Skocz do zawartości

  • 👋 Witaj na MPCForum!

    Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎

    • Pełny dostęp do działów i ukrytych treści
    • Możliwość pisania i odpowiadania w tematach
    • System prywatnych wiadomości
    • Zbieranie reputacji i rozwijanie swojego profilu
    • Członkostwo w jednej z największych społeczności graczy

    👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!

    Zarejestruj się teraz

problem z avastem i google chrome

LubiePlacki82

Rekomendowane odpowiedzi

LubiePlacki82 Znawca

LubiePlacki82

Opublikowano
Znawca

LubiePlacki82

Opublikowano

Siemka,ostatnio mam problem z avastem i google chrome.Gdy uzywam przeglądarki co jakiś czas avast wyskakuje że znaleziono zagrożenie itd.Pokazuje że to chrome.exe. Wiec zeskanowałem ten plik nic,cały folder i tez nic.O co chodzi ? Denerwuje mnie to bardzo.

NonekPL.png

LubiePlacki82 Znawca

LubiePlacki82

Opublikowano
Znawca

LubiePlacki82

  • Autor
Opublikowano

FRST :

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-07-2014
Ran by Roman (administrator) on ROMAN-KOMPUTER on 30-07-2014 18:48:03
Running from C:\Users\Roman\Downloads
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(IObit) E:\Advanced SystemCare 7\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(cFos Software GmbH) E:\cFoSpeed\spd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(IObit) E:\Advanced SystemCare 7\Monitor.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
(LogMeIn Inc.) D:\Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(cFos Software GmbH) E:\cFoSpeed\cfosspeed.exe
(LogMeIn, Inc.) D:\Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() E:\Gry\League Of Legends\RADS\system\rads_user_kernel.exe
() C:\Program Files\Pando Networks\Media Booster\PMB.exe
() E:\Gry\League Of Legends\RADS\projects\lol_launcher\releases\0.0.0.213\deploy\LoLLauncher.exe
() E:\Gry\League Of Legends\RADS\projects\lol_air_client\releases\0.0.1.101\deploy\LolClient.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [93696 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [93696 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-1736344105-3544558836-992164423-1000\...\MountPoints2: {1a0104cb-1d33-11e2-875c-14dae9df7cce} - K:\Install.exe
HKU\S-1-5-21-1736344105-3544558836-992164423-1000\...\MountPoints2: {f37054db-6c88-11e3-8458-14dae9df7cce} - L:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A14B04 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: GGDriveOverlay1 -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: GGDriveOverlay2 -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: GGDriveOverlay3 -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: GGDriveOverlay4 -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyServer: serwerparkour.pl:25565
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {A4F69109-F1C7-42B4-9F7A-C2BD917877B5} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=198484&p={searchTerms}
SearchScopes: HKCU - {A4F69109-F1C7-42B4-9F7A-C2BD917877B5} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=198484&p={searchTerms}
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> E:\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Webfuii -> {6e911b4f-caac-45b4-8e2d-4b79b2b92a07} -> C:\Program Files\Webfuii\Webfuiibho.dll (Webfuii)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Advanced SystemCare Browser Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 62.179.1.63 62.179.1.62
 
FireFox:
========
FF ProfilePath: C:\Users\Roman\AppData\Roaming\Mozilla\Profiles\n85a3glr.Piotr
FF NewTab: hxxp://www.delta-homes.com/newtab/?type=nt&ts=1388683431&from=wpm0102&uid=WDCXWD3200AAJS-00VWA0_WD-WCARW075529955299
FF DefaultSearchEngine: Yahoo!
FF SearchEngineOrder.1: portaldosites
FF SelectedSearchEngine: Yahoo!
FF Homepage: google.pl
FF Keyword.URL: hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @esn/esnlaunch,version=2.1.3 - C:\Program Files\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin: @esn/esnlaunch,version=2.1.7 - C:\Program Files\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin: @esn/esnlaunch,version=2.3.0 - C:\Program Files\Battlelog Web Plugins\2.3.0\npesnlaunch.dll No File
FF Plugin: @esn/npbattlelog,version=2.4.0 - C:\Program Files\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin HKCU: @onlive.com/OnLiveGameClientDetector,version=1.0.0 - C:\Program Files\OnLive\Plugin\npolgdet.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Roman\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Roman\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Roman\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Roman\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Roman\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Roman\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - D:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
FF user.js: detected! => C:\Users\Roman\AppData\Roaming\Mozilla\Profiles\n85a3glr.Piotr\user.js
FF Plugin ProgramFiles/Appdata: C:\Users\Roman\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Roman\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\Roman\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\Roman\AppData\Roaming\Mozilla\Profiles\n85a3glr.Piotr\searchplugins\yahoo_ff.xml
FF Extension: saovei on - C:\Users\Roman\AppData\Roaming\Mozilla\Profiles\n85a3glr.Piotr\Extensions\[email protected] [2014-07-07]
FF Extension: savve onn - C:\Users\Roman\AppData\Roaming\Mozilla\Profiles\n85a3glr.Piotr\Extensions\[email protected] [2014-07-07]
FF Extension: DownloadHelper - C:\Users\Roman\AppData\Roaming\Mozilla\Profiles\n85a3glr.Piotr\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-26]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-05-14]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-10-23]
FF HKLM\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files\RelevantKnowledge\firefox
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-06-06]
FF HKCU\...\Firefox\Extensions: [[email protected]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
 
Chrome: 
=======
CHR NewTab: "chrome-extension://ifohbjbgfchkkfhphahclmkpgejiplfo/index.html"
CHR DefaultSearchProvider: delta-homes
CHR DefaultSearchURL: http://www.google.com
CHR Extension: (savve onn) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\abicghcibdanmakcmelaggnlickcpppc [2014-07-05]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd [2014-05-14]
CHR Extension: (No Name) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml [2014-01-08]
CHR Extension: (Last updated at $time$ on $date$) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-03]
CHR Extension: (saovei on) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\doddgaopfikckfagnpnlocfohoegddhl [2014-07-05]
CHR Extension: (Old YouTube Homepage Layout by Stachu Super) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\enakpbacgfpidjjgedhdmknddndlmjkn [2013-03-11]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem [2013-08-09]
CHR Extension: (AdBlock) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-09-13]
CHR Extension: (avast! WebRep) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2012-10-23]
CHR Extension: (No Name) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo [2013-08-22]
CHR Extension: (Skype Click to Call) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2012-11-01]
CHR Extension: (No Name) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle [2013-03-04]
CHR Extension: (No Name) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-05-28]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2013-11-15]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Pc Jetpack Joyride) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\oebhpbmmeihepdenahhdiobgipecddkb [2013-08-20]
CHR Extension: (Battlefield Play4Free) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2013-01-12]
CHR Extension: (savve onn) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\abicghcibdanmakcmelaggnlickcpppc\2.14 [2014-07-05]
CHR Extension: (saovei on) - C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\doddgaopfikckfagnpnlocfohoegddhl\2.14 [2014-07-05]
CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2012-10-23]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-11-28] (Adobe Systems) [File not signed]
R2 AdvancedSystemCareService7; E:\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44808 2012-10-23] (AVAST Software)
R2 cFosSpeedS; E:\cFoSpeed\spd.exe [458688 2014-06-03] (cFos Software GmbH)
R2 Hamachi2Svc; D:\Hamachi\hamachi-2.exe [1905488 2014-07-21] (LogMeIn Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19701080 2014-04-30] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-06-28] ()
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 Themes; C:\Windows\system32\themeservice.dll [37376 2013-07-11] (Microsoft Corporation) [File not signed]
S2 Update Webfuii; C:\Program Files\Webfuii\updateWebfuii.exe [348440 2014-03-21] ()
S2 Util Webfuii; C:\Program Files\Webfuii\bin\utilWebfuii.exe [348440 2014-03-22] ()
S3 xsherlock; C:\Windows\system32\xsherlock.xem [666720 2012-11-27] (Wellbia.com Co., Ltd.) [File not signed]
S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
S2 RzKLService; E:\Razer Game Booster\RzKLService.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswFsBlk; C:\Windows\system32\Drivers\aswFsBlk.sys [21256 2012-10-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [58680 2012-10-23] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [44784 2012-10-15] (AVAST Software)
R1 aswSnx; C:\Windows\system32\Drivers\aswSnx.sys [738504 2012-10-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\Drivers\aswSP.sys [360392 2012-10-23] (AVAST Software)
R1 aswTdi; C:\Windows\system32\Drivers\aswTdi.sys [54232 2012-10-23] (AVAST Software)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-11] (AVG Technologies)
R1 cFosSpeed; C:\Windows\System32\DRIVERS\cfosspeed6.sys [1349568 2014-06-03] (cFos Software GmbH)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-07-03] (Disc Soft Ltd)
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22688 2014-02-14] (REALiX)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2012-05-12] (MotioninJoy)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [13216 2009-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19400 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
U3 DfSdkS; 
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vtany; \??\C:\Windows\vtany.sys [X]
S3 WinRing0_1_2_0; \??\E:\Game Booster 3\Driver\WinRing0.sys [X]
S3 XDva401; \??\C:\Windows\system32\XDva401.sys [X]
S3 XFDriver; \??\C:\Program Files\Xfire2\XFDriver.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-07-30 18:48 - 2014-07-30 18:48 - 00021487 _____ () C:\Users\Roman\Downloads\FRST.txt
2014-07-30 18:47 - 2014-07-30 18:48 - 00000000 ____D () C:\FRST
2014-07-30 18:46 - 2014-07-30 18:46 - 01084416 _____ (Farbar) C:\Users\Roman\Downloads\FRST.exe
2014-07-30 11:32 - 2014-07-30 11:32 - 00000000 ____D () C:\Users\Roman\Downloads\CSS Content Addon (Jul2014)
2014-07-30 11:31 - 2014-07-30 11:32 - 691624892 _____ () C:\Users\Roman\Downloads\CSS Content Addon (Jul2014).rar
2014-07-30 11:28 - 2014-07-30 11:28 - 77095879 _____ () C:\Users\Roman\Downloads\CSS Maps Addon (Jul2014).rar
2014-07-30 11:28 - 2014-07-30 11:28 - 00000000 ____D () C:\Users\Roman\Downloads\CSS Maps Addon (Jul2014)
2014-07-29 10:11 - 2014-07-29 10:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
2014-07-29 10:11 - 2014-07-29 10:11 - 00000000 ____D () C:\Program Files\Xiph.Org
2014-07-28 14:35 - 2014-07-29 20:48 - 00000000 ____D () C:\Users\Roman\Desktop\LoL memy
2014-07-28 13:33 - 2014-07-28 13:33 - 00000790 _____ () C:\Users\Roman\Desktop\Nowy dokument tekstowy (2).txt
2014-07-25 19:39 - 2014-07-25 19:39 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\MotioninJoy
2014-07-25 19:39 - 2014-07-25 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2014-07-25 19:39 - 2011-12-07 19:42 - 00255496 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2014-07-23 18:34 - 2014-07-23 18:34 - 00001229 _____ () C:\Users\Roman_2\Desktop\cFosSpeed Calibration.lnk
2014-07-23 18:34 - 2014-07-23 18:34 - 00000000 ____D () C:\Users\Roman_2\AppData\Roaming\ProductData
2014-07-23 18:33 - 2014-07-28 21:13 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\LogMeIn Hamachi
2014-07-23 18:33 - 2014-07-23 18:33 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\cFos
2014-07-23 11:12 - 2014-07-23 11:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-17 10:39 - 2014-07-17 10:39 - 00006976 _____ () C:\Windows\PFRO.log
2014-07-17 10:38 - 2014-07-17 10:38 - 54702080 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 30728192 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00253952 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00102400 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00028672 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00000000 _____ () C:\asc_rdflag
2014-07-16 20:43 - 2014-07-30 18:10 - 00006040 _____ () C:\Windows\setupact.log
2014-07-16 20:43 - 2014-07-16 20:43 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-16 20:43 - 2014-07-16 20:43 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-16 20:20 - 2014-07-16 20:20 - 00000000 ____D () C:\Users\Roman\Documents\Firefall
2014-07-16 20:20 - 2014-07-16 20:20 - 00000000 ____D () C:\Users\Roman\AppData\Local\Red 5 Studios
2014-07-16 19:27 - 2014-07-16 19:27 - 00000202 _____ () C:\Users\Roman\Desktop\Firefall.url
2014-07-16 11:32 - 2014-02-17 13:41 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2014-07-16 11:27 - 2014-07-16 11:27 - 54702080 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 30728192 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 00253952 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 00102400 _____ () C:\Windows\system32\config\SAM.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 00028672 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-07-13 22:33 - 2014-07-13 22:33 - 00000202 _____ () C:\Users\Roman\Desktop\Call of Duty Black Ops II - Zombies.url
2014-07-12 09:37 - 2014-07-12 09:37 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\ProductData
2014-07-11 10:41 - 2014-07-11 10:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7
2014-07-10 20:14 - 2014-07-10 20:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\cFosSpeed Traffic Shaping
2014-07-10 20:14 - 2014-06-03 14:05 - 01349568 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2014-07-10 20:11 - 2014-07-10 20:11 - 00000000 ____D () C:\Users\Roman\AppData\Local\cFos
2014-07-10 20:11 - 2014-07-10 20:11 - 00000000 ____D () C:\ProgramData\cFos
2014-07-10 11:22 - 2014-07-10 11:22 - 00000202 _____ () C:\Users\Roman\Desktop\Really Big Sky.url
2014-07-09 15:59 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-09 15:59 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 15:59 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 15:59 - 2014-06-19 01:56 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-09 15:59 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-09 15:59 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-09 15:59 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-09 15:59 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-09 15:59 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 15:59 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 15:59 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-09 15:59 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-09 15:59 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-09 15:59 - 2014-06-19 01:23 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-09 15:59 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-09 15:59 - 2014-06-19 01:16 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 15:59 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 15:59 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 15:59 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-09 15:59 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 15:59 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 15:59 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 15:59 - 2014-06-19 00:52 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-09 15:59 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 15:59 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-09 15:59 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 15:59 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 15:59 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 15:59 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 15:59 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-09 15:59 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 15:59 - 2014-06-18 02:52 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 15:59 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 15:59 - 2014-05-30 08:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-09 15:58 - 2014-06-05 16:26 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 12:17 - 2014-07-09 12:17 - 00001146 _____ () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenFM.lnk
2014-07-09 12:17 - 2014-07-09 12:17 - 00001107 _____ () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
2014-07-09 12:17 - 2014-07-09 12:17 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\OpenFM
2014-07-09 12:16 - 2014-07-09 12:17 - 00000000 ____D () C:\Users\Roman\AppData\Local\OpenFM
2014-07-08 18:35 - 2014-07-08 18:35 - 00000202 _____ () C:\Users\Roman\Desktop\Unturned.url
2014-07-07 16:13 - 2014-07-07 16:13 - 00000199 _____ () C:\Users\Roman\Desktop\Counter-Strike Global Offensive.url
2014-07-07 14:37 - 2014-07-07 14:37 - 00000202 _____ () C:\Users\Roman\Desktop\Yet Another Zombie Defense.url
2014-07-07 11:00 - 2014-07-07 11:00 - 00000594 _____ () C:\Users\Public\Desktop\Action!.lnk
2014-07-06 12:09 - 2014-07-06 12:09 - 00000000 ____D () C:\Users\Roman\Documents\Action!
2014-07-06 11:36 - 2014-07-30 12:20 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\.minecraft
2014-07-06 11:31 - 2014-06-03 18:42 - 01094097 _____ () C:\Users\Roman\Desktop\KN Launcher v1.404.exe
2014-07-05 17:59 - 2014-07-05 17:59 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-07-05 17:47 - 2014-07-05 17:59 - 00000000 ____D () C:\Users\Roman\Documents\GTA San Andreas User Files
2014-07-05 17:47 - 2014-07-05 17:47 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-05 17:45 - 2014-07-05 17:45 - 00000000 ____D () C:\ProgramData\saovei on
2014-07-05 17:45 - 2014-07-05 17:45 - 00000000 ____D () C:\Program Files\saovei on
2014-07-05 17:27 - 2014-07-05 17:45 - 00000402 __RSH () C:\ProgramData\ntuser.pol
2014-07-05 17:27 - 2014-07-05 17:45 - 00000000 ____D () C:\ProgramData\69195e2af28d40a1
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Google
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\ProgramData\save  on
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Program Files\save  on
2014-07-05 16:43 - 2014-07-05 16:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-07-05 10:00 - 2014-07-05 10:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-07-05 10:00 - 2014-07-05 10:00 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-07-05 10:00 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2014-07-04 21:30 - 2014-07-04 21:30 - 00014883 _____ () C:\Users\Roman\AppData\Local\recently-used.xbel
2014-07-04 21:16 - 2014-07-04 21:23 - 06934975 _____ () C:\Users\Roman\Desktop\One-Channel Template by Advance Pred.psd
2014-07-04 20:54 - 2014-07-04 21:00 - 06324861 _____ () C:\Users\Roman\Desktop\Baner Template Battlefield.psd
2014-07-04 20:14 - 2014-07-04 21:02 - 00000000 ____D () C:\Users\Roman\Desktop\My Shared Folder
2014-07-04 16:32 - 2014-07-05 14:38 - 00032635 _____ () C:\Users\Roman\Desktop\Valiant odcinek 2 DO RENDERU.camproj
2014-07-04 16:29 - 2014-07-04 16:29 - 135559212 _____ () C:\Users\Roman\Desktop\Valiant głos !.wav
2014-07-04 14:00 - 2014-07-04 14:01 - 01609784 _____ () C:\Users\Roman\Documents\Minecraft.mp4
2014-07-04 10:35 - 2014-07-04 10:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-04 09:57 - 2014-07-04 09:57 - 00000640 _____ () C:\Users\Public\Desktop\Join our server!.lnk
2014-07-04 09:57 - 2014-07-04 09:57 - 00000608 _____ () C:\Users\Public\Desktop\Craften Terminal.lnk
2014-07-04 09:57 - 2014-07-04 09:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Craften Terminal
2014-07-03 20:57 - 2014-07-03 20:56 - 00496229 _____ () C:\Users\Roman\Desktop\Youtube BG Template.psd
2014-07-03 19:30 - 2014-07-03 19:30 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Sony Creative Software Inc
2014-07-03 18:44 - 2014-07-03 18:44 - 00000000 ____D () C:\Users\Roman\Desktop\Gaming Channel Trailer
2014-07-03 18:44 - 2014-07-03 18:44 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Publish Providers
2014-07-03 18:13 - 2014-07-03 18:13 - 00000556 _____ () C:\Users\Public\Desktop\Vegas Pro 11.0.lnk
2014-07-03 18:13 - 2014-07-03 18:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-07-03 18:12 - 2014-07-03 18:12 - 00000000 ____D () C:\ProgramData\Sony
2014-07-03 16:32 - 2014-07-03 16:33 - 13176807 _____ () C:\Users\Roman\Desktop\Gaming Channel Trailer.zip
2014-07-03 13:35 - 2014-07-03 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-07-03 13:35 - 2014-07-03 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2014-07-03 13:33 - 2012-05-12 12:31 - 00099400 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2014-07-03 13:33 - 2011-12-07 19:42 - 00061984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2014-07-03 12:01 - 2014-07-03 12:01 - 00000040 ____H () C:\60531848340E
2014-07-03 11:41 - 2014-07-04 21:31 - 00000000 ____D () C:\Users\Roman\Desktop\Wszystko
2014-07-03 11:01 - 2014-07-03 11:01 - 00001047 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-07-03 10:56 - 2014-07-03 11:00 - 00000000 ____D () C:\Program Files\GIMP 2
2014-07-03 10:15 - 2014-07-03 10:15 - 00000000 ____D () C:\Users\Roman\Documents\ValiantHearts
2014-07-03 10:14 - 2014-07-03 10:14 - 00000000 ____D () C:\ProgramData\Steam
2014-07-03 09:57 - 2014-07-03 09:57 - 00000573 _____ () C:\Users\Public\Desktop\Valiant Hearts The Great War.lnk
2014-07-03 09:51 - 2014-07-03 09:51 - 00000645 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-07-03 09:51 - 2014-07-03 09:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-07-03 09:50 - 2014-07-03 09:50 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-07-02 13:53 - 2014-07-02 13:53 - 00000893 _____ () C:\Users\Roman\Desktop\Open Broadcaster Software.lnk
2014-07-02 13:53 - 2014-07-02 13:53 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-07-02 13:53 - 2014-07-02 13:53 - 00000000 ____D () C:\Program Files\OBS
2014-07-01 17:54 - 2014-07-01 17:54 - 00000000 ____D () C:\Users\Roman\AppData\Local\wf-launcher
2014-06-30 13:52 - 2014-06-30 13:52 - 00001358 _____ () C:\Users\Roman\Desktop\World of Warcraft.lnk
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-07-30 18:49 - 2012-11-24 17:13 - 00000000 ____D () C:\Users\Roman\AppData\Local\PMB Files
2014-07-30 18:48 - 2014-07-30 18:48 - 00021487 _____ () C:\Users\Roman\Downloads\FRST.txt
2014-07-30 18:48 - 2014-07-30 18:47 - 00000000 ____D () C:\FRST
2014-07-30 18:46 - 2014-07-30 18:46 - 01084416 _____ (Farbar) C:\Users\Roman\Downloads\FRST.exe
2014-07-30 18:36 - 2012-11-24 17:13 - 00000000 ____D () C:\ProgramData\PMB Files
2014-07-30 18:35 - 2012-11-01 12:48 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Skype
2014-07-30 18:20 - 2009-07-14 06:34 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-30 18:20 - 2009-07-14 06:34 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-30 18:16 - 2014-01-28 17:16 - 01966660 _____ () C:\Windows\WindowsUpdate.log
2014-07-30 18:14 - 2012-12-01 14:51 - 00000000 ____D () C:\Users\Roman\AppData\Local\LogMeIn Hamachi
2014-07-30 18:11 - 2013-06-03 20:24 - 00000350 _____ () C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2014-07-30 18:10 - 2014-07-16 20:43 - 00006040 _____ () C:\Windows\setupact.log
2014-07-30 18:10 - 2012-10-23 19:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-30 18:10 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-30 12:20 - 2014-07-06 11:36 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\.minecraft
2014-07-30 11:32 - 2014-07-30 11:32 - 00000000 ____D () C:\Users\Roman\Downloads\CSS Content Addon (Jul2014)
2014-07-30 11:32 - 2014-07-30 11:31 - 691624892 _____ () C:\Users\Roman\Downloads\CSS Content Addon (Jul2014).rar
2014-07-30 11:28 - 2014-07-30 11:28 - 77095879 _____ () C:\Users\Roman\Downloads\CSS Maps Addon (Jul2014).rar
2014-07-30 11:28 - 2014-07-30 11:28 - 00000000 ____D () C:\Users\Roman\Downloads\CSS Maps Addon (Jul2014)
2014-07-30 10:49 - 2012-11-02 15:44 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-07-29 20:48 - 2014-07-28 14:35 - 00000000 ____D () C:\Users\Roman\Desktop\LoL memy
2014-07-29 10:11 - 2014-07-29 10:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
2014-07-29 10:11 - 2014-07-29 10:11 - 00000000 ____D () C:\Program Files\Xiph.Org
2014-07-28 21:13 - 2014-07-23 18:33 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\LogMeIn Hamachi
2014-07-28 13:33 - 2014-07-28 13:33 - 00000790 _____ () C:\Users\Roman\Desktop\Nowy dokument tekstowy (2).txt
2014-07-28 09:36 - 2014-05-16 15:50 - 00000000 ____D () C:\Users\Roman\Desktop\Puplit 2
2014-07-28 09:13 - 2012-10-23 19:53 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 22:15 - 2012-10-23 19:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-27 18:51 - 2013-07-19 19:09 - 00000000 ____D () C:\Users\Roman\AppData\Local\CrashDumps
2014-07-25 19:39 - 2014-07-25 19:39 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\MotioninJoy
2014-07-25 19:39 - 2014-07-25 19:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2014-07-24 20:10 - 2012-11-23 14:52 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\GG
2014-07-23 18:34 - 2014-07-23 18:34 - 00001229 _____ () C:\Users\Roman_2\Desktop\cFosSpeed Calibration.lnk
2014-07-23 18:34 - 2014-07-23 18:34 - 00000000 ____D () C:\Users\Roman_2\AppData\Roaming\ProductData
2014-07-23 18:33 - 2014-07-23 18:33 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\cFos
2014-07-23 18:33 - 2014-02-26 19:25 - 00113696 _____ () C:\Users\Roman_2\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-23 18:33 - 2014-02-19 17:55 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\NVIDIA Corporation
2014-07-23 11:12 - 2014-07-23 11:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-07-19 21:39 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-07-19 18:54 - 2012-11-02 15:55 - 00000000 ____D () C:\ProgramData\Origin
2014-07-19 16:48 - 2014-01-22 16:42 - 00295720 _____ () C:\Windows\system32\PnkBstrB.exe
2014-07-19 16:48 - 2012-11-01 13:14 - 00295720 _____ () C:\Windows\system32\PnkBstrB.xtr
2014-07-19 16:48 - 2012-11-01 13:08 - 00139264 _____ () C:\Windows\system32\Drivers\PnkBstrK.sys
2014-07-19 11:41 - 2014-01-22 16:42 - 00295720 _____ () C:\Windows\system32\PnkBstrB.ex0
2014-07-17 10:39 - 2014-07-17 10:39 - 00006976 _____ () C:\Windows\PFRO.log
2014-07-17 10:38 - 2014-07-17 10:38 - 54702080 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 30728192 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00253952 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00102400 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00028672 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-07-17 10:38 - 2014-07-17 10:38 - 00000000 _____ () C:\asc_rdflag
2014-07-17 10:38 - 2012-10-24 00:18 - 00000000 ____D () C:\Users\Roman
2014-07-16 20:43 - 2014-07-16 20:43 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-16 20:43 - 2014-07-16 20:43 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-16 20:20 - 2014-07-16 20:20 - 00000000 ____D () C:\Users\Roman\Documents\Firefall
2014-07-16 20:20 - 2014-07-16 20:20 - 00000000 ____D () C:\Users\Roman\AppData\Local\Red 5 Studios
2014-07-16 19:27 - 2014-07-16 19:27 - 00000202 _____ () C:\Users\Roman\Desktop\Firefall.url
2014-07-16 11:27 - 2014-07-16 11:27 - 54702080 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 30728192 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 00253952 _____ () C:\Windows\system32\config\DEFAULT.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 00102400 _____ () C:\Windows\system32\config\SAM.iobit
2014-07-16 11:27 - 2014-07-16 11:27 - 00028672 _____ () C:\Windows\system32\config\SECURITY.iobit
2014-07-15 21:30 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-13 22:33 - 2014-07-13 22:33 - 00000202 _____ () C:\Users\Roman\Desktop\Call of Duty Black Ops II - Zombies.url
2014-07-12 11:51 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-07-12 09:37 - 2014-07-12 09:37 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\ProductData
2014-07-11 10:48 - 2012-11-28 19:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-07-11 10:48 - 2012-10-23 19:07 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\DAEMON Tools Lite
2014-07-11 10:41 - 2014-07-11 10:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7
2014-07-10 20:14 - 2014-07-10 20:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\cFosSpeed Traffic Shaping
2014-07-10 20:11 - 2014-07-10 20:11 - 00000000 ____D () C:\Users\Roman\AppData\Local\cFos
2014-07-10 20:11 - 2014-07-10 20:11 - 00000000 ____D () C:\ProgramData\cFos
2014-07-10 11:53 - 2011-02-01 21:37 - 00740324 _____ () C:\Windows\system32\perfh015.dat
2014-07-10 11:53 - 2011-02-01 21:37 - 00155898 _____ () C:\Windows\system32\perfc015.dat
2014-07-10 11:53 - 2010-11-20 23:01 - 01641772 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-10 11:44 - 2013-01-19 16:27 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-10 11:22 - 2014-07-10 11:22 - 00000202 _____ () C:\Users\Roman\Desktop\Really Big Sky.url
2014-07-09 19:48 - 2009-07-14 06:33 - 02356720 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-09 19:46 - 2010-11-21 02:46 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 18:07 - 2014-01-22 22:11 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-09 18:04 - 2012-10-24 01:00 - 93585272 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-09 18:04 - 2012-10-23 19:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-09 12:17 - 2014-07-09 12:17 - 00001146 _____ () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenFM.lnk
2014-07-09 12:17 - 2014-07-09 12:17 - 00001107 _____ () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
2014-07-09 12:17 - 2014-07-09 12:17 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\OpenFM
2014-07-09 12:17 - 2014-07-09 12:16 - 00000000 ____D () C:\Users\Roman\AppData\Local\OpenFM
2014-07-09 12:17 - 2012-11-23 14:52 - 00000000 ____D () C:\Users\Roman\AppData\Local\GG
2014-07-08 18:35 - 2014-07-08 18:35 - 00000202 _____ () C:\Users\Roman\Desktop\Unturned.url
2014-07-07 19:02 - 2013-01-27 17:00 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\uTorrent
2014-07-07 16:13 - 2014-07-07 16:13 - 00000199 _____ () C:\Users\Roman\Desktop\Counter-Strike Global Offensive.url
2014-07-07 15:50 - 2014-06-29 12:37 - 00000000 ____D () C:\Users\Roman\Documents\SavedGames
2014-07-07 14:37 - 2014-07-07 14:37 - 00000202 _____ () C:\Users\Roman\Desktop\Yet Another Zombie Defense.url
2014-07-07 11:21 - 2012-12-17 18:49 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Audacity
2014-07-07 11:00 - 2014-07-07 11:00 - 00000594 _____ () C:\Users\Public\Desktop\Action!.lnk
2014-07-07 11:00 - 2014-01-02 19:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2014-07-06 12:18 - 2013-03-09 20:35 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-07-06 12:18 - 2012-12-17 17:24 - 00000000 ____D () C:\Program Files\Adobe
2014-07-06 12:18 - 2012-10-23 18:56 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Adobe
2014-07-06 12:09 - 2014-07-06 12:09 - 00000000 ____D () C:\Users\Roman\Documents\Action!
2014-07-06 10:45 - 2012-10-23 19:04 - 00000000 ____D () C:\Program Files\Google
2014-07-05 19:10 - 2013-08-10 11:45 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\TS3Client
2014-07-05 17:59 - 2014-07-05 17:59 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-07-05 17:59 - 2014-07-05 17:47 - 00000000 ____D () C:\Users\Roman\Documents\GTA San Andreas User Files
2014-07-05 17:47 - 2014-07-05 17:47 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-07-05 17:45 - 2014-07-05 17:45 - 00000000 ____D () C:\ProgramData\saovei on
2014-07-05 17:45 - 2014-07-05 17:45 - 00000000 ____D () C:\Program Files\saovei on
2014-07-05 17:45 - 2014-07-05 17:27 - 00000402 __RSH () C:\ProgramData\ntuser.pol
2014-07-05 17:45 - 2014-07-05 17:27 - 00000000 ____D () C:\ProgramData\69195e2af28d40a1
2014-07-05 17:45 - 2013-02-04 13:30 - 00000000 ____D () C:\ProgramData\InstallMate
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Roman\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Google
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Gość
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Chromatic Browser
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Users\Administrator
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\ProgramData\save  on
2014-07-05 17:27 - 2014-07-05 17:27 - 00000000 ____D () C:\Program Files\save  on
2014-07-05 17:27 - 2014-02-19 18:05 - 00000000 ____D () C:\Users\Roman_2\AppData\Local\Google
2014-07-05 17:27 - 2012-10-23 19:04 - 00000000 ____D () C:\Users\Roman\AppData\Local\Google
2014-07-05 17:27 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-07-05 16:43 - 2014-07-05 16:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-07-05 16:43 - 2012-10-24 00:29 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-07-05 14:38 - 2014-07-04 16:32 - 00032635 _____ () C:\Users\Roman\Desktop\Valiant odcinek 2 DO RENDERU.camproj
2014-07-05 13:09 - 2012-11-13 20:02 - 00000000 ____D () C:\Users\Roman\Documents\Camtasia Studio
2014-07-05 10:09 - 2012-10-23 20:23 - 00113696 _____ () C:\Users\Roman\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-05 10:00 - 2014-07-05 10:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-07-05 10:00 - 2014-07-05 10:00 - 00000000 ____D () C:\ProgramData\Ashampoo
2014-07-04 21:33 - 2013-02-04 19:03 - 00000000 ____D () C:\Users\Roman\.gimp-2.8
2014-07-04 21:31 - 2014-07-03 11:41 - 00000000 ____D () C:\Users\Roman\Desktop\Wszystko
2014-07-04 21:30 - 2014-07-04 21:30 - 00014883 _____ () C:\Users\Roman\AppData\Local\recently-used.xbel
2014-07-04 21:30 - 2014-01-12 15:15 - 00000000 ____D () C:\Users\Roman\AppData\Local\gtk-2.0
2014-07-04 21:23 - 2014-07-04 21:16 - 06934975 _____ () C:\Users\Roman\Desktop\One-Channel Template by Advance Pred.psd
2014-07-04 21:02 - 2014-07-04 20:14 - 00000000 ____D () C:\Users\Roman\Desktop\My Shared Folder
2014-07-04 21:00 - 2014-07-04 20:54 - 06324861 _____ () C:\Users\Roman\Desktop\Baner Template Battlefield.psd
2014-07-04 16:29 - 2014-07-04 16:29 - 135559212 _____ () C:\Users\Roman\Desktop\Valiant głos !.wav
2014-07-04 14:01 - 2014-07-04 14:00 - 01609784 _____ () C:\Users\Roman\Documents\Minecraft.mp4
2014-07-04 14:00 - 2013-07-06 10:54 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Sony
2014-07-04 10:36 - 2014-07-04 10:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-07-04 10:36 - 2014-06-24 19:12 - 00000000 __SHD () C:\Windows\system32\AI_RecycleBin
2014-07-04 10:03 - 2014-06-20 18:33 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Craften Terminal
2014-07-04 09:57 - 2014-07-04 09:57 - 00000640 _____ () C:\Users\Public\Desktop\Join our server!.lnk
2014-07-04 09:57 - 2014-07-04 09:57 - 00000608 _____ () C:\Users\Public\Desktop\Craften Terminal.lnk
2014-07-04 09:57 - 2014-07-04 09:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Craften Terminal
2014-07-04 09:44 - 2013-07-06 11:53 - 00000000 ____D () C:\Users\Roman\AppData\Local\Craften_Dev_Team
2014-07-03 20:56 - 2014-07-03 20:57 - 00496229 _____ () C:\Users\Roman\Desktop\Youtube BG Template.psd
2014-07-03 19:30 - 2014-07-03 19:30 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Sony Creative Software Inc
2014-07-03 18:44 - 2014-07-03 18:44 - 00000000 ____D () C:\Users\Roman\Desktop\Gaming Channel Trailer
2014-07-03 18:44 - 2014-07-03 18:44 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Publish Providers
2014-07-03 18:43 - 2013-07-06 10:58 - 00002576 _____ () C:\Users\Roman\Documents\Register Vegas Pro.htm
2014-07-03 18:13 - 2014-07-03 18:13 - 00000556 _____ () C:\Users\Public\Desktop\Vegas Pro 11.0.lnk
2014-07-03 18:13 - 2014-07-03 18:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-07-03 18:12 - 2014-07-03 18:12 - 00000000 ____D () C:\ProgramData\Sony
2014-07-03 18:12 - 2014-05-25 18:05 - 00000000 ____D () C:\Program Files\Sony
2014-07-03 18:02 - 2012-12-17 17:22 - 00000000 ____D () C:\Users\Roman\AppData\Local\Adobe
2014-07-03 16:33 - 2014-07-03 16:32 - 13176807 _____ () C:\Users\Roman\Desktop\Gaming Channel Trailer.zip
2014-07-03 16:21 - 2012-12-09 11:51 - 00000000 ____D () C:\Users\Roman\AppData\Local\WMTools Downloaded Files
2014-07-03 16:18 - 2012-11-13 20:08 - 00046080 _____ () C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-03 13:35 - 2014-07-03 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-07-03 13:35 - 2014-07-03 13:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2014-07-03 12:01 - 2014-07-03 12:01 - 00000040 ____H () C:\60531848340E
2014-07-03 11:01 - 2014-07-03 11:01 - 00001047 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-07-03 11:00 - 2014-07-03 10:56 - 00000000 ____D () C:\Program Files\GIMP 2
2014-07-03 10:15 - 2014-07-03 10:15 - 00000000 ____D () C:\Users\Roman\Documents\ValiantHearts
2014-07-03 10:14 - 2014-07-03 10:14 - 00000000 ____D () C:\ProgramData\Steam
2014-07-03 10:14 - 2013-02-03 15:42 - 00000000 ____D () C:\ProgramData\Orbit
2014-07-03 09:57 - 2014-07-03 09:57 - 00000573 _____ () C:\Users\Public\Desktop\Valiant Hearts The Great War.lnk
2014-07-03 09:51 - 2014-07-03 09:51 - 00000645 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-07-03 09:51 - 2014-07-03 09:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-07-03 09:50 - 2014-07-03 09:50 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-07-02 13:53 - 2014-07-02 13:53 - 00000893 _____ () C:\Users\Roman\Desktop\Open Broadcaster Software.lnk
2014-07-02 13:53 - 2014-07-02 13:53 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-07-02 13:53 - 2014-07-02 13:53 - 00000000 ____D () C:\Program Files\OBS
2014-07-02 13:53 - 2013-09-04 14:33 - 00000000 ____D () C:\Users\Roman\AppData\Roaming\OBS
2014-07-01 18:18 - 2013-10-21 20:55 - 00000000 ____D () C:\ProgramData\GFACE
2014-07-01 17:54 - 2014-07-01 17:54 - 00000000 ____D () C:\Users\Roman\AppData\Local\wf-launcher
2014-06-30 13:52 - 2014-06-30 13:52 - 00001358 _____ () C:\Users\Roman\Desktop\World of Warcraft.lnk
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-19 21:29
 
==================== End Of Log ============================
 
 
OTL :
OTL logfile created on: 2014-07-30 18:55:34 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Roman\Downloads
 Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17207)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,00 Gb Total Physical Memory | 0,97 Gb Available Physical Memory | 32,26% Memory free
14,99 Gb Paging File | 12,72 Gb Available in Paging File | 84,83% Paging File free
Paging file location(s): c:\pagefile.sys 0 0d:\pagefile.sy [binary data over 200 bytes]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,73 Gb Total Space | 7,33 Gb Free Space | 15,05% Space Free | Partition Type: NTFS
Drive D: | 122,07 Gb Total Space | 13,34 Gb Free Space | 10,93% Space Free | Partition Type: NTFS
Drive E: | 127,19 Gb Total Space | 13,59 Gb Free Space | 10,69% Space Free | Partition Type: NTFS
 
Computer Name: ROMAN-KOMPUTER | User Name: Roman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014-07-30 18:54:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Roman\Downloads\OTL.exe
PRC - [2014-07-21 18:08:28 | 001,905,488 | ---- | M] (LogMeIn Inc.) -- D:\Hamachi\hamachi-2.exe
PRC - [2014-07-16 20:43:49 | 005,430,776 | ---- | M] () -- E:\Gry\League Of Legends\RADS\projects\lol_launcher\releases\0.0.0.213\deploy\LoLLauncher.exe
PRC - [2014-07-16 10:53:38 | 000,375,056 | ---- | M] (LogMeIn, Inc.) -- D:\Hamachi\LMIGuardianSvc.exe
PRC - [2014-06-24 19:21:03 | 000,074,752 | ---- | M] () -- E:\Gry\League Of Legends\RADS\projects\lol_air_client\releases\0.0.1.101\deploy\LolClient.exe
PRC - [2014-06-24 19:12:36 | 001,294,336 | ---- | M] () -- E:\Gry\League Of Legends\RADS\system\rads_user_kernel.exe
PRC - [2014-06-05 15:58:39 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014-06-03 14:04:58 | 000,458,688 | ---- | M] (cFos Software GmbH) -- E:\cFoSpeed\spd.exe
PRC - [2014-06-03 14:04:56 | 001,340,864 | ---- | M] (cFos Software GmbH) -- E:\cFoSpeed\cfosspeed.exe
PRC - [2014-05-06 18:23:52 | 000,781,600 | ---- | M] (IObit) -- E:\Advanced SystemCare 7\Monitor.exe
PRC - [2014-04-30 20:30:53 | 002,199,840 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014-04-30 20:30:40 | 001,618,888 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014-04-30 20:30:37 | 019,701,080 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2014-02-08 19:11:48 | 000,941,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2014-02-08 19:11:47 | 001,819,936 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2014-02-08 18:18:26 | 000,411,936 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014-01-22 22:05:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2014-01-14 14:50:06 | 000,881,952 | ---- | M] (IObit) -- E:\Advanced SystemCare 7\ASCService.exe
PRC - [2013-08-02 02:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2012-11-24 17:13:07 | 003,093,624 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
PRC - [2012-10-23 12:17:40 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012-10-23 12:17:40 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012-10-02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2011-02-25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014-07-16 20:43:50 | 001,640,440 | ---- | M] () -- E:\Gry\League Of Legends\RADS\projects\lol_launcher\releases\0.0.0.213\deploy\RiotLauncher.dll
MOD - [2014-07-16 20:43:49 | 005,430,776 | ---- | M] () -- E:\Gry\League Of Legends\RADS\projects\lol_launcher\releases\0.0.0.213\deploy\LoLLauncher.exe
MOD - [2014-06-24 19:21:03 | 000,074,752 | ---- | M] () -- E:\Gry\League Of Legends\RADS\projects\lol_air_client\releases\0.0.1.101\deploy\LolClient.exe
MOD - [2014-06-24 19:18:08 | 004,774,248 | ---- | M] () -- E:\Gry\League Of Legends\RADS\projects\lol_air_client\releases\0.0.1.101\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
MOD - [2014-06-24 19:12:36 | 001,294,336 | ---- | M] () -- E:\Gry\League Of Legends\RADS\system\rads_user_kernel.exe
MOD - [2014-06-05 15:58:38 | 000,414,536 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.153\ppgooglenaclpluginchrome.dll
MOD - [2014-06-05 15:58:36 | 004,217,672 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.153\pdf.dll
MOD - [2014-06-05 15:58:32 | 000,716,616 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
MOD - [2014-06-05 15:58:31 | 000,126,280 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.153\libegl.dll
MOD - [2014-06-05 15:58:30 | 001,732,424 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
MOD - [2013-01-15 18:48:26 | 000,348,992 | ---- | M] () -- E:\Advanced SystemCare 7\madexcept_.bpl
MOD - [2013-01-15 18:48:26 | 000,051,008 | ---- | M] () -- E:\Advanced SystemCare 7\maddisAsm_.bpl
MOD - [2013-01-15 18:48:24 | 000,183,616 | ---- | M] () -- E:\Advanced SystemCare 7\madbasic_.bpl
MOD - [2013-01-15 18:47:56 | 000,893,248 | ---- | M] () -- E:\Advanced SystemCare 7\webres.dll
MOD - [2012-11-24 17:13:07 | 003,093,624 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
 
 
========== Services (SafeList) ==========
 
SRV - File not found [Auto | Stopped] -- E:\Razer Game Booster\RzKLService.exe -- (RzKLService)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc -- (gupdatem)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /svc -- (gupdate)
SRV - [2014-07-29 19:20:04 | 000,534,720 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014-07-21 18:08:28 | 001,905,488 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- D:\Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2014-06-19 01:23:24 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014-06-03 14:04:58 | 000,458,688 | ---- | M] (cFos Software GmbH) [Auto | Running] -- E:\cFoSpeed\spd.exe -- (cFosSpeedS)
SRV - [2014-05-14 19:23:30 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014-05-04 16:37:30 | 002,152,736 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2014-04-30 20:30:40 | 001,618,888 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014-04-30 20:30:37 | 019,701,080 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2014-03-22 20:26:34 | 000,348,440 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Webfuii\bin\utilWebfuii.exe -- (Util Webfuii)
SRV - [2014-03-21 02:27:06 | 000,348,440 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Webfuii\updateWebfuii.exe -- (Update Webfuii)
SRV - [2014-02-08 18:18:26 | 000,411,936 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014-01-14 14:50:06 | 000,881,952 | ---- | M] (IObit) [Auto | Running] -- E:\Advanced SystemCare 7\ASCService.exe -- (AdvancedSystemCareService7)
SRV - [2013-12-11 16:40:10 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-10-23 09:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013-05-27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012-11-27 17:41:20 | 000,666,720 | ---- | M] (Wellbia.com Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\xsherlock.xem -- (xsherlock)
SRV - [2012-10-24 00:50:57 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012-10-23 12:17:40 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012-10-02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\xhunter1.sys -- (xhunter1)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\Program Files\Xfire2\XFDriver.sys -- (XFDriver)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva401.sys -- (XDva401)
DRV - File not found [File_System | On_Demand | Stopped] -- E:\Game Booster 3\Driver\WinRing0.sys -- (WinRing0_1_2_0)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\vtany.sys -- (vtany)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2014-07-03 09:50:38 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2014-06-03 14:05:02 | 001,349,568 | ---- | M] (cFos Software GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\cfosspeed6.sys -- (cFosSpeed)
DRV - [2014-04-30 20:30:36 | 000,019,400 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV - [2014-04-11 15:50:48 | 010,523,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2014-03-31 18:42:44 | 000,034,080 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2014-02-14 20:50:37 | 000,022,688 | ---- | M] (REALiX) [Kernel | System | Running] -- C:\Windows\System32\drivers\HWiNFO32.SYS -- (HWiNFO32)
DRV - [2013-12-18 18:38:48 | 000,114,960 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2013-11-11 11:06:27 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012-10-23 12:18:34 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012-10-23 12:18:34 | 000,360,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012-10-23 12:18:34 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012-10-23 12:18:33 | 000,058,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012-10-23 12:18:32 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012-10-15 18:59:28 | 000,044,784 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2012-08-23 16:46:55 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2012-08-23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012-08-23 16:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012-08-23 16:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012-06-20 12:51:34 | 000,017,672 | ---- | M] (HandSet Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\massfilter_hs.sys -- (massfilter_hs)
DRV - [2012-05-12 12:31:00 | 000,099,400 | ---- | M] (MotioninJoy) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MijXfilt.sys -- (MotioninJoyXFilter)
DRV - [2011-08-17 09:56:32 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011-08-17 09:56:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-08-17 09:56:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011-08-17 09:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011-04-19 04:50:39 | 000,069,232 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2010-11-20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010-11-20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010-11-20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010-11-20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010-11-20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009-09-19 06:30:10 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009-09-19 06:30:10 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus)
DRV - [2009-09-19 06:30:10 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl)
DRV - [2009-07-16 05:36:30 | 000,013,216 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2009-03-18 18:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKCU\..\SearchScopes,DefaultScope = {A4F69109-F1C7-42B4-9F7A-C2BD917877B5}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\..\SearchScopes\{A4F69109-F1C7-42B4-9F7A-C2BD917877B5}: "URL" = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=198484&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = serwerparkour.pl:25565
 
 
========== FireFox ==========
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.3: C:\Program Files\Battlelog Web Plugins\2.1.3\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.7: C:\Program Files\Battlelog Web Plugins\2.1.7\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.3.0: C:\Program Files\Battlelog Web Plugins\2.3.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.4.0: C:\Program Files\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@onlive.com/OnLiveGameClientDetector,version=1.0.0: C:\Program Files\OnLive\Plugin\npolgdet.dll File not found
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Roman\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Roman\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Roman\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Roman\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Roman\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Roman\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: D:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-10-23 19:35:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}: C:\Program Files\RelevantKnowledge\firefox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-06-06 19:50:46 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-06-06 19:50:46 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
[2013-01-19 16:01:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Roman\AppData\Roaming\mozilla\Extensions
[2014-07-07 15:08:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Roman\AppData\Roaming\mozilla\Profiles\n85a3glr.Piotr\extensions
[2014-03-26 19:51:50 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Roman\AppData\Roaming\mozilla\Profiles\n85a3glr.Piotr\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2014-07-07 15:08:05 | 000,000,000 | ---D | M] (saovei on) -- C:\Users\Roman\AppData\Roaming\mozilla\Profiles\n85a3glr.Piotr\extensions\[email protected]
[2014-07-07 15:08:05 | 000,000,000 | ---D | M] (savve onn) -- C:\Users\Roman\AppData\Roaming\mozilla\Profiles\n85a3glr.Piotr\extensions\[email protected]
[2014-05-14 19:23:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2014-05-14 19:23:21 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014-05-14 19:23:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014-05-14 19:23:32 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
========== Chrome  ==========
 
CHR - default_search_provider: delta-homes (Enabled)
CHR - default_search_provider: search_url = http://www.google.com
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\abicghcibdanmakcmelaggnlickcpppc\2.14\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd\1.0.0_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\doddgaopfikckfagnpnlocfohoegddhl\2.14\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\enakpbacgfpidjjgedhdmknddndlmjkn\1.2.0_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem\3.6.1_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem\3.6.2_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.8_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1473_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\oebhpbmmeihepdenahhdiobgipecddkb\1.0_0\
CHR - Extension: No name found = C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.96.0_0\
 
O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - E:\IObit Uninstaller\UninstallExplorer32.dll (IObit)
O2 - BHO: (Webfuii) - {6e911b4f-caac-45b4-8e2d-4b79b2b92a07} - C:\Program Files\Webfuii\WebfuiiBHO.dll (Webfuii)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Advanced SystemCare Browser Protection) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [cFosSpeed] E:\cFoSpeed\cfosspeed.exe (cFos Software GmbH)
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [shadowPlay] C:\Windows\System32\nvspcap.dll (NVIDIA Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: 4game.com ([]https in Trusted sites)
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Ranges: Range1 ([https] in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{650DB429-6EEF-4E1F-9BAF-EBF1B4308E25}: DhcpNameServer = 62.179.1.63 62.179.1.62
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{1a0104cb-1d33-11e2-875c-14dae9df7cce}\Shell - "" = AutoRun
O33 - MountPoints2\{1a0104cb-1d33-11e2-875c-14dae9df7cce}\Shell\AutoRun\command - "" = K:\Install.exe
O33 - MountPoints2\{f37054db-6c88-11e3-8458-14dae9df7cce}\Shell - "" = AutoRun
O33 - MountPoints2\{f37054db-6c88-11e3-8458-14dae9df7cce}\Shell\AutoRun\command - "" = L:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A14B04 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014-07-30 18:47:38 | 000,000,000 | ---D | C] -- C:\FRST
[2014-07-29 10:11:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
[2014-07-29 10:11:29 | 000,000,000 | ---D | C] -- C:\Program Files\Xiph.Org
[2014-07-28 14:35:46 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\LoL memy
[2014-07-25 19:39:35 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\MotioninJoy
[2014-07-25 19:39:33 | 000,255,496 | ---- | C] (Logitech Inc.) -- C:\Windows\System32\MijFrc.dll
[2014-07-25 19:39:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
[2014-07-23 11:12:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2014-07-16 20:43:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Riot Games
[2014-07-16 20:20:47 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\Red 5 Studios
[2014-07-16 20:20:39 | 000,000,000 | ---D | C] -- C:\Users\Roman\Documents\Firefall
[2014-07-16 11:32:44 | 000,024,384 | ---- | C] (IObit) -- C:\Windows\System32\RegistryDefragBootTime.exe
[2014-07-12 09:37:48 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\ProductData
[2014-07-11 10:41:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2014-07-11 10:41:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7
[2014-07-10 20:14:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\cFosSpeed Traffic Shaping
[2014-07-10 20:14:29 | 001,349,568 | ---- | C] (cFos Software GmbH) -- C:\Windows\System32\drivers\cfosspeed6.sys
[2014-07-10 20:11:42 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\cFos
[2014-07-10 20:11:42 | 000,000,000 | ---D | C] -- C:\ProgramData\cFos
[2014-07-10 11:50:07 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014-07-09 15:59:44 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014-07-09 15:59:44 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014-07-09 15:59:44 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014-07-09 15:59:42 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014-07-09 15:59:41 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014-07-09 15:59:39 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014-07-09 15:59:39 | 000,240,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014-07-09 15:59:39 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014-07-09 15:59:39 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014-07-09 15:59:38 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014-07-09 15:59:38 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014-07-09 15:59:38 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014-07-09 15:59:36 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014-07-09 15:59:36 | 000,595,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014-07-09 15:59:36 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014-07-09 15:59:35 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014-07-09 15:59:34 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014-07-09 15:59:31 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014-07-09 15:59:31 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014-07-09 15:59:27 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014-07-09 15:59:27 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014-07-09 15:59:24 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014-07-09 15:59:20 | 004,254,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014-07-09 15:59:10 | 002,350,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014-07-09 15:59:09 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\osk.exe
[2014-07-09 15:59:05 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014-07-09 12:17:20 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\OpenFM
[2014-07-09 12:16:56 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\OpenFM
[2014-07-06 12:09:27 | 000,000,000 | ---D | C] -- C:\Users\Roman\Documents\Action!
[2014-07-06 11:36:27 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\.minecraft
[2014-07-05 17:59:31 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
[2014-07-05 17:47:45 | 000,000,000 | ---D | C] -- C:\Users\Roman\Documents\GTA San Andreas User Files
[2014-07-05 17:47:43 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2014-07-05 17:45:42 | 000,000,000 | ---D | C] -- C:\ProgramData\saovei on
[2014-07-05 17:45:42 | 000,000,000 | ---D | C] -- C:\Program Files\saovei on
[2014-07-05 17:27:47 | 000,000,000 | ---D | C] -- C:\ProgramData\save  on
[2014-07-05 17:27:47 | 000,000,000 | ---D | C] -- C:\Program Files\save  on
[2014-07-05 17:27:25 | 000,000,000 | ---D | C] -- C:\ProgramData\69195e2af28d40a1
[2014-07-05 17:27:11 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\Torch
[2014-07-05 17:27:11 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\Chromatic Browser
[2014-07-05 17:27:10 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\Comodo
[2014-07-05 16:43:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2014-07-05 11:01:11 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\logs
[2014-07-05 10:00:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
[2014-07-05 10:00:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Ashampoo
[2014-07-05 10:00:46 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\Windows\System32\DfSdkBt.exe
[2014-07-04 20:14:00 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\My Shared Folder
[2014-07-04 10:35:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
[2014-07-04 09:57:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Craften Terminal
[2014-07-03 19:30:40 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Sony Creative Software Inc
[2014-07-03 18:44:44 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\Gaming Channel Trailer
[2014-07-03 18:44:04 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Publish Providers
[2014-07-03 18:13:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2014-07-03 18:12:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony
[2014-07-03 13:33:57 | 000,099,400 | ---- | C] (MotioninJoy) -- C:\Windows\System32\drivers\MijXfilt.sys
[2014-07-03 11:41:55 | 000,000,000 | ---D | C] -- C:\Users\Roman\Desktop\Wszystko
[2014-07-03 10:56:50 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
[2014-07-03 10:15:59 | 000,000,000 | ---D | C] -- C:\Users\Roman\Documents\ValiantHearts
[2014-07-03 10:14:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Steam
[2014-07-03 09:51:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2014-07-03 09:50:38 | 000,243,128 | ---- | C] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2014-07-02 13:53:07 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
[2014-07-02 13:53:03 | 000,000,000 | ---D | C] -- C:\Program Files\OBS
[2014-07-01 17:54:11 | 000,000,000 | ---D | C] -- C:\Users\Roman\AppData\Local\wf-launcher
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014-07-30 18:20:48 | 000,021,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014-07-30 18:20:48 | 000,021,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014-07-30 18:15:35 | 000,014,044 | ---- | M] () -- C:\Users\Roman\Desktop\avast.png
[2014-07-30 18:11:33 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2014-07-30 18:10:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-07-30 18:10:17 | 2415,222,784 | -HS- | M] () -- C:\hiberfil.sys
[2014-07-30 14:47:09 | 000,784,764 | ---- | M] () -- C:\Users\Roman\Desktop\way.jpg
[2014-07-29 19:48:23 | 000,048,193 | ---- | M] () -- C:\Users\Roman\Desktop\luj.jpg
[2014-07-28 19:43:58 | 000,019,114 | ---- | M] () -- C:\Users\Roman\Desktop\charbowo.png
[2014-07-28 17:45:08 | 000,042,708 | ---- | M] () -- C:\Users\Roman\Desktop\serce.jpg
[2014-07-27 15:20:15 | 000,130,542 | ---- | M] () -- C:\Users\Roman\Desktop\Bez tytułu.jpg
[2014-07-23 14:01:29 | 000,022,242 | ---- | M] () -- C:\Users\Roman\Desktop\Katarina.jpg
[2014-07-19 16:48:53 | 000,139,264 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2014-07-19 16:48:42 | 000,295,720 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2014-07-19 11:41:46 | 000,295,720 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2014-07-17 10:38:45 | 000,000,000 | ---- | M] () -- C:\asc_rdflag
[2014-07-16 19:27:17 | 000,000,202 | ---- | M] () -- C:\Users\Roman\Desktop\Firefall.url
[2014-07-13 22:33:32 | 000,000,202 | ---- | M] () -- C:\Users\Roman\Desktop\Call of Duty Black Ops II - Zombies.url
[2014-07-12 13:05:08 | 001,323,167 | ---- | M] () -- C:\Users\Roman\Desktop\76070a8ce02b19ebbabf9448325016ac_original.png
[2014-07-10 11:53:51 | 000,740,324 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2014-07-10 11:53:51 | 000,654,156 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014-07-10 11:53:51 | 000,155,898 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2014-07-10 11:53:51 | 000,122,028 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014-07-10 11:33:02 | 000,217,205 | ---- | M] () -- C:\Users\Roman\Desktop\mem.jpg
[2014-07-10 11:22:38 | 000,000,202 | ---- | M] () -- C:\Users\Roman\Desktop\Really Big Sky.url
[2014-07-09 19:48:09 | 002,356,720 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014-07-08 18:35:07 | 000,000,202 | ---- | M] () -- C:\Users\Roman\Desktop\Unturned.url
[2014-07-07 16:13:50 | 000,000,199 | ---- | M] () -- C:\Users\Roman\Desktop\Counter-Strike Global Offensive.url
[2014-07-07 14:37:06 | 000,000,202 | ---- | M] () -- C:\Users\Roman\Desktop\Yet Another Zombie Defense.url
[2014-07-07 11:00:31 | 000,000,594 | ---- | M] () -- C:\Users\Public\Desktop\Action!.lnk
[2014-07-05 17:45:42 | 000,000,402 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2014-07-05 14:38:18 | 000,032,635 | ---- | M] () -- C:\Users\Roman\Desktop\Valiant odcinek 2 DO RENDERU.camproj
[2014-07-04 21:30:13 | 000,014,883 | ---- | M] () -- C:\Users\Roman\AppData\Local\recently-used.xbel
[2014-07-04 21:23:50 | 006,934,975 | ---- | M] () -- C:\Users\Roman\Desktop\One-Channel Template by Advance Pred.psd
[2014-07-04 21:00:26 | 006,324,861 | ---- | M] () -- C:\Users\Roman\Desktop\Baner Template Battlefield.psd
[2014-07-04 20:04:34 | 000,451,243 | ---- | M] () -- C:\Users\Roman\Desktop\mc mini0000.jpg
[2014-07-04 16:29:14 | 135,559,212 | ---- | M] () -- C:\Users\Roman\Desktop\Valiant głos !.wav
[2014-07-04 14:01:32 | 001,609,784 | ---- | M] () -- C:\Users\Roman\Documents\Minecraft.mp4
[2014-07-04 09:57:21 | 000,000,640 | ---- | M] () -- C:\Users\Public\Desktop\Join our server!.lnk
[2014-07-04 09:57:21 | 000,000,608 | ---- | M] () -- C:\Users\Public\Desktop\Craften Terminal.lnk
[2014-07-03 20:56:40 | 000,496,229 | ---- | M] () -- C:\Users\Roman\Desktop\Youtube BG Template.psd
[2014-07-03 18:43:03 | 000,002,576 | ---- | M] () -- C:\Users\Roman\Documents\Register Vegas Pro.htm
[2014-07-03 18:13:11 | 000,000,556 | ---- | M] () -- C:\Users\Public\Desktop\Vegas Pro 11.0.lnk
[2014-07-03 18:12:11 | 000,035,488 | ---- | M] () -- C:\Users\Roman\Desktop\xD.jpg
[2014-07-03 16:33:04 | 013,176,807 | ---- | M] () -- C:\Users\Roman\Desktop\Gaming Channel Trailer.zip
[2014-07-03 16:18:31 | 000,046,080 | ---- | M] () -- C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014-07-03 14:43:16 | 000,430,744 | ---- | M] () -- C:\Users\Roman\Desktop\miniaturka Valiant Hearts The Great War.jpg
[2014-07-03 13:35:19 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_xusb21_01009.Wdf
[2014-07-03 13:35:18 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_MijXfilt_01009.Wdf
[2014-07-03 12:01:59 | 000,000,040 | -H-- | M] () -- C:\60531848340E
[2014-07-03 09:57:12 | 000,000,573 | ---- | M] () -- C:\Users\Public\Desktop\Valiant Hearts The Great War.lnk
[2014-07-03 09:51:40 | 000,000,645 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014-07-03 09:50:38 | 000,243,128 | ---- | M] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2014-07-02 13:53:07 | 000,000,893 | ---- | M] () -- C:\Users\Roman\Desktop\Open Broadcaster Software.lnk
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014-07-30 18:15:35 | 000,014,044 | ---- | C] () -- C:\Users\Roman\Desktop\avast.png
[2014-07-30 14:47:08 | 000,784,764 | ---- | C] () -- C:\Users\Roman\Desktop\way.jpg
[2014-07-29 19:48:22 | 000,048,193 | ---- | C] () -- C:\Users\Roman\Desktop\luj.jpg
[2014-07-28 19:43:58 | 000,019,114 | ---- | C] () -- C:\Users\Roman\Desktop\charbowo.png
[2014-07-28 17:45:06 | 000,042,708 | ---- | C] () -- C:\Users\Roman\Desktop\serce.jpg
[2014-07-27 15:20:00 | 000,130,542 | ---- | C] () -- C:\Users\Roman\Desktop\Bez tytułu.jpg
[2014-07-23 14:01:27 | 000,022,242 | ---- | C] () -- C:\Users\Roman\Desktop\Katarina.jpg
[2014-07-17 10:38:45 | 000,000,000 | ---- | C] () -- C:\asc_rdflag
[2014-07-16 19:27:17 | 000,000,202 | ---- | C] () -- C:\Users\Roman\Desktop\Firefall.url
[2014-07-13 22:33:31 | 000,000,202 | ---- | C] () -- C:\Users\Roman\Desktop\Call of Duty Black Ops II - Zombies.url
[2014-07-12 13:02:37 | 001,323,167 | ---- | C] () -- C:\Users\Roman\Desktop\76070a8ce02b19ebbabf9448325016ac_original.png
[2014-07-10 11:33:01 | 000,217,205 | ---- | C] () -- C:\Users\Roman\Desktop\mem.jpg
[2014-07-10 11:22:38 | 000,000,202 | ---- | C] () -- C:\Users\Roman\Desktop\Really Big Sky.url
[2014-07-09 12:17:15 | 000,001,107 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
[2014-07-09 12:17:00 | 000,001,146 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenFM.lnk
[2014-07-08 18:35:07 | 000,000,202 | ---- | C] () -- C:\Users\Roman\Desktop\Unturned.url
[2014-07-07 16:13:50 | 000,000,199 | ---- | C] () -- C:\Users\Roman\Desktop\Counter-Strike Global Offensive.url
[2014-07-07 14:37:06 | 000,000,202 | ---- | C] () -- C:\Users\Roman\Desktop\Yet Another Zombie Defense.url
[2014-07-07 11:00:31 | 000,000,594 | ---- | C] () -- C:\Users\Public\Desktop\Action!.lnk
[2014-07-06 11:31:04 | 001,094,097 | ---- | C] () -- C:\Users\Roman\Desktop\KN Launcher v1.404.exe
[2014-07-05 17:27:29 | 000,000,402 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014-07-04 21:30:13 | 000,014,883 | ---- | C] () -- C:\Users\Roman\AppData\Local\recently-used.xbel
[2014-07-04 21:16:34 | 006,934,975 | ---- | C] () -- C:\Users\Roman\Desktop\One-Channel Template by Advance Pred.psd
[2014-07-04 20:54:09 | 006,324,861 | ---- | C] () -- C:\Users\Roman\Desktop\Baner Template Battlefield.psd
[2014-07-04 20:04:34 | 000,451,243 | ---- | C] () -- C:\Users\Roman\Desktop\mc mini0000.jpg
[2014-07-04 16:32:09 | 000,032,635 | ---- | C] () -- C:\Users\Roman\Desktop\Valiant odcinek 2 DO RENDERU.camproj
[2014-07-04 16:29:00 | 135,559,212 | ---- | C] () -- C:\Users\Roman\Desktop\Valiant głos !.wav
[2014-07-04 14:00:31 | 001,609,784 | ---- | C] () -- C:\Users\Roman\Documents\Minecraft.mp4
[2014-07-04 09:57:21 | 000,000,640 | ---- | C] () -- C:\Users\Public\Desktop\Join our server!.lnk
[2014-07-04 09:57:21 | 000,000,608 | ---- | C] () -- C:\Users\Public\Desktop\Craften Terminal.lnk
[2014-07-03 20:57:56 | 000,496,229 | ---- | C] () -- C:\Users\Roman\Desktop\Youtube BG Template.psd
[2014-07-03 18:13:11 | 000,000,556 | ---- | C] () -- C:\Users\Public\Desktop\Vegas Pro 11.0.lnk
[2014-07-03 18:12:09 | 000,035,488 | ---- | C] () -- C:\Users\Roman\Desktop\xD.jpg
[2014-07-03 16:32:23 | 013,176,807 | ---- | C] () -- C:\Users\Roman\Desktop\Gaming Channel Trailer.zip
[2014-07-03 14:39:34 | 000,430,744 | ---- | C] () -- C:\Users\Roman\Desktop\miniaturka Valiant Hearts The Great War.jpg
[2014-07-03 13:35:19 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_xusb21_01009.Wdf
[2014-07-03 13:35:18 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_MijXfilt_01009.Wdf
[2014-07-03 12:01:59 | 000,000,040 | -H-- | C] () -- C:\60531848340E
[2014-07-03 11:01:01 | 000,001,047 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
[2014-07-03 09:57:12 | 000,000,573 | ---- | C] () -- C:\Users\Public\Desktop\Valiant Hearts The Great War.lnk
[2014-07-03 09:51:40 | 000,000,645 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014-07-02 13:53:07 | 000,000,893 | ---- | C] () -- C:\Users\Roman\Desktop\Open Broadcaster Software.lnk
[2014-06-23 16:48:28 | 000,000,039 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\TheHunterSettings_steam_live.cfg
[2014-05-22 16:22:44 | 003,130,440 | ---- | C] () -- C:\Windows\System32\pbsvc_blr.exe
[2014-05-17 20:49:05 | 000,012,005 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\alsoft.ini
[2014-01-22 16:42:00 | 000,295,720 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2014-01-22 16:15:34 | 000,007,602 | ---- | C] () -- C:\Users\Roman\AppData\Local\Resmon.ResmonCfg
[2014-01-02 19:18:51 | 000,641,024 | ---- | C] () -- C:\Windows\System32\ficvdec_x86.dll
[2013-12-24 17:59:08 | 000,578,611 | ---- | C] () -- C:\Windows\adb.exe
[2013-10-17 15:14:44 | 000,000,660 | ---- | C] () -- C:\Users\Roman\Biblioteki — skrót.lnk
[2013-10-04 18:46:14 | 000,138,056 | ---- | C] () -- C:\Users\Roman\AppData\Roaming\PnkBstrK.sys
[2013-09-14 11:34:43 | 002,601,752 | ---- | C] () -- C:\Windows\System32\pbsvc_moh.exe
[2013-08-05 08:15:08 | 000,066,104 | ---- | C] () -- C:\Windows\System32\bdmpegv.dll
[2013-08-05 08:15:06 | 000,023,080 | ---- | C] () -- C:\Windows\System32\bdmjpeg.dll
[2013-06-26 17:40:11 | 000,003,727 | ---- | C] () -- C:\Program Files\Mozilla Firefoxavg-secure-search.xml
[2013-06-06 19:42:52 | 000,173,004 | ---- | C] () -- C:\Windows\hpoins28.dat
[2013-06-06 19:42:52 | 000,000,442 | ---- | C] () -- C:\Windows\hpomdl28.dat
[2013-03-23 16:12:24 | 000,000,271 | ---- | C] () -- C:\Windows\game.ini
[2012-12-06 11:57:12 | 000,068,888 | ---- | C] () -- C:\Windows\System32\CLEyeDevices.dll
[2012-11-20 19:59:12 | 000,682,280 | ---- | C] () -- C:\Windows\System32\pbsvc.exe
[2012-11-13 20:08:30 | 000,046,080 | ---- | C] () -- C:\Users\Roman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-11-06 18:19:06 | 002,434,856 | ---- | C] () -- C:\Windows\System32\pbsvc_bc2.exe
[2012-11-01 13:08:18 | 000,139,264 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012-11-01 13:07:43 | 000,076,152 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012-10-24 00:21:26 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012-10-24 00:21:23 | 000,028,228 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
 
========== ZeroAccess Check ==========
 
[2009-07-14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014-03-25 04:09:54 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2014-07-30 12:20:32 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\.minecraft
[2013-04-16 16:34:32 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\.minecraftsl
[2013-10-18 18:39:46 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\.minecraft_pixelmon.pl
[2012-12-09 12:45:49 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\.mineshaftersquared
[2014-02-08 20:57:07 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\.technic
[2013-03-10 19:58:10 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\.techniclauncher
[2013-03-21 20:53:47 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\.terasology
[2013-08-19 10:23:17 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\assets
[2014-07-07 11:21:27 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Audacity
[2014-02-08 20:25:18 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Awesomium
[2013-03-10 13:32:09 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\BANDISOFT
[2013-11-17 14:13:04 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\BitTorrent Sync
[2012-12-17 17:24:38 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2013-01-17 15:45:59 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Cool Record Edit Pro
[2014-07-04 10:03:01 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Craften Terminal
[2014-07-11 10:48:19 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\DAEMON Tools Lite
[2014-05-17 20:56:23 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\FEZ
[2013-09-17 17:13:58 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\FileZilla
[2013-01-17 15:55:11 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Free Sound Recorder
[2014-07-24 20:10:07 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\GG
[2013-07-04 12:06:22 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\gtk-2.0
[2014-01-22 15:17:01 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\IObit
[2013-04-15 14:36:36 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\IVONA ControlCenter
[2013-08-19 10:23:54 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\libraries
[2012-11-24 18:33:18 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\LolClient
[2013-06-24 14:38:48 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\LucasArts
[2013-08-12 17:24:15 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Minecraft Version Changer
[2014-01-02 19:19:14 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Mirillis
[2014-07-25 19:39:35 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\MotioninJoy
[2014-05-05 17:32:45 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Mp3tag
[2012-11-21 08:13:44 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\NapiProjekt
[2014-02-19 17:45:59 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\newnext.me
[2014-07-02 13:53:09 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\OBS
[2014-01-18 12:08:36 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\OnLive App
[2014-07-09 12:17:20 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\OpenFM
[2014-01-26 10:26:53 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Opera Software
[2013-12-22 13:41:27 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Origin
[2014-07-12 09:37:48 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\ProductData
[2014-07-03 18:44:04 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Publish Providers
[2013-08-19 10:24:21 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\resourcepacks
[2014-06-24 19:12:34 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Riot Games
[2013-06-28 19:10:16 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\skyz
[2014-07-04 14:00:31 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Sony
[2014-07-03 19:30:40 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Sony Creative Software Inc
[2013-09-01 15:39:54 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\SplitMediaLabs
[2013-08-19 10:24:27 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\stats
[2014-02-19 18:27:16 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\TechSmith
[2014-06-23 16:48:30 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\theHunter
[2014-06-23 16:46:15 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\theHunterSteam
[2013-02-21 19:26:24 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Theta
[2014-07-05 19:10:25 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\TS3Client
[2014-02-03 12:11:54 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\TuneUp Software
[2014-06-20 18:28:19 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\TunkDesign
[2013-02-16 23:05:55 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Ubisoft
[2012-11-21 11:09:35 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Unity
[2014-07-07 19:02:54 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\uTorrent
[2013-08-19 10:23:52 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\versions
[2014-01-15 20:46:48 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\Wargaming.net
[2014-03-25 19:55:00 | 000,000,000 | ---D | M] -- C:\Users\Roman\AppData\Roaming\ZJMedia
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 943 bytes -> C:\ProgramData\TEMP:24721E3C
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:05EE1EEF
 
< End of report >
 

NonekPL.png

Janusz. Legenda

Janusz.

Opublikowano
Legenda

Janusz.

Opublikowano

Informacja od Avasta nie powinna już wyskakiwać, jeśli nadal się to będzie powtarzać to nic z tym nie poradzę, wrażliwość antywirusa.

LubiePlacki82 Znawca

LubiePlacki82

Opublikowano
Znawca

LubiePlacki82

  • Autor
Opublikowano

Informacja od Avasta nie powinna już wyskakiwać, jeśli nadal się to będzie powtarzać to nic z tym nie poradzę, wrażliwość antywirusa.

teraz pokazuje tylko przy starcie przeglądarki :/ Może po restarcie avast załapie.Dzieki za pomoc

NonekPL.png

Gorbi Specjalista

Gorbi

Opublikowano
Specjalista

Gorbi

Opublikowano

mnie nie było przez 3 tygodnie mam najnowszego avasta do mojego kompa nikt się nie dotyka wróciłem dzisiaj avast się zaktualizował i zaczą coś odwalać cały czas wyskakuje  Obiekt:C:\Windows\System32\svchost.exe .

Janusz. Legenda

Janusz.

Opublikowano
Legenda

Janusz.

Opublikowano

mnie nie było przez 3 tygodnie mam najnowszego avasta do mojego kompa nikt się nie dotyka wróciłem dzisiaj avast się zaktualizował i zaczą coś odwalać cały czas wyskakuje  Obiekt:C:\Windows\System32\svchost.exe .

Załóż nowy temat, nie podpinaj się pod czyiś.

Zarchiwizowany

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

Tematy
×
×
  • Dodaj nową pozycję...