Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-08-2014 02
Ran by abc (administrator) on ABC-KOMPUTER on 02-09-2014 22:22:29
Running from C:\Users\abc\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(Actual Tools) C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe
(Actual Tools) C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter64.exe
(Actual Tools) C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsShellCenter64.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
() C:\Users\abc\AppData\Roaming\winvap.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
() C:\Users\abc\AppData\Roaming\nvidiadisp\nvidiadisp.exe
() C:\Users\abc\AppData\Roaming\c4sysmgr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2014-05-12] (Malwarebytes Corporation)
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\Run: [Actual Multiple Monitors] => C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe [1782576 2014-08-17] (Actual Tools)
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\Run: [Display] => C:\Users\abc\AppData\Roaming\c4sysmgr.exe [129536 2014-09-02] ()
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\Run: [Drivers] => C:\Users\abc\AppData\Roaming\c4sysmgr.exe [129536 2014-09-02] ()
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\Run: [svchost] => C:\ProgramData\svchost\hemxccape.exe [38182400 2014-09-02] ()
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_14_0_0_145_Plugin.exe [851632 2014-07-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\RunOnce: [svchost] => C:\ProgramData\svchost\hemxccape.exe [38182400 2014-09-02] ()
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\MountPoints2: {6ef7006b-f66d-11e3-8a25-005056c00008} - E:\AutoRun.exe
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\MountPoints2: {6ef7007a-f66d-11e3-8a25-005056c00008} - E:\AutoRun.exe
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\MountPoints2: {db573d21-ec02-11e3-9509-d6fbcfded313} - D:\Startme.exe
HKU\S-1-5-21-2069616815-3132189673-721496042-1000\...\MountPoints2: {e4e11fca-1c38-11e3-98f4-08606e7fa264} - D:\SETUP.EXE
Startup: C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Pomocnik logowania za pomocą konta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 10.0.1.1

FireFox:
========
FF ProfilePath: C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\xz69w8wq.default-1383609010264
FF NetworkProxy: "autoconfig_url", "https://mediahint.com/default.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2852 -> C:\Program Files (x86)\McFunSoft Video Capture Convert Burn Solution\codec\real\browser\plugins\nppl3260.dll No File
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.46 -> C:\Program Files (x86)\McFunSoft Video Capture Convert Burn Solution\codec\real\browser\plugins\nppl3260.dll No File
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1662 -> C:\Program Files (x86)\McFunSoft Video Capture Convert Burn Solution\codec\real\browser\plugins\nprpjplug.dll No File
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.46 -> C:\Program Files (x86)\McFunSoft Video Capture Convert Burn Solution\codec\real\browser\plugins\nprpjplug.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Extension: MEGA - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\xz69w8wq.default-1383609010264\Extensions\firefox@mega.co.nz.xpi [2014-08-05]
FF Extension: BetterTTV - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\xz69w8wq.default-1383609010264\Extensions\jid0-OeCFXKAPh2tC0bN3Li9ajRAZx6c@jetpack.xpi [2014-04-29]
FF Extension: Media Hint - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\xz69w8wq.default-1383609010264\Extensions\mediahint@jetpack.xpi [2013-11-11]
FF Extension: Stylish - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\xz69w8wq.default-1383609010264\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2013-12-11]
FF Extension: Adblock Plus - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\xz69w8wq.default-1383609010264\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-05]

Chrome: 
=======
CHR Profile: C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-23]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-01-14] () [File not signed]
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [107040 2014-06-17] (EasyAntiCheat Ltd)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-07-16] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-08-25] ()
S2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [14407384 2014-04-14] ()
S2 DisplayFusionService; "C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-16] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-07-01] (REALiX(tm))
U0 kiuijgy; C:\Windows\System32\drivers\xlaed.sys [79064 2014-09-01] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-02] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0122.sys [28768 2013-10-31] (SoftEther Project at University of Tsukuba, Japan.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [82048 2014-05-02] (VSO Software) [File not signed]
R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [38016 2013-01-10] (SteelSeries Corporation)
S3 SEE; C:\Windows\System32\drivers\see.sys [38240 2013-10-31] (SoftEther Project at University of Tsukuba, Japan.)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
U0 sscxwaom; C:\Windows\System32\drivers\kjwfcn.sys [79064 2014-09-02] (Malwarebytes Corporation)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-08-13] (Anchorfree Inc.)
S1 vflt; C:\Windows\System32\DRIVERS\vfilter.sys [24064 2013-07-01] (Shrew Soft Inc) [File not signed]
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [32472 2014-04-14] (VMware, Inc.)
S3 vnet; C:\Windows\System32\DRIVERS\virtualnet.sys [17408 2013-07-01] (Shrew Soft Inc) [File not signed]
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.)
U0 yyqxiup; C:\Windows\System32\drivers\myeix.sys [79064 2014-09-02] (Malwarebytes Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-02 22:22 - 2014-09-02 22:22 - 00019534 _____ () C:\Users\abc\Downloads\FRST.txt
2014-09-02 22:21 - 2014-09-02 22:21 - 00854417 _____ () C:\Users\abc\Downloads\SecurityCheck.exe
2014-09-02 22:20 - 2014-09-02 22:20 - 02104832 _____ (Farbar) C:\Users\abc\Downloads\FRST64.exe
2014-09-02 22:20 - 2014-09-02 22:20 - 00602112 _____ (OldTimer Tools) C:\Users\abc\Downloads\OTL.exe
2014-09-02 22:20 - 2014-09-02 22:20 - 00380416 _____ () C:\Users\abc\Downloads\gp9hwt87.exe
2014-09-02 22:00 - 2014-09-02 22:00 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\kjwfcn.sys
2014-09-02 21:40 - 2014-09-02 21:40 - 00000000 ____D () C:\Windows\pss
2014-09-02 21:16 - 2014-09-02 21:16 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\myeix.sys
2014-09-02 21:10 - 2014-09-02 21:10 - 00129536 _____ () C:\Users\abc\AppData\Roaming\c4sysmgr.exe
2014-09-02 21:09 - 2014-09-02 21:09 - 00033280 _____ () C:\Users\abc\AppData\Roaming\qpqpufaqwil.exe
2014-09-02 21:09 - 2014-09-02 21:09 - 00005120 _____ () C:\Users\abc\AppData\Roaming\winvap.exe
2014-09-02 21:09 - 2014-09-02 21:09 - 00000000 ____D () C:\Users\abc\AppData\Roaming\nvidiadisp
2014-09-02 21:08 - 2014-09-02 21:08 - 00000000 __SHD () C:\ProgramData\svchost
2014-09-01 19:23 - 2014-09-01 19:23 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\xlaed.sys
2014-09-01 18:23 - 2014-09-01 18:23 - 00094899 _____ () C:\Users\abc\Downloads\SpeedAutoClicker(1).zip
2014-09-01 18:17 - 2014-09-02 00:19 - 00000000 ____D () C:\Users\abc\Downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK
2014-08-31 19:41 - 2014-08-31 19:41 - 00000000 ____D () C:\Users\abc\AppData\Local\fabi.me
2014-08-31 19:40 - 2014-09-01 23:20 - 00000000 ____D () C:\Users\abc\Downloads\SpeedAutoClicker
2014-08-31 19:40 - 2014-08-31 19:40 - 00094899 _____ () C:\Users\abc\Downloads\SpeedAutoClicker.zip
2014-08-30 16:48 - 2014-08-30 16:48 - 00000000 ____D () C:\Users\abc\Downloads\League of Legends extraqt wallpapers
2014-08-30 16:45 - 2014-08-30 16:46 - 29609345 _____ () C:\Users\abc\Downloads\League of Legends extraqt wallpapers.rar
2014-08-30 00:50 - 2014-08-30 00:51 - 01397992 _____ () C:\Users\abc\Downloads\battlelog-web-plugins_2.5.0_148.exe
2014-08-28 18:20 - 2014-08-28 18:21 - 15391888 _____ () C:\Users\abc\Downloads\mumble-1.2.8_plus_MumbleComSkin.exe
2014-08-28 04:25 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 04:25 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 04:25 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-27 13:35 - 2014-08-27 13:35 - 02249144 _____ () C:\Users\abc\Downloads\battlelog-web-plugins_2.4.0_147.exe
2014-08-26 16:16 - 2014-08-26 16:20 - 09092269 _____ () C:\Users\abc\Downloads\DBL_1.89.9d_2.rar
2014-08-26 11:34 - 2014-08-26 11:34 - 00000000 ____D () C:\Users\abc\Downloads\bl_.exe_.dll
2014-08-26 11:32 - 2014-08-26 11:33 - 07466794 _____ () C:\Users\abc\Downloads\bl_.exe_.dll.zip
2014-08-26 11:27 - 2014-08-26 11:29 - 00000000 ____D () C:\bol
2014-08-26 11:24 - 2014-08-26 11:25 - 10339653 _____ () C:\Users\abc\Downloads\BoL+Studio.rar
2014-08-25 21:58 - 2014-09-02 21:21 - 00000000 ____D () C:\Users\abc\AppData\Roaming\NVIDIA
2014-08-25 21:52 - 2014-08-25 21:52 - 00292184 _____ (Microsoft Corporation) C:\Users\abc\Downloads\dxwebsetup.exe
2014-08-25 20:15 - 2014-08-25 20:15 - 00000000 ____D () C:\Users\abc\Documents\Electronic Arts
2014-08-25 17:17 - 2014-08-25 17:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-08-25 17:17 - 2014-07-25 16:01 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-08-25 17:17 - 2014-07-25 16:01 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-08-25 17:17 - 2014-07-25 16:01 - 01283136 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-08-25 17:17 - 2014-07-25 16:01 - 01126480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-08-25 17:17 - 2014-07-02 19:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-08-25 17:13 - 2014-08-11 22:31 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-08-25 17:13 - 2014-08-11 22:31 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-08-25 17:13 - 2014-08-11 22:31 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 31512520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 24196896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 22994208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 18626304 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 17555104 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 16122344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 15294296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 14498552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 13922752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 13835208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 12866008 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-08-25 17:13 - 2014-07-02 22:48 - 11283344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 11222048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 04247000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 03989960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 03196816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 02814656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00965312 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00944928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00907096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00903624 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00869152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00846832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00502232 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00418760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00391640 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00348120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-08-25 17:13 - 2014-07-02 22:48 - 00026353 _____ () C:\Windows\system32\nvinfo.pb
2014-08-25 17:13 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-08-25 17:13 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-08-25 17:13 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-08-25 17:12 - 2014-07-02 22:48 - 00075040 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-08-25 17:12 - 2014-07-02 22:48 - 00061912 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-08-25 17:12 - 2014-07-02 20:55 - 06783776 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-08-25 17:12 - 2014-07-02 20:55 - 03522392 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-08-25 17:12 - 2014-07-02 20:55 - 02559960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-08-25 17:12 - 2014-07-02 20:55 - 00935368 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-08-25 17:12 - 2014-07-02 20:55 - 00386520 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-08-25 17:12 - 2014-07-02 20:55 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-08-25 17:12 - 2014-07-02 12:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin
2014-08-25 17:11 - 2014-08-25 17:11 - 00000000 ____D () C:\NVIDIA
2014-08-25 16:58 - 2014-08-25 16:58 - 01502423 _____ () C:\Users\abc\Downloads\DC3Setup_33(dobreprogramy.pl).zip
2014-08-25 16:58 - 2014-08-25 16:58 - 00001939 _____ () C:\Users\abc\Desktop\Driver Cleaner 3.lnk
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\Users\abc\Downloads\DC3Setup_33(dobreprogramy.pl)
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\Program Files (x86)\Driver Cleaner
2014-08-25 16:57 - 2014-08-25 17:07 - 274075712 _____ (NVIDIA Corporation) C:\Users\abc\Desktop\340.52-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-08-25 16:52 - 2014-08-25 16:52 - 00939304 _____ () C:\Windows\Minidump\082514-24320-01.dmp
2014-08-25 15:58 - 2014-08-25 16:00 - 68744064 _____ (SiSoftware ) C:\Users\abc\Downloads\san2014-2042.exe
2014-08-25 15:56 - 2014-08-25 15:56 - 00001122 _____ () C:\Users\abc\Desktop\EVEREST Ultimate Edition.lnk
2014-08-25 15:56 - 2014-08-25 15:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2014-08-25 15:56 - 2014-08-25 15:56 - 00000000 ____D () C:\Program Files (x86)\Lavalys
2014-08-25 15:55 - 2014-08-25 15:55 - 10255080 _____ (Lavalys, Inc. ) C:\Users\abc\Downloads\everestultimate550_www.INSTALKI.pl.exe
2014-08-25 15:53 - 2014-08-25 15:53 - 00001007 _____ () C:\Users\abc\Desktop\SpeedFan.lnk
2014-08-25 15:53 - 2014-08-25 15:53 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2014-08-25 15:52 - 2014-08-25 15:52 - 02174848 _____ () C:\Users\abc\Downloads\instsf450.exe
2014-08-25 14:02 - 2014-08-25 14:02 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-08-25 12:56 - 2014-08-25 12:56 - 00000000 ____D () C:\Users\abc\Documents\Battlefield 3
2014-08-25 12:40 - 2014-08-30 00:51 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-08-25 12:40 - 2014-08-25 12:40 - 02247976 _____ () C:\Users\abc\Downloads\battlelog-web-plugins_2.4.0_145.exe
2014-08-25 12:39 - 2014-08-25 12:39 - 00001170 _____ () C:\Users\Public\Desktop\Battlefield 3.lnk
2014-08-25 12:39 - 2014-08-25 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
2014-08-24 22:42 - 2014-08-24 22:42 - 00000323 _____ () C:\Users\abc\Downloads\ROCKRADIO.COM - Modern Rock.pls
2014-08-23 22:20 - 2014-08-23 22:20 - 00000000 ____D () C:\Users\abc\AppData\Local\Supraball_Launcher
2014-08-21 00:46 - 2014-08-21 00:46 - 00001902 _____ () C:\Users\abc\Desktop\Supraball.lnk
2014-08-21 00:46 - 2014-08-21 00:46 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supraball
2014-08-21 00:16 - 2014-08-21 00:21 - 234645093 _____ () C:\Users\abc\Downloads\supraball_0.2.9.exe
2014-08-19 02:46 - 2014-08-19 02:46 - 01058200 _____ (Adobe) C:\Users\abc\Downloads\install_flashplayer14x32au_mssd_aaa_aih.exe
2014-08-19 02:28 - 2014-08-19 02:28 - 00640833 _____ () C:\Users\abc\Downloads\fb_bot.exe
2014-08-19 01:37 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-19 01:37 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-19 01:37 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-19 01:37 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-19 01:37 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-19 01:37 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-19 01:37 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-19 01:37 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-19 01:37 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-19 01:37 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-19 01:37 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-19 01:37 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-19 01:37 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-19 01:37 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-19 00:19 - 2014-08-19 00:19 - 00000000 ____D () C:\Users\abc\Downloads\adasd
2014-08-18 23:35 - 2014-08-18 23:35 - 00052580 _____ () C:\Users\abc\Downloads\Switch-Bot.zip
2014-08-18 23:35 - 2014-08-18 23:35 - 00000000 ____D () C:\Users\abc\Downloads\Switch-Bot
2014-08-18 03:54 - 2014-08-18 03:54 - 00002320 _____ () C:\Users\Public\Desktop\The Sims™ 3 Po zmroku.lnk
2014-08-18 03:10 - 2014-08-18 03:10 - 00002248 _____ () C:\Users\Public\Desktop\The Sims™ 3 Nowoczesny apartament Akcesoria.lnk
2014-08-18 02:04 - 2014-08-18 02:03 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2014-08-17 23:25 - 2014-08-25 12:39 - 00000000 ____D () C:\Users\abc\AppData\Local\Origin
2014-08-17 23:25 - 2014-08-23 14:43 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-08-17 23:22 - 2014-09-02 16:23 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-08-17 23:22 - 2014-08-17 23:22 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-08-17 23:22 - 2014-08-17 23:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-08-17 23:20 - 2014-08-17 23:20 - 17090912 _____ (Electronic Arts, Inc.) C:\Users\abc\Downloads\OriginThinSetup.exe
2014-08-17 15:23 - 2014-08-17 15:24 - 00000000 ____D () C:\Program Files (x86)\Actual Multiple Monitors
2014-08-17 15:23 - 2014-08-17 15:23 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Actual Multiple Monitors
2014-08-17 15:23 - 2014-08-17 15:23 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Actual Tools
2014-08-17 15:23 - 2014-08-17 15:23 - 00000000 ____D () C:\ProgramData\Actual Tools
2014-08-17 15:16 - 2014-08-17 15:16 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Realtime Soft
2014-08-17 15:03 - 2014-08-17 15:04 - 03154944 _____ () C:\Users\abc\Downloads\UltraMon_3.2.2_en_x64.msi
2014-08-17 14:55 - 2014-08-17 14:55 - 00000000 ____D () C:\Users\abc\Downloads\Binary Fortress Software DisplayFusion Pro v4.3.0 With Keygen
2014-08-17 14:54 - 2014-08-17 14:55 - 05887604 _____ () C:\Users\abc\Downloads\Binary Fortress Software DisplayFusion Pro v4.3.0 With Keygen.rar
2014-08-17 14:49 - 2014-08-17 14:49 - 00000000 ____D () C:\ProgramData\Binary Fortress Software
2014-08-16 02:13 - 2014-08-16 02:15 - 05505547 _____ () C:\Users\abc\Downloads\Python_MobberHack_v3_by_Misiekantos253.rar
2014-08-16 01:18 - 2014-08-16 01:22 - 06768733 _____ () C:\Users\abc\Downloads\adasd.rar
2014-08-16 01:18 - 2014-08-16 01:18 - 00000000 ____D () C:\Users\abc\Downloads\metinmobber
2014-08-15 15:20 - 2014-08-15 15:20 - 00000000 ____D () C:\Users\abc\Downloads\Python_MobberHack_v3_by_Misiekantos253
2014-08-15 15:14 - 2014-08-15 15:14 - 00000000 ____D () C:\Users\abc\Downloads\Metin2_lib
2014-08-15 03:01 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-15 03:01 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-15 03:01 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-15 03:01 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-15 03:01 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-15 03:01 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-15 03:00 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-15 03:00 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 00:35 - 2014-08-14 00:35 - 00000181 _____ () C:\Users\abc\Downloads\eska.pls
2014-08-14 00:35 - 2014-08-14 00:35 - 00000118 _____ () C:\Users\abc\Downloads\t042-1.mp3.pls
2014-08-14 00:24 - 2014-08-14 00:24 - 00000388 _____ () C:\Users\abc\Downloads\rmfmaxxx_aacp.pls
2014-08-13 21:36 - 2014-08-13 21:37 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-08-13 21:36 - 2014-08-13 21:36 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-08-13 21:36 - 2014-08-13 21:36 - 00000000 ____D () C:\Users\abc\Downloads\Virtual Audio Cable 4.10
2014-08-13 21:36 - 2014-08-13 21:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-08-13 21:35 - 2014-08-13 21:35 - 00380331 _____ () C:\Users\abc\Downloads\Virtual Audio Cable 4.10.rar
2014-08-13 11:16 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 11:16 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-13 11:16 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 11:16 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 11:16 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 11:16 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-13 11:16 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 11:16 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 11:16 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 11:16 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 11:16 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 11:16 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 11:16 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 11:16 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-13 11:16 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 11:16 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 11:16 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 11:16 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 11:16 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 11:16 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 11:16 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-13 11:16 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-13 11:16 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-13 11:16 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-13 11:16 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 11:16 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 11:16 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-13 11:16 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 11:16 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-13 11:16 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 11:16 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-13 11:16 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-13 11:16 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 11:16 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-13 11:16 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-13 11:16 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-13 11:16 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-13 11:16 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 11:16 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-13 11:16 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 11:16 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 11:16 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 11:16 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-13 11:16 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-13 11:16 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-13 11:16 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 11:16 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-13 11:16 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-13 11:16 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-13 11:16 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-13 11:16 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 11:16 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 11:16 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 11:16 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-13 11:16 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-13 11:16 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-13 11:16 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 11:16 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-13 11:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 11:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 11:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 11:16 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 11:16 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 11:16 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-13 11:16 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-13 11:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-13 11:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-13 11:16 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-13 11:16 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 11:16 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-13 11:16 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-13 11:16 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-13 11:16 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 11:16 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 11:16 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 11:16 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-13 11:16 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 11:16 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-13 11:16 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-13 11:16 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-13 11:13 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 11:13 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-13 11:13 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 11:13 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-12 19:13 - 2014-08-31 11:14 - 00000618 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-08-12 19:13 - 2014-08-31 11:14 - 00000529 _____ () C:\Windows\system32\Drivers\etc\hosts.ics.bak
2014-08-12 18:53 - 2014-08-12 19:04 - 00000000 ____D () C:\Program Files (x86)\XenoBot
2014-08-12 18:52 - 2014-08-12 18:52 - 05901824 _____ () C:\Users\abc\Downloads\setup.msi
2014-08-12 18:44 - 2014-08-12 18:44 - 00000000 ____D () C:\Users\abc\Downloads\ApophisBreaker_v5
2014-08-12 18:43 - 2014-08-12 18:44 - 00957084 _____ () C:\Users\abc\Downloads\ApophisBreaker_v5.rar
2014-08-10 21:58 - 2014-08-10 21:58 - 00652376 _____ () C:\Windows\Minidump\081014-21964-01.dmp
2014-08-10 21:13 - 2014-08-10 21:13 - 00003520 _____ () C:\Users\abc\Downloads\OFFLINE-ONLY_Project_Orion_3k_Extended_Box.rar
2014-08-10 21:13 - 2014-08-10 21:13 - 00000000 ____D () C:\Users\abc\Downloads\OFFLINE-ONLY_Project_Orion_3k_Extended_Box
2014-08-10 14:39 - 2014-09-02 22:00 - 00000000 ____D () C:\Users\abc\Downloads\SimCity 5 Cities Of Tomorrow Offline Trainer +13
2014-08-10 14:39 - 2014-08-10 14:39 - 00000000 ____D () C:\Users\abc\Documents\My Cheat Tables
2014-08-10 13:46 - 2014-08-10 13:46 - 00000000 ____D () C:\Users\abc\Downloads\5mis
2014-08-10 13:30 - 2014-08-10 13:45 - 91394086 _____ () C:\Users\abc\Downloads\5mis.7z
2014-08-10 13:14 - 2014-08-10 13:14 - 00000000 ____D () C:\Users\abc\Documents\SimCity
2014-08-10 13:12 - 2014-08-10 13:12 - 00001290 _____ () C:\Users\abc\Desktop\SimCity.lnk
2014-08-10 13:12 - 2014-08-10 13:12 - 00000000 ____D () C:\Users\abc\AppData\Roaming\SimCity
2014-08-10 13:12 - 2014-08-10 13:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2014-08-10 13:09 - 2014-08-10 13:09 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2014-08-08 11:27 - 2014-09-02 22:10 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-08 11:27 - 2014-08-08 11:27 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-08 11:27 - 2014-08-08 11:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-08 11:27 - 2014-08-08 11:27 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-08 11:27 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-06 09:34 - 2014-08-06 09:34 - 00013305 _____ () C:\Users\abc\Downloads\[EK]thaisNorthCycs(1).xbst
2014-08-06 09:34 - 2014-08-06 09:34 - 00011299 _____ () C:\Users\abc\Downloads\[EK]thaisNorthCycs.lua
2014-08-05 19:32 - 2014-08-05 19:32 - 00000000 ____D () C:\Users\abc\Desktop\ShivaMt2 Official 24.07.2014
2014-08-04 08:41 - 2014-08-04 08:41 - 00011348 _____ () C:\Users\abc\Downloads\[ALL]thaisWasps.lua
2014-08-04 08:41 - 2014-08-04 08:41 - 00010728 _____ () C:\Users\abc\Downloads\[ALL]thaisWasps.xbst
2014-08-04 08:15 - 2014-08-04 08:15 - 00013305 _____ () C:\Users\abc\Downloads\[EK]thaisNorthCycs.xbst
2014-08-03 15:26 - 2014-08-03 15:26 - 00017209 _____ () C:\Users\abc\Downloads\[EK]carlinNorthDwarfs.xbst
2014-08-03 15:25 - 2014-08-03 15:27 - 00007744 _____ () C:\Users\abc\Downloads\[EK]carlinNorthDwarfs.lua
2014-08-03 15:23 - 2014-08-03 15:23 - 00018469 _____ () C:\Users\abc\Downloads\Cyclops (South).xbst
2014-08-03 15:23 - 2014-08-03 15:23 - 00005913 _____ () C:\Users\abc\Downloads\Cyclops (South).lua

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-02 22:22 - 2014-09-02 22:22 - 00019534 _____ () C:\Users\abc\Downloads\FRST.txt
2014-09-02 22:22 - 2013-10-31 15:54 - 00000000 ____D () C:\FRST
2014-09-02 22:21 - 2014-09-02 22:21 - 00854417 _____ () C:\Users\abc\Downloads\SecurityCheck.exe
2014-09-02 22:20 - 2014-09-02 22:20 - 02104832 _____ (Farbar) C:\Users\abc\Downloads\FRST64.exe
2014-09-02 22:20 - 2014-09-02 22:20 - 00602112 _____ (OldTimer Tools) C:\Users\abc\Downloads\OTL.exe
2014-09-02 22:20 - 2014-09-02 22:20 - 00380416 _____ () C:\Users\abc\Downloads\gp9hwt87.exe
2014-09-02 22:10 - 2014-08-08 11:27 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-02 22:06 - 2014-03-29 12:11 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-02 22:01 - 2013-09-23 15:15 - 00001042 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-02 22:00 - 2014-09-02 22:00 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\kjwfcn.sys
2014-09-02 22:00 - 2014-08-10 14:39 - 00000000 ____D () C:\Users\abc\Downloads\SimCity 5 Cities Of Tomorrow Offline Trainer +13
2014-09-02 21:40 - 2014-09-02 21:40 - 00000000 ____D () C:\Windows\pss
2014-09-02 21:21 - 2014-08-25 21:58 - 00000000 ____D () C:\Users\abc\AppData\Roaming\NVIDIA
2014-09-02 21:16 - 2014-09-02 21:16 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\myeix.sys
2014-09-02 21:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Cursors
2014-09-02 21:13 - 2014-08-01 14:21 - 00000000 ____D () C:\Users\abc\AppData\Local\CrashDumps
2014-09-02 21:11 - 2013-07-25 23:05 - 00000000 ____D () C:\Users\abc\AppData\Roaming\uTorrent
2014-09-02 21:10 - 2014-09-02 21:10 - 00129536 _____ () C:\Users\abc\AppData\Roaming\c4sysmgr.exe
2014-09-02 21:09 - 2014-09-02 21:09 - 00033280 _____ () C:\Users\abc\AppData\Roaming\qpqpufaqwil.exe
2014-09-02 21:09 - 2014-09-02 21:09 - 00005120 _____ () C:\Users\abc\AppData\Roaming\winvap.exe
2014-09-02 21:09 - 2014-09-02 21:09 - 00000000 ____D () C:\Users\abc\AppData\Roaming\nvidiadisp
2014-09-02 21:08 - 2014-09-02 21:08 - 00000000 __SHD () C:\ProgramData\svchost
2014-09-02 21:07 - 2014-04-11 11:03 - 00000000 ____D () C:\Users\abc\Desktop\edyta
2014-09-02 20:19 - 2013-11-01 17:37 - 00000000 ____D () C:\Users\abc\AppData\Local\PMB Files
2014-09-02 19:54 - 2013-04-19 20:44 - 00000000 ____D () C:\Users\abc\AppData\Roaming\TS3Client
2014-09-02 16:23 - 2014-08-17 23:22 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-09-02 16:23 - 2013-05-09 15:02 - 00000000 ____D () C:\ProgramData\Origin
2014-09-02 15:07 - 2014-06-17 00:31 - 00027688 _____ () C:\Windows\setupact.log
2014-09-02 14:57 - 2009-04-17 00:23 - 01531335 _____ () C:\Windows\WindowsUpdate.log
2014-09-02 04:05 - 2009-07-14 06:45 - 00029136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-02 04:05 - 2009-07-14 06:45 - 00029136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-02 03:01 - 2013-09-23 15:15 - 00001038 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-02 00:19 - 2014-09-01 18:17 - 00000000 ____D () C:\Users\abc\Downloads\The SIMS 4-Deluxe Edition-SKIDROWCRACK
2014-09-01 23:20 - 2014-08-31 19:40 - 00000000 ____D () C:\Users\abc\Downloads\SpeedAutoClicker
2014-09-01 19:23 - 2014-09-01 19:23 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\xlaed.sys
2014-09-01 19:23 - 2009-07-14 07:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-09-01 18:49 - 2013-04-20 18:47 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-09-01 18:23 - 2014-09-01 18:23 - 00094899 _____ () C:\Users\abc\Downloads\SpeedAutoClicker(1).zip
2014-08-31 19:41 - 2014-08-31 19:41 - 00000000 ____D () C:\Users\abc\AppData\Local\fabi.me
2014-08-31 19:40 - 2014-08-31 19:40 - 00094899 _____ () C:\Users\abc\Downloads\SpeedAutoClicker.zip
2014-08-31 11:14 - 2014-08-12 19:13 - 00000618 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-08-31 11:14 - 2014-08-12 19:13 - 00000529 _____ () C:\Windows\system32\Drivers\etc\hosts.ics.bak
2014-08-30 16:48 - 2014-08-30 16:48 - 00000000 ____D () C:\Users\abc\Downloads\League of Legends extraqt wallpapers
2014-08-30 16:48 - 2013-09-23 20:43 - 00000000 ____D () C:\Users\abc\Documents\Motyw
2014-08-30 16:46 - 2014-08-30 16:45 - 29609345 _____ () C:\Users\abc\Downloads\League of Legends extraqt wallpapers.rar
2014-08-30 13:30 - 2013-05-10 14:12 - 00297088 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-08-30 13:30 - 2013-05-10 14:07 - 00297088 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-08-30 13:30 - 2013-05-10 08:53 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-08-30 00:51 - 2014-08-30 00:50 - 01397992 _____ () C:\Users\abc\Downloads\battlelog-web-plugins_2.5.0_148.exe
2014-08-30 00:51 - 2014-08-25 12:40 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-08-29 23:04 - 2013-11-01 17:37 - 00000000 ____D () C:\ProgramData\PMB Files
2014-08-29 21:56 - 2014-07-09 22:28 - 00000000 ____D () C:\Program Files (x86)\Tibia
2014-08-29 12:29 - 2014-03-23 13:57 - 00000000 ____D () C:\Users\abc\AppData\Local\LogMeIn Hamachi
2014-08-29 03:53 - 2013-11-15 05:02 - 00000000 ____D () C:\Windows\rescache
2014-08-29 03:16 - 2014-06-17 15:08 - 00000000 ____D () C:\ProgramData\VMware
2014-08-29 03:16 - 2013-04-20 14:18 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-29 03:16 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-29 03:16 - 2009-07-14 06:45 - 00409640 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-28 22:52 - 2013-11-01 16:37 - 00000000 ____D () C:\Users\abc\AppData\Local\NVIDIA
2014-08-28 21:52 - 2013-12-29 15:04 - 00000000 ____D () C:\Users\abc\AppData\Local\screenSHU
2014-08-28 18:21 - 2014-08-28 18:20 - 15391888 _____ () C:\Users\abc\Downloads\mumble-1.2.8_plus_MumbleComSkin.exe
2014-08-27 13:35 - 2014-08-27 13:35 - 02249144 _____ () C:\Users\abc\Downloads\battlelog-web-plugins_2.4.0_147.exe
2014-08-26 19:32 - 2014-02-27 21:22 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2014-08-26 16:20 - 2014-08-26 16:16 - 09092269 _____ () C:\Users\abc\Downloads\DBL_1.89.9d_2.rar
2014-08-26 11:38 - 2013-07-28 04:29 - 00000000 ____D () C:\Users\abc\AppData\Roaming\BoL
2014-08-26 11:34 - 2014-08-26 11:34 - 00000000 ____D () C:\Users\abc\Downloads\bl_.exe_.dll
2014-08-26 11:33 - 2014-08-26 11:32 - 07466794 _____ () C:\Users\abc\Downloads\bl_.exe_.dll.zip
2014-08-26 11:29 - 2014-08-26 11:27 - 00000000 ____D () C:\bol
2014-08-26 11:25 - 2014-08-26 11:24 - 10339653 _____ () C:\Users\abc\Downloads\BoL+Studio.rar
2014-08-25 21:53 - 2013-05-30 19:59 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-25 21:53 - 2013-05-30 19:59 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-08-25 21:53 - 2013-04-17 16:07 - 00000000 ____D () C:\Temp
2014-08-25 21:52 - 2014-08-25 21:52 - 00292184 _____ (Microsoft Corporation) C:\Users\abc\Downloads\dxwebsetup.exe
2014-08-25 20:15 - 2014-08-25 20:15 - 00000000 ____D () C:\Users\abc\Documents\Electronic Arts
2014-08-25 20:14 - 2013-11-01 16:44 - 00000000 ____D () C:\Users\abc\AppData\Local\NVIDIA Corporation
2014-08-25 17:46 - 2014-07-01 08:42 - 00055191 _____ () C:\Windows\DirectX.log
2014-08-25 17:22 - 2011-04-12 15:21 - 00742820 _____ () C:\Windows\system32\perfh015.dat
2014-08-25 17:22 - 2011-04-12 15:21 - 00156920 _____ () C:\Windows\system32\perfc015.dat
2014-08-25 17:22 - 2009-07-14 07:13 - 01677532 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-25 17:20 - 2014-08-25 17:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-08-25 17:17 - 2013-04-17 16:18 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-08-25 17:17 - 2013-04-17 16:17 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-08-25 17:17 - 2013-04-17 16:08 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-08-25 17:12 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-08-25 17:11 - 2014-08-25 17:11 - 00000000 ____D () C:\NVIDIA
2014-08-25 17:07 - 2014-08-25 16:57 - 274075712 _____ (NVIDIA Corporation) C:\Users\abc\Desktop\340.52-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-08-25 16:58 - 2014-08-25 16:58 - 01502423 _____ () C:\Users\abc\Downloads\DC3Setup_33(dobreprogramy.pl).zip
2014-08-25 16:58 - 2014-08-25 16:58 - 00001939 _____ () C:\Users\abc\Desktop\Driver Cleaner 3.lnk
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\Users\abc\Downloads\DC3Setup_33(dobreprogramy.pl)
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2014-08-25 16:58 - 2014-08-25 16:58 - 00000000 ____D () C:\Program Files (x86)\Driver Cleaner
2014-08-25 16:52 - 2014-08-25 16:52 - 00939304 _____ () C:\Windows\Minidump\082514-24320-01.dmp
2014-08-25 16:52 - 2013-09-10 17:39 - 00000000 ____D () C:\Windows\Minidump
2014-08-25 16:00 - 2014-08-25 15:58 - 68744064 _____ (SiSoftware ) C:\Users\abc\Downloads\san2014-2042.exe
2014-08-25 15:56 - 2014-08-25 15:56 - 00001122 _____ () C:\Users\abc\Desktop\EVEREST Ultimate Edition.lnk
2014-08-25 15:56 - 2014-08-25 15:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2014-08-25 15:56 - 2014-08-25 15:56 - 00000000 ____D () C:\Program Files (x86)\Lavalys
2014-08-25 15:55 - 2014-08-25 15:55 - 10255080 _____ (Lavalys, Inc. ) C:\Users\abc\Downloads\everestultimate550_www.INSTALKI.pl.exe
2014-08-25 15:53 - 2014-08-25 15:53 - 00001007 _____ () C:\Users\abc\Desktop\SpeedFan.lnk
2014-08-25 15:53 - 2014-08-25 15:53 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2014-08-25 15:53 - 2014-02-27 21:22 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo
2014-08-25 15:52 - 2014-08-25 15:52 - 02174848 _____ () C:\Users\abc\Downloads\instsf450.exe
2014-08-25 14:02 - 2014-08-25 14:02 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-08-25 13:01 - 2013-05-10 14:12 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-08-25 12:56 - 2014-08-25 12:56 - 00000000 ____D () C:\Users\abc\Documents\Battlefield 3
2014-08-25 12:40 - 2014-08-25 12:40 - 02247976 _____ () C:\Users\abc\Downloads\battlelog-web-plugins_2.4.0_145.exe
2014-08-25 12:39 - 2014-08-25 12:39 - 00001170 _____ () C:\Users\Public\Desktop\Battlefield 3.lnk
2014-08-25 12:39 - 2014-08-25 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
2014-08-25 12:39 - 2014-08-17 23:25 - 00000000 ____D () C:\Users\abc\AppData\Local\Origin
2014-08-25 12:39 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-24 22:42 - 2014-08-24 22:42 - 00000323 _____ () C:\Users\abc\Downloads\ROCKRADIO.COM - Modern Rock.pls
2014-08-23 22:20 - 2014-08-23 22:20 - 00000000 ____D () C:\Users\abc\AppData\Local\Supraball_Launcher
2014-08-23 22:20 - 2014-05-16 18:59 - 00000000 ____D () C:\Program Files (x86)\Supraball
2014-08-23 14:43 - 2014-08-17 23:25 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-08-23 14:43 - 2013-04-17 16:03 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-23 04:07 - 2014-08-28 04:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 03:45 - 2014-08-28 04:25 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-23 02:59 - 2014-08-28 04:25 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 00:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-21 00:46 - 2014-08-21 00:46 - 00001902 _____ () C:\Users\abc\Desktop\Supraball.lnk
2014-08-21 00:46 - 2014-08-21 00:46 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supraball
2014-08-21 00:21 - 2014-08-21 00:16 - 234645093 _____ () C:\Users\abc\Downloads\supraball_0.2.9.exe
2014-08-20 00:40 - 2013-10-27 17:49 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Winamp
2014-08-19 02:46 - 2014-08-19 02:46 - 01058200 _____ (Adobe) C:\Users\abc\Downloads\install_flashplayer14x32au_mssd_aaa_aih.exe
2014-08-19 02:45 - 2014-06-18 00:19 - 00012176 _____ () C:\Windows\PFRO.log
2014-08-19 02:28 - 2014-08-19 02:28 - 00640833 _____ () C:\Users\abc\Downloads\fb_bot.exe
2014-08-19 00:19 - 2014-08-19 00:19 - 00000000 ____D () C:\Users\abc\Downloads\adasd
2014-08-18 23:35 - 2014-08-18 23:35 - 00052580 _____ () C:\Users\abc\Downloads\Switch-Bot.zip
2014-08-18 23:35 - 2014-08-18 23:35 - 00000000 ____D () C:\Users\abc\Downloads\Switch-Bot
2014-08-18 03:54 - 2014-08-18 03:54 - 00002320 _____ () C:\Users\Public\Desktop\The Sims™ 3 Po zmroku.lnk
2014-08-18 03:10 - 2014-08-18 03:10 - 00002248 _____ () C:\Users\Public\Desktop\The Sims™ 3 Nowoczesny apartament Akcesoria.lnk
2014-08-18 02:03 - 2014-08-18 02:04 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2014-08-17 23:22 - 2014-08-17 23:22 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-08-17 23:22 - 2014-08-17 23:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-08-17 23:20 - 2014-08-17 23:20 - 17090912 _____ (Electronic Arts, Inc.) C:\Users\abc\Downloads\OriginThinSetup.exe
2014-08-17 15:24 - 2014-08-17 15:23 - 00000000 ____D () C:\Program Files (x86)\Actual Multiple Monitors
2014-08-17 15:23 - 2014-08-17 15:23 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Actual Multiple Monitors
2014-08-17 15:23 - 2014-08-17 15:23 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Actual Tools
2014-08-17 15:23 - 2014-08-17 15:23 - 00000000 ____D () C:\ProgramData\Actual Tools
2014-08-17 15:16 - 2014-08-17 15:16 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Realtime Soft
2014-08-17 15:06 - 2014-07-16 15:16 - 00000000 ____D () C:\Program Files (x86)\DisplayFusion
2014-08-17 15:04 - 2014-08-17 15:03 - 03154944 _____ () C:\Users\abc\Downloads\UltraMon_3.2.2_en_x64.msi
2014-08-17 14:55 - 2014-08-17 14:55 - 00000000 ____D () C:\Users\abc\Downloads\Binary Fortress Software DisplayFusion Pro v4.3.0 With Keygen
2014-08-17 14:55 - 2014-08-17 14:54 - 05887604 _____ () C:\Users\abc\Downloads\Binary Fortress Software DisplayFusion Pro v4.3.0 With Keygen.rar
2014-08-17 14:55 - 2014-07-16 15:16 - 00000000 ____D () C:\Users\abc\Documents\DisplayFusion Backups
2014-08-17 14:49 - 2014-08-17 14:49 - 00000000 ____D () C:\ProgramData\Binary Fortress Software
2014-08-16 02:15 - 2014-08-16 02:13 - 05505547 _____ () C:\Users\abc\Downloads\Python_MobberHack_v3_by_Misiekantos253.rar
2014-08-16 01:22 - 2014-08-16 01:18 - 06768733 _____ () C:\Users\abc\Downloads\adasd.rar
2014-08-16 01:18 - 2014-08-16 01:18 - 00000000 ____D () C:\Users\abc\Downloads\metinmobber
2014-08-15 15:20 - 2014-08-15 15:20 - 00000000 ____D () C:\Users\abc\Downloads\Python_MobberHack_v3_by_Misiekantos253
2014-08-15 15:14 - 2014-08-15 15:14 - 00000000 ____D () C:\Users\abc\Downloads\Metin2_lib
2014-08-15 03:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-15 03:10 - 2013-09-13 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-15 03:06 - 2013-07-31 21:54 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-15 03:04 - 2013-05-01 12:32 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-15 03:00 - 2014-05-07 02:02 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 00:35 - 2014-08-14 00:35 - 00000181 _____ () C:\Users\abc\Downloads\eska.pls
2014-08-14 00:35 - 2014-08-14 00:35 - 00000118 _____ () C:\Users\abc\Downloads\t042-1.mp3.pls
2014-08-14 00:24 - 2014-08-14 00:24 - 00000388 _____ () C:\Users\abc\Downloads\rmfmaxxx_aacp.pls
2014-08-13 21:37 - 2014-08-13 21:36 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-08-13 21:36 - 2014-08-13 21:36 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-08-13 21:36 - 2014-08-13 21:36 - 00000000 ____D () C:\Users\abc\Downloads\Virtual Audio Cable 4.10
2014-08-13 21:36 - 2014-08-13 21:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-08-13 21:35 - 2014-08-13 21:35 - 00380331 _____ () C:\Users\abc\Downloads\Virtual Audio Cable 4.10.rar
2014-08-12 19:04 - 2014-08-12 18:53 - 00000000 ____D () C:\Program Files (x86)\XenoBot
2014-08-12 18:53 - 2014-07-28 12:21 - 00001953 _____ () C:\Users\abc\Desktop\XenoSuite.lnk
2014-08-12 18:53 - 2014-07-28 12:21 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XenoBot
2014-08-12 18:52 - 2014-08-12 18:52 - 05901824 _____ () C:\Users\abc\Downloads\setup.msi
2014-08-12 18:52 - 2014-07-28 12:21 - 00000000 ____D () C:\XenoBot
2014-08-12 18:44 - 2014-08-12 18:44 - 00000000 ____D () C:\Users\abc\Downloads\ApophisBreaker_v5
2014-08-12 18:44 - 2014-08-12 18:43 - 00957084 _____ () C:\Users\abc\Downloads\ApophisBreaker_v5.rar
2014-08-11 22:31 - 2014-08-25 17:13 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-08-11 22:31 - 2014-08-25 17:13 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-08-11 22:31 - 2014-08-25 17:13 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-08-10 21:58 - 2014-08-10 21:58 - 00652376 _____ () C:\Windows\Minidump\081014-21964-01.dmp
2014-08-10 21:13 - 2014-08-10 21:13 - 00003520 _____ () C:\Users\abc\Downloads\OFFLINE-ONLY_Project_Orion_3k_Extended_Box.rar
2014-08-10 21:13 - 2014-08-10 21:13 - 00000000 ____D () C:\Users\abc\Downloads\OFFLINE-ONLY_Project_Orion_3k_Extended_Box
2014-08-10 14:39 - 2014-08-10 14:39 - 00000000 ____D () C:\Users\abc\Documents\My Cheat Tables
2014-08-10 13:46 - 2014-08-10 13:46 - 00000000 ____D () C:\Users\abc\Downloads\5mis
2014-08-10 13:45 - 2014-08-10 13:30 - 91394086 _____ () C:\Users\abc\Downloads\5mis.7z
2014-08-10 13:14 - 2014-08-10 13:14 - 00000000 ____D () C:\Users\abc\Documents\SimCity
2014-08-10 13:12 - 2014-08-10 13:12 - 00001290 _____ () C:\Users\abc\Desktop\SimCity.lnk
2014-08-10 13:12 - 2014-08-10 13:12 - 00000000 ____D () C:\Users\abc\AppData\Roaming\SimCity
2014-08-10 13:12 - 2014-08-10 13:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2014-08-10 13:09 - 2014-08-10 13:09 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2014-08-08 11:27 - 2014-08-08 11:27 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-08 11:27 - 2014-08-08 11:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-08 11:27 - 2014-08-08 11:27 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-08 11:27 - 2014-02-05 19:34 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Malwarebytes
2014-08-08 11:27 - 2014-02-05 19:34 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-08-08 11:27 - 2013-11-05 19:45 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-07 13:27 - 2013-04-19 20:43 - 00000000 ____D () C:\Users\abc\AppData\Local\TeamSpeak 3 Client
2014-08-07 12:14 - 2013-12-08 13:42 - 00000000 ____D () C:\Users\abc\AppData\Roaming\.minecraft
2014-08-07 04:06 - 2014-08-13 11:13 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-13 11:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 09:34 - 2014-08-06 09:34 - 00013305 _____ () C:\Users\abc\Downloads\[EK]thaisNorthCycs(1).xbst
2014-08-06 09:34 - 2014-08-06 09:34 - 00011299 _____ () C:\Users\abc\Downloads\[EK]thaisNorthCycs.lua
2014-08-05 19:32 - 2014-08-05 19:32 - 00000000 ____D () C:\Users\abc\Desktop\ShivaMt2 Official 24.07.2014
2014-08-05 09:20 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-05 00:20 - 2013-04-17 16:25 - 00109688 _____ () C:\Users\abc\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-04 12:56 - 2014-04-30 06:57 - 00000069 _____ () C:\Users\abc\Desktop\Nowy dokument tekstowy (2).txt
2014-08-04 12:04 - 2014-07-10 11:01 - 00000000 ____D () C:\Users\abc\AppData\Local\wf-launcher
2014-08-04 11:56 - 2014-07-10 11:01 - 00000000 ____D () C:\ProgramData\GFACE
2014-08-04 08:41 - 2014-08-04 08:41 - 00011348 _____ () C:\Users\abc\Downloads\[ALL]thaisWasps.lua
2014-08-04 08:41 - 2014-08-04 08:41 - 00010728 _____ () C:\Users\abc\Downloads\[ALL]thaisWasps.xbst
2014-08-04 08:15 - 2014-08-04 08:15 - 00013305 _____ () C:\Users\abc\Downloads\[EK]thaisNorthCycs.xbst
2014-08-03 15:27 - 2014-08-03 15:25 - 00007744 _____ () C:\Users\abc\Downloads\[EK]carlinNorthDwarfs.lua
2014-08-03 15:26 - 2014-08-03 15:26 - 00017209 _____ () C:\Users\abc\Downloads\[EK]carlinNorthDwarfs.xbst
2014-08-03 15:23 - 2014-08-03 15:23 - 00018469 _____ () C:\Users\abc\Downloads\Cyclops (South).xbst
2014-08-03 15:23 - 2014-08-03 15:23 - 00005913 _____ () C:\Users\abc\Downloads\Cyclops (South).lua
2014-08-03 12:39 - 2013-05-19 20:46 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-03 12:39 - 2013-05-19 20:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-03 12:39 - 2013-04-17 17:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

Some content of TEMP:
====================
C:\Users\abc\AppData\Local\Temp\669.exe
C:\Users\abc\AppData\Local\Temp\856.exe
C:\Users\abc\AppData\Local\Temp\88.exe
C:\Users\abc\AppData\Local\Temp\ammemb.dll
C:\Users\abc\AppData\Local\Temp\ammemb64.dll
C:\Users\abc\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\abc\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\abc\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\abc\AppData\Local\Temp\nvStInst.exe
C:\Users\abc\AppData\Local\Temp\sfamcc00001.dll
C:\Users\abc\AppData\Local\Temp\sfamcc00002.dll
C:\Users\abc\AppData\Local\Temp\sfareca00002.dll
C:\Users\abc\AppData\Local\Temp\sfextra.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-27 05:34

==================== End Of Log ============================