Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-12-2013 Ran by Roko (administrator) on EDO on 27-12-2013 10:43:19 Running from E:\Users\Roko\Downloads Microsoft Windows 7 Home Premium (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (Comodo Security Solutions, Inc.) E:\Program Files\Common Files\COMODO\launcher_service.exe (COMODO) E:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (AMD) E:\Windows\System32\atiesrxx.exe (AMD) E:\Windows\System32\atieclxx.exe (Comodo Security Solutions, Inc.) E:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe () E:\Windows\System32\PnkBstrA.exe (Microsoft Corp.) E:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) E:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Realtek Semiconductor Corporation.) E:\Program Files\Realtek\Realtek Ethernet Diagnostic Utility\8169Diag.exe (Realtek Semiconductor) E:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Microsoft Corporation) E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Oracle Corporation) E:\Program Files\Common Files\Java\Java Update\jusched.exe (Power Software Ltd) E:\Program Files\PowerISO\PWRISOVM.EXE (COMODO) E:\Program Files\COMODO\COMODO Internet Security\cistray.exe (Comodo Security Solutions, Inc.) E:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe (Comodo Security Solutions, Inc.) E:\Program Files\COMODO\GeekBuddy\unit_manager.exe (COMODO) E:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (Comodo Security Solutions, Inc.) E:\Program Files\COMODO\GeekBuddy\unit.exe (COMODO) E:\Program Files\COMODO\COMODO Internet Security\cis.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe () E:\Program Files\Opera\17.0.1241.53\opera_crashreporter.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe (Intel Corporation) E:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) E:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Opera Software) E:\Program Files\Opera\17.0.1241.53\opera.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - E:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10021480 2011-01-04] (Realtek Semiconductor) HKLM\...\Run: [GrooveMonitor] - E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Run: [SunJavaUpdateSched] - E:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM\...\Run: [mobilegeni daemon] - E:\Program Files\Mobogenie\DaemonProcess.exe HKLM\...\Run: [PWRISOVM.EXE] - E:\Program Files\PowerISO\PWRISOVM.EXE [337432 2013-12-27] (Power Software Ltd) HKLM\...\Run: [COMODO Internet Security] - E:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1576152 2013-11-11] (COMODO) HKLM\...\Run: [tvncontrol] - E:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-12-13] (Comodo Security Solutions, Inc.) HKCU\...\Run: [Steam] - F:\Programy\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation) HKCU\...\Run: [ALLUpdate] - E:\Program Files\ALLPlayer\ALLUpdate.exe [3000680 2013-11-01] (ALLPlayer Group Ltd.) HKCU\...\Run: [NextLive] - E:\Windows\system32\rundll32.exe "E:\Users\Roko\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l MountPoints2: H - H:\autorun.exe AlternateShell: ==================== Internet (Whitelisted) ==================== SearchScopes: HKCU - DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL = http://www.daemon-search.com/search?q={searchTerms} SearchScopes: HKCU - {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL = http://www.daemon-search.com/search?q={searchTerms} SearchScopes: HKCU - {B3DA7B98-F936-492f-A420-3C6F89F596C3} URL = http://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH SearchScopes: HKCU - {D577F86C-A144-420f-B56C-16987C609BD7} URL = http://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=4183257091&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=pl&q={searchTerms} SearchScopes: HKCU - {D9D6AF1B-897B-4eb8-8E72-9B3B334DD867} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBDSV BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - E:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) Toolbar: HKCU - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} https://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.96.0.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{C5457DC7-1BA4-44A0-ADCE-0D5E1834E09C}: [NameServer]156.154.70.25,156.154.71.25 Chrome: ======= CHR Extension: (Google Docs) - E:\Users\Roko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (avast! Online Security) - E:\Users\Roko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2011.70_0 CHR Extension: (Google Wallet) - E:\Users\Roko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 CHR Extension: (Battlefield Play4Free) - E:\Users\Roko\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.96.0_0 ========================== Services (Whitelisted) ================= S3 AppleChargerSrv; E:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () R2 CLPSLauncher; E:\Program Files\Common Files\COMODO\launcher_service.exe [70352 2013-12-13] (Comodo Security Solutions, Inc.) R2 cmdAgent; E:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [4832192 2013-10-20] (COMODO) S3 cmdvirth; E:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [131288 2013-09-24] (COMODO) R2 GeekBuddyRSP; E:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2013-12-13] (Comodo Security Solutions, Inc.) R2 PnkBstrA; E:\Windows\system32\PnkBstrA.exe [76888 2013-12-23] () ==================== Drivers (Whitelisted) ==================== R1 AppleCharger; E:\Windows\System32\DRIVERS\AppleCharger.sys [18544 2011-01-10] () R1 cmderd; E:\Windows\System32\DRIVERS\cmderd.sys [20072 2013-09-24] (COMODO) R1 cmdGuard; E:\Windows\System32\DRIVERS\cmdguard.sys [582936 2013-11-14] (COMODO) R1 cmdHlp; E:\Windows\System32\DRIVERS\cmdhlp.sys [44752 2013-09-24] (COMODO) R1 inspect; E:\Windows\System32\DRIVERS\inspect.sys [85464 2013-09-24] (COMODO) R3 MEI; E:\Windows\System32\DRIVERS\HECI.sys [41088 2010-09-21] (Intel Corporation) R2 RtNdPt60; E:\Windows\System32\DRIVERS\RtNdPt60.sys [27648 2010-12-14] (Realtek ) S3 RTTEAMPT; E:\Windows\System32\DRIVERS\RtTeam60.sys [50280 2010-12-14] (Realtek Corporation) S3 RTVLANPT; E:\Windows\System32\DRIVERS\RtVlan60.sys [19968 2010-12-14] (Windows (R) Codename Longhorn DDK provider) R1 SCDEmu; E:\Windows\System32\Drivers\SCDEmu.sys [114376 2013-10-23] (Power Software Ltd) R0 sptd; E:\Windows\System32\Drivers\sptd.sys [691696 2013-12-21] () S3 TEAM; E:\Windows\System32\DRIVERS\RtTeam60.sys [50280 2010-12-14] (Realtek Corporation) R3 V0260VID; E:\Windows\System32\DRIVERS\V0260Vid.sys [154784 2007-07-18] (Creative Technology Ltd.) S3 gdrv; \??\E:\Windows\gdrv.sys [x] U5 GVTDrv; E:\Windows\system32\Drivers\GVTDrv.sys [24944 2013-11-09] () ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-12-27 10:43 - 2013-12-27 10:43 - 00009357 _____ E:\Users\Roko\Downloads\FRST.txt 2013-12-27 10:42 - 2013-12-27 10:42 - 00000000 ____D E:\FRST 2013-12-27 10:41 - 2013-12-27 10:41 - 01061649 _____ (Farbar) E:\Users\Roko\Downloads\FRST.exe 2013-12-27 10:34 - 2013-12-27 10:34 - 00448512 _____ (OldTimer Tools) E:\Users\Roko\Downloads\TFC.exe 2013-12-27 08:53 - 2013-12-27 08:53 - 00000000 ____D E:\Users\Roko\Downloads\sk 2013-12-27 08:52 - 2013-12-27 08:52 - 00164134 _____ E:\Users\Roko\Downloads\sk (1).zip 2013-12-27 08:51 - 2013-12-27 08:51 - 00164134 _____ E:\Users\Roko\Downloads\sk.zip 2013-12-26 17:13 - 2013-12-26 17:13 - 00017763 _____ E:\Users\Roko\Downloads\Windows 7 Ultimate 32 64 bit [Wersja PL W PELNI AKTYWOWANA] [ISO][Torrenty.org].torrent 2013-12-26 16:09 - 2013-12-26 16:09 - 00088135 _____ E:\Users\Roko\Downloads\BEST-TORRENTS.NET - Windows 7 Wszystkie Wersje x64(64bit)_x86(32bit) [PL].torrent 2013-12-26 15:38 - 2013-12-26 15:38 - 00013135 _____ E:\Users\Roko\Downloads\Windows_7_SP1_wszystkie_wersje _ _aktywatory _[PL]_[ iso][Torrenty.org].torrent 2013-12-26 12:28 - 2013-12-26 12:59 - 00004598 _____ E:\Windows\system32\Drivers\fvstore.dat 2013-12-26 12:28 - 2013-12-26 12:28 - 00000000 ___HD E:\VTRoot 2013-12-25 20:03 - 2013-12-25 20:05 - 00000000 ____D E:\Users\Roko\Documents\Black & White 2 2013-12-25 20:02 - 2013-12-25 20:02 - 00000539 _____ E:\Users\Public\Desktop\Black & White 2.lnk 2013-12-25 16:42 - 2013-12-25 16:42 - 00000000 ____D E:\Program Files\Common Files\COMODO 2013-12-25 16:25 - 2013-12-26 12:28 - 00001947 _____ E:\Users\Public\Desktop\COMODO Firewall.lnk 2013-12-25 16:25 - 2013-12-25 16:25 - 00000596 _____ E:\Users\Public\Desktop\Współdzielona przestrzeń.lnk 2013-12-25 16:24 - 2013-12-25 16:42 - 00002016 _____ E:\Users\Public\Desktop\GeekBuddy.lnk 2013-12-25 16:24 - 2013-12-25 16:25 - 00000000 ___SD E:\ProgramData\Shared Space 2013-12-25 16:24 - 2013-12-25 16:25 - 00000000 ____D E:\ProgramData\COMODO 2013-12-25 16:24 - 2013-12-25 16:24 - 00000000 ____D E:\ProgramData\Comodo Downloader 2013-12-25 16:24 - 2013-12-25 16:24 - 00000000 ____D E:\Program Files\COMODO 2013-12-25 11:48 - 2013-12-25 11:48 - 00000722 _____ E:\Users\Roko\Desktop\Skijumping 2007.lnk 2013-12-25 11:46 - 2013-12-25 11:46 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RTL Playtainment 2013-12-24 22:26 - 2013-12-25 11:44 - 00000000 ____D E:\Users\Roko\Downloads\RTL Ski Jumping 2007 PL (CraCk) 2013-12-24 22:25 - 2013-12-24 22:25 - 00016111 _____ E:\Users\Roko\Downloads\RTL_Ski_Jumping_2007_[PL]_[DVD]_ _Crack[Torrenty.org].torrent 2013-12-24 19:39 - 2013-12-24 19:39 - 00000000 ____D E:\Users\Roko\Downloads\bw2 2013-12-24 19:37 - 2013-12-24 19:38 - 09467153 _____ E:\Users\Roko\Downloads\bw2.rar 2013-12-24 10:41 - 2013-12-27 09:36 - 00602624 _____ (OldTimer Tools) E:\Users\Roko\Downloads\OTL.exe 2013-12-24 10:41 - 2013-12-27 09:35 - 00380928 _____ E:\Users\Roko\Downloads\gf6vtvet.exe 2013-12-24 10:36 - 2013-12-27 09:27 - 00025316 __RSH E:\sjlo.pif 2013-12-23 20:05 - 2013-12-23 20:09 - 00000000 ____D E:\Users\Roko\AppData\Local\Microsoft Games 2013-12-23 18:12 - 2013-12-23 18:40 - 296330688 _____ (Activision ) E:\Users\Roko\Downloads\CoD4MW-1.6-PatchSetup.exe 2013-12-23 17:23 - 2013-12-23 20:04 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Xfire 2013-12-23 17:23 - 2013-12-23 17:26 - 00000000 ____D E:\ProgramData\Xfire 2013-12-23 17:23 - 2013-12-23 17:23 - 00000000 ____D E:\Program Files\Xfire 2013-12-23 17:22 - 2013-12-23 17:22 - 00000728 _____ E:\Users\Public\Desktop\Call of Duty 4 - Modern Warfare.lnk 2013-12-23 13:23 - 2013-12-23 13:23 - 00000000 ____D E:\Users\Roko\Documents\OMC ModPack 2013-12-23 13:22 - 2013-12-27 09:35 - 01775600 _____ (Odem Mortis ) E:\Users\Roko\Downloads\OMC_ModPack_0.8.10.exe 2013-12-23 13:12 - 2013-12-23 13:12 - 00000000 ____D E:\Users\Roko\Downloads\xvm-5.0.2-test1 2013-12-23 13:10 - 2013-12-23 13:11 - 07287268 _____ E:\Users\Roko\Downloads\xvm-5.0.2-test1.zip 2013-12-23 11:00 - 2013-12-23 11:00 - 00114020 _____ E:\Users\Roko\Downloads\Top Eleven Football Manager Hack Token And All Treats.rar 2013-12-23 11:00 - 2013-12-23 11:00 - 00000000 ____D E:\Users\Roko\Downloads\Top Eleven Football Manager Hack Token And All Treats 2013-12-23 09:50 - 2013-12-27 09:37 - 00576544 _____ E:\Users\Roko\Downloads\Setup.exe 2013-12-23 09:22 - 2013-12-23 09:22 - 01201728 _____ E:\Users\Roko\Downloads\WOTLauncher.rar 2013-12-23 09:22 - 2013-12-23 09:22 - 00000000 ____D E:\Users\Roko\Downloads\WOTLauncher 2013-12-23 09:10 - 2013-12-27 09:37 - 05073240 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x86 (1).exe 2013-12-23 09:03 - 2013-12-27 09:37 - 05718872 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x64 (1).exe 2013-12-23 09:03 - 2013-12-27 09:37 - 05073240 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x86.exe 2013-12-23 00:27 - 2013-12-27 09:38 - 09304408 _____ (Wargaming.net ) E:\Users\Roko\Downloads\WoT_internet_install_eu.exe 2013-12-22 22:51 - 2013-12-22 22:52 - 01005568 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\dotNetFx45_Full_setup.exe 2013-12-22 22:46 - 2013-12-22 22:47 - 07186992 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x64.exe 2013-12-22 19:45 - 2013-12-22 21:06 - 702742684 _____ E:\Users\Roko\Downloads\Mount and Blade Warband.nrg 2013-12-22 19:43 - 2013-12-22 19:43 - 00054790 _____ E:\Users\Roko\Downloads\Mount_ _Blade _Warband_[PL][Torrenty.org].torrent 2013-12-22 19:28 - 2013-12-22 20:46 - 1190628422 _____ (Floris Dev Team ) E:\Users\Roko\Downloads\Floris254.exe 2013-12-22 19:27 - 2013-12-22 19:27 - 00011691 _____ E:\Users\Roko\Downloads\Floris254.torrent 2013-12-22 19:18 - 2013-12-22 19:18 - 00000000 ____D E:\Users\Roko\Documents\Mount&Blade Warband 2013-12-22 19:18 - 2013-12-22 19:18 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Mount&Blade Warband 2013-12-22 14:39 - 2013-12-22 14:39 - 00015571 _____ E:\Users\Roko\Downloads\[www.vtorrent.pl]_-_RTL Ski Jumping 2006 [ENG] [CD-DVD] [PAL-E].torrent 2013-12-21 21:17 - 2013-12-21 21:17 - 00000000 ____D E:\Users\Roko\AppData\Roaming\AVG 2013-12-21 21:16 - 2013-12-21 21:17 - 00000000 ____D E:\ProgramData\AVG 2013-12-21 21:16 - 2013-12-21 21:16 - 00000000 __SHD E:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} 2013-12-21 21:10 - 2013-12-21 21:10 - 00000000 ____D E:\Users\Roko\AppData\Roaming\PowerISO 2013-12-21 21:09 - 2013-12-21 21:09 - 00000000 ____D E:\Users\Roko\AppData\Roaming\OpenCandy 2013-12-21 21:09 - 2013-12-21 21:09 - 00000000 ____D E:\Program Files\PowerISO 2013-12-21 18:25 - 2013-12-21 18:25 - 00691696 _____ E:\Windows\system32\Drivers\sptd.sys 2013-12-21 18:24 - 2013-12-21 21:00 - 00000000 ____D E:\Users\Roko\AppData\Roaming\DAEMON Tools Lite 2013-12-21 18:18 - 2013-12-25 11:26 - 00000000 ____D E:\Users\Roko\AppData\Roaming\newnext.me 2013-12-21 18:18 - 2013-12-21 21:04 - 00000000 ____D E:\Users\Roko\AppData\Local\genienext 2013-12-21 18:18 - 2013-12-21 18:18 - 00000000 ____D E:\Users\Roko\.android 2013-12-21 18:17 - 2013-12-21 18:24 - 00000000 ____D E:\ProgramData\DAEMON Tools Lite 2013-12-21 13:00 - 2013-12-21 13:00 - 00000000 ____D E:\Users\Roko\AppData\Roaming\OpenFM 2013-12-21 13:00 - 2013-12-21 13:00 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Mozilla 2013-12-21 13:00 - 2013-12-21 13:00 - 00000000 ____D E:\Users\Roko\AppData\Local\Macromedia 2013-12-21 12:59 - 2013-12-21 13:00 - 00000000 ____D E:\Users\Roko\AppData\Local\OpenFM 2013-12-21 12:59 - 2013-12-21 12:59 - 00001146 _____ E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenFM.lnk 2013-12-20 13:29 - 2013-12-20 13:29 - 00264560 _____ (AVAST Software) E:\Windows\system32\Drivers\aswNdisFlt.sys 2013-12-15 16:13 - 2013-12-27 10:35 - 00001028 _____ E:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-12-15 16:13 - 2013-12-27 10:25 - 00001032 _____ E:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-12-15 15:54 - 2013-12-24 22:18 - 00282104 _____ E:\Windows\system32\PnkBstrB.xtr 2013-12-15 15:53 - 2013-12-15 15:53 - 00000000 ____D E:\Users\Roko\AppData\Local\PunkBuster 2013-12-15 15:48 - 2013-12-15 15:57 - 00000000 ____D E:\Users\Roko\Documents\Battlefield Play4Free 2013-12-15 15:47 - 2013-12-24 22:18 - 00282104 _____ E:\Windows\system32\PnkBstrB.exe 2013-12-15 15:47 - 2013-12-24 22:16 - 00282104 _____ E:\Windows\system32\PnkBstrB.ex0 2013-12-15 15:47 - 2013-12-24 11:57 - 00138264 _____ E:\Windows\system32\Drivers\PnkBstrK.sys 2013-12-15 15:47 - 2013-12-23 18:58 - 00076888 _____ E:\Windows\system32\PnkBstrA.exe 2013-12-15 15:47 - 2013-12-23 18:51 - 00138056 _____ E:\Users\Roko\AppData\Roaming\PnkBstrK.sys 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Users\Roko\AppData\Local\ALLMediaServer 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Users\Roko\AppData\Local\ALLConverter 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\ProgramData\ALLPlayer 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Program Files\ALLMediaServer 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Program Files\ALLConverter PRO 2013-12-10 09:42 - 2013-04-05 20:26 - 00276992 _____ (IntelleSoft) E:\Windows\system32\BugTrap.dll 2013-12-07 18:05 - 2013-12-12 08:18 - 00000000 ____D E:\Users\Roko\Downloads\call_of_duty_4_modern_warfare_eng_catalyst 2013-12-07 15:04 - 2013-12-07 15:04 - 00000000 ____D E:\Users\Roko\Downloads\Windows Loader v2.1.5 (x86-x64) by Daz 2013-12-06 19:39 - 2013-12-06 19:39 - 00000020 _____ E:\Windows\Čö‚ 2013-12-06 19:39 - 2013-12-06 19:39 - 00000000 ____D E:\Windows\pl 2013-12-06 19:39 - 2013-12-06 19:39 - 00000000 ____D E:\Program Files\Microsoft SQL Server Compact Edition 2013-12-06 14:42 - 2004-12-16 21:32 - 00176128 _____ (NVIDIA Corporation) E:\Windows\system32\nvuenet.exe 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\Users\Roko\Documents\My Games 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\Users\Roko\AppData\Local\WarThunder 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\ProgramData\WarThunder 2013-12-03 18:45 - 2013-12-03 18:45 - 00000286 _____ E:\Users\Roko\Desktop\1.txt 2013-12-02 17:32 - 2013-12-02 17:32 - 00000000 ____D E:\Users\Roko\Documents\Deluxe Ski Jump 4 2013-12-01 17:21 - 2013-11-18 20:27 - 00000000 ____D E:\Users\Roko\Downloads\fm2014-england 2013-12-01 13:44 - 2013-12-12 08:39 - 636692480 _____ E:\Users\Roko\Downloads\BNW.iso 2013-12-01 12:46 - 2013-12-01 12:46 - 00000000 ____D E:\Users\Roko\AppData\Roaming\MPC-HC 2013-12-01 12:45 - 2013-12-01 13:18 - 00000000 ____D E:\Program Files\MyPC Backup 2013-12-01 12:45 - 2013-12-01 12:45 - 00000000 ____D E:\Program Files\K-Lite Codec Pack 2013-12-01 12:45 - 2013-08-22 19:09 - 00217176 _____ E:\Windows\system32\unrar.dll 2013-12-01 12:44 - 2013-12-21 21:49 - 00000000 ____D E:\Program Files\BonanzaDealsLive 2013-12-01 12:44 - 2013-12-21 21:09 - 00000000 ____D E:\Users\Roko\AppData\Local\Mobogenie 2013-12-01 12:44 - 2013-12-21 18:18 - 00000000 ____D E:\Users\Roko\AppData\Local\cache 2013-12-01 12:44 - 2013-12-02 12:09 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Systweak 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 ____D E:\Users\Roko\Documents\Mobogenie 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 ____D E:\Users\Roko\AppData\Local\BonanzaDealsLive 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 ____D E:\ProgramData\BonanzaDealsLive 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 _____ E:\Users\Roko\daemonprocess.txt 2013-12-01 12:44 - 2013-09-17 11:25 - 00018776 _____ (Systweak Inc., (www.systweak.com)) E:\Windows\system32\roboot.exe 2013-12-01 12:43 - 2013-12-21 21:34 - 00000000 ____D E:\Program Files\BonanzaDeals 2013-12-01 12:43 - 2013-12-21 21:09 - 00000000 ____D E:\Program Files\Mobogenie 2013-12-01 12:35 - 2013-12-10 09:42 - 00000000 ____D E:\Program Files\ALLPlayer 2013-12-01 12:35 - 2013-12-01 12:38 - 00000000 ____D E:\Users\Roko\AppData\Local\ALLPlayer 2013-12-01 12:35 - 2013-04-05 20:26 - 02106368 _____ E:\Windows\system32\ac3filter.ax 2013-12-01 12:35 - 2011-06-02 01:10 - 00644608 _____ E:\Windows\system32\xvidcore.dll 2013-12-01 12:35 - 2007-10-07 14:36 - 00258048 _____ E:\Windows\system32\libFLAC.dll 2013-11-30 22:58 - 2013-12-15 16:16 - 00000000 ____D E:\Program Files\Google 2013-11-30 22:58 - 2013-12-01 12:43 - 00000000 ____D E:\Users\Roko\AppData\Local\Google 2013-11-30 16:56 - 2013-12-25 16:29 - 00000000 ____D E:\ProgramData\AVAST Software ==================== One Month Modified Files and Folders ======= 2013-12-27 10:43 - 2013-12-27 10:43 - 00009357 _____ E:\Users\Roko\Downloads\FRST.txt 2013-12-27 10:42 - 2013-12-27 10:42 - 00000000 ____D E:\FRST 2013-12-27 10:42 - 2009-07-14 05:34 - 00014016 ____H E:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-12-27 10:42 - 2009-07-14 05:34 - 00014016 ____H E:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-12-27 10:41 - 2013-12-27 10:41 - 01061649 _____ (Farbar) E:\Users\Roko\Downloads\FRST.exe 2013-12-27 10:38 - 2013-11-09 10:32 - 00782674 _____ E:\Windows\WindowsUpdate.log 2013-12-27 10:35 - 2013-12-15 16:13 - 00001028 _____ E:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-12-27 10:35 - 2013-11-09 12:14 - 00000308 _____ E:\Windows\Tasks\RtlNICDiagVistaStart.job 2013-12-27 10:35 - 2009-07-14 05:53 - 00000006 ____H E:\Windows\Tasks\SA.DAT 2013-12-27 10:35 - 2009-07-14 05:39 - 00032526 _____ E:\Windows\setupact.log 2013-12-27 10:34 - 2013-12-27 10:34 - 00448512 _____ (OldTimer Tools) E:\Users\Roko\Downloads\TFC.exe 2013-12-27 10:25 - 2013-12-15 16:13 - 00001032 _____ E:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-12-27 10:12 - 2013-11-09 17:01 - 00000930 _____ E:\Windows\Tasks\Adobe Flash Player Updater.job 2013-12-27 10:06 - 2009-07-14 03:04 - 00000233 _____ E:\Windows\system.ini 2013-12-27 09:38 - 2013-12-23 00:27 - 09304408 _____ (Wargaming.net ) E:\Users\Roko\Downloads\WoT_internet_install_eu.exe 2013-12-27 09:37 - 2013-12-23 09:50 - 00576544 _____ E:\Users\Roko\Downloads\Setup.exe 2013-12-27 09:37 - 2013-12-23 09:10 - 05073240 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x86 (1).exe 2013-12-27 09:37 - 2013-12-23 09:03 - 05718872 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x64 (1).exe 2013-12-27 09:37 - 2013-12-23 09:03 - 05073240 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x86.exe 2013-12-27 09:36 - 2013-12-24 10:41 - 00602624 _____ (OldTimer Tools) E:\Users\Roko\Downloads\OTL.exe 2013-12-27 09:35 - 2013-12-24 10:41 - 00380928 _____ E:\Users\Roko\Downloads\gf6vtvet.exe 2013-12-27 09:35 - 2013-12-23 13:22 - 01775600 _____ (Odem Mortis ) E:\Users\Roko\Downloads\OMC_ModPack_0.8.10.exe 2013-12-27 09:27 - 2013-12-24 10:36 - 00025316 __RSH E:\sjlo.pif 2013-12-27 09:24 - 2013-11-24 17:06 - 00000000 ____D E:\Users\Roko\AppData\Roaming\uTorrent 2013-12-27 08:53 - 2013-12-27 08:53 - 00000000 ____D E:\Users\Roko\Downloads\sk 2013-12-27 08:52 - 2013-12-27 08:52 - 00164134 _____ E:\Users\Roko\Downloads\sk (1).zip 2013-12-27 08:51 - 2013-12-27 08:51 - 00164134 _____ E:\Users\Roko\Downloads\sk.zip 2013-12-26 17:13 - 2013-12-26 17:13 - 00017763 _____ E:\Users\Roko\Downloads\Windows 7 Ultimate 32 64 bit [Wersja PL W PELNI AKTYWOWANA] [ISO][Torrenty.org].torrent 2013-12-26 16:09 - 2013-12-26 16:09 - 00088135 _____ E:\Users\Roko\Downloads\BEST-TORRENTS.NET - Windows 7 Wszystkie Wersje x64(64bit)_x86(32bit) [PL].torrent 2013-12-26 15:38 - 2013-12-26 15:38 - 00013135 _____ E:\Users\Roko\Downloads\Windows_7_SP1_wszystkie_wersje _ _aktywatory _[PL]_[ iso][Torrenty.org].torrent 2013-12-26 12:59 - 2013-12-26 12:28 - 00004598 _____ E:\Windows\system32\Drivers\fvstore.dat 2013-12-26 12:28 - 2013-12-26 12:28 - 00000000 ___HD E:\VTRoot 2013-12-26 12:28 - 2013-12-25 16:25 - 00001947 _____ E:\Users\Public\Desktop\COMODO Firewall.lnk 2013-12-25 20:05 - 2013-12-25 20:03 - 00000000 ____D E:\Users\Roko\Documents\Black & White 2 2013-12-25 20:02 - 2013-12-25 20:02 - 00000539 _____ E:\Users\Public\Desktop\Black & White 2.lnk 2013-12-25 19:58 - 2013-11-24 17:35 - 00044878 _____ E:\Windows\DirectX.log 2013-12-25 19:58 - 2013-11-09 11:02 - 00000000 ___HD E:\Program Files\InstallShield Installation Information 2013-12-25 16:42 - 2013-12-25 16:42 - 00000000 ____D E:\Program Files\Common Files\COMODO 2013-12-25 16:42 - 2013-12-25 16:24 - 00002016 _____ E:\Users\Public\Desktop\GeekBuddy.lnk 2013-12-25 16:29 - 2013-11-30 16:56 - 00000000 ____D E:\ProgramData\AVAST Software 2013-12-25 16:29 - 2013-11-09 12:30 - 00597852 _____ E:\Windows\PFRO.log 2013-12-25 16:25 - 2013-12-25 16:25 - 00000596 _____ E:\Users\Public\Desktop\Współdzielona przestrzeń.lnk 2013-12-25 16:25 - 2013-12-25 16:24 - 00000000 ___SD E:\ProgramData\Shared Space 2013-12-25 16:25 - 2013-12-25 16:24 - 00000000 ____D E:\ProgramData\COMODO 2013-12-25 16:24 - 2013-12-25 16:24 - 00000000 ____D E:\ProgramData\Comodo Downloader 2013-12-25 16:24 - 2013-12-25 16:24 - 00000000 ____D E:\Program Files\COMODO 2013-12-25 11:48 - 2013-12-25 11:48 - 00000722 _____ E:\Users\Roko\Desktop\Skijumping 2007.lnk 2013-12-25 11:46 - 2013-12-25 11:46 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RTL Playtainment 2013-12-25 11:44 - 2013-12-24 22:26 - 00000000 ____D E:\Users\Roko\Downloads\RTL Ski Jumping 2007 PL (CraCk) 2013-12-25 11:26 - 2013-12-21 18:18 - 00000000 ____D E:\Users\Roko\AppData\Roaming\newnext.me 2013-12-24 22:25 - 2013-12-24 22:25 - 00016111 _____ E:\Users\Roko\Downloads\RTL_Ski_Jumping_2007_[PL]_[DVD]_ _Crack[Torrenty.org].torrent 2013-12-24 22:18 - 2013-12-15 15:54 - 00282104 _____ E:\Windows\system32\PnkBstrB.xtr 2013-12-24 22:18 - 2013-12-15 15:47 - 00282104 _____ E:\Windows\system32\PnkBstrB.exe 2013-12-24 22:16 - 2013-12-15 15:47 - 00282104 _____ E:\Windows\system32\PnkBstrB.ex0 2013-12-24 21:40 - 2013-11-16 18:52 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Skype 2013-12-24 19:39 - 2013-12-24 19:39 - 00000000 ____D E:\Users\Roko\Downloads\bw2 2013-12-24 19:38 - 2013-12-24 19:37 - 09467153 _____ E:\Users\Roko\Downloads\bw2.rar 2013-12-24 11:57 - 2013-12-15 15:47 - 00138264 _____ E:\Windows\system32\Drivers\PnkBstrK.sys 2013-12-23 20:09 - 2013-12-23 20:05 - 00000000 ____D E:\Users\Roko\AppData\Local\Microsoft Games 2013-12-23 20:04 - 2013-12-23 17:23 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Xfire 2013-12-23 18:58 - 2013-12-15 15:47 - 00076888 _____ E:\Windows\system32\PnkBstrA.exe 2013-12-23 18:51 - 2013-12-15 15:47 - 00138056 _____ E:\Users\Roko\AppData\Roaming\PnkBstrK.sys 2013-12-23 18:40 - 2013-12-23 18:12 - 296330688 _____ (Activision ) E:\Users\Roko\Downloads\CoD4MW-1.6-PatchSetup.exe 2013-12-23 17:26 - 2013-12-23 17:23 - 00000000 ____D E:\ProgramData\Xfire 2013-12-23 17:23 - 2013-12-23 17:23 - 00000000 ____D E:\Program Files\Xfire 2013-12-23 17:22 - 2013-12-23 17:22 - 00000728 _____ E:\Users\Public\Desktop\Call of Duty 4 - Modern Warfare.lnk 2013-12-23 13:37 - 2009-07-14 03:37 - 00000000 ____D E:\Windows\Microsoft.NET 2013-12-23 13:23 - 2013-12-23 13:23 - 00000000 ____D E:\Users\Roko\Documents\OMC ModPack 2013-12-23 13:12 - 2013-12-23 13:12 - 00000000 ____D E:\Users\Roko\Downloads\xvm-5.0.2-test1 2013-12-23 13:11 - 2013-12-23 13:10 - 07287268 _____ E:\Users\Roko\Downloads\xvm-5.0.2-test1.zip 2013-12-23 12:46 - 2013-11-10 15:22 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Audacity 2013-12-23 11:00 - 2013-12-23 11:00 - 00114020 _____ E:\Users\Roko\Downloads\Top Eleven Football Manager Hack Token And All Treats.rar 2013-12-23 11:00 - 2013-12-23 11:00 - 00000000 ____D E:\Users\Roko\Downloads\Top Eleven Football Manager Hack Token And All Treats 2013-12-23 09:22 - 2013-12-23 09:22 - 01201728 _____ E:\Users\Roko\Downloads\WOTLauncher.rar 2013-12-23 09:22 - 2013-12-23 09:22 - 00000000 ____D E:\Users\Roko\Downloads\WOTLauncher 2013-12-23 00:32 - 2013-11-09 10:46 - 00000000 ____D E:\Users\Roko\AppData\Local\VirtualStore 2013-12-23 00:28 - 2013-11-16 18:46 - 00000604 _____ E:\Users\Public\Desktop\World of Tanks.lnk 2013-12-23 00:28 - 2013-11-16 18:46 - 00000000 ____D E:\Windows\system32\directx 2013-12-23 00:28 - 2009-07-14 03:37 - 00000000 ____D E:\Program Files\Common Files\microsoft shared 2013-12-23 00:07 - 2012-11-15 16:54 - 00000000 ____D E:\AP Tuner 3.08 2013-12-22 22:56 - 2013-11-09 10:52 - 01636610 _____ E:\Windows\system32\PerfStringBackup.INI 2013-12-22 22:56 - 2009-07-14 09:07 - 00738468 _____ E:\Windows\system32\perfh015.dat 2013-12-22 22:56 - 2009-07-14 09:07 - 00154578 _____ E:\Windows\system32\perfc015.dat 2013-12-22 22:55 - 2009-07-14 03:37 - 00000000 ____D E:\Windows\system32\pl-PL 2013-12-22 22:52 - 2013-12-22 22:51 - 01005568 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\dotNetFx45_Full_setup.exe 2013-12-22 22:47 - 2013-12-22 22:46 - 07186992 _____ (Microsoft Corporation) E:\Users\Roko\Downloads\vcredist_x64.exe 2013-12-22 21:06 - 2013-12-22 19:45 - 702742684 _____ E:\Users\Roko\Downloads\Mount and Blade Warband.nrg 2013-12-22 20:46 - 2013-12-22 19:28 - 1190628422 _____ (Floris Dev Team ) E:\Users\Roko\Downloads\Floris254.exe 2013-12-22 19:43 - 2013-12-22 19:43 - 00054790 _____ E:\Users\Roko\Downloads\Mount_ _Blade _Warband_[PL][Torrenty.org].torrent 2013-12-22 19:27 - 2013-12-22 19:27 - 00011691 _____ E:\Users\Roko\Downloads\Floris254.torrent 2013-12-22 19:18 - 2013-12-22 19:18 - 00000000 ____D E:\Users\Roko\Documents\Mount&Blade Warband 2013-12-22 19:18 - 2013-12-22 19:18 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Mount&Blade Warband 2013-12-22 17:44 - 2013-11-09 13:35 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2013-12-22 17:43 - 2013-11-09 10:50 - 00000000 ____D E:\Program Files\Common Files\InstallShield 2013-12-22 14:39 - 2013-12-22 14:39 - 00015571 _____ E:\Users\Roko\Downloads\[www.vtorrent.pl]_-_RTL Ski Jumping 2006 [ENG] [CD-DVD] [PAL-E].torrent 2013-12-21 21:49 - 2013-12-01 12:44 - 00000000 ____D E:\Program Files\BonanzaDealsLive 2013-12-21 21:34 - 2013-12-01 12:43 - 00000000 ____D E:\Program Files\BonanzaDeals 2013-12-21 21:17 - 2013-12-21 21:17 - 00000000 ____D E:\Users\Roko\AppData\Roaming\AVG 2013-12-21 21:17 - 2013-12-21 21:16 - 00000000 ____D E:\ProgramData\AVG 2013-12-21 21:16 - 2013-12-21 21:16 - 00000000 __SHD E:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} 2013-12-21 21:10 - 2013-12-21 21:10 - 00000000 ____D E:\Users\Roko\AppData\Roaming\PowerISO 2013-12-21 21:09 - 2013-12-21 21:09 - 00000000 ____D E:\Users\Roko\AppData\Roaming\OpenCandy 2013-12-21 21:09 - 2013-12-21 21:09 - 00000000 ____D E:\Program Files\PowerISO 2013-12-21 21:09 - 2013-12-01 12:44 - 00000000 ____D E:\Users\Roko\AppData\Local\Mobogenie 2013-12-21 21:09 - 2013-12-01 12:43 - 00000000 ____D E:\Program Files\Mobogenie 2013-12-21 21:04 - 2013-12-21 18:18 - 00000000 ____D E:\Users\Roko\AppData\Local\genienext 2013-12-21 21:00 - 2013-12-21 18:24 - 00000000 ____D E:\Users\Roko\AppData\Roaming\DAEMON Tools Lite 2013-12-21 18:25 - 2013-12-21 18:25 - 00691696 _____ E:\Windows\system32\Drivers\sptd.sys 2013-12-21 18:24 - 2013-12-21 18:17 - 00000000 ____D E:\ProgramData\DAEMON Tools Lite 2013-12-21 18:18 - 2013-12-21 18:18 - 00000000 ____D E:\Users\Roko\.android 2013-12-21 18:18 - 2013-12-01 12:44 - 00000000 ____D E:\Users\Roko\AppData\Local\cache 2013-12-21 18:18 - 2013-11-09 10:46 - 00000000 ____D E:\Users\Roko 2013-12-21 13:00 - 2013-12-21 13:00 - 00000000 ____D E:\Users\Roko\AppData\Roaming\OpenFM 2013-12-21 13:00 - 2013-12-21 13:00 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Mozilla 2013-12-21 13:00 - 2013-12-21 13:00 - 00000000 ____D E:\Users\Roko\AppData\Local\Macromedia 2013-12-21 13:00 - 2013-12-21 12:59 - 00000000 ____D E:\Users\Roko\AppData\Local\OpenFM 2013-12-21 12:59 - 2013-12-21 12:59 - 00001146 _____ E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenFM.lnk 2013-12-20 13:29 - 2013-12-20 13:29 - 00264560 _____ (AVAST Software) E:\Windows\system32\Drivers\aswNdisFlt.sys 2013-12-15 16:16 - 2013-11-30 22:58 - 00000000 ____D E:\Program Files\Google 2013-12-15 15:57 - 2013-12-15 15:48 - 00000000 ____D E:\Users\Roko\Documents\Battlefield Play4Free 2013-12-15 15:53 - 2013-12-15 15:53 - 00000000 ____D E:\Users\Roko\AppData\Local\PunkBuster 2013-12-15 15:47 - 2009-07-14 03:37 - 00000000 ____D E:\Windows\system32\LogFiles 2013-12-13 17:28 - 2013-11-09 16:45 - 00000000 ____D E:\Program Files\Common Files\Steam 2013-12-12 08:39 - 2013-12-01 13:44 - 636692480 _____ E:\Users\Roko\Downloads\BNW.iso 2013-12-12 08:18 - 2013-12-07 18:05 - 00000000 ____D E:\Users\Roko\Downloads\call_of_duty_4_modern_warfare_eng_catalyst 2013-12-10 20:12 - 2013-11-09 17:01 - 00692616 _____ (Adobe Systems Incorporated) E:\Windows\system32\FlashPlayerApp.exe 2013-12-10 20:12 - 2013-11-09 17:01 - 00071048 _____ (Adobe Systems Incorporated) E:\Windows\system32\FlashPlayerCPLApp.cpl 2013-12-10 15:28 - 2013-11-10 20:12 - 00000000 ____D E:\Users\Roko\AppData\Local\Windows Live 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Users\Roko\AppData\Local\ALLMediaServer 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Users\Roko\AppData\Local\ALLConverter 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\ProgramData\ALLPlayer 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Program Files\ALLMediaServer 2013-12-10 09:42 - 2013-12-10 09:42 - 00000000 ____D E:\Program Files\ALLConverter PRO 2013-12-10 09:42 - 2013-12-01 12:35 - 00000000 ____D E:\Program Files\ALLPlayer 2013-12-09 14:15 - 2010-12-04 00:41 - 00000000 ____D E:\Muzyka 2013-12-07 15:04 - 2013-12-07 15:04 - 00000000 ____D E:\Users\Roko\Downloads\Windows Loader v2.1.5 (x86-x64) by Daz 2013-12-06 19:59 - 2013-11-10 20:38 - 00000000 ____D E:\Users\Roko\AppData\Roaming\avidemux 2013-12-06 19:39 - 2013-12-06 19:39 - 00000020 _____ E:\Windows\Čö‚ 2013-12-06 19:39 - 2013-12-06 19:39 - 00000000 ____D E:\Windows\pl 2013-12-06 19:39 - 2013-12-06 19:39 - 00000000 ____D E:\Program Files\Microsoft SQL Server Compact Edition 2013-12-06 19:38 - 2013-11-10 20:24 - 00000000 ____D E:\Program Files\Windows Live 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\Users\Roko\Documents\My Games 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\Users\Roko\AppData\Local\WarThunder 2013-12-05 16:10 - 2013-12-05 16:10 - 00000000 ____D E:\ProgramData\WarThunder 2013-12-03 18:45 - 2013-12-03 18:45 - 00000286 _____ E:\Users\Roko\Desktop\1.txt 2013-12-03 15:19 - 2013-11-14 18:19 - 00000000 ____D E:\Program Files\WinRAR 2013-12-03 15:19 - 2013-11-09 16:31 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-12-02 17:32 - 2013-12-02 17:32 - 00000000 ____D E:\Users\Roko\Documents\Deluxe Ski Jump 4 2013-12-02 12:09 - 2013-12-01 12:44 - 00000000 ____D E:\Users\Roko\AppData\Roaming\Systweak 2013-12-01 13:18 - 2013-12-01 12:45 - 00000000 ____D E:\Program Files\MyPC Backup 2013-12-01 12:46 - 2013-12-01 12:46 - 00000000 ____D E:\Users\Roko\AppData\Roaming\MPC-HC 2013-12-01 12:45 - 2013-12-01 12:45 - 00000000 ____D E:\Program Files\K-Lite Codec Pack 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 ____D E:\Users\Roko\Documents\Mobogenie 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 ____D E:\Users\Roko\AppData\Local\BonanzaDealsLive 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 ____D E:\ProgramData\BonanzaDealsLive 2013-12-01 12:44 - 2013-12-01 12:44 - 00000000 _____ E:\Users\Roko\daemonprocess.txt 2013-12-01 12:43 - 2013-11-30 22:58 - 00000000 ____D E:\Users\Roko\AppData\Local\Google 2013-12-01 12:38 - 2013-12-01 12:35 - 00000000 ____D E:\Users\Roko\AppData\Local\ALLPlayer 2013-11-30 22:59 - 2013-11-09 12:07 - 00000000 ____D E:\Users\Roko\AppData\Local\Adobe 2013-11-27 20:43 - 2010-11-21 04:03 - 00000000 ____D E:\Gry 2013-11-27 10:54 - 2009-07-14 05:33 - 00414824 _____ E:\Windows\system32\FNTCACHE.DAT 2013-11-27 01:49 - 2013-11-09 23:11 - 00109216 _____ E:\Users\Roko\AppData\Local\GDIPFONTCACHEV1.DAT ==================== Bamital & volsnap Check ================= E:\Windows\explorer.exe => MD5 is legit E:\Windows\System32\winlogon.exe => MD5 is legit E:\Windows\System32\wininit.exe => MD5 is legit E:\Windows\System32\svchost.exe => MD5 is legit E:\Windows\System32\services.exe => MD5 is legit E:\Windows\System32\User32.dll => MD5 is legit E:\Windows\System32\userinit.exe => MD5 is legit E:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-12-21 13:36 ==================== End Of Log ============================