Jump to content

I Am Not Sure If I Need Help Or Not.


Recommended Posts

Windows update hangs up on preparing my PC for the update. If I run a clean boot, it will not have any problems updating.  I was wondering if this was some sort virus infestation? I have ran several virus programs and they are not showing any viruses. The error code indicates that a third party program is blocking it.

Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-04-2014
Ran by Drazala2 (administrator) on DRAZALA2-PC on 23-04-2014 19:04:03
Running from E:\Users\Drazala2\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiWatchDog.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Paltiosoft Inc.) C:\Program Files (x86)\SoftDenchi\UCManSvc.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [216928 2013-08-29] (Trend Micro Inc.)
HKLM\...\Run: [wdsmgr] => C:\Program Files\ITknowledge24\Windows Defender Status Manager\wdsmgr.exe [164352 2013-02-23] (ITknowledge24.com)
HKLM\...\Run: [Trend Micro Titanium] => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [1382568 2013-09-16] (Trend Micro Inc.)
HKLM\...\Run: [shadowPlay] => C:\Windows\system32\nvspcap64.dll [1100248 2013-12-09] (NVIDIA Corporation)
HKLM\...\Run: [saiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2012-10-15] (Saitek)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11725928 2010-12-23] (Realtek Semiconductor)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2012-10-15] (Saitek)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-09] (NVIDIA Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [intelliType Pro] => C:\Program Files\Microsoft Device Center\itype.exe [1464928 2012-06-26] (Microsoft Corporation)
HKLM\...\Run: [intelliPoint] => C:\Program Files\Microsoft Device Center\ipoint.exe [2004584 2012-06-26] (Microsoft Corporation)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5545328 2014-02-28] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295512 2013-07-09] (RealNetworks, Inc.)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [QuickTime Task] => E:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43608 2010-09-07] ()
HKLM-x32\...\Run: [iTunesHelper] => E:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] => C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [198032 2011-10-21] (Lavasoft)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [WinPatrol] => E:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [423144 2013-04-26] (BillP Studios)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-05-18] (Google Inc.)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [steam] => E:\Program Files (x86)\Steam\steam.exe [1826496 2014-04-21] (Valve Corporation)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20918432 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [iCQ] => E:\Program Files (x86)\ICQ7.5\ICQ.exe [124480 2011-08-01] (ICQ, LLC.)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [EADM] => E:\Program Files (x86)\Origin\Origin.exe [3588952 2014-04-06] (Electronic Arts)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [Amazon Cloud Player] => C:\Users\Drazala2\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3140608 2014-01-14] ()
Startup: C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameStop Now.lnk
ShortcutTarget: GameStop Now.lnk -> E:\Program Files (x86)\GameStop App\Now\GameStopNow.exe (GameStop Corp.)
Startup: C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> E:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x76BBFCC19E15CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {B74586AC-29BB-4E46-97F6-EF219CF68BB0} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=994519&p={searchTerms}
SearchScopes: HKCU - {B74586AC-29BB-4E46-97F6-EF219CF68BB0} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=994519&p={searchTerms}
SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = http://search.yahoo.com/search?p={searchTerms}&fr=mkg028
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg.dll (Trend Micro Inc.)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe64.dll (Trend Micro Inc.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll (Trend Micro Inc.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg.dll (Trend Micro Inc.)
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} -  No File
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll (Trend Micro Inc.)
Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default
FF DefaultSearchEngine: eBay
FF SelectedSearchEngine: eBay
FF Homepage: www.google.com

FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.2.32 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.2.32 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll (Trend Micro Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Drazala2\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Users\Drazala2\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation)
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-26.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-27.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-28.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-29.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-30.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\searchplugins-backup
FF Extension: LoaderFF - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\loaderff@nefsis.com [2012-11-09]
FF Extension: Rikaichan Japanese-English Dictionary File - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\rikaichan-jpen@polarcloud.com [2011-06-07]
FF Extension: Rikaichan Japanese Names Dictionary File - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\rikaichan-jpnames@polarcloud.com [2014-04-22]
FF Extension: Rikaichan - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82} [2012-10-18]
FF Extension: DownloadHelper - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-30]
FF Extension: SoundCloud Downloader - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{2b55ea1c-5d12-4fb5-bb9b-2067f8eda4ca}.xpi [2014-04-12]
FF Extension: YouTube High Definition - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-01-24]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF Extension: Adblock Plus - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-05-19]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-03-18]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-03-18]
FF HKLM\...\Firefox\Extensions: [tmbepff-7.5@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension [2013-10-08]
FF HKLM-x32\...\Firefox\Extensions: [tmbepff-7.5@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension [2013-10-08]
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2013-04-05]
FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\ []
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-07-09]
FF HKLM-x32\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ []

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (SoundCloud Downloader) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apbeiaejbifegcmfkflngimmegifddkn [2014-04-12]
CHR Extension: (TrendMicro BEP Extension) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmiabdepfhhiieiipmeecdmeljggmfee [2013-05-25]
CHR Extension: (No Name) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\eokggikdogbdifnoohmoibpipljidahp [2014-04-12]
CHR Extension: (RealDownloader) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-05-25]
CHR Extension: (Skype Click to Call) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-05-25]
CHR Extension: (DVDVideoSoft) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2014-02-06]
CHR Extension: (Google Wallet) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-15]
CHR HKLM\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\chrome_tmbep.crx [2013-10-08]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-12-03]
CHR HKLM-x32\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\chrome_tmbep.crx [2013-10-08]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

S3 DAUpdaterSvc; e:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [25832 2009-12-15] (BioWare)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-04-22] (SurfRight B.V.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-09] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-01-06] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2009-10-20] (CACE Technologies, Inc.)
R2 UCManSvc; C:\Program Files (x86)\SoftDenchi\UCManSvc.exe [186512 2012-11-01] (Paltiosoft Inc.)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-02-28] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [271728 2014-02-28] (Western Digital Technologies, Inc.)
R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad [X]
S3 aspnet_state; %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [X]
S3 nosGetPlusHelper; C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll [X]

==================== Drivers (Whitelisted) ====================

S3 ASPI; C:\Windows\SysWOW64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-03-20] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-03-20] ()
R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [88280 2014-04-03] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-23] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [47632 2009-10-20] (CACE Technologies, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 SaiK0CD9; C:\Windows\System32\DRIVERS\SaiK0CD9.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [24680 2012-10-15] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52200 2012-10-15] (Saitek)
S3 SaiU0CD9; C:\Windows\System32\DRIVERS\SaiU0CD9.sys [47168 2012-09-20] (Saitek)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-08-06] (Duplex Secure Ltd.)
R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [109072 2013-09-04] (Trend Micro Inc.)
R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [175528 2013-09-04] (Trend Micro Inc.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [46392 2012-08-23] (Trend Micro Inc.)
R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [77184 2013-09-04] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105744 2012-05-02] (Trend Micro Inc.)
U3 a61kzujs; C:\Windows\System32\Drivers\a61kzujs.sys [0 ] (Advanced Micro Devices)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 PlantronicsGC; system32\drivers\PLTGC.sys [X]
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
U2 TMAgent;
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-23 19:03 - 2014-04-23 19:04 - 00000000 ____D () C:\FRST
2014-04-23 17:50 - 2014-04-23 17:50 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 17:49 - 2014-04-13 21:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-23 17:49 - 2014-04-13 21:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-23 17:43 - 2014-04-23 18:02 - 00000000 ____D () C:\Windows\pss
2014-04-23 17:19 - 2014-04-23 17:17 - 00347816 _____ (Microsoft Corporation) C:\Users\Drazala2\Desktop\MicrosoftFixit.wu.LB.12321712645330838.46.1.Run.exe
2014-04-23 15:42 - 2014-04-23 15:42 - 00000000 ____D () C:\Windows\CheckSur
2014-04-23 15:10 - 2014-04-23 15:11 - 00000000 ____D () C:\Windows\SoftwareDistribution OLD
2014-04-23 01:26 - 2014-04-23 01:31 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\BetterDS3
2014-04-23 01:26 - 2013-05-10 11:57 - 01661440 _____ (Slackerhome Productions) C:\Users\Drazala2\Desktop\Better DS3.exe
2014-04-23 01:10 - 2014-04-23 01:10 - 00000883 _____ () C:\Users\Public\Desktop\DS3 Tool.lnk
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-04-23 01:10 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2014-04-23 00:59 - 2012-03-24 21:27 - 04197656 _____ (www.motioninjoy.com ) C:\Users\Drazala2\Desktop\MotioninJoy_070000_signed.exe
2014-04-23 00:42 - 2014-04-23 00:42 - 00056780 _____ () C:\ComboFix.txt
2014-04-23 00:34 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-23 00:34 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-23 00:34 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-23 00:33 - 2014-04-23 00:42 - 00000000 ____D () C:\Qoobox
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieUserList
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieSiteList
2014-04-22 23:35 - 2014-04-22 23:35 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\{62F46CCD-50B0-4492-8F7C-217942CFC486}
2014-04-22 23:02 - 2014-04-22 16:59 - 01345435 _____ () C:\Users\Drazala2\Desktop\adwcleaner(1).exe
2014-04-22 22:21 - 2014-04-22 22:21 - 00000512 _____ () C:\Users\Drazala2\Desktop\MBR.dat
2014-04-22 22:19 - 2014-04-22 22:21 - 00002757 _____ () C:\Users\Drazala2\Desktop\aswMBR.txt
2014-04-22 21:27 - 2014-04-22 21:27 - 00001853 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-04-22 21:25 - 2014-04-22 21:42 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-22 21:11 - 2014-04-22 21:11 - 00001454 _____ () C:\Users\Drazala2\Desktop\JRT.txt
2014-04-22 21:00 - 2014-04-22 17:00 - 01016261 _____ (Thisisu) C:\Users\Drazala2\Desktop\JRT.exe
2014-04-22 12:59 - 2014-04-22 12:59 - 00004129 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-22 12:59 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-22 12:59 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-22 10:07 - 2014-04-23 17:45 - 00038280 _____ () C:\Windows\PFRO.log
2014-04-22 10:07 - 2014-04-23 17:45 - 00001008 _____ () C:\Windows\setupact.log
2014-04-22 10:07 - 2014-04-22 10:07 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-22 09:49 - 2014-04-23 17:49 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-22 09:49 - 2014-04-22 16:14 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-22 09:49 - 2014-04-22 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-04-22 09:49 - 2014-04-22 16:14 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-22 09:49 - 2014-04-03 10:47 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-22 09:49 - 2014-04-03 10:47 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-20 20:26 - 2014-04-20 20:26 - 00000222 _____ () C:\Users\Drazala2\Desktop\Always Remember Me.url
2014-04-15 20:01 - 2014-04-19 00:14 - 00000000 ____D () C:\Users\Drazala2\Documents\BYOND
2014-04-14 22:59 - 2014-04-14 22:59 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\dekovir
2014-04-14 16:18 - 2014-04-14 16:18 - 00000000 ____D () C:\Users\Drazala2\Desktop\original
2014-04-14 16:01 - 2014-04-14 16:26 - 00000000 ____D () C:\Users\Drazala2\Desktop\edited
2014-04-12 03:24 - 2012-06-21 05:09 - 00000000 ____D () C:\Users\Drazala2\Desktop\[mikudb] Through the Lyrical-Glass
2014-04-12 02:51 - 2014-04-12 02:37 - 09285684 _____ () C:\Users\Drazala2\Desktop\01 Tell Your World (feat. Hatsune Mi.m4a
2014-04-12 01:59 - 2014-04-12 01:55 - 11251951 _____ () C:\Users\Drazala2\Desktop\11 Re_ Link of Melody (feat. Hatsune.m4a
2014-04-12 00:33 - 2014-04-12 01:04 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\PC-Gizmos
2014-04-12 00:33 - 2014-04-12 00:33 - 00000221 _____ () C:\Users\Drazala2\AppData\Roaming\uninstall.bat
2014-04-10 15:19 - 2014-03-06 04:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-10 15:19 - 2014-03-06 03:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-10 15:19 - 2014-03-06 03:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-10 15:19 - 2014-03-06 03:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-10 15:19 - 2014-03-06 03:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-10 15:19 - 2014-03-06 02:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-10 15:18 - 2014-03-06 05:21 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-10 15:18 - 2014-03-06 04:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-10 15:18 - 2014-03-06 04:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-10 15:18 - 2014-03-06 03:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-10 15:18 - 2014-03-06 03:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-10 15:18 - 2014-03-06 03:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-10 15:18 - 2014-03-06 03:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-10 15:18 - 2014-03-06 03:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-10 15:18 - 2014-03-06 03:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-10 15:18 - 2014-03-06 03:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-10 15:18 - 2014-03-06 03:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-10 15:18 - 2014-03-06 03:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-10 15:18 - 2014-03-06 03:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-10 15:18 - 2014-03-06 03:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-10 15:18 - 2014-03-06 03:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-10 15:18 - 2014-03-06 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-10 15:18 - 2014-03-06 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-10 15:18 - 2014-03-06 02:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-10 15:18 - 2014-03-06 02:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-10 15:18 - 2014-03-06 02:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-10 15:18 - 2014-03-06 02:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-10 15:18 - 2014-03-06 02:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-10 15:18 - 2014-03-06 02:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-10 15:18 - 2014-03-06 02:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-10 15:18 - 2014-03-06 02:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-10 15:18 - 2014-03-06 02:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-10 15:18 - 2014-03-06 02:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-10 15:18 - 2014-03-06 02:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-10 15:18 - 2014-03-06 02:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-10 15:18 - 2014-03-06 02:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-10 15:18 - 2014-03-06 02:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-10 15:18 - 2014-03-06 02:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-10 15:18 - 2014-03-06 01:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-10 15:18 - 2014-03-06 01:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-10 15:18 - 2014-03-06 01:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-10 15:18 - 2014-03-06 01:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-10 15:18 - 2014-03-06 01:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-10 15:18 - 2014-03-06 00:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-10 15:18 - 2014-03-06 00:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-10 15:18 - 2014-03-06 00:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-10 15:18 - 2014-03-06 00:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-10 15:18 - 2014-03-06 00:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-09 04:32 - 2014-03-04 04:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-09 04:32 - 2014-03-04 04:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-09 04:32 - 2014-03-04 04:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-09 04:32 - 2014-03-04 04:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-09 04:32 - 2014-03-04 03:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-09 04:32 - 2014-03-04 03:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-09 04:32 - 2014-02-03 21:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 04:32 - 2014-02-03 21:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 04:32 - 2014-02-03 21:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 04:32 - 2014-02-03 21:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 04:32 - 2014-02-03 21:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-09 04:32 - 2014-01-23 21:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-08 16:31 - 2014-04-08 16:31 - 00003456 _____ () C:\Windows\System32\Tasks\{5722D6DC-14BA-4AB1-824A-A30447322A84}
2014-04-08 16:30 - 2014-04-08 16:30 - 00003456 _____ () C:\Windows\System32\Tasks\{35EA28CA-B100-48B4-A652-DD970DCF4FFC}
2014-04-07 20:56 - 2014-04-09 00:56 - 00000085 _____ () C:\Users\Drazala2\AppData\Roaming\WB.CFG
2014-04-07 18:36 - 2014-04-07 18:36 - 00001187 _____ () C:\Users\Drazala2\Desktop\Continue Free YouTube to MP3 Converter Installation.lnk
2014-04-06 15:43 - 2014-04-06 15:43 - 00000747 _____ () C:\Users\Public\Desktop\Crysis 3.lnk
2014-04-06 15:43 - 2014-04-06 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3
2014-04-06 15:38 - 2014-04-06 17:06 - 00000000 ____D () C:\Users\Drazala2\Documents\Euro Truck Simulator 2
2014-04-06 14:54 - 2014-04-06 16:01 - 00000000 ____D () C:\ProgramData\Origin
2014-04-06 14:54 - 2014-04-06 14:59 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Origin
2014-04-06 14:54 - 2014-04-06 14:57 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Origin
2014-04-06 14:54 - 2014-04-06 14:54 - 00000692 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-04-06 14:54 - 2014-04-06 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iPod
2014-04-05 16:08 - 2014-04-05 16:08 - 00001606 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-04-05 16:08 - 2014-04-05 16:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-04-02 20:53 - 2014-04-02 20:53 - 00000000 ____D () C:\Users\Drazala2\Documents\Krome Studios
2014-04-02 20:51 - 2014-04-02 20:51 - 00002615 _____ () C:\Users\Public\Desktop\BladeKitten.lnk
2014-04-02 20:51 - 2014-04-02 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Krome Studios
2014-04-01 19:47 - 2014-04-01 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam2
2014-04-01 19:46 - 2014-04-01 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam1
2014-03-30 16:31 - 2014-03-30 16:31 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Drazala2\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Administrator\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Drazala2\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-30 16:28 - 2001-08-17 22:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-03-29 21:47 - 2014-04-23 17:49 - 00000388 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Drazala2.job
2014-03-29 21:47 - 2014-04-22 22:11 - 00000378 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Drazala2.job
2014-03-29 21:47 - 2014-04-21 22:10 - 00002980 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Drazala2
2014-03-29 21:47 - 2014-04-21 20:08 - 00002984 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Drazala2
2014-03-29 21:47 - 2014-04-21 20:08 - 00000382 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Drazala2.job
2014-03-29 21:47 - 2014-03-29 21:47 - 00003630 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Drazala2
2014-03-29 21:47 - 2014-03-29 21:47 - 00002688 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Drazala2
2014-03-29 19:21 - 2014-03-29 19:40 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\3Stars
2014-03-29 03:43 - 2014-03-29 03:49 - 00000178 _____ () C:\Users\Drazala2\Desktop\New Text Document (6).txt

==================== One Month Modified Files and Folders =======

2014-04-23 19:04 - 2014-04-23 19:03 - 00000000 ____D () C:\FRST
2014-04-23 18:18 - 2012-04-05 22:41 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-23 18:08 - 2011-05-19 03:39 - 01630823 _____ () C:\Windows\WindowsUpdate.log
2014-04-23 18:08 - 2011-05-18 16:05 - 00000902 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-23 18:02 - 2014-04-23 17:43 - 00000000 ____D () C:\Windows\pss
2014-04-23 18:02 - 2011-05-18 15:40 - 00000000 ___RD () C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-23 17:52 - 2011-05-19 05:08 - 03230722 _____ () C:\Windows\system32\perfh007.dat
2014-04-23 17:52 - 2011-05-19 05:08 - 01063282 _____ () C:\Windows\system32\perfc007.dat
2014-04-23 17:52 - 2011-05-19 05:03 - 03105360 _____ () C:\Windows\system32\perfh011.dat
2014-04-23 17:52 - 2011-05-19 05:03 - 01037012 _____ () C:\Windows\system32\perfc011.dat
2014-04-23 17:52 - 2009-07-14 00:13 - 00006512 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-23 17:52 - 2009-07-13 23:45 - 00021808 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-23 17:52 - 2009-07-13 23:45 - 00021808 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-23 17:50 - 2014-04-23 17:50 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 17:49 - 2014-04-22 09:49 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-23 17:49 - 2014-03-29 21:47 - 00000388 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Drazala2.job
2014-04-23 17:49 - 2013-04-13 00:00 - 00003352 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-23 17:49 - 2013-04-13 00:00 - 00003224 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-23 17:49 - 2012-07-02 23:07 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\TSVNCache
2014-04-23 17:49 - 2011-05-18 16:05 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-23 17:45 - 2014-04-22 10:07 - 00038280 _____ () C:\Windows\PFRO.log
2014-04-23 17:45 - 2014-04-22 10:07 - 00001008 _____ () C:\Windows\setupact.log
2014-04-23 17:45 - 2013-11-12 11:51 - 00008192 _____ () C:\Windows\SysWOW64\WDPABKP.dat
2014-04-23 17:45 - 2011-05-18 15:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-23 17:45 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-23 17:37 - 2011-05-20 06:57 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Skype
2014-04-23 17:17 - 2014-04-23 17:19 - 00347816 _____ (Microsoft Corporation) C:\Users\Drazala2\Desktop\MicrosoftFixit.wu.LB.12321712645330838.46.1.Run.exe
2014-04-23 15:42 - 2014-04-23 15:42 - 00000000 ____D () C:\Windows\CheckSur
2014-04-23 15:11 - 2014-04-23 15:10 - 00000000 ____D () C:\Windows\SoftwareDistribution OLD
2014-04-23 01:31 - 2014-04-23 01:26 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\BetterDS3
2014-04-23 01:10 - 2014-04-23 01:10 - 00000883 _____ () C:\Users\Public\Desktop\DS3 Tool.lnk
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-04-23 00:42 - 2014-04-23 00:42 - 00056780 _____ () C:\ComboFix.txt
2014-04-23 00:42 - 2014-04-23 00:33 - 00000000 ____D () C:\Qoobox
2014-04-23 00:40 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2014-04-23 00:33 - 2013-05-18 13:33 - 00000000 ____D () C:\Windows\erdnt
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieUserList
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieSiteList
2014-04-23 00:09 - 2011-08-15 11:02 - 00000000 ____D () C:\Users\Drazala2\dwhelper
2014-04-22 23:35 - 2014-04-22 23:35 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\{62F46CCD-50B0-4492-8F7C-217942CFC486}
2014-04-22 23:35 - 2011-07-20 21:15 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Windows Live
2014-04-22 23:15 - 2011-05-26 15:04 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\ICQ
2014-04-22 23:11 - 2013-11-16 22:45 - 00000000 ____D () C:\AdwCleaner
2014-04-22 22:42 - 2014-04-22 22:42 - 01357860 _____ (CheatHappens) C:\Users\Drazala2\Desktop\ds-Drazala.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 01302572 _____ (CheatHappens) C:\Users\Drazala2\Desktop\mest-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00709179 _____ (CheatHappens) C:\Users\Drazala2\Desktop\w2-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00700976 _____ (CheatHappens) C:\Users\Drazala2\Desktop\tesv-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00597548 _____ (CheatHappens) C:\Users\Drazala2\Desktop\ds2-Drazala.exe
2014-04-22 22:42 - 2013-04-11 12:39 - 00238128 _____ () C:\Windows\RegBootClean64.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00727609 _____ (CheatHappens) C:\Users\Drazala2\Desktop\bl2-Drazala.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00717385 _____ (CheatHappens) C:\Users\Drazala2\Desktop\f3ar-minraja.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00709193 _____ (CheatHappens) C:\Users\Drazala2\Desktop\wit2-minraja.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00709187 _____ (CheatHappens) C:\Users\Drazala2\Desktop\w2-Drazala.exe
2014-04-22 22:21 - 2014-04-22 22:21 - 00000512 _____ () C:\Users\Drazala2\Desktop\MBR.dat
2014-04-22 22:21 - 2014-04-22 22:19 - 00002757 _____ () C:\Users\Drazala2\Desktop\aswMBR.txt
2014-04-22 22:11 - 2014-03-29 21:47 - 00000378 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Drazala2.job
2014-04-22 21:42 - 2014-04-22 21:25 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-22 21:27 - 2014-04-22 21:27 - 00001853 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-04-22 21:11 - 2014-04-22 21:11 - 00001454 _____ () C:\Users\Drazala2\Desktop\JRT.txt
2014-04-22 20:59 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Registration
2014-04-22 17:00 - 2014-04-22 21:00 - 01016261 _____ (Thisisu) C:\Users\Drazala2\Desktop\JRT.exe
2014-04-22 16:59 - 2014-04-22 23:02 - 01345435 _____ () C:\Users\Drazala2\Desktop\adwcleaner(1).exe
2014-04-22 16:14 - 2014-04-22 09:49 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-22 16:14 - 2014-04-22 09:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-04-22 16:14 - 2014-04-22 09:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-22 12:59 - 2014-04-22 12:59 - 00004129 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-22 12:59 - 2013-10-21 19:23 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-22 12:59 - 2013-05-19 00:51 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-22 10:36 - 2011-05-18 15:46 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-22 10:07 - 2014-04-22 10:07 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-22 10:05 - 2013-10-28 15:40 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Winamp
2014-04-22 09:49 - 2011-05-19 06:29 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Malwarebytes
2014-04-22 09:49 - 2011-05-19 06:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-22 09:48 - 2012-08-06 16:50 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\DAEMON Tools Lite
2014-04-21 22:10 - 2014-03-29 21:47 - 00002980 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Drazala2
2014-04-21 20:08 - 2014-03-29 21:47 - 00002984 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Drazala2
2014-04-21 20:08 - 2014-03-29 21:47 - 00000382 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Drazala2.job
2014-04-21 14:02 - 2013-04-13 02:23 - 00003374 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-21 14:02 - 2013-04-13 02:23 - 00003246 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-21 00:30 - 2013-12-15 21:37 - 00000000 ____D () C:\Users\Drazala2\Documents\TwoBrothersData
2014-04-20 20:26 - 2014-04-20 20:26 - 00000222 _____ () C:\Users\Drazala2\Desktop\Always Remember Me.url
2014-04-20 20:26 - 2011-06-20 13:17 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-20 12:09 - 2013-12-13 09:54 - 00000000 ____D () C:\ProgramData\WildTangent
2014-04-19 00:14 - 2014-04-15 20:01 - 00000000 ____D () C:\Users\Drazala2\Documents\BYOND
2014-04-15 16:19 - 2014-03-06 15:06 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\StealthBastard[steam]
2014-04-14 22:59 - 2014-04-14 22:59 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\dekovir
2014-04-14 20:13 - 2014-04-22 12:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-22 12:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-02-17 14:15 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-02-17 14:15 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-14 16:26 - 2014-04-14 16:01 - 00000000 ____D () C:\Users\Drazala2\Desktop\edited
2014-04-14 16:18 - 2014-04-14 16:18 - 00000000 ____D () C:\Users\Drazala2\Desktop\original
2014-04-13 21:24 - 2014-04-23 17:49 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-13 21:19 - 2014-04-23 17:49 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-12 02:37 - 2014-04-12 02:51 - 09285684 _____ () C:\Users\Drazala2\Desktop\01 Tell Your World (feat. Hatsune Mi.m4a
2014-04-12 01:55 - 2014-04-12 01:59 - 11251951 _____ () C:\Users\Drazala2\Desktop\11 Re_ Link of Melody (feat. Hatsune.m4a
2014-04-12 01:04 - 2014-04-12 00:33 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\PC-Gizmos
2014-04-12 00:33 - 2014-04-12 00:33 - 00000221 _____ () C:\Users\Drazala2\AppData\Roaming\uninstall.bat
2014-04-11 23:53 - 2012-04-05 22:41 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-11 23:53 - 2012-04-05 22:41 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-11 23:53 - 2011-05-25 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Adobe
2014-04-11 23:53 - 2011-05-18 16:05 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-11 21:52 - 2011-12-05 19:43 - 00000000 ____D () C:\Users\Drazala2\Documents\My Cheat Tables
2014-04-11 04:10 - 2013-11-05 01:18 - 00000000 ____D () C:\Users\Drazala2\Documents\My Trainers
2014-04-10 17:51 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-04-10 15:22 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-10 03:02 - 2013-07-09 22:49 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-10 03:02 - 2012-06-28 19:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-10 03:00 - 2011-05-19 04:30 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 00:56 - 2014-04-07 20:56 - 00000085 _____ () C:\Users\Drazala2\AppData\Roaming\WB.CFG
2014-04-08 16:31 - 2014-04-08 16:31 - 00003456 _____ () C:\Windows\System32\Tasks\{5722D6DC-14BA-4AB1-824A-A30447322A84}
2014-04-08 16:30 - 2014-04-08 16:30 - 00003456 _____ () C:\Windows\System32\Tasks\{35EA28CA-B100-48B4-A652-DD970DCF4FFC}
2014-04-08 16:09 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-07 20:00 - 2013-10-28 16:39 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Media Player Classic
2014-04-07 19:59 - 2014-02-06 20:43 - 00000782 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-07 19:59 - 2013-05-18 16:37 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-07 19:53 - 2014-03-06 16:24 - 00001239 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-04-07 19:53 - 2012-12-04 14:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-04-07 19:53 - 2011-06-21 02:22 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-04-07 19:52 - 2011-05-30 10:57 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\DVDVideoSoft
2014-04-07 18:36 - 2014-04-07 18:36 - 00001187 _____ () C:\Users\Drazala2\Desktop\Continue Free YouTube to MP3 Converter Installation.lnk
2014-04-06 17:06 - 2014-04-06 15:38 - 00000000 ____D () C:\Users\Drazala2\Documents\Euro Truck Simulator 2
2014-04-06 16:26 - 2011-05-18 22:23 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-04-06 16:01 - 2014-04-06 14:54 - 00000000 ____D () C:\ProgramData\Origin
2014-04-06 15:43 - 2014-04-06 15:43 - 00000747 _____ () C:\Users\Public\Desktop\Crysis 3.lnk
2014-04-06 15:43 - 2014-04-06 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3
2014-04-06 15:43 - 2009-07-14 00:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-04-06 14:59 - 2014-04-06 14:54 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Origin
2014-04-06 14:57 - 2014-04-06 14:54 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Origin
2014-04-06 14:54 - 2014-04-06 14:54 - 00000692 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-04-06 14:54 - 2014-04-06 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-04-06 04:17 - 2012-04-26 12:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-05 23:46 - 2011-05-18 16:05 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Google
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iPod
2014-04-05 16:10 - 2014-02-16 01:25 - 00001568 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-05 16:08 - 2014-04-05 16:08 - 00001606 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-04-05 16:08 - 2014-04-05 16:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-04-03 14:21 - 2013-10-14 00:23 - 00000000 ____D () C:\Users\Drazala2\Documents\Larian Studios
2014-04-03 14:09 - 2014-01-01 16:38 - 00000196 _____ () C:\Users\Drazala2\Desktop\New Text Document (2).txt
2014-04-03 10:47 - 2014-04-22 09:49 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 10:47 - 2014-04-22 09:49 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 10:47 - 2013-05-18 16:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-02 20:53 - 2014-04-02 20:53 - 00000000 ____D () C:\Users\Drazala2\Documents\Krome Studios
2014-04-02 20:51 - 2014-04-02 20:51 - 00002615 _____ () C:\Users\Public\Desktop\BladeKitten.lnk
2014-04-02 20:51 - 2014-04-02 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Krome Studios
2014-04-01 19:47 - 2014-04-01 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam2
2014-04-01 19:47 - 2014-04-01 19:46 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam1
2014-03-31 09:35 - 2011-05-18 16:15 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-03-30 16:31 - 2014-03-30 16:31 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Drazala2\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Administrator\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Drazala2\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-30 15:45 - 2011-06-20 19:46 - 00000000 ____D () C:\Users\Drazala2\Documents\My Games
2014-03-30 03:03 - 2011-12-02 21:20 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\.minecraft
2014-03-29 21:47 - 2014-03-29 21:47 - 00003630 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Drazala2
2014-03-29 21:47 - 2014-03-29 21:47 - 00002688 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Drazala2
2014-03-29 19:40 - 2014-03-29 19:21 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\3Stars
2014-03-29 03:49 - 2014-03-29 03:43 - 00000178 _____ () C:\Users\Drazala2\Desktop\New Text Document (6).txt
2014-03-28 16:02 - 2014-02-04 22:31 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-03-27 14:04 - 2014-02-14 01:49 - 00000000 ____D () C:\Users\Drazala2\Documents\MercurySteam
2014-03-27 04:03 - 2011-05-18 16:05 - 00003898 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-27 04:03 - 2011-05-18 16:05 - 00003646 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-19 01:06

==================== End Of Log ============================

Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-04-2014
Ran by Drazala2 at 2014-04-23 19:04:38
Running from E:\Users\Drazala2\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Trend Micro Titanium Internet Security (Enabled - Up to date) {B7599298-8445-728A-A5C7-A26A082C8BDA}
AS: Trend Micro Titanium Internet Security (Enabled - Up to date) {0C38737C-A27F-7D04-9F77-991873ABC167}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

10,000,000 (HKLM-x32\...\Steam App 227580) (Version:  - EightyEightGames)
3 Stars of Destiny (HKLM-x32\...\Steam App 278530) (Version:  - Aldorlea Games)
3079 -- Block Action RPG (HKLM-x32\...\Steam App 259620) (Version:  - Phr00t's Software)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
99 Spirits (HKLM-x32\...\Steam App 258090) (Version:  - TORaIKI)
Active@ ISO Burner (HKLM-x32\...\{7694E0B1-2332-448B-9235-929F84B41E3F}) (Version: 2.5.1 - LSoft Technologies)
Actual Sunlight (HKLM-x32\...\Steam App 288040) (Version:  - Will O'Neill)
Ad-Aware Browsing Protection (HKLM-x32\...\Ad-Aware Browsing Protection) (Version: 1.0.0.5 - Lavasoft)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Advanced Combat Tracker (remove only) (HKLM-x32\...\Advanced Combat Tracker) (Version:  - )
Agarest: Generations of War (HKLM-x32\...\Steam App 237890) (Version:  - Ghostlight)
Alice: Madness Returns (HKLM-x32\...\Steam App 19680) (Version:  - Spicy Horse Games)
Alpha Kimori™ Episode One  (HKLM-x32\...\Steam App 265870) (Version:  - Sherman3D)
Always Remember Me (HKLM-x32\...\Steam App 291030) (Version:  - Winter Wolves)
Amazon Cloud Player (HKCU\...\Amazon Amazon Cloud Player) (Version: 2.3.0.422 - Amazon Services LLC)
AMD USB Filter Driver (x32 Version: 1.0.15.94 - Advanced Micro Devices, Inc.) Hidden
Amnesia: A Machine for Pigs (HKLM-x32\...\Steam App 239200) (Version:  - The Chinese Room)
Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version:  - Frictional Games)
Analogue: A Hate Story (HKLM-x32\...\Steam App 209370) (Version:  - Christine Love)
Anodyne (HKLM-x32\...\Steam App 234900) (Version:  - Sean Hogan and Jonathan Kittaka)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{64555D45-1F57-BF1D-1A5E-BFD4C8C0ADB4}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version:  - Audacity Team)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 1998404862.48.56.13241714 - Audible, Inc.)
Audio Transcoder (HKLM\...\{0EDB29CF-5FFC-4824-9F13-3D1C4286CA98}_is1) (Version: 2.9 - Digital Music Software)
Audiosurf (HKLM-x32\...\Steam App 12900) (Version:  - Dylan Fitterer)
Audiosurf 2 (HKLM-x32\...\Steam App 235800) (Version:  - Dylan Fitterer)
Aveyond Lord of Twilight (HKLM-x32\...\Steam App 272010) (Version:  - Amaranth Games, LLC)
Aveyond: Gates of Night (HKLM-x32\...\Steam App 278490) (Version:  - Amaranth Games, LLC)
Avination Viewer 0.3.2 FL III (HKLM-x32\...\{227A0DFC-D726-4133-AB98-C0A56398B3C3}) (Version: 1.0.0 - Avination Virtual LImited)
Baldur's Gate: Enhanced Edition (HKLM-x32\...\Steam App 228280) (Version:  - Overhaul Games)
Bastion (HKLM-x32\...\Steam App 107100) (Version:  - Supergiant Games)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version:  - Rocksteady Studios)
Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version:  - WB Games Montreal)
BioShock (HKLM-x32\...\Steam App 7670) (Version:  - 2K Boston)
BioShock 2 (HKLM-x32\...\Steam App 8850) (Version:  - 2K Marin)
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
Blackguards (HKLM-x32\...\Steam App 249650) (Version:  - Daedalic Entertainment)
Blade Kitten (HKLM-x32\...\{FB600500-1DA2-41B6-B4BB-17F6FB35F915}) (Version: 1.0.0 - Krome Studios)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Breath of Death VII  (HKLM-x32\...\Steam App 107300) (Version:  - Zeboyd Games)
Bukkake Ranch (HKLM-x32\...\BukkakeRanch) (Version: English 1.0 - Mangagamer)
Castlevania: Lords of Shadow – Mirror of Fate HD (HKLM-x32\...\Steam App 282530) (Version:  - MercurySteam)
Castlevania: Lords of Shadow - Ultimate Edition (HKLM-x32\...\Steam App 234080) (Version:  - MercurySteam - Climax Studios)
Castlevania: Lords of Shadow 2 Demo (HKLM-x32\...\Steam App 273130) (Version:  - MercurySteam)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
CeVIO Creative Studio FREE (HKLM-x32\...\{4EE0311B-B45A-40F9-A9DE-F41FA2EC9BC8}) (Version: 1.2.11 - CeVIO)
Chantelise (HKLM-x32\...\Steam App 70420) (Version:  - EasyGameStation)
Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version:  - Dark Byte)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Cherry Tree High Comedy Club (HKLM-x32\...\Steam App 214610) (Version:  - 773)
Condemned: Criminal Origins (HKLM-x32\...\Steam App 4720) (Version:  - Monolith)
Cook, Serve, Delicious! (HKLM-x32\...\Steam App 247020) (Version:  - )
Craft The World (HKLM-x32\...\Steam App 248390) (Version:  - )
Crysis® 3: Hunter Edition (HKLM-x32\...\Crysis® 3: Hunter Edition) (Version:  - GameStop)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
CrystalDiskInfo 5.0.0 Shizuku Edition (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.0.0 - Crystal Dew World)
Cthulhu Saves the World  (HKLM-x32\...\Steam App 107310) (Version:  - Zeboyd Games)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version:  - FromSoftware)
DarksidersInstaller (HKLM-x32\...\{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}) (Version: 1.00.1000 - THQ)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
Diablo II (HKLM-x32\...\Diablo II) (Version:  - )
Diablo III (HKLM-x32\...\Diablo III) (Version: 1.0.7.15295 - Blizzard Entertainment)
Digital - A Love Story 1.1 (HKLM-x32\...\Digital - A Love Story) (Version: 1.1 - Lily of the Valley games)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Divinity Original Sin (HKLM-x32\...\Steam App 230230) (Version:  - Larian Studios)
don't take it personally, babe, it just ain't your story 1.1 (HKLM-x32\...\don't take it personally, babe, it just ain't your story) (Version: 1.1 - Christine Love)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05 - Electronic Arts, Inc.)
Driftmoon (HKLM-x32\...\Steam App 263380) (Version:  - Ville Mönkkönen)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Duke Nukem 3D: Megaton Edition (HKLM-x32\...\Steam App 225140) (Version:  - 3D Realms)
Duke Nukem Forever (HKLM-x32\...\Steam App 57900) (Version:  - Gearbox Software)
Dungeon Hearts (HKLM-x32\...\Steam App 229520) (Version:  - Cube Roots)
Dungeon of the Endless (HKLM-x32\...\Steam App 249050) (Version:  - AMPLITUDE Studios)
Dust: An Elysian Tail (HKLM-x32\...\Steam App 236090) (Version:  - Humble Hearts LLC)
Dysfunctional Systems: Learning to Manage Chaos (HKLM-x32\...\Steam App 248800) (Version:  - )
Echo Prime (HKLM-x32\...\Steam App 255030) (Version:  - Robot Entertainment)
Edge of Space (HKLM-x32\...\Steam App 238240) (Version:  - Handyman Studios)
Edna & Harvey: The Breakout (HKLM-x32\...\Steam App 255320) (Version:  - Daedalic Entertainment)
Enclave (HKLM-x32\...\Steam App 253980) (Version:  - Topware)
Endless Space (HKLM-x32\...\Steam App 208140) (Version:  - AMPLITUDE Studios)
Epic Battle Fantasy 4 (HKLM-x32\...\Steam App 265610) (Version:  - Matt Roszak)
EQ2MAP Updater 1.2.10 (HKLM-x32\...\EQ2MAP Updater) (Version: 1.2.10 - Johan Nilsson)
Eryi's Action (HKLM-x32\...\Steam App 261700) (Version:  - Xtal Sword)
Ether One (HKLM-x32\...\Steam App 265950) (Version:  - White Paper Games)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
EverQuest II (HKCU\...\SOE-EverQuest II) (Version:  - Sony Online Entertainment)
EvilQuest (HKLM-x32\...\Steam App 263820) (Version:  - Chaosoft Games)
Evoland (HKLM-x32\...\Steam App 233470) (Version:  - Shiro Games)
eXceed - Gun Bullet Children (HKLM-x32\...\Steam App 207370) (Version:  - Flat Software)
eXceed 2nd - Vampire REX (HKLM-x32\...\Steam App 207380) (Version:  - Tennen-sozai)
eXceed 3rd - Jade Penetrate Black Package (HKLM-x32\...\Steam App 207400) (Version:  - Tennen-sozai)
F.E.A.R. 3 (HKLM-x32\...\Steam App 21100) (Version:  - Day 1 Studios)
Fable - The Lost Chapters (HKLM-x32\...\Steam App 204030) (Version:  - Lionhead Studios)
Fading Hearts 2.0.4 (HKLM-x32\...\Fading Hearts) (Version: 2.0.4 - Sakura River Interactive)
Fallout (HKLM-x32\...\Steam App 38400) (Version:  - Interplay Inc.)
Fallout 2 (HKLM-x32\...\Steam App 38410) (Version:  - Black Isle Studios)
Fallout Tactics (HKLM-x32\...\Steam App 38420) (Version:  - 14° East)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Bethesda Softworks)
Far Cry 2 (HKLM-x32\...\Steam App 19900) (Version:  - Ubisoft Montreal)
FATE (HKLM-x32\...\Steam App 246840) (Version:  - WildTangent)
FATE: Undiscovered Realms (HKLM-x32\...\Steam App 276890) (Version:  - WildTangent)
Feeding Frenzy 2: Shipwreck Showdown Deluxe (HKLM-x32\...\Steam App 3390) (Version:  - PopCap Games, Inc.)
FINAL FANTASY VII (HKLM-x32\...\Steam App 39140) (Version:  - Square Enix)
FINAL FANTASY VIII (HKLM-x32\...\Steam App 39150) (Version:  - SQUARE ENIX)
Finn and Jake's Epic Quest (HKLM-x32\...\Steam App 258590) (Version:  - NGD Studios)
Firestorm-Beta (remove only) (HKLM-x32\...\Firestorm-Beta) (Version:  - )
Firestorm-Beta-Mesh (remove only) (HKLM-x32\...\Firestorm-Beta-Mesh) (Version:  - )
Firestorm-Release (remove only) (HKLM-x32\...\Firestorm-Release) (Version:  - )
FLV Player (HKLM-x32\...\FLV Player2.0.25) (Version: 2.0.25 - Martijn de Visser Software)
FlvRecorder (HKLM-x32\...\Flv Recorder_is1) (Version:  - )
Forge Quest (HKLM-x32\...\Steam App 249950) (Version:  - )
Fortune Summoners: Secret of the Elemental Stone (HKLM-x32\...\Steam App 203510) (Version:  - Lizsoft)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.16.327 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.10.15.1228 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version:  - DVDVideoSoft Ltd.)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version:  - Greenheart Games)
GameSpy Comrade (HKLM-x32\...\{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}) (Version: 1.5.0.156 - GameSpy)
GameStop App (HKLM-x32\...\GameStop App) (Version: 4.00 - GameStop)
GameStop App (x32 Version: 4.00 - GameStop) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Giana Sisters: Twisted Dreams - Rise of the Owlverlord (HKLM-x32\...\Steam App 246960) (Version:  - Black Forest Games)
Giana Sisters: Twisted Dreams (HKLM-x32\...\Steam App 223220) (Version:  - Black Forest Games)
Go! Go! Nippon! ~My First Trip to Japan~ (HKLM-x32\...\Steam App 251870) (Version:  - OVERDRIVE)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version:  - Coffee Stain Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Google Video Uploader (HKLM-x32\...\Google Video Uploader) (Version:  - )
Guacamelee! Gold Edition (HKLM-x32\...\Steam App 214770) (Version:  - DrinkBox Studios)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
GundeadliGne (HKLM-x32\...\Steam App 92220) (Version:  - Platine Dispositif)
Gundemonium Recollection (HKLM-x32\...\Steam App 92200) (Version:  - Platine Dispositif)
Half Minute Hero: Super Mega Neo Climax Ultimate Boy (HKLM-x32\...\Steam App 214830) (Version:  - Opus )
Half Minute Hero: The Second Coming (HKLM-x32\...\Steam App 240970) (Version:  - OPUS)
Hammerwatch (HKLM-x32\...\Steam App 239070) (Version:  - )
Hard Reset (HKLM-x32\...\Steam App 98400) (Version:  - Flying Wild Hog)
Hate Plus (HKLM-x32\...\Steam App 239700) (Version:  - Christine Love)
Hero Editor V1.04 (HKLM-x32\...\ST6UNST #1) (Version:  - )
HHD Software Hex Editor Neo 5.14 (HKCU\...\{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}) (Version: 5.14.0.4787 - HHD Software, Ltd.)
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.216 - SurfRight B.V.)
Hitogata Happa (HKLM-x32\...\Steam App 92210) (Version:  - Platine Dispositif)
Hotline Miami (HKLM-x32\...\Steam App 219150) (Version:  - Dennaton Games)
Humanity Asset (HKLM-x32\...\Steam App 271640) (Version:  - Browny Application)
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
ISO Recorder (HKLM\...\{2D7ED2A0-9553-412B-939F-D6E0AEB2ABE1}) (Version: 3.1.0 - Alex Feinman)
ISXEQ2 20110512.0063 (HKLM-x32\...\ISXEQ2) (Version: 20110512.0063 - isxGames)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java 7 Update 7 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417007FF}) (Version: 7.0.70 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java 6 Update 27 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416027FF}) (Version: 6.0.270 - Oracle)
Java 7 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217000F0}) (Version: 7.0.0 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Just Cause (HKLM-x32\...\Steam App 6880) (Version:  - Avalanche)
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche)
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version:  - )
KCP-0.5.4.2 (HKLM-x32\...\Kawaii Codec Pack_is1) (Version: 0.5.4.2 - Haruhichan.com)
KeePass Password Safe 1.25 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.25 - Dominik Reichl)
KeyHoleTV (HKLM-x32\...\KeyHoleTV) (Version:  - )
Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version:  - Big Huge Games)
K-Lite Mega Codec Pack 10.1.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.1.0 - )
Knights of Pen and Paper +1 (HKLM-x32\...\Steam App 231740) (Version:  - Behold Studios)
L&H TTS3000 Japanese (HKLM-x32\...\LHTTSJPJ) (Version:  - )
L.A. Noire (HKLM-x32\...\Steam App 110800) (Version:  - Team Bondi)
La-Mulana (HKLM-x32\...\Steam App 230700) (Version:  - NIGORO)
Last Dream (HKLM-x32\...\Steam App 266230) (Version:  - White Giant RPG Studios)
Left 4 Dead 2 Beta (HKLM-x32\...\Steam App 223530) (Version:  - )
Legends of Norrath (HKCU\...\SOE-LegendsOfNorrath) (Version:  - Sony Online Entertainment)
LEGO Lord of the Rings (HKLM-x32\...\Steam App 214510) (Version:  - Traveller's Tales)
Long Live The Queen (HKLM-x32\...\Steam App 251990) (Version:  - Hanako Games)
Magical Diary (HKLM-x32\...\Steam App 211340) (Version:  - Hanako Games)
Malwarebytes Anti-Malware version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Mark of the Ninja (HKLM-x32\...\Steam App 214560) (Version:  - Klei Entertainment)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version:  - BioWare)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
MediaInfo 0.7.64 (HKLM\...\MediaInfo) (Version: 0.7.64 - MediaArea.net)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version:  - PlatinumGames)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version:  - 4A Games)
Metro: Last Light (HKLM-x32\...\Steam App 43160) (Version:  - 4A Games)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (JPN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (日本語) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft AppLocale (HKLM-x32\...\{394BE3D9-7F57-4638-A8D1-1D88671913B7}) (Version: 1.0.0 - MS)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 1.1.500.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 1.1.500.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Windows Application Compatibility Database (HKLM\...\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb) (Version:  - )
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Might & Magic VI (HKLM-x32\...\Steam App 243380) (Version:  - )
Might & Magic X - Legacy  (HKLM-x32\...\Steam App 238750) (Version:  - Ubisoft)
mIRC (HKLM-x32\...\mIRC) (Version: 7.29 - mIRC Co. Ltd.)
MotioninJoy Gamepad tool 0.7.0000 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.0000 - www.motioninjoy.com)
Mozilla Firefox 28.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Mumble 1.2.4 (HKLM-x32\...\{2D9A136B-B9C9-409B-9BE6-D0DF4FB75708}) (Version: 1.2.4 - Thorvald Natvig)
My Game Long Name (HKLM\...\UDK-6b17e795-2728-4459-93da-8966dc2f867d) (Version:  - Epic Games, Inc.)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\Steam App 234670) (Version:  - CyberConnect 2)
NEStalgia (HKLM-x32\...\Steam App 249550) (Version:  - Silk Games)
NVIDIA Control Panel 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
On the Rain-Slick Precipice of Darkness, Episode One (HKLM-x32\...\Steam App 18000) (Version:  - Hothead Games)
On the Rain-Slick Precipice of Darkness, Episode Two (HKLM-x32\...\Steam App 18020) (Version:  - Hothead Games)
One Way Heroics (HKLM-x32\...\Steam App 266210) (Version:  - Smoking WOLF)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 0.10.0.22479 - Grinding Gear Games)
Penny Arcade's On the Rain-Slick Precipice of Darkness 3 (HKLM-x32\...\Steam App 213030) (Version:  - Zeboyd Games)
Penny Arcade's On the Rain-Slick Precipice of Darkness 4 (HKLM-x32\...\Steam App 237570) (Version:  - Zeboyd Games)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version:  - Vitali Kirpu)
POSTAL 2 Complete (HKLM-x32\...\Steam App 223470) (Version:  - Running With Scissors)
ProfitUI Reborn Updater (HKCU\...\ProfitUI Reborn Updater) (Version:  - Kaldran - EQ2 Valor Server)
Project 64 version 2.0.0.14 (HKLM-x32\...\Project 64_is1) (Version: 2.0.0.14 - )
Quest of Dungeons (HKLM-x32\...\Steam App 270050) (Version:  - David Amador)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
R.A.T. 9 Battery Charge Indicator (HKLM-x32\...\{E351A4AC-5D5D-4748-A2FE-310EC70F3E05}) (Version: 1.2.0 - Mad Catz)
RAGE (HKLM-x32\...\Steam App 9200) (Version:  - id Software)
Raid Hub Client (HKLM-x32\...\{1499C0A5-6EE6-480E-AE94-1CCD665FDF2D}) (Version: 1.1.32 - www.raidhub.com)
RealDownloader (x32 Version: 1.3.2 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.2 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Recettear: An Item Shop's Tale (HKLM-x32\...\Steam App 70400) (Version:  - EasyGameStation)
Redshirt (HKLM-x32\...\Steam App 247870) (Version:  - The Tiniest Shark)
Remember Me (HKLM-x32\...\Steam App 228300) (Version:  - DONTNOD Entertainment)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden
Resident Evil Revelations / Biohazard Revelations UE (HKLM-x32\...\Steam App 222480) (Version:  - Capcom)
Retro City Rampage™ (HKLM-x32\...\Steam App 204630) (Version:  - Vblank Entertainment, Inc.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rise of the Triad (HKLM-x32\...\Steam App 217140) (Version:  - Interceptor Entertainment)
RMP4 (HKLM-x32\...\{F78FC958-7354-43EA-BF26-AFCBFE7B9C18}) (Version: 1.02.0000 - RSUPPORT)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version:  - Cellar Door Games)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version:  - GSC Game World)
Saints Row 2 (HKLM-x32\...\Steam App 9480) (Version:  - Volition)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Sanctum (HKLM-x32\...\Steam App 91600) (Version:  - Coffee Stain Studios)
Sang-Froid - Tales of Werewolves (HKLM-x32\...\Steam App 227220) (Version:  - Artifice Studio)
Satsuki Decoder Pack 64 bits (HKLM\...\Satsuki Decoder Pack) (Version: 43017 - Satsuki Yatoshi'S Softs)
Savant - Ascent (HKLM-x32\...\Steam App 259530) (Version:  - DPad Studios)
Saya no Uta - The Song of Saya version 1.0 (HKLM-x32\...\{54BFE519-3276-4B64-A747-E89AEF5D9337}_is1) (Version: 1.0 - JAST USA)
Science Girls (HKLM-x32\...\Steam App 269010) (Version:  - Spiky Caterpillar)
Scribblenauts Unlimited (HKLM-x32\...\Steam App 218680) (Version:  - 5th Cell Media)
sdrt(5.0, 64bit) (HKLM\...\{63A3DBCF-FB40-4398-9AE5-94EE6206CE12}) (Version: 5.0.3.0 - パルティオソフト株式会社)
Septerra Core (HKLM-x32\...\Steam App 253940) (Version:  - )
Shadow Warrior (HKLM-x32\...\Steam App 233130) (Version:  - Flying Wild Hog)
Shadow Warrior Classic Redux (HKLM-x32\...\Steam App 225160) (Version:  - 3D Realms)
Shadowgrounds (HKLM-x32\...\Steam App 2500) (Version:  - Frozenbyte)
Shadowgrounds: Survivor (HKLM-x32\...\Steam App 11200) (Version:  - Frozenbyte)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Shira Oka - Second Chances version 1.1.8 (HKLM-x32\...\{A8F013F5-00CF-451B-BFC7-A36D8ADF497B}_is1) (Version: 1.1.8 - GamersGate)
Skullgirls (HKLM-x32\...\Steam App 245170) (Version:  - Lab Zero Games)
Skyborn (HKLM-x32\...\Steam App 278460) (Version:  - Dancing Dragon Games)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
Smart Technology Programming Software 7.0.23.0 (HKLM\...\{2A9D89B8-D07E-48F5-9A4C-0972D6FA5475}) (Version: 7.0.23.0 - Mad Catz)
Sniper Elite: Nazi Zombie Army (HKLM-x32\...\Steam App 227100) (Version:  - Rebellion)
Sniper Elite: Nazi Zombie Army 2 (HKLM-x32\...\Steam App 247910) (Version:  - )
SoundCloud Downloader (HKLM-x32\...\PC Gizmos 136528) (Version: 83 - PC Gizmos LTD)
Sparkle 2 Evo (HKLM-x32\...\Steam App 253650) (Version:  - )
Spelunky (HKLM-x32\...\Steam App 239350) (Version:  - )
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
State of Decay (HKLM-x32\...\Steam App 241540) (Version:  - Undead Labs)
Stealth Bastard Deluxe (HKLM-x32\...\Steam App 209190) (Version:  - Curve Studios)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Strike Suit Infinity (HKLM-x32\...\Steam App 234160) (Version:  - Born Ready Games Ltd.)
Strike Suit Zero (HKLM-x32\...\Steam App 209540) (Version:  - Born Ready Games Ltd.)
Sudeki (HKLM-x32\...\Steam App 233350) (Version:  - Climax Studios)
Suika A.S+ (HKLM-x32\...\Suika A.S+_is1) (Version:  - )
System Requirements Lab (HKLM-x32\...\SystemRequirementsLab) (Version:  - )
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version:  - Irrational Games)
TAudioConverter 32bit version 0.9.0 (HKLM-x32\...\{35FC8349-C27B-4680-ABF1-88F7FE893586}_is1) (Version: 0.9.0 - ozok)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version:  - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.16642 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Book of Legends (HKLM-x32\...\Steam App 277470) (Version:  - Aldorlea Games)
The Dark Eye: Chains of Satinav (HKLM-x32\...\Steam App 203830) (Version:  - Daedalic Entertainment)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Incredible Adventures of Van Helsing (HKLM-x32\...\Steam App 215530) (Version:  - NeocoreGames)
The Inner World (HKLM-x32\...\Steam App 251430) (Version:  - Headup Games)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version:  - Telltale Games)
The Witcher (HKLM-x32\...\{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}) (Version: 1.00.0000 - CD Projekt Red)
The Witcher 2 (HKLM-x32\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - )
The Yawhg (HKLM-x32\...\Steam App 269030) (Version:  - Damian Sommer)
Thief (HKLM-x32\...\Steam App 239160) (Version:  - Eidos-Montréal)
To the Moon (HKLM-x32\...\Steam App 206440) (Version:  - Freebird Games)
Torchlight (HKLM-x32\...\Steam App 41500) (Version:  - Runic Games)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Torchlight II GUTS (HKLM-x32\...\Steam App 223070) (Version:  - )
TortoiseSVN 1.7.12.24070 (64 bit) (HKLM\...\{B2DCF07D-0F89-4818-8B41-50DABC1A310D}) (Version: 1.7.24070 - TortoiseSVN)
Trend Micro Titanium (Version: 6.00 - Trend Micro Inc.) Hidden
Trend Micro Titanium Internet Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 6.0 - Trend Micro Inc.)
Trine (HKLM-x32\...\Steam App 35700) (Version:  - Frozenbyte)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version:  - Frozenbyte)
Tsukumogami (HKLM-x32\...\Steam App 262300) (Version:  - TORaIKI)
Two Brothers (HKLM-x32\...\Steam App 259760) (Version:  - Ackk Studios)
Two Worlds II (HKLM-x32\...\Steam App 7520) (Version:  - Reality Pump Studios)
Two Worlds II Castle Defense (HKLM-x32\...\Steam App 7530) (Version:  - Reality Pump Studios)
Two Worlds: Epic Edition (HKLM-x32\...\Steam App 1930) (Version:  - Reality Pump Studios)
Unholy Heights (HKLM-x32\...\Steam App 249330) (Version:  - )
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unreal Development Kit: 2012-07 (HKLM\...\UDK-36bce4aa-07ee-4f00-9f01-b7f179f7e7de) (Version:  - Epic Games, Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Vanguard Princess (HKLM-x32\...\Steam App 262150) (Version:  - Tomoaki Sugeno)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Velocity®Ultra (HKLM-x32\...\Steam App 244890) (Version:  - Curve Studios)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
Viscera Cleanup Detail (HKLM-x32\...\Steam App 246900) (Version:  - RuneStorm)
Viscera Cleanup Detail: Santa's Rampage (HKLM-x32\...\Steam App 265210) (Version:  - RuneStorm)
Viscera Cleanup Detail: Shadow Warrior (HKLM-x32\...\Steam App 255520) (Version:  - RuneStorm)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
VLC media player 2.0.8 (HKLM-x32\...\VLC media player) (Version: 2.0.8 - VideoLAN)
VoiceOver Kit (HKLM-x32\...\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}) (Version: 1.42.128.0 - Apple Inc.)
VoiceText-TTS-NeoSpeech-Japanese-Voice-Misaki (HKLM-x32\...\{C3986D16-9FF3-4F0E-B198-321E7995C256}) (Version: 1.00.0000 - VW crack)
War of the Human Tanks (HKLM-x32\...\Steam App 263400) (Version:  - Yakiniku Banzai)
WD Quick View (HKLM-x32\...\{A6E9CF82-185C-4EA4-83B3-68FADAFDD24E}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{EE290991-5798-4D76-92D1-46E719E0571A}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{1ec9e03a-452b-48fb-8e1b-27ee0477985f}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
Where Angels Cry (HKLM-x32\...\Steam App 277560) (Version:  - Cateia Games)
Winamp (HKLM-x32\...\Winamp) (Version: 5.65  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows Grep 2.3 (HKLM-x32\...\Windows Grep_is1) (Version:  - )
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinPatrol (HKLM\...\{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}) (Version: 28.1.2013.0 - BillP Studios)
WinPcap 4.1.1 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
WinZip Driver Updater (HKLM-x32\...\{9854A5C4-5BE5-46E2-A989-352DD8B37E20}_is1) (Version: 1.0.648.11339 - WinZip Computing, S.L. (WinZip Computing))
Wizorb (HKLM-x32\...\Steam App 207420) (Version:  - Tribute Games)
X-Blades (HKLM-x32\...\Steam App 7510) (Version:  - Topware Interactive)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )
Ys I (HKLM-x32\...\Steam App 223810) (Version:  - Nihon Falcom)
Ys II (HKLM-x32\...\Steam App 223870) (Version:  - Nihon Falcom)
Ys Origin (HKLM-x32\...\Steam App 207350) (Version:  - Nihon Falcom)
Ys: The Oath in Felghana (HKLM-x32\...\Steam App 207320) (Version:  - Nihon Falcom)
YUME MIRU KUSURI (HKLM-x32\...\{03ABC33C-10B1-400E-B1FA-E817FE98D11C}) (Version: 1.00.0000 - Peach Princess)
Zigfrak (HKLM-x32\...\Steam App 259430) (Version:  - Entheogen Studios LLC)
星空のメモリア-Wish upon a shooting star- (HKLM-x32\...\{300D7C4F-086D-4D6F-969F-ED00006DE81C}) (Version: 1.00.0000 - CROSSNET)

==================== Restore Points  =========================

23-04-2014 20:42:19 Windows Update
23-04-2014 22:49:58 Windows Update

==================== Hosts content: ==========================

2009-07-13 21:34 - 2014-04-23 00:40 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {023A9D7F-D40B-4558-A3CD-D7BE83CCFC09} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-18] (Google Inc.)
Task: {0F8031BD-B167-4F26-ACE5-1018F8E6720B} - System32\Tasks\{5BA5F6D5-D386-42DC-B134-5BFA9FD309B2} => E:\Program Files (x86)\Mumble\mumble.exe [2013-06-01] (Thorvald Natvig)
Task: {1E8DC2FE-D478-4E9B-995C-ED569C6258FF} - \{58D8164A-E555-4606-948D-6F50D67BB353} No Task File <==== ATTENTION
Task: {3AE90DD9-FAE4-4AC2-AE0B-A47B036A71A6} - System32\Tasks\ReclaimerUpdateXML_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {55456E83-441F-4007-9F55-5827E93DEE04} - \{0FC804D3-2D80-4A68-BA06-C442B605C60E} No Task File <==== ATTENTION
Task: {57C9EB9F-79AD-4F73-B33D-1E8C8E9E7912} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Device Center\ipoint.exe [2012-06-26] (Microsoft Corporation)
Task: {64DE170D-6D4B-4BD2-9F66-9C595F58DAFA} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2664584700-161297400-3985227703-1001
Task: {664235C7-09E8-426B-A00F-ED15C8C887CE} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {6DFD8271-9257-4FA6-AD8C-921DB302741E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-18] (Google Inc.)
Task: {88992CBC-5A8E-44E4-B6E2-49E4164B2F50} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => C:\Program Files\Microsoft Device Center\devicecenter.exe [2012-06-26] (Microsoft)
Task: {A0A97A9D-1208-443D-9D6B-1EF9B5C6BD67} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-11] (Adobe Systems Incorporated)
Task: {A1D1D39D-5AF9-456F-B0D1-22514B4FF5F0} - System32\Tasks\{A6F8B242-7681-4774-B015-42DE55169CB5} => E:\ILLUSION\RapeLay\RapeLay English.exe [2006-04-26] ()
Task: {A87215D3-5711-4E7D-B5EF-65E45354355C} - System32\Tasks\RNUpgradeHelperLogonPrompt_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {A8BE3FB4-105F-4856-AE63-9417F9C68A5F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ADDC3A36-7C9B-414B-8950-758BC3819693} - System32\Tasks\ReclaimerUpdateFiles_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {B768FC46-7B4F-478F-AFC8-46FA0028F012} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {B7728BCA-ECEA-45A0-A691-488707856985} - System32\Tasks\{DAFB833B-23C5-4F8B-9DA5-E5195C92158E} => Firefox.exe http://ui.skype.com/ui/0/5.10.0.114/en/abandoninstall?page=tsProgressBar
Task: {C4DB152C-85B5-4FD1-870C-8F2AC8CB6D9E} - System32\Tasks\{FB24CB70-D9D1-4501-98E9-B97FE9730667} => E:\ILLUSION\RapeLay\RapeLay English.exe [2006-04-26] ()
Task: {CB5BAB60-A115-4035-8B82-4111B254F77D} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {D09BA71E-B6AC-4C18-B5A1-A6BDD23B47EE} - System32\Tasks\{8F3DAB3A-2B22-4F6D-BDCF-9197800BDCD3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-02-10] (Skype Technologies S.A.)
Task: {D584AAC5-88D1-472D-A97D-23C7E2BC2485} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Device Center\itype.exe [2012-06-26] (Microsoft Corporation)
Task: {D72404FE-1F3A-4113-886E-B0D9CA791841} - System32\Tasks\RNUpgradeHelperResumePrompt_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {D88365FE-B2D7-41F0-AF4C-2337F6234C5C} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {E46F3C5D-9D0B-4A18-8C24-1DC1C5824325} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {E47021B3-CEDA-40F7-982E-7FD7D1EA5EB5} - System32\Tasks\{A3DCBD23-26D7-49A5-AA82-74ECF537C8F5} => E:\ILLUSION\RapeLay\RapeLay English.exe [2006-04-26] ()
Task: {E753C14D-B239-4528-AC8A-F8CCDA81A467} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {FECF55DE-7F83-47BD-B97D-C0270ADC29A8} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-04-16] (RealNetworks, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Drazala2.job => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe
Task: C:\Windows\Tasks\ReclaimerUpdateXML_Drazala2.job => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Drazala2.job => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe

==================== Loaded Modules (whitelisted) =============

2011-04-07 23:19 - 2014-03-04 08:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-04-05 13:52 - 2012-05-02 09:27 - 00049664 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_49.dll
2013-04-05 13:52 - 2012-05-02 09:24 - 00731136 _____ () C:\Program Files\Trend Micro\AMSP\sqlite3.dll
2013-04-05 13:52 - 2012-05-02 09:24 - 00064512 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_49.dll
2013-04-05 13:52 - 2012-05-02 09:25 - 01719808 _____ () C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
2013-04-05 13:52 - 2012-05-02 09:25 - 00016896 _____ () C:\Program Files\Trend Micro\AMSP\boost_system-vc80-mt-1_49.dll
2012-07-25 05:53 - 2012-07-25 05:53 - 00289088 ____N () C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll
2014-01-03 15:08 - 2014-01-06 18:04 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-04-16 03:07 - 2013-04-16 03:07 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2013-03-29 11:01 - 2013-03-29 11:01 - 00088968 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-03-29 09:17 - 2013-03-29 09:17 - 00070536 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2014-03-18 21:22 - 2014-03-18 21:22 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Public\DRM:احتضان

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sndappv2 => ""="service"

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: SBRE
Description: SBRE
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SBRE
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/23/2014 05:52:14 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (04/23/2014 05:52:14 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (04/23/2014 05:52:14 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (04/23/2014 05:52:13 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (04/23/2014 05:50:53 PM) (Source: Application Error) (User: )
Description: Faulting application name: NvBackend.exe, version: 10.11.15.0, time stamp: 0x52a6776c
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x8979013d
Faulting process id: 0xb74
Faulting application start time: 0xNvBackend.exe0
Faulting application path: NvBackend.exe1
Faulting module path: NvBackend.exe2
Report Id: NvBackend.exe3

Error: (04/23/2014 05:43:56 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (04/23/2014 00:10:30 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 5372.  Message ID: [0x2509].

Error: (04/22/2014 11:20:00 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (04/22/2014 11:20:00 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (04/22/2014 11:20:00 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.


System errors:
=============
Error: (04/23/2014 05:49:09 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.

Error: (04/23/2014 05:45:42 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (04/23/2014 01:06:33 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (04/23/2014 00:40:32 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (04/23/2014 00:40:03 AM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (04/23/2014 00:37:50 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (04/22/2014 11:14:07 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-04-23 00:40:03.669
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-23 00:40:03.343
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.709
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.498
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.288
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.078
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 13:38:34.408
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 13:38:34.197
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 20%
Total physical RAM: 16377.95 MB
Available physical RAM: 13084.91 MB
Total Pagefile: 17176.13 MB
Available Pagefile: 13878.47 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:89.21 GB) (Free:8.94 GB) NTFS
Drive e: () (Fixed) (Total:1862.89 GB) (Free:434.39 GB) NTFS
Drive g: (WD Unlocker) (CDROM) (Total:0.02 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 89 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.

==================== End Of Log ============================

Link to post
Share on other sites

Looking through those logs I just noticed a program that was cracked that I didn't knot it was. I deleted it and here are my new logs.

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-04-2014
Ran by Drazala2 (administrator) on DRAZALA2-PC on 24-04-2014 13:15:43
Running from E:\Users\Drazala2\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiWatchDog.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Paltiosoft Inc.) C:\Program Files (x86)\SoftDenchi\UCManSvc.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Valve Corporation) E:\Program Files (x86)\Steam\steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Slackerhome Productions) C:\Users\Drazala2\Desktop\Better DS3.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [216928 2013-08-29] (Trend Micro Inc.)
HKLM\...\Run: [wdsmgr] => C:\Program Files\ITknowledge24\Windows Defender Status Manager\wdsmgr.exe [164352 2013-02-23] (ITknowledge24.com)
HKLM\...\Run: [Trend Micro Titanium] => C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe [1382568 2013-09-16] (Trend Micro Inc.)
HKLM\...\Run: [shadowPlay] => C:\Windows\system32\nvspcap64.dll [1100248 2013-12-09] (NVIDIA Corporation)
HKLM\...\Run: [saiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2012-10-15] (Saitek)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11725928 2010-12-23] (Realtek Semiconductor)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2012-10-15] (Saitek)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-09] (NVIDIA Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [intelliType Pro] => C:\Program Files\Microsoft Device Center\itype.exe [1464928 2012-06-26] (Microsoft Corporation)
HKLM\...\Run: [intelliPoint] => C:\Program Files\Microsoft Device Center\ipoint.exe [2004584 2012-06-26] (Microsoft Corporation)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5545328 2014-02-28] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295512 2013-07-09] (RealNetworks, Inc.)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [QuickTime Task] => E:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43608 2010-09-07] ()
HKLM-x32\...\Run: [iTunesHelper] => E:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] => C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [198032 2011-10-21] (Lavasoft)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [WinPatrol] => E:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [423144 2013-04-26] (BillP Studios)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-05-18] (Google Inc.)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [steam] => E:\Program Files (x86)\Steam\steam.exe [1825984 2014-04-23] (Valve Corporation)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20918432 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [iCQ] => E:\Program Files (x86)\ICQ7.5\ICQ.exe [124480 2011-08-01] (ICQ, LLC.)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [EADM] => E:\Program Files (x86)\Origin\Origin.exe [3588952 2014-04-06] (Electronic Arts)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-2664584700-161297400-3985227703-1001\...\Run: [Amazon Cloud Player] => C:\Users\Drazala2\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3140608 2014-01-14] ()
Startup: C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameStop Now.lnk
ShortcutTarget: GameStop Now.lnk -> E:\Program Files (x86)\GameStop App\Now\GameStopNow.exe (GameStop Corp.)
Startup: C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> E:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x76BBFCC19E15CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {B74586AC-29BB-4E46-97F6-EF219CF68BB0} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=994519&p={searchTerms}
SearchScopes: HKCU - {B74586AC-29BB-4E46-97F6-EF219CF68BB0} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=994519&p={searchTerms}
SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = http://search.yahoo.com/search?p={searchTerms}&fr=mkg028
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg.dll (Trend Micro Inc.)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe64.dll (Trend Micro Inc.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll (Trend Micro Inc.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg.dll (Trend Micro Inc.)
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} -  No File
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\2.5.1331\6.8.1094\TmIEPlg32.dll (Trend Micro Inc.)
Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default
FF DefaultSearchEngine: eBay
FF SelectedSearchEngine: eBay
FF Homepage: www.google.com

FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.2.32 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.2 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.2.32 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll (Trend Micro Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Drazala2\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Users\Drazala2\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation)
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\aol-search.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-26.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-27.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-28.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-29.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\icqplugin-30.xml
FF SearchPlugin: C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\searchplugins\searchplugins-backup
FF Extension: LoaderFF - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\loaderff@nefsis.com [2012-11-09]
FF Extension: Rikaichan Japanese-English Dictionary File - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\rikaichan-jpen@polarcloud.com [2011-06-07]
FF Extension: Rikaichan Japanese Names Dictionary File - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\rikaichan-jpnames@polarcloud.com [2014-04-22]
FF Extension: Rikaichan - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{0AA9101C-D3C1-4129-A9B7-D778C6A17F82} [2012-10-18]
FF Extension: WOT - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-04-24]
FF Extension: DownloadHelper - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-30]
FF Extension: Ghostery - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\firefox@ghostery.com.xpi [2014-04-24]
FF Extension: SoundCloud Downloader - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{2b55ea1c-5d12-4fb5-bb9b-2067f8eda4ca}.xpi [2014-04-12]
FF Extension: NoScript - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-04-24]
FF Extension: YouTube High Definition - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-01-24]
FF Extension: Flash Block - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{95ab36d4-fb6f-47b0-8b8d-e5f3bd547953}.xpi [2014-04-24]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF Extension: Adblock Plus - C:\Users\Drazala2\AppData\Roaming\Mozilla\Firefox\Profiles\qrpvvtb8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-05-19]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-03-18]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-03-18]
FF HKLM\...\Firefox\Extensions: [tmbepff-7.5@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension [2013-10-08]
FF HKLM-x32\...\Firefox\Extensions: [tmbepff-7.5@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\firefoxextension [2013-10-08]
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2013-04-05]
FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20004\FxExt\firefoxextension\ []
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-07-09]
FF HKLM-x32\...\Firefox\Extensions: [{FCE04E1F-9378-4f39-96F6-5689A9159E45}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ []

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (SoundCloud Downloader) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apbeiaejbifegcmfkflngimmegifddkn [2014-04-12]
CHR Extension: (TrendMicro BEP Extension) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmiabdepfhhiieiipmeecdmeljggmfee [2013-05-25]
CHR Extension: (No Name) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\eokggikdogbdifnoohmoibpipljidahp [2014-04-12]
CHR Extension: (RealDownloader) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-05-25]
CHR Extension: (Skype Click to Call) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-05-25]
CHR Extension: (DVDVideoSoft) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2014-02-06]
CHR Extension: (Google Wallet) - C:\Users\Drazala2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-15]
CHR HKLM\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\chrome_tmbep.crx [2013-10-08]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-12-03]
CHR HKLM-x32\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\Module\20002\7.5.1137\7.5.1137\chrome_tmbep.crx [2013-10-08]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-04-16]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

S3 DAUpdaterSvc; e:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [25832 2009-12-15] (BioWare)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-04-22] (SurfRight B.V.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-09] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-01-06] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-04-16] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2009-10-20] (CACE Technologies, Inc.)
R2 UCManSvc; C:\Program Files (x86)\SoftDenchi\UCManSvc.exe [186512 2012-11-01] (Paltiosoft Inc.)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-02-28] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [271728 2014-02-28] (Western Digital Technologies, Inc.)
R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad [X]
S3 aspnet_state; %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [X]
S3 nosGetPlusHelper; C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll [X]

==================== Drivers (Whitelisted) ====================

S3 ASPI; C:\Windows\SysWOW64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-03-20] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-03-20] ()
R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [88280 2014-04-03] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-24] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [47632 2009-10-20] (CACE Technologies, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 SaiK0CD9; C:\Windows\System32\DRIVERS\SaiK0CD9.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [24680 2012-10-15] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52200 2012-10-15] (Saitek)
S3 SaiU0CD9; C:\Windows\System32\DRIVERS\SaiU0CD9.sys [47168 2012-09-20] (Saitek)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-08-06] (Duplex Secure Ltd.)
R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [109072 2013-09-04] (Trend Micro Inc.)
R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [175528 2013-09-04] (Trend Micro Inc.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [46392 2012-08-23] (Trend Micro Inc.)
R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [77184 2013-09-04] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105744 2012-05-02] (Trend Micro Inc.)
U3 a61kzujs; C:\Windows\System32\Drivers\a61kzujs.sys [0 ] (Advanced Micro Devices)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 PlantronicsGC; system32\drivers\PLTGC.sys [X]
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
U2 TMAgent;
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-23 19:03 - 2014-04-24 13:15 - 00000000 ____D () C:\FRST
2014-04-23 17:50 - 2014-04-23 17:50 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 17:49 - 2014-04-13 21:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-23 17:49 - 2014-04-13 21:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-23 17:43 - 2014-04-23 18:02 - 00000000 ____D () C:\Windows\pss
2014-04-23 17:19 - 2014-04-23 17:17 - 00347816 _____ (Microsoft Corporation) C:\Users\Drazala2\Desktop\MicrosoftFixit.wu.LB.12321712645330838.46.1.Run.exe
2014-04-23 15:42 - 2014-04-23 15:42 - 00000000 ____D () C:\Windows\CheckSur
2014-04-23 15:10 - 2014-04-23 15:11 - 00000000 ____D () C:\Windows\SoftwareDistribution OLD
2014-04-23 01:26 - 2014-04-23 01:31 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\BetterDS3
2014-04-23 01:26 - 2013-05-10 11:57 - 01661440 _____ (Slackerhome Productions) C:\Users\Drazala2\Desktop\Better DS3.exe
2014-04-23 01:10 - 2014-04-23 01:10 - 00000883 _____ () C:\Users\Public\Desktop\DS3 Tool.lnk
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-04-23 01:10 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2014-04-23 00:59 - 2012-03-24 21:27 - 04197656 _____ (www.motioninjoy.com ) C:\Users\Drazala2\Desktop\MotioninJoy_070000_signed.exe
2014-04-23 00:42 - 2014-04-23 00:42 - 00056780 _____ () C:\ComboFix.txt
2014-04-23 00:34 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-23 00:34 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-23 00:34 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-23 00:34 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-23 00:33 - 2014-04-23 00:42 - 00000000 ____D () C:\Qoobox
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieUserList
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieSiteList
2014-04-22 23:35 - 2014-04-22 23:35 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\{62F46CCD-50B0-4492-8F7C-217942CFC486}
2014-04-22 23:02 - 2014-04-22 16:59 - 01345435 _____ () C:\Users\Drazala2\Desktop\adwcleaner(1).exe
2014-04-22 22:42 - 2014-04-22 22:42 - 01357860 _____ (CheatHappens) C:\Users\Drazala2\Desktop\ds-Drazala.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 01302572 _____ (CheatHappens) C:\Users\Drazala2\Desktop\mest-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00709179 _____ (CheatHappens) C:\Users\Drazala2\Desktop\w2-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00700976 _____ (CheatHappens) C:\Users\Drazala2\Desktop\tesv-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00597548 _____ (CheatHappens) C:\Users\Drazala2\Desktop\ds2-Drazala.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00727609 _____ (CheatHappens) C:\Users\Drazala2\Desktop\bl2-Drazala.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00717385 _____ (CheatHappens) C:\Users\Drazala2\Desktop\f3ar-minraja.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00709193 _____ (CheatHappens) C:\Users\Drazala2\Desktop\wit2-minraja.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00709187 _____ (CheatHappens) C:\Users\Drazala2\Desktop\w2-Drazala.exe
2014-04-22 22:21 - 2014-04-22 22:21 - 00000512 _____ () C:\Users\Drazala2\Desktop\MBR.dat
2014-04-22 22:19 - 2014-04-22 22:21 - 00002757 _____ () C:\Users\Drazala2\Desktop\aswMBR.txt
2014-04-22 21:27 - 2014-04-22 21:27 - 00001853 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-04-22 21:25 - 2014-04-22 21:42 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-22 21:11 - 2014-04-22 21:11 - 00001454 _____ () C:\Users\Drazala2\Desktop\JRT.txt
2014-04-22 21:00 - 2014-04-22 17:00 - 01016261 _____ (Thisisu) C:\Users\Drazala2\Desktop\JRT.exe
2014-04-22 12:59 - 2014-04-22 12:59 - 00004129 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-22 12:59 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-22 12:59 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-22 10:07 - 2014-04-23 17:45 - 00038280 _____ () C:\Windows\PFRO.log
2014-04-22 10:07 - 2014-04-23 17:45 - 00001008 _____ () C:\Windows\setupact.log
2014-04-22 10:07 - 2014-04-22 10:07 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-22 09:49 - 2014-04-24 10:11 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-22 09:49 - 2014-04-22 16:14 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-22 09:49 - 2014-04-22 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-04-22 09:49 - 2014-04-22 16:14 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-22 09:49 - 2014-04-03 10:47 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-22 09:49 - 2014-04-03 10:47 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-20 20:26 - 2014-04-20 20:26 - 00000222 _____ () C:\Users\Drazala2\Desktop\Always Remember Me.url
2014-04-15 20:01 - 2014-04-19 00:14 - 00000000 ____D () C:\Users\Drazala2\Documents\BYOND
2014-04-14 22:59 - 2014-04-14 22:59 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\dekovir
2014-04-14 16:18 - 2014-04-14 16:18 - 00000000 ____D () C:\Users\Drazala2\Desktop\original
2014-04-14 16:01 - 2014-04-14 16:26 - 00000000 ____D () C:\Users\Drazala2\Desktop\edited
2014-04-12 03:24 - 2012-06-21 05:09 - 00000000 ____D () C:\Users\Drazala2\Desktop\[mikudb] Through the Lyrical-Glass
2014-04-12 02:51 - 2014-04-12 02:37 - 09285684 _____ () C:\Users\Drazala2\Desktop\01 Tell Your World (feat. Hatsune Mi.m4a
2014-04-12 01:59 - 2014-04-12 01:55 - 11251951 _____ () C:\Users\Drazala2\Desktop\11 Re_ Link of Melody (feat. Hatsune.m4a
2014-04-12 00:33 - 2014-04-12 01:04 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\PC-Gizmos
2014-04-12 00:33 - 2014-04-12 00:33 - 00000221 _____ () C:\Users\Drazala2\AppData\Roaming\uninstall.bat
2014-04-10 15:19 - 2014-03-06 04:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-10 15:19 - 2014-03-06 03:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-10 15:19 - 2014-03-06 03:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-10 15:19 - 2014-03-06 03:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-10 15:19 - 2014-03-06 03:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-10 15:19 - 2014-03-06 02:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-10 15:18 - 2014-03-06 05:21 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-10 15:18 - 2014-03-06 04:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-10 15:18 - 2014-03-06 04:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-10 15:18 - 2014-03-06 03:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-10 15:18 - 2014-03-06 03:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-10 15:18 - 2014-03-06 03:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-10 15:18 - 2014-03-06 03:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-10 15:18 - 2014-03-06 03:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-10 15:18 - 2014-03-06 03:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-10 15:18 - 2014-03-06 03:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-10 15:18 - 2014-03-06 03:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-10 15:18 - 2014-03-06 03:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-10 15:18 - 2014-03-06 03:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-10 15:18 - 2014-03-06 03:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-10 15:18 - 2014-03-06 03:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-10 15:18 - 2014-03-06 03:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-10 15:18 - 2014-03-06 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-10 15:18 - 2014-03-06 02:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-10 15:18 - 2014-03-06 02:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-10 15:18 - 2014-03-06 02:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-10 15:18 - 2014-03-06 02:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-10 15:18 - 2014-03-06 02:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-10 15:18 - 2014-03-06 02:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-10 15:18 - 2014-03-06 02:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-10 15:18 - 2014-03-06 02:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-10 15:18 - 2014-03-06 02:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-10 15:18 - 2014-03-06 02:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-10 15:18 - 2014-03-06 02:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-10 15:18 - 2014-03-06 02:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-10 15:18 - 2014-03-06 02:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-10 15:18 - 2014-03-06 02:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-10 15:18 - 2014-03-06 02:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-10 15:18 - 2014-03-06 01:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-10 15:18 - 2014-03-06 01:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-10 15:18 - 2014-03-06 01:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-10 15:18 - 2014-03-06 01:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-10 15:18 - 2014-03-06 01:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-10 15:18 - 2014-03-06 00:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-10 15:18 - 2014-03-06 00:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-10 15:18 - 2014-03-06 00:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-10 15:18 - 2014-03-06 00:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-10 15:18 - 2014-03-06 00:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-09 04:32 - 2014-03-04 04:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-09 04:32 - 2014-03-04 04:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-09 04:32 - 2014-03-04 04:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-09 04:32 - 2014-03-04 04:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-09 04:32 - 2014-03-04 04:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-09 04:32 - 2014-03-04 03:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-09 04:32 - 2014-03-04 03:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-09 04:32 - 2014-02-03 21:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 04:32 - 2014-02-03 21:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 04:32 - 2014-02-03 21:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 04:32 - 2014-02-03 21:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 04:32 - 2014-02-03 21:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-09 04:32 - 2014-01-23 21:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-08 16:31 - 2014-04-08 16:31 - 00003456 _____ () C:\Windows\System32\Tasks\{5722D6DC-14BA-4AB1-824A-A30447322A84}
2014-04-08 16:30 - 2014-04-08 16:30 - 00003456 _____ () C:\Windows\System32\Tasks\{35EA28CA-B100-48B4-A652-DD970DCF4FFC}
2014-04-07 20:56 - 2014-04-09 00:56 - 00000085 _____ () C:\Users\Drazala2\AppData\Roaming\WB.CFG
2014-04-07 18:36 - 2014-04-07 18:36 - 00001187 _____ () C:\Users\Drazala2\Desktop\Continue Free YouTube to MP3 Converter Installation.lnk
2014-04-06 15:43 - 2014-04-06 15:43 - 00000747 _____ () C:\Users\Public\Desktop\Crysis 3.lnk
2014-04-06 15:43 - 2014-04-06 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3
2014-04-06 15:38 - 2014-04-06 17:06 - 00000000 ____D () C:\Users\Drazala2\Documents\Euro Truck Simulator 2
2014-04-06 14:54 - 2014-04-06 16:01 - 00000000 ____D () C:\ProgramData\Origin
2014-04-06 14:54 - 2014-04-06 14:59 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Origin
2014-04-06 14:54 - 2014-04-06 14:57 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Origin
2014-04-06 14:54 - 2014-04-06 14:54 - 00000692 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-04-06 14:54 - 2014-04-06 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iPod
2014-04-05 16:08 - 2014-04-05 16:08 - 00001606 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-04-05 16:08 - 2014-04-05 16:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-04-02 20:53 - 2014-04-02 20:53 - 00000000 ____D () C:\Users\Drazala2\Documents\Krome Studios
2014-04-02 20:51 - 2014-04-02 20:51 - 00002615 _____ () C:\Users\Public\Desktop\BladeKitten.lnk
2014-04-02 20:51 - 2014-04-02 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Krome Studios
2014-04-01 19:47 - 2014-04-01 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam2
2014-04-01 19:46 - 2014-04-01 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam1
2014-03-30 16:31 - 2014-03-30 16:31 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Drazala2\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Administrator\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Drazala2\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-30 16:28 - 2001-08-17 22:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2014-03-29 21:47 - 2014-04-23 22:11 - 00002980 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Drazala2
2014-03-29 21:47 - 2014-04-23 22:11 - 00000378 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Drazala2.job
2014-03-29 21:47 - 2014-04-23 19:09 - 00002984 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Drazala2
2014-03-29 21:47 - 2014-04-23 19:09 - 00000382 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Drazala2.job
2014-03-29 21:47 - 2014-04-23 17:49 - 00000388 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Drazala2.job
2014-03-29 21:47 - 2014-03-29 21:47 - 00003630 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Drazala2
2014-03-29 21:47 - 2014-03-29 21:47 - 00002688 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Drazala2
2014-03-29 19:21 - 2014-03-29 19:40 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\3Stars
2014-03-29 03:43 - 2014-03-29 03:49 - 00000178 _____ () C:\Users\Drazala2\Desktop\New Text Document (6).txt

==================== One Month Modified Files and Folders =======

2014-04-24 13:15 - 2014-04-23 19:03 - 00000000 ____D () C:\FRST
2014-04-24 13:15 - 2012-11-24 17:26 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-04-24 13:08 - 2011-05-18 16:05 - 00000902 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-24 12:18 - 2012-04-05 22:41 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-24 10:11 - 2014-04-22 09:49 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-24 05:07 - 2011-05-19 03:39 - 01661449 _____ () C:\Windows\WindowsUpdate.log
2014-04-24 04:20 - 2011-05-18 16:05 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-23 22:11 - 2014-03-29 21:47 - 00002980 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Drazala2
2014-04-23 22:11 - 2014-03-29 21:47 - 00000378 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Drazala2.job
2014-04-23 21:14 - 2011-08-15 11:02 - 00000000 ____D () C:\Users\Drazala2\dwhelper
2014-04-23 19:09 - 2014-03-29 21:47 - 00002984 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Drazala2
2014-04-23 19:09 - 2014-03-29 21:47 - 00000382 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Drazala2.job
2014-04-23 18:02 - 2014-04-23 17:43 - 00000000 ____D () C:\Windows\pss
2014-04-23 18:02 - 2011-05-18 15:40 - 00000000 ___RD () C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-23 17:52 - 2011-05-19 05:08 - 03230722 _____ () C:\Windows\system32\perfh007.dat
2014-04-23 17:52 - 2011-05-19 05:08 - 01063282 _____ () C:\Windows\system32\perfc007.dat
2014-04-23 17:52 - 2011-05-19 05:03 - 03105360 _____ () C:\Windows\system32\perfh011.dat
2014-04-23 17:52 - 2011-05-19 05:03 - 01037012 _____ () C:\Windows\system32\perfc011.dat
2014-04-23 17:52 - 2009-07-14 00:13 - 00006512 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-23 17:52 - 2009-07-13 23:45 - 00021808 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-23 17:52 - 2009-07-13 23:45 - 00021808 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-23 17:50 - 2014-04-23 17:50 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 17:49 - 2014-03-29 21:47 - 00000388 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Drazala2.job
2014-04-23 17:49 - 2013-04-13 00:00 - 00003352 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-23 17:49 - 2013-04-13 00:00 - 00003224 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-23 17:49 - 2012-07-02 23:07 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\TSVNCache
2014-04-23 17:45 - 2014-04-22 10:07 - 00038280 _____ () C:\Windows\PFRO.log
2014-04-23 17:45 - 2014-04-22 10:07 - 00001008 _____ () C:\Windows\setupact.log
2014-04-23 17:45 - 2013-11-12 11:51 - 00008192 _____ () C:\Windows\SysWOW64\WDPABKP.dat
2014-04-23 17:45 - 2011-05-18 15:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-23 17:45 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-23 17:37 - 2011-05-20 06:57 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Skype
2014-04-23 17:17 - 2014-04-23 17:19 - 00347816 _____ (Microsoft Corporation) C:\Users\Drazala2\Desktop\MicrosoftFixit.wu.LB.12321712645330838.46.1.Run.exe
2014-04-23 15:42 - 2014-04-23 15:42 - 00000000 ____D () C:\Windows\CheckSur
2014-04-23 15:11 - 2014-04-23 15:10 - 00000000 ____D () C:\Windows\SoftwareDistribution OLD
2014-04-23 01:31 - 2014-04-23 01:26 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\BetterDS3
2014-04-23 01:10 - 2014-04-23 01:10 - 00000883 _____ () C:\Users\Public\Desktop\DS3 Tool.lnk
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
2014-04-23 01:10 - 2014-04-23 01:10 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-04-23 00:42 - 2014-04-23 00:42 - 00056780 _____ () C:\ComboFix.txt
2014-04-23 00:42 - 2014-04-23 00:33 - 00000000 ____D () C:\Qoobox
2014-04-23 00:40 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2014-04-23 00:33 - 2013-05-18 13:33 - 00000000 ____D () C:\Windows\erdnt
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieUserList
2014-04-23 00:17 - 2014-04-23 00:17 - 00000000 __SHD () C:\Users\Drazala2\AppData\Local\EmieSiteList
2014-04-22 23:35 - 2014-04-22 23:35 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\{62F46CCD-50B0-4492-8F7C-217942CFC486}
2014-04-22 23:35 - 2011-07-20 21:15 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Windows Live
2014-04-22 23:15 - 2011-05-26 15:04 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\ICQ
2014-04-22 23:11 - 2013-11-16 22:45 - 00000000 ____D () C:\AdwCleaner
2014-04-22 22:42 - 2014-04-22 22:42 - 01357860 _____ (CheatHappens) C:\Users\Drazala2\Desktop\ds-Drazala.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 01302572 _____ (CheatHappens) C:\Users\Drazala2\Desktop\mest-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00709179 _____ (CheatHappens) C:\Users\Drazala2\Desktop\w2-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00700976 _____ (CheatHappens) C:\Users\Drazala2\Desktop\tesv-minraja.exe
2014-04-22 22:42 - 2014-04-22 22:42 - 00597548 _____ (CheatHappens) C:\Users\Drazala2\Desktop\ds2-Drazala.exe
2014-04-22 22:42 - 2013-04-11 12:39 - 00238128 _____ () C:\Windows\RegBootClean64.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00727609 _____ (CheatHappens) C:\Users\Drazala2\Desktop\bl2-Drazala.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00717385 _____ (CheatHappens) C:\Users\Drazala2\Desktop\f3ar-minraja.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00709193 _____ (CheatHappens) C:\Users\Drazala2\Desktop\wit2-minraja.exe
2014-04-22 22:41 - 2014-04-22 22:41 - 00709187 _____ (CheatHappens) C:\Users\Drazala2\Desktop\w2-Drazala.exe
2014-04-22 22:21 - 2014-04-22 22:21 - 00000512 _____ () C:\Users\Drazala2\Desktop\MBR.dat
2014-04-22 22:21 - 2014-04-22 22:19 - 00002757 _____ () C:\Users\Drazala2\Desktop\aswMBR.txt
2014-04-22 21:42 - 2014-04-22 21:25 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-22 21:27 - 2014-04-22 21:27 - 00001853 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2014-04-22 21:27 - 2014-04-22 21:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-04-22 21:11 - 2014-04-22 21:11 - 00001454 _____ () C:\Users\Drazala2\Desktop\JRT.txt
2014-04-22 20:59 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Registration
2014-04-22 17:00 - 2014-04-22 21:00 - 01016261 _____ (Thisisu) C:\Users\Drazala2\Desktop\JRT.exe
2014-04-22 16:59 - 2014-04-22 23:02 - 01345435 _____ () C:\Users\Drazala2\Desktop\adwcleaner(1).exe
2014-04-22 16:14 - 2014-04-22 09:49 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-22 16:14 - 2014-04-22 09:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-04-22 16:14 - 2014-04-22 09:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-22 12:59 - 2014-04-22 12:59 - 00004129 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-22 12:59 - 2013-10-21 19:23 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-22 12:59 - 2013-05-19 00:51 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-22 10:36 - 2011-05-18 15:46 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-22 10:07 - 2014-04-22 10:07 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-22 10:05 - 2013-10-28 15:40 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Winamp
2014-04-22 09:49 - 2011-05-19 06:29 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Malwarebytes
2014-04-22 09:49 - 2011-05-19 06:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-22 09:48 - 2012-08-06 16:50 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\DAEMON Tools Lite
2014-04-21 14:02 - 2013-04-13 02:23 - 00003374 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-21 14:02 - 2013-04-13 02:23 - 00003246 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001
2014-04-21 00:30 - 2013-12-15 21:37 - 00000000 ____D () C:\Users\Drazala2\Documents\TwoBrothersData
2014-04-20 20:26 - 2014-04-20 20:26 - 00000222 _____ () C:\Users\Drazala2\Desktop\Always Remember Me.url
2014-04-20 20:26 - 2011-06-20 13:17 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-20 12:09 - 2013-12-13 09:54 - 00000000 ____D () C:\ProgramData\WildTangent
2014-04-19 00:14 - 2014-04-15 20:01 - 00000000 ____D () C:\Users\Drazala2\Documents\BYOND
2014-04-15 16:19 - 2014-03-06 15:06 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\StealthBastard[steam]
2014-04-14 22:59 - 2014-04-14 22:59 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\dekovir
2014-04-14 20:13 - 2014-04-22 12:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-22 12:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-02-17 14:15 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-02-17 14:15 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-14 16:26 - 2014-04-14 16:01 - 00000000 ____D () C:\Users\Drazala2\Desktop\edited
2014-04-14 16:18 - 2014-04-14 16:18 - 00000000 ____D () C:\Users\Drazala2\Desktop\original
2014-04-13 21:24 - 2014-04-23 17:49 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-13 21:19 - 2014-04-23 17:49 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-12 02:37 - 2014-04-12 02:51 - 09285684 _____ () C:\Users\Drazala2\Desktop\01 Tell Your World (feat. Hatsune Mi.m4a
2014-04-12 01:55 - 2014-04-12 01:59 - 11251951 _____ () C:\Users\Drazala2\Desktop\11 Re_ Link of Melody (feat. Hatsune.m4a
2014-04-12 01:04 - 2014-04-12 00:33 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\PC-Gizmos
2014-04-12 00:33 - 2014-04-12 00:33 - 00000221 _____ () C:\Users\Drazala2\AppData\Roaming\uninstall.bat
2014-04-11 23:53 - 2012-04-05 22:41 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-11 23:53 - 2012-04-05 22:41 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-11 23:53 - 2011-05-25 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Adobe
2014-04-11 23:53 - 2011-05-18 16:05 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-11 21:52 - 2011-12-05 19:43 - 00000000 ____D () C:\Users\Drazala2\Documents\My Cheat Tables
2014-04-11 04:10 - 2013-11-05 01:18 - 00000000 ____D () C:\Users\Drazala2\Documents\My Trainers
2014-04-10 17:51 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-04-10 15:22 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-10 03:02 - 2013-07-09 22:49 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-10 03:02 - 2012-06-28 19:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-10 03:00 - 2011-05-19 04:30 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 00:56 - 2014-04-07 20:56 - 00000085 _____ () C:\Users\Drazala2\AppData\Roaming\WB.CFG
2014-04-08 16:31 - 2014-04-08 16:31 - 00003456 _____ () C:\Windows\System32\Tasks\{5722D6DC-14BA-4AB1-824A-A30447322A84}
2014-04-08 16:30 - 2014-04-08 16:30 - 00003456 _____ () C:\Windows\System32\Tasks\{35EA28CA-B100-48B4-A652-DD970DCF4FFC}
2014-04-08 16:09 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-07 20:00 - 2013-10-28 16:39 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Media Player Classic
2014-04-07 19:59 - 2014-02-06 20:43 - 00000782 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-07 19:59 - 2013-05-18 16:37 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-07 19:53 - 2014-03-06 16:24 - 00001239 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-04-07 19:53 - 2012-12-04 14:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-04-07 19:53 - 2011-06-21 02:22 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-04-07 19:52 - 2011-05-30 10:57 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\DVDVideoSoft
2014-04-07 18:36 - 2014-04-07 18:36 - 00001187 _____ () C:\Users\Drazala2\Desktop\Continue Free YouTube to MP3 Converter Installation.lnk
2014-04-06 17:06 - 2014-04-06 15:38 - 00000000 ____D () C:\Users\Drazala2\Documents\Euro Truck Simulator 2
2014-04-06 16:26 - 2011-05-18 22:23 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-04-06 16:01 - 2014-04-06 14:54 - 00000000 ____D () C:\ProgramData\Origin
2014-04-06 15:43 - 2014-04-06 15:43 - 00000747 _____ () C:\Users\Public\Desktop\Crysis 3.lnk
2014-04-06 15:43 - 2014-04-06 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3
2014-04-06 15:43 - 2009-07-14 00:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-04-06 14:59 - 2014-04-06 14:54 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\Origin
2014-04-06 14:57 - 2014-04-06 14:54 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Origin
2014-04-06 14:54 - 2014-04-06 14:54 - 00000692 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-04-06 14:54 - 2014-04-06 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-04-06 04:17 - 2012-04-26 12:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-05 23:46 - 2011-05-18 16:05 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Google
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iTunes
2014-04-05 16:10 - 2014-04-05 16:10 - 00000000 ____D () C:\Program Files\iPod
2014-04-05 16:10 - 2014-02-16 01:25 - 00001568 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-05 16:08 - 2014-04-05 16:08 - 00001606 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-04-05 16:08 - 2014-04-05 16:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-04-03 14:21 - 2013-10-14 00:23 - 00000000 ____D () C:\Users\Drazala2\Documents\Larian Studios
2014-04-03 14:09 - 2014-01-01 16:38 - 00000196 _____ () C:\Users\Drazala2\Desktop\New Text Document (2).txt
2014-04-03 10:47 - 2014-04-22 09:49 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 10:47 - 2014-04-22 09:49 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 10:47 - 2013-05-18 16:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-02 20:53 - 2014-04-02 20:53 - 00000000 ____D () C:\Users\Drazala2\Documents\Krome Studios
2014-04-02 20:51 - 2014-04-02 20:51 - 00002615 _____ () C:\Users\Public\Desktop\BladeKitten.lnk
2014-04-02 20:51 - 2014-04-02 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Krome Studios
2014-04-01 19:47 - 2014-04-01 19:47 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam2
2014-04-01 19:47 - 2014-04-01 19:46 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\AlphaKimoriSteam1
2014-03-31 09:35 - 2011-05-18 16:15 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-03-30 16:31 - 2014-03-30 16:31 - 00000000 ____D () C:\Users\Drazala2\AppData\Local\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Drazala2\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00001965 _____ () C:\Users\Administrator\Desktop\Audible Manager.lnk
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Public\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Users\Drazala2\Documents\Audible
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
2014-03-30 16:28 - 2014-03-30 16:28 - 00000000 ____D () C:\Program Files (x86)\Audible
2014-03-30 15:45 - 2011-06-20 19:46 - 00000000 ____D () C:\Users\Drazala2\Documents\My Games
2014-03-30 03:03 - 2011-12-02 21:20 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\.minecraft
2014-03-29 21:47 - 2014-03-29 21:47 - 00003630 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Drazala2
2014-03-29 21:47 - 2014-03-29 21:47 - 00002688 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Drazala2
2014-03-29 19:40 - 2014-03-29 19:21 - 00000000 ____D () C:\Users\Drazala2\AppData\Roaming\3Stars
2014-03-29 03:49 - 2014-03-29 03:43 - 00000178 _____ () C:\Users\Drazala2\Desktop\New Text Document (6).txt
2014-03-28 16:02 - 2014-02-04 22:31 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-03-27 14:04 - 2014-02-14 01:49 - 00000000 ____D () C:\Users\Drazala2\Documents\MercurySteam
2014-03-27 04:03 - 2011-05-18 16:05 - 00003898 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-27 04:03 - 2011-05-18 16:05 - 00003646 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

Some content of TEMP:
====================
C:\Users\Drazala2\AppData\Local\Temp\CH2.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-19 01:06

==================== End Of Log ============================

Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-04-2014
Ran by Drazala2 at 2014-04-24 13:16:10
Running from E:\Users\Drazala2\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Trend Micro Titanium Internet Security (Enabled - Up to date) {B7599298-8445-728A-A5C7-A26A082C8BDA}
AS: Trend Micro Titanium Internet Security (Enabled - Up to date) {0C38737C-A27F-7D04-9F77-991873ABC167}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

10,000,000 (HKLM-x32\...\Steam App 227580) (Version:  - EightyEightGames)
3 Stars of Destiny (HKLM-x32\...\Steam App 278530) (Version:  - Aldorlea Games)
3079 -- Block Action RPG (HKLM-x32\...\Steam App 259620) (Version:  - Phr00t's Software)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
99 Spirits (HKLM-x32\...\Steam App 258090) (Version:  - TORaIKI)
Active@ ISO Burner (HKLM-x32\...\{7694E0B1-2332-448B-9235-929F84B41E3F}) (Version: 2.5.1 - LSoft Technologies)
Actual Sunlight (HKLM-x32\...\Steam App 288040) (Version:  - Will O'Neill)
Ad-Aware Browsing Protection (HKLM-x32\...\Ad-Aware Browsing Protection) (Version: 1.0.0.5 - Lavasoft)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Advanced Combat Tracker (remove only) (HKLM-x32\...\Advanced Combat Tracker) (Version:  - )
Agarest: Generations of War (HKLM-x32\...\Steam App 237890) (Version:  - Ghostlight)
Alice: Madness Returns (HKLM-x32\...\Steam App 19680) (Version:  - Spicy Horse Games)
Alpha Kimori™ Episode One  (HKLM-x32\...\Steam App 265870) (Version:  - Sherman3D)
Always Remember Me (HKLM-x32\...\Steam App 291030) (Version:  - Winter Wolves)
Amazon Cloud Player (HKCU\...\Amazon Amazon Cloud Player) (Version: 2.3.0.422 - Amazon Services LLC)
AMD USB Filter Driver (x32 Version: 1.0.15.94 - Advanced Micro Devices, Inc.) Hidden
Amnesia: A Machine for Pigs (HKLM-x32\...\Steam App 239200) (Version:  - The Chinese Room)
Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version:  - Frictional Games)
Analogue: A Hate Story (HKLM-x32\...\Steam App 209370) (Version:  - Christine Love)
Anodyne (HKLM-x32\...\Steam App 234900) (Version:  - Sean Hogan and Jonathan Kittaka)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{64555D45-1F57-BF1D-1A5E-BFD4C8C0ADB4}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version:  - Audacity Team)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 1998404862.48.56.13241714 - Audible, Inc.)
Audio Transcoder (HKLM\...\{0EDB29CF-5FFC-4824-9F13-3D1C4286CA98}_is1) (Version: 2.9 - Digital Music Software)
Audiosurf (HKLM-x32\...\Steam App 12900) (Version:  - Dylan Fitterer)
Audiosurf 2 (HKLM-x32\...\Steam App 235800) (Version:  - Dylan Fitterer)
Aveyond Lord of Twilight (HKLM-x32\...\Steam App 272010) (Version:  - Amaranth Games, LLC)
Aveyond: Gates of Night (HKLM-x32\...\Steam App 278490) (Version:  - Amaranth Games, LLC)
Avination Viewer 0.3.2 FL III (HKLM-x32\...\{227A0DFC-D726-4133-AB98-C0A56398B3C3}) (Version: 1.0.0 - Avination Virtual LImited)
Baldur's Gate: Enhanced Edition (HKLM-x32\...\Steam App 228280) (Version:  - Overhaul Games)
Bastion (HKLM-x32\...\Steam App 107100) (Version:  - Supergiant Games)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version:  - Rocksteady Studios)
Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version:  - WB Games Montreal)
BioShock (HKLM-x32\...\Steam App 7670) (Version:  - 2K Boston)
BioShock 2 (HKLM-x32\...\Steam App 8850) (Version:  - 2K Marin)
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
Blackguards (HKLM-x32\...\Steam App 249650) (Version:  - Daedalic Entertainment)
Blade Kitten (HKLM-x32\...\{FB600500-1DA2-41B6-B4BB-17F6FB35F915}) (Version: 1.0.0 - Krome Studios)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Breath of Death VII  (HKLM-x32\...\Steam App 107300) (Version:  - Zeboyd Games)
Bukkake Ranch (HKLM-x32\...\BukkakeRanch) (Version: English 1.0 - Mangagamer)
Castlevania: Lords of Shadow – Mirror of Fate HD (HKLM-x32\...\Steam App 282530) (Version:  - MercurySteam)
Castlevania: Lords of Shadow - Ultimate Edition (HKLM-x32\...\Steam App 234080) (Version:  - MercurySteam - Climax Studios)
Castlevania: Lords of Shadow 2 Demo (HKLM-x32\...\Steam App 273130) (Version:  - MercurySteam)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
CeVIO Creative Studio FREE (HKLM-x32\...\{4EE0311B-B45A-40F9-A9DE-F41FA2EC9BC8}) (Version: 1.2.11 - CeVIO)
Chantelise (HKLM-x32\...\Steam App 70420) (Version:  - EasyGameStation)
Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version:  - Dark Byte)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Cherry Tree High Comedy Club (HKLM-x32\...\Steam App 214610) (Version:  - 773)
Condemned: Criminal Origins (HKLM-x32\...\Steam App 4720) (Version:  - Monolith)
Cook, Serve, Delicious! (HKLM-x32\...\Steam App 247020) (Version:  - )
Craft The World (HKLM-x32\...\Steam App 248390) (Version:  - )
Crysis® 3: Hunter Edition (HKLM-x32\...\Crysis® 3: Hunter Edition) (Version:  - GameStop)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
CrystalDiskInfo 5.0.0 Shizuku Edition (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.0.0 - Crystal Dew World)
Cthulhu Saves the World  (HKLM-x32\...\Steam App 107310) (Version:  - Zeboyd Games)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version:  - FromSoftware)
DarksidersInstaller (HKLM-x32\...\{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}) (Version: 1.00.1000 - THQ)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
Diablo II (HKLM-x32\...\Diablo II) (Version:  - )
Diablo III (HKLM-x32\...\Diablo III) (Version: 1.0.7.15295 - Blizzard Entertainment)
Digital - A Love Story 1.1 (HKLM-x32\...\Digital - A Love Story) (Version: 1.1 - Lily of the Valley games)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Divinity Original Sin (HKLM-x32\...\Steam App 230230) (Version:  - Larian Studios)
don't take it personally, babe, it just ain't your story 1.1 (HKLM-x32\...\don't take it personally, babe, it just ain't your story) (Version: 1.1 - Christine Love)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05 - Electronic Arts, Inc.)
Driftmoon (HKLM-x32\...\Steam App 263380) (Version:  - Ville Mönkkönen)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Duke Nukem 3D: Megaton Edition (HKLM-x32\...\Steam App 225140) (Version:  - 3D Realms)
Duke Nukem Forever (HKLM-x32\...\Steam App 57900) (Version:  - Gearbox Software)
Dungeon of the Endless (HKLM-x32\...\Steam App 249050) (Version:  - AMPLITUDE Studios)
Dust: An Elysian Tail (HKLM-x32\...\Steam App 236090) (Version:  - Humble Hearts LLC)
Dysfunctional Systems: Learning to Manage Chaos (HKLM-x32\...\Steam App 248800) (Version:  - )
Echo Prime (HKLM-x32\...\Steam App 255030) (Version:  - Robot Entertainment)
Edge of Space (HKLM-x32\...\Steam App 238240) (Version:  - Handyman Studios)
Edna & Harvey: The Breakout (HKLM-x32\...\Steam App 255320) (Version:  - Daedalic Entertainment)
Enclave (HKLM-x32\...\Steam App 253980) (Version:  - Topware)
Endless Space (HKLM-x32\...\Steam App 208140) (Version:  - AMPLITUDE Studios)
Epic Battle Fantasy 4 (HKLM-x32\...\Steam App 265610) (Version:  - Matt Roszak)
EQ2MAP Updater 1.2.10 (HKLM-x32\...\EQ2MAP Updater) (Version: 1.2.10 - Johan Nilsson)
Eryi's Action (HKLM-x32\...\Steam App 261700) (Version:  - Xtal Sword)
Ether One (HKLM-x32\...\Steam App 265950) (Version:  - White Paper Games)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
EverQuest II (HKCU\...\SOE-EverQuest II) (Version:  - Sony Online Entertainment)
EvilQuest (HKLM-x32\...\Steam App 263820) (Version:  - Chaosoft Games)
Evoland (HKLM-x32\...\Steam App 233470) (Version:  - Shiro Games)
eXceed - Gun Bullet Children (HKLM-x32\...\Steam App 207370) (Version:  - Flat Software)
eXceed 2nd - Vampire REX (HKLM-x32\...\Steam App 207380) (Version:  - Tennen-sozai)
eXceed 3rd - Jade Penetrate Black Package (HKLM-x32\...\Steam App 207400) (Version:  - Tennen-sozai)
F.E.A.R. 3 (HKLM-x32\...\Steam App 21100) (Version:  - Day 1 Studios)
Fable - The Lost Chapters (HKLM-x32\...\Steam App 204030) (Version:  - Lionhead Studios)
Fading Hearts 2.0.4 (HKLM-x32\...\Fading Hearts) (Version: 2.0.4 - Sakura River Interactive)
Fallout (HKLM-x32\...\Steam App 38400) (Version:  - Interplay Inc.)
Fallout 2 (HKLM-x32\...\Steam App 38410) (Version:  - Black Isle Studios)
Fallout Tactics (HKLM-x32\...\Steam App 38420) (Version:  - 14° East)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Bethesda Softworks)
Far Cry 2 (HKLM-x32\...\Steam App 19900) (Version:  - Ubisoft Montreal)
FATE (HKLM-x32\...\Steam App 246840) (Version:  - WildTangent)
FATE: Undiscovered Realms (HKLM-x32\...\Steam App 276890) (Version:  - WildTangent)
Feeding Frenzy 2: Shipwreck Showdown Deluxe (HKLM-x32\...\Steam App 3390) (Version:  - PopCap Games, Inc.)
FINAL FANTASY VII (HKLM-x32\...\Steam App 39140) (Version:  - Square Enix)
FINAL FANTASY VIII (HKLM-x32\...\Steam App 39150) (Version:  - SQUARE ENIX)
Finn and Jake's Epic Quest (HKLM-x32\...\Steam App 258590) (Version:  - NGD Studios)
Firestorm-Beta (remove only) (HKLM-x32\...\Firestorm-Beta) (Version:  - )
Firestorm-Beta-Mesh (remove only) (HKLM-x32\...\Firestorm-Beta-Mesh) (Version:  - )
Firestorm-Release (remove only) (HKLM-x32\...\Firestorm-Release) (Version:  - )
FLV Player (HKLM-x32\...\FLV Player2.0.25) (Version: 2.0.25 - Martijn de Visser Software)
FlvRecorder (HKLM-x32\...\Flv Recorder_is1) (Version:  - )
Forge Quest (HKLM-x32\...\Steam App 249950) (Version:  - )
Fortune Summoners: Secret of the Elemental Stone (HKLM-x32\...\Steam App 203510) (Version:  - Lizsoft)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.16.327 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.10.15.1228 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version:  - DVDVideoSoft Ltd.)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version:  - Greenheart Games)
GameSpy Comrade (HKLM-x32\...\{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}) (Version: 1.5.0.156 - GameSpy)
GameStop App (HKLM-x32\...\GameStop App) (Version: 4.00 - GameStop)
GameStop App (x32 Version: 4.00 - GameStop) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Giana Sisters: Twisted Dreams - Rise of the Owlverlord (HKLM-x32\...\Steam App 246960) (Version:  - Black Forest Games)
Giana Sisters: Twisted Dreams (HKLM-x32\...\Steam App 223220) (Version:  - Black Forest Games)
Go! Go! Nippon! ~My First Trip to Japan~ (HKLM-x32\...\Steam App 251870) (Version:  - OVERDRIVE)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version:  - Coffee Stain Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Google Video Uploader (HKLM-x32\...\Google Video Uploader) (Version:  - )
Guacamelee! Gold Edition (HKLM-x32\...\Steam App 214770) (Version:  - DrinkBox Studios)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
GundeadliGne (HKLM-x32\...\Steam App 92220) (Version:  - Platine Dispositif)
Gundemonium Recollection (HKLM-x32\...\Steam App 92200) (Version:  - Platine Dispositif)
Half Minute Hero: Super Mega Neo Climax Ultimate Boy (HKLM-x32\...\Steam App 214830) (Version:  - Opus )
Half Minute Hero: The Second Coming (HKLM-x32\...\Steam App 240970) (Version:  - OPUS)
Hammerwatch (HKLM-x32\...\Steam App 239070) (Version:  - )
Hard Reset (HKLM-x32\...\Steam App 98400) (Version:  - Flying Wild Hog)
Hate Plus (HKLM-x32\...\Steam App 239700) (Version:  - Christine Love)
Hero Editor V1.04 (HKLM-x32\...\ST6UNST #1) (Version:  - )
HHD Software Hex Editor Neo 5.14 (HKCU\...\{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}) (Version: 5.14.0.4787 - HHD Software, Ltd.)
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.216 - SurfRight B.V.)
Hitogata Happa (HKLM-x32\...\Steam App 92210) (Version:  - Platine Dispositif)
Hotline Miami (HKLM-x32\...\Steam App 219150) (Version:  - Dennaton Games)
Humanity Asset (HKLM-x32\...\Steam App 271640) (Version:  - Browny Application)
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
ISO Recorder (HKLM\...\{2D7ED2A0-9553-412B-939F-D6E0AEB2ABE1}) (Version: 3.1.0 - Alex Feinman)
ISXEQ2 20110512.0063 (HKLM-x32\...\ISXEQ2) (Version: 20110512.0063 - isxGames)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java 7 Update 7 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417007FF}) (Version: 7.0.70 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java 6 Update 27 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416027FF}) (Version: 6.0.270 - Oracle)
Java 7 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217000F0}) (Version: 7.0.0 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Just Cause (HKLM-x32\...\Steam App 6880) (Version:  - Avalanche)
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche)
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version:  - )
KCP-0.5.4.2 (HKLM-x32\...\Kawaii Codec Pack_is1) (Version: 0.5.4.2 - Haruhichan.com)
KeePass Password Safe 1.25 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.25 - Dominik Reichl)
KeyHoleTV (HKLM-x32\...\KeyHoleTV) (Version:  - )
Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version:  - Big Huge Games)
K-Lite Mega Codec Pack 10.1.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.1.0 - )
Knights of Pen and Paper +1 (HKLM-x32\...\Steam App 231740) (Version:  - Behold Studios)
L&H TTS3000 Japanese (HKLM-x32\...\LHTTSJPJ) (Version:  - )
L.A. Noire (HKLM-x32\...\Steam App 110800) (Version:  - Team Bondi)
La-Mulana (HKLM-x32\...\Steam App 230700) (Version:  - NIGORO)
Last Dream (HKLM-x32\...\Steam App 266230) (Version:  - White Giant RPG Studios)
Left 4 Dead 2 Beta (HKLM-x32\...\Steam App 223530) (Version:  - )
Legends of Norrath (HKCU\...\SOE-LegendsOfNorrath) (Version:  - Sony Online Entertainment)
LEGO Lord of the Rings (HKLM-x32\...\Steam App 214510) (Version:  - Traveller's Tales)
Long Live The Queen (HKLM-x32\...\Steam App 251990) (Version:  - Hanako Games)
Magical Diary (HKLM-x32\...\Steam App 211340) (Version:  - Hanako Games)
Malwarebytes Anti-Malware version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Mark of the Ninja (HKLM-x32\...\Steam App 214560) (Version:  - Klei Entertainment)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version:  - BioWare)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
MediaInfo 0.7.64 (HKLM\...\MediaInfo) (Version: 0.7.64 - MediaArea.net)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version:  - PlatinumGames)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version:  - 4A Games)
Metro: Last Light (HKLM-x32\...\Steam App 43160) (Version:  - 4A Games)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (JPN) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (日本語) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft AppLocale (HKLM-x32\...\{394BE3D9-7F57-4638-A8D1-1D88671913B7}) (Version: 1.0.0 - MS)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 1.1.500.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 1.1.500.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Windows Application Compatibility Database (HKLM\...\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb) (Version:  - )
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Might & Magic VI (HKLM-x32\...\Steam App 243380) (Version:  - )
Might & Magic X - Legacy  (HKLM-x32\...\Steam App 238750) (Version:  - Ubisoft)
mIRC (HKLM-x32\...\mIRC) (Version: 7.29 - mIRC Co. Ltd.)
MotioninJoy Gamepad tool 0.7.0000 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.0000 - www.motioninjoy.com)
Mozilla Firefox 28.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Mumble 1.2.4 (HKLM-x32\...\{2D9A136B-B9C9-409B-9BE6-D0DF4FB75708}) (Version: 1.2.4 - Thorvald Natvig)
My Game Long Name (HKLM\...\UDK-6b17e795-2728-4459-93da-8966dc2f867d) (Version:  - Epic Games, Inc.)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\Steam App 234670) (Version:  - CyberConnect 2)
NEStalgia (HKLM-x32\...\Steam App 249550) (Version:  - Silk Games)
NVIDIA Control Panel 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
On the Rain-Slick Precipice of Darkness, Episode One (HKLM-x32\...\Steam App 18000) (Version:  - Hothead Games)
On the Rain-Slick Precipice of Darkness, Episode Two (HKLM-x32\...\Steam App 18020) (Version:  - Hothead Games)
One Way Heroics (HKLM-x32\...\Steam App 266210) (Version:  - Smoking WOLF)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Outlast (HKLM-x32\...\Steam App 238320) (Version:  - Red Barrels)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 0.10.0.22479 - Grinding Gear Games)
Penny Arcade's On the Rain-Slick Precipice of Darkness 3 (HKLM-x32\...\Steam App 213030) (Version:  - Zeboyd Games)
Penny Arcade's On the Rain-Slick Precipice of Darkness 4 (HKLM-x32\...\Steam App 237570) (Version:  - Zeboyd Games)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version:  - Vitali Kirpu)
POSTAL 2 Complete (HKLM-x32\...\Steam App 223470) (Version:  - Running With Scissors)
ProfitUI Reborn Updater (HKCU\...\ProfitUI Reborn Updater) (Version:  - Kaldran - EQ2 Valor Server)
Project 64 version 2.0.0.14 (HKLM-x32\...\Project 64_is1) (Version: 2.0.0.14 - )
Quest of Dungeons (HKLM-x32\...\Steam App 270050) (Version:  - David Amador)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
R.A.T. 9 Battery Charge Indicator (HKLM-x32\...\{E351A4AC-5D5D-4748-A2FE-310EC70F3E05}) (Version: 1.2.0 - Mad Catz)
RAGE (HKLM-x32\...\Steam App 9200) (Version:  - id Software)
Raid Hub Client (HKLM-x32\...\{1499C0A5-6EE6-480E-AE94-1CCD665FDF2D}) (Version: 1.1.32 - www.raidhub.com)
RapeLay (HKLM-x32\...\{CA31F991-DBD2-4DE1-B6D2-30105F23CBBC}) (Version: 1.03 - ILLUSION)
RealDownloader (x32 Version: 1.3.2 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.2 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Recettear: An Item Shop's Tale (HKLM-x32\...\Steam App 70400) (Version:  - EasyGameStation)
Redshirt (HKLM-x32\...\Steam App 247870) (Version:  - The Tiniest Shark)
Remember Me (HKLM-x32\...\Steam App 228300) (Version:  - DONTNOD Entertainment)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.34.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.34.0 - Renesas Electronics Corporation) Hidden
Resident Evil Revelations / Biohazard Revelations UE (HKLM-x32\...\Steam App 222480) (Version:  - Capcom)
Retro City Rampage™ (HKLM-x32\...\Steam App 204630) (Version:  - Vblank Entertainment, Inc.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rise of the Triad (HKLM-x32\...\Steam App 217140) (Version:  - Interceptor Entertainment)
RMP4 (HKLM-x32\...\{F78FC958-7354-43EA-BF26-AFCBFE7B9C18}) (Version: 1.02.0000 - RSUPPORT)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version:  - Cellar Door Games)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version:  - GSC Game World)
Saints Row 2 (HKLM-x32\...\Steam App 9480) (Version:  - Volition)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Sanctum (HKLM-x32\...\Steam App 91600) (Version:  - Coffee Stain Studios)
Sang-Froid - Tales of Werewolves (HKLM-x32\...\Steam App 227220) (Version:  - Artifice Studio)
Satsuki Decoder Pack 64 bits (HKLM\...\Satsuki Decoder Pack) (Version: 43017 - Satsuki Yatoshi'S Softs)
Savant - Ascent (HKLM-x32\...\Steam App 259530) (Version:  - DPad Studios)
Saya no Uta - The Song of Saya version 1.0 (HKLM-x32\...\{54BFE519-3276-4B64-A747-E89AEF5D9337}_is1) (Version: 1.0 - JAST USA)
Science Girls (HKLM-x32\...\Steam App 269010) (Version:  - Spiky Caterpillar)
Scribblenauts Unlimited (HKLM-x32\...\Steam App 218680) (Version:  - 5th Cell Media)
sdrt(5.0, 64bit) (HKLM\...\{63A3DBCF-FB40-4398-9AE5-94EE6206CE12}) (Version: 5.0.3.0 - パルティオソフト株式会社)
Septerra Core (HKLM-x32\...\Steam App 253940) (Version:  - )
Shadow Warrior (HKLM-x32\...\Steam App 233130) (Version:  - Flying Wild Hog)
Shadow Warrior Classic Redux (HKLM-x32\...\Steam App 225160) (Version:  - 3D Realms)
Shadowgrounds (HKLM-x32\...\Steam App 2500) (Version:  - Frozenbyte)
Shadowgrounds: Survivor (HKLM-x32\...\Steam App 11200) (Version:  - Frozenbyte)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Shira Oka - Second Chances version 1.1.8 (HKLM-x32\...\{A8F013F5-00CF-451B-BFC7-A36D8ADF497B}_is1) (Version: 1.1.8 - GamersGate)
Skullgirls (HKLM-x32\...\Steam App 245170) (Version:  - Lab Zero Games)
Skyborn (HKLM-x32\...\Steam App 278460) (Version:  - Dancing Dragon Games)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
Smart Technology Programming Software 7.0.23.0 (HKLM\...\{2A9D89B8-D07E-48F5-9A4C-0972D6FA5475}) (Version: 7.0.23.0 - Mad Catz)
Sniper Elite: Nazi Zombie Army (HKLM-x32\...\Steam App 227100) (Version:  - Rebellion)
Sniper Elite: Nazi Zombie Army 2 (HKLM-x32\...\Steam App 247910) (Version:  - )
SoundCloud Downloader (HKLM-x32\...\PC Gizmos 136528) (Version: 83 - PC Gizmos LTD)
Sparkle 2 Evo (HKLM-x32\...\Steam App 253650) (Version:  - )
Spelunky (HKLM-x32\...\Steam App 239350) (Version:  - )
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
State of Decay (HKLM-x32\...\Steam App 241540) (Version:  - Undead Labs)
Stealth Bastard Deluxe (HKLM-x32\...\Steam App 209190) (Version:  - Curve Studios)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Strike Suit Infinity (HKLM-x32\...\Steam App 234160) (Version:  - Born Ready Games Ltd.)
Strike Suit Zero (HKLM-x32\...\Steam App 209540) (Version:  - Born Ready Games Ltd.)
Sudeki (HKLM-x32\...\Steam App 233350) (Version:  - Climax Studios)
Suika A.S+ (HKLM-x32\...\Suika A.S+_is1) (Version:  - )
System Requirements Lab (HKLM-x32\...\SystemRequirementsLab) (Version:  - )
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version:  - Irrational Games)
TAudioConverter 32bit version 0.9.0 (HKLM-x32\...\{35FC8349-C27B-4680-ABF1-88F7FE893586}_is1) (Version: 0.9.0 - ozok)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version:  - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.16642 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Book of Legends (HKLM-x32\...\Steam App 277470) (Version:  - Aldorlea Games)
The Dark Eye: Chains of Satinav (HKLM-x32\...\Steam App 203830) (Version:  - Daedalic Entertainment)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Incredible Adventures of Van Helsing (HKLM-x32\...\Steam App 215530) (Version:  - NeocoreGames)
The Inner World (HKLM-x32\...\Steam App 251430) (Version:  - Headup Games)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version:  - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version:  - Telltale Games)
The Witcher (HKLM-x32\...\{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}) (Version: 1.00.0000 - CD Projekt Red)
The Witcher 2 (HKLM-x32\...\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}) (Version: 1.00.0000 - CD Projekt Red)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version:  - )
The Yawhg (HKLM-x32\...\Steam App 269030) (Version:  - Damian Sommer)
Thief (HKLM-x32\...\Steam App 239160) (Version:  - Eidos-Montréal)
To the Moon (HKLM-x32\...\Steam App 206440) (Version:  - Freebird Games)
Torchlight (HKLM-x32\...\Steam App 41500) (Version:  - Runic Games)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Torchlight II GUTS (HKLM-x32\...\Steam App 223070) (Version:  - )
TortoiseSVN 1.7.12.24070 (64 bit) (HKLM\...\{B2DCF07D-0F89-4818-8B41-50DABC1A310D}) (Version: 1.7.24070 - TortoiseSVN)
Trend Micro Titanium (Version: 6.00 - Trend Micro Inc.) Hidden
Trend Micro Titanium Internet Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 6.0 - Trend Micro Inc.)
Trine (HKLM-x32\...\Steam App 35700) (Version:  - Frozenbyte)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version:  - Frozenbyte)
Tsukumogami (HKLM-x32\...\Steam App 262300) (Version:  - TORaIKI)
Two Brothers (HKLM-x32\...\Steam App 259760) (Version:  - Ackk Studios)
Two Worlds II (HKLM-x32\...\Steam App 7520) (Version:  - Reality Pump Studios)
Two Worlds II Castle Defense (HKLM-x32\...\Steam App 7530) (Version:  - Reality Pump Studios)
Two Worlds: Epic Edition (HKLM-x32\...\Steam App 1930) (Version:  - Reality Pump Studios)
Unholy Heights (HKLM-x32\...\Steam App 249330) (Version:  - )
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unreal Development Kit: 2012-07 (HKLM\...\UDK-36bce4aa-07ee-4f00-9f01-b7f179f7e7de) (Version:  - Epic Games, Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Vanguard Princess (HKLM-x32\...\Steam App 262150) (Version:  - Tomoaki Sugeno)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Velocity®Ultra (HKLM-x32\...\Steam App 244890) (Version:  - Curve Studios)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
Viscera Cleanup Detail (HKLM-x32\...\Steam App 246900) (Version:  - RuneStorm)
Viscera Cleanup Detail: Santa's Rampage (HKLM-x32\...\Steam App 265210) (Version:  - RuneStorm)
Viscera Cleanup Detail: Shadow Warrior (HKLM-x32\...\Steam App 255520) (Version:  - RuneStorm)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
VLC media player 2.0.8 (HKLM-x32\...\VLC media player) (Version: 2.0.8 - VideoLAN)
VoiceOver Kit (HKLM-x32\...\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}) (Version: 1.42.128.0 - Apple Inc.)
War of the Human Tanks (HKLM-x32\...\Steam App 263400) (Version:  - Yakiniku Banzai)
WD Quick View (HKLM-x32\...\{A6E9CF82-185C-4EA4-83B3-68FADAFDD24E}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{EE290991-5798-4D76-92D1-46E719E0571A}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{1ec9e03a-452b-48fb-8e1b-27ee0477985f}) (Version: 2.3.0.20 - Western Digital Technologies, Inc.)
Where Angels Cry (HKLM-x32\...\Steam App 277560) (Version:  - Cateia Games)
Winamp (HKLM-x32\...\Winamp) (Version: 5.65  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows Grep 2.3 (HKLM-x32\...\Windows Grep_is1) (Version:  - )
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinPatrol (HKLM\...\{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}) (Version: 28.1.2013.0 - BillP Studios)
WinPcap 4.1.1 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
WinZip Driver Updater (HKLM-x32\...\{9854A5C4-5BE5-46E2-A989-352DD8B37E20}_is1) (Version: 1.0.648.11339 - WinZip Computing, S.L. (WinZip Computing))
Wizorb (HKLM-x32\...\Steam App 207420) (Version:  - Tribute Games)
X-Blades (HKLM-x32\...\Steam App 7510) (Version:  - Topware Interactive)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )
Ys I (HKLM-x32\...\Steam App 223810) (Version:  - Nihon Falcom)
Ys II (HKLM-x32\...\Steam App 223870) (Version:  - Nihon Falcom)
Ys Origin (HKLM-x32\...\Steam App 207350) (Version:  - Nihon Falcom)
Ys: The Oath in Felghana (HKLM-x32\...\Steam App 207320) (Version:  - Nihon Falcom)
YUME MIRU KUSURI (HKLM-x32\...\{03ABC33C-10B1-400E-B1FA-E817FE98D11C}) (Version: 1.00.0000 - Peach Princess)
Zigfrak (HKLM-x32\...\Steam App 259430) (Version:  - Entheogen Studios LLC)
星空のメモリア-Wish upon a shooting star- (HKLM-x32\...\{300D7C4F-086D-4D6F-969F-ED00006DE81C}) (Version: 1.00.0000 - CROSSNET)

==================== Restore Points  =========================

23-04-2014 20:42:19 Windows Update
23-04-2014 22:49:58 Windows Update
24-04-2014 18:14:55 Removed VoiceText-TTS-NeoSpeech-Japanese-Voice-Misaki.

==================== Hosts content: ==========================

2009-07-13 21:34 - 2014-04-23 00:40 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {023A9D7F-D40B-4558-A3CD-D7BE83CCFC09} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-18] (Google Inc.)
Task: {0F8031BD-B167-4F26-ACE5-1018F8E6720B} - System32\Tasks\{5BA5F6D5-D386-42DC-B134-5BFA9FD309B2} => E:\Program Files (x86)\Mumble\mumble.exe [2013-06-01] (Thorvald Natvig)
Task: {1E8DC2FE-D478-4E9B-995C-ED569C6258FF} - \{58D8164A-E555-4606-948D-6F50D67BB353} No Task File <==== ATTENTION
Task: {3AE90DD9-FAE4-4AC2-AE0B-A47B036A71A6} - System32\Tasks\ReclaimerUpdateXML_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {55456E83-441F-4007-9F55-5827E93DEE04} - \{0FC804D3-2D80-4A68-BA06-C442B605C60E} No Task File <==== ATTENTION
Task: {57C9EB9F-79AD-4F73-B33D-1E8C8E9E7912} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Device Center\ipoint.exe [2012-06-26] (Microsoft Corporation)
Task: {64DE170D-6D4B-4BD2-9F66-9C595F58DAFA} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2664584700-161297400-3985227703-1001
Task: {664235C7-09E8-426B-A00F-ED15C8C887CE} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {6DFD8271-9257-4FA6-AD8C-921DB302741E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-18] (Google Inc.)
Task: {88992CBC-5A8E-44E4-B6E2-49E4164B2F50} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => C:\Program Files\Microsoft Device Center\devicecenter.exe [2012-06-26] (Microsoft)
Task: {A0A97A9D-1208-443D-9D6B-1EF9B5C6BD67} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-11] (Adobe Systems Incorporated)
Task: {A1D1D39D-5AF9-456F-B0D1-22514B4FF5F0} - System32\Tasks\{A6F8B242-7681-4774-B015-42DE55169CB5} => E:\ILLUSION\RapeLay\RapeLay English.exe [2006-04-26] ()
Task: {A87215D3-5711-4E7D-B5EF-65E45354355C} - System32\Tasks\RNUpgradeHelperLogonPrompt_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {A8BE3FB4-105F-4856-AE63-9417F9C68A5F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ADDC3A36-7C9B-414B-8950-758BC3819693} - System32\Tasks\ReclaimerUpdateFiles_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {B768FC46-7B4F-478F-AFC8-46FA0028F012} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {B7728BCA-ECEA-45A0-A691-488707856985} - System32\Tasks\{DAFB833B-23C5-4F8B-9DA5-E5195C92158E} => Firefox.exe http://ui.skype.com/ui/0/5.10.0.114/en/abandoninstall?page=tsProgressBar
Task: {C4DB152C-85B5-4FD1-870C-8F2AC8CB6D9E} - System32\Tasks\{FB24CB70-D9D1-4501-98E9-B97FE9730667} => E:\ILLUSION\RapeLay\RapeLay English.exe [2006-04-26] ()
Task: {CB5BAB60-A115-4035-8B82-4111B254F77D} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {D09BA71E-B6AC-4C18-B5A1-A6BDD23B47EE} - System32\Tasks\{8F3DAB3A-2B22-4F6D-BDCF-9197800BDCD3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-02-10] (Skype Technologies S.A.)
Task: {D584AAC5-88D1-472D-A97D-23C7E2BC2485} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Device Center\itype.exe [2012-06-26] (Microsoft Corporation)
Task: {D72404FE-1F3A-4113-886E-B0D9CA791841} - System32\Tasks\RNUpgradeHelperResumePrompt_Drazala2 => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe [2014-03-29] (RealNetworks, Inc.)
Task: {D88365FE-B2D7-41F0-AF4C-2337F6234C5C} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {E46F3C5D-9D0B-4A18-8C24-1DC1C5824325} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {E47021B3-CEDA-40F7-982E-7FD7D1EA5EB5} - System32\Tasks\{A3DCBD23-26D7-49A5-AA82-74ECF537C8F5} => E:\ILLUSION\RapeLay\RapeLay English.exe [2006-04-26] ()
Task: {E753C14D-B239-4528-AC8A-F8CCDA81A467} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-04-16] (RealNetworks, Inc.)
Task: {FECF55DE-7F83-47BD-B97D-C0270ADC29A8} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2664584700-161297400-3985227703-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-04-16] (RealNetworks, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ReclaimerUpdateFiles_Drazala2.job => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe
Task: C:\Windows\Tasks\ReclaimerUpdateXML_Drazala2.job => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe
Task: C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Drazala2.job => C:\Users\Drazala2\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.90\agent\rnupgagent.exe

==================== Loaded Modules (whitelisted) =============

2011-04-07 23:19 - 2014-03-04 08:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-04-05 13:52 - 2012-05-02 09:27 - 00049664 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_49.dll
2013-04-05 13:52 - 2012-05-02 09:24 - 00731136 _____ () C:\Program Files\Trend Micro\AMSP\sqlite3.dll
2013-04-05 13:52 - 2012-05-02 09:24 - 00064512 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_49.dll
2013-04-05 13:52 - 2012-05-02 09:25 - 01719808 _____ () C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
2013-04-05 13:52 - 2012-05-02 09:25 - 00016896 _____ () C:\Program Files\Trend Micro\AMSP\boost_system-vc80-mt-1_49.dll
2012-07-25 05:53 - 2012-07-25 05:53 - 00289088 ____N () C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll
2014-01-03 15:08 - 2014-01-06 18:04 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-04-16 03:07 - 2013-04-16 03:07 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2013-03-29 11:01 - 2013-03-29 11:01 - 00088968 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-03-29 09:17 - 2013-03-29 09:17 - 00070536 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2014-01-07 22:54 - 2014-04-21 17:55 - 00340480 _____ () E:\Program Files (x86)\Steam\libavresample-1.dll
2014-03-04 02:36 - 2014-04-21 17:55 - 00471552 _____ () E:\Program Files (x86)\Steam\libavutil-53.dll
2013-03-12 17:10 - 2014-03-31 17:09 - 00754688 _____ () E:\Program Files (x86)\Steam\SDL2.dll
2011-07-12 20:23 - 2014-04-23 17:01 - 01092288 _____ () E:\Program Files (x86)\Steam\bin\chromehtml.DLL
2011-06-20 13:14 - 2014-03-03 14:15 - 20626624 _____ () E:\Program Files (x86)\Steam\bin\libcef.dll
2012-03-15 18:08 - 2013-06-14 18:49 - 01100800 _____ () E:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-03-15 18:08 - 2013-06-14 18:49 - 00124416 _____ () E:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-03-15 18:08 - 2013-06-14 18:49 - 00192000 _____ () E:\Program Files (x86)\Steam\bin\avformat-53.dll
2014-04-11 23:53 - 2014-04-11 23:53 - 16351920 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll
2014-03-18 21:22 - 2014-03-18 21:22 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Public\DRM:احتضان

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sndappv2 => ""="service"

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: SBRE
Description: SBRE
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SBRE
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/23/2014 09:20:31 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 5224.  Message ID: [0x2509].

Error: (04/23/2014 05:52:14 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (04/23/2014 05:52:14 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (04/23/2014 05:52:14 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (04/23/2014 05:52:13 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (04/23/2014 05:50:53 PM) (Source: Application Error) (User: )
Description: Faulting application name: NvBackend.exe, version: 10.11.15.0, time stamp: 0x52a6776c
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x8979013d
Faulting process id: 0xb74
Faulting application start time: 0xNvBackend.exe0
Faulting application path: NvBackend.exe1
Faulting module path: NvBackend.exe2
Report Id: NvBackend.exe3

Error: (04/23/2014 05:43:56 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (04/23/2014 00:10:30 AM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.18444 - There was a failure initializing profiling API attach infrastructure.  This process will not allow a profiler to attach.  HRESULT: 0x80004005.  Process ID (decimal): 5372.  Message ID: [0x2509].

Error: (04/22/2014 11:20:00 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (04/22/2014 11:20:00 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.


System errors:
=============
Error: (04/23/2014 09:19:42 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (04/23/2014 09:19:42 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (04/23/2014 05:49:09 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR2.

Error: (04/23/2014 05:45:42 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (04/23/2014 01:06:33 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (04/23/2014 00:40:32 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (04/23/2014 00:40:03 AM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (04/23/2014 00:37:50 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (04/22/2014 11:14:07 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-04-23 00:40:03.669
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-23 00:40:03.343
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.709
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.498
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.288
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 14:47:44.078
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 13:38:34.408
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-18 13:38:34.197
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 22%
Total physical RAM: 16377.95 MB
Available physical RAM: 12668.1 MB
Total Pagefile: 17176.13 MB
Available Pagefile: 13162.08 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:89.21 GB) (Free:8.67 GB) NTFS
Drive e: () (Fixed) (Total:1862.89 GB) (Free:435.56 GB) NTFS
Drive g: (WD Unlocker) (CDROM) (Total:0.02 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 89 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.

==================== End Of Log ============================

Link to post
Share on other sites

  • Root Admin

Well this computer is certainly having some issues.  The MBR on one of your disks could not be ready which is a bit odd too.

 


Please read the following and post back the logs when ready.

General P2P/Piracy Warning:
 

 
If you're using
Peer 2 Peer
software such as
uTorrent, BitTorrent
or similar you must either fully uninstall them or completely disable them from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

If you have
illegal/cracked software, cracks, keygens etc
. on the system, please remove or uninstall them now and read the policy on
Piracy
.




Before we proceed further, please read all of the following instructions carefully.
If there is anything that you do not understand kindly ask before proceeding.
If needed please print out these instructions.
  • Please do not post logs using CODE, QUOTE, or FONT tags. Just paste them as direct text.
  • If the log is too large then you can use attachments by clicking on the More Reply Options button.
  • Please enable your system to show hidden files: How to see hidden files in Windows
  • Make sure you're subscribed to this topic:
    • Click on the Follow This Topic Button (at the top right of this page), make sure that the Receive notification box is checked and that it is set to Instantly

    [*]Removing malware can be unpredictable...It is unlikely but things can go very wrong! Please make sure you Backup all files that cannot be replaced if something were to happen. You can copy them to a CD/DVD, external drive or a pen drive [*]Please don't run any other scans, download, install or uninstall any programs unless requested by me while I'm working with you. [*]The removal of malware is not instantaneous, please be patient. Often we are also on a different Time Zone. [*]Perform everything in the correct order. Sometimes one step requires the previous one. [*]If you have any problems while following my instructions, Stop there and tell me the exact nature of the issue. [*]You can check here if you're not sure if your computer is 32-bit or 64-bit [*]Please disable your antivirus while running any requested scanners so that they do not interfere with the scanners. [*]When we are done, I'll give you instructions on how to cleanup all the tools and logs [*]Please stick with me until I give you the "all clear" and Please don't waste my time by leaving before that. [*]Your topic will be closed if you haven't replied within 3 days [*](If I have not responded within 24 hours, please send me a Private Message as a reminder)


 
STEP 0
RKill is a program that was developed at BleepingComputer.com that attempts to terminate known malware processes
so that your normal security software can then run and clean your computer of infections.
When RKill runs it will kill malware processes and then removes incorrect executable associations and fixes policies
that stop us from using certain tools. When finished it will display a log file that shows the processes that were
terminated while the program was running.

As RKill only terminates a program's running process, and does not delete any files, after running it you should not reboot
your computer as any malware processes that are configured to start automatically will just be started again.
Instead, after running RKill you should immediately scan your computer using the requested scans I've included.

Please download Rkill by Grinler from one of the links below and save it to your desktop.
 



Link 2

  • On Windows XP double-click on the Rkill desktop icon to run the tool.
  • On Windows Vista/Windows 7 or 8, right-click on the Rkill desktop icon and select Run As Administrator
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.

 
STEP 01
Backup the Registry:
Modifying the Registry can create unforeseen problems, so it always wise to create a backup before doing so.
  • Please download ERUNT from one of the following links: Link1 | Link2 | Link3
  • ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.
  • Double click on erunt-setup.exe to Install ERUNT by following the prompts.
  • NOTE: Do not choose to allow ERUNT to add an Entry to the Startup folder. Click NO.
  • Start ERUNT either by double clicking on the desktop icon or choosing to start the program at the end of the setup process.
  • Choose a location for the backup.
    • Note: the default location is C:\Windows\ERDNT which is acceptable.

    [*]Make sure that at least the first two check boxes are selected. [*]Click on OK [*]Then click on YES to create the folder. [*]Note: if it is necessary to restore the registry, open the backup folder and start ERDNT.exe


 
STEP 02
Please open Malwarebytes Anti-Malware and from the Dashboard please Check for Updates by clicking the Update Now... link
Open up Malwarebytes > Settings > Detection and Protection > Under Non Malware Protection set both PUP and PUM to Treat detections as malware.
Click on the SCAN button and run a Threat Scan with Malwarebytes Anti-Malware by clicking the Scan Now>> button.
Once completed please click on the History > Application Logs and find your scan log and open it and then click on the "copy to clipboard" button and post back the results on your next reply.
 
 
STEP 03
Please download RogueKiller and save it to your desktop.

You can check here if you're not sure if your computer is 32-bit or 64-bit

  • RogueKiller 32-bit | RogueKiller 64-bit
  • Quit all running programs.
  • For Windows XP, double-click to start.
  • For Vista,Windows 7/8, Right-click on the program and select Run as Administrator to start and when prompted allow it to run.
  • Read and accept the EULA (End User Licene Agreement)
  • Click Scan to scan the system.
  • When the scan completes Close the program > Don't Fix anything!
  • Don't run any other options, they're not all bad!!
  • Post back the report which should be located on your desktop.


 
Thanks
 

Link to post
Share on other sites

Hello. I too thought that was odd. I think maybe that drive is failing. It recently started making a clicking noise every once in a while. Here are the logs you have requested.

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 2014/04/25
Scan Time: 10:48:10
Logfile:
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.25.08
Rootkit Database: v2014.03.27.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Enabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Drazala2

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 325372
Time Elapsed: 12 min, 45 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Deep Rootkit Scan: Enabled
Shuriken: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 

 

Rkill 2.6.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 04/25/2014 10:16:35 AM in x64 mode.
Windows Version: Windows 7 Ultimate Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Users\Drazala2\Desktop\Better DS3.exe (PID: 5660) [uP-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 04/25/2014 10:16:56 AM
Execution time: 0 hours(s), 0 minute(s), and 20 seconds(s)
 

Link to post
Share on other sites

Oops I posted the wrong log. My apologizes

 

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Drazala2 [Admin rights]
Mode : Scan -- Date : 04/25/2014 10:56:37
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 1 ¤¤¤
[FF][PUP] qrpvvtb8.default : DVDVideoSoft YouTube MP3 and Video Download

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : PUP ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1       localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) KINGSTON SVP100S296G ATA Device +++++
--- User ---
[MBR] 0086f36f0b7bc8b257f89fc226376c3d
[bSP] 9e3b3c473b1db0daa516427cdae6e1cc : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) Hitachi HDS723020BLA642 ATA Device +++++
--- User ---
[MBR] 0086f36f0b7bc8b257f89fc226376c3d
[bSP] 9e3b3c473b1db0daa516427cdae6e1cc : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097152 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) WD My Book 1140 USB Device +++++
Error reading User MBR! ([0x57] The parameter is incorrect. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

Finished : << RKreport[0]_S_04252014_105637.txt >>




.

Link to post
Share on other sites

  • Root Admin

What is on this hard drive?

PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) WD My Book 1140 USB Device +++++

 

Is it working to access data normally?

Maybe we can try running a disk check on it but if this drive is giving you trouble I hope you have all the data backed up to another drive or you could lose all the data on it.

 

Let me know before we proceed any further.

Link to post
Share on other sites

  • Root Admin

No, that's fine.  Just checking.

 

Please download the following scanner from Kaspersky and save it to your computer: TDSSkiller

Then watch the following video on how to use the tool and make sure to temporarily disable your security applications before running TDSSkiller.



If any infection is found please make sure to choose SKIP and post back the log in case of a False Positive detection.

Once the tool has completed scanning make sure to re-enable your other security applications.
 
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.