Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-05-2014
Ran by abc (administrator) on XXX on 05-05-2014 20:06:59
Running from C:\Users\abc\Downloads
Windows 8 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Arcabit) C:\Program Files\ArcaBit\Common\ArcaConfSV.exe
(Seekar Ltd) C:\Program Files (x86)\Ares\Ares.exe
(Arcabit) C:\Program Files\ArcaBit\ArcaVir\ArcaMainSV.exe
(Arcabit) C:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\fst_pl_14\fst_pl_14.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ArcaBit) C:\Program Files\ArcaBit\Common\ArcaTasksService.exe
(Arcabit) C:\Program Files\ArcaBit\ArcaUpdate\update.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(LogMeIn Inc.) D:\Picasa3\LoL\MineCraft\hamachi-2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(LogMeIn, Inc.) D:\Picasa3\LoL\MineCraft\LMIGuardianSvc.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe
(Aztec Media Inc) C:\Program Files (x86)\Settings Manager\systemk\systemku.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files (x86)\WiseEnhance\bin\utilWiseEnhance.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
() C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.PurBrowse64.exe
() C:\Program Files (x86)\WiseEnhance\bin\WiseEnhance.BrowserAdapter.exe
(Arcabit) C:\Program Files\ArcaBit\ArcaUpdate\exec\update_tmp.exe
() C:\Program Files (x86)\WiseEnhance\updateWiseEnhance.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Users\abc\Downloads\OTL.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Picasa3\LoL\MineCraft\hamachi-2-ui.exe [3814736 2014-04-15] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\.DEFAULT\...\RunOnce: [Application Restart #0] - C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [393416 2012-10-11] (Microsoft Corporation)
HKU\S-1-5-21-3301075831-2015216863-3812331416-1001\...\Run: [ares] => C:\Program Files (x86)\Ares\Ares.exe [935936 2013-07-19] (Seekar Ltd)
HKU\S-1-5-21-3301075831-2015216863-3812331416-1001\...\Run: [DAEMON Tools Lite] => D:\Picasa3\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
HKLM\...\AppCertDlls: [x86] -> C:\Program Files (x86)\Settings Manager\systemk\sysapcrt.dll [490000 2014-04-28] ()
HKLM\...\AppCertDlls: [x64] -> C:\Program Files (x86)\Settings Manager\systemk\x64\sysapcrt.dll [664592 2014-04-28] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://v4.windowsupdate.microsoft.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.qone8.com/?type=hp&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.qone8.com/?type=hp&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.qone8.com/?type=hp&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.qone8.com/?type=hp&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.qone8.com/?type=hp&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
URLSearchHook: HKCU - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&amp;form=IE10TR&amp;src=IE10TR&amp;pc=ASU2JS
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=333&src=ds&p={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&amp;form=IE10TR&amp;src=IE10TR&amp;pc=ASU2JS
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=333&src=ds&p={searchTerms}
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=E21D2016D8CB9AD1&affID=119357&tt=280813_noccp&tsp=4989
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.qone8.com/web/?type=ds&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX&q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={E164AD32-D755-42D6-8A97-DB7A60A88E77}&mid=fc8d5749ca8d47d29cf3f15f9e2f7322-3e996707f6841224b7f83b46a023169f4ff0dbdc&lang=pl&ds=ad011&coid=avgtbdisad&cmpid=&pr=sa&d=2014-05-05 19:01:02&v=18.1.0.443&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2476} URL = http://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=333&src=ds&p={searchTerms}
BHO: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll64.dll (Aztec Media Inc)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: Linkey - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} - C:\Program Files (x86)\Linkey\IEExtension\iedll.dll (Aztec Media Inc)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: WinDealist - {B8F10001-9552-4F40-8F61-6765CD22DD9E} - C:\Program Files (x86)\windealist\Internet Explorer\windealist.dll ()
BHO-x32: WiseEnhance - {bc8c4384-d19c-474b-a298-c90b7e5c5204} - C:\Program Files (x86)\WiseEnhance\WiseEnhancebho.dll (WiseEnhance)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.20

FireFox:
========
FF ProfilePath: C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default
FF NewTab: hxxp://start.qone8.com/newtab/?type=nt&ts=1398787401&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX
FF DefaultSearchEngine: qone8
FF SearchEngineOrder.1: default-search.net
FF SelectedSearchEngine: qone8
FF Homepage: hxxp://start.qone8.com/?type=hppp&ts=1398950058&from=smt&uid=HitachiXHTS545050A7E380_TE851449CXJBJWCXJBJWX
FF Keyword.URL: hxxp://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=333&src=ds&p=
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - D:\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @g2.com/iggweb3dupdater - C:\Users\abc\AppData\Roaming\IGG\Web3D\1.0.0.38\NPIGGWeb3DUpdater.dll (IGG)
FF Plugin HKCU: @g2.com/joyconnectshell - C:\Users\abc\AppData\Roaming\IGG\Web3D\1.0.0.38\NPJoyConnectShell.dll (IGG)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\abc\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\abc\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\searchplugins\ask-search.xml
FF SearchPlugin: C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\searchplugins\default-search.xml
FF SearchPlugin: C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\searchplugins\metaCrawler.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dosearches.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\qone8.xml
FF Extension: Bazaar Friend - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\addon@bazaarfriend.com [2013-08-17]
FF Extension: Linkey for Firefox - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\extension@linkeyproject.com [2014-04-30]
FF Extension: metacrawler.com - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\ffxtlbr@metacrawler.com [2013-07-27]
FF Extension: WinDealist - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\m4@windealist.com [2013-12-14]
FF Extension: Quick Start - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\quick_start@gmail.com [2014-04-29]
FF Extension: Boston MarketOne - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\support@bostonmarketone.com [2013-08-21]
FF Extension: Nuova scheda - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\{60364604-8b4c-42f4-a2ca-a76ca7b61b37} [2013-07-27]
FF Extension: Settings Manager - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\{E729C6EC-E9FF-E59F-355C-EC59F2795E4E} [2014-05-03]
FF Extension: WebToSave - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\{f80bc79c-ab5e-418a-a0be-3d9e66b4e976} [2013-09-02]
FF Extension: WiseEnhance - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\Extensions\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}.xpi [2014-04-29]
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\extensions\quick_start@gmail.com
FF Extension: Quick Start - C:\Users\abc\AppData\Roaming\Mozilla\Firefox\Profiles\7vqnnva8.default\extensions\quick_start@gmail.com [2014-04-29]

Chrome: 
=======
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: default-search.net
CHR DefaultSearchURL: http://www.default-search.net/search?sid=476&aid=132&itype=a&ver=12521&tm=333&src=ds&p={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (Dokumenty Google) - C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-17]
CHR Extension: (Dysk Google) - C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-05]
CHR Extension: (YouTube) - C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-05]
CHR Extension: (Szukaj w Google) - C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-05]
CHR Extension: (Google Wallet) - C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR Extension: (Gmail) - C:\Users\abc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-05]
CHR HKLM\...\Chrome\Extension: [doobfiogmfmpjnoofjhhgjehmlofngfp] - C:\Users\abc\AppData\Local\metacrawler-speeddial.crx [2013-11-03]
CHR HKCU\...\Chrome\Extension: [doobfiogmfmpjnoofjhhgjehmlofngfp] - C:\Users\abc\AppData\Local\metacrawler-speeddial.crx [2013-11-03]
CHR HKLM-x32\...\Chrome\Extension: [cogkkcgdhndddhnkcebakjmifjllamkb] - C:\Program Files (x86)\windealist\Chrome\windealist-1.0.464.crx [2013-12-12]
CHR HKLM-x32\...\Chrome\Extension: [doobfiogmfmpjnoofjhhgjehmlofngfp] - C:\Users\abc\AppData\Local\metacrawler-speeddial.crx [2013-11-03]
CHR HKLM-x32\...\Chrome\Extension: [ieadcoanfjloocmfafkebdnfefmohngj] - C:\Program Files (x86)\BonanzaDeals\BonanzaDeals.crx [2013-11-03]

==================== Services (Whitelisted) =================

R3 ABConfSV; C:\Program Files\ArcaBit\Common\ArcaConfSV.exe [206304 2014-03-07] (Arcabit)
R3 ABMainSV; C:\Program Files\ArcaBit\ArcaVir\ArcaMainSV.exe [237704 2014-03-07] (Arcabit)
R3 ArcaRemoteService; C:\Program Files\ArcaBit\ArcaAgent\ArcaRemoteSvc.exe [985008 2014-04-08] (Arcabit)
R3 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R3 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations)
S3 AVBackup; C:\Program Files\ArcaBit\ArcaTools\ArcaBackup\ArcaBackupService.exe [257304 2014-03-07] (Arcabit)
R3 AVTasks2; C:\Program Files\ArcaBit\Common\ArcaTasksService.exe [200136 2014-03-07] (ArcaBit)
R3 AVUpdate; C:\Program Files\ArcaBit\ArcaUpdate\update.exe [307232 2014-04-17] (Arcabit)
R3 Hamachi2Svc; D:\Picasa3\LoL\MineCraft\hamachi-2.exe [2227536 2014-04-15] (LogMeIn Inc.)
S3 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [705136 2014-04-11] (Cherished Technololgy LIMITED)
R3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R3 SystemkService; C:\Program Files (x86)\Settings Manager\systemk\SystemkService.exe [3543056 2014-04-28] (Aztec Media Inc)
R3 Update WiseEnhance; C:\Program Files (x86)\WiseEnhance\updateWiseEnhance.exe [316704 2014-05-05] ()
R3 Util WiseEnhance; C:\Program Files (x86)\WiseEnhance\bin\utilWiseEnhance.exe [316704 2014-05-04] ()
R3 WakeupService; C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe [42336 2012-11-16] (ASUSTek Computer Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R3 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [566272 2014-04-29] (Cherished Technololgy LIMITED)
R3 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-10] (Atheros)

==================== Drivers (Whitelisted) ====================

R3 ABFLT; C:\Program Files\ArcaBit\ArcaVir\ABFLT.sys [85232 2013-03-27] (ArcaBit)
R1 arcawfp; C:\Windows\System32\drivers\arcawfp.sys [46184 2014-05-05] (NetFilterSDK.com)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [62848 2012-11-20] (ASUS Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-10] (Qualcomm Atheros)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [117632 2013-06-01] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 BthMtpEnum; C:\Windows\system32\DRIVERS\BthMtpEnum.sys [64512 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-04-29] (Disc Soft Ltd)
R1 F06DEFF2-5B9C-490D-910F-35D3A91196222; C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [36240 2014-04-28] (Aztec Media Inc)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-04-15] (LogMeIn Inc.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R1 {2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64; C:\Windows\System32\drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64.sys [61120 2014-04-24] (StdLib)
S3 ABWFP; \??\C:\Program Files\ArcaBit\ArcaVir\ABWFP8.sys [X]
U0 msahci; 
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-05 20:06 - 2014-05-05 20:07 - 00025529 _____ () C:\Users\abc\Downloads\FRST.txt
2014-05-05 20:04 - 2014-05-05 20:06 - 00000000 ____D () C:\FRST
2014-05-05 20:03 - 2014-05-05 20:03 - 02063872 _____ (Farbar) C:\Users\abc\Downloads\FRST64.exe
2014-05-05 19:58 - 2014-05-05 19:58 - 00602112 _____ (OldTimer Tools) C:\Users\abc\Downloads\OTL.exe
2014-05-05 18:59 - 2004-04-20 17:19 - 00016384 _____ (Soeperman Enterprises Ltd.) C:\Users\abc\Desktop\Kill2Me.exe
2014-05-05 18:58 - 2014-05-05 18:58 - 00370248 _____ (Afterdawn.com) C:\Users\abc\Downloads\kill2me_v111zip.exe
2014-05-05 18:35 - 2014-05-05 19:01 - 00000000 ____D () C:\Users\abc\Desktop\Piccassa
2014-05-05 18:33 - 2014-05-05 19:01 - 00000000 ____D () C:\Users\abc\Desktop\18-stka
2014-05-03 14:43 - 2014-05-03 14:43 - 00000000 ____D () C:\Users\abc\AppData\Roaming\(DC-3E-F8-9F-F2-94)
2014-05-03 14:03 - 2014-05-05 20:07 - 00000000 ____D () C:\ProgramData\systemk
2014-05-01 21:59 - 2014-05-01 21:59 - 00004129 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-01 21:59 - 2014-05-01 21:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-01 21:59 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-01 21:59 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-01 21:59 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-01 21:59 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-01 15:15 - 2014-05-01 15:15 - 11825832 _____ (Elex do Brasil Participações Ltda) C:\Users\abc\Downloads\yet_another_cleaner_reh (14).exe
2014-04-30 18:38 - 2014-05-02 14:38 - 00000000 ____D () C:\Users\abc\Documents\FIFA World
2014-04-30 17:21 - 2014-04-30 17:22 - 23516512 _____ (Electronic Arts, Inc.) C:\Users\abc\Downloads\EASportsFIFAWorld.exe
2014-04-30 17:04 - 2014-04-30 17:04 - 00255780 _____ () C:\Users\abc\Downloads\TorrentCity.pl_payday_2_2013_multi5eng_flt_dvd9__iso_rabbit_203035.torrent
2014-04-30 15:05 - 2014-04-30 15:05 - 00000000 ____D () C:\Users\abc\AppData\Roaming\vlc
2014-04-30 15:05 - 2014-04-30 15:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidPlaya
2014-04-30 15:04 - 2014-04-30 15:05 - 00000000 ____D () C:\Program Files (x86)\VidPlaya
2014-04-30 15:02 - 2014-04-30 15:02 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-04-30 15:02 - 2014-04-30 15:02 - 00000000 ____D () C:\Program Files (x86)\Linkey
2014-04-30 15:00 - 2014-04-30 15:01 - 00386888 _____ (Softonic ) C:\Users\abc\Downloads\SoftonicDownloader_dla_papers-please.exe
2014-04-29 21:42 - 2014-04-29 21:42 - 00290439 _____ () C:\Users\abc\Downloads\Papers-Please-PL-v1.2 (2).rar
2014-04-29 21:40 - 2014-04-29 21:40 - 00290439 _____ () C:\Users\abc\Downloads\Papers-Please-PL-v1.2 (1).rar
2014-04-29 21:34 - 2014-04-29 21:34 - 00290439 _____ () C:\Users\abc\Downloads\Papers-Please-PL-v1.2.rar
2014-04-29 21:30 - 2014-04-29 21:30 - 00000000 ____D () C:\Users\abc\AppData\Roaming\3909
2014-04-29 21:30 - 2014-04-29 21:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Papers, Please [GOG.com]
2014-04-29 21:30 - 2014-04-29 21:30 - 00000000 ____D () C:\GOG Games
2014-04-29 21:20 - 2014-04-29 21:20 - 00004085 _____ () C:\Users\abc\Downloads\[TorrentDownloads.me]_Papers, Please [GOG] (+ v1 0 37 Update &amp; Extras).torrent
2014-04-29 19:36 - 2014-04-24 12:32 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64.sys
2014-04-29 18:53 - 2014-04-29 19:21 - 00000000 ____D () C:\Users\abc\AppData\Local\Arma 3
2014-04-29 18:53 - 2014-04-29 19:07 - 00000000 ____D () C:\Users\abc\Documents\Arma 3
2014-04-29 18:53 - 2014-04-29 18:53 - 00000000 ____D () C:\ProgramData\Steam
2014-04-29 18:53 - 2014-04-29 18:53 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-04-29 18:10 - 2014-05-01 21:57 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-04-29 18:05 - 2014-05-01 21:58 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-29 18:05 - 2014-04-29 18:05 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Opera Software
2014-04-29 18:05 - 2014-04-29 18:05 - 00000000 ____D () C:\Users\abc\AppData\Local\Opera Software
2014-04-29 18:04 - 2014-04-29 18:05 - 00000000 ____D () C:\ProgramData\IePluginService
2014-04-29 18:04 - 2014-04-29 18:04 - 00000000 ____D () C:\Users\abc\AppData\Roaming\SupTab
2014-04-29 18:04 - 2014-04-29 18:04 - 00000000 ____D () C:\ProgramData\WPM
2014-04-29 18:04 - 2014-04-29 18:04 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-04-29 18:03 - 2014-04-29 18:03 - 00000000 ____D () C:\Users\abc\AppData\Roaming\qone8
2014-04-29 18:02 - 2014-04-29 18:04 - 00000000 ____D () C:\Users\abc\AppData\Roaming\DAEMON Tools Lite
2014-04-29 18:02 - 2014-04-29 18:02 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-04-29 18:01 - 2014-04-29 18:04 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-04-29 18:00 - 2014-04-30 14:49 - 00000000 ____D () C:\Program Files (x86)\WiseEnhance
2014-04-29 18:00 - 2014-04-29 18:00 - 13429504 _____ (Disc Soft Ltd) C:\Users\abc\Downloads\DTLite4491-0356.exe
2014-04-29 17:59 - 2014-04-29 17:59 - 00700824 _____ ( ) C:\Users\abc\Downloads\DAEMON-Tools-Lite(12708).exe
2014-04-28 15:21 - 2014-04-28 15:21 - 00086124 _____ () C:\Users\abc\Downloads\TorrentCity.pl_arma_3_2013_reloaded_dvd9__iso_multi10pl_rabbit_205004.torrent
2014-04-28 15:16 - 2014-04-28 15:16 - 00205396 _____ () C:\Users\abc\Downloads\TorrentCity.pl_arma_iii_-_complete_campaign_edition_2013_multipl_reloaded_dvd9__iso_224345.torrent
2014-04-28 15:14 - 2014-04-28 15:14 - 00002902 _____ () C:\Users\abc\Downloads\[Limetorrents.com]_Papers Please GOG.torrent
2014-04-27 15:01 - 2014-04-27 15:01 - 11825832 _____ (Elex do Brasil Participações Ltda) C:\Users\abc\Downloads\yet_another_cleaner_reh (13).exe
2014-04-25 14:09 - 2014-04-25 15:00 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Curse Client
2014-04-25 14:09 - 2014-04-25 14:09 - 00001011 _____ () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2014-04-25 14:09 - 2014-04-25 14:09 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Curse Advertising
2014-04-25 14:08 - 2014-04-25 14:08 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Curse
2014-04-25 14:05 - 2014-04-25 14:08 - 37439696 _____ (Curse) C:\Users\abc\Downloads\CurseClientSetup.exe
2014-04-24 20:04 - 2014-04-24 20:04 - 00351232 _____ () C:\Users\abc\Downloads\FlashPlayersetup__2583_i594981276_il7.exe
2014-04-21 19:21 - 2014-04-21 19:21 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (12).exe
2014-04-20 18:20 - 2014-04-20 18:20 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (10).exe
2014-04-19 18:01 - 2014-04-19 18:01 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (9).exe
2014-04-19 16:35 - 2014-04-19 16:35 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (8).exe
2014-04-18 22:12 - 2014-04-18 22:12 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (7).exe
2014-04-17 21:01 - 2014-04-17 21:01 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (6).exe
2014-04-17 17:03 - 2014-04-17 17:03 - 00005950 _____ () C:\Users\abc\Downloads\LOL_OPGG_Observer_812898976.bat
2014-04-17 17:03 - 2014-04-17 17:03 - 00005950 _____ () C:\Users\abc\Downloads\LOL_OPGG_Observer_812898976 (1).bat
2014-04-17 15:44 - 2014-04-17 15:44 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (5).exe
2014-04-17 11:25 - 2014-04-17 11:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2014-04-17 11:23 - 2014-04-17 11:24 - 07548928 _____ () C:\Users\abc\Downloads\PathOfExileInstaller (1).msi
2014-04-17 11:13 - 2014-04-17 11:14 - 07553024 _____ () C:\Users\abc\Downloads\PathOfExileInstaller.msi
2014-04-17 10:20 - 2014-04-17 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-04-16 21:45 - 2014-04-16 21:45 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (4).exe
2014-04-16 16:36 - 2014-04-16 16:36 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (3).exe
2014-04-15 20:28 - 2014-04-15 20:28 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (2).exe
2014-04-15 17:15 - 2014-04-15 17:15 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (1).exe
2014-04-15 10:46 - 2014-04-15 10:46 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-04-14 20:16 - 2014-04-14 20:16 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro.exe
2014-04-14 00:01 - 2014-04-14 00:01 - 00052024 _____ () C:\Users\abc\Downloads\[www.tnt24.info] ARMA III Complete Campaign Edition -2013- [Multi9-PL] [RELOADED] [ISO].torrent
2014-04-13 22:32 - 2014-04-13 22:32 - 00031390 _____ () C:\Users\abc\Downloads\ARMA+3+Complete+Campaign+Edition+%5BMULTI9%5D%5BPCDVD%5D%5BRELOADED%5D (1).torrent
2014-04-13 22:28 - 2014-04-13 22:28 - 00021066 _____ () C:\Users\abc\Downloads\[kickass.to]arma.iii.compaign.multiplayer.repack.by.infamous.torrent
2014-04-11 16:26 - 2014-04-11 16:26 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (11).exe
2014-04-06 12:24 - 2014-04-06 12:44 - 00000000 ____D () C:\Program Files (x86)\Counter Strike 1.6 v43
2014-04-06 12:05 - 2014-04-06 12:16 - 280944071 _____ (n/a) C:\Users\abc\Downloads\Counter Strike 1.6 v43.exe
2014-04-05 18:43 - 2014-04-05 18:43 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Wargaming.net
2014-04-05 14:53 - 2014-04-05 14:53 - 00902264 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (10).exe
2014-04-05 14:48 - 2014-04-05 14:49 - 00902264 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (9).exe
2014-04-05 14:32 - 2014-04-05 14:33 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-04-05 14:31 - 2014-04-05 14:31 - 09304408 _____ (Wargaming.net ) C:\Users\abc\Downloads\WoT_internet_install_eu.exe

==================== One Month Modified Files and Folders =======

2014-05-05 20:07 - 2014-05-05 20:06 - 00025529 _____ () C:\Users\abc\Downloads\FRST.txt
2014-05-05 20:07 - 2014-05-03 14:03 - 00000000 ____D () C:\ProgramData\systemk
2014-05-05 20:06 - 2014-05-05 20:04 - 00000000 ____D () C:\FRST
2014-05-05 20:03 - 2014-05-05 20:03 - 02063872 _____ (Farbar) C:\Users\abc\Downloads\FRST64.exe
2014-05-05 20:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2014-05-05 19:58 - 2014-05-05 19:58 - 00602112 _____ (OldTimer Tools) C:\Users\abc\Downloads\OTL.exe
2014-05-05 19:55 - 2013-11-03 15:49 - 00000000 ____D () C:\Program Files (x86)\BonanzaDealsLive
2014-05-05 19:54 - 2013-07-27 13:44 - 00000292 _____ () C:\Windows\Tasks\MetaCrawler.job
2014-05-05 19:46 - 2013-07-28 15:32 - 01609728 ___SH () C:\Users\abc\Desktop\Thumbs.db
2014-05-05 19:45 - 2013-07-27 13:45 - 00000286 _____ () C:\Windows\Tasks\DSite.job
2014-05-05 19:24 - 2013-12-27 17:55 - 00001050 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-05 19:18 - 2013-11-03 15:48 - 00000000 ____D () C:\Program Files (x86)\BonanzaDeals
2014-05-05 19:01 - 2014-05-05 18:35 - 00000000 ____D () C:\Users\abc\Desktop\Piccassa
2014-05-05 19:01 - 2014-05-05 18:33 - 00000000 ____D () C:\Users\abc\Desktop\18-stka
2014-05-05 18:58 - 2014-05-05 18:58 - 00370248 _____ (Afterdawn.com) C:\Users\abc\Downloads\kill2me_v111zip.exe
2014-05-05 18:40 - 2013-09-12 20:21 - 00000000 ____D () C:\Users\abc\AppData\Roaming\ipla
2014-05-05 18:39 - 2012-08-02 20:02 - 00794946 _____ () C:\Windows\system32\perfh015.dat
2014-05-05 18:39 - 2012-08-02 20:02 - 00159530 _____ () C:\Windows\system32\perfc015.dat
2014-05-05 18:39 - 2012-07-26 09:28 - 01793398 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-05 18:37 - 2014-01-31 16:05 - 00000000 ____D () C:\Users\abc\AppData\Local\LogMeIn Hamachi
2014-05-05 18:36 - 2014-02-21 00:15 - 00000000 ____D () C:\Users\abc\Desktop\My Shared Folder
2014-05-05 18:35 - 2012-07-26 07:26 - 00000226 _____ () C:\Windows\win.ini
2014-05-05 18:34 - 2014-03-07 12:27 - 00046184 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\arcawfp.sys
2014-05-05 18:34 - 2013-12-27 17:55 - 00003788 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-05 18:34 - 2013-12-27 17:55 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-05 18:34 - 2013-01-22 04:41 - 00003024 _____ () C:\Windows\System32\Tasks\ASUS USB Charger Plus
2014-05-05 18:34 - 2013-01-22 04:31 - 00003542 _____ () C:\Windows\System32\Tasks\ASUS Touchpad Launcher (x64)
2014-05-05 18:33 - 2013-07-10 19:10 - 00000401 _____ () C:\Users\abc\AppData\Roaming\sp_data.sys
2014-05-05 18:33 - 2013-01-22 04:43 - 00003052 _____ () C:\Windows\System32\Tasks\ASUS P4G
2014-05-05 18:33 - 2013-01-22 04:40 - 00003114 _____ () C:\Windows\System32\Tasks\ASUS Live Update
2014-05-05 18:32 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-04 21:23 - 2013-07-27 13:49 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3301075831-2015216863-3812331416-1001UA.job
2014-05-03 19:02 - 2013-07-10 19:10 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Atheros
2014-05-03 15:38 - 2013-09-12 20:21 - 00000000 ____D () C:\ProgramData\ipla
2014-05-03 14:43 - 2014-05-03 14:43 - 00000000 ____D () C:\Users\abc\AppData\Roaming\(DC-3E-F8-9F-F2-94)
2014-05-03 14:23 - 2013-07-30 00:42 - 01740288 ___SH () C:\Users\abc\Downloads\Thumbs.db
2014-05-02 23:54 - 2014-03-24 16:05 - 00000000 ____D () C:\Users\Default\AppData\Local\LogMeIn Hamachi
2014-05-02 23:54 - 2014-03-24 16:05 - 00000000 ____D () C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2014-05-02 17:27 - 2013-08-20 13:32 - 00000000 ____D () C:\ProgramData\Origin
2014-05-02 17:08 - 2013-08-20 13:32 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-05-02 17:03 - 2014-03-24 16:18 - 00000000 ____D () C:\Users\abc\AppData\Local\Battle.net
2014-05-02 17:02 - 2013-07-25 15:06 - 00000000 ____D () C:\Users\abc\AppData\Local\CrashDumps
2014-05-02 14:38 - 2014-04-30 18:38 - 00000000 ____D () C:\Users\abc\Documents\FIFA World
2014-05-02 13:51 - 2012-08-02 15:24 - 00429796 _____ () C:\Windows\PFRO.log
2014-05-02 00:23 - 2013-07-27 13:49 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3301075831-2015216863-3812331416-1001Core.job
2014-05-01 21:59 - 2014-05-01 21:59 - 00004129 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-01 21:59 - 2014-05-01 21:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-01 21:59 - 2014-01-31 16:11 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-01 21:59 - 2014-01-31 16:10 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-01 21:58 - 2014-04-29 18:05 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-01 21:57 - 2014-04-29 18:10 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-05-01 15:15 - 2014-05-01 15:15 - 11825832 _____ (Elex do Brasil Participações Ltda) C:\Users\abc\Downloads\yet_another_cleaner_reh (14).exe
2014-05-01 15:14 - 2013-01-22 04:51 - 00003549 _____ () C:\Windows\system32\ServiceFilter.ini
2014-04-30 18:37 - 2012-11-23 15:07 - 00045230 _____ () C:\Windows\DirectX.log
2014-04-30 18:11 - 2013-07-10 19:08 - 02053909 _____ () C:\Windows\WindowsUpdate.log
2014-04-30 17:30 - 2013-08-20 13:37 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-04-30 17:26 - 2013-08-20 13:35 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Origin
2014-04-30 17:22 - 2014-04-30 17:21 - 23516512 _____ (Electronic Arts, Inc.) C:\Users\abc\Downloads\EASportsFIFAWorld.exe
2014-04-30 17:04 - 2014-04-30 17:04 - 00255780 _____ () C:\Users\abc\Downloads\TorrentCity.pl_payday_2_2013_multi5eng_flt_dvd9__iso_rabbit_203035.torrent
2014-04-30 15:05 - 2014-04-30 15:05 - 00000000 ____D () C:\Users\abc\AppData\Roaming\vlc
2014-04-30 15:05 - 2014-04-30 15:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidPlaya
2014-04-30 15:05 - 2014-04-30 15:04 - 00000000 ____D () C:\Program Files (x86)\VidPlaya
2014-04-30 15:02 - 2014-04-30 15:02 - 00000000 ____D () C:\Program Files (x86)\Settings Manager
2014-04-30 15:02 - 2014-04-30 15:02 - 00000000 ____D () C:\Program Files (x86)\Linkey
2014-04-30 15:01 - 2014-04-30 15:00 - 00386888 _____ (Softonic ) C:\Users\abc\Downloads\SoftonicDownloader_dla_papers-please.exe
2014-04-30 14:49 - 2014-04-29 18:00 - 00000000 ____D () C:\Program Files (x86)\WiseEnhance
2014-04-29 21:42 - 2014-04-29 21:42 - 00290439 _____ () C:\Users\abc\Downloads\Papers-Please-PL-v1.2 (2).rar
2014-04-29 21:40 - 2014-04-29 21:40 - 00290439 _____ () C:\Users\abc\Downloads\Papers-Please-PL-v1.2 (1).rar
2014-04-29 21:34 - 2014-04-29 21:34 - 00290439 _____ () C:\Users\abc\Downloads\Papers-Please-PL-v1.2.rar
2014-04-29 21:30 - 2014-04-29 21:30 - 00000000 ____D () C:\Users\abc\AppData\Roaming\3909
2014-04-29 21:30 - 2014-04-29 21:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Papers, Please [GOG.com]
2014-04-29 21:30 - 2014-04-29 21:30 - 00000000 ____D () C:\GOG Games
2014-04-29 21:20 - 2014-04-29 21:20 - 00004085 _____ () C:\Users\abc\Downloads\[TorrentDownloads.me]_Papers, Please [GOG] (+ v1 0 37 Update &amp; Extras).torrent
2014-04-29 19:21 - 2014-04-29 18:53 - 00000000 ____D () C:\Users\abc\AppData\Local\Arma 3
2014-04-29 19:07 - 2014-04-29 18:53 - 00000000 ____D () C:\Users\abc\Documents\Arma 3
2014-04-29 18:53 - 2014-04-29 18:53 - 00000000 ____D () C:\ProgramData\Steam
2014-04-29 18:53 - 2014-04-29 18:53 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-04-29 18:06 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-04-29 18:05 - 2014-04-29 18:05 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Opera Software
2014-04-29 18:05 - 2014-04-29 18:05 - 00000000 ____D () C:\Users\abc\AppData\Local\Opera Software
2014-04-29 18:05 - 2014-04-29 18:04 - 00000000 ____D () C:\ProgramData\IePluginService
2014-04-29 18:04 - 2014-04-29 18:04 - 00000000 ____D () C:\Users\abc\AppData\Roaming\SupTab
2014-04-29 18:04 - 2014-04-29 18:04 - 00000000 ____D () C:\ProgramData\WPM
2014-04-29 18:04 - 2014-04-29 18:04 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-04-29 18:04 - 2014-04-29 18:02 - 00000000 ____D () C:\Users\abc\AppData\Roaming\DAEMON Tools Lite
2014-04-29 18:04 - 2014-04-29 18:01 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-04-29 18:03 - 2014-04-29 18:03 - 00000000 ____D () C:\Users\abc\AppData\Roaming\qone8
2014-04-29 18:03 - 2013-12-27 17:57 - 00002401 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-29 18:02 - 2014-04-29 18:02 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-04-29 18:00 - 2014-04-29 18:00 - 13429504 _____ (Disc Soft Ltd) C:\Users\abc\Downloads\DTLite4491-0356.exe
2014-04-29 17:59 - 2014-04-29 17:59 - 00700824 _____ ( ) C:\Users\abc\Downloads\DAEMON-Tools-Lite(12708).exe
2014-04-28 15:21 - 2014-04-28 15:21 - 00086124 _____ () C:\Users\abc\Downloads\TorrentCity.pl_arma_3_2013_reloaded_dvd9__iso_multi10pl_rabbit_205004.torrent
2014-04-28 15:16 - 2014-04-28 15:16 - 00205396 _____ () C:\Users\abc\Downloads\TorrentCity.pl_arma_iii_-_complete_campaign_edition_2013_multipl_reloaded_dvd9__iso_224345.torrent
2014-04-28 15:14 - 2014-04-28 15:14 - 00002902 _____ () C:\Users\abc\Downloads\[Limetorrents.com]_Papers Please GOG.torrent
2014-04-27 15:01 - 2014-04-27 15:01 - 11825832 _____ (Elex do Brasil Participações Ltda) C:\Users\abc\Downloads\yet_another_cleaner_reh (13).exe
2014-04-26 19:48 - 2014-02-20 18:38 - 00000000 ___RD () C:\Users\abc\Desktop\Zdjęcia i filmy
2014-04-25 17:28 - 2013-09-06 15:55 - 00000000 ____D () C:\Users\abc\AppData\Roaming\TS3Client
2014-04-25 15:19 - 2013-07-10 19:12 - 00000000 ___RD () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-25 15:00 - 2014-04-25 14:09 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Curse Client
2014-04-25 14:09 - 2014-04-25 14:09 - 00001011 _____ () C:\Users\abc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2014-04-25 14:09 - 2014-04-25 14:09 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Curse Advertising
2014-04-25 14:08 - 2014-04-25 14:08 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Curse
2014-04-25 14:08 - 2014-04-25 14:05 - 37439696 _____ (Curse) C:\Users\abc\Downloads\CurseClientSetup.exe
2014-04-24 20:04 - 2014-04-24 20:04 - 00351232 _____ () C:\Users\abc\Downloads\FlashPlayersetup__2583_i594981276_il7.exe
2014-04-24 12:32 - 2014-04-29 19:36 - 00061120 _____ (StdLib) C:\Windows\system32\Drivers\{2c976a7f-dbdc-4756-870f-f6d183fe7a7e}Gw64.sys
2014-04-23 16:50 - 2013-07-31 18:13 - 00000000 ____D () C:\Users\abc\AppData\Local\Windows Live
2014-04-21 19:21 - 2014-04-21 19:21 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (12).exe
2014-04-20 18:20 - 2014-04-20 18:20 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (10).exe
2014-04-19 18:01 - 2014-04-19 18:01 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (9).exe
2014-04-19 16:35 - 2014-04-19 16:35 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (8).exe
2014-04-18 22:12 - 2014-04-18 22:12 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (7).exe
2014-04-17 21:01 - 2014-04-17 21:01 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (6).exe
2014-04-17 17:03 - 2014-04-17 17:03 - 00005950 _____ () C:\Users\abc\Downloads\LOL_OPGG_Observer_812898976.bat
2014-04-17 17:03 - 2014-04-17 17:03 - 00005950 _____ () C:\Users\abc\Downloads\LOL_OPGG_Observer_812898976 (1).bat
2014-04-17 15:44 - 2014-04-17 15:44 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (5).exe
2014-04-17 11:25 - 2014-04-17 11:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2014-04-17 11:25 - 2013-08-13 16:13 - 00000000 ____D () C:\Users\abc\Documents\My Games
2014-04-17 11:24 - 2014-04-17 11:23 - 07548928 _____ () C:\Users\abc\Downloads\PathOfExileInstaller (1).msi
2014-04-17 11:14 - 2014-04-17 11:13 - 07553024 _____ () C:\Users\abc\Downloads\PathOfExileInstaller.msi
2014-04-17 10:20 - 2014-04-17 10:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-04-16 21:45 - 2014-04-16 21:45 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (4).exe
2014-04-16 16:36 - 2014-04-16 16:36 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (3).exe
2014-04-15 20:28 - 2014-04-15 20:28 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (2).exe
2014-04-15 17:15 - 2014-04-15 17:15 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro (1).exe
2014-04-15 10:46 - 2014-04-15 10:46 - 00046136 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-04-14 20:16 - 2014-04-14 20:16 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_bro.exe
2014-04-14 20:13 - 2014-05-01 21:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-05-01 21:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-05-01 21:59 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-05-01 21:59 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-14 17:23 - 2013-08-29 18:29 - 00000000 ____D () C:\Users\abc\AppData\Local\Ares
2014-04-14 00:01 - 2014-04-14 00:01 - 00052024 _____ () C:\Users\abc\Downloads\[www.tnt24.info] ARMA III Complete Campaign Edition -2013- [Multi9-PL] [RELOADED] [ISO].torrent
2014-04-13 22:32 - 2014-04-13 22:32 - 00031390 _____ () C:\Users\abc\Downloads\ARMA+3+Complete+Campaign+Edition+%5BMULTI9%5D%5BPCDVD%5D%5BRELOADED%5D (1).torrent
2014-04-13 22:28 - 2014-04-13 22:28 - 00021066 _____ () C:\Users\abc\Downloads\[kickass.to]arma.iii.compaign.multiplayer.repack.by.infamous.torrent
2014-04-11 16:26 - 2014-04-11 16:26 - 00903288 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (11).exe
2014-04-09 18:26 - 2014-01-31 16:44 - 00000000 ____D () C:\Users\abc\AppData\Roaming\.minecraft
2014-04-09 17:06 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-07 21:01 - 2013-07-12 18:54 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3301075831-2015216863-3812331416-1001
2014-04-07 14:25 - 2013-07-10 19:09 - 00000000 ____D () C:\Users\abc
2014-04-06 20:09 - 2012-07-26 09:21 - 00059026 _____ () C:\Windows\setupact.log
2014-04-06 12:44 - 2014-04-06 12:24 - 00000000 ____D () C:\Program Files (x86)\Counter Strike 1.6 v43
2014-04-06 12:16 - 2014-04-06 12:05 - 280944071 _____ (n/a) C:\Users\abc\Downloads\Counter Strike 1.6 v43.exe
2014-04-05 18:43 - 2014-04-05 18:43 - 00000000 ____D () C:\Users\abc\AppData\Roaming\Wargaming.net
2014-04-05 14:53 - 2014-04-05 14:53 - 00902264 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (10).exe
2014-04-05 14:49 - 2014-04-05 14:48 - 00902264 _____ () C:\Users\abc\Downloads\yet_another_cleaner_reh (9).exe
2014-04-05 14:33 - 2014-04-05 14:32 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-04-05 14:31 - 2014-04-05 14:31 - 09304408 _____ (Wargaming.net ) C:\Users\abc\Downloads\WoT_internet_install_eu.exe

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS


Some content of TEMP:
====================
C:\Users\abc\AppData\Local\Temp\oi_{824EFC27-F047-4197-96D9-DA53B2C9C91A}.exe
C:\Users\abc\AppData\Local\Temp\UNINSTALL.EXE


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-27 18:12

==================== End Of Log ============================