log ============================