Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-12-2014
Ran by Jakub (administrator) on KUBA on 10-12-2014 07:03:07
Running from C:\Users\Jakub\Downloads
Loaded Profile: Jakub (Available profiles: Jakub)
Platform: Windows 8 (X64) OS Language: Polski (Polska)
Internet Explorer Version 10
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
() C:\Program Files (x86)\Tor\tor.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccsvchst.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccsvchst.exe
(Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(BitTorrent Inc.) C:\Users\Jakub\AppData\Roaming\uTorrent\uTorrent.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
() C:\Program Files (x86)\NapiProjekt\napisy.exe
() C:\ProgramData\d7a0fe93-7bf3-4f3d-89c3-fe4e144b2eb8\maintainer.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrv.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
() C:\Program Files (x86)\Opera\26.0.1656.32\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.32\opera.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-20] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-25] (Synaptics Incorporated)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2774936 2014-05-13] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3681688 2014-05-13] (Crawler.com)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2012-09-14] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [3510704 2014-04-17] (ALLPlayer Group Ltd.)
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Run: [Yahoo! Search] => C:\Users\Jakub\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Run: [IPLA!] => C:\Program Files (x86)\ipla\ipla.exe [21353568 2014-10-20] (Redefine Sp z o.o.)
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Run: [uTorrent] => C:\Users\Jakub\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.)
HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-632503941-784987641-2221626834-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1400746170&from=cor&uid=TOSHIBAXMQ01ABD050_Z2EBP4YRTXXZ2EBP4YRT&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1400746170&from=cor&uid=TOSHIBAXMQ01ABD050_Z2EBP4YRTXXZ2EBP4YRT&q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-632503941-784987641-2221626834-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
HKU\S-1-5-21-632503941-784987641-2221626834-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-632503941-784987641-2221626834-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=ds&ts=1402563856&from=wpm0612&uid=TOSHIBAXMQ01ABD050_Z2EBP4YRTXXZ2EBP4YRT&q={searchTerms}
HKU\S-1-5-21-632503941-784987641-2221626834-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKLM -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKLM -> {FAAD287F-114E-4A32-BE58-5DF26763F9EE} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKLM-x32 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKLM-x32 -> {FAAD287F-114E-4A32-BE58-5DF26763F9EE} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKU\S-1-5-19 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKU\S-1-5-20 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKU\S-1-5-20 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1418122108
SearchScopes: HKU\S-1-5-21-632503941-784987641-2221626834-1001 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1417896028
SearchScopes: HKU\S-1-5-21-632503941-784987641-2221626834-1001 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt&ts=1417896028
SearchScopes: HKU\S-1-5-21-632503941-784987641-2221626834-1001 -> {956E33D5-F9E3-41C7-8976-891429F9B936} URL = http://rts.dsrlte.com/?q={searchTerms}&r=862
SearchScopes: HKU\S-1-5-21-632503941-784987641-2221626834-1001 -> {B224AA02-F7C8-3A2B-859F-560B80767E4A} URL = http://kl.startnow.com/s/?q={searchTerms}&src=defsearch&provider=&provider_name=yahoo&provider_code=&partner_id=693&product_id=876&affiliate_id=&channel=&toolbar_id=200&toolbar_version=2.5.0&install_country=PL&install_date=20130411&user_guid=86697ECB1E2C43E6804F6568A3F69CF6&machine_id=09ea5fdad62f6076ae03a91a4caca32a&browser=IE&os=win&os_version=6.2-x64-SP0&iesrc={referrer:source}
SearchScopes: HKU\S-1-5-21-632503941-784987641-2221626834-1001 -> {FAAD287F-114E-4A32-BE58-5DF26763F9EE} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: YooutubeeAdBlockeu -> {00f81ea5-d836-409f-b60f-dbf2ea98d48b} -> C:\Program Files (x86)\YooutubeeAdBlockeu\7BdZ9oQlEZNXLu.dll No File
BHO-x32: SaveerExttensiionu -> {0aa1da7c-a556-415f-81de-86bd4759e681} -> C:\ProgramData\SaveerExttensiionu\qnb0vQVWC2v1sc.dll No File
BHO-x32: Deal Keeper -> {1ec8187a-6435-44e3-bbe4-6ce6d3c69254} -> C:\Program Files (x86)\Deal Keeper\DealKeeperBHO.dll No File
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll (Symantec Corporation)
BHO-x32: GGoSAvEE -> {69b7de13-dbbf-4f01-a0d0-e78e170f0785} -> C:\ProgramData\GGoSAvEE\d3J1j3rzfHg5Ar.dll No File
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: SaverExtension -> {7fbbb258-aa77-41e4-abc1-7c322c0539b1} -> C:\ProgramData\SaverExtension\47FtM2b8KBJDZN.dll No File
BHO-x32: GGoSave -> {8dc3962e-0cee-4e31-a9d7-cae8a26b8f5b} -> C:\Program Files (x86)\GGoSave\ghatrWl2iCuQDz.dll No File
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: FIndBEstDeaili -> {fd6cd95c-f512-49f0-81d1-f4ceb7269849} -> C:\ProgramData\FIndBEstDeaili\Zosc8qp3Jjhz5D.dll No File
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\coIEPlg.dll (Symantec Corporation)
Toolbar: HKU\S-1-5-21-632503941-784987641-2221626834-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496
FF DefaultSearchUrl: hxxp://websearch.allsearches.info/?pid=34&r=2014/10/06&hid=7131349590877023000&lg=EN&cc=PL&unqvl=64&l=1&q=
FF Keyword.URL: hxxp://rts.dsrlte.com/?q=
FF Homepage: hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
FF NewTab: hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=toshibaxmq01abd050_z2ebp4yrtxxz2ebp4yrt
FF DefaultSearchEngine: YAC Safe Search
FF SearchEngineOrder.1: YAC Safe Search
FF SelectedSearchEngine: YAC Safe Search
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin-x32: @ganymede/GanymedeNetPlugin,version=1.0 -> C:\Program Files (x86)\Ganymede\Plugins\npganymedenet.dll ( )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin-x32: @unity3d.com/UnityPlayer,version=1.0 -> C:\Program Files (x86)\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-632503941-784987641-2221626834-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Jakub\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF user.js: detected! => C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npganymedenet.dll ( )
FF SearchPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\searchplugins\dsrlte.xml
FF SearchPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\searchplugins\keepmysearch.xml
FF SearchPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\searchplugins\YAC Safe Search.xml
FF Extension: GaoiSavoe - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\Extensions\Dp9@2cTX.org [2014-10-27]
FF Extension: Quick Start - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\Extensions\quick_start@gmail.com [2014-05-22]
FF Extension: shortcut - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\Extensions\shortcutff@gmail.com [2014-08-04]
FF Extension: Przelewy24 - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\Extensions\p24ext@przelewy24.pl.xpi [2013-11-28]
FF Extension: Deal Keeper - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\Extensions\{01a80650-4647-488c-a3c1-1b536b7406d9}.xpi [2014-10-13]
FF Extension: Faster Light 1.0.1 - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\Extensions\{19e0dd42-6e7b-42ea-b9ce-7baf10a5320d}.xpi [2014-12-06]
FF Extension: Adblock Plus - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-27]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2014-12-09]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2013-03-21]
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\extensions\quick_start@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\abtftqck.default-1379621071496\extensions\shortcutff@gmail.com
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome: 
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Quick Sidebar) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainbkicbloikcngphmjfpjdemblcojdd [2014-06-12]
CHR Extension: (Google Docs) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-19]
CHR Extension: (Google Drive) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-19]
CHR Extension: (Norton Identity Safe for Google Chrome™) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc [2014-05-17]
CHR Extension: (YouTube) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-19]
CHR Extension: (Adblock Plus) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-27]
CHR Extension: (Google Search) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-19]
CHR Extension: (Jump Flip) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\debmkdhphjfcbaomiknnceliiclnpmfg [2014-02-28]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2013-12-28]
CHR Extension: (uTorrentControl_v6b) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnelgfmpooffemibikhmcklfnnimgijo [2014-04-11]
CHR Extension: (Google Wallet) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-19]
CHR Extension: (Deal Keeper) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnjdjonjhkmemnldiniaionkhfnpbdom [2014-11-01]
CHR Extension: (Extended Protection) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo [2014-06-12]
CHR Extension: (Gmail) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-19]
CHR HKU\S-1-5-21-632503941-784987641-2221626834-1001\...\Chrome\Extension: [fnelgfmpooffemibikhmcklfnnimgijo] - C:\Users\Jakub\AppData\Local\CRE\fnelgfmpooffemibikhmcklfnnimgijo.crx [2014-04-09]
CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\Exts\Chrome.crx [2014-05-01]
CHR HKLM-x32\...\Chrome\Extension: [debmkdhphjfcbaomiknnceliiclnpmfg] - C:\Program Files (x86)\Jump Flip\debmkdhphjfcbaomiknnceliiclnpmfg.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [fnelgfmpooffemibikhmcklfnnimgijo] - C:\Users\Jakub\AppData\Local\CRE\fnelgfmpooffemibikhmcklfnnimgijo.crx [2014-04-09]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2443960 2014-10-30] (Microsoft Corporation)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 iSafeService; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [118048 2014-12-04] (Elex do Brasil Participações Ltda)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 MaintainerSvc2.02.5636706; C:\ProgramData\d7a0fe93-7bf3-4f3d-89c3-fe4e144b2eb8\maintainer.exe [123632 2014-12-10] ()
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2014-01-09] (Enigma Software Group USA, LLC.)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1146304 2014-05-13] (Crawler.com)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-07] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
S2 SDScannerService; "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" [X]
S2 SDUpdateService; "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" [X]
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [X]
S2 Update Deal Keeper; "C:\Program Files (x86)\Deal Keeper\updateDealKeeper.exe" [X]
S2 Util Deal Keeper; "C:\Program Files (x86)\Deal Keeper\bin\utilDealKeeper.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [35496 2012-07-10] (Advanced Micro Devices, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-10-30] (Microsoft Corporation)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2014-08-08] () [File not signed]
R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130515.001\BHDrvx64.sys [1390680 2013-04-13] (Symantec Corporation)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthAvrcpTg; No ImagePath
U4 BthHFEnum; No ImagePath
U4 bthhfhid; No ImagePath
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2013-03-21] (DT Soft Ltd)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-03-21] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2013-03-21] (Symantec Corporation)
S2 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130518.001\IDSvia64.sys [513184 2013-03-20] (Symantec Corporation)
R1 iSafeKrnl; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [249000 2014-12-04] (Elex do Brasil Participações Ltda)
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [45224 2014-11-13] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlKit; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [99496 2014-12-04] (Elex do Brasil Participações Ltda)
R1 iSafeKrnlR3; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [65704 2014-12-04] (Elex do Brasil Participações Ltda)
R1 iSafeNetFilter; C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [49320 2014-11-03] (Elex do Brasil Participações Ltda)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2014-08-08] () [File not signed]
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130520.032\ENG64.SYS [126192 2013-03-21] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130520.032\EX64.SYS [2087664 2013-03-21] (Symantec Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [269968 2012-07-04] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-02] (Ralink Technology, Corp.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-25] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-25] (Synaptics Incorporated)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2014-05-27] (Windows (R) Win 7 DDK provider)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1405000.01C\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
R3 SymDS; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R3 SymEFA; C:\Windows\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
S4 SymELAM; C:\Windows\system32\drivers\NISx64\1405000.01C\SymELAM.sys [23448 2012-06-20] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-06-19] (Symantec Corporation)
R3 SymIRON; C:\Windows\system32\drivers\NISx64\1405000.01C\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R3 SymNetS; C:\Windows\System32\Drivers\NISx64\1405000.01C\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
R1 {023ffe30-e38b-4272-b1c0-1e9f6a180b9d}w64; C:\Windows\System32\drivers\{023ffe30-e38b-4272-b1c0-1e9f6a180b9d}w64.sys [48784 2014-10-22] (StdLib)
R1 {146928e7-d9fa-4f71-af0f-f42261fb9843}w64; C:\Windows\System32\drivers\{146928e7-d9fa-4f71-af0f-f42261fb9843}w64.sys [48784 2014-10-14] (StdLib)
R1 {2f76abac-1058-4d18-a9d9-382d3a1b32c3}w64; C:\Windows\System32\drivers\{2f76abac-1058-4d18-a9d9-382d3a1b32c3}w64.sys [48784 2014-10-15] (StdLib)
R1 {35d31228-a1dd-4d11-a2ff-ef6ba162cebd}w64; C:\Windows\System32\drivers\{35d31228-a1dd-4d11-a2ff-ef6ba162cebd}w64.sys [48784 2014-10-15] (StdLib)
R1 {544deb5f-dfba-4914-8002-1f35ae7182a3}w64; C:\Windows\System32\drivers\{544deb5f-dfba-4914-8002-1f35ae7182a3}w64.sys [48784 2014-10-18] (StdLib)
R1 {55dce8ba-9dec-4013-937e-adbf9317d990}Gw64; C:\Windows\System32\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}Gw64.sys [61072 2014-07-25] (StdLib)
R1 {55dce8ba-9dec-4013-937e-adbf9317d990}w64; C:\Windows\System32\drivers\{55dce8ba-9dec-4013-937e-adbf9317d990}w64.sys [61584 2014-08-07] (StdLib)
R1 {5637c139-b301-4ecd-a2cf-2ae75f214b07}w64; C:\Windows\System32\drivers\{5637c139-b301-4ecd-a2cf-2ae75f214b07}w64.sys [48784 2014-10-21] (StdLib)
R1 {76152aee-de6d-453d-a8d8-6f11a0085df8}w64; C:\Windows\System32\drivers\{76152aee-de6d-453d-a8d8-6f11a0085df8}w64.sys [48784 2014-10-19] (StdLib)
R1 {7e4355b8-96cd-43eb-b59a-82af29f01b16}w64; C:\Windows\System32\drivers\{7e4355b8-96cd-43eb-b59a-82af29f01b16}w64.sys [48784 2014-10-22] (StdLib)
R1 {871e60bd-7aec-4938-a4b2-ffde58590efe}w64; C:\Windows\System32\drivers\{871e60bd-7aec-4938-a4b2-ffde58590efe}w64.sys [48784 2014-10-18] (StdLib)
R1 {999a4cbb-05c0-4612-9e48-e2b9897a2c6f}w64; C:\Windows\System32\drivers\{999a4cbb-05c0-4612-9e48-e2b9897a2c6f}w64.sys [48784 2014-10-20] (StdLib)
R1 {a5b0d4ec-75a8-4454-a9c1-5675585828ec}w64; C:\Windows\System32\drivers\{a5b0d4ec-75a8-4454-a9c1-5675585828ec}w64.sys [48784 2014-10-17] (StdLib)
R1 {af7618ea-6d4f-47e5-9e06-5f808487ae22}w64; C:\Windows\System32\drivers\{af7618ea-6d4f-47e5-9e06-5f808487ae22}w64.sys [48784 2014-10-19] (StdLib)
R1 {b99c8534-7800-48fa-bd71-519a46cdc7e1}Gw64; C:\Windows\System32\drivers\{b99c8534-7800-48fa-bd71-519a46cdc7e1}Gw64.sys [61120 2014-04-24] (StdLib)
R1 {b99c8534-7800-48fa-bd71-519a46cdc7e1}w64; C:\Windows\System32\drivers\{b99c8534-7800-48fa-bd71-519a46cdc7e1}w64.sys [61120 2014-05-22] (StdLib)
R1 {c42edeec-c173-4c88-9a7f-6934088af032}w64; C:\Windows\System32\drivers\{c42edeec-c173-4c88-9a7f-6934088af032}w64.sys [48784 2014-10-20] (StdLib)
R1 {c746a0c9-95e3-4ce8-9e9f-58fac8587b02}w64; C:\Windows\System32\drivers\{c746a0c9-95e3-4ce8-9e9f-58fac8587b02}w64.sys [48784 2014-10-17] (StdLib)
R1 {d6c3bca9-e5f7-466a-ab38-ae66db286392}w64; C:\Windows\System32\drivers\{d6c3bca9-e5f7-466a-ab38-ae66db286392}w64.sys [48784 2014-10-16] (StdLib)
R1 {f7e972a4-3731-46b4-91a5-4140fc1009e8}w64; C:\Windows\System32\drivers\{f7e972a4-3731-46b4-91a5-4140fc1009e8}w64.sys [48784 2014-10-16] (StdLib)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ewusbmbb; \SystemRoot\system32\DRIVERS\ewusbwwan.sys [X]
S3 ewusbnet; \SystemRoot\system32\DRIVERS\ewusbnet.sys [X]
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; \SystemRoot\System32\drivers\ew_usbenumfilter.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 hwdatacard; \SystemRoot\system32\DRIVERS\ewusbmdm.sys [X]
S1 qknfd; system32\drivers\qknfd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-10 07:03 - 2014-12-10 07:03 - 00038718 _____ () C:\Users\Jakub\Downloads\FRST.txt
2014-12-10 07:02 - 2014-12-10 07:03 - 00000000 ____D () C:\FRST
2014-12-10 07:02 - 2014-12-10 07:02 - 02119680 _____ (Farbar) C:\Users\Jakub\Downloads\FRST64.exe
2014-12-10 07:01 - 2014-12-10 07:01 - 01111040 _____ (Farbar) C:\Users\Jakub\Downloads\FRST.exe
2014-12-10 03:06 - 2014-12-10 03:12 - 00000000 ____D () C:\Users\Jakub\Downloads\Goodfellas (1990)
2014-12-10 03:04 - 2014-12-10 03:04 - 00014977 _____ () C:\Users\Jakub\Downloads\[kickass.so]goodfellas.1990.720p.brrip.x264.700mb.yify.torrent
2014-12-10 02:05 - 2014-12-10 02:47 - 00000000 ____D () C:\Users\Jakub\Downloads\[ www.Torrentday.com ] - Submarino.2010.DVDRip.XviD-VoMiT
2014-12-10 02:05 - 2014-12-10 02:05 - 00057764 _____ () C:\Users\Jakub\Downloads\[kickass.so]submarino.2010.dvdrip.xvid.vomit.torrent
2014-12-09 18:08 - 2014-12-09 18:24 - 00000000 ____D () C:\Users\Jakub\Downloads\The Last Castle 2001 DvDrip[Eng]-greenbud1969
2014-12-09 18:08 - 2014-12-09 18:08 - 00016756 _____ () C:\Users\Jakub\Downloads\[kickass.so]the.last.castle.2001.dvdrip.eng.greenbud1969.torrent
2014-12-09 09:23 - 2014-12-09 11:54 - 00000000 ____D () C:\Users\Jakub\Downloads\Magic Mike (2012)
2014-12-09 06:59 - 2014-12-09 07:09 - 00000000 ____D () C:\Users\Jakub\Downloads\The Blind Side (2009)
2014-12-09 06:21 - 2014-12-09 06:43 - 00000000 ____D () C:\Users\Jakub\Downloads\Song for a raggy boy (moviesbyrizzo)
2014-12-08 19:15 - 2014-12-08 19:36 - 00000000 ____D () C:\Users\Jakub\Downloads\Casino (1995)
2014-12-08 08:39 - 2014-12-08 09:42 - 00000000 ____D () C:\Users\Jakub\Downloads\Sons.of.Anarchy.S05PL.BRRiP.XViD-PSiG
2014-12-08 08:39 - 2014-12-08 08:39 - 00031932 _____ () C:\Users\Jakub\Downloads\Sons.of.Anarchy.S05PL.BRRiP.XViD-PSiG.torrent
2014-12-08 03:26 - 2014-12-08 03:29 - 00000000 ____D () C:\Users\Jakub\Downloads\MasterChef.S03E14.PL.720p.WEB-DL.x264-PSiG
2014-12-08 03:26 - 2014-12-08 03:26 - 00005471 _____ () C:\Users\Jakub\Downloads\MasterChef.S03E14.PL.720p.WEB-DL.x264-PSiG.torrent
2014-12-08 02:11 - 2014-12-08 02:11 - 00870352 _____ (Opera Software) C:\Users\Jakub\Downloads\opera_ni_stable (1).exe
2014-12-08 02:09 - 2014-12-08 02:10 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\rmi
2014-12-08 02:09 - 2014-12-08 02:09 - 00505592 _____ () C:\Users\Jakub\Downloads\opera_ni_stable.exe
2014-12-07 21:04 - 2014-12-07 21:06 - 00000000 ____D () C:\Users\Jakub\Downloads\Super.High.Me.2007.Sub-PL.DVDRip-NODLABS.x264-RmvBusterS
2014-12-07 21:03 - 2014-12-07 21:03 - 00014941 _____ () C:\Users\Jakub\Downloads\Super.High.Me.2007.Sub-PL.DVDRip-NODLABS.x264-RmvBusterS.torrent
2014-12-07 04:31 - 2014-12-07 04:31 - 00012240 _____ () C:\Users\Jakub\Downloads\This.is.Where.I.Leave.You.2014.PL.480p.BDRip.AC3.x264-CMovieS (1).torrent
2014-12-07 04:30 - 2014-12-07 04:30 - 00000000 ____D () C:\Users\Jakub\Downloads\This.is.Where.I.Leave.You.2014.PL.480p.BDRip.AC3.x264-CMovieS
2014-12-07 04:29 - 2014-12-07 04:29 - 00012240 _____ () C:\Users\Jakub\Downloads\This.is.Where.I.Leave.You.2014.PL.480p.BDRip.AC3.x264-CMovieS.torrent
2014-12-06 20:50 - 2014-12-06 20:50 - 00000951 _____ () C:\Users\Jakub\Desktop\SopCast.lnk
2014-12-06 20:50 - 2014-12-06 20:50 - 00000000 ____D () C:\Users\Jakub\Downloads\SopCast
2014-12-06 20:50 - 2014-12-06 20:50 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
2014-12-06 20:50 - 2014-12-06 20:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
2014-12-06 20:50 - 2014-12-06 20:50 - 00000000 ____D () C:\Program Files (x86)\SopCast
2014-12-06 20:50 - 2014-09-22 02:36 - 06931595 ____N () C:\Users\Jakub\Downloads\Setup-SopCast-3.9.3-2014-9-22.exe
2014-12-06 20:48 - 2014-12-06 20:48 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\msbsdurm.sys
2014-12-06 20:48 - 2014-12-06 20:48 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-12-06 20:45 - 2014-12-06 20:46 - 00000000 ____D () C:\Program Files (x86)\Faster Light
2014-12-06 20:44 - 2014-12-06 20:44 - 06825694 _____ () C:\Users\Jakub\Downloads\SopCast.zip
2014-12-06 20:44 - 2014-12-06 20:44 - 00754240 _____ ( ) C:\Users\Jakub\Downloads\SopCast(12954)-dp.exe
2014-12-05 04:09 - 2014-12-05 04:09 - 00000000 ____D () C:\Users\Jakub\Downloads\Homeland.S04E02.720p.PL.WEB-DL.AC3.2.0.H.264-DeiX
2014-12-05 04:08 - 2014-12-05 04:08 - 00008136 _____ () C:\Users\Jakub\Downloads\Homeland.S04E02.720p.PL.WEB-DL.AC3.2.0.H.264-DeiX.torrent
2014-12-05 03:09 - 2014-12-05 03:10 - 00000000 ____D () C:\Users\Jakub\Downloads\Homeland.S04E01.720p.PL.WEB-DL.AC3.2.0.H.264-DeiX
2014-12-05 03:09 - 2014-12-05 03:09 - 00008334 _____ () C:\Users\Jakub\Downloads\Homeland.S04E01.720p.PL.WEB-DL.AC3.2.0.H.264-DeiX.torrent
2014-12-04 23:34 - 2014-12-04 23:34 - 00034989 _____ () C:\Users\Jakub\Downloads\Kuba.Wojewoldzki.2014.S20E13.WEB-DL.x264-CMovieS.torrent
2014-12-04 23:34 - 2014-12-04 23:34 - 00000000 ____D () C:\Users\Jakub\Downloads\Kuba.Wojewoldzki.2014.S20E13.WEB-DL.x264-CMovieS
2014-12-04 06:44 - 2014-12-04 06:44 - 00000000 ____D () C:\Users\Jakub\Documents\WSC Real 09
2014-12-04 06:35 - 2014-12-04 06:35 - 00000622 _____ () C:\Users\Public\Desktop\WSC Real 09.lnk
2014-12-04 06:35 - 2014-12-04 06:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blade
2014-12-04 06:29 - 2014-12-04 06:35 - 00000000 ____D () C:\WSC Real 09
2014-12-04 06:27 - 2014-12-04 06:29 - 00218188 _____ () C:\Windows\DirectX.log
2014-12-04 05:51 - 2014-12-04 05:51 - 00260431 _____ () C:\Users\Jakub\Downloads\WSC.Real.2009.World.Snooker.Champ.torrent
2014-12-04 05:51 - 2014-12-04 05:51 - 00000000 ____D () C:\Users\Jakub\Downloads\WSC.Real.2009.World.Snooker.Champ
2014-12-04 01:50 - 2014-12-04 02:03 - 1789177064 ____R () C:\Users\Jakub\Downloads\10 000 km.2014.PL.576p.WEB-DL.AC3.x264-CMovieS.mkv
2014-12-04 01:50 - 2014-12-04 01:50 - 00002509 _____ () C:\Users\Jakub\Downloads\10 000 km.2014.PL.576p.WEB-DL.AC3.x264-CMovieS.mkv.torrent
2014-12-02 20:52 - 2014-12-03 00:23 - 00000000 ____D () C:\Users\Jakub\Downloads\The.Raid 2 Berandal.MULTi.2014.Lek-PLINDSub-PL.720p.BRRip.AC3.x264-CMovieS
2014-12-02 20:51 - 2014-12-02 20:51 - 00029972 _____ () C:\Users\Jakub\Downloads\The.Raid 2 Berandal.MULTi.2014.Lek-PLINDSub-PL.720p.BRRip.AC3.x264-CMovieS.torrent
2014-12-01 19:31 - 2014-12-01 19:31 - 00017603 _____ () C:\Users\Jakub\Downloads\CKM_12_2014.pdf.torrent
2014-11-30 23:44 - 2014-11-30 23:51 - 00000000 ____D () C:\Users\Jakub\Downloads\MasterChef.S03E13PL.720p.WEB-DL.x264-PSiG
2014-11-30 23:43 - 2014-11-30 23:43 - 00005415 _____ () C:\Users\Jakub\Downloads\MasterChef.S03E13PL.720p.WEB-DL.x264-PSiG.torrent
2014-11-30 22:42 - 2014-12-02 22:57 - 00000000 ____D () C:\Users\Jakub\Documents\Gothic3
2014-11-30 22:41 - 2014-11-30 22:41 - 00000541 _____ () C:\Windows\KB893803v2.log
2014-11-30 22:27 - 2014-11-30 22:27 - 00000000 ___SD () C:\Program Files (x86)\Xfire
2014-11-30 22:27 - 2014-11-30 22:27 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Xfire
2014-11-30 22:27 - 2014-11-30 22:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xfire
2014-11-30 22:14 - 2014-11-30 22:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gothic III
2014-11-30 22:14 - 2014-11-30 22:14 - 00000898 _____ () C:\Users\Public\Desktop\Gothic III.lnk
2014-11-30 22:14 - 2014-11-30 22:14 - 00000000 ____D () C:\JoWooD Productions Software AG
2014-11-30 18:47 - 2014-11-30 19:07 - 00000000 ____D () C:\Users\Jakub\Downloads\Gothic 3 PL Edycja Rozszerzona (2006) (PC)
2014-11-30 18:44 - 2014-11-30 18:44 - 00024645 _____ () C:\Users\Jakub\Downloads\Gothic 3 PL Edycja Rozszerzona (2006) (PC).torrent
2014-11-30 18:42 - 2014-11-30 18:42 - 00018240 _____ () C:\Users\Jakub\Downloads\Gothic_3_PL.3552971.TPB.torrent
2014-11-30 12:52 - 2014-11-30 12:58 - 00000000 ____D () C:\Users\Jakub\Downloads\Synowie anarchii S04
2014-11-30 12:52 - 2014-11-30 12:52 - 00020882 _____ () C:\Users\Jakub\Downloads\Synowie anarchii S04.torrent
2014-11-30 07:19 - 2014-11-30 07:27 - 998365917 ____R () C:\Users\Jakub\Downloads\Kuchenne.Rewolucje.2014.S10E13.PL.720p.WEB-DL.x264-CMovieS.mp4
2014-11-30 07:19 - 2014-11-30 07:19 - 00076559 _____ () C:\Users\Jakub\Downloads\Kuchenne.Rewolucje.2014.S10E13.PL.720p.WEB-DL.x264-CMovieS.mp4.torrent
2014-11-29 17:00 - 2014-11-29 17:00 - 00000000 ____D () C:\Users\Jakub\Downloads\Gameforge Live
2014-11-29 14:48 - 2014-11-29 14:56 - 473331782 ____R () C:\Users\Jakub\Downloads\Top.Chef.2014.S03E12.PL.576p.WEB-DL.x264-CMovieS.mp4
2014-11-29 14:48 - 2014-11-29 14:48 - 00036489 _____ () C:\Users\Jakub\Downloads\Top.Chef.2014.S03E12.PL.576p.WEB-DL.x264-CMovieS.mp4.torrent
2014-11-27 20:55 - 2014-11-27 21:23 - 2844400865 ____R () C:\Users\Jakub\Downloads\300.Rise.Of.An.Empire.2014.PL.720p.BRRip.AC3.x264-CMovieS.mkv
2014-11-27 20:55 - 2014-11-27 20:55 - 00003780 _____ () C:\Users\Jakub\Downloads\300.Rise.Of.An.Empire.2014.PL.720p.BRRip.AC3.x264-CMovieS.mkv.torrent
2014-11-26 14:04 - 2014-11-26 14:07 - 00000000 ____D () C:\Users\Jakub\Downloads\Kuba.Wojewodzki.S20E13.PL.720p.WEB-DL.x264-PSiG
2014-11-26 14:03 - 2014-11-26 14:03 - 00005448 _____ () C:\Users\Jakub\Downloads\Kuba.Wojewodzki.S20E13.PL.720p.WEB-DL.x264-PSiG.torrent
2014-11-25 15:29 - 2014-11-25 16:06 - 00000000 ____D () C:\Users\Jakub\Downloads\Metro.2033.Redux-CODEX
2014-11-25 15:29 - 2014-11-25 15:29 - 00041337 _____ () C:\Users\Jakub\Downloads\Metro.2033.Redux-CODEX.torrent
2014-11-25 15:27 - 2014-11-25 15:28 - 00000000 ____D () C:\Users\Jakub\Downloads\The.Rover.2014.PL.BDRiP.x264-PSiG
2014-11-25 15:27 - 2014-11-25 15:27 - 00015164 _____ () C:\Users\Jakub\Downloads\The.Rover.2014.PL.BDRiP.x264-PSiG.torrent
2014-11-25 12:21 - 2014-11-25 12:22 - 00000000 ____D () C:\Users\Jakub\Downloads\Sons.of.Anarchy.S01-03.PL.HDTV.XViD-NoGrp
2014-11-25 12:20 - 2014-11-25 12:20 - 00074717 _____ () C:\Users\Jakub\Downloads\Sons.of.Anarchy.S01-03.PL.HDTV.XViD-NoGrp.torrent
2014-11-25 02:38 - 2014-11-26 14:30 - 00000000 ____D () C:\Users\Jakub\Downloads\The.Wire.S01.DvDRip.XviD.AC3-Thomilla
2014-11-25 02:37 - 2014-11-25 02:39 - 00000000 ____D () C:\Users\Jakub\Downloads\Predestination.2014.PL.DVDRiP.x264-PSiG
2014-11-25 02:37 - 2014-11-25 02:37 - 00014017 _____ () C:\Users\Jakub\Downloads\The.Wire.S01.DvDRip.XviD.AC3-Thomilla.torrent
2014-11-25 02:37 - 2014-11-25 02:37 - 00012816 _____ () C:\Users\Jakub\Downloads\Predestination.2014.PL.DVDRiP.x264-PSiG.torrent
2014-11-25 02:27 - 2014-11-25 02:32 - 00000000 ____D () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E07.Elektrocieplownia.Siekierki.PL.720p.HDTV.x264-PSiG
2014-11-25 02:27 - 2014-11-25 02:27 - 00013434 _____ () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E07.Elektrocieplownia.Siekierki.PL.720p.HDTV.x264-PSiG.torrent
2014-11-25 01:10 - 2014-12-08 02:03 - 00002338 _____ () C:\Users\Jakub\Desktop\TRENING.txt
2014-11-24 23:26 - 2014-11-24 23:26 - 00052328 _____ () C:\Users\Jakub\Downloads\Fear.And.Loathing.In.Las.Vegas.DC.1998.720p.Dual-audio.x264-RmvBusterS.torrent
2014-11-24 23:26 - 2014-11-24 23:26 - 00000000 ____D () C:\Users\Jakub\Downloads\Fear.And.Loathing.In.Las.Vegas.DC.1998.720p.Dual-audio.x264-RmvBusterS
2014-11-24 15:47 - 2014-11-24 15:47 - 00074157 _____ () C:\Users\Jakub\Downloads\Dawn.of.the.Planet.of.the.Apes.2014.PL.720p.BDRip.AC3.x264-CMovieS.torrent
2014-11-24 15:47 - 2014-11-24 15:47 - 00000000 ____D () C:\Users\Jakub\Downloads\Dawn.of.the.Planet.of.the.Apes.2014.PL.720p.BDRip.AC3.x264-CMovieS
2014-11-24 15:46 - 2014-11-24 15:57 - 769293925 ____R () C:\Users\Jakub\Downloads\Opowiesc o zabojcach 2013 PL.HDTV.x264.mkv
2014-11-24 15:46 - 2014-11-24 15:46 - 00015033 _____ () C:\Users\Jakub\Downloads\Opowiesc o zabojcach 2013 PL.HDTV.x264.mkv.torrent
2014-11-24 14:03 - 2014-12-08 13:35 - 00001372 _____ () C:\Windows\PFRO.log
2014-11-24 01:30 - 2014-11-24 01:30 - 00000370 _____ () C:\Users\Jakub\Downloads\rmf_aacp.pls
2014-11-24 01:30 - 2014-11-24 01:30 - 00000039 _____ () C:\Users\Jakub\Downloads\rmf-fm.m3u
2014-11-24 01:29 - 2014-11-24 01:29 - 00000189 _____ () C:\Users\Jakub\Downloads\rmffm.asx
2014-11-24 00:53 - 2014-11-24 01:06 - 637369705 ____R () C:\Users\Jakub\Downloads\Rolnik.szuka.zony.2014.S01E12.PL.480p.WEB-DL.x264-CMovie.mp4
2014-11-24 00:53 - 2014-11-24 00:53 - 00049017 _____ () C:\Users\Jakub\Downloads\Rolnik.szuka.zony.2014.S01E12.PL.480p.WEB-DL.x264-CMovie.mp4.torrent
2014-11-23 23:16 - 2014-11-23 23:24 - 00000000 ____D () C:\Users\Jakub\Downloads\MasterChef.S03E12.PL.720p.WEB-DL.x264-PSiG
2014-11-23 23:16 - 2014-11-23 23:16 - 00005451 _____ () C:\Users\Jakub\Downloads\MasterChef.S03E12.PL.720p.WEB-DL.x264-PSiG.torrent
2014-11-22 14:40 - 2014-11-22 14:54 - 00000000 ____D () C:\Users\Jakub\Downloads\3DMGAME-Football.Manager.2015.v15.1.3.Cracked-3DM
2014-11-22 13:40 - 2014-11-22 13:40 - 00000000 ____D () C:\Users\Jakub\Downloads\Lucy.2014.PL.DVDRiP.x264-PSiG
2014-11-22 13:39 - 2014-11-22 13:39 - 00012626 _____ () C:\Users\Jakub\Downloads\Lucy.2014.PL.DVDRiP.x264-PSiG.torrent
2014-11-22 00:10 - 2014-11-22 00:11 - 00000000 ____D () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E05.Kopalnia.Wegla.i.Koksownia.PL.720p.HDTV.x264-PSiG
2014-11-22 00:09 - 2014-11-22 00:09 - 00012633 _____ () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E05.Kopalnia.Wegla.i.Koksownia.PL.720p.HDTV.x264-PSiG.torrent
2014-11-22 00:04 - 2014-11-22 00:26 - 00000000 ____D () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E02.Lotnisko.Modlin.PL.720p.HDTV.x264-PSiG
2014-11-22 00:01 - 2014-11-22 00:01 - 00006993 _____ () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E02.Lotnisko.Modlin.PL.720p.HDTV.x264-PSiG.torrent
2014-11-21 16:11 - 2014-11-21 16:11 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-11-21 10:38 - 2014-11-21 12:45 - 00000000 ____D () C:\Users\Jakub\Downloads\Football.Manager.2015.PROPER.v.15.0.2.3DM
2014-11-21 10:38 - 2014-11-21 10:42 - 316516805 ____R () C:\Users\Jakub\Downloads\Kuchenne.Rewolucje.2014.S10E12.PL.WEB-DL.x264-CMovieS.mp4
2014-11-21 01:08 - 2014-11-21 01:10 - 00000000 ____D () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E03.Wojsko.Polskie.PL.720p.HDTV.x264-PSiG
2014-11-21 01:08 - 2014-11-21 01:08 - 00008852 _____ () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E03.Wojsko.Polskie.PL.720p.HDTV.x264-PSiG.torrent
2014-11-21 00:41 - 2014-11-21 00:45 - 00000000 ____D () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E01.Bieszczady.PL.720p.HDTV.x264-PSiG
2014-11-21 00:41 - 2014-11-21 00:41 - 00008888 _____ () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E01.Bieszczady.PL.720p.HDTV.x264-PSiG.torrent
2014-11-21 00:12 - 2014-11-21 00:22 - 00000000 ____D () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E06.Odlewnia.Metali.PL.720p.HDTV.x264-PSiG
2014-11-21 00:12 - 2014-11-21 00:12 - 00016062 _____ () C:\Users\Jakub\Downloads\Przemek.Saleta.Najciezsze.Zadania.E06.Odlewnia.Metali.PL.720p.HDTV.x264-PSiG.torrent
2014-11-20 23:34 - 2014-11-20 23:36 - 00000000 ____D () C:\Users\Jakub\Downloads\David Guetta - Listen [2014] [mp3@256kbps]
2014-11-20 23:34 - 2014-11-20 23:34 - 00001829 _____ () C:\Users\Jakub\Downloads\David Guetta - Listen [2014] [mp3@256kbps].torrent
2014-11-20 23:10 - 2014-11-20 23:12 - 00000000 ____D () C:\Users\Jakub\Downloads\Tiesto - A Town Called Paradise (Deluxe Edition) 2014 320kbps CBR MP3 [VX]
2014-11-20 23:01 - 2014-11-20 23:01 - 00119307 _____ () C:\Users\Jakub\Downloads\Football.Manager.2015.PROPER.v.15.0.2.3DM (1).torrent
2014-11-20 23:00 - 2014-11-20 23:00 - 00024534 _____ () C:\Users\Jakub\Downloads\Kuchenne.Rewolucje.2014.S10E12.PL.WEB-DL.x264-CMovieS.mp4.torrent
2014-11-20 22:56 - 2014-11-20 22:56 - 00119307 _____ () C:\Users\Jakub\Downloads\Football.Manager.2015.PROPER.v.15.0.2.3DM.torrent
2014-11-20 20:16 - 2014-11-20 20:19 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-11-20 20:16 - 2014-11-20 20:18 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-11-20 19:58 - 2014-11-20 19:58 - 00022265 _____ () C:\Users\Jakub\Downloads\[kickass.so]football.manager.2015.v15.1.3.cracked.3dm.torrent
2014-11-19 22:34 - 2014-11-19 22:37 - 447276658 ____R () C:\Users\Jakub\Downloads\Top.Chef.2014.S03E11.PL.576p.WEB-DL.x264-CMovieS.mp4
2014-11-19 22:33 - 2014-11-19 22:33 - 00034509 _____ () C:\Users\Jakub\Downloads\Top.Chef.2014.S03E11.PL.576p.WEB-DL.x264-CMovieS.mp4.torrent
2014-11-19 13:57 - 2014-11-19 13:57 - 00000000 ____D () C:\Users\Jakub\Downloads\Patrick Barclay - Sir Alex Ferguson. Futbol cholera jasna
2014-11-19 13:56 - 2014-11-19 13:56 - 00001946 _____ () C:\Users\Jakub\Downloads\Patrick Barclay - Sir Alex Ferguson. Futbol cholera jasna.torrent
2014-11-18 23:32 - 2014-11-18 23:48 - 1957300207 ____R () C:\Users\Jakub\Downloads\Margin.Call.2011.PL.576p.BDRip.AC3.x264-CMovieS.mkv
2014-11-18 23:31 - 2014-11-18 23:31 - 00037710 _____ () C:\Users\Jakub\Downloads\Margin.Call.2011.PL.576p.BDRip.AC3.x264-CMovieS.mkv.torrent
2014-11-18 08:38 - 2014-11-18 08:41 - 00000000 ____D () C:\Users\Jakub\Downloads\The.IT.Crowd.2006.S01-04.PL.DVDRip.XviD-Ralf.DeiX
2014-11-18 08:38 - 2014-11-18 08:38 - 00094867 _____ () C:\Users\Jakub\Downloads\The.IT.Crowd.2006.S01-04.PL.DVDRip.XviD-Ralf.DeiX.torrent
2014-11-17 22:57 - 2014-11-17 23:07 - 00000000 ____D () C:\Users\Jakub\Downloads\A.Walk.Among.the.Tombstones.2014.Sub-PL.480p.HDRip-optiva.AC3-2.0.x264
2014-11-17 22:57 - 2014-11-17 22:57 - 00015682 _____ () C:\Users\Jakub\Downloads\A.Walk.Among.the.Tombstones.2014.Sub-PL.480p.HDRip-optiva.AC3-2.0.x264.torrent
2014-11-17 12:41 - 2014-11-17 12:41 - 00012008 _____ () C:\Users\Jakub\Downloads\Wataha.2014.E06.PL.720p.HDTV.AC3.x264-CMovieS.torrent
2014-11-17 12:41 - 2014-11-17 12:41 - 00000000 ____D () C:\Users\Jakub\Downloads\Wataha.2014.E06.PL.720p.HDTV.AC3.x264-CMovieS
2014-11-17 12:19 - 2014-11-17 12:22 - 327363925 ____R () C:\Users\Jakub\Downloads\MasterChef.2014.S03E11.PL.WEB-DL.x264-CMovieS.mp4
2014-11-17 12:18 - 2014-11-17 12:18 - 00025346 _____ () C:\Users\Jakub\Downloads\MasterChef.2014.S03E11.PL.WEB-DL.x264-CMovieS.mp4.torrent
2014-11-15 22:24 - 2014-11-15 22:24 - 00000836 _____ () C:\Users\Public\Desktop\Restaurant Empire.lnk
2014-11-15 22:24 - 2014-11-15 22:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enlight
2014-11-15 22:14 - 2014-11-15 22:14 - 00000000 ____D () C:\Enlight
2014-11-15 22:12 - 2014-11-15 22:13 - 00000000 ____D () C:\Empire
2014-11-15 22:11 - 2014-11-15 22:11 - 00000000 ____D () C:\Restaurant Empire Tycoon
2014-11-15 21:04 - 2014-11-15 21:04 - 00001502 _____ () C:\Users\Public\Desktop\Restaurant Empire 2.lnk
2014-11-15 21:04 - 2014-11-15 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Restaurant Empire 2
2014-11-15 20:55 - 2014-11-15 21:02 - 00000000 ____D () C:\Restaurant Empire 2
2014-11-15 20:53 - 2014-11-15 20:54 - 00000000 ____D () C:\estaurant Empire Tycoon II
2014-11-15 17:38 - 2014-11-15 17:38 - 00001862 _____ () C:\Users\Public\Desktop\YAC.lnk
2014-11-15 17:37 - 2014-11-15 17:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
2014-11-15 17:37 - 2014-11-15 17:37 - 00000000 ____D () C:\Windows\system32\log
2014-11-15 17:37 - 2014-11-15 17:37 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Elex-tech
2014-11-15 17:37 - 2014-11-15 17:37 - 00000000 ____D () C:\Program Files (x86)\Elex-tech
2014-11-15 17:37 - 2014-11-13 11:39 - 00045224 _____ (Elex do Brasil Participações Ltda) C:\Windows\system32\Drivers\iSafeKrnlBoot.sys
2014-11-15 17:37 - 2014-11-03 10:04 - 00049320 _____ (Elex do Brasil Participações Ltda) C:\Windows\system32\Drivers\iSafeNetFilter.sys
2014-11-15 13:43 - 2014-11-15 13:43 - 00000000 _____ () C:\autoexec.bat
2014-11-15 13:42 - 2014-11-15 13:42 - 00002254 _____ () C:\Users\Jakub\Desktop\SpyHunter.lnk
2014-11-15 13:42 - 2014-11-15 13:42 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-11-15 13:42 - 2014-11-15 13:42 - 00000000 ____D () C:\sh4ldr
2014-11-15 13:42 - 2014-11-15 13:42 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-11-15 13:42 - 2012-06-22 12:01 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2014-11-15 13:41 - 2014-11-15 13:42 - 00000000 ____D () C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP
2014-11-12 20:49 - 2014-11-12 20:49 - 00065525 _____ () C:\ComboFix.txt
2014-11-10 15:27 - 2014-11-10 15:27 - 00000000 ____D () C:\[14.09.2014] Ethandia

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-10 07:04 - 2013-03-21 15:41 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\uTorrent
2014-12-10 07:00 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\sru
2014-12-10 06:55 - 2012-09-26 09:53 - 00000950 _____ () C:\Windows\SysWOW64\bscs.ini
2014-12-10 06:52 - 2012-12-24 11:44 - 00003620 _____ () C:\Windows\SysWOW64\LOCALSERVICE.INI
2014-12-10 06:52 - 2012-12-24 11:44 - 00000043 _____ () C:\Windows\SysWOW64\LOCALDEVICE.INI
2014-12-10 03:36 - 2014-07-27 19:56 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-10 03:22 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-10 02:00 - 2014-10-04 10:25 - 00000000 ____D () C:\ProgramData\d7a0fe93-7bf3-4f3d-89c3-fe4e144b2eb8
2014-12-09 20:36 - 2014-07-27 19:56 - 00003818 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-09 20:28 - 2012-10-30 03:35 - 00828664 _____ () C:\Windows\system32\perfh015.dat
2014-12-09 20:28 - 2012-10-30 03:35 - 00176570 _____ () C:\Windows\system32\perfc015.dat
2014-12-09 20:28 - 2012-07-26 08:28 - 01939712 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-09 18:49 - 2013-04-22 20:43 - 00000938 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-632503941-784987641-2221626834-1001UA.job
2014-12-09 16:31 - 2012-12-24 12:06 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-12-09 12:11 - 2014-02-09 09:18 - 01448326 _____ () C:\Windows\WindowsUpdate.log
2014-12-09 11:56 - 2013-03-21 12:26 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-632503941-784987641-2221626834-1001
2014-12-09 11:52 - 2013-05-16 13:51 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\ipla
2014-12-09 11:48 - 2012-07-26 08:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-09 09:09 - 2012-07-26 09:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-12-08 13:37 - 2014-05-27 11:12 - 00000000 ____D () C:\ProgramData\Spyware Terminator
2014-12-08 02:12 - 2014-06-25 14:55 - 00003854 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1391860249
2014-12-08 02:12 - 2014-02-08 12:50 - 00001095 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-12-08 02:12 - 2014-02-08 12:50 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-12-07 21:48 - 2013-04-22 20:43 - 00000916 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-632503941-784987641-2221626834-1001Core.job
2014-12-07 03:19 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-12-07 03:13 - 2013-03-21 15:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-01 13:19 - 2013-11-16 04:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-30 22:09 - 2013-03-21 20:52 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
2014-11-29 16:54 - 2014-08-24 14:13 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\GG
2014-11-23 18:19 - 2013-03-24 18:52 - 00000193 _____ () C:\Windows\SysWOW64\REMOTEDEVICE.INI
2014-11-23 03:33 - 2013-09-03 01:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-23 03:27 - 2013-06-17 20:28 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-11-20 23:36 - 2013-04-12 00:24 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Media Player Classic
2014-11-20 20:26 - 2014-10-20 23:34 - 00000000 ____D () C:\Users\Public\Documents\Sports Interactive
2014-11-20 20:26 - 2014-10-20 23:34 - 00000000 ____D () C:\Users\Jakub\Documents\Sports Interactive
2014-11-20 20:26 - 2013-03-25 14:52 - 00000000 ____D () C:\Users\Jakub\AppData\Local\Sports Interactive
2014-11-17 12:10 - 2013-03-21 12:19 - 00000000 ____D () C:\Users\Jakub
2014-11-16 14:26 - 2014-10-24 13:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Casino Classic
2014-11-16 14:26 - 2014-07-28 12:36 - 00000000 ___RD () C:\Users\Jakub\Desktop\Nowy folder
2014-11-16 14:26 - 2014-07-24 23:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer
2014-11-16 14:26 - 2014-06-12 10:09 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\337Games
2014-11-16 14:26 - 2014-05-22 09:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
2014-11-16 14:26 - 2014-04-03 03:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unibet Poker
2014-11-16 14:26 - 2014-03-22 02:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Poker MIRA
2014-11-16 14:26 - 2014-03-01 04:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParisVegasCasino
2014-11-16 14:26 - 2014-02-22 03:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlotsMagic
2014-11-16 14:26 - 2013-06-25 23:49 - 00000000 ____D () C:\Windows\Minidump
2014-11-16 14:26 - 2013-03-21 12:19 - 00000000 ___RD () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-16 14:26 - 2012-08-04 00:21 - 00000000 ____D () C:\Windows\Panther
2014-11-16 14:26 - 2012-07-26 09:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-16 01:47 - 2012-12-24 11:38 - 00005622 _____ () C:\Windows\system32\RaCoInst.log
2014-11-15 22:14 - 2012-10-29 19:20 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-15 21:08 - 2013-07-07 11:17 - 00000000 ____D () C:\Users\Jakub\Documents\My Games
2014-11-15 17:44 - 2014-05-22 09:09 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks551
2014-11-15 17:44 - 2013-09-19 21:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-15 17:39 - 2013-03-21 15:09 - 00001333 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-11-15 17:39 - 2013-03-21 12:20 - 00001664 _____ () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-15 11:52 - 2012-07-26 06:26 - 00000269 _____ () C:\Windows\win.ini
2014-11-14 12:30 - 2013-04-22 22:48 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Skype
2014-11-13 14:22 - 2012-07-26 06:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-11-12 20:50 - 2014-06-12 13:03 - 00000000 ____D () C:\Qoobox
2014-11-12 20:50 - 2012-07-26 06:37 - 00000000 __RHD () C:\Users\Default
2014-11-12 20:44 - 2012-07-26 06:26 - 00000215 _____ () C:\Windows\system.ini
2014-11-12 20:42 - 2013-05-23 21:53 - 00000000 ____D () C:\Users\Jakub\AppData\Local\Adobe

Some content of TEMP:
====================
C:\Users\Jakub\AppData\Local\Temp\SHSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-13 12:45

==================== End Of Log ============================