Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013 Ran by oo (administrator) on OO-KOMPUTER on 19-10-2013 19:06:17 Running from C:\Users\oo\Downloads Windows 7 Home Premium (X64) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\system32\atiesrxx.exe (Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE (Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\360rps.exe (Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\deepscan\zhudongfangyu.exe (AMD) C:\Windows\system32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\360sd.exe (Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\360rp.exe (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe (Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\safemon\360tray.exe () C:\Program Files (x86)\Plus Internet\Plus Internet.exe (AIMP DevTeam) C:\Program Files (x86)\AIMP3\AIMP3.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Mozilla Corporation) C:\Program Files\Waterfox\waterfox.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe (Mozilla Corporation) C:\Program Files\Waterfox\plugin-container.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor) HKCU\...\Run: [360sd] - C:\Program Files\360\360 Internet Security\360sdrun.exe [541112 2013-08-20] (Qihu 360 Software Co., Ltd.) HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION MountPoints2: I - I:\AutoRun.exe MountPoints2: {1a51722d-1704-11e3-b44c-94de800874ca} - I:\AutoRun.exe MountPoints2: {1a51723d-1704-11e3-b44c-94de800874ca} - J:\AutoRun.exe MountPoints2: {bb6923e9-f5f3-11e2-8a30-08002700cc15} - H:\setup.exe AUTORUN=1 MountPoints2: {ddf77ba1-f3d4-11e2-9fbd-94de800874ca} - G:\_AUTORUN\AUTORUN.EXE HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.) Startup: C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk ShortcutTarget: Wysyłanie do programu OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx () BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\..\Interfaces\{5B445E67-196E-44FC-AADA-55A9FB2DB66E}: [NameServer]212.2.96.51 212.2.96.52 FireFox: ======== FF ProfilePath: C:\Users\oo\AppData\Roaming\Mozilla\Firefox\Profiles\kfgnv8vy.default FF DefaultSearchEngine: Google FF SelectedSearchEngine: Google FF Homepage: about:home FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll () FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\oo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\oo\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.) FF Extension: Shumway - C:\Users\oo\AppData\Roaming\Mozilla\Firefox\Profiles\kfgnv8vy.default\Extensions\shumway@research.mozilla.org FF Extension: Flash and Video Download - C:\Users\oo\AppData\Roaming\Mozilla\Firefox\Profiles\kfgnv8vy.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} FF Extension: 2.0 - C:\Users\oo\AppData\Roaming\Mozilla\Firefox\Profiles\kfgnv8vy.default\Extensions\2.0@disconnect.me.xpi FF Extension: No Name - C:\Users\oo\AppData\Roaming\Mozilla\Firefox\Profiles\kfgnv8vy.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi FF Extension: No Name - C:\Users\oo\AppData\Roaming\Mozilla\Firefox\Profiles\kfgnv8vy.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF Extension: No Name - C:\Users\oo\AppData\Roaming\Mozilla\Firefox\Profiles\kfgnv8vy.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi Chrome: ======= CHR HomePage: hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=E4DE00A0C6000000&affID=125032&tsp=5035 CHR RestoreOnStartup: "hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=E4DE00A0C6000000&affID=125032&tsp=5035", "hxxp://www.google.com" CHR Extension: (Angry Birds) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0 CHR Extension: (YouTube) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Adblock Plus) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0 CHR Extension: (Google Search) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (8BitBoy) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakbnhlnmaaiehobobngpgagjkedakep\1.2.5_0 CHR Extension: (Tank Riders) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdmmodjlfegeieihcdcgcalkgmhgmiae\1.0.3_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Gmail) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 CHR Extension: (360 WebShield Plug-in) - C:\Users\oo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pppagaglfkmlpgobnlenhknilehpmcbo\1.0_0 CHR HKLM-x32\...\Chrome\Extension: [pppagaglfkmlpgobnlenhknilehpmcbo] - C:\Program Files\360\360 Internet Security\safemon\360webshield.crx ==================== Services (Whitelisted) ================= R2 360rp; C:\Program Files\360\360 Internet Security\360rps.exe [750264 2013-08-20] (Qihu 360 Software Co., Ltd.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () S2 KMService; C:\Windows\SysWow64\srvany.exe [8192 2013-07-28] () R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () S3 scan; C:\Program Files\360\360 Internet Security\scan.dll [423144 2013-02-20] (S.C. BitDefender S.R.L) R2 ZhuDongFangYu; C:\Program Files\360\360 Internet Security\deepscan\zhudongfangyu.exe [288192 2013-03-27] (Qihu 360 Software Co., Ltd.) ==================== Drivers (Whitelisted) ==================== R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [64712 2013-04-10] (Qihu 360 Software Co., Ltd.) R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [67272 2013-03-28] (Qihu 360 Software Co., Ltd.) R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [304832 2013-06-13] (Qihu 360 Software Co., Ltd.) S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [40640 2013-03-27] (Qihu 360 Software Co., Ltd.) R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [213184 2013-03-27] (Qihu 360 Software Co., Ltd.) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22128 2012-03-08] () R1 BAPIDRV; C:\Windows\System32\Drivers\BAPIDRV64.SYS [190808 2013-05-08] (Qihu 360 Software Co., Ltd.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-07-23] (DT Soft Ltd) S3 s217bus; C:\Windows\System32\DRIVERS\s217bus.sys [108072 2007-11-02] (MCCI Corporation) S3 s217mdfl; C:\Windows\System32\DRIVERS\s217mdfl.sys [19496 2007-11-02] (MCCI Corporation) S3 s217mdm; C:\Windows\System32\DRIVERS\s217mdm.sys [145448 2007-11-02] (MCCI Corporation) S3 s217mgmt; C:\Windows\System32\DRIVERS\s217mgmt.sys [130088 2007-11-02] (MCCI Corporation) S3 s217nd5; C:\Windows\System32\DRIVERS\s217nd5.sys [33832 2007-11-02] (MCCI Corporation) S3 s217obex; C:\Windows\System32\DRIVERS\s217obex.sys [124968 2007-11-02] (MCCI Corporation) S3 s217unic; C:\Windows\System32\DRIVERS\s217unic.sys [138792 2007-11-02] (MCCI) S3 s3017bus; C:\Windows\System32\DRIVERS\s3017bus.sys [109096 2007-12-10] (MCCI Corporation) S3 s3017mdfl; C:\Windows\System32\DRIVERS\s3017mdfl.sys [19496 2007-12-10] (MCCI Corporation) S3 s3017mdm; C:\Windows\System32\DRIVERS\s3017mdm.sys [146984 2007-12-10] (MCCI Corporation) S3 s3017mgmt; C:\Windows\System32\DRIVERS\s3017mgmt.sys [130600 2007-12-10] (MCCI Corporation) S3 s3017nd5; C:\Windows\System32\DRIVERS\s3017nd5.sys [34344 2007-12-10] (MCCI Corporation) S3 s3017obex; C:\Windows\System32\DRIVERS\s3017obex.sys [125480 2007-12-10] (MCCI Corporation) S3 s3017unic; C:\Windows\System32\DRIVERS\s3017unic.sys [144936 2007-12-10] (MCCI Corporation) S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-07-04] (Oracle Corporation) S3 gdrv; \??\C:\Windows\gdrv.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-19 18:59 - 2013-10-19 18:59 - 00000536 _____ C:\Users\oo\Downloads\defogger_disable.log 2013-10-19 18:59 - 2013-10-19 18:59 - 00000168 _____ C:\Users\oo\defogger_reenable 2013-10-19 18:58 - 2013-10-19 18:58 - 00368554 _____ C:\Users\oo\Downloads\gmer.zip 2013-10-19 18:57 - 2013-10-19 18:57 - 00602112 _____ (OldTimer Tools) C:\Users\oo\Downloads\OTL(1).exe 2013-10-19 18:55 - 2013-10-19 18:55 - 00050477 _____ C:\Users\oo\Downloads\Defogger.exe 2013-10-19 18:44 - 2013-10-19 18:50 - 00000000 ____D C:\AdwCleaner 2013-10-19 18:44 - 2013-10-19 18:44 - 01050644 _____ C:\Users\oo\Downloads\adwcleaner.exe 2013-10-19 18:44 - 2013-10-19 18:44 - 00000000 ____D C:\FRST 2013-10-19 18:43 - 2013-10-19 18:43 - 01954548 _____ (Farbar) C:\Users\oo\Downloads\FRST64.exe 2013-10-19 13:32 - 2013-10-19 13:32 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome 2013-10-18 20:23 - 2013-10-18 20:23 - 02806733 _____ C:\Users\oo\Desktop\Origins.wma 2013-10-18 17:48 - 2013-10-18 17:48 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lennar Digital Sylenth VSTi v1.2.1 2013-10-18 17:48 - 2006-09-14 01:21 - 00002240 _____ C:\Windows\LENDIG.sys 2013-10-18 17:35 - 2013-10-18 17:35 - 00000000 ____D C:\Users\oo\Downloads\Major Lazer - Watch Out For This (Dimitri Vegas & Like Mike Tomorrowland Remix)(Fl Studio Remake) 2013-10-18 17:04 - 2013-10-18 17:04 - 00001864 _____ C:\Users\oo\Desktop\Counter-Strike 1.6.lnk 2013-10-18 17:03 - 2013-10-18 17:03 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 NonSteam 2013-10-18 17:03 - 2013-10-18 17:03 - 00000000 ____D C:\Counter-Strike 1.6 2013-10-18 16:58 - 2013-10-18 14:24 - 332928085 _____ (n/a) C:\Users\oo\Desktop\CS16v48_Non_Steam_wersjaNDM.exe 2013-10-17 19:25 - 2013-10-17 19:25 - 00685248 _____ C:\Users\oo\Downloads\DAEMON-Tools-Pro-Advanced(25578).exe 2013-10-17 19:12 - 2013-10-17 19:13 - 00020697 _____ C:\Users\oo\Downloads\Dj S3RL Feat Tamika - I Will Pick You Up (Split Splat Remix) clubowe.pl.mp3.part 2013-10-15 22:39 - 2013-10-15 22:39 - 00685248 _____ C:\Users\oo\Downloads\RogueKiller(39028).exe 2013-10-15 22:17 - 2013-10-15 23:10 - 00002043 _____ C:\Users\oo\Desktop\aaa.html 2013-10-15 21:56 - 2013-10-15 23:43 - 00001924 _____ C:\Users\oo\Desktop\formularz.html 2013-10-15 17:52 - 2013-10-18 17:54 - 00000000 ____D C:\Users\oo\AppData\Local\Game Dev Tycoon 2013-10-15 17:52 - 2013-10-15 17:52 - 00000916 _____ C:\Users\Public\Desktop\Game Dev Tycoon v1.3.2.lnk 2013-10-15 17:51 - 2013-10-15 17:52 - 00000000 ____D C:\Program Files (x86)\Game Dev Tycoon v1.3.2 2013-10-15 16:55 - 2013-10-15 16:55 - 00000000 ____D C:\Quake III Arena 2013-10-14 19:25 - 2013-10-14 19:25 - 00685248 _____ C:\Users\oo\Downloads\Auslogics-Registry-Defrag(13123).exe 2013-10-14 19:20 - 2013-10-14 19:20 - 08582396 _____ C:\Users\oo\Downloads\Major Lazer - Watch Out For This (Dimitri Vegas & Like Mike Tomorrowland Remix)(Fl Studio Remake).zip 2013-10-14 18:20 - 2013-10-14 18:20 - 00006003 _____ C:\Users\oo\.recently-used.xbel 2013-10-14 16:20 - 2013-10-14 16:20 - 00020691 _____ C:\Users\oo\Desktop\Bez nazwy.xcf 2013-10-14 13:38 - 2013-10-14 18:20 - 00389358 _____ C:\Users\oo\Desktop\feniks-1.jpeg 2013-10-14 12:45 - 2013-10-14 12:56 - 00000000 ____D C:\Program Files (x86)\Wolfenstein - Enemy Territory 2013-10-14 12:45 - 2013-10-14 12:45 - 00001058 _____ C:\Users\oo\Desktop\Wolfenstein - Enemy Territory.lnk 2013-10-14 12:45 - 2013-10-14 12:45 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wolfenstein - Enemy Territory 2013-10-14 12:35 - 2013-10-14 12:36 - 05806971 _____ C:\Users\oo\Downloads\Wolfenstein-Enemy-Territory-Patch-260.exe 2013-10-14 12:30 - 2013-10-14 12:44 - 270305943 _____ C:\Users\oo\Downloads\Wolfenstein-Enemy-Territory-Full-Game.exe 2013-10-14 10:22 - 2013-10-14 10:22 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-10-14 10:22 - 2013-10-14 10:22 - 00000000 ____D C:\Users\oo\AppData\Roaming\Malwarebytes 2013-10-14 10:22 - 2013-10-14 10:22 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-14 10:22 - 2013-10-14 10:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-10-14 10:22 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-10-14 10:21 - 2013-10-14 10:21 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\oo\Downloads\mbam-setup-1.75.0.1300.exe 2013-10-14 10:19 - 2013-10-14 10:19 - 22853704 _____ (Mozilla) C:\Users\oo\Downloads\Thunderbird%20Setup%2024.0.1.exe 2013-10-14 10:19 - 2013-10-14 10:19 - 00000071 _____ C:\Windows\wininit.ini 2013-10-14 10:19 - 2013-10-14 10:19 - 00000000 ____D C:\Users\oo\AppData\Local\avgchrome 2013-10-13 13:37 - 2013-10-13 13:39 - 06035715 _____ C:\Users\oo\Downloads\Don Diablo & Example - Hooligans (Extended Mix).aac 2013-10-12 20:42 - 2013-10-12 20:42 - 00000000 ____D C:\Users\oo\AppData\Roaming\.mono 2013-10-12 19:29 - 2013-10-19 19:05 - 00061236 _____ C:\Users\oo\Downloads\Extras.Txt 2013-10-12 19:29 - 2013-10-19 19:04 - 00099146 _____ C:\Users\oo\Downloads\OTL.Txt 2013-10-12 19:22 - 2013-10-12 19:22 - 00602112 _____ (OldTimer Tools) C:\Users\oo\Downloads\OTL.exe 2013-10-12 19:20 - 2013-10-12 19:20 - 00683008 _____ C:\Users\oo\Downloads\MicrosoftFixit50542.msi 2013-10-12 15:05 - 2013-10-12 15:05 - 00000000 ____D C:\Users\oo\Downloads\W7G 2013-10-12 15:04 - 2013-10-12 15:05 - 03580719 _____ C:\Users\oo\Downloads\W7G.zip 2013-10-11 18:44 - 2013-10-11 18:44 - 00000000 ____D C:\Users\oo\AppData\Roaming\Unity 2013-10-11 18:36 - 2013-10-11 18:36 - 00784848 _____ (Google Inc.) C:\Users\oo\Downloads\ChromeSetup.exe 2013-10-11 18:35 - 2013-10-11 18:35 - 04369632 _____ (Piriform Ltd) C:\Users\oo\Downloads\ccsetup406.exe 2013-10-11 18:35 - 2013-10-11 18:35 - 00002766 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2013-10-11 18:32 - 2013-10-11 18:32 - 00648160 _____ (Unity Technologies ApS) C:\Users\oo\Downloads\UnityWebPlayer(1).exe 2013-10-11 18:31 - 2013-10-11 18:31 - 00648160 _____ (Unity Technologies ApS) C:\Users\oo\Downloads\UnityWebPlayer.exe 2013-10-11 18:31 - 2013-10-11 18:31 - 00000000 ____D C:\Users\oo\AppData\Local\Unity 2013-10-11 16:48 - 2013-10-11 16:48 - 01528184 _____ (Microsoft Corporation) C:\Users\oo\Downloads\GenuineCheck.exe 2013-10-10 20:34 - 2013-10-10 20:34 - 00000000 ____D C:\ProgramData\McAfee 2013-10-10 19:58 - 2013-10-10 19:58 - 00000000 ____D C:\Program Files\Waterfox 2013-10-10 19:35 - 2013-10-10 19:40 - 25153085 _____ (Mozilla) C:\Users\oo\Downloads\Waterfox 24.0 Setup.exe 2013-10-10 17:30 - 2013-10-10 17:30 - 00000000 ____D C:\Users\oo\Desktop\Don't Starve 2013-10-10 17:19 - 2013-10-10 17:20 - 00017399 _____ C:\Windows\DirectX.log 2013-10-10 17:18 - 2013-10-10 17:18 - 00000000 ____D C:\Users\oo\Documents\Klei 2013-10-10 17:18 - 2013-10-10 17:18 - 00000000 ____D C:\ProgramData\Steam 2013-10-09 17:22 - 2013-10-09 17:22 - 03700243 _____ C:\Users\oo\Documents\Cookis - All That Mattered.wma 2013-10-08 18:34 - 2013-10-08 20:18 - 00000000 ____D C:\Users\oo\AppData\Roaming\.pokecraft 2013-10-08 18:28 - 2013-10-08 18:29 - 00334068 _____ C:\Users\oo\Downloads\PokeCraft-b15.jar 2013-10-08 17:32 - 2013-10-08 17:32 - 00000000 ____D C:\AMD 2013-10-08 17:11 - 2013-10-14 09:34 - 00000000 ____D C:\Users\oo\AppData\Roaming\.minecraft 2013-10-08 16:26 - 2013-10-08 16:26 - 00000740 _____ C:\Users\oo\Desktop\Terraria.lnk 2013-10-08 16:26 - 2013-10-08 16:26 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terraria 2013-10-08 16:25 - 2013-10-08 16:25 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA 2013-10-06 22:38 - 2013-10-06 22:37 - 00000245 _____ C:\Users\oo\Documents\Przykład 4.html 2013-10-06 22:38 - 2013-10-06 22:34 - 00000143 _____ C:\Users\oo\Documents\Przykład 3.html 2013-10-06 22:38 - 2013-10-06 22:28 - 00000167 _____ C:\Users\oo\Documents\Przykład 2.html 2013-10-06 22:38 - 2013-10-06 22:28 - 00000116 _____ C:\Users\oo\Documents\2.html 2013-10-06 22:38 - 2013-10-06 22:28 - 00000110 _____ C:\Users\oo\Documents\1.html 2013-10-06 22:38 - 2013-10-06 22:26 - 00000138 _____ C:\Users\oo\Documents\Przykład 1.html 2013-10-05 18:20 - 2013-10-05 18:20 - 00113062 _____ C:\Users\oo\Downloads\dla pocz_tkuj_cych.flp 2013-10-01 18:37 - 2013-10-02 17:19 - 196639648 _____ (Pxyz Studios) C:\Users\oo\Downloads\Quake-3-Portable.exe 2013-09-29 21:48 - 2013-09-29 21:48 - 00000000 ____D C:\Users\oo\Downloads\emerald 2013-09-29 21:31 - 2013-09-29 21:31 - 00000000 ____D C:\Users\oo\Downloads\Little Fighter 4 Turbo 2013-09-29 18:52 - 2013-09-29 18:52 - 00000000 ___SD C:\Users\oo\GG dysk 2013-09-29 17:49 - 2013-09-29 17:49 - 00001268 _____ C:\Users\oo\Desktop\Revo Uninstaller.lnk 2013-09-29 17:49 - 2013-09-29 17:49 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2013-09-29 17:45 - 2013-09-29 17:46 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\oo\Downloads\revosetup.exe 2013-09-29 16:53 - 2013-10-06 12:35 - 00000000 ____D C:\Users\oo\AppData\Roaming\GG 2013-09-29 16:53 - 2013-09-29 17:06 - 00000000 ____D C:\Users\oo\AppData\Local\GG 2013-09-29 16:53 - 2013-09-29 16:53 - 00001143 _____ C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk 2013-09-29 16:33 - 2013-09-29 16:33 - 00389952 _____ C:\Users\oo\Downloads\gg-install.exe 2013-09-29 12:56 - 2013-09-29 12:57 - 07585351 _____ C:\Users\oo\Downloads\AQQ_PR_24559-x64.exe 2013-09-28 12:19 - 2013-09-28 12:19 - 01116604 _____ C:\Users\oo\Downloads\emerald.zip 2013-09-27 22:05 - 2013-10-02 17:09 - 00000000 __SHD C:\360Rec 2013-09-25 20:28 - 2013-09-25 20:31 - 38726207 _____ C:\Users\oo\Downloads\Little Fighter 4 Turbo.zip 2013-09-25 19:54 - 2013-09-28 09:16 - 00000000 ____D C:\Users\oo\Downloads\Dla Beki Projekt Leci Drogie Dzieci 2013-09-25 17:07 - 2013-09-25 17:07 - 00191772 _____ C:\Users\oo\Downloads\Dla Beki Projekt Leci Drogie Dzieci.zip 2013-09-22 19:35 - 2013-09-22 19:35 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook 2013-09-22 19:28 - 2013-10-19 16:33 - 00000916 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000UA.job 2013-09-22 19:28 - 2013-10-18 19:33 - 00000894 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000Core.job 2013-09-22 19:28 - 2013-09-22 19:35 - 00000000 ____D C:\Users\oo\AppData\Local\Facebook 2013-09-22 19:28 - 2013-09-22 19:28 - 00003886 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000UA 2013-09-22 19:28 - 2013-09-22 19:28 - 00003518 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000Core 2013-09-22 19:27 - 2013-09-22 19:27 - 00501240 _____ (Facebook Inc.) C:\Users\oo\Downloads\FacebookMessengerSetup_v1.2.205.0.exe 2013-09-20 20:01 - 2013-09-20 20:01 - 01301184 _____ (Microsoft Corporation) C:\Users\oo\Downloads\IE11-Windows6.1.exe 2013-09-20 20:01 - 2013-09-20 20:01 - 00001487 _____ C:\Windows\IE11_main.log 2013-09-19 21:45 - 2013-09-19 21:45 - 00402598 _____ C:\Users\oo\Downloads\aquafirzen.zip 2013-09-19 20:52 - 2013-10-14 10:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox ==================== One Month Modified Files and Folders ======= 2013-10-19 19:05 - 2013-10-12 19:29 - 00061236 _____ C:\Users\oo\Downloads\Extras.Txt 2013-10-19 19:04 - 2013-10-12 19:29 - 00099146 _____ C:\Users\oo\Downloads\OTL.Txt 2013-10-19 19:03 - 2013-07-19 13:47 - 00001040 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-19 19:03 - 2013-07-18 22:41 - 00624496 _____ C:\Windows\WindowsUpdate.log 2013-10-19 19:02 - 2013-09-08 15:58 - 00004334 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{3E9A7E6E-DAE5-4486-92DF-1D88BAF045D2} 2013-10-19 19:01 - 2013-07-23 22:22 - 00000000 ____D C:\Users\oo\AppData\Roaming\AIMP3 2013-10-19 18:59 - 2013-10-19 18:59 - 00000536 _____ C:\Users\oo\Downloads\defogger_disable.log 2013-10-19 18:59 - 2013-10-19 18:59 - 00000168 _____ C:\Users\oo\defogger_reenable 2013-10-19 18:59 - 2013-07-18 22:52 - 00000000 ____D C:\Users\oo 2013-10-19 18:58 - 2013-10-19 18:58 - 00368554 _____ C:\Users\oo\Downloads\gmer.zip 2013-10-19 18:57 - 2013-10-19 18:57 - 00602112 _____ (OldTimer Tools) C:\Users\oo\Downloads\OTL(1).exe 2013-10-19 18:57 - 2009-07-14 19:55 - 00737242 _____ C:\Windows\system32\perfh015.dat 2013-10-19 18:57 - 2009-07-14 19:55 - 00153930 _____ C:\Windows\system32\perfc015.dat 2013-10-19 18:57 - 2009-07-14 07:13 - 01661232 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-19 18:55 - 2013-10-19 18:55 - 00050477 _____ C:\Users\oo\Downloads\Defogger.exe 2013-10-19 18:51 - 2013-09-18 15:35 - 00140706 _____ C:\Windows\PFRO.log 2013-10-19 18:51 - 2013-09-18 15:35 - 00002352 _____ C:\Windows\setupact.log 2013-10-19 18:51 - 2013-07-19 13:47 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-19 18:51 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-19 18:50 - 2013-10-19 18:44 - 00000000 ____D C:\AdwCleaner 2013-10-19 18:50 - 2009-07-14 06:45 - 00015664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-19 18:50 - 2009-07-14 06:45 - 00015664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-19 18:45 - 2013-07-24 03:32 - 00000803 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-10-19 18:45 - 2013-07-18 22:53 - 00000925 _____ C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-19 18:45 - 2013-07-18 22:53 - 00000857 _____ C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-10-19 18:44 - 2013-10-19 18:44 - 01050644 _____ C:\Users\oo\Downloads\adwcleaner.exe 2013-10-19 18:44 - 2013-10-19 18:44 - 00000000 ____D C:\FRST 2013-10-19 18:43 - 2013-10-19 18:43 - 01954548 _____ (Farbar) C:\Users\oo\Downloads\FRST64.exe 2013-10-19 16:33 - 2013-09-22 19:28 - 00000916 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000UA.job 2013-10-19 13:32 - 2013-10-19 13:32 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome 2013-10-19 12:47 - 2013-09-04 19:43 - 00000000 ____D C:\Users\oo\Desktop\Śmiecie 2013-10-19 10:01 - 2013-07-23 23:01 - 00000000 ____D C:\Users\oo\Documents\VirtualDJ 2013-10-18 21:29 - 2013-09-14 22:13 - 00000000 ____D C:\Users\oo\AppData\Roaming\360safe 2013-10-18 20:23 - 2013-10-18 20:23 - 02806733 _____ C:\Users\oo\Desktop\Origins.wma 2013-10-18 19:33 - 2013-09-22 19:28 - 00000894 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000Core.job 2013-10-18 17:54 - 2013-10-15 17:52 - 00000000 ____D C:\Users\oo\AppData\Local\Game Dev Tycoon 2013-10-18 17:48 - 2013-10-18 17:48 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lennar Digital Sylenth VSTi v1.2.1 2013-10-18 17:35 - 2013-10-18 17:35 - 00000000 ____D C:\Users\oo\Downloads\Major Lazer - Watch Out For This (Dimitri Vegas & Like Mike Tomorrowland Remix)(Fl Studio Remake) 2013-10-18 17:04 - 2013-10-18 17:04 - 00001864 _____ C:\Users\oo\Desktop\Counter-Strike 1.6.lnk 2013-10-18 17:03 - 2013-10-18 17:03 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 NonSteam 2013-10-18 17:03 - 2013-10-18 17:03 - 00000000 ____D C:\Counter-Strike 1.6 2013-10-18 14:24 - 2013-10-18 16:58 - 332928085 _____ (n/a) C:\Users\oo\Desktop\CS16v48_Non_Steam_wersjaNDM.exe 2013-10-17 19:25 - 2013-10-17 19:25 - 00685248 _____ C:\Users\oo\Downloads\DAEMON-Tools-Pro-Advanced(25578).exe 2013-10-17 19:13 - 2013-10-17 19:12 - 00020697 _____ C:\Users\oo\Downloads\Dj S3RL Feat Tamika - I Will Pick You Up (Split Splat Remix) clubowe.pl.mp3.part 2013-10-15 23:53 - 2013-07-24 01:17 - 00000000 ____D C:\Users\oo\.VirtualBox 2013-10-15 23:43 - 2013-10-15 21:56 - 00001924 _____ C:\Users\oo\Desktop\formularz.html 2013-10-15 23:10 - 2013-10-15 22:17 - 00002043 _____ C:\Users\oo\Desktop\aaa.html 2013-10-15 22:39 - 2013-10-15 22:39 - 00685248 _____ C:\Users\oo\Downloads\RogueKiller(39028).exe 2013-10-15 17:52 - 2013-10-15 17:52 - 00000916 _____ C:\Users\Public\Desktop\Game Dev Tycoon v1.3.2.lnk 2013-10-15 17:52 - 2013-10-15 17:51 - 00000000 ____D C:\Program Files (x86)\Game Dev Tycoon v1.3.2 2013-10-15 17:51 - 2013-09-14 22:13 - 00000000 _RSHD C:\360SANDBOX 2013-10-15 16:55 - 2013-10-15 16:55 - 00000000 ____D C:\Quake III Arena 2013-10-15 16:55 - 2013-07-24 00:42 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2013-10-14 19:25 - 2013-10-14 19:25 - 00685248 _____ C:\Users\oo\Downloads\Auslogics-Registry-Defrag(13123).exe 2013-10-14 19:20 - 2013-10-14 19:20 - 08582396 _____ C:\Users\oo\Downloads\Major Lazer - Watch Out For This (Dimitri Vegas & Like Mike Tomorrowland Remix)(Fl Studio Remake).zip 2013-10-14 18:20 - 2013-10-14 18:20 - 00006003 _____ C:\Users\oo\.recently-used.xbel 2013-10-14 18:20 - 2013-10-14 13:38 - 00389358 _____ C:\Users\oo\Desktop\feniks-1.jpeg 2013-10-14 18:20 - 2013-09-04 17:34 - 00000000 ____D C:\Users\oo\.gimp-2.6 2013-10-14 16:20 - 2013-10-14 16:20 - 00020691 _____ C:\Users\oo\Desktop\Bez nazwy.xcf 2013-10-14 16:20 - 2013-09-04 17:38 - 00000000 ____D C:\Users\oo\AppData\Roaming\gtk-2.0 2013-10-14 14:19 - 2013-07-19 13:56 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-14 12:56 - 2013-10-14 12:45 - 00000000 ____D C:\Program Files (x86)\Wolfenstein - Enemy Territory 2013-10-14 12:45 - 2013-10-14 12:45 - 00001058 _____ C:\Users\oo\Desktop\Wolfenstein - Enemy Territory.lnk 2013-10-14 12:45 - 2013-10-14 12:45 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wolfenstein - Enemy Territory 2013-10-14 12:44 - 2013-10-14 12:30 - 270305943 _____ C:\Users\oo\Downloads\Wolfenstein-Enemy-Territory-Full-Game.exe 2013-10-14 12:36 - 2013-10-14 12:35 - 05806971 _____ C:\Users\oo\Downloads\Wolfenstein-Enemy-Territory-Patch-260.exe 2013-10-14 10:22 - 2013-10-14 10:22 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2013-10-14 10:22 - 2013-10-14 10:22 - 00000000 ____D C:\Users\oo\AppData\Roaming\Malwarebytes 2013-10-14 10:22 - 2013-10-14 10:22 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-14 10:22 - 2013-10-14 10:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-10-14 10:21 - 2013-10-14 10:21 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\oo\Downloads\mbam-setup-1.75.0.1300.exe 2013-10-14 10:19 - 2013-10-14 10:19 - 22853704 _____ (Mozilla) C:\Users\oo\Downloads\Thunderbird%20Setup%2024.0.1.exe 2013-10-14 10:19 - 2013-10-14 10:19 - 00000071 _____ C:\Windows\wininit.ini 2013-10-14 10:19 - 2013-10-14 10:19 - 00000000 ____D C:\Users\oo\AppData\Local\avgchrome 2013-10-14 10:19 - 2013-09-19 20:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-14 09:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2013-10-14 09:34 - 2013-10-08 17:11 - 00000000 ____D C:\Users\oo\AppData\Roaming\.minecraft 2013-10-13 13:39 - 2013-10-13 13:37 - 06035715 _____ C:\Users\oo\Downloads\Don Diablo & Example - Hooligans (Extended Mix).aac 2013-10-13 12:58 - 2013-07-19 13:47 - 00004036 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-13 12:58 - 2013-07-19 13:47 - 00003784 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-12 20:42 - 2013-10-12 20:42 - 00000000 ____D C:\Users\oo\AppData\Roaming\.mono 2013-10-12 19:22 - 2013-10-12 19:22 - 00602112 _____ (OldTimer Tools) C:\Users\oo\Downloads\OTL.exe 2013-10-12 19:20 - 2013-10-12 19:20 - 00683008 _____ C:\Users\oo\Downloads\MicrosoftFixit50542.msi 2013-10-12 19:20 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-10-12 15:05 - 2013-10-12 15:05 - 00000000 ____D C:\Users\oo\Downloads\W7G 2013-10-12 15:05 - 2013-10-12 15:04 - 03580719 _____ C:\Users\oo\Downloads\W7G.zip 2013-10-11 19:00 - 2013-07-25 10:15 - 00000000 ____D C:\Users\oo\AppData\Local\CrashDumps 2013-10-11 18:44 - 2013-10-11 18:44 - 00000000 ____D C:\Users\oo\AppData\Roaming\Unity 2013-10-11 18:36 - 2013-10-11 18:36 - 00784848 _____ (Google Inc.) C:\Users\oo\Downloads\ChromeSetup.exe 2013-10-11 18:35 - 2013-10-11 18:35 - 04369632 _____ (Piriform Ltd) C:\Users\oo\Downloads\ccsetup406.exe 2013-10-11 18:35 - 2013-10-11 18:35 - 00002766 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2013-10-11 18:35 - 2013-08-23 19:42 - 00000000 ____D C:\Program Files\CCleaner 2013-10-11 18:32 - 2013-10-11 18:32 - 00648160 _____ (Unity Technologies ApS) C:\Users\oo\Downloads\UnityWebPlayer(1).exe 2013-10-11 18:31 - 2013-10-11 18:31 - 00648160 _____ (Unity Technologies ApS) C:\Users\oo\Downloads\UnityWebPlayer.exe 2013-10-11 18:31 - 2013-10-11 18:31 - 00000000 ____D C:\Users\oo\AppData\Local\Unity 2013-10-11 16:48 - 2013-10-11 16:48 - 01528184 _____ (Microsoft Corporation) C:\Users\oo\Downloads\GenuineCheck.exe 2013-10-10 20:35 - 2013-08-26 19:31 - 00000000 ____D C:\Users\oo\AppData\Local\Adobe 2013-10-10 20:34 - 2013-10-10 20:34 - 00000000 ____D C:\ProgramData\McAfee 2013-10-10 20:34 - 2013-09-06 20:24 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-10 20:34 - 2013-07-25 11:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-10 19:58 - 2013-10-10 19:58 - 00000000 ____D C:\Program Files\Waterfox 2013-10-10 19:40 - 2013-10-10 19:35 - 25153085 _____ (Mozilla) C:\Users\oo\Downloads\Waterfox 24.0 Setup.exe 2013-10-10 17:30 - 2013-10-10 17:30 - 00000000 ____D C:\Users\oo\Desktop\Don't Starve 2013-10-10 17:20 - 2013-10-10 17:19 - 00017399 _____ C:\Windows\DirectX.log 2013-10-10 17:18 - 2013-10-10 17:18 - 00000000 ____D C:\Users\oo\Documents\Klei 2013-10-10 17:18 - 2013-10-10 17:18 - 00000000 ____D C:\ProgramData\Steam 2013-10-09 17:22 - 2013-10-09 17:22 - 03700243 _____ C:\Users\oo\Documents\Cookis - All That Mattered.wma 2013-10-08 20:18 - 2013-10-08 18:34 - 00000000 ____D C:\Users\oo\AppData\Roaming\.pokecraft 2013-10-08 18:29 - 2013-10-08 18:28 - 00334068 _____ C:\Users\oo\Downloads\PokeCraft-b15.jar 2013-10-08 17:32 - 2013-10-08 17:32 - 00000000 ____D C:\AMD 2013-10-08 16:26 - 2013-10-08 16:26 - 00000740 _____ C:\Users\oo\Desktop\Terraria.lnk 2013-10-08 16:26 - 2013-10-08 16:26 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terraria 2013-10-08 16:26 - 2013-08-26 12:36 - 00000000 ____D C:\Games 2013-10-08 16:26 - 2013-07-23 23:28 - 00000000 ____D C:\Users\oo\Documents\My Games 2013-10-08 16:25 - 2013-10-08 16:25 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA 2013-10-06 22:37 - 2013-10-06 22:38 - 00000245 _____ C:\Users\oo\Documents\Przykład 4.html 2013-10-06 22:34 - 2013-10-06 22:38 - 00000143 _____ C:\Users\oo\Documents\Przykład 3.html 2013-10-06 22:28 - 2013-10-06 22:38 - 00000167 _____ C:\Users\oo\Documents\Przykład 2.html 2013-10-06 22:28 - 2013-10-06 22:38 - 00000116 _____ C:\Users\oo\Documents\2.html 2013-10-06 22:28 - 2013-10-06 22:38 - 00000110 _____ C:\Users\oo\Documents\1.html 2013-10-06 22:26 - 2013-10-06 22:38 - 00000138 _____ C:\Users\oo\Documents\Przykład 1.html 2013-10-06 12:35 - 2013-09-29 16:53 - 00000000 ____D C:\Users\oo\AppData\Roaming\GG 2013-10-05 18:20 - 2013-10-05 18:20 - 00113062 _____ C:\Users\oo\Downloads\dla pocz_tkuj_cych.flp 2013-10-03 22:12 - 2013-09-07 23:07 - 00000968 _____ C:\Users\oo\Desktop\AQQ.lnk 2013-10-02 17:19 - 2013-10-01 18:37 - 196639648 _____ (Pxyz Studios) C:\Users\oo\Downloads\Quake-3-Portable.exe 2013-10-02 17:09 - 2013-09-27 22:05 - 00000000 __SHD C:\360Rec 2013-09-29 21:48 - 2013-09-29 21:48 - 00000000 ____D C:\Users\oo\Downloads\emerald 2013-09-29 21:31 - 2013-09-29 21:31 - 00000000 ____D C:\Users\oo\Downloads\Little Fighter 4 Turbo 2013-09-29 18:52 - 2013-09-29 18:52 - 00000000 ___SD C:\Users\oo\GG dysk 2013-09-29 17:49 - 2013-09-29 17:49 - 00001268 _____ C:\Users\oo\Desktop\Revo Uninstaller.lnk 2013-09-29 17:49 - 2013-09-29 17:49 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2013-09-29 17:46 - 2013-09-29 17:45 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\oo\Downloads\revosetup.exe 2013-09-29 17:06 - 2013-09-29 16:53 - 00000000 ____D C:\Users\oo\AppData\Local\GG 2013-09-29 16:53 - 2013-09-29 16:53 - 00001143 _____ C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk 2013-09-29 16:33 - 2013-09-29 16:33 - 00389952 _____ C:\Users\oo\Downloads\gg-install.exe 2013-09-29 12:58 - 2013-09-07 23:07 - 00000948 _____ C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\AQQ.lnk 2013-09-29 12:57 - 2013-09-29 12:56 - 07585351 _____ C:\Users\oo\Downloads\AQQ_PR_24559-x64.exe 2013-09-28 12:19 - 2013-09-28 12:19 - 01116604 _____ C:\Users\oo\Downloads\emerald.zip 2013-09-28 09:16 - 2013-09-25 19:54 - 00000000 ____D C:\Users\oo\Downloads\Dla Beki Projekt Leci Drogie Dzieci 2013-09-25 20:31 - 2013-09-25 20:28 - 38726207 _____ C:\Users\oo\Downloads\Little Fighter 4 Turbo.zip 2013-09-25 17:07 - 2013-09-25 17:07 - 00191772 _____ C:\Users\oo\Downloads\Dla Beki Projekt Leci Drogie Dzieci.zip 2013-09-24 16:40 - 2009-07-14 07:08 - 00032592 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-09-23 17:33 - 2013-07-18 22:53 - 00000000 ___RD C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-09-22 19:35 - 2013-09-22 19:35 - 00000000 ____D C:\Users\oo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook 2013-09-22 19:35 - 2013-09-22 19:28 - 00000000 ____D C:\Users\oo\AppData\Local\Facebook 2013-09-22 19:28 - 2013-09-22 19:28 - 00003886 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000UA 2013-09-22 19:28 - 2013-09-22 19:28 - 00003518 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3096193654-3651429466-3341903422-1000Core 2013-09-22 19:27 - 2013-09-22 19:27 - 00501240 _____ (Facebook Inc.) C:\Users\oo\Downloads\FacebookMessengerSetup_v1.2.205.0.exe 2013-09-22 15:25 - 2013-09-16 20:41 - 00000000 ____D C:\Users\oo\Desktop\Fceultra v0.98.12 [pl] 2013-09-22 15:24 - 2013-09-14 22:13 - 00000000 ____D C:\ProgramData\360SD 2013-09-21 18:47 - 2013-09-14 19:55 - 00000000 ____D C:\Users\oo\AppData\Roaming\BitTorrent 2013-09-20 20:01 - 2013-09-20 20:01 - 01301184 _____ (Microsoft Corporation) C:\Users\oo\Downloads\IE11-Windows6.1.exe 2013-09-20 20:01 - 2013-09-20 20:01 - 00001487 _____ C:\Windows\IE11_main.log 2013-09-20 18:34 - 2013-07-24 01:21 - 00000000 ____D C:\Users\oo\VirtualBox VMs 2013-09-20 18:19 - 2013-07-24 03:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-09-19 21:45 - 2013-09-19 21:45 - 00402598 _____ C:\Users\oo\Downloads\aquafirzen.zip 2013-09-19 20:52 - 2013-07-24 03:32 - 00000000 ____D C:\Users\oo\AppData\Local\Mozilla Some content of TEMP: ==================== C:\Users\oo\AppData\Local\Temp\LOOP.EXE C:\Users\oo\AppData\Local\Temp\Quarantine.exe C:\Users\oo\AppData\Local\Temp\_is5CC3.exe C:\Users\oo\AppData\Local\Temp\_is6D04.exe C:\Users\oo\AppData\Local\Temp\_isD2FB.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll [2009-07-14 01:38] - [2009-07-14 03:41] - 1008640 ____A (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E C:\Windows\SysWOW64\User32.dll [2013-07-18 23:01] - [2013-07-18 23:01] - 0833024 ____A (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356 C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-14 11:32 ==================== End Of Log ============================