Jump to content

Build Theme!
  •  
  • Unreplied Topics
  • Downloads
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93084 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

mshta.exe virus (rootkit i think) [Solved]

Started by hoteret , Feb 18 2014 02:01 AM
mshta

  • This topic is locked This topic is locked
18 replies to this topic

#1 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 18 February 2014 - 02:01 AM

I searched for someone who got the same exact virus with the exact same thing happening.

 

A popup comes up with a Japanese pornographic site, under the process of mshta.exe

 

 

 

I skimmed through the methods to remove the virus from these threads:

http://forums.whatthetech.com/index.php?showtopic=127803&hl=mshta 

http://forums.whatth...howtopic=125485

 

I tried most of the methods mentioned from those threads but there was no luck and the popup mshta virus kept coming back up.


    Advertisements

Register to Remove

#2 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 18 February 2014 - 06:44 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

 

 

Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)

  • Run FRST.
  • Don´t change one of the checkboxes and hit Scan.
  • Logfiles are created on your desktop.
  • Poste the FRST.txt and (after the first scan only!) the Addition.txt.

 

 

 

Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.

  • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Show All ( should be unchecked by default )
  • Leave everything else as it is.
  • Close all other running programs as well as your Browser.
  • Click the Scan button & wait for it to finish.
  • Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop.
  • Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries


Proud Member of UNITE & TB
 

#3 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 19 February 2014 - 04:23 AM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2014
Ran by RafaelGAMING (administrator) on RAFAELGAMING-PC on 19-02-2014 15:55:33
Running from C:\Users\RafaelGAMING\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
() C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe
() C:\Program Files (x86)\Jump Flip\bin\utilJumpFlip.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Akamai Technologies, Inc.) C:\Users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\system32\mshta.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(BitTorrent Inc.) C:\Users\RafaelGAMING\AppData\Roaming\BitTorrent\BitTorrent.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1063200 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [Autodesk Sync] - C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [415680 2012-02-05] (Autodesk, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813712 2014-02-04] (LogMeIn Inc.)
HKCU Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKCU Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1824000 2014-02-11] (Valve Corporation)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [GoogleChromeAutoLaunch_60C5998B0F1615D70DA22AA057791F4A] - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe [866632 2014-02-02] (Google Inc.)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18678376 2013-04-19] (Skype Technologies S.A.)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [Akamai NetSession Interface] - C:\Users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563608 2014-01-07] (SUPERAntiSpyware)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....rk6pQf3Xv&log=1
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\RunOnce: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Policies\Explorer: [] 
GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1002\User: Group Policy restriction detected <======= ATTENTION
GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1001\User: Group Policy restriction detected <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x102C3358DD37CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-AU
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Jump Flip - {6db9fdfe-b718-4962-be0c-0a5fce7f7f7b} - C:\Program Files (x86)\Jump Flip\JumpFlipBHO.dll (Jump Flip)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.m...ash/swflash.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 
FireFox:
========
FF ProfilePath: C:\Users\RafaelGAMING\AppData\Roaming\Mozilla\Firefox\Profiles\l9903zog.default
FF Homepage: hxxp://mysearch.avg.com?cid={56A1AB89-4FD2-46EB-B23A-BEA1E6A54FF6}&mid=1f9cb1683c9347d08f82416272f92a57-de24b43e3d9c04bcad79ea9cf4ccc4ec82497233&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 17:45:54&v=17.2.0.38&pid=safeguard&sg=&sap=hp
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\RafaelGAMING\AppData\Local\Roblox\Versions\version-4d86019d16fc4ea5\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\RafaelGAMING\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\RafaelGAMING\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\RafaelGAMING\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\RafaelGAMING\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\RafaelGAMING\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: thehappycloud.com/HappyCloudPlugin - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll (The Happy Cloud)
FF Extension: No Name - C:\Users\RafaelGAMING\AppData\Roaming\Mozilla\Firefox\Profiles\l9903zog.default\Extensions\staged [2014-02-01]
 
Chrome: 
=======
CHR DefaultSearchKeyword: google.com.au
CHR Extension: (Google Drive) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-30]
CHR Extension: (GFACE Experience Plugin) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdlfmdbdibkbfdpjocdaolcheehmpol [2014-01-16]
CHR Extension: (AdBlock) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-03]
CHR Extension: (Jump Flip) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf [2014-02-08]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-10-29]
CHR Extension: (Google Wallet) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-29]
CHR Extension: (weebsAve) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaifobfbhobikajfnflcabknamdcnni [2014-02-01]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\RAFAEL~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-11-30]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-02-11]
CHR HKLM-x32\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2014-02-06]
 
==================== Services (Whitelisted) =================
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-06] (Alcohol Soft Development Team)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-04] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-07] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5131672 2013-11-19] (INCA Internet Co., Ltd.)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15122208 2013-10-18] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-08] ()
R2 Update Jump Flip; C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe [80672 2014-02-13] ()
R2 Util Jump Flip; C:\Program Files (x86)\Jump Flip\bin\utilJumpFlip.exe [80672 2014-02-13] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-01-11] (VIA Technologies, Inc.)
S3 xsherlock; C:\Windows\SysWOW64\xsherlock.xem [666720 2012-11-20] (Wellbia.com Co., Ltd.)
S2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
S3 2310_00; C:\Windows\system32\drivers\2310_00.sys [170528 2009-06-12] (HighPoint Technologies, Inc.)
S3 272x_1x; C:\Windows\system32\drivers\272x_1x.sys [612672 2012-04-25] (HighPoint Technologies, Inc.)
S3 274x_3x; C:\Windows\system32\drivers\274x_3x.sys [240960 2012-04-25] (HighPoint Technologies, Inc.)
S3 arcm_a64; C:\Windows\system32\drivers\arcm_a64.sys [52768 2009-11-09] (ARECA Technology Corporation)
S3 asahci64; C:\Windows\system32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-12-21] (AVG Technologies)
S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2011-09-02] (Broadcom Corporation)
S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-23] (Bigfoot Networks, Inc.)
S3 BFNVis64; C:\Windows\system32\drivers\XenoVa64.sys [157288 2012-02-23] (Bigfoot Networks, Inc.)
S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [174632 2011-11-10] (Broadcom Corporation)
S3 bxois; C:\Windows\system32\drivers\bxois.sys [538664 2011-10-24] (Broadcom Corporation)
S3 cbaf; C:\Windows\System32\Drivers\cbaf.sys [15872 2008-01-10] (Intel Corp.)
S3 cercsr6; C:\Windows\system32\drivers\cercsr6.sys [45616 2008-02-28] (Adaptec, Inc.)
S3 DC133; C:\Windows\system32\drivers\DC133.sys [39320 2011-05-02] (Dawicontrol GmbH)
S3 DC150; C:\Windows\system32\drivers\DC150.sys [39832 2011-05-02] (Dawicontrol GmbH)
S3 DC154; C:\Windows\system32\drivers\DC154.sys [48136 2011-05-02] (Dawicontrol GmbH)
S3 DC300e; C:\Windows\system32\drivers\DC300e.sys [40344 2011-05-02] (Dawicontrol GmbH)
R0 DC324e; C:\Windows\System32\drivers\DC324e.sys [49752 2011-05-02] (Dawicontrol GmbH)
R0 DC3410; C:\Windows\System32\drivers\DC3410.sys [48328 2011-05-02] (Dawicontrol GmbH)
S3 DC4300; C:\Windows\system32\drivers\DC4300.sys [48360 2011-05-02] (Dawicontrol GmbH)
S3 DC600e; C:\Windows\system32\drivers\DC600e.sys [40744 2011-05-02] (Dawicontrol GmbH)
S3 dfuuwb; C:\Windows\System32\Drivers\DfuUWB.sys [503296 2008-09-12] (Intel Corp.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-10-04] (DT Soft Ltd)
S3 FLxHCIh; C:\Windows\system32\drivers\FLxHCIh.sys [71424 2011-12-13] (Fresco Logic)
S3 FTT3s; C:\Windows\system32\drivers\FTT3s.sys [233040 2011-02-01] (Promise Technology, Inc.)
S3 hptiop; C:\Windows\system32\drivers\hptiop.sys [17440 2009-05-26] (HighPoint Technologies, Inc.)
S3 hptmv; C:\Windows\system32\drivers\hptmv.sys [93472 2006-09-18] (HighPoint Technologies, Inc.)
S3 hptmv6; C:\Windows\system32\drivers\hptmv6.sys [152096 2007-11-01] (HighPoint Technologies, Inc.)
S3 HWA; C:\Windows\System32\Drivers\HWA.sys [61440 2008-09-29] (Intel Corp.)
S3 hxsyol; C:\AeriaGames\AuraKingdom\avital\hxsy64.sys [86352 2013-11-27] ()
S3 IAMTVE; C:\Windows\system32\drivers\IAMTVE.sys [43416 2007-04-12] (Intel Corporation)
S3 IAMTXPE; C:\Windows\system32\drivers\IAMTXPE.sys [51096 2007-04-12] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [24496 2012-03-16] (Intel Corporation)
S3 iaStorS; C:\Windows\system32\drivers\iaStorS.sys [639408 2012-03-31] (Intel Corporation)
S3 IFCoEMP; C:\Windows\system32\drivers\ifM60x64.sys [388368 2011-12-01] (Intel® Corporation)
S3 IFCoEVB; C:\Windows\system32\drivers\ifP60X64.sys [78096 2011-12-01] (Intel® Corporation)
S3 ioatdma2; C:\Windows\System32\Drivers\qd260x64.sys [41168 2009-11-16] (Intel Corporation)
S3 iteatapi; C:\Windows\system32\drivers\iteatapi.sys [38680 2008-05-14] (ITE Tech. Inc.)
S3 iteraid; C:\Windows\system32\drivers\iteraid.sys [32768 2007-05-02] (ITE Tech. Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 megasas2; C:\Windows\system32\drivers\megasas2.sys [51280 2010-11-02] (LSI Corporation)
S3 MegaSR1; C:\Windows\system32\drivers\MegaSR1.sys [461320 2009-04-16] (LSI Corporation, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
S3 mv61xx; C:\Windows\system32\drivers\mv61xx.sys [182576 2011-05-06] (Marvell Semiconductor, Inc.)
S3 mv64xx; C:\Windows\system32\drivers\mv64xx.sys [331816 2010-01-11] (Marvell Semiconductor, Inc.)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
R0 nvrd64; C:\Windows\System32\drivers\nvrd64.sys [175720 2010-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 percsas2; C:\Windows\system32\drivers\percsas2.sys [40456 2010-05-08] (LSI Corporation)
S3 Pnp680; C:\Windows\system32\drivers\pnp680.sys [80424 2007-11-14] (Silicon Image, Inc)
S4 RAMDiskVE; C:\Windows\System32\Drivers\RAMDiskVE.sys [86768 2014-01-29] (Dataram, Inc.)
S3 rr172x; C:\Windows\system32\drivers\rr172x.sys [124448 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr174x; C:\Windows\system32\drivers\rr174x.sys [159264 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr2210; C:\Windows\system32\drivers\rr2210.sys [153632 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr232x; C:\Windows\system32\drivers\rr232x.sys [152096 2008-05-06] (HighPoint Technologies, Inc.)
S3 rr2340; C:\Windows\system32\drivers\rr2340.sys [162400 2010-01-01] (HighPoint Technologies, Inc.)
S3 rr2522; C:\Windows\system32\drivers\rr2522.sys [168032 2010-01-01] (HighPoint Technologies, Inc.)
S3 rr276x; C:\Windows\system32\drivers\rr276x.sys [241472 2012-04-25] (HighPoint Technologies, Inc.)
S3 rr278x; C:\Windows\system32\drivers\rr278x.sys [240960 2012-04-25] (HighPoint Technologies, Inc.)
S3 rr62x; C:\Windows\system32\drivers\rr62x.sys [156256 2010-06-17] (HighPoint Technologies, Inc.)
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SI3112r; C:\Windows\system32\drivers\SI3112r.sys [164656 2007-02-02] (Silicon Image, Inc)
S3 SI3114; C:\Windows\system32\drivers\SI3114.sys [99120 2006-11-10] (Silicon Image, Inc.)
S3 SI3114r; C:\Windows\system32\drivers\SI3114R.sys [163632 2007-04-12] (Silicon Image, Inc)
S3 SI3124; C:\Windows\system32\drivers\SI3124.sys [113456 2006-11-03] (Silicon Image, Inc.)
S3 Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [334640 2006-09-20] (Silicon Image, Inc)
S3 SI3132; C:\Windows\system32\drivers\SI3132.sys [90664 2007-10-04] (Silicon Image, Inc)
S3 Si3531; C:\Windows\system32\drivers\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22056 2007-10-04] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\drivers\SiRemFil.sys [17448 2007-10-04] (Silicon Image, Inc)
S3 SISAGP; C:\Windows\system32\drivers\SISAGPX.sys [67120 2008-04-23] (Silicon Integrated Systems Corporation)
S3 sjcst; C:\AeriaGames\EdenEternal\avital\sjcsu64.sys [86352 2014-01-19] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2013-12-30] (Duplex Secure Ltd.)
S3 uwbusb; C:\Windows\System32\Drivers\usbuwbmini.sys [13312 2008-09-15] (Intel Corp.)
S3 viaagp1; C:\Windows\system32\drivers\viaagp1.sys [59392 2005-09-23] (VIA Technologies, Inc.)
S3 viamrx64; C:\Windows\system32\drivers\viamrx64.sys [161904 2010-12-03] (VIA Technologies Inc.,Ltd)
S3 videX64; C:\Windows\system32\drivers\videX64.sys [15000 2010-02-11] (VIA Technologies, Inc.)
S3 VUSB3HUB; C:\Windows\system32\drivers\ViaHub3.sys [204800 2011-11-15] (VIA Technologies, Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
R0 xfiltx64; C:\Windows\System32\drivers\xfiltx64.sys [26776 2010-02-11] (VIA Technologies, Inc.)
S3 xhcdrv; C:\Windows\system32\drivers\xhcdrv.sys [256000 2011-11-15] (VIA Technologies, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
U3 a99uwgzs; C:\Windows\System32\Drivers\a99uwgzs.sys [0 ] (Microsoft Corporation)
U3 ap31pgx2; C:\Windows\System32\Drivers\ap31pgx2.sys [0 ] (Microsoft Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-02-19 15:55 - 2014-02-19 15:55 - 00031183 _____ () C:\Users\RafaelGAMING\Desktop\FRST.txt
2014-02-19 15:55 - 2014-02-19 15:55 - 00000000 ____D () C:\FRST
2014-02-19 15:54 - 2014-02-19 15:54 - 02153472 _____ (Farbar) C:\Users\RafaelGAMING\Desktop\FRST64.exe
2014-02-19 07:49 - 2014-02-19 07:52 - 01210892 _____ () C:\Users\RafaelGAMING\Downloads\rws_gia_grace_ck102112_720p_8000.mp4
2014-02-18 23:18 - 2014-02-18 23:18 - 00043557 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 07 [1080p].mkv.torrent
2014-02-18 23:18 - 2014-02-18 23:18 - 00036328 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 07 [720p].mkv.torrent
2014-02-18 21:35 - 2014-02-18 21:35 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\CrashDumps
2014-02-18 17:28 - 2014-02-18 17:28 - 00001656 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_SC_02182014_172803.txt
2014-02-18 17:27 - 2014-02-18 17:27 - 00001896 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_D_02182014_172751.txt
2014-02-18 17:25 - 2014-02-18 17:25 - 00001801 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_S_02182014_172553.txt
2014-02-18 17:19 - 2014-02-18 17:28 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\RK_Quarantine
2014-02-18 17:19 - 2014-02-18 17:19 - 03813376 _____ () C:\Users\RafaelGAMING\Downloads\RogueKiller.exe
2014-02-18 17:16 - 2014-02-18 17:16 - 00048042 _____ () C:\ComboFix.txt
2014-02-18 17:00 - 2011-06-26 16:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-18 17:00 - 2010-11-08 03:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-18 17:00 - 2009-04-20 14:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-18 16:58 - 2014-02-18 17:16 - 00000000 ____D () C:\Qoobox
2014-02-18 16:57 - 2014-02-18 17:15 - 00000000 ____D () C:\Windows\erdnt
2014-02-18 16:55 - 2014-02-18 16:56 - 05183112 ____R (Swearware) C:\Users\RafaelGAMING\Desktop\ComboFix.exe
2014-02-18 16:46 - 2014-02-18 16:46 - 00602112 _____ (OldTimer Tools) C:\Users\RafaelGAMING\Downloads\OTL.exe
2014-02-18 15:59 - 2014-02-19 07:59 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c.job
2014-02-18 15:59 - 2014-02-19 02:00 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf.job
2014-02-18 15:59 - 2014-02-18 23:46 - 00001868 _____ () C:\Users\RafaelGAMING\Desktop\SUPERAntiSpyware Professional.lnk
2014-02-18 15:59 - 2014-02-18 15:59 - 00987425 _____ () C:\Users\RafaelGAMING\Desktop\SecurityCheck.exe
2014-02-18 15:59 - 2014-02-18 15:59 - 00003626 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf
2014-02-18 15:59 - 2014-02-18 15:59 - 00003552 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-18 15:54 - 2014-02-18 15:55 - 17954448 _____ (SUPERAntiSpyware) C:\Users\RafaelGAMING\Downloads\SUPERAntiSpyware.exe
2014-02-18 07:42 - 2014-02-18 07:42 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Malwarebytes
2014-02-18 07:39 - 2014-02-18 07:39 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 07:39 - 2014-02-18 07:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-18 07:39 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-18 07:38 - 2014-02-18 07:38 - 00388608 _____ (Trend Micro Inc.) C:\Users\RafaelGAMING\Downloads\HijackThis.exe
2014-02-18 07:21 - 2014-02-19 15:52 - 00003696 _____ () C:\Windows\System32\Tasks\RegWrite
2014-02-18 07:01 - 2014-02-18 17:33 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DayZ
2014-02-18 07:01 - 2014-02-18 17:33 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\DayZ
2014-02-17 21:37 - 2014-02-17 21:39 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Red Roses
2014-02-17 16:26 - 2014-02-17 16:26 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\DayZ.url
2014-02-17 06:40 - 2014-02-17 06:40 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Skyrim
2014-02-17 06:35 - 2014-02-17 06:35 - 00051263 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 07 [720p].mkv.torrent
2014-02-16 18:02 - 2014-02-16 18:02 - 00373159 _____ () C:\Users\RafaelGAMING\Documents\Untitled (8).wma
2014-02-16 18:00 - 2014-02-16 18:00 - 00862569 _____ () C:\Users\RafaelGAMING\Documents\Untitled (7).wma
2014-02-16 09:46 - 2014-02-17 06:27 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Install.Fix-RELOADED
2014-02-16 09:46 - 2014-02-16 09:46 - 00378368 ____R () C:\Users\RafaelGAMING\Desktop\Elder Scrolls V - Skyrim Installer Fix.exe
2014-02-16 08:51 - 2014-02-17 06:28 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2014-02-16 08:51 - 2014-02-17 01:12 - 2303371264 ____R () C:\Users\RafaelGAMING\Downloads\SKYRIM_EN_WWW.iso
2014-02-16 08:49 - 2014-02-16 08:49 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 06 [1080p].mkv.torrent
2014-02-16 08:49 - 2014-02-16 08:49 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 07 [1080p].mkv.torrent
2014-02-16 08:48 - 2014-02-16 08:48 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\skyrim saves
2014-02-15 22:42 - 2014-02-15 22:42 - 00026966 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 20 [720p].mkv.torrent
2014-02-15 07:36 - 2014-02-15 07:36 - 00049701 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 06 [720p].mkv.torrent
2014-02-15 07:36 - 2014-02-15 07:36 - 00043552 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 18 [1080p].mkv.torrent
2014-02-14 22:57 - 2014-02-14 22:57 - 00043510 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043663 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043647 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 18 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 06 [480p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00050368 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 05 [720p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 06 [1080p].mkv.torrent
2014-02-11 22:17 - 2014-02-11 22:17 - 00049988 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 06 [720p].mkv.torrent
2014-02-11 19:00 - 2014-02-11 19:12 - 190781224 _____ () C:\Users\RafaelGAMING\Downloads\PS_AIO_04_C4500_USW_Full_Win_WW_130_140.exe
2014-02-11 07:24 - 2014-02-11 07:24 - 03418771 _____ (BOSS Development Team) C:\Users\RafaelGAMING\Downloads\BOSS v2.1.1 Installer.exe
2014-02-11 06:32 - 2014-02-11 06:32 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 06 [1080p].mkv.torrent
2014-02-10 22:34 - 2014-02-10 22:34 - 00001305 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-02-10 22:34 - 2014-02-10 22:34 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-02-10 22:32 - 2014-02-10 22:34 - 11621536 _____ () C:\Users\RafaelGAMING\Downloads\YTDSetup.exe
2014-02-10 21:31 - 2014-02-10 21:31 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 06 [1080p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00051283 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 06 [720p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00014274 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 07 [1080p].mkv.torrent
2014-02-10 06:41 - 2014-02-10 06:41 - 00001702 _____ () C:\Users\RafaelGAMING\Desktop\SkyrimLauncher.exe - Shortcut.lnk
2014-02-09 18:20 - 2014-02-09 18:20 - 20117840 _____ () C:\Users\RafaelGAMING\Desktop\Desktop.mp4
2014-02-09 17:57 - 2014-02-09 17:58 - 98197154 _____ () C:\Users\RafaelGAMING\Desktop\On the Job - Agricultural Engineer.mp4
2014-02-09 08:51 - 2014-02-09 08:51 - 00044683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 05 [1080p].mkv.torrent
2014-02-09 08:51 - 2014-02-09 08:51 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 06 [1080p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00035981 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 05 [720p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00027006 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 19 [720p].mkv.torrent
2014-02-08 14:12 - 2014-02-08 14:13 - 00000013 _____ () C:\Users\RafaelGAMING\Desktop\New Text Document.txt
2014-02-08 13:40 - 2014-02-08 13:40 - 00001373 _____ () C:\Users\RafaelGAMING\Desktop\Cursors.rar
2014-02-08 07:22 - 2014-02-08 07:22 - 00043512 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 17 [1080p].mkv.torrent
2014-02-07 22:20 - 2014-02-07 22:20 - 00043470 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 05 [1080p].mkv.torrent
2014-02-07 19:03 - 2014-02-07 19:03 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DogsOfWar
2014-02-07 07:10 - 2014-02-07 07:10 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv (1).torrent
2014-02-07 07:10 - 2014-02-07 07:10 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [720p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00011986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [480p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 05 [480p].mkv.torrent
2014-02-07 06:41 - 2014-02-07 06:41 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv.torrent
2014-02-06 22:50 - 2014-02-06 22:50 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Dogs of War Online - Beta.url
2014-02-06 22:49 - 2014-02-06 22:49 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Cannons Lasers Rockets.url
2014-02-06 21:56 - 2014-02-06 21:56 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-06 17:28 - 2014-02-06 17:28 - 00091833 _____ () C:\Users\RafaelGAMING\Downloads\GmadExtractor_1_6_12_600.zip
2014-02-06 17:28 - 2014-02-06 17:28 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\GMAD
2014-02-06 07:54 - 2014-02-06 07:54 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 05 [1080p].mkv.torrent
2014-02-06 07:54 - 2014-02-06 07:54 - 00036508 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 04 [720p].mkv.torrent
2014-02-05 18:19 - 2014-02-05 18:19 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LennarDigital
2014-02-05 18:18 - 2014-02-05 18:18 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Lennardigital.Sylenth1.Halloween.Special.VSTi.v2.2.HALLOWEEN by steffie
2014-02-04 15:38 - 2014-02-04 15:38 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Targem
2014-02-04 15:37 - 2014-02-04 15:37 - 00036268 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 05 [720p].mkv.torrent
2014-02-04 06:24 - 2014-02-04 06:24 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 05 [1080p].mkv.torrent
2014-02-03 21:48 - 2014-02-03 21:48 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Star Conflict.url
2014-02-03 21:42 - 2014-02-03 21:42 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv (1).torrent
2014-02-03 21:31 - 2014-02-17 19:12 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\xvide
2014-02-03 06:23 - 2014-02-03 06:23 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 05 [720p].mkv.torrent
2014-02-03 06:23 - 2014-02-03 06:23 - 00014314 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 05 [1080p].mkv.torrent
2014-02-02 15:58 - 2014-02-02 15:58 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\EdgeOfReality
2014-02-02 15:39 - 2014-02-02 15:40 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Ableton
2014-02-02 15:39 - 2014-02-02 15:39 - 00001601 _____ () C:\Users\RafaelGAMING\Desktop\Ableton Live 9 Suite.exe - Shortcut.lnk
2014-02-02 15:39 - 2014-02-02 15:39 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\Ableton
2014-02-02 15:19 - 2014-02-02 15:19 - 00000881 _____ () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Suite.lnk
2014-02-02 15:19 - 2014-02-02 15:19 - 00000000 ____D () C:\ProgramData\Ableton
2014-02-02 15:05 - 2013-04-08 07:15 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Ableton Live 9.0.2
2014-02-02 14:26 - 2014-02-02 14:27 - 00975086 _____ () C:\Users\RafaelGAMING\Downloads\162.zip
2014-02-02 13:10 - 2014-02-02 14:25 - 722207746 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live 9.0.2.rar
2014-02-02 09:09 - 2014-02-02 09:09 - 00026142 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 05 [720p].mkv.torrent
2014-02-02 09:02 - 2008-11-12 23:44 - 05410119 _____ ( ) C:\Users\RafaelGAMING\Desktop\Sylenth1Demo_v220_Setup_x64.exe
2014-02-02 08:41 - 2014-02-02 09:42 - 738436666 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live Suite 9.1 Win 64-bit.rar
2014-02-02 08:16 - 2014-02-02 08:16 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 04 [1080p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv (1).torrent
2014-02-01 16:58 - 2014-02-01 16:58 - 00044628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 04 [1080p].mkv.torrent
2014-02-01 16:57 - 2014-02-01 16:57 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Loadout.url
2014-02-01 13:46 - 2014-02-01 13:48 - 02418128 _____ () C:\Users\RafaelGAMING\Desktop\Heart Rate Monitor Flatline-SoundBible.com-2063567528.wav
2014-02-01 13:22 - 2014-02-01 13:22 - 00000000 ____D () C:\ProgramData\SetApp
2014-02-01 13:21 - 2014-02-19 07:07 - 00000000 ____D () C:\Users\Administrator
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\ProgramData\19a04e83d58db913
2014-02-01 13:20 - 2014-02-01 13:20 - 00321424 _____ (SetApp) C:\Users\RafaelGAMING\Downloads\minecraftdl_1283.exe
2014-02-01 12:26 - 2014-02-01 12:26 - 00107764 _____ () C:\Users\RafaelGAMING\Downloads\XRayInstaller.jar
2014-02-01 12:24 - 2014-02-01 12:24 - 00919541 _____ () C:\Users\RafaelGAMING\Downloads\XRayPatcher-v1-1.7.4.jar
2014-02-01 12:08 - 2014-02-01 12:08 - 00768980 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_C2.jar
2014-02-01 11:39 - 2014-02-01 11:40 - 00386383 _____ (http://magiclauncher.com) C:\Users\RafaelGAMING\Downloads\MagicLauncher_1.2.5.exe
2014-02-01 09:52 - 2014-02-01 09:52 - 00000130 _____ () C:\Users\RafaelGAMING\Documents\acad.err
2014-02-01 09:47 - 2014-02-01 09:47 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-01 09:36 - 2014-02-01 09:36 - 00000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-02-01 09:36 - 2014-02-01 09:36 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\Inventor Server SDK ACAD 2013
2014-02-01 09:35 - 2014-02-01 09:46 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Autodesk
2014-02-01 09:35 - 2014-02-01 09:36 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\AUTODESK.2013.PRODUCTS.UNIVERSAL.KEYGEN-XFORCE
2014-02-01 09:35 - 2014-02-01 09:35 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-02-01 09:33 - 2014-02-01 09:37 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-02-01 09:33 - 2014-02-01 09:37 - 00000000 ____D () C:\Program Files\Autodesk
2014-02-01 09:33 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-02-01 09:32 - 2014-02-01 09:32 - 00000363 _____ () C:\Windows\DirectX.log
2014-02-01 09:29 - 2014-02-01 09:47 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Autodesk
2014-02-01 09:29 - 2014-02-01 09:47 - 00000000 ____D () C:\ProgramData\Autodesk
2014-02-01 09:29 - 2014-02-01 09:29 - 00044588 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 02 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 01 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044488 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 03 [1080p].mkv.torrent
2014-02-01 09:25 - 2014-02-01 09:25 - 00000000 ____D () C:\Autodesk
2014-02-01 09:22 - 2013-03-03 23:02 - 1216220336 _____ () C:\Users\RafaelGAMING\Desktop\AutoCAD_2013_English_Win_64bit.exe
2014-02-01 06:08 - 2014-02-01 06:08 - 00043632 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 16 [1080p].mkv.torrent
2014-02-01 06:08 - 2014-02-01 06:08 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv.torrent
2014-01-31 21:04 - 2014-01-31 21:04 - 00795225 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_U_C2.jar
2014-01-31 17:40 - 2014-01-31 17:40 - 03991490 _____ () C:\Users\RafaelGAMING\Downloads\Sylenth1 VTX BlackO.rar
2014-01-31 16:17 - 2014-01-31 16:17 - 00026049 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 04 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00043543 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 04 [1080p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 16 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 04 [480p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00043513 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 04 [1080p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00036628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 03 [720p].mkv.torrent
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img.bak
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img
2014-01-29 20:10 - 2014-01-29 20:10 - 00086768 _____ (Dataram, Inc.) C:\Windows\system32\Drivers\RAMDiskVE.sys
2014-01-29 20:08 - 2014-01-29 20:10 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Dataram_Corporation
2014-01-29 20:08 - 2014-01-29 20:10 - 00000000 ____D () C:\Program Files (x86)\RAMDisk
2014-01-29 20:08 - 2014-01-29 20:08 - 00001869 _____ () C:\Users\Public\Desktop\RAMDisk Configuration Utility.lnk
2014-01-29 20:06 - 2014-01-29 20:07 - 06201344 _____ () C:\Users\RafaelGAMING\Downloads\Dataram_RAMDisk_4_4_0_RC16.msi
2014-01-28 19:24 - 2014-02-06 21:56 - 00000942 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-01-28 16:59 - 2014-01-28 16:59 - 00043697 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 04 [1080p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00036348 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 04 [720p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv (1).torrent
2014-01-27 18:11 - 2014-01-27 18:15 - 63631359 _____ () C:\Users\RafaelGAMING\Downloads\placebo_for_windows_7_by_solmiler-d346dad.rar
2014-01-27 18:11 - 2014-01-27 18:12 - 08613604 _____ () C:\Users\RafaelGAMING\Downloads\adagio_theme___windows_7_by_rajtheeban95-d2zwu22.rar
2014-01-27 18:02 - 2010-11-21 13:23 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll.backup
2014-01-27 18:02 - 2009-07-14 11:41 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll.backup
2014-01-27 18:02 - 2009-07-14 11:41 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll.backup
2014-01-27 18:01 - 2010-11-21 13:24 - 02755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll.backup
2014-01-27 18:01 - 2009-07-14 11:11 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll.backup
2014-01-27 18:00 - 2014-02-01 09:26 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\UniversalThemePatcher_20090409
2014-01-27 17:58 - 2014-01-27 17:58 - 00082664 _____ () C:\Users\RafaelGAMING\Downloads\UniversalThemePatcher_20090409.zip
2014-01-27 17:51 - 2014-01-27 17:52 - 10782967 _____ () C:\Users\RafaelGAMING\Downloads\toybox_for_windows_7_by_cappippuni-d5ac8kq.zip
2014-01-27 17:28 - 2014-02-19 07:05 - 00001680 _____ () C:\Windows\setupact.log
2014-01-27 17:28 - 2014-01-27 17:28 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-27 17:27 - 2014-02-18 23:32 - 00010744 _____ () C:\Windows\PFRO.log
2014-01-27 17:22 - 2014-01-27 17:22 - 00000000 ____D () C:\Program Files\Defraggler
2014-01-27 17:18 - 2014-01-27 17:19 - 04208656 _____ (Piriform Ltd) C:\Users\RafaelGAMING\Downloads\dfsetup216.exe
2014-01-27 09:26 - 2014-01-27 09:26 - 00037223 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 04 [720p].mkv.torrent
2014-01-27 09:26 - 2014-01-27 09:26 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv.torrent
2014-01-26 21:42 - 2014-01-26 21:42 - 00044823 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 03 [1080p].mkv.torrent
2014-01-26 21:42 - 2014-01-26 21:42 - 00043523 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 04 [1080p].mkv.torrent
2014-01-25 23:56 - 2014-01-25 23:56 - 00045167 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 17 [1080p].mkv.torrent
2014-01-25 14:49 - 2014-01-25 15:28 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\InfiniteCrisis
2014-01-25 14:49 - 2014-01-25 14:49 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\InfiniteCrisis
2014-01-25 13:10 - 2014-01-25 13:10 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Turbine
2014-01-25 13:00 - 2014-02-01 14:45 - 00000000 ____D () C:\Program Files (x86)\InfiniteCrisis
2014-01-25 13:00 - 2014-01-25 13:00 - 00001100 _____ () C:\Users\Public\Desktop\InfiniteCrisis.lnk
2014-01-25 13:00 - 2014-01-25 13:00 - 00000000 ____D () C:\ProgramData\Turbine
2014-01-25 12:42 - 2014-01-25 12:56 - 138644080 _____ () C:\Users\RafaelGAMING\Downloads\InfiniteCrisis-GLOBAL_Setup.exe
2014-01-25 10:36 - 2014-01-25 10:36 - 00043572 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 15 [1080p].mkv.torrent
2014-01-25 10:36 - 2014-01-25 10:36 - 00036208 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 03 [720p].mkv.torrent
2014-01-25 10:36 - 2014-01-25 10:36 - 00036001 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 03 [720p].mkv.torrent
2014-01-24 18:12 - 2014-01-24 18:12 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\SynthMaker
2014-01-24 16:35 - 2014-01-24 16:35 - 00043707 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 15 [1080p].mkv.torrent
2014-01-24 16:35 - 2014-01-24 16:35 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 03 [480p].mkv.torrent
2014-01-24 01:17 - 2014-01-24 01:18 - 00043583 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 03 [1080p].mkv.torrent
2014-01-23 10:37 - 2014-01-23 10:37 - 00043550 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 03 [1080p].mkv.torrent
2014-01-23 10:37 - 2014-01-23 10:37 - 00043533 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 03 [1080p].mkv.torrent
2014-01-23 10:37 - 2014-01-23 10:37 - 00036628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 02 [720p].mkv.torrent
2014-01-23 10:35 - 2014-01-23 10:35 - 00058424 _____ () C:\Users\RafaelGAMING\Downloads\Unconfirmed 84764.crdownload
2014-01-23 10:24 - 2014-01-23 10:24 - 00011776 _____ () C:\Users\RafaelGAMING\Downloads\{EHT PERSONALIZED TORRENT - DO NOT REDISTRIBUTE} (C83) [とかちのくに(結桐たかし)] お小遣いの範囲で遊びましょう (となりの怪物くん夏目・雫).zip.torrent
2014-01-22 23:17 - 2014-01-22 23:17 - 00058424 _____ () C:\Users\RafaelGAMING\Downloads\Unconfirmed 642639.crdownload
2014-01-22 22:53 - 2014-01-22 22:53 - 00000000 ____D () C:\Windows\SysWOW64\new_gamedata
2014-01-22 12:55 - 2014-01-22 12:55 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Rust.url
2014-01-21 02:48 - 2014-01-21 02:48 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 03 [1080p].mkv.torrent
2014-01-20 20:33 - 2014-01-20 20:33 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 03 [720p].mkv.torrent
2014-01-20 20:33 - 2014-01-20 20:33 - 00014314 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 03 [1080p].mkv.torrent
2014-01-20 01:36 - 2014-01-20 01:36 - 00000000 ____D () C:\Program Files (x86)\Fake Webcam 7.1
2014-01-20 01:35 - 2014-01-20 01:35 - 00000000 ____D () C:\Program Files (x86)\Fake Voice 7.0
2014-01-20 01:35 - 2004-03-09 01:00 - 00152848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2014-01-20 01:35 - 2004-03-09 00:00 - 00132880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSINET.OCX
2014-01-20 01:34 - 2014-01-20 01:35 - 09828272 _____ (Web Solution Mart ) C:\Users\RafaelGAMING\Downloads\fvsetup.exe
2014-01-20 01:22 - 2014-01-20 01:22 - 00000000 ____D () C:\Program Files (x86)\Screaming Bee
2014-01-20 01:21 - 2014-01-20 01:21 - 00980328 _____ () C:\Users\RafaelGAMING\Downloads\VP-Female_Install-1.exe
 
==================== One Month Modified Files and Folders =======
 
2014-02-19 15:55 - 2014-02-19 15:55 - 00031183 _____ () C:\Users\RafaelGAMING\Desktop\FRST.txt
2014-02-19 15:55 - 2014-02-19 15:55 - 00000000 ____D () C:\FRST
2014-02-19 15:55 - 2013-06-08 10:29 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\BitTorrent
2014-02-19 15:54 - 2014-02-19 15:54 - 02153472 _____ (Farbar) C:\Users\RafaelGAMING\Desktop\FRST64.exe
2014-02-19 15:52 - 2014-02-18 07:21 - 00003696 _____ () C:\Windows\System32\Tasks\RegWrite
2014-02-19 15:52 - 2013-02-06 17:21 - 00000956 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job
2014-02-19 15:52 - 2012-10-08 21:02 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Skype
2014-02-19 15:47 - 2013-11-30 19:27 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-19 15:29 - 2012-09-27 17:20 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job
2014-02-19 14:59 - 2012-09-28 14:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-19 08:29 - 2012-09-27 17:20 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job
2014-02-19 08:20 - 2012-09-30 09:51 - 00000000 ____D () C:\ProgramData\MFAData
2014-02-19 07:59 - 2014-02-18 15:59 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c.job
2014-02-19 07:52 - 2014-02-19 07:49 - 01210892 _____ () C:\Users\RafaelGAMING\Downloads\rws_gia_grace_ck102112_720p_8000.mp4
2014-02-19 07:25 - 2009-07-14 15:13 - 00781390 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-19 07:18 - 2013-08-03 15:23 - 00014544 _____ () C:\autoupdate.log
2014-02-19 07:17 - 2013-11-30 19:27 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-19 07:17 - 2012-09-28 14:05 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\LogMeIn Hamachi
2014-02-19 07:17 - 2012-09-27 17:47 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-19 07:15 - 2009-07-14 14:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-19 07:15 - 2009-07-14 14:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-19 07:11 - 2012-09-27 16:10 - 01601960 _____ () C:\Windows\WindowsUpdate.log
2014-02-19 07:07 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator
2014-02-19 07:05 - 2014-01-27 17:28 - 00001680 _____ () C:\Windows\setupact.log
2014-02-19 07:05 - 2012-09-14 13:23 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-19 07:05 - 2009-07-14 15:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-19 06:42 - 2013-11-30 19:27 - 00003906 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-19 06:42 - 2013-11-30 19:27 - 00003654 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-19 02:00 - 2014-02-18 15:59 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf.job
2014-02-19 02:00 - 2013-07-02 11:39 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Adobe
2014-02-18 23:46 - 2014-02-18 15:59 - 00001868 _____ () C:\Users\RafaelGAMING\Desktop\SUPERAntiSpyware Professional.lnk
2014-02-18 23:32 - 2014-01-27 17:27 - 00010744 _____ () C:\Windows\PFRO.log
2014-02-18 23:18 - 2014-02-18 23:18 - 00043557 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 07 [1080p].mkv.torrent
2014-02-18 23:18 - 2014-02-18 23:18 - 00036328 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 07 [720p].mkv.torrent
2014-02-18 21:52 - 2013-02-06 17:21 - 00000934 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job
2014-02-18 21:35 - 2014-02-18 21:35 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\CrashDumps
2014-02-18 18:29 - 2014-01-06 12:51 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Rocksmith 2014
2014-02-18 17:33 - 2014-02-18 07:01 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DayZ
2014-02-18 17:33 - 2014-02-18 07:01 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\DayZ
2014-02-18 17:28 - 2014-02-18 17:28 - 00001656 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_SC_02182014_172803.txt
2014-02-18 17:28 - 2014-02-18 17:19 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\RK_Quarantine
2014-02-18 17:27 - 2014-02-18 17:27 - 00001896 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_D_02182014_172751.txt
2014-02-18 17:25 - 2014-02-18 17:25 - 00001801 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_S_02182014_172553.txt
2014-02-18 17:19 - 2014-02-18 17:19 - 03813376 _____ () C:\Users\RafaelGAMING\Downloads\RogueKiller.exe
2014-02-18 17:16 - 2014-02-18 17:16 - 00048042 _____ () C:\ComboFix.txt
2014-02-18 17:16 - 2014-02-18 16:58 - 00000000 ____D () C:\Qoobox
2014-02-18 17:16 - 2009-07-14 13:20 - 00000000 __RHD () C:\Users\Default
2014-02-18 17:15 - 2014-02-18 16:57 - 00000000 ____D () C:\Windows\erdnt
2014-02-18 17:14 - 2009-07-14 12:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-18 16:56 - 2014-02-18 16:55 - 05183112 ____R (Swearware) C:\Users\RafaelGAMING\Desktop\ComboFix.exe
2014-02-18 16:46 - 2014-02-18 16:46 - 00602112 _____ (OldTimer Tools) C:\Users\RafaelGAMING\Downloads\OTL.exe
2014-02-18 16:12 - 2013-12-06 07:40 - 00000000 ____D () C:\AdwCleaner
2014-02-18 15:59 - 2014-02-18 15:59 - 00987425 _____ () C:\Users\RafaelGAMING\Desktop\SecurityCheck.exe
2014-02-18 15:59 - 2014-02-18 15:59 - 00003626 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf
2014-02-18 15:59 - 2014-02-18 15:59 - 00003552 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-18 15:55 - 2014-02-18 15:54 - 17954448 _____ (SUPERAntiSpyware) C:\Users\RafaelGAMING\Downloads\SUPERAntiSpyware.exe
2014-02-18 07:42 - 2014-02-18 07:42 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Malwarebytes
2014-02-18 07:39 - 2014-02-18 07:39 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 07:39 - 2014-02-18 07:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-18 07:38 - 2014-02-18 07:38 - 00388608 _____ (Trend Micro Inc.) C:\Users\RafaelGAMING\Downloads\HijackThis.exe
2014-02-17 22:04 - 2013-07-31 17:26 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\vlc
2014-02-17 21:39 - 2014-02-17 21:37 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Red Roses
2014-02-17 19:12 - 2014-02-03 21:31 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\xvide
2014-02-17 16:26 - 2014-02-17 16:26 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\DayZ.url
2014-02-17 16:26 - 2012-09-27 19:51 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-02-17 16:07 - 2012-09-29 15:20 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\.minecraft
2014-02-17 06:40 - 2014-02-17 06:40 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Skyrim
2014-02-17 06:35 - 2014-02-17 06:35 - 00051263 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 07 [720p].mkv.torrent
2014-02-17 06:32 - 2013-03-26 06:54 - 00000000 ____D () C:\Games
2014-02-17 06:29 - 2012-10-02 15:50 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\DAEMON Tools Lite
2014-02-17 06:28 - 2014-02-16 08:51 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2014-02-17 06:28 - 2012-10-04 19:50 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim
2014-02-17 06:27 - 2014-02-16 09:46 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Install.Fix-RELOADED
2014-02-17 01:12 - 2014-02-16 08:51 - 2303371264 ____R () C:\Users\RafaelGAMING\Downloads\SKYRIM_EN_WWW.iso
2014-02-16 18:02 - 2014-02-16 18:02 - 00373159 _____ () C:\Users\RafaelGAMING\Documents\Untitled (8).wma
2014-02-16 18:00 - 2014-02-16 18:00 - 00862569 _____ () C:\Users\RafaelGAMING\Documents\Untitled (7).wma
2014-02-16 15:49 - 2012-09-27 17:44 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\PMB Files
2014-02-16 15:49 - 2012-09-27 17:44 - 00000000 ____D () C:\ProgramData\PMB Files
2014-02-16 09:46 - 2014-02-16 09:46 - 00378368 ____R () C:\Users\RafaelGAMING\Desktop\Elder Scrolls V - Skyrim Installer Fix.exe
2014-02-16 08:49 - 2014-02-16 08:49 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 06 [1080p].mkv.torrent
2014-02-16 08:49 - 2014-02-16 08:49 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 07 [1080p].mkv.torrent
2014-02-16 08:48 - 2014-02-16 08:48 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\skyrim saves
2014-02-15 22:42 - 2014-02-15 22:42 - 00026966 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 20 [720p].mkv.torrent
2014-02-15 15:20 - 2012-11-18 07:50 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Akamai
2014-02-15 07:36 - 2014-02-15 07:36 - 00049701 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 06 [720p].mkv.torrent
2014-02-15 07:36 - 2014-02-15 07:36 - 00043552 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 18 [1080p].mkv.torrent
2014-02-14 22:57 - 2014-02-14 22:57 - 00043510 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043663 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043647 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 18 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 06 [480p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00050368 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 05 [720p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 06 [1080p].mkv.torrent
2014-02-11 22:17 - 2014-02-11 22:17 - 00049988 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 06 [720p].mkv.torrent
2014-02-11 22:15 - 2013-10-19 19:31 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Spotify
2014-02-11 19:12 - 2014-02-11 19:00 - 190781224 _____ () C:\Users\RafaelGAMING\Downloads\PS_AIO_04_C4500_USW_Full_Win_WW_130_140.exe
2014-02-11 08:24 - 2012-09-27 17:20 - 00003920 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA
2014-02-11 08:24 - 2012-09-27 17:20 - 00003524 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core
2014-02-11 07:24 - 2014-02-11 07:24 - 03418771 _____ (BOSS Development Team) C:\Users\RafaelGAMING\Downloads\BOSS v2.1.1 Installer.exe
2014-02-11 06:32 - 2014-02-11 06:32 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 06 [1080p].mkv.torrent
2014-02-11 06:29 - 2013-10-19 19:31 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Spotify
2014-02-10 22:34 - 2014-02-10 22:34 - 00001305 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-02-10 22:34 - 2014-02-10 22:34 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-02-10 22:34 - 2014-02-10 22:32 - 11621536 _____ () C:\Users\RafaelGAMING\Downloads\YTDSetup.exe
2014-02-10 21:31 - 2014-02-10 21:31 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 06 [1080p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00051283 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 06 [720p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00014274 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 07 [1080p].mkv.torrent
2014-02-10 06:41 - 2014-02-10 06:41 - 00001702 _____ () C:\Users\RafaelGAMING\Desktop\SkyrimLauncher.exe - Shortcut.lnk
2014-02-09 18:20 - 2014-02-09 18:20 - 20117840 _____ () C:\Users\RafaelGAMING\Desktop\Desktop.mp4
2014-02-09 17:58 - 2014-02-09 17:57 - 98197154 _____ () C:\Users\RafaelGAMING\Desktop\On the Job - Agricultural Engineer.mp4
2014-02-09 08:51 - 2014-02-09 08:51 - 00044683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 05 [1080p].mkv.torrent
2014-02-09 08:51 - 2014-02-09 08:51 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 06 [1080p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00035981 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 05 [720p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00027006 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 19 [720p].mkv.torrent
2014-02-08 14:13 - 2014-02-08 14:12 - 00000013 _____ () C:\Users\RafaelGAMING\Desktop\New Text Document.txt
2014-02-08 13:46 - 2009-07-14 13:20 - 00000000 ____D () C:\Windows\Cursors
2014-02-08 13:40 - 2014-02-08 13:40 - 00001373 _____ () C:\Users\RafaelGAMING\Desktop\Cursors.rar
2014-02-08 07:22 - 2014-02-08 07:22 - 00043512 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 17 [1080p].mkv.torrent
2014-02-07 22:20 - 2014-02-07 22:20 - 00043470 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 05 [1080p].mkv.torrent
2014-02-07 19:03 - 2014-02-07 19:03 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DogsOfWar
2014-02-07 07:10 - 2014-02-07 07:10 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv (1).torrent
2014-02-07 07:10 - 2014-02-07 07:10 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [720p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00011986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [480p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 05 [480p].mkv.torrent
2014-02-07 06:41 - 2014-02-07 06:41 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv.torrent
2014-02-06 22:50 - 2014-02-06 22:50 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Dogs of War Online - Beta.url
2014-02-06 22:49 - 2014-02-06 22:49 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Cannons Lasers Rockets.url
2014-02-06 22:25 - 2013-12-30 18:23 - 00000000 ____D () C:\Program Files (x86)\Jump Flip
2014-02-06 21:56 - 2014-02-06 21:56 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-06 21:56 - 2014-01-28 19:24 - 00000942 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-02-06 17:28 - 2014-02-06 17:28 - 00091833 _____ () C:\Users\RafaelGAMING\Downloads\GmadExtractor_1_6_12_600.zip
2014-02-06 17:28 - 2014-02-06 17:28 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\GMAD
2014-02-06 07:54 - 2014-02-06 07:54 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 05 [1080p].mkv.torrent
2014-02-06 07:54 - 2014-02-06 07:54 - 00036508 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 04 [720p].mkv.torrent
2014-02-06 03:59 - 2012-09-28 14:05 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-06 03:59 - 2012-09-28 14:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-06 03:59 - 2012-09-28 14:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-05 18:19 - 2014-02-05 18:19 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LennarDigital
2014-02-05 18:19 - 2012-10-11 23:05 - 00000000 ____D () C:\Program Files (x86)\VstPlugins
2014-02-05 18:18 - 2014-02-05 18:18 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Lennardigital.Sylenth1.Halloween.Special.VSTi.v2.2.HALLOWEEN by steffie
2014-02-05 18:00 - 2014-01-06 14:50 - 00000016 _____ () C:\ProgramData\autobk.inc
2014-02-05 02:14 - 2012-09-27 17:21 - 00002422 _____ () C:\Users\RafaelGAMING\Desktop\Google Chrome.lnk
2014-02-04 15:38 - 2014-02-04 15:38 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Targem
2014-02-04 15:37 - 2014-02-04 15:37 - 00036268 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 05 [720p].mkv.torrent
2014-02-04 06:24 - 2014-02-04 06:24 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 05 [1080p].mkv.torrent
2014-02-03 21:48 - 2014-02-03 21:48 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Star Conflict.url
2014-02-03 21:42 - 2014-02-03 21:42 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv (1).torrent
2014-02-03 06:23 - 2014-02-03 06:23 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 05 [720p].mkv.torrent
2014-02-03 06:23 - 2014-02-03 06:23 - 00014314 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 05 [1080p].mkv.torrent
2014-02-02 15:58 - 2014-02-02 15:58 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\EdgeOfReality
2014-02-02 15:40 - 2014-02-02 15:39 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Ableton
2014-02-02 15:39 - 2014-02-02 15:39 - 00001601 _____ () C:\Users\RafaelGAMING\Desktop\Ableton Live 9 Suite.exe - Shortcut.lnk
2014-02-02 15:39 - 2014-02-02 15:39 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\Ableton
2014-02-02 15:21 - 2014-01-06 01:06 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-02-02 15:19 - 2014-02-02 15:19 - 00000881 _____ () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Suite.lnk
2014-02-02 15:19 - 2014-02-02 15:19 - 00000000 ____D () C:\ProgramData\Ableton
2014-02-02 14:27 - 2014-02-02 14:26 - 00975086 _____ () C:\Users\RafaelGAMING\Downloads\162.zip
2014-02-02 14:25 - 2014-02-02 13:10 - 722207746 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live 9.0.2.rar
2014-02-02 09:42 - 2014-02-02 08:41 - 738436666 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live Suite 9.1 Win 64-bit.rar
2014-02-02 09:09 - 2014-02-02 09:09 - 00026142 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 05 [720p].mkv.torrent
2014-02-02 09:09 - 2013-10-07 18:25 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\anime 2013
2014-02-02 08:16 - 2014-02-02 08:16 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 04 [1080p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv (1).torrent
2014-02-01 22:50 - 2009-07-14 14:45 - 05152856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-01 16:58 - 2014-02-01 16:58 - 00044628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 04 [1080p].mkv.torrent
2014-02-01 16:57 - 2014-02-01 16:57 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Loadout.url
2014-02-01 15:18 - 2012-10-21 19:46 - 00000000 ____D () C:\ProgramData\Origin
2014-02-01 15:18 - 2012-10-21 19:46 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-01 14:45 - 2014-01-25 13:00 - 00000000 ____D () C:\Program Files (x86)\InfiniteCrisis
2014-02-01 13:48 - 2014-02-01 13:46 - 02418128 _____ () C:\Users\RafaelGAMING\Desktop\Heart Rate Monitor Flatline-SoundBible.com-2063567528.wav
2014-02-01 13:22 - 2014-02-01 13:22 - 00000000 ____D () C:\ProgramData\SetApp
2014-02-01 13:22 - 2013-02-25 17:17 - 00000000 ____D () C:\ProgramData\InstallMate
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\ProgramData\19a04e83d58db913
2014-02-01 13:21 - 2012-09-27 17:20 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Google
2014-02-01 13:20 - 2014-02-01 13:20 - 00321424 _____ (SetApp) C:\Users\RafaelGAMING\Downloads\minecraftdl_1283.exe
2014-02-01 12:26 - 2014-02-01 12:26 - 00107764 _____ () C:\Users\RafaelGAMING\Downloads\XRayInstaller.jar
2014-02-01 12:24 - 2014-02-01 12:24 - 00919541 _____ () C:\Users\RafaelGAMING\Downloads\XRayPatcher-v1-1.7.4.jar
2014-02-01 12:08 - 2014-02-01 12:08 - 00768980 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_C2.jar
2014-02-01 11:40 - 2014-02-01 11:39 - 00386383 _____ (http://magiclauncher.com) C:\Users\RafaelGAMING\Downloads\MagicLauncher_1.2.5.exe
2014-02-01 09:52 - 2014-02-01 09:52 - 00000130 _____ () C:\Users\RafaelGAMING\Documents\acad.err
2014-02-01 09:47 - 2014-02-01 09:47 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-01 09:47 - 2014-02-01 09:29 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Autodesk
2014-02-01 09:47 - 2014-02-01 09:29 - 00000000 ____D () C:\ProgramData\Autodesk
2014-02-01 09:46 - 2014-02-01 09:35 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Autodesk
2014-02-01 09:46 - 2012-09-27 17:19 - 00144824 _____ () C:\Users\RafaelGAMING\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-01 09:37 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-02-01 09:37 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files\Autodesk
2014-02-01 09:36 - 2014-02-01 09:36 - 00000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-02-01 09:36 - 2014-02-01 09:36 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\Inventor Server SDK ACAD 2013
2014-02-01 09:36 - 2014-02-01 09:35 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\AUTODESK.2013.PRODUCTS.UNIVERSAL.KEYGEN-XFORCE
2014-02-01 09:35 - 2014-02-01 09:35 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-02-01 09:33 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-02-01 09:32 - 2014-02-01 09:32 - 00000363 _____ () C:\Windows\DirectX.log
2014-02-01 09:29 - 2014-02-01 09:29 - 00044588 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 02 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 01 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044488 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 03 [1080p].mkv.torrent
2014-02-01 09:27 - 2013-12-06 07:33 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\School
2014-02-01 09:26 - 2014-01-27 18:00 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\UniversalThemePatcher_20090409
2014-02-01 09:26 - 2013-12-06 07:34 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Random as photo
2014-02-01 09:25 - 2014-02-01 09:25 - 00000000 ____D () C:\Autodesk
2014-02-01 06:08 - 2014-02-01 06:08 - 00043632 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 16 [1080p].mkv.torrent
2014-02-01 06:08 - 2014-02-01 06:08 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv.torrent
2014-01-31 21:04 - 2014-01-31 21:04 - 00795225 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_U_C2.jar
2014-01-31 17:40 - 2014-01-31 17:40 - 03991490 _____ () C:\Users\RafaelGAMING\Downloads\Sylenth1 VTX BlackO.rar
2014-01-31 16:17 - 2014-01-31 16:17 - 00026049 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 04 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00043543 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 04 [1080p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 16 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 04 [480p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00043513 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 04 [1080p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00036628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 03 [720p].mkv.torrent
2014-01-29 21:10 - 2013-09-14 19:00 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\foobar2000
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img.bak
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img
2014-01-29 20:10 - 2014-01-29 20:10 - 00086768 _____ (Dataram, Inc.) C:\Windows\system32\Drivers\RAMDiskVE.sys
2014-01-29 20:10 - 2014-01-29 20:08 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Dataram_Corporation
2014-01-29 20:10 - 2014-01-29 20:08 - 00000000 ____D () C:\Program Files (x86)\RAMDisk
2014-01-29 20:08 - 2014-01-29 20:08 - 00001869 _____ () C:\Users\Public\Desktop\RAMDisk Configuration Utility.lnk
2014-01-29 20:07 - 2014-01-29 20:06 - 06201344 _____ () C:\Users\RafaelGAMING\Downloads\Dataram_RAMDisk_4_4_0_RC16.msi
2014-01-28 16:59 - 2014-01-28 16:59 - 00043697 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 04 [1080p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00036348 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 04 [720p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv (1).torrent
2014-01-27 18:15 - 2014-01-27 18:11 - 63631359 _____ () C:\Users\RafaelGAMING\Downloads\placebo_for_windows_7_by_solmiler-d346dad.rar
2014-01-27 18:12 - 2014-01-27 18:11 - 08613604 _____ () C:\Users\RafaelGAMING\Downloads\adagio_theme___windows_7_by_rajtheeban95-d2zwu22.rar
2014-01-27 18:02 - 2010-11-21 13:23 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-01-27 18:02 - 2009-07-14 09:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-01-27 18:02 - 2009-07-14 09:54 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2014-01-27 18:01 - 2010-11-21 13:24 - 02755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2014-01-27 18:01 - 2009-07-14 09:39 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-01-27 17:58 - 2014-01-27 17:58 - 00082664 _____ () C:\Users\RafaelGAMING\Downloads\UniversalThemePatcher_20090409.zip
2014-01-27 17:52 - 2014-01-27 17:51 - 10782967 _____ () C:\Users\RafaelGAMING\Downloads\toybox_for_windows_7_by_cappippuni-d5ac8kq.zip
2014-01-27 17:28 - 2014-01-27 17:28 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-27 17:26 - 2013-12-20 23:56 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Battle.net
2014-01-27 17:22 - 2014-01-27 17:22 - 00000000 ____D () C:\Program Files\Defraggler
2014-01-27 17:19 - 2014-01-27 17:18 - 04208656 _____ (Piriform Ltd) C:\Users\RafaelGAMING\Downloads\dfsetup216.exe
2014-01-27 17:19 - 2013-09-13 06:31 - 00000000 ____D () C:\Windows\pss
2014-01-27 17:16 - 2013-09-14 17:04 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Ventrilo
2014-01-27 17:16 - 2013-04-20 11:14 - 00000000 ____D () C:\Windows\Minidump
2014-01-27 17:14 - 2014-01-16 14:25 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Dxtory Software
2014-01-27 17:14 - 2014-01-15 10:16 - 00000000 ____D () C:\Program Files (x86)\GBE Games
2014-01-27 17:13 - 2012-10-22 18:47 - 00000000 ____D () C:\ProgramData\Desura
2014-01-27 09:26 - 2014-01-27 09:26 - 00037223 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 04 [720p].mkv.torrent
2014-01-27 09:26 - 2014-01-27 09:26 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv.torrent
2014-01-26 21:42 - 2014-01-26 21:42 - 00044823 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 03 [1080p].mkv.torrent
2014-01-26 21:42 - 2014-01-26 21:42 - 00043523 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 04 [1080p].mkv.torrent
2014-01-25 23:56 - 2014-01-25 23:56 - 00045167 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 17 [1080p].mkv.torrent
2014-01-25 15:57 - 2012-11-04 17:40 - 00000000 ____D () C:\Program Files (x86)\StarCraft II
2014-01-25 15:32 - 2013-12-21 00:01 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-01-25 15:28 - 2014-01-25 14:49 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\InfiniteCrisis
2014-01-25 14:49 - 2014-01-25 14:49 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\InfiniteCrisis
2014-01-25 13:10 - 2014-01-25 13:10 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Turbine
2014-01-25 13:00 - 2014-01-25 13:00 - 00001100 _____ () C:\Users\Public\Desktop\InfiniteCrisis.lnk
2014-01-25 13:00 - 2014-01-25 13:00 - 00000000 ____D () C:\ProgramData\Turbine
2014-01-25 12:56 - 2014-01-25 12:42 - 138644080 _____ () C:\Users\RafaelGAMING\Downloads\InfiniteCrisis-GLOBAL_Setup.exe
2014-01-25 12:39 - 2013-11-30 19:31 - 00000000 ___RD () C:\Users\RafaelGAMING\Google Drive
2014-01-25 10:36 - 2014-01-25 10:36 - 00043572 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 15 [1080p].mkv.torrent
2014-01-25 10:36 - 2014-01-25 10:36 - 00036208 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 03 [720p].mkv.torrent
2014-01-25 10:36 - 2014-01-25 10:36 - 00036001 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 03 [720p].mkv.torrent
2014-01-24 18:12 - 2014-01-24 18:12 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\SynthMaker
2014-01-24 16:35 - 2014-01-24 16:35 - 00043707 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 15 [1080p].mkv.torrent
2014-01-24 16:35 - 2014-01-24 16:35 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 03 [480p].mkv.torrent
2014-01-24 01:18 - 2014-01-24 01:17 - 00043583 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 03 [1080p].mkv.torrent
2014-01-23 10:37 - 2014-01-23 10:37 - 00043550 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 03 [1080p].mkv.torrent
2014-01-23 10:37 - 2014-01-23 10:37 - 00043533 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 03 [1080p].mkv.torrent
2014-01-23 10:37 - 2014-01-23 10:37 - 00036628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 02 [720p].mkv.torrent
2014-01-23 10:35 - 2014-01-23 10:35 - 00058424 _____ () C:\Users\RafaelGAMING\Downloads\Unconfirmed 84764.crdownload
2014-01-23 10:24 - 2014-01-23 10:24 - 00011776 _____ () C:\Users\RafaelGAMING\Downloads\{EHT PERSONALIZED TORRENT - DO NOT REDISTRIBUTE} (C83) [とかちのくに(結桐たかし)] お小遣いの範囲で遊びましょう (となりの怪物くん夏目・雫).zip.torrent
2014-01-23 00:15 - 2012-11-10 17:12 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2014-01-22 23:17 - 2014-01-22 23:17 - 00058424 _____ () C:\Users\RafaelGAMING\Downloads\Unconfirmed 642639.crdownload
2014-01-22 22:53 - 2014-01-22 22:53 - 00000000 ____D () C:\Windows\SysWOW64\new_gamedata
2014-01-22 12:55 - 2014-01-22 12:55 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Rust.url
2014-01-22 12:44 - 2013-07-13 09:48 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\passwords, accounts
2014-01-21 02:48 - 2014-01-21 02:48 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 03 [1080p].mkv.torrent
2014-01-20 20:33 - 2014-01-20 20:33 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 03 [720p].mkv.torrent
2014-01-20 20:33 - 2014-01-20 20:33 - 00014314 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 03 [1080p].mkv.torrent
2014-01-20 01:36 - 2014-01-20 01:36 - 00000000 ____D () C:\Program Files (x86)\Fake Webcam 7.1
2014-01-20 01:35 - 2014-01-20 01:35 - 00000000 ____D () C:\Program Files (x86)\Fake Voice 7.0
2014-01-20 01:35 - 2014-01-20 01:34 - 09828272 _____ (Web Solution Mart ) C:\Users\RafaelGAMING\Downloads\fvsetup.exe
2014-01-20 01:22 - 2014-01-20 01:22 - 00000000 ____D () C:\Program Files (x86)\Screaming Bee
2014-01-20 01:21 - 2014-01-20 01:21 - 00980328 _____ () C:\Users\RafaelGAMING\Downloads\VP-Female_Install-1.exe
 
Files to move or delete:
====================
C:\ProgramData\hash.dat
C:\Users\RafaelGAMING\jagex_cl_loginapplet_LIVE.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE1.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE2.dat
C:\Users\RafaelGAMING\random.dat
 
 
Some content of TEMP:
====================
C:\Users\RafaelGAMING\AppData\Local\Temp\ntdll_dump.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-02-18 00:40
 
==================== End Of Log ============================
 
 
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-02-2014
Ran by RafaelGAMING at 2014-02-19 15:56:09
Running from C:\Users\RafaelGAMING\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials (Enabled - Up to date) {3F839487-C7A2-C958-E30C-E2825BA31FB5}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: Microsoft Security Essentials (Enabled - Up to date) {84E27563-E198-C6D6-D9BC-D9F020245508}
 
==================== Installed Programs ======================
 
‚füã‚Ì–‚‰¤ ver.1.00 (x32 Version: 1.00 - )
µTorrent (x32 Version: 3.2.1.28086 - BitTorrent Inc.)
Ableton Live 9 Suite (Version: 9.0.0.0 - Ableton)
Adobe Bridge CC (64 Bit) (x32 Version: 6.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (x32 Version: 2.1.0.213 - Adobe Systems Incorporated)
Adobe Flash Media Live Encoder 3.2 (x32 Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Photoshop CC (x32 Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Akamai NetSession Interface (HKCU Version:  - Akamai Technologies, Inc)
Algematics (x32 Version:  - )
AmpliTube 3 version 3.11.2 (Version: 3.11.2 - IK Multimedia)
Apple Application Support (x32 Version: 2.2.2 - Apple Inc.)
Apple Mobile Device Support (Version: 6.0.0.59 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
applicationupdater (HKCU Version:  - Sony Online Entertainment)
ASIO4ALL (x32 Version: 2.10 - Michael Tippach)
ASUS 802.11n WLAN Card Utilities & Driver (x32 Version: 1.0.0.5 - )
Audacity 2.0.5 (x32 Version: 2.0.5 - Audacity Team)
Aura Kingdom (x32 Version:  - )
AutoCAD 2013 - English (Version: 19.0.55.0 - Autodesk)
AutoCAD 2013 - English (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2013 Language Pack - English (Version: 19.0.55.0 - Autodesk) Hidden
Autodesk Content Service (x32 Version: 3.0.84.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.)
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk)
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Fusion plug-in language pack for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Material Library 2013 (x32 Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (x32 Version: 3.0.13 - Autodesk)
Autodesk Sync (Version: 3.5.24.0 - Autodesk, Inc.)
AVG 2014 (Version: 14.0.3705 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4259 - AVG Technologies) Hidden
AVG 2014 (Version: 2014.0.4259 - AVG Technologies)
Battle.net (x32 Version:  - Blizzard Entertainment)
Battlelog Web Plugins (x32 Version: 2.3.0 - EA Digital Illusions CE AB)
Belarc Advisor 8.4 (x32 Version: 8.4.0.0 - Belarc Inc.)
BitTorrent (HKCU Version: 7.8.2.30332 - BitTorrent Inc.)
Blender (Version: 2.64a-release - Blender Foundation)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (x32 Version:  - Gearbox Software)
Burnout™ Paradise: The Ultimate Box (x32 Version: 1.1.0.0 - Electronic Arts)
Cannons Lasers Rockets (x32 Version:  - Net Games Laboratory)
CCleaner (Version: 3.24 - Piriform)
Cheat Engine 6.2 (x32 Version:  - Dark Byte)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.)
Combat Arms (x32 Version:  - )
Combat Arms (x32 Version:  - Nexon)
Command & Conquer 3 (x32 Version: 1.00.0000 - Electronic Arts Inc.)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Counter-Strike (x32 Version:  - Valve)
Counter-Strike: Condition Zero Deleted Scenes (x32 Version:  - Valve)
Counter-Strike: Global Offensive (x32 Version:  - Valve)
Counter-Strike: Source (x32 Version:  - Valve)
Cube World - July 23, 2013 (x32 Version: July 23, 2013 - Friends in War)
Custom Shop version 1.3.0 (x32 Version: 1.3.0 - IK Multimedia)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (x32 Version: 4.45.4.0316 - DT Soft Ltd)
DayZ (x32 Version:  - Bohemia Interactive)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version:  - Microsoft)
Defraggler (Version: 2.16 - Piriform)
Delete Virtual-Mate Launcher (x32 Version: 1.0.0 - Interlex Inc.)
Dogs of War Online - Beta (x32 Version:  - Cyanide Studios)
Dota 2 (x32 Version:  - )
Eden Eternal (x32 Version:  - )
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0 - Facebook)
Facebook Video Calling 2.0.0.447 (x32 Version: 2.0.447 - Skype Limited)
FARO LS 1.1.406.58 (x32 Version: 4.6.58.2 - FARO Scanner Production)
FFsplit version 0.7 (x32 Version: 0.7 - FFsplit Team)
FL Studio 10 (x32 Version:  - Image-Line)
foobar2000 v1.2.9 (x32 Version: 1.2.9 - Peter Pawlowski)
Fraps (remove only) (x32 Version:  - )
Free YouTube Download version 3.2.0.128 (x32 Version: 3.2.0.128 - DVDVideoSoft Ltd.)
Freemake Video Converter version 4.1.2 (x32 Version: 4.1.2 - Ellora Assets Corporation)
Garry's Mod (x32 Version:  - Garry)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKCU Version: 32.0.1700.107 - Google Inc.)
Google Drive (x32 Version: 1.14.6059.644 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
G-Senjou no Maou English (x32 Version: 1.1.2.721 - AKABEiSOFT2)
Guitar Pro 5.2 (x32 Version:  - Arobas Music)
Half-Life Dedicated Server Update Tool (x32 Version:  - )
Happy Cloud Client (HKCU Version: 3.36 - Happy Cloud, Inc.)
Hearthstone (x32 Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (x32 Version: 3.0.0.0 - Hi-Rez Studios)
IK Multimedia Authorization Manager version 1.0.9 (Version: 1.0.9 - IK Multimedia)
InfiniteCrisis_410193F41CAE (x32 Version:  - Turbine, Inc)
iTunes (Version: 10.7.0.21 - Apple Inc.)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java 7 Update 7 (64-bit) (Version: 7.0.70 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jump Flip (Version: 2013.12.27.213125 - Jump Flip) <==== ATTENTION
Junk Mail filter update (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Katawa Shoujo (x32 Version:  - )
League of Legends (x32 Version: 1.3 - Riot Games)
Left 4 Dead 2 (x32 Version:  - Valve)
Loadout (x32 Version:  - Edge of Reality)
LogMeIn Hamachi (x32 Version: 2.2.0.130 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.130 - LogMeIn, Inc.) Hidden
LOLReplay (x32 Version: 0.8.0.1 - www.leaguereplays.com)
Magic ISO Maker v5.5 (build 0281) (x32 Version:  - )
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MapleStory (x32 Version:  - Nexon)
McAfee Security Scan Plus (Version: 3.8.130.10 - McAfee, Inc.)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (x32 Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (x32 Version: 4.0.3205.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (x32 Version: 4.0.3205.0 - Microsoft Corporation) Hidden
Microsoft Expression Encoder 4 Screen Capture Codec (x32 Version: 4.0.3205.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Halo Custom Edition (x32 Version:  - )
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Click-to-Run 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Small Business Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.2.0223.1 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.2.223.1 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6010.0727 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (x32 Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0 - Microsoft Corporation)
mIRC (x32 Version: 7.32 - mIRC Co. Ltd.)
MotioninJoy ds3 driver version 0.6.0001 (Version: 0.5.0001 - www.motioninjoy.com)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 en-US) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
Nexon Game Manager (x32 Version:  - )
Notepad++ (x32 Version: 6.3.3 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 331.65 (Version: 331.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 331.65 (Version: 331.65 - NVIDIA Corporation)
NVIDIA Control Panel 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.7 (Version: 1.7 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.65 (Version: 331.65 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.26.4 (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.140.952 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 9.3.16 (Version: 9.3.16 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3165 - NVIDIA Corporation) Hidden
NVIDIA Update 9.3.16 (Version: 9.3.16 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 9.3.16 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9 - NVIDIA Corporation)
Origin (x32 Version: 9.2.1.4399 - Electronic Arts, Inc.)
Pando Media Booster (x32 Version: 2.6.0.8 - Pando Networks Inc.)
Path of Exile (x32 Version:  - Grinding Gear Games)
PAYDAY 2 (x32 Version:  - OVERKILL - a Starbreeze Studio.)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Pixillion Image Converter (x32 Version: 2.59 - NCH Software)
PlanetSide 2 (x32 Version:  - Sony Online Entertainment)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
QuickTime (x32 Version: 7.72.80.56 - Apple Inc.)
RAMDisk (x32 Version: 4.4.0.16 - Dataram, Inc.)
RAR Password Recovery v1.1 RC16 (remove only) (x32 Version:  - )
Razer Game Booster (x32 Version: 3.7 - Razer USA Ltd)
REAPER (x64) (Version:  - )
reFX Nexus VSTi RTAS v2.2.0 (x32 Version:  - )
rgc:audio z3ta+ 1.5 (x64) (Version: 1.5 - Cakewalk Music Software)
ROBLOX Player for RafaelGAMING (HKCU Version:  - ROBLOX Corporation)
ROBLOX Studio 2013 for RafaelGAMING (HKCU Version:  - ROBLOX Corporation)
Rust (x32 Version:  - Facepunch Studios)
Saints Row: The Third (x32 Version:  - Volition)
SHIELD Streaming (Version: 1.6.34 - NVIDIA Corporation) Hidden
Skype™ 6.3 (x32 Version: 6.3.107 - Skype Technologies S.A.)
Skyrim (x32 Version: 1.9.32.0.8 (RELOADED update 13) - Bethesda Softworks)
Source SDK Base 2007 (x32 Version:  - Valve)
Space Engineers (x32 Version:  - )
Spotify (HKCU Version: 0.9.7.16.g4b197456 - Spotify AB)
Star Conflict (x32 Version:  - Star Gem Inc.)
StarCraft II (x32 Version:  - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
StepMania v5.0 beta 2a (remove only) (x32 Version:  - StepMania Team)
SUPERAntiSpyware (Version: 5.7.1018 - SUPERAntiSpyware.com)
Switch Sound File Converter (x32 Version:  - NCH Software)
Sylenth1 Demo v2.20 (x32 Version:  - )
Tactical Intervention (x32 Version:  - FIX Korea)
Team Fortress 2 (x32 Version:  - Valve)
TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH)
Terraria (x32 Version:  - )
The Sims・3 (x32 Version: 1.63.5 - Electronic Arts)
The Sims™ 3 Generations (x32 Version: 8.0.152 - Electronic Arts)
Torchlight II (x32 Version:  - Runic Games)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU Version:  - Unity Technologies ApS)
Update for Microsoft Office 2010 (KB2553065) (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32 Version:  - Microsoft)
Ventrilo Client for Windows x64 (Version: 3.0.8.0 - Flagship Industries, Inc.)
VIA Platform Device Manager (x32 Version: 1.39 - VIA Technologies, Inc.)
Virtual Audio Cable 4.12 (Version:  - )
VirtualDJ PRO Full (x32 Version: 7.0.5 - Atomix Productions)
Visual Studio 2008 x64 Redistributables (x32 Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.8 (x32 Version: 2.0.8 - VideoLAN)
War Thunder Launcher 1.0.1.185 (x32 Version:  - 2012 Gaijin Entertainment Corporation)
Warcraft III (x32 Version:  - )
Warcraft III: All Products (HKCU Version:  - )
Warframe (x32 Version: 1.0.0 - Digital Extremes)
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
WinRAR 4.20 (32-bit) (x32 Version: 4.20.0 - win.rar GmbH)
YTD Video Downloader 4.7.2 (x32 Version: 4.7.2 - GreenTree Applications SRL)
ザ・シムズ3 アイランドパラダイス (x32 Version: 19.0.101 - Electronic Arts)
 
==================== Restore Points  =========================
 
16-02-2014 12:04:21 Windows Update
18-02-2014 06:39:10 Windows Modules Installer
18-02-2014 06:40:10 Windows Modules Installer
18-02-2014 06:40:45 Windows Modules Installer
18-02-2014 06:49:53 OTL Restore Point - 18/02/2014 4:49:52 PM
 
==================== Hosts content: ==========================
 
2014-02-18 17:14 - 2014-02-18 17:14 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {382768B0-47AF-4843-BCF7-BF31A43507E6} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2013-06-05] ()
Task: {3C64CD45-A989-4406-92AC-2A04512005B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30] (Google Inc.)
Task: {4015A6D8-FF6E-493D-A0C5-1B96E0619B73} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30] (Google Inc.)
Task: {554BD092-86ED-440B-B759-64292ED80A29} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA => C:\Users\RafaelGAMING\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-27] (Google Inc.)
Task: {555CE81D-D52D-4749-9BA4-012FD8674362} - System32\Tasks\107th Raven
Task: {5810A168-7B7D-4FE5-9CB2-A9779A1E4D75} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core => C:\Users\RafaelGAMING\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-27] (Google Inc.)
Task: {5C07756D-30F4-4E4A-9CB1-D80E04EA5FFB} - System32\Tasks\AdobeAAMUpdater-1.0-RafaelGAMING-PC-RafaelGAMING => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-06-13] (Adobe Systems Incorporated)
Task: {622EFEB4-5B4F-4823-9999-5340D3A53BEB} - System32\Tasks\RegWrite => C:\Windows\system32\mshta.exe [2013-06-26] (Microsoft Corporation)
Task: {748B1DAD-A372-4DEE-8D73-F4F9ECD1EE45} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-06] (Adobe Systems Incorporated)
Task: {78997C0F-1C74-4868-80D9-C355660D636A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-10-25] (Piriform Ltd)
Task: {85406BD3-2065-4E2E-BA36-4CC27C7491F2} - System32\Tasks\SystemBoot => C:\Windows\system32\mshta.exe [2013-06-26] (Microsoft Corporation)
Task: {BF64929B-AAC9-4AFC-BAF9-9908472240E8} - \GoforFilesUpdate No Task File
Task: {C6104800-9021-483D-82C2-736C262E5F4C} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core => C:\Users\RafaelGAMING\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-01] (Facebook Inc.)
Task: {C8D4F581-DD63-4AE1-BBD2-525BFAA62CFB} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA => C:\Users\RafaelGAMING\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-03-01] (Facebook Inc.)
Task: {CC138DB1-5BC0-4027-A808-9B1F71001D59} - System32\Tasks\Microsoft\Windows\PLA\New Data Collector Set => Rundll32.exe C:\Windows\system32\pla.dll,PlaHost "New Data Collector Set" "$(Arg0)"
Task: {CCF45E32-21D3-46F6-83B6-DDB90421810B} - System32\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-08] (SUPERAdBlocker.com)
Task: {E6FD74BC-CE76-4D19-BE21-A0E54D4F2C8B} - System32\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-08] (SUPERAdBlocker.com)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job => C:\Users\RafaelGAMING\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job => C:\Users\RafaelGAMING\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job => C:\Users\RafaelGAMING\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job => C:\Users\RafaelGAMING\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
 
==================== Loaded Modules (whitelisted) =============
 
2012-10-04 11:10 - 2013-10-08 21:30 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-12-28 07:31 - 2014-02-13 14:25 - 00080672 _____ () C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe
2014-01-03 20:48 - 2014-02-13 13:52 - 00080672 _____ () C:\Program Files (x86)\Jump Flip\bin\utilJumpFlip.exe
2012-09-14 13:23 - 2013-10-23 18:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-07-31 22:36 - 2013-07-31 22:36 - 03359088 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
2012-08-27 21:33 - 2012-08-27 21:33 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-08-27 21:33 - 2012-08-27 21:33 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-08 18:02 - 2013-12-13 08:19 - 00142848 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-01-08 18:02 - 2013-11-05 11:12 - 00890592 _____ () C:\Program Files (x86)\Steam\libavutil-52.dll
2013-03-12 17:10 - 2014-01-11 09:33 - 00717312 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2012-09-27 18:43 - 2014-01-28 05:02 - 01138088 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2012-09-27 18:43 - 2014-01-11 09:33 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2012-09-27 18:43 - 2013-06-15 09:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-09-27 18:43 - 2013-06-15 09:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-09-27 18:43 - 2013-06-15 09:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2013-10-21 15:45 - 2013-09-11 03:13 - 00144896 _____ () C:\Program Files (x86)\FFsplit\Filters\FFsource.ax
2014-02-05 02:14 - 2014-02-02 09:42 - 04055368 _____ () C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\32.0.1700.107\pdf.dll
2014-02-05 02:14 - 2014-02-02 09:42 - 00399688 _____ () C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
2014-02-05 02:14 - 2014-02-02 09:41 - 01634632 _____ () C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll
2014-02-05 02:14 - 2014-02-02 09:42 - 13616456 _____ () C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
AlternateDataStreams: C:\ProgramData\TEMP:A1EDB939
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
 
==================== Disabled items from MSCONFIG ==============
 
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk => C:\Windows\pss\LOLRecorder.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^RafaelGAMING^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk => C:\Windows\pss\Facebook Messenger.lnk.Startup
MSCONFIG\startupfolder: C:^Users^RafaelGAMING^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Red Alert 3.lnk => C:\Windows\pss\Red Alert 3.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AVG_UI => "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Desura => C:\Program Files (x86)\Desura\desura.exe -autostart
MSCONFIG\startupreg: Facebook Update => "C:\Users\RafaelGAMING\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Google Update => "C:\Users\RafaelGAMING\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: HDAudDeck => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: mobilegeni daemon => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\mssecex.exe" -hide -runkey
MSCONFIG\startupreg: Nvtmru => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RGSC => C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
MSCONFIG\startupreg: Spotify => "C:\Users\RafaelGAMING\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\RafaelGAMING\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
 
==================== Faulty Device Manager Devices =============
 
Name: RAMDiskVE
Description: RAMDiskVE
Class Guid: {d617fec5-776c-4856-aa34-65d4603f2b2c}
Manufacturer: Dataram, Inc.
Service: RAMDiskVE
Problem: : A driver (service) for this device has been disabled. An alternate driver may be providing this functionality (Code 32)
Resolution: The start type for this driver is set to disabled in the registry.
Uninstall the driver from Device Manager, and then scan for new hardware to install the driver again. If this does not work, you might have to change the device start type parameter in the registry.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (02/19/2014 07:17:51 AM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
 
Error: (02/19/2014 07:07:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/18/2014 11:35:02 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
 
Error: (02/18/2014 11:33:13 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/18/2014 09:35:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: hl2.exe, version: 0.0.0.0, time stamp: 0x5237332c
Faulting module name: QuickTime.qts, version: 7.72.80.56, time stamp: 0x4f8f8aa7
Exception code: 0xc0000005
Fault offset: 0x0001ae54
Faulting process id: 0x1dcc
Faulting application start time: 0xhl2.exe0
Faulting application path: hl2.exe1
Faulting module path: hl2.exe2
Report Id: hl2.exe3
 
Error: (02/18/2014 04:16:36 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
 
Error: (02/18/2014 04:15:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/18/2014 03:56:00 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 3a6c
 
Start Time: 01cf2c29395c5670
 
Termination Time: 8
 
Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
 
Report Id: 56015d32-9861-11e3-9aef-902b341dc3a4
 
Error: (02/17/2014 03:06:27 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: BITS connection error Type: 150::InternetConnectionFailure.
 
Error: (02/16/2014 03:33:14 AM) (Source: CVHSVC) (User: )
Description: Information only.
Error: BITS connection error Type: 150::InternetConnectionFailure.
 
 
System errors:
=============
Error: (02/19/2014 07:07:00 AM) (Source: Service Control Manager) (User: )
Description: The BuddyVM service failed to start due to the following error: 
%%1275
 
Error: (02/19/2014 07:07:00 AM) (Source: Application Popup) (User: )
Description: \??\C:\Program Files (x86)\VMLaunch\BuddyVM.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
 
Error: (02/19/2014 07:06:14 AM) (Source: Service Control Manager) (User: )
Description: The vToolbarUpdater17.2.0 service failed to start due to the following error: 
%%2
 
Error: (02/19/2014 07:05:46 AM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel Security. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.
 
Error: (02/19/2014 07:05:46 AM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel Security. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.
 
Error: (02/19/2014 07:05:40 AM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel Security. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.
 
Error: (02/18/2014 11:37:59 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.
 
Error: (02/18/2014 11:32:58 PM) (Source: Service Control Manager) (User: )
Description: The BuddyVM service failed to start due to the following error: 
%%1275
 
Error: (02/18/2014 11:32:58 PM) (Source: Application Popup) (User: )
Description: \??\C:\Program Files (x86)\VMLaunch\BuddyVM.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
 
Error: (02/18/2014 11:32:57 PM) (Source: Service Control Manager) (User: )
Description: The vToolbarUpdater17.2.0 service failed to start due to the following error: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (02/19/2014 07:17:51 AM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
 
Error: (02/19/2014 07:07:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/18/2014 11:35:02 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
 
Error: (02/18/2014 11:33:13 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/18/2014 09:35:28 PM) (Source: Application Error)(User: )
Description: hl2.exe0.0.0.05237332cQuickTime.qts7.72.80.564f8f8aa7c00000050001ae541dcc01cf2c9d6b595764C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exeC:\Program Files (x86)\QuickTime\QTSystem\QuickTime.qtsc3b4045f-9890-11e3-a4b5-902b341dc3a4
 
Error: (02/18/2014 04:16:36 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
 
Error: (02/18/2014 04:15:39 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/18/2014 03:56:00 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.75.0.13a6c01cf2c29395c56708C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe56015d32-9861-11e3-9aef-902b341dc3a4
 
Error: (02/17/2014 03:06:27 PM) (Source: CVHSVC)(User: )
Description: Error: BITS connection error Type: 150::InternetConnectionFailure.
 
Error: (02/16/2014 03:33:14 AM) (Source: CVHSVC)(User: )
Description: Error: BITS connection error Type: 150::InternetConnectionFailure.
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-02-19 07:07:00.672
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-19 07:07:00.641
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-18 23:32:58.183
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-18 23:32:58.152
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-18 17:13:41.391
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-18 17:13:41.356
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-18 16:15:23.613
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-18 16:15:23.582
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-08 21:52:55.796
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-02-08 21:52:55.758
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 26%
Total physical RAM: 16342.94 MB
Available physical RAM: 12082.36 MB
Total Pagefile: 36341.13 MB
Available Pagefile: 31728.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: (Operating System) (Fixed) (Total:915.79 GB) (Free:160.21 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 03204A6F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=916 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16 GB) - (Type=27)
 
==================== End Of Log ============================
 
 
 
 
 
 
 
 
 
GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-02-19 20:21:49
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST1000DM rev.CC4B 931.51GB
Running: ed3pw20d.exe; Driver: C:\Users\RAFAEL~1\AppData\Local\Temp\pfryapow.sys
 
 
---- Devices - GMER 2.1 ----
 
Device  \Driver\agqq8opm \Device\Scsi\agqq8opm1                                                                             fffffa8010a0f2c0
Device  \Driver\akacdp8i \Device\Scsi\akacdp8i1Port2Path0Target0Lun0                                                        fffffa8010a0d2c0
Device  \Driver\akacdp8i \Device\Scsi\akacdp8i1                                                                             fffffa8010a0d2c0
Device  \FileSystem\Ntfs \Ntfs                                                                                              fffffa800c7362c0
Device  \Driver\NetBT \Device\NetBT_Tcpip_{2F21B07E-D9D3-4BBA-A716-66C2912B19A3}                                            fffffa80104872c0
Device  \Driver\usbehci \Device\USBPDO-1                                                                                    fffffa80109422c0
Device  \Driver\dtsoftbus01 \Device\00000084                                                                                fffffa800fc8a2c0
Device  \Driver\cdrom \Device\CdRom0                                                                                        fffffa80104852c0
Device  \Driver\cdrom \Device\CdRom1                                                                                        fffffa80104852c0
Device  \Driver\USBSTOR \Device\000000aa                                                                                    fffffa801200c2c0
Device  \Driver\cdrom \Device\CdRom2                                                                                        fffffa80104852c0
Device  \Driver\USBSTOR \Device\000000a8                                                                                    fffffa801200c2c0
Device  \Driver\cdrom \Device\CdRom3                                                                                        fffffa80104852c0
Device  \Driver\cdrom \Device\CdRom4                                                                                        fffffa80104852c0
Device  \Driver\NetBT \Device\NetBT_Tcpip_{931A8AE7-11E3-4949-885E-618A31C98FC7}                                            fffffa80104872c0
Device  \Driver\usbehci \Device\USBFDO-0                                                                                    fffffa80109422c0
Device  \Driver\dtsoftbus01 \Device\00000085                                                                                fffffa800fc8a2c0
Device  \Driver\dtsoftbus01 \Device\DTSoftBusCtl                                                                            fffffa800fc8a2c0
Device  \Driver\USBSTOR \Device\000000ab                                                                                    fffffa801200c2c0
Device  \Driver\USBSTOR \Device\000000a9                                                                                    fffffa801200c2c0
Device  \Driver\NetBT \Device\NetBT_Tcpip_{AE96EC21-C9DF-4C3A-9589-709A36C6F5DA}                                            fffffa80104872c0
Device  \Driver\usbehci \Device\USBFDO-1                                                                                    fffffa80109422c0
Device  \Driver\dtsoftbus01 \Device\00000086                                                                                fffffa800fc8a2c0
Device  \Driver\USBSTOR \Device\000000ac                                                                                    fffffa801200c2c0
Device  \Driver\NetBT \Device\NetBT_Tcpip_{3DD2B37E-2CCF-454C-88DD-B66EFC80FEFA}                                            fffffa80104872c0
Device  \Driver\NetBT \Device\NetBt_Wins_Export                                                                             fffffa80104872c0
Device  \Driver\usbehci \Device\USBPDO-0                                                                                    fffffa80109422c0
Device  \Driver\agqq8opm \Device\ScsiPort1                                                                                  fffffa8010a0f2c0
Device  \Driver\akacdp8i \Device\ScsiPort2                                                                                  fffffa8010a0d2c0
 
---- Modules - GMER 2.1 ----
 
Module  \SystemRoot\System32\Drivers\agqq8opm.SYS                                                                           fffff88007d5d000-fffff88007da8000 (307200 bytes)
Module  \SystemRoot\System32\Drivers\akacdp8i.SYS                                                                           fffff88007da8000-fffff88007df9000 (331776 bytes)
 
---- Threads - GMER 2.1 ----
 
Thread  C:\Windows\system32\mshta.exe [7716:4204]                                                                           000007fefd05c648
Thread  C:\Windows\system32\mshta.exe [7716:5700]                                                                           000007fefc1bea40
 
---- Registry - GMER 2.1 ----
 
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04                                    
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0                                 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                 1
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                              0x14 0x86 0x75 0x87 ...
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001                           
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0                        0xA0 0x02 0x00 0x00 ...
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                    
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                 C:\Program Files (x86)\DAEMON Tools Lite\
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                 0x00 0x00 0x00 0x00 ...
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                 0
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                              0x24 0x9C 0xA2 0xC4 ...
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                           
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                        0xA0 0x02 0x00 0x00 ...
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                     0xCE 0x13 0x66 0x95 ...
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                      
Reg     HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                0xA5 0x29 0xA3 0xA7 ...
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)                
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0                                     C:\Program Files (x86)\Alcohol Soft\Alcohol 120\
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                     1
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                  0x14 0x86 0x75 0x87 ...
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)       
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0                            0xA0 0x02 0x00 0x00 ...
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)                
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                     C:\Program Files (x86)\DAEMON Tools Lite\
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                     0x00 0x00 0x00 0x00 ...
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                     0
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                  0x24 0x9C 0xA2 0xC4 ...
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)       
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                            0xA0 0x02 0x00 0x00 ...
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                         0xCE 0x13 0x66 0x95 ...
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)  
Reg     HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                    0xA5 0x29 0xA3 0xA7 ...
 
---- EOF - GMER 2.1 ----
 

#4 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 19 February 2014 - 06:59 AM

P2P software installed

Going over your logs I noticed that you have uTorrent- installed.

  • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
  • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
  • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.

It is pretty much certain that if you continue to use P2P programs, you will get infected again.
I would recommend that you uninstall uTorrent, however that choice is up to you. If you choose to remove these programs, you can do so via Start > Control Panel > Add/Remove Programs.
If you wish to keep it, please do not use it until your computer is cleaned.

 

 

 

 

Fix with FRST (normal mode)

  • Open notepad (Start =>All Programs => Accessories => Notepad).
  • Please copy the entire contents of the code box below.
    (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste).
  • Save it to the same direction as frst.exe (or frst64.exe) as fixlist.txt.

    HKCU Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKCU Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....rk6pQf3Xv&log=1
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\RunOnce: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....vgT9mNrk6pQf3Xv
GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1002\User: Group Policy restriction detected <======= ATTENTION
GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1001\User: Group Policy restriction detected <======= ATTENTION
BHO-x32: Jump Flip - {6db9fdfe-b718-4962-be0c-0a5fce7f7f7b} - C:\Program Files (x86)\Jump Flip\JumpFlipBHO.dll (Jump Flip)

CHR Extension: (Jump Flip) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf [2014-02-08]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-10-29]
CHR Extension: (weebsAve) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaifobfbhobikajfnflcabknamdcnni [2014-02-01]
CHR HKLM-x32\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2014-02-06]

R2 Update Jump Flip
R2 Util Jump Flip
S3 X6va011
S3 X6va012

C:\Program Files (x86)\Jump Flip
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaifobfbhobikajfnflcabknamdcnni
C:\ProgramData\hash.dat
C:\Users\RafaelGAMING\jagex_cl_loginapplet_LIVE.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE1.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE2.dat
C:\Users\RafaelGAMING\random.dat
    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run frst.exe (on 64bit, run frst64.exe) and press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) which you find where you saved FRST. Please post it to your reply.

Proud Member of UNITE & TB
 

#5 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 19 February 2014 - 02:37 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-02-2014
Ran by RafaelGAMING at 2014-02-20 06:36:33 Run:1
Running from C:\Users\RafaelGAMING\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
HKCU Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKCU Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....rk6pQf3Xv&log=1
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\RunOnce: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://for.eofmslqk....vgT9mNrk6pQf3Xv
GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1002\User: Group Policy restriction detected <======= ATTENTION
GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1001\User: Group Policy restriction detected <======= ATTENTION
BHO-x32: Jump Flip - {6db9fdfe-b718-4962-be0c-0a5fce7f7f7b} - C:\Program Files (x86)\Jump Flip\JumpFlipBHO.dll (Jump Flip)
 
CHR Extension: (Jump Flip) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf [2014-02-08]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2013-10-29]
CHR Extension: (weebsAve) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaifobfbhobikajfnflcabknamdcnni [2014-02-01]
CHR HKLM-x32\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2014-02-06]
 
R2 Update Jump Flip
R2 Util Jump Flip
S3 X6va011
S3 X6va012
 
C:\Program Files (x86)\Jump Flip
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaifobfbhobikajfnflcabknamdcnni
C:\ProgramData\hash.dat
C:\Users\RafaelGAMING\jagex_cl_loginapplet_LIVE.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE1.dat
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE2.dat
C:\Users\RafaelGAMING\random.dat
*****************
 
HKCU => Group Policy Restriction on software restored successfully.
HKCU => Group Policy Restriction on software restored successfully.
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\Software\Microsoft\Windows\CurrentVersion\Run\\SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv => Value deleted successfully.
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\Software\Microsoft\Windows\CurrentVersion\Run\\RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv => Value deleted successfully.
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv => Value deleted successfully.
C:\Windows\system32\GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1002\User => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
C:\Windows\system32\GroupPolicyUsers\S-1-5-21-3692048799-716141490-1008594922-1001\User => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6db9fdfe-b718-4962-be0c-0a5fce7f7f7b} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{6db9fdfe-b718-4962-be0c-0a5fce7f7f7b} => Key deleted successfully.
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf => Moved successfully.
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp => Moved successfully.
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaifobfbhobikajfnflcabknamdcnni => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\hphehadppenpmajgnkjdcopcfijjegaf => Key deleted successfully.
C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx => Moved successfully.
C:\Program Files (x86)\Jump Flip => Moved successfully.
"C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf" => File/Directory not found.
"C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp" => File/Directory not found.
"C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofaifobfbhobikajfnflcabknamdcnni" => File/Directory not found.
C:\ProgramData\hash.dat => Moved successfully.
C:\Users\RafaelGAMING\jagex_cl_loginapplet_LIVE.dat => Moved successfully.
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE.dat => Moved successfully.
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE1.dat => Moved successfully.
C:\Users\RafaelGAMING\jagex_cl_runescape_LIVE2.dat => Moved successfully.
C:\Users\RafaelGAMING\random.dat => Moved successfully.
 
 
The system needs a manual reboot. 
 
==== End of Fixlog ====

#6 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 20 February 2014 - 07:09 AM

Full System Scan with Malwarebytes Antimalware

  • If not existing, please download Malwarebytes' Anti-Malware to your desktop.
  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.


If the program is already installed:
  • Run Malwarebytes Antimalware
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform fullscan, place a checkmark on all hard drives, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad. Please save it to a convenient location.
  • The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
  • Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt
  • Post that log back here.

 

 

 

Scan with ESET Online Scan

Please go to here to run the online scannner from ESET.

  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings and ensure these options are ticked:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click Scan
  • Wait for the scan to finish
  • If any threats were found, click the 'List of found threats' , then click Export to text file....
  • Save it to your desktop, then please copy and paste that log as a reply to this topic.


Proud Member of UNITE & TB
 

#7 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 21 February 2014 - 12:34 AM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.02.20.05
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
RafaelGAMING :: RAFAELGAMING-PC [administrator]
 
20/02/2014 11:12:17 PM
mbam-log-2014-02-20 (23-12-17).txt
 
Scan type: Full scan (C:\|E:\|F:\|G:\|H:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 1035363
Time elapsed: 3 hour(s), 29 minute(s), 28 second(s)
 
Memory Processes Detected: 2
C:\Program Files (x86)\Jump Flip\bin\utilJumpFlip.exe (PUP.Optional.JumpFlip.A) -> 7492 -> Delete on reboot.
C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe (PUP.Optional.JumpFlip.A) -> 7376 -> Delete on reboot.
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 8
HKLM\SYSTEM\CurrentControlSet\Services\Util Jump Flip (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\Update Jump Flip (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{b630c560-975d-41a3-9a95-cbc23ad991e4} (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{08a93781-1ba0-4b59-87f6-2c80c8956e03} (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
HKCR\Interface\{76BF10AB-CEAD-456F-9218-5F46B1683DB1} (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B630C560-975D-41A3-9A95-CBC23AD991E4} (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
HKCU\Software\Jump Flip (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
HKLM\Software\Jump Flip (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
 
Registry Values Detected: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv (Trojan.PMovie.Gen) -> Data: mshta.exe http://egk.soidnjxk....rk6pQf3Xv&log=1 -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv (Trojan.PMovie.Gen) -> Data: mshta.exe http://egk.soidnjxk....vgT9mNrk6pQf3Xv -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce|RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv (Trojan.PMovie.Gen) -> Data: mshta.exe http://egk.soidnjxk....vgT9mNrk6pQf3Xv -> Quarantined and deleted successfully.
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 2
C:\Users\RafaelGAMING\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
 
Files Detected: 29
C:\Program Files (x86)\Jump Flip\bin\utilJumpFlip.exe (PUP.Optional.JumpFlip.A) -> Delete on reboot.
C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe (PUP.Optional.JumpFlip.A) -> Delete on reboot.
C:\Program Files (x86)\Jump Flip\JumpFlipBHO.dll (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\nengine.dll.vir (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptimizerPro.exe.vir (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProCrash.exe.vir (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProGuard.exe.vir (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProReminder.exe.vir (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProSchedule.exe.vir (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProSmartScan.exe.vir (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProStart.exe.vir (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie2.1.36.zip.vir (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\nengine.dll.vir (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
C:\FRST\Quarantine\Jump Flip20-02-2014_06-36-34\JumpFlipBHO.dll (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
C:\FRST\Quarantine\Jump Flip20-02-2014_06-36-34\updateJumpFlip.exe (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
C:\FRST\Quarantine\Jump Flip20-02-2014_06-36-34\bin\utilJumpFlip.exe (PUP.Optional.JumpFlip.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\AppData\Local\genienext\nengine.dll (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Profile 1\File System\004\t\00\00000000 (PUP.Optional.Installrex) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\FreemakeVideoConverterSetup.exe (PUP.Optional.OpenCandy) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\FreeMouseAutoClicker_downloader_by_FreeMouseAutoClicker.exe (PUP.Optional.Somoto) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\minecraftdl_1283.exe (PUP.Optional.Tarma) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\Unconfirmed 642639.crdownload (PUP.Optional.Campaign.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\Unconfirmed 84764.crdownload (PUP.Optional.Campaign.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\YTDSetup.exe (PUP.Optional.Spigot.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\Adobe photoshop CS6 13.0 [Extended x86+x64] (2012) PC\Patch\Crack\x64\amtlib.dll (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\Downloads\Adobe photoshop CS6 13.0 [Extended x86+x64] (2012) PC\Patch\Crack\x86\amtlib.dll (PUP.RiskwareTool.CK) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
C:\Users\RafaelGAMING\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Quarantined and deleted successfully.
 
(end)
 
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\DaemonProcess.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\Mobogenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\New_UpdateMoboGenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\UpdateMoboGenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Pixillion\pixillion.exe.vir probably a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Pixillion\pixillionsetup_v2.59.exe.vir probably a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Switch\switch.exe.vir a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Switch\switchsetup_v4.47.exe.vir a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProCrash.dll.vir a variant of Win32/SProtector.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProLauncher.exe.vir a variant of Win32/AdWare.SpeedingUpMyPC.D application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlf\10.22.3.518_0\TBHostSupport\TBHostSupport.dll.vir a variant of Win32/Toolbar.Conduit.AA potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\DaemonProcess.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\Mobogenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\New_UpdateMoboGenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\FRST\Quarantine\hphehadppenpmajgnkjdcopcfijjegaf20-02-2014_06-36-34\1.0.0_0\background.js Win32/BrowseFox.B potentially unwanted application
C:\FRST\Quarantine\hphehadppenpmajgnkjdcopcfijjegaf20-02-2014_06-36-34\1.0.0_0\content.js Win32/BrowseFox.B potentially unwanted application
C:\FRST\Quarantine\Jump Flip20-02-2014_06-36-34\JumpFlipUninstall.exe Win32/BrowseFox.C potentially unwanted application
C:\Program Files (x86)\Cheat Engine 6.2\cheatengine-i386.exe a variant of Win32/HackTool.CheatEngine.AB potentially unsafe application
C:\Program Files (x86)\Cheat Engine 6.2\standalonephase1.dat a variant of Win32/HackTool.CheatEngine.AF potentially unsafe application
C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe a variant of Win32/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\Jump Flip\bin\utilJumpFlip.exe a variant of Win32/BrowseFox.G potentially unwanted application
C:\Program Files (x86)\SimpleFiles\uninstall.exe a variant of Win32/ExpressDownloader.H potentially unwanted application
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apnpfcegijiidalnoeeigipepclpljgh\1.1.3_0\cnt.js Win32/Adware.MultiPlug.H application
C:\Users\RafaelGAMING\Downloads\dfsetup216.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\RafaelGAMING\Downloads\switchsetup.exe a variant of Win32/Toolbar.Conduit.H potentially unwanted application
 

#8 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 24 February 2014 - 06:02 AM

Please reboot and post a new FRST log.


Proud Member of UNITE & TB
 

#9 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 26 February 2014 - 07:00 AM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-02-2014
Ran by RafaelGAMING (administrator) on RAFAELGAMING-PC on 26-02-2014 22:55:18
Running from C:\Users\RafaelGAMING\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Akamai Technologies, Inc.) C:\Users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Microsoft Corporation) C:\Windows\System32\mshta.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Microsoft Corporation) C:\Windows\system32\PrintIsolationHost.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1063200 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [Autodesk Sync] - C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [415680 2012-02-05] (Autodesk, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813712 2014-02-25] (LogMeIn Inc.)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1821888 2014-02-26] (Valve Corporation)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [GoogleChromeAutoLaunch_60C5998B0F1615D70DA22AA057791F4A] - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe [859464 2014-02-20] (Google Inc.)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18678376 2013-04-19] (Skype Technologies S.A.)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [Akamai NetSession Interface] - C:\Users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563608 2014-01-07] (SUPERAntiSpyware)
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....rk6pQf3Xv&log=1
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\RunOnce: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Policies\Explorer: [] 
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x102C3358DD37CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-AU
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.m...ash/swflash.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 
FireFox:
========
FF ProfilePath: C:\Users\RafaelGAMING\AppData\Roaming\Mozilla\Firefox\Profiles\l9903zog.default
FF Homepage: hxxp://mysearch.avg.com?cid={56A1AB89-4FD2-46EB-B23A-BEA1E6A54FF6}&mid=1f9cb1683c9347d08f82416272f92a57-de24b43e3d9c04bcad79ea9cf4ccc4ec82497233&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 17:45:54&v=17.2.0.38&pid=safeguard&sg=&sap=hp
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\RafaelGAMING\AppData\Local\Roblox\Versions\version-4d86019d16fc4ea5\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\RafaelGAMING\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\RafaelGAMING\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\RafaelGAMING\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\RafaelGAMING\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\RafaelGAMING\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: thehappycloud.com/HappyCloudPlugin - C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll (The Happy Cloud)
FF Extension: No Name - C:\Users\RafaelGAMING\AppData\Roaming\Mozilla\Firefox\Profiles\l9903zog.default\Extensions\staged [2014-02-01]
 
Chrome: 
=======
CHR DefaultSearchKeyword: google.com.au
CHR Extension: (Google Drive) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-30]
CHR Extension: (GFACE Experience Plugin) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdlfmdbdibkbfdpjocdaolcheehmpol [2014-01-16]
CHR Extension: (AdBlock) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-03]
CHR Extension: (Jump Flip) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf [2014-02-22]
CHR Extension: (Google Wallet) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-29]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\RAFAEL~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-11-30]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-02-11]
CHR HKLM-x32\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2014-02-20]
 
==================== Services (Whitelisted) =================
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-06] (Alcohol Soft Development Team)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-04] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-07] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5131672 2013-11-19] (INCA Internet Co., Ltd.)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15122208 2013-10-18] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-08] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-01-11] (VIA Technologies, Inc.)
S3 xsherlock; C:\Windows\SysWOW64\xsherlock.xem [666720 2012-11-20] (Wellbia.com Co., Ltd.)
S2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
S3 2310_00; C:\Windows\system32\drivers\2310_00.sys [170528 2009-06-12] (HighPoint Technologies, Inc.)
S3 272x_1x; C:\Windows\system32\drivers\272x_1x.sys [612672 2012-04-25] (HighPoint Technologies, Inc.)
S3 274x_3x; C:\Windows\system32\drivers\274x_3x.sys [240960 2012-04-25] (HighPoint Technologies, Inc.)
S3 arcm_a64; C:\Windows\system32\drivers\arcm_a64.sys [52768 2009-11-09] (ARECA Technology Corporation)
S3 asahci64; C:\Windows\system32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-12-21] (AVG Technologies)
S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2011-09-02] (Broadcom Corporation)
S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-23] (Bigfoot Networks, Inc.)
S3 BFNVis64; C:\Windows\system32\drivers\XenoVa64.sys [157288 2012-02-23] (Bigfoot Networks, Inc.)
S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [174632 2011-11-10] (Broadcom Corporation)
S3 bxois; C:\Windows\system32\drivers\bxois.sys [538664 2011-10-24] (Broadcom Corporation)
S3 cbaf; C:\Windows\System32\Drivers\cbaf.sys [15872 2008-01-10] (Intel Corp.)
S3 cercsr6; C:\Windows\system32\drivers\cercsr6.sys [45616 2008-02-28] (Adaptec, Inc.)
S3 DC133; C:\Windows\system32\drivers\DC133.sys [39320 2011-05-02] (Dawicontrol GmbH)
S3 DC150; C:\Windows\system32\drivers\DC150.sys [39832 2011-05-02] (Dawicontrol GmbH)
S3 DC154; C:\Windows\system32\drivers\DC154.sys [48136 2011-05-02] (Dawicontrol GmbH)
S3 DC300e; C:\Windows\system32\drivers\DC300e.sys [40344 2011-05-02] (Dawicontrol GmbH)
R0 DC324e; C:\Windows\System32\drivers\DC324e.sys [49752 2011-05-02] (Dawicontrol GmbH)
R0 DC3410; C:\Windows\System32\drivers\DC3410.sys [48328 2011-05-02] (Dawicontrol GmbH)
S3 DC4300; C:\Windows\system32\drivers\DC4300.sys [48360 2011-05-02] (Dawicontrol GmbH)
S3 DC600e; C:\Windows\system32\drivers\DC600e.sys [40744 2011-05-02] (Dawicontrol GmbH)
S3 dfuuwb; C:\Windows\System32\Drivers\DfuUWB.sys [503296 2008-09-12] (Intel Corp.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-10-04] (DT Soft Ltd)
S3 FLxHCIh; C:\Windows\system32\drivers\FLxHCIh.sys [71424 2011-12-13] (Fresco Logic)
S3 FTT3s; C:\Windows\system32\drivers\FTT3s.sys [233040 2011-02-01] (Promise Technology, Inc.)
S3 hptiop; C:\Windows\system32\drivers\hptiop.sys [17440 2009-05-26] (HighPoint Technologies, Inc.)
S3 hptmv; C:\Windows\system32\drivers\hptmv.sys [93472 2006-09-18] (HighPoint Technologies, Inc.)
S3 hptmv6; C:\Windows\system32\drivers\hptmv6.sys [152096 2007-11-01] (HighPoint Technologies, Inc.)
S3 HWA; C:\Windows\System32\Drivers\HWA.sys [61440 2008-09-29] (Intel Corp.)
S3 hxsyol; C:\AeriaGames\AuraKingdom\avital\hxsy64.sys [86352 2013-11-27] ()
S3 IAMTVE; C:\Windows\system32\drivers\IAMTVE.sys [43416 2007-04-12] (Intel Corporation)
S3 IAMTXPE; C:\Windows\system32\drivers\IAMTXPE.sys [51096 2007-04-12] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [24496 2012-03-16] (Intel Corporation)
S3 iaStorS; C:\Windows\system32\drivers\iaStorS.sys [639408 2012-03-31] (Intel Corporation)
S3 IFCoEMP; C:\Windows\system32\drivers\ifM60x64.sys [388368 2011-12-01] (Intel® Corporation)
S3 IFCoEVB; C:\Windows\system32\drivers\ifP60X64.sys [78096 2011-12-01] (Intel® Corporation)
S3 ioatdma2; C:\Windows\System32\Drivers\qd260x64.sys [41168 2009-11-16] (Intel Corporation)
S3 iteatapi; C:\Windows\system32\drivers\iteatapi.sys [38680 2008-05-14] (ITE Tech. Inc.)
S3 iteraid; C:\Windows\system32\drivers\iteraid.sys [32768 2007-05-02] (ITE Tech. Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 megasas2; C:\Windows\system32\drivers\megasas2.sys [51280 2010-11-02] (LSI Corporation)
S3 MegaSR1; C:\Windows\system32\drivers\MegaSR1.sys [461320 2009-04-16] (LSI Corporation, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
S3 mv61xx; C:\Windows\system32\drivers\mv61xx.sys [182576 2011-05-06] (Marvell Semiconductor, Inc.)
S3 mv64xx; C:\Windows\system32\drivers\mv64xx.sys [331816 2010-01-11] (Marvell Semiconductor, Inc.)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
R0 nvrd64; C:\Windows\System32\drivers\nvrd64.sys [175720 2010-04-09] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 percsas2; C:\Windows\system32\drivers\percsas2.sys [40456 2010-05-08] (LSI Corporation)
S3 Pnp680; C:\Windows\system32\drivers\pnp680.sys [80424 2007-11-14] (Silicon Image, Inc)
S4 RAMDiskVE; C:\Windows\System32\Drivers\RAMDiskVE.sys [86768 2014-01-29] (Dataram, Inc.)
S3 rr172x; C:\Windows\system32\drivers\rr172x.sys [124448 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr174x; C:\Windows\system32\drivers\rr174x.sys [159264 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr2210; C:\Windows\system32\drivers\rr2210.sys [153632 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr232x; C:\Windows\system32\drivers\rr232x.sys [152096 2008-05-06] (HighPoint Technologies, Inc.)
S3 rr2340; C:\Windows\system32\drivers\rr2340.sys [162400 2010-01-01] (HighPoint Technologies, Inc.)
S3 rr2522; C:\Windows\system32\drivers\rr2522.sys [168032 2010-01-01] (HighPoint Technologies, Inc.)
S3 rr276x; C:\Windows\system32\drivers\rr276x.sys [241472 2012-04-25] (HighPoint Technologies, Inc.)
S3 rr278x; C:\Windows\system32\drivers\rr278x.sys [240960 2012-04-25] (HighPoint Technologies, Inc.)
S3 rr62x; C:\Windows\system32\drivers\rr62x.sys [156256 2010-06-17] (HighPoint Technologies, Inc.)
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SI3112r; C:\Windows\system32\drivers\SI3112r.sys [164656 2007-02-02] (Silicon Image, Inc)
S3 SI3114; C:\Windows\system32\drivers\SI3114.sys [99120 2006-11-10] (Silicon Image, Inc.)
S3 SI3114r; C:\Windows\system32\drivers\SI3114R.sys [163632 2007-04-12] (Silicon Image, Inc)
S3 SI3124; C:\Windows\system32\drivers\SI3124.sys [113456 2006-11-03] (Silicon Image, Inc.)
S3 Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [334640 2006-09-20] (Silicon Image, Inc)
S3 SI3132; C:\Windows\system32\drivers\SI3132.sys [90664 2007-10-04] (Silicon Image, Inc)
S3 Si3531; C:\Windows\system32\drivers\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22056 2007-10-04] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\drivers\SiRemFil.sys [17448 2007-10-04] (Silicon Image, Inc)
S3 SISAGP; C:\Windows\system32\drivers\SISAGPX.sys [67120 2008-04-23] (Silicon Integrated Systems Corporation)
S3 sjcst; C:\AeriaGames\EdenEternal\avital\sjcsu64.sys [86352 2014-01-19] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2013-12-30] (Duplex Secure Ltd.)
S3 uwbusb; C:\Windows\System32\Drivers\usbuwbmini.sys [13312 2008-09-15] (Intel Corp.)
S3 viaagp1; C:\Windows\system32\drivers\viaagp1.sys [59392 2005-09-23] (VIA Technologies, Inc.)
S3 viamrx64; C:\Windows\system32\drivers\viamrx64.sys [161904 2010-12-03] (VIA Technologies Inc.,Ltd)
S3 videX64; C:\Windows\system32\drivers\videX64.sys [15000 2010-02-11] (VIA Technologies, Inc.)
S3 VUSB3HUB; C:\Windows\system32\drivers\ViaHub3.sys [204800 2011-11-15] (VIA Technologies, Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
R0 xfiltx64; C:\Windows\System32\drivers\xfiltx64.sys [26776 2010-02-11] (VIA Technologies, Inc.)
S3 xhcdrv; C:\Windows\system32\drivers\xhcdrv.sys [256000 2011-11-15] (VIA Technologies, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
U3 a3im23cu; C:\Windows\System32\Drivers\a3im23cu.sys [0 ] (Dawicontrol GmbH)
U3 a3xe0zo9; C:\Windows\System32\Drivers\a3xe0zo9.sys [0 ] (Dawicontrol GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-02-26 22:54 - 2014-02-26 22:54 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\FRST-OlderVersion
2014-02-26 22:54 - 2014-02-26 22:54 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-26 16:58 - 2014-02-26 16:59 - 07901284 _____ () C:\Users\RafaelGAMING\Downloads\xvideos.com_5855013c7a8df71a56b9d60f328d4645.mp4
2014-02-26 16:57 - 2014-02-26 16:57 - 08174478 _____ () C:\Users\RafaelGAMING\Downloads\xvideos.com_e9a75d2b1236617ec4c03995d0d1af63.mp4
2014-02-26 07:46 - 2014-02-26 08:06 - 473174967 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 08 [720p].mkv
2014-02-26 07:46 - 2014-02-26 07:46 - 00043577 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 08 [1080p].mkv (1).torrent
2014-02-26 07:45 - 2014-02-26 07:45 - 00036368 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 08 [720p].mkv.torrent
2014-02-25 17:21 - 2014-02-25 17:22 - 07607355 _____ () C:\Users\RafaelGAMING\Downloads\xvideos.com_f13d9188a8358648e1477016f7cf6d87.mp4
2014-02-25 16:48 - 2014-02-25 16:57 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Travit
2014-02-25 08:00 - 2014-02-25 08:00 - 00043577 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 08 [1080p].mkv.torrent
2014-02-24 23:08 - 2014-02-24 23:08 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 08 [720p].mkv.torrent
2014-02-24 22:18 - 2014-02-24 22:18 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 08 [1080p].mkv.torrent
2014-02-23 22:28 - 2014-02-23 22:28 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 07 [1080p].mkv.torrent
2014-02-23 16:46 - 2014-02-23 16:46 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\REAPER Media
2014-02-23 16:44 - 2007-06-07 13:39 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\GuitarHacks Impulses
2014-02-23 16:40 - 2014-02-23 16:40 - 00000016 _____ () C:\Users\RafaelGAMING\AppData\Roaming\msregsvv.dll
2014-02-23 16:34 - 2014-02-23 16:35 - 04908537 _____ () C:\Users\RafaelGAMING\Downloads\Win VST x64.zip
2014-02-23 16:34 - 2014-02-23 16:35 - 02781070 _____ () C:\Users\RafaelGAMING\Downloads\GuitarHacksImpulses.rar
2014-02-23 16:30 - 2014-02-23 16:31 - 09205976 _____ () C:\Users\RafaelGAMING\Downloads\reaper4591_x64-install.exe
2014-02-23 08:08 - 2014-02-23 08:08 - 00043563 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 08 [1080p].mkv.torrent
2014-02-23 00:20 - 2014-02-23 00:20 - 00043583 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 07 [1080p].mkv.torrent
2014-02-23 00:20 - 2014-02-23 00:20 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 07 [1080p].mkv (1).torrent
2014-02-23 00:20 - 2014-02-23 00:20 - 00036548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 06 [720p].mkv (1).torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00045187 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 21 [1080p].mkv.torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00043727 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 19 [1080p].mkv.torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00043490 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 07 [1080p].mkv.torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 07 [480p].mkv.torrent
2014-02-22 21:05 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-02-22 21:05 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-02-22 21:05 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-02-22 21:05 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-02-22 21:04 - 2014-02-22 21:05 - 00005250 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-22 19:59 - 2014-02-22 19:59 - 02104188 _____ () C:\Users\RafaelGAMING\Downloads\SkyBlock2.1.zip
2014-02-22 19:55 - 2014-02-22 21:09 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\minecraftservr
2014-02-22 19:51 - 2014-02-22 19:52 - 09566327 _____ () C:\Users\RafaelGAMING\Downloads\minecraft_server.1.7.4.exe
2014-02-22 16:33 - 2014-02-22 16:33 - 02592158 _____ () C:\Users\RafaelGAMING\Downloads\rosariotosuccubus.zip
2014-02-22 16:32 - 2014-02-22 16:33 - 03752548 _____ () C:\Users\RafaelGAMING\Downloads\rosavivid.zip
2014-02-21 16:33 - 2014-02-21 16:33 - 00003784 _____ () C:\Users\RafaelGAMING\Downloads\scan.txt
2014-02-21 07:37 - 2014-02-21 07:37 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-21 07:35 - 2014-02-21 07:35 - 02347384 _____ (ESET) C:\Users\RafaelGAMING\Downloads\esetsmartinstaller_enu.exe
2014-02-20 07:10 - 2014-02-22 12:31 - 00000000 ____D () C:\Program Files (x86)\Jump Flip
2014-02-20 06:34 - 2014-02-20 06:34 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 07 [1080p].mkv.torrent
2014-02-20 06:34 - 2014-02-20 06:34 - 00036548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 06 [720p].mkv.torrent
2014-02-19 22:31 - 2014-02-19 22:31 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\a
2014-02-19 21:14 - 2014-02-19 21:14 - 01114009 _____ () C:\Users\RafaelGAMING\Documents\Untitled (11).wma
2014-02-19 21:10 - 2014-02-19 21:10 - 00678479 _____ () C:\Users\RafaelGAMING\Documents\Untitled (10).wma
2014-02-19 21:08 - 2014-02-19 21:08 - 00130699 _____ () C:\Users\RafaelGAMING\Documents\Untitled (9).wma
2014-02-19 20:21 - 2014-02-19 20:23 - 00009727 _____ () C:\Users\RafaelGAMING\Desktop\ark.txt
2014-02-19 16:40 - 2014-02-19 16:40 - 00008602 _____ () C:\Users\RafaelGAMING\Desktop\Log Horizon ED - Your Song (Piano by ZackyAnimePiano).mid
2014-02-19 16:06 - 2014-02-19 16:06 - 00292896 _____ () C:\Windows\Minidump\021914-18376-01.dmp
2014-02-19 16:05 - 2014-02-19 16:05 - 1158262960 _____ () C:\Windows\MEMORY.DMP
2014-02-19 15:59 - 2014-02-19 15:59 - 00380416 _____ () C:\Users\RafaelGAMING\Downloads\ed3pw20d.exe
2014-02-19 15:56 - 2014-02-19 15:56 - 00046880 _____ () C:\Users\RafaelGAMING\Desktop\Addition.txt
2014-02-19 15:55 - 2014-02-26 22:55 - 00029043 _____ () C:\Users\RafaelGAMING\Desktop\FRST.txt
2014-02-19 15:55 - 2014-02-26 22:55 - 00000000 ____D () C:\FRST
2014-02-19 15:54 - 2014-02-26 22:54 - 02155520 _____ (Farbar) C:\Users\RafaelGAMING\Desktop\FRST64.exe
2014-02-19 07:49 - 2014-02-19 07:52 - 01210892 _____ () C:\Users\RafaelGAMING\Downloads\rws_gia_grace_ck102112_720p_8000.mp4
2014-02-18 23:18 - 2014-02-18 23:18 - 00043557 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 07 [1080p].mkv.torrent
2014-02-18 23:18 - 2014-02-18 23:18 - 00036328 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 07 [720p].mkv.torrent
2014-02-18 21:35 - 2014-02-24 22:52 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\CrashDumps
2014-02-18 17:28 - 2014-02-18 17:28 - 00001656 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_SC_02182014_172803.txt
2014-02-18 17:27 - 2014-02-18 17:27 - 00001896 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_D_02182014_172751.txt
2014-02-18 17:25 - 2014-02-18 17:25 - 00001801 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_S_02182014_172553.txt
2014-02-18 17:19 - 2014-02-18 17:28 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\RK_Quarantine
2014-02-18 17:19 - 2014-02-18 17:19 - 03813376 _____ () C:\Users\RafaelGAMING\Downloads\RogueKiller.exe
2014-02-18 17:16 - 2014-02-18 17:16 - 00048042 _____ () C:\ComboFix.txt
2014-02-18 17:00 - 2011-06-26 16:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-18 17:00 - 2010-11-08 03:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-18 17:00 - 2009-04-20 14:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-18 17:00 - 2000-08-31 10:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-18 16:58 - 2014-02-18 17:16 - 00000000 ____D () C:\Qoobox
2014-02-18 16:57 - 2014-02-18 17:15 - 00000000 ____D () C:\Windows\erdnt
2014-02-18 16:55 - 2014-02-18 16:56 - 05183112 ____R (Swearware) C:\Users\RafaelGAMING\Desktop\ComboFix.exe
2014-02-18 16:46 - 2014-02-18 16:46 - 00602112 _____ (OldTimer Tools) C:\Users\RafaelGAMING\Downloads\OTL.exe
2014-02-18 15:59 - 2014-02-26 15:59 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c.job
2014-02-18 15:59 - 2014-02-26 02:00 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf.job
2014-02-18 15:59 - 2014-02-18 23:46 - 00001868 _____ () C:\Users\RafaelGAMING\Desktop\SUPERAntiSpyware Professional.lnk
2014-02-18 15:59 - 2014-02-18 15:59 - 00987425 _____ () C:\Users\RafaelGAMING\Desktop\SecurityCheck.exe
2014-02-18 15:59 - 2014-02-18 15:59 - 00003626 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf
2014-02-18 15:59 - 2014-02-18 15:59 - 00003552 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-18 15:54 - 2014-02-18 15:55 - 17954448 _____ (SUPERAntiSpyware) C:\Users\RafaelGAMING\Downloads\SUPERAntiSpyware.exe
2014-02-18 07:42 - 2014-02-18 07:42 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Malwarebytes
2014-02-18 07:39 - 2014-02-18 07:39 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 07:39 - 2014-02-18 07:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-18 07:39 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-18 07:38 - 2014-02-18 07:38 - 00388608 _____ (Trend Micro Inc.) C:\Users\RafaelGAMING\Downloads\HijackThis.exe
2014-02-18 07:21 - 2014-02-26 22:54 - 00003696 _____ () C:\Windows\System32\Tasks\RegWrite
2014-02-18 07:01 - 2014-02-18 17:33 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DayZ
2014-02-18 07:01 - 2014-02-18 17:33 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\DayZ
2014-02-17 21:37 - 2014-02-17 21:39 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Red Roses
2014-02-17 16:26 - 2014-02-17 16:26 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\DayZ.url
2014-02-17 06:40 - 2014-02-17 06:40 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Skyrim
2014-02-17 06:35 - 2014-02-17 06:35 - 00051263 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 07 [720p].mkv.torrent
2014-02-16 18:02 - 2014-02-16 18:02 - 00373159 _____ () C:\Users\RafaelGAMING\Documents\Untitled (8).wma
2014-02-16 18:00 - 2014-02-16 18:00 - 00862569 _____ () C:\Users\RafaelGAMING\Documents\Untitled (7).wma
2014-02-16 09:46 - 2014-02-17 06:27 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Install.Fix-RELOADED
2014-02-16 09:46 - 2014-02-16 09:46 - 00378368 ____R () C:\Users\RafaelGAMING\Desktop\Elder Scrolls V - Skyrim Installer Fix.exe
2014-02-16 08:51 - 2014-02-17 06:28 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2014-02-16 08:51 - 2014-02-17 01:12 - 2303371264 ____R () C:\Users\RafaelGAMING\Downloads\SKYRIM_EN_WWW.iso
2014-02-16 08:49 - 2014-02-16 08:49 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 06 [1080p].mkv.torrent
2014-02-16 08:49 - 2014-02-16 08:49 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 07 [1080p].mkv.torrent
2014-02-16 08:48 - 2014-02-16 08:48 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\skyrim saves
2014-02-15 22:42 - 2014-02-15 22:42 - 00026966 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 20 [720p].mkv.torrent
2014-02-15 07:36 - 2014-02-15 07:36 - 00049701 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 06 [720p].mkv.torrent
2014-02-15 07:36 - 2014-02-15 07:36 - 00043552 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 18 [1080p].mkv.torrent
2014-02-14 22:57 - 2014-02-14 22:57 - 00043510 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043663 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043647 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 18 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 06 [480p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00050368 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 05 [720p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 06 [1080p].mkv.torrent
2014-02-11 22:17 - 2014-02-11 22:17 - 00049988 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 06 [720p].mkv.torrent
2014-02-11 19:00 - 2014-02-11 19:12 - 190781224 _____ () C:\Users\RafaelGAMING\Downloads\PS_AIO_04_C4500_USW_Full_Win_WW_130_140.exe
2014-02-11 07:24 - 2014-02-11 07:24 - 03418771 _____ (BOSS Development Team) C:\Users\RafaelGAMING\Downloads\BOSS v2.1.1 Installer.exe
2014-02-11 06:32 - 2014-02-11 06:32 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 06 [1080p].mkv.torrent
2014-02-10 22:34 - 2014-02-10 22:34 - 00001305 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-02-10 22:34 - 2014-02-10 22:34 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-02-10 21:31 - 2014-02-10 21:31 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 06 [1080p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00051283 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 06 [720p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00014274 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 07 [1080p].mkv.torrent
2014-02-10 06:41 - 2014-02-10 06:41 - 00001702 _____ () C:\Users\RafaelGAMING\Desktop\SkyrimLauncher.exe - Shortcut.lnk
2014-02-09 18:20 - 2014-02-09 18:20 - 20117840 _____ () C:\Users\RafaelGAMING\Desktop\Desktop.mp4
2014-02-09 17:57 - 2014-02-09 17:58 - 98197154 _____ () C:\Users\RafaelGAMING\Desktop\On the Job - Agricultural Engineer.mp4
2014-02-09 08:51 - 2014-02-09 08:51 - 00044683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 05 [1080p].mkv.torrent
2014-02-09 08:51 - 2014-02-09 08:51 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 06 [1080p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00035981 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 05 [720p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00027006 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 19 [720p].mkv.torrent
2014-02-08 14:12 - 2014-02-08 14:13 - 00000013 _____ () C:\Users\RafaelGAMING\Desktop\New Text Document.txt
2014-02-08 13:40 - 2014-02-08 13:40 - 00001373 _____ () C:\Users\RafaelGAMING\Desktop\Cursors.rar
2014-02-08 07:22 - 2014-02-08 07:22 - 00043512 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 17 [1080p].mkv.torrent
2014-02-07 22:20 - 2014-02-07 22:20 - 00043470 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 05 [1080p].mkv.torrent
2014-02-07 19:03 - 2014-02-07 19:03 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DogsOfWar
2014-02-07 07:10 - 2014-02-07 07:10 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv (1).torrent
2014-02-07 07:10 - 2014-02-07 07:10 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [720p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00011986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [480p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 05 [480p].mkv.torrent
2014-02-07 06:41 - 2014-02-07 06:41 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv.torrent
2014-02-06 22:50 - 2014-02-06 22:50 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Dogs of War Online - Beta.url
2014-02-06 22:49 - 2014-02-06 22:49 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Cannons Lasers Rockets.url
2014-02-06 17:28 - 2014-02-06 17:28 - 00091833 _____ () C:\Users\RafaelGAMING\Downloads\GmadExtractor_1_6_12_600.zip
2014-02-06 17:28 - 2014-02-06 17:28 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\GMAD
2014-02-06 07:54 - 2014-02-06 07:54 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 05 [1080p].mkv.torrent
2014-02-06 07:54 - 2014-02-06 07:54 - 00036508 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 04 [720p].mkv.torrent
2014-02-05 18:19 - 2014-02-05 18:19 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LennarDigital
2014-02-05 18:18 - 2014-02-05 18:18 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Lennardigital.Sylenth1.Halloween.Special.VSTi.v2.2.HALLOWEEN by steffie
2014-02-04 15:38 - 2014-02-04 15:38 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Targem
2014-02-04 15:37 - 2014-02-04 15:37 - 00036268 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 05 [720p].mkv.torrent
2014-02-04 06:24 - 2014-02-04 06:24 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 05 [1080p].mkv.torrent
2014-02-03 21:48 - 2014-02-03 21:48 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Star Conflict.url
2014-02-03 21:42 - 2014-02-03 21:42 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv (1).torrent
2014-02-03 21:31 - 2014-02-21 18:40 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\xvide
2014-02-03 06:23 - 2014-02-03 06:23 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 05 [720p].mkv.torrent
2014-02-03 06:23 - 2014-02-03 06:23 - 00014314 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 05 [1080p].mkv.torrent
2014-02-02 15:58 - 2014-02-02 15:58 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\EdgeOfReality
2014-02-02 15:39 - 2014-02-02 15:40 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Ableton
2014-02-02 15:39 - 2014-02-02 15:39 - 00001601 _____ () C:\Users\RafaelGAMING\Desktop\Ableton Live 9 Suite.exe - Shortcut.lnk
2014-02-02 15:39 - 2014-02-02 15:39 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\Ableton
2014-02-02 15:19 - 2014-02-02 15:19 - 00000881 _____ () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Suite.lnk
2014-02-02 15:19 - 2014-02-02 15:19 - 00000000 ____D () C:\ProgramData\Ableton
2014-02-02 15:05 - 2013-04-08 07:15 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Ableton Live 9.0.2
2014-02-02 14:26 - 2014-02-02 14:27 - 00975086 _____ () C:\Users\RafaelGAMING\Downloads\162.zip
2014-02-02 13:10 - 2014-02-02 14:25 - 722207746 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live 9.0.2.rar
2014-02-02 09:09 - 2014-02-02 09:09 - 00026142 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 05 [720p].mkv.torrent
2014-02-02 09:02 - 2008-11-12 23:44 - 05410119 _____ ( ) C:\Users\RafaelGAMING\Desktop\Sylenth1Demo_v220_Setup_x64.exe
2014-02-02 08:41 - 2014-02-02 09:42 - 738436666 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live Suite 9.1 Win 64-bit.rar
2014-02-02 08:16 - 2014-02-02 08:16 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 04 [1080p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv (1).torrent
2014-02-01 16:58 - 2014-02-01 16:58 - 00044628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 04 [1080p].mkv.torrent
2014-02-01 16:57 - 2014-02-01 16:57 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Loadout.url
2014-02-01 13:46 - 2014-02-01 13:48 - 02418128 _____ () C:\Users\RafaelGAMING\Desktop\Heart Rate Monitor Flatline-SoundBible.com-2063567528.wav
2014-02-01 13:22 - 2014-02-01 13:22 - 00000000 ____D () C:\ProgramData\SetApp
2014-02-01 13:21 - 2014-02-19 07:07 - 00000000 ____D () C:\Users\Administrator
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\ProgramData\19a04e83d58db913
2014-02-01 12:26 - 2014-02-01 12:26 - 00107764 _____ () C:\Users\RafaelGAMING\Downloads\XRayInstaller.jar
2014-02-01 12:24 - 2014-02-01 12:24 - 00919541 _____ () C:\Users\RafaelGAMING\Downloads\XRayPatcher-v1-1.7.4.jar
2014-02-01 12:08 - 2014-02-01 12:08 - 00768980 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_C2.jar
2014-02-01 11:39 - 2014-02-01 11:40 - 00386383 _____ (http://magiclauncher.com) C:\Users\RafaelGAMING\Downloads\MagicLauncher_1.2.5.exe
2014-02-01 09:52 - 2014-02-01 09:52 - 00000130 _____ () C:\Users\RafaelGAMING\Documents\acad.err
2014-02-01 09:47 - 2014-02-01 09:47 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-01 09:36 - 2014-02-01 09:36 - 00000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-02-01 09:36 - 2014-02-01 09:36 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\4
2014-02-01 09:35 - 2014-02-01 09:46 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Autodesk
2014-02-01 09:35 - 2014-02-01 09:36 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\AUTODESK.2013.PRODUCTS.UNIVERSAL.KEYGEN-XFORCE
2014-02-01 09:35 - 2014-02-01 09:35 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-02-01 09:33 - 2014-02-01 09:37 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-02-01 09:33 - 2014-02-01 09:37 - 00000000 ____D () C:\Program Files\Autodesk
2014-02-01 09:33 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-02-01 09:32 - 2014-02-01 09:32 - 00000363 _____ () C:\Windows\DirectX.log
2014-02-01 09:29 - 2014-02-01 09:47 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Autodesk
2014-02-01 09:29 - 2014-02-01 09:47 - 00000000 ____D () C:\ProgramData\Autodesk
2014-02-01 09:29 - 2014-02-01 09:29 - 00044588 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 02 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 01 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044488 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 03 [1080p].mkv.torrent
2014-02-01 09:25 - 2014-02-01 09:25 - 00000000 ____D () C:\Autodesk
2014-02-01 09:22 - 2013-03-03 23:02 - 1216220336 _____ () C:\Users\RafaelGAMING\Desktop\AutoCAD_2013_English_Win_64bit.exe
2014-02-01 06:08 - 2014-02-01 06:08 - 00043632 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 16 [1080p].mkv.torrent
2014-02-01 06:08 - 2014-02-01 06:08 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv.torrent
2014-01-31 21:04 - 2014-01-31 21:04 - 00795225 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_U_C2.jar
2014-01-31 17:40 - 2014-01-31 17:40 - 03991490 _____ () C:\Users\RafaelGAMING\Downloads\Sylenth1 VTX BlackO.rar
2014-01-31 16:17 - 2014-01-31 16:17 - 00026049 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 04 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00043543 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 04 [1080p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 16 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 04 [480p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00043513 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 04 [1080p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00036628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 03 [720p].mkv.torrent
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img.bak
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img
2014-01-29 20:10 - 2014-01-29 20:10 - 00086768 _____ (Dataram, Inc.) C:\Windows\system32\Drivers\RAMDiskVE.sys
2014-01-29 20:08 - 2014-01-29 20:10 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Dataram_Corporation
2014-01-29 20:08 - 2014-01-29 20:10 - 00000000 ____D () C:\Program Files (x86)\RAMDisk
2014-01-29 20:08 - 2014-01-29 20:08 - 00001869 _____ () C:\Users\Public\Desktop\RAMDisk Configuration Utility.lnk
2014-01-29 20:06 - 2014-01-29 20:07 - 06201344 _____ () C:\Users\RafaelGAMING\Downloads\Dataram_RAMDisk_4_4_0_RC16.msi
2014-01-28 19:24 - 2014-02-26 22:54 - 00000942 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-01-28 16:59 - 2014-01-28 16:59 - 00043697 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 04 [1080p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00036348 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 04 [720p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv (1).torrent
2014-01-27 18:11 - 2014-01-27 18:15 - 63631359 _____ () C:\Users\RafaelGAMING\Downloads\placebo_for_windows_7_by_solmiler-d346dad.rar
2014-01-27 18:11 - 2014-01-27 18:12 - 08613604 _____ () C:\Users\RafaelGAMING\Downloads\adagio_theme___windows_7_by_rajtheeban95-d2zwu22.rar
2014-01-27 18:02 - 2010-11-21 13:23 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll.backup
2014-01-27 18:02 - 2009-07-14 11:41 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll.backup
2014-01-27 18:02 - 2009-07-14 11:41 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll.backup
2014-01-27 18:01 - 2010-11-21 13:24 - 02755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll.backup
2014-01-27 18:01 - 2009-07-14 11:11 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll.backup
2014-01-27 18:00 - 2014-02-01 09:26 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\UniversalThemePatcher_20090409
2014-01-27 17:58 - 2014-01-27 17:58 - 00082664 _____ () C:\Users\RafaelGAMING\Downloads\UniversalThemePatcher_20090409.zip
2014-01-27 17:51 - 2014-01-27 17:52 - 10782967 _____ () C:\Users\RafaelGAMING\Downloads\toybox_for_windows_7_by_cappippuni-d5ac8kq.zip
2014-01-27 17:28 - 2014-02-26 22:52 - 00003218 _____ () C:\Windows\setupact.log
2014-01-27 17:28 - 2014-01-27 17:28 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-27 17:27 - 2014-02-26 22:52 - 00020214 _____ () C:\Windows\PFRO.log
2014-01-27 17:22 - 2014-01-27 17:22 - 00000000 ____D () C:\Program Files\Defraggler
2014-01-27 17:18 - 2014-01-27 17:19 - 04208656 _____ (Piriform Ltd) C:\Users\RafaelGAMING\Downloads\dfsetup216.exe
2014-01-27 09:26 - 2014-01-27 09:26 - 00037223 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 04 [720p].mkv.torrent
2014-01-27 09:26 - 2014-01-27 09:26 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv.torrent
 
==================== One Month Modified Files and Folders =======
 
2014-02-26 22:55 - 2014-02-19 15:55 - 00029043 _____ () C:\Users\RafaelGAMING\Desktop\FRST.txt
2014-02-26 22:55 - 2014-02-19 15:55 - 00000000 ____D () C:\FRST
2014-02-26 22:55 - 2012-10-08 21:02 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Skype
2014-02-26 22:55 - 2012-09-28 14:05 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\LogMeIn Hamachi
2014-02-26 22:54 - 2014-02-26 22:54 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\FRST-OlderVersion
2014-02-26 22:54 - 2014-02-26 22:54 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-26 22:54 - 2014-02-19 15:54 - 02155520 _____ (Farbar) C:\Users\RafaelGAMING\Desktop\FRST64.exe
2014-02-26 22:54 - 2014-02-18 07:21 - 00003696 _____ () C:\Windows\System32\Tasks\RegWrite
2014-02-26 22:54 - 2014-01-28 19:24 - 00000942 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-02-26 22:54 - 2013-11-30 19:27 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-26 22:53 - 2012-09-27 17:47 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-26 22:52 - 2014-01-27 17:28 - 00003218 _____ () C:\Windows\setupact.log
2014-02-26 22:52 - 2014-01-27 17:27 - 00020214 _____ () C:\Windows\PFRO.log
2014-02-26 22:52 - 2012-09-14 13:23 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-26 22:52 - 2009-07-14 15:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-26 22:42 - 2013-06-08 10:29 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\BitTorrent
2014-02-26 22:42 - 2012-09-27 16:10 - 01726127 _____ () C:\Windows\WindowsUpdate.log
2014-02-26 22:29 - 2012-09-27 17:20 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job
2014-02-26 21:59 - 2012-09-28 14:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-26 21:52 - 2013-02-06 17:21 - 00000956 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job
2014-02-26 21:52 - 2013-02-06 17:21 - 00000934 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job
2014-02-26 21:47 - 2013-11-30 19:27 - 00000910 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-26 18:57 - 2012-09-30 09:51 - 00000000 ____D () C:\ProgramData\MFAData
2014-02-26 16:59 - 2014-02-26 16:58 - 07901284 _____ () C:\Users\RafaelGAMING\Downloads\xvideos.com_5855013c7a8df71a56b9d60f328d4645.mp4
2014-02-26 16:57 - 2014-02-26 16:57 - 08174478 _____ () C:\Users\RafaelGAMING\Downloads\xvideos.com_e9a75d2b1236617ec4c03995d0d1af63.mp4
2014-02-26 15:59 - 2014-02-18 15:59 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c.job
2014-02-26 08:29 - 2012-09-27 17:20 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job
2014-02-26 08:06 - 2014-02-26 07:46 - 473174967 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 08 [720p].mkv
2014-02-26 07:46 - 2014-02-26 07:46 - 00043577 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 08 [1080p].mkv (1).torrent
2014-02-26 07:45 - 2014-02-26 07:45 - 00036368 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 08 [720p].mkv.torrent
2014-02-26 02:00 - 2014-02-18 15:59 - 00000524 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf.job
2014-02-26 02:00 - 2013-07-02 11:39 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Adobe
2014-02-25 17:22 - 2014-02-25 17:21 - 07607355 _____ () C:\Users\RafaelGAMING\Downloads\xvideos.com_f13d9188a8358648e1477016f7cf6d87.mp4
2014-02-25 16:57 - 2014-02-25 16:48 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Travit
2014-02-25 08:00 - 2014-02-25 08:00 - 00043577 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 08 [1080p].mkv.torrent
2014-02-24 23:09 - 2013-07-31 17:26 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\vlc
2014-02-24 23:08 - 2014-02-24 23:08 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 08 [720p].mkv.torrent
2014-02-24 22:52 - 2014-02-18 21:35 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\CrashDumps
2014-02-24 22:18 - 2014-02-24 22:18 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 08 [1080p].mkv.torrent
2014-02-24 12:47 - 2009-07-14 14:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-24 12:47 - 2009-07-14 14:45 - 00028928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-23 22:28 - 2014-02-23 22:28 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 07 [1080p].mkv.torrent
2014-02-23 16:46 - 2014-02-23 16:46 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\REAPER Media
2014-02-23 16:46 - 2014-01-06 18:40 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\REAPER
2014-02-23 16:40 - 2014-02-23 16:40 - 00000016 _____ () C:\Users\RafaelGAMING\AppData\Roaming\msregsvv.dll
2014-02-23 16:40 - 2014-01-06 14:50 - 00000016 _____ () C:\ProgramData\autobk.inc
2014-02-23 16:36 - 2012-10-11 23:05 - 00000000 ____D () C:\Program Files (x86)\VstPlugins
2014-02-23 16:35 - 2014-02-23 16:34 - 04908537 _____ () C:\Users\RafaelGAMING\Downloads\Win VST x64.zip
2014-02-23 16:35 - 2014-02-23 16:34 - 02781070 _____ () C:\Users\RafaelGAMING\Downloads\GuitarHacksImpulses.rar
2014-02-23 16:31 - 2014-02-23 16:30 - 09205976 _____ () C:\Users\RafaelGAMING\Downloads\reaper4591_x64-install.exe
2014-02-23 14:04 - 2012-11-18 07:50 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Akamai
2014-02-23 08:08 - 2014-02-23 08:08 - 00043563 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 08 [1080p].mkv.torrent
2014-02-23 00:20 - 2014-02-23 00:20 - 00043583 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 07 [1080p].mkv.torrent
2014-02-23 00:20 - 2014-02-23 00:20 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 07 [1080p].mkv (1).torrent
2014-02-23 00:20 - 2014-02-23 00:20 - 00036548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 06 [720p].mkv (1).torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00045187 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 21 [1080p].mkv.torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00043727 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 19 [1080p].mkv.torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00043490 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 07 [1080p].mkv.torrent
2014-02-23 00:19 - 2014-02-23 00:19 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 07 [480p].mkv.torrent
2014-02-22 21:09 - 2014-02-22 19:55 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\minecraftservr
2014-02-22 21:05 - 2014-02-22 21:04 - 00005250 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-22 21:05 - 2013-03-10 14:01 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-22 20:02 - 2012-09-29 15:20 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\.minecraft
2014-02-22 19:59 - 2014-02-22 19:59 - 02104188 _____ () C:\Users\RafaelGAMING\Downloads\SkyBlock2.1.zip
2014-02-22 19:52 - 2014-02-22 19:51 - 09566327 _____ () C:\Users\RafaelGAMING\Downloads\minecraft_server.1.7.4.exe
2014-02-22 16:33 - 2014-02-22 16:33 - 02592158 _____ () C:\Users\RafaelGAMING\Downloads\rosariotosuccubus.zip
2014-02-22 16:33 - 2014-02-22 16:32 - 03752548 _____ () C:\Users\RafaelGAMING\Downloads\rosavivid.zip
2014-02-22 12:39 - 2009-07-14 15:13 - 00781390 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-22 12:36 - 2013-08-03 15:23 - 00014844 _____ () C:\autoupdate.log
2014-02-22 12:32 - 2012-10-19 15:03 - 00000294 __RSH () C:\Users\RafaelGAMING\ntuser.pol
2014-02-22 12:32 - 2012-09-27 17:10 - 00000000 ____D () C:\Users\RafaelGAMING
2014-02-22 12:31 - 2014-02-20 07:10 - 00000000 ____D () C:\Program Files (x86)\Jump Flip
2014-02-21 21:00 - 2012-09-28 14:05 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 21:00 - 2012-09-28 14:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 21:00 - 2012-09-28 14:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 18:40 - 2014-02-03 21:31 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\xvide
2014-02-21 16:33 - 2014-02-21 16:33 - 00003784 _____ () C:\Users\RafaelGAMING\Downloads\scan.txt
2014-02-21 13:32 - 2012-09-27 17:21 - 00002422 _____ () C:\Users\RafaelGAMING\Desktop\Google Chrome.lnk
2014-02-21 07:37 - 2014-02-21 07:37 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-21 07:35 - 2014-02-21 07:35 - 02347384 _____ (ESET) C:\Users\RafaelGAMING\Downloads\esetsmartinstaller_enu.exe
2014-02-21 07:09 - 2013-12-30 18:30 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\genienext
2014-02-20 06:36 - 2009-07-14 13:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-20 06:34 - 2014-02-20 06:34 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 07 [1080p].mkv.torrent
2014-02-20 06:34 - 2014-02-20 06:34 - 00036548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 06 [720p].mkv.torrent
2014-02-19 22:31 - 2014-02-19 22:31 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\a
2014-02-19 21:14 - 2014-02-19 21:14 - 01114009 _____ () C:\Users\RafaelGAMING\Documents\Untitled (11).wma
2014-02-19 21:10 - 2014-02-19 21:10 - 00678479 _____ () C:\Users\RafaelGAMING\Documents\Untitled (10).wma
2014-02-19 21:08 - 2014-02-19 21:08 - 00130699 _____ () C:\Users\RafaelGAMING\Documents\Untitled (9).wma
2014-02-19 20:23 - 2014-02-19 20:21 - 00009727 _____ () C:\Users\RafaelGAMING\Desktop\ark.txt
2014-02-19 16:40 - 2014-02-19 16:40 - 00008602 _____ () C:\Users\RafaelGAMING\Desktop\Log Horizon ED - Your Song (Piano by ZackyAnimePiano).mid
2014-02-19 16:06 - 2014-02-19 16:06 - 00292896 _____ () C:\Windows\Minidump\021914-18376-01.dmp
2014-02-19 16:06 - 2013-04-20 11:14 - 00000000 ____D () C:\Windows\Minidump
2014-02-19 16:05 - 2014-02-19 16:05 - 1158262960 _____ () C:\Windows\MEMORY.DMP
2014-02-19 15:59 - 2014-02-19 15:59 - 00380416 _____ () C:\Users\RafaelGAMING\Downloads\ed3pw20d.exe
2014-02-19 15:56 - 2014-02-19 15:56 - 00046880 _____ () C:\Users\RafaelGAMING\Desktop\Addition.txt
2014-02-19 07:52 - 2014-02-19 07:49 - 01210892 _____ () C:\Users\RafaelGAMING\Downloads\rws_gia_grace_ck102112_720p_8000.mp4
2014-02-19 07:07 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator
2014-02-19 06:42 - 2013-11-30 19:27 - 00003906 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-19 06:42 - 2013-11-30 19:27 - 00003654 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-18 23:46 - 2014-02-18 15:59 - 00001868 _____ () C:\Users\RafaelGAMING\Desktop\SUPERAntiSpyware Professional.lnk
2014-02-18 23:18 - 2014-02-18 23:18 - 00043557 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 07 [1080p].mkv.torrent
2014-02-18 23:18 - 2014-02-18 23:18 - 00036328 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 07 [720p].mkv.torrent
2014-02-18 18:29 - 2014-01-06 12:51 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Rocksmith 2014
2014-02-18 17:33 - 2014-02-18 07:01 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DayZ
2014-02-18 17:33 - 2014-02-18 07:01 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\DayZ
2014-02-18 17:28 - 2014-02-18 17:28 - 00001656 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_SC_02182014_172803.txt
2014-02-18 17:28 - 2014-02-18 17:19 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\RK_Quarantine
2014-02-18 17:27 - 2014-02-18 17:27 - 00001896 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_D_02182014_172751.txt
2014-02-18 17:25 - 2014-02-18 17:25 - 00001801 _____ () C:\Users\RafaelGAMING\Desktop\RKreport[0]_S_02182014_172553.txt
2014-02-18 17:19 - 2014-02-18 17:19 - 03813376 _____ () C:\Users\RafaelGAMING\Downloads\RogueKiller.exe
2014-02-18 17:16 - 2014-02-18 17:16 - 00048042 _____ () C:\ComboFix.txt
2014-02-18 17:16 - 2014-02-18 16:58 - 00000000 ____D () C:\Qoobox
2014-02-18 17:16 - 2009-07-14 13:20 - 00000000 __RHD () C:\Users\Default
2014-02-18 17:15 - 2014-02-18 16:57 - 00000000 ____D () C:\Windows\erdnt
2014-02-18 17:14 - 2009-07-14 12:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-18 16:56 - 2014-02-18 16:55 - 05183112 ____R (Swearware) C:\Users\RafaelGAMING\Desktop\ComboFix.exe
2014-02-18 16:46 - 2014-02-18 16:46 - 00602112 _____ (OldTimer Tools) C:\Users\RafaelGAMING\Downloads\OTL.exe
2014-02-18 16:12 - 2013-12-06 07:40 - 00000000 ____D () C:\AdwCleaner
2014-02-18 15:59 - 2014-02-18 15:59 - 00987425 _____ () C:\Users\RafaelGAMING\Desktop\SecurityCheck.exe
2014-02-18 15:59 - 2014-02-18 15:59 - 00003626 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf
2014-02-18 15:59 - 2014-02-18 15:59 - 00003552 _____ () C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-18 15:59 - 2014-02-18 15:59 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-18 15:55 - 2014-02-18 15:54 - 17954448 _____ (SUPERAntiSpyware) C:\Users\RafaelGAMING\Downloads\SUPERAntiSpyware.exe
2014-02-18 07:42 - 2014-02-18 07:42 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Malwarebytes
2014-02-18 07:39 - 2014-02-18 07:39 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 07:39 - 2014-02-18 07:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-18 07:38 - 2014-02-18 07:38 - 00388608 _____ (Trend Micro Inc.) C:\Users\RafaelGAMING\Downloads\HijackThis.exe
2014-02-17 21:39 - 2014-02-17 21:37 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Red Roses
2014-02-17 16:26 - 2014-02-17 16:26 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\DayZ.url
2014-02-17 16:26 - 2012-09-27 19:51 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-02-17 06:40 - 2014-02-17 06:40 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Skyrim
2014-02-17 06:35 - 2014-02-17 06:35 - 00051263 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 07 [720p].mkv.torrent
2014-02-17 06:32 - 2013-03-26 06:54 - 00000000 ____D () C:\Games
2014-02-17 06:29 - 2012-10-02 15:50 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\DAEMON Tools Lite
2014-02-17 06:28 - 2014-02-16 08:51 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2014-02-17 06:28 - 2012-10-04 19:50 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim
2014-02-17 06:27 - 2014-02-16 09:46 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\The.Elder.Scrolls.V.Skyrim.Install.Fix-RELOADED
2014-02-17 01:12 - 2014-02-16 08:51 - 2303371264 ____R () C:\Users\RafaelGAMING\Downloads\SKYRIM_EN_WWW.iso
2014-02-16 18:02 - 2014-02-16 18:02 - 00373159 _____ () C:\Users\RafaelGAMING\Documents\Untitled (8).wma
2014-02-16 18:00 - 2014-02-16 18:00 - 00862569 _____ () C:\Users\RafaelGAMING\Documents\Untitled (7).wma
2014-02-16 15:49 - 2012-09-27 17:44 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\PMB Files
2014-02-16 15:49 - 2012-09-27 17:44 - 00000000 ____D () C:\ProgramData\PMB Files
2014-02-16 09:46 - 2014-02-16 09:46 - 00378368 ____R () C:\Users\RafaelGAMING\Desktop\Elder Scrolls V - Skyrim Installer Fix.exe
2014-02-16 08:49 - 2014-02-16 08:49 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 06 [1080p].mkv.torrent
2014-02-16 08:49 - 2014-02-16 08:49 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 07 [1080p].mkv.torrent
2014-02-16 08:48 - 2014-02-16 08:48 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\skyrim saves
2014-02-15 22:42 - 2014-02-15 22:42 - 00026966 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 20 [720p].mkv.torrent
2014-02-15 07:36 - 2014-02-15 07:36 - 00049701 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 06 [720p].mkv.torrent
2014-02-15 07:36 - 2014-02-15 07:36 - 00043552 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 18 [1080p].mkv.torrent
2014-02-14 22:57 - 2014-02-14 22:57 - 00043510 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043663 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 06 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00043647 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 18 [1080p].mkv.torrent
2014-02-14 07:55 - 2014-02-14 07:55 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 06 [480p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00050368 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 05 [720p].mkv.torrent
2014-02-13 06:45 - 2014-02-13 06:45 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 06 [1080p].mkv.torrent
2014-02-11 22:17 - 2014-02-11 22:17 - 00049988 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 06 [720p].mkv.torrent
2014-02-11 22:15 - 2013-10-19 19:31 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Spotify
2014-02-11 19:12 - 2014-02-11 19:00 - 190781224 _____ () C:\Users\RafaelGAMING\Downloads\PS_AIO_04_C4500_USW_Full_Win_WW_130_140.exe
2014-02-11 08:24 - 2012-09-27 17:20 - 00003920 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA
2014-02-11 08:24 - 2012-09-27 17:20 - 00003524 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core
2014-02-11 07:24 - 2014-02-11 07:24 - 03418771 _____ (BOSS Development Team) C:\Users\RafaelGAMING\Downloads\BOSS v2.1.1 Installer.exe
2014-02-11 06:32 - 2014-02-11 06:32 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 06 [1080p].mkv.torrent
2014-02-11 06:29 - 2013-10-19 19:31 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Spotify
2014-02-10 22:34 - 2014-02-10 22:34 - 00001305 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-02-10 22:34 - 2014-02-10 22:34 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-02-10 21:31 - 2014-02-10 21:31 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 06 [1080p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00051283 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 06 [720p].mkv.torrent
2014-02-10 08:03 - 2014-02-10 08:03 - 00014274 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 07 [1080p].mkv.torrent
2014-02-10 06:41 - 2014-02-10 06:41 - 00001702 _____ () C:\Users\RafaelGAMING\Desktop\SkyrimLauncher.exe - Shortcut.lnk
2014-02-09 18:20 - 2014-02-09 18:20 - 20117840 _____ () C:\Users\RafaelGAMING\Desktop\Desktop.mp4
2014-02-09 17:58 - 2014-02-09 17:57 - 98197154 _____ () C:\Users\RafaelGAMING\Desktop\On the Job - Agricultural Engineer.mp4
2014-02-09 08:51 - 2014-02-09 08:51 - 00044683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 05 [1080p].mkv.torrent
2014-02-09 08:51 - 2014-02-09 08:51 - 00043683 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 06 [1080p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00035981 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 05 [720p].mkv.torrent
2014-02-09 00:35 - 2014-02-09 00:35 - 00027006 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 19 [720p].mkv.torrent
2014-02-08 14:13 - 2014-02-08 14:12 - 00000013 _____ () C:\Users\RafaelGAMING\Desktop\New Text Document.txt
2014-02-08 13:46 - 2009-07-14 13:20 - 00000000 ____D () C:\Windows\Cursors
2014-02-08 13:40 - 2014-02-08 13:40 - 00001373 _____ () C:\Users\RafaelGAMING\Desktop\Cursors.rar
2014-02-08 07:22 - 2014-02-08 07:22 - 00043512 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 17 [1080p].mkv.torrent
2014-02-07 22:20 - 2014-02-07 22:20 - 00043470 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 05 [1080p].mkv.torrent
2014-02-07 19:03 - 2014-02-07 19:03 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\DogsOfWar
2014-02-07 07:10 - 2014-02-07 07:10 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv (1).torrent
2014-02-07 07:10 - 2014-02-07 07:10 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [720p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00011986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 17 [480p].mkv.torrent
2014-02-07 06:42 - 2014-02-07 06:42 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 05 [480p].mkv.torrent
2014-02-07 06:41 - 2014-02-07 06:41 - 00043723 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 05 [1080p].mkv.torrent
2014-02-06 22:50 - 2014-02-06 22:50 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Dogs of War Online - Beta.url
2014-02-06 22:49 - 2014-02-06 22:49 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Cannons Lasers Rockets.url
2014-02-06 17:28 - 2014-02-06 17:28 - 00091833 _____ () C:\Users\RafaelGAMING\Downloads\GmadExtractor_1_6_12_600.zip
2014-02-06 17:28 - 2014-02-06 17:28 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\GMAD
2014-02-06 07:54 - 2014-02-06 07:54 - 00043573 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 05 [1080p].mkv.torrent
2014-02-06 07:54 - 2014-02-06 07:54 - 00036508 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 04 [720p].mkv.torrent
2014-02-05 18:19 - 2014-02-05 18:19 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LennarDigital
2014-02-05 18:18 - 2014-02-05 18:18 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\Lennardigital.Sylenth1.Halloween.Special.VSTi.v2.2.HALLOWEEN by steffie
2014-02-04 15:38 - 2014-02-04 15:38 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Targem
2014-02-04 15:37 - 2014-02-04 15:37 - 00036268 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 05 [720p].mkv.torrent
2014-02-04 06:24 - 2014-02-04 06:24 - 00043717 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 05 [1080p].mkv.torrent
2014-02-03 21:48 - 2014-02-03 21:48 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Star Conflict.url
2014-02-03 21:42 - 2014-02-03 21:42 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv (1).torrent
2014-02-03 06:23 - 2014-02-03 06:23 - 00037243 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 05 [720p].mkv.torrent
2014-02-03 06:23 - 2014-02-03 06:23 - 00014314 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 05 [1080p].mkv.torrent
2014-02-02 15:58 - 2014-02-02 15:58 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\EdgeOfReality
2014-02-02 15:40 - 2014-02-02 15:39 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Ableton
2014-02-02 15:39 - 2014-02-02 15:39 - 00001601 _____ () C:\Users\RafaelGAMING\Desktop\Ableton Live 9 Suite.exe - Shortcut.lnk
2014-02-02 15:39 - 2014-02-02 15:39 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\Ableton
2014-02-02 15:21 - 2014-01-06 01:06 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-02-02 15:19 - 2014-02-02 15:19 - 00000881 _____ () C:\Users\RafaelGAMING\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Suite.lnk
2014-02-02 15:19 - 2014-02-02 15:19 - 00000000 ____D () C:\ProgramData\Ableton
2014-02-02 14:27 - 2014-02-02 14:26 - 00975086 _____ () C:\Users\RafaelGAMING\Downloads\162.zip
2014-02-02 14:25 - 2014-02-02 13:10 - 722207746 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live 9.0.2.rar
2014-02-02 09:42 - 2014-02-02 08:41 - 738436666 _____ () C:\Users\RafaelGAMING\Downloads\Ableton Live Suite 9.1 Win 64-bit.rar
2014-02-02 09:09 - 2014-02-02 09:09 - 00026142 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] ImoCho - Another Shitty Sister Manga Adaptation - 05 [720p].mkv.torrent
2014-02-02 09:09 - 2013-10-07 18:25 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\anime 2013
2014-02-02 08:16 - 2014-02-02 08:16 - 00044803 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Nisekoi - 04 [1080p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv.torrent
2014-02-01 22:56 - 2014-02-01 22:56 - 00026986 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Log Horizon - 18 [720p].mkv (1).torrent
2014-02-01 22:50 - 2009-07-14 14:45 - 05152856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-01 16:58 - 2014-02-01 16:58 - 00044628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 04 [1080p].mkv.torrent
2014-02-01 16:57 - 2014-02-01 16:57 - 00000222 _____ () C:\Users\RafaelGAMING\Desktop\Loadout.url
2014-02-01 15:18 - 2012-10-21 19:46 - 00000000 ____D () C:\ProgramData\Origin
2014-02-01 15:18 - 2012-10-21 19:46 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-01 14:45 - 2014-01-25 13:00 - 00000000 ____D () C:\Program Files (x86)\InfiniteCrisis
2014-02-01 13:48 - 2014-02-01 13:46 - 02418128 _____ () C:\Users\RafaelGAMING\Desktop\Heart Rate Monitor Flatline-SoundBible.com-2063567528.wav
2014-02-01 13:22 - 2014-02-01 13:22 - 00000000 ____D () C:\ProgramData\SetApp
2014-02-01 13:22 - 2013-02-25 17:17 - 00000000 ____D () C:\ProgramData\InstallMate
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Torch
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Google
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\Users\ADMIN\AppData\Local\Comodo
2014-02-01 13:21 - 2014-02-01 13:21 - 00000000 ____D () C:\ProgramData\19a04e83d58db913
2014-02-01 13:21 - 2012-09-27 17:20 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Google
2014-02-01 12:26 - 2014-02-01 12:26 - 00107764 _____ () C:\Users\RafaelGAMING\Downloads\XRayInstaller.jar
2014-02-01 12:24 - 2014-02-01 12:24 - 00919541 _____ () C:\Users\RafaelGAMING\Downloads\XRayPatcher-v1-1.7.4.jar
2014-02-01 12:08 - 2014-02-01 12:08 - 00768980 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_C2.jar
2014-02-01 11:40 - 2014-02-01 11:39 - 00386383 _____ (http://magiclauncher.com) C:\Users\RafaelGAMING\Downloads\MagicLauncher_1.2.5.exe
2014-02-01 09:52 - 2014-02-01 09:52 - 00000130 _____ () C:\Users\RafaelGAMING\Documents\acad.err
2014-02-01 09:47 - 2014-02-01 09:47 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-01 09:47 - 2014-02-01 09:29 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Autodesk
2014-02-01 09:47 - 2014-02-01 09:29 - 00000000 ____D () C:\ProgramData\Autodesk
2014-02-01 09:46 - 2014-02-01 09:35 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Autodesk
2014-02-01 09:46 - 2012-09-27 17:19 - 00144824 _____ () C:\Users\RafaelGAMING\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-01 09:37 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-02-01 09:37 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files\Autodesk
2014-02-01 09:36 - 2014-02-01 09:36 - 00000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-02-01 09:36 - 2014-02-01 09:36 - 00000000 ____D () C:\Users\RafaelGAMING\Documents\4
2014-02-01 09:36 - 2014-02-01 09:35 - 00000000 ____D () C:\Users\RafaelGAMING\Downloads\AUTODESK.2013.PRODUCTS.UNIVERSAL.KEYGEN-XFORCE
2014-02-01 09:35 - 2014-02-01 09:35 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-02-01 09:33 - 2014-02-01 09:33 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-02-01 09:32 - 2014-02-01 09:32 - 00000363 _____ () C:\Windows\DirectX.log
2014-02-01 09:29 - 2014-02-01 09:29 - 00044588 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 02 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044548 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 01 [1080p].mkv.torrent
2014-02-01 09:29 - 2014-02-01 09:29 - 00044488 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Sakura Trick - 03 [1080p].mkv.torrent
2014-02-01 09:27 - 2013-12-06 07:33 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\School
2014-02-01 09:26 - 2014-01-27 18:00 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\UniversalThemePatcher_20090409
2014-02-01 09:26 - 2013-12-06 07:34 - 00000000 ____D () C:\Users\RafaelGAMING\Desktop\Random as photo
2014-02-01 09:25 - 2014-02-01 09:25 - 00000000 ____D () C:\Autodesk
2014-02-01 06:08 - 2014-02-01 06:08 - 00043632 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Strike the Blood - 16 [1080p].mkv.torrent
2014-02-01 06:08 - 2014-02-01 06:08 - 00036041 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] No-Rin - 04 [720p].mkv.torrent
2014-01-31 21:04 - 2014-01-31 21:04 - 00795225 _____ () C:\Users\RafaelGAMING\Downloads\OptiFine_1.7.2_HD_U_C2.jar
2014-01-31 17:40 - 2014-01-31 17:40 - 03991490 _____ () C:\Users\RafaelGAMING\Downloads\Sylenth1 VTX BlackO.rar
2014-01-31 16:17 - 2014-01-31 16:17 - 00026049 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Chuunibyou demo Koi ga Shitai! Ren - 04 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00043543 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Engaged to the Unidentified - 04 [1080p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00026126 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Golden Time - 16 [720p].mkv.torrent
2014-01-31 06:40 - 2014-01-31 06:40 - 00001787 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] My Sister Came - Onee-chan ga Kita - 04 [480p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00043513 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Witch Craft Works - 04 [1080p].mkv.torrent
2014-01-30 05:57 - 2014-01-30 05:57 - 00036628 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Maken-ki! Two - 03 [720p].mkv.torrent
2014-01-29 21:10 - 2013-09-14 19:00 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\foobar2000
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img.bak
2014-01-29 20:37 - 2014-01-29 20:37 - 4290903984 ____C () C:\RAMDisk.img
2014-01-29 20:10 - 2014-01-29 20:10 - 00086768 _____ (Dataram, Inc.) C:\Windows\system32\Drivers\RAMDiskVE.sys
2014-01-29 20:10 - 2014-01-29 20:08 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Dataram_Corporation
2014-01-29 20:10 - 2014-01-29 20:08 - 00000000 ____D () C:\Program Files (x86)\RAMDisk
2014-01-29 20:08 - 2014-01-29 20:08 - 00001869 _____ () C:\Users\Public\Desktop\RAMDisk Configuration Utility.lnk
2014-01-29 20:07 - 2014-01-29 20:06 - 06201344 _____ () C:\Users\RafaelGAMING\Downloads\Dataram_RAMDisk_4_4_0_RC16.msi
2014-01-28 16:59 - 2014-01-28 16:59 - 00043697 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] The Pilot's Love Song - 04 [1080p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00036348 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Buddy Complex - 04 [720p].mkv.torrent
2014-01-28 16:59 - 2014-01-28 16:59 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv (1).torrent
2014-01-27 18:15 - 2014-01-27 18:11 - 63631359 _____ () C:\Users\RafaelGAMING\Downloads\placebo_for_windows_7_by_solmiler-d346dad.rar
2014-01-27 18:12 - 2014-01-27 18:11 - 08613604 _____ () C:\Users\RafaelGAMING\Downloads\adagio_theme___windows_7_by_rajtheeban95-d2zwu22.rar
2014-01-27 18:02 - 2010-11-21 13:23 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-01-27 18:02 - 2009-07-14 09:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-01-27 18:02 - 2009-07-14 09:54 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2014-01-27 18:01 - 2010-11-21 13:24 - 02755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2014-01-27 18:01 - 2009-07-14 09:39 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-01-27 17:58 - 2014-01-27 17:58 - 00082664 _____ () C:\Users\RafaelGAMING\Downloads\UniversalThemePatcher_20090409.zip
2014-01-27 17:52 - 2014-01-27 17:51 - 10782967 _____ () C:\Users\RafaelGAMING\Downloads\toybox_for_windows_7_by_cappippuni-d5ac8kq.zip
2014-01-27 17:28 - 2014-01-27 17:28 - 00000000 _____ () C:\Windows\setuperr.log
2014-01-27 17:26 - 2013-12-20 23:56 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Battle.net
2014-01-27 17:22 - 2014-01-27 17:22 - 00000000 ____D () C:\Program Files\Defraggler
2014-01-27 17:19 - 2014-01-27 17:18 - 04208656 _____ (Piriform Ltd) C:\Users\RafaelGAMING\Downloads\dfsetup216.exe
2014-01-27 17:19 - 2013-09-13 06:31 - 00000000 ____D () C:\Windows\pss
2014-01-27 17:16 - 2013-09-14 17:04 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Roaming\Ventrilo
2014-01-27 17:14 - 2014-01-16 14:25 - 00000000 ____D () C:\Users\RafaelGAMING\AppData\Local\Dxtory Software
2014-01-27 17:14 - 2014-01-15 10:16 - 00000000 ____D () C:\Program Files (x86)\GBE Games
2014-01-27 17:13 - 2012-10-22 18:47 - 00000000 ____D () C:\ProgramData\Desura
2014-01-27 09:26 - 2014-01-27 09:26 - 00037223 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Noragami - 04 [720p].mkv.torrent
2014-01-27 09:26 - 2014-01-27 09:26 - 00014294 _____ () C:\Users\RafaelGAMING\Downloads\[HorribleSubs] Tonari no Seki-kun - 04 [1080p].mkv.torrent
 
Some content of TEMP:
====================
C:\Users\RafaelGAMING\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\RafaelGAMING\AppData\Local\Temp\ntdll_dump.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-02-18 00:40
 
==================== End Of Log ============================

#10 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 26 February 2014 - 07:15 AM

As I told you before, stop using your P2P software.

If I see another hint of it withing the next log, this log will be closed.

 

 

Fix with FRST (normal mode)

  • Open notepad (Start =>All Programs => Accessories => Notepad).
  • Please copy the entire contents of the code box below.
    (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste).
  • Save it to the same direction as frst.exe (or frst64.exe) as fixlist.txt.

    HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....rk6pQf3Xv&log=1
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\RunOnce: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Policies\Explorer: []
CHR Extension: (Jump Flip) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf [2014-02-22]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-02-11]
CHR HKLM-x32\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2014-02-20]

S3 sjcst; C:\AeriaGames\EdenEternal\avital\sjcsu64.sys [86352 2014-01-19] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]

C:\Program Files (x86)\Jump Flip
C:\Program Files (x86)\Common Files\DVDVideoSoft
C:\AeriaGames\EdenEternal
C:\Users\RafaelGAMING\Documents\DayZ
C:\Users\RafaelGAMING\AppData\Local\DayZ
    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run frst.exe (on 64bit, run frst64.exe) and press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) which you find where you saved FRST. Please post it to your reply.

 

 

 

Full System Scan with Malwarebytes Antimalware

  • If not existing, please download Malwarebytes' Anti-Malware to your desktop.
  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.


If the program is already installed:
  • Run Malwarebytes Antimalware
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform fullscan, place a checkmark on all hard drives, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad. Please save it to a convenient location.
  • The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
  • Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt
  • Post that log back here.


Proud Member of UNITE & TB
 

    Advertisements

Register to Remove

#11 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 26 February 2014 - 09:25 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 26-02-2014

Ran by RafaelGAMING at 2014-02-26 23:56:35 Run:2
Running from C:\Users\RafaelGAMING\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....rk6pQf3Xv&log=1
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Run: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\RunOnce: [RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv] - mshta.exe http://fgk.wudkenrk....vgT9mNrk6pQf3Xv
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\...\Policies\Explorer: []
CHR Extension: (Jump Flip) - C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf [2014-02-22]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-02-11]
CHR HKLM-x32\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2014-02-20]
 
S3 sjcst; C:\AeriaGames\EdenEternal\avital\sjcsu64.sys [86352 2014-01-19] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]
 
C:\Program Files (x86)\Jump Flip
C:\Program Files (x86)\Common Files\DVDVideoSoft
C:\AeriaGames\EdenEternal
C:\Users\RafaelGAMING\Documents\DayZ
C:\Users\RafaelGAMING\AppData\Local\DayZ
*****************
 
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\Software\Microsoft\Windows\CurrentVersion\Run\\SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv => Value deleted successfully.
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\Software\Microsoft\Windows\CurrentVersion\Run\\RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv => Value deleted successfully.
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv => Value deleted successfully.
HKU\S-1-5-21-3692048799-716141490-1008594922-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => Value deleted successfully.
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\hphehadppenpmajgnkjdcopcfijjegaf => Moved successfully.
HKCU\SOFTWARE\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp => Key deleted successfully.
C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\hphehadppenpmajgnkjdcopcfijjegaf => Key deleted successfully.
C:\Program Files (x86)\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx => Moved successfully.
sjcst => Service deleted successfully.
AppMgmt => Service deleted successfully.
X6va011 => Service deleted successfully.
X6va012 => Service deleted successfully.
C:\Program Files (x86)\Jump Flip => Moved successfully.
C:\Program Files (x86)\Common Files\DVDVideoSoft => Moved successfully.
C:\AeriaGames\EdenEternal => Moved successfully.
C:\Users\RafaelGAMING\Documents\DayZ => Moved successfully.
C:\Users\RafaelGAMING\AppData\Local\DayZ => Moved successfully.
 
==== End of Fixlog ====
 
 
 
 
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.02.20.05
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
RafaelGAMING :: RAFAELGAMING-PC [administrator]
 
26/02/2014 11:58:07 PM
mbam-log-2014-02-26 (23-58-07).txt
 
Scan type: Full scan (C:\|E:\|F:\|G:\|H:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 1037971
Time elapsed: 3 hour(s), 39 minute(s), 12 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv (Trojan.PMovie.Gen) -> Data: mshta.exe http://dan.yousndjf....rk6pQf3Xv&log=1 -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv (Trojan.PMovie.Gen) -> Data: mshta.exe http://dan.yousndjf....vgT9mNrk6pQf3Xv -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce|RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv (Trojan.PMovie.Gen) -> Data: mshta.exe http://dan.yousndjf....vgT9mNrk6pQf3Xv -> Quarantined and deleted successfully.
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 

#12 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 28 February 2014 - 05:43 AM

Combofix

Combofix should only be run when adviced by a team member!

Link


Important - Save the file to your desktop!


  • Deactivate any and all of your antivirus programs /spyware scanners - they can prevent CF from doing its work.
  • Run Combofix.exe


When finished, Combofix creates a log file named C:\Combofix.txt. Please post its content in your next reply.

Note: When receiving an error message containing ""Illegal operation attempted on a registry key that has been marked for deletion" simply restart your computer to fix this.


Proud Member of UNITE & TB
 

#13 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 02 March 2014 - 01:14 AM

ComboFix 14-02-24.02 - RafaelGAMING 02/03/2014  17:07:05.2.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.61.1033.18.16345.12448 [GMT 10:00]
Running from: c:\users\RafaelGAMING\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
- REDUCED FUNCTIONALITY MODE -
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\RafaelGAMING\AppData\Roaming\technic-launcher.jar
c:\windows\msvcr71.dll
c:\windows\SysWow64\DEBUG.log
.
.
(((((((((((((((((((((((((   Files Created from 2014-02-02 to 2014-03-02  )))))))))))))))))))))))))))))))
.
.
2073-04-13 07:17 . 2006-11-21 10:48 203576 ------w- c:\program files (x86)\Microsoft Games\Age of Empires III\autopatcher2.exe
2014-03-02 07:10 . 2014-03-02 07:10 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2014-03-02 07:10 . 2014-03-02 07:10 -------- d-----w- c:\users\hedev\AppData\Local\temp
2014-03-02 07:10 . 2014-03-02 07:10 -------- d-----w- c:\users\Guest\AppData\Local\temp
2014-03-02 07:10 . 2014-03-02 07:10 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-02 07:10 . 2014-03-02 07:10 -------- d-----w- c:\users\ADMIN\AppData\Local\temp
2014-03-02 07:03 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FDEF061D-7911-4C20-9425-294515C50BC7}\mpengine.dll
2014-03-01 12:47 . 2014-03-01 14:12 -------- d-----w- c:\users\RafaelGAMING\AppData\Roaming\ftblauncher
2014-03-01 09:25 . 2014-03-01 09:25 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2014-02-28 04:04 . 2014-02-28 04:05 -------- d-----w- c:\users\RafaelGAMING\AppData\Local\DayZ
2014-02-27 14:00 . 2014-02-20 06:18 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8BBA67D1-93B8-4FB4-BE83-309C91E058FD}\gapaengine.dll
2014-02-27 14:00 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-23 06:40 . 2014-02-23 06:40 16 ----a-w- c:\users\RafaelGAMING\AppData\Roaming\msregsvv.dll
2014-02-22 11:05 . 2013-12-18 11:09 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-02-20 21:37 . 2014-02-20 21:37 -------- d-----w- c:\program files (x86)\ESET
2014-02-19 05:55 . 2014-02-26 13:56 -------- d-----w- C:\FRST
2014-02-18 11:35 . 2014-03-01 12:26 -------- d-----w- c:\users\RafaelGAMING\AppData\Local\CrashDumps
2014-02-18 05:59 . 2014-02-18 05:59 -------- d-----w- c:\users\RafaelGAMING\AppData\Roaming\SUPERAntiSpyware.com
2014-02-18 05:59 . 2014-02-18 05:59 -------- d-----w- c:\program files\SUPERAntiSpyware
2014-02-18 05:59 . 2014-02-18 05:59 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2014-02-17 21:42 . 2014-02-17 21:42 -------- d-----w- c:\users\RafaelGAMING\AppData\Roaming\Malwarebytes
2014-02-17 21:39 . 2013-04-04 04:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-02-17 21:39 . 2014-02-17 21:39 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2014-02-16 20:40 . 2014-02-16 20:40 -------- d-----w- c:\users\RafaelGAMING\AppData\Local\Skyrim
2014-02-10 12:34 . 2014-02-10 12:34 -------- d-----w- c:\programdata\YTD Video Downloader
2014-02-04 05:38 . 2014-02-04 05:38 -------- d-----w- c:\users\RafaelGAMING\AppData\Local\Targem
2014-02-02 05:58 . 2014-02-02 05:58 -------- d-----w- c:\users\RafaelGAMING\AppData\Local\EdgeOfReality
2014-02-02 05:39 . 2014-02-02 05:40 -------- d-----w- c:\users\RafaelGAMING\AppData\Roaming\Ableton
2014-02-02 05:19 . 2014-02-02 05:19 -------- d-----w- c:\programdata\Ableton
2014-02-01 03:22 . 2014-02-01 03:22 -------- d-----w- c:\programdata\SetApp
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\UpdatusUser\AppData\Local\Google
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\UpdatusUser\AppData\Local\Comodo
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\RafaelGAMING\AppData\Local\Comodo
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\Guest\AppData\Local\Torch
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\Guest\AppData\Local\Comodo
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\ADMIN\AppData\Local\Comodo
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\programdata\19a04e83d58db913
2014-02-01 03:21 . 2014-02-18 21:07 -------- d-----w- c:\users\Administrator
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\Guest\AppData\Local\Google
2014-02-01 03:21 . 2014-02-01 03:21 -------- d-----w- c:\users\ADMIN\AppData\Local\Google
2014-01-31 23:47 . 2014-01-31 23:47 -------- d-----w- c:\programdata\FLEXnet
2014-01-31 23:35 . 2014-01-31 23:35 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2014-01-31 23:35 . 2014-01-31 23:46 -------- d-----w- c:\users\RafaelGAMING\AppData\Local\Autodesk
2014-01-31 23:33 . 2014-01-31 23:37 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2014-01-31 23:33 . 2014-01-31 23:37 -------- d-----w- c:\program files\Autodesk
2014-01-31 23:33 . 2014-01-31 23:33 -------- d-----w- c:\program files (x86)\Autodesk
2014-01-31 23:32 . 2014-01-31 23:37 -------- d-----w- c:\program files (x86)\Common Files\Autodesk Shared
2014-01-31 23:29 . 2014-01-31 23:47 -------- d-----w- c:\users\RafaelGAMING\AppData\Roaming\Autodesk
2014-01-31 23:29 . 2014-01-31 23:47 -------- d-----w- c:\programdata\Autodesk
2014-01-31 23:25 . 2014-01-31 23:25 -------- d-----w- C:\Autodesk
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-21 11:00 . 2012-09-28 04:05 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-21 11:00 . 2012-09-28 04:05 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-02-20 06:18 . 2012-10-02 17:12 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-01-29 10:10 . 2014-01-29 10:10 86768 ----a-w- c:\windows\system32\drivers\RAMDiskVE.sys
2014-01-27 08:02 . 2009-07-13 23:55 332288 ----a-w- c:\windows\system32\uxtheme.dll
2014-01-27 08:02 . 2010-11-21 03:23 2851840 ----a-w- c:\windows\system32\themeui.dll
2014-01-27 08:02 . 2009-07-13 23:54 44544 ----a-w- c:\windows\system32\themeservice.dll
2014-01-27 08:01 . 2009-07-13 23:39 245760 ----a-w- c:\windows\SysWow64\uxtheme.dll
2014-01-27 08:01 . 2010-11-21 03:24 2755072 ----a-w- c:\windows\SysWow64\themeui.dll
2014-01-19 07:33 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-12-30 08:39 . 2013-06-20 21:22 386680 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-12-21 07:45 . 2013-12-21 07:45 46368 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-27 11:26 220608 ----a-w- c:\users\RafaelGAMING\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-27 11:26 220608 ----a-w- c:\users\RafaelGAMING\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-27 11:26 220608 ----a-w- c:\users\RafaelGAMING\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SystemBootndIea4EZ9yICeexUWvgT9mNrk6pQf3Xv"="mshta.exe http://fxu.gocunddi....rk6pQf3Xv&log=1" [?]
"RegWritendIea4EZ9yICeexUWvgT9mNrk6pQf3Xv"="mshta.exe http://fxu.gocunddi....vgT9mNrk6pQf3Xv" [?]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2014-02-25 1821888]
"GoogleChromeAutoLaunch_60C5998B0F1615D70DA22AA057791F4A"="c:\users\RafaelGAMING\AppData\Local\Google\Chrome\Application\chrome.exe" [2014-02-20 859464]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-04-19 18678376]
"Akamai NetSession Interface"="c:\users\RafaelGAMING\AppData\Local\Akamai\netsession_win.exe" [2013-06-04 4489472]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2014-01-06 6563608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-01 254336]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2014-02-26 3814736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 {09BB444F-B2E2-4009-BAF2-7B727681223E};BuddyVM;c:\program files (x86)\VMLaunch\BuddyVM.sys;c:\program files (x86)\VMLaunch\BuddyVM.sys [x]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe;c:\program files (x86)\AVG\AVG2014\avgidsagent.exe [x]
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 vToolbarUpdater17.2.0;vToolbarUpdater17.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [x]
R3 2310_00;2310_00;c:\windows\system32\drivers\2310_00.sys;c:\windows\SYSNATIVE\drivers\2310_00.sys [x]
R3 272x_1x;272x_1x;c:\windows\system32\drivers\272x_1x.sys;c:\windows\SYSNATIVE\drivers\272x_1x.sys [x]
R3 274x_3x;274x_3x;c:\windows\system32\drivers\274x_3x.sys;c:\windows\SYSNATIVE\drivers\274x_3x.sys [x]
R3 ahcix64;ahcix64;c:\windows\system32\drivers\ahcix64.sys;c:\windows\SYSNATIVE\drivers\ahcix64.sys [x]
R3 ahcix64s;ahcix64s;c:\windows\system32\drivers\ahcix64s.sys;c:\windows\SYSNATIVE\drivers\ahcix64s.sys [x]
R3 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
R3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\drivers\amdhub30.sys;c:\windows\SYSNATIVE\drivers\amdhub30.sys [x]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\drivers\amdxhc.sys;c:\windows\SYSNATIVE\drivers\amdxhc.sys [x]
R3 arcm_a64;arcm_a64;c:\windows\system32\drivers\arcm_a64.sys;c:\windows\SYSNATIVE\drivers\arcm_a64.sys [x]
R3 asahci64;asahci64;c:\windows\system32\drivers\asahci64.sys;c:\windows\SYSNATIVE\drivers\asahci64.sys [x]
R3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\drivers\asmthub3.sys;c:\windows\SYSNATIVE\drivers\asmthub3.sys [x]
R3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\drivers\asmtxhci.sys;c:\windows\SYSNATIVE\drivers\asmtxhci.sys [x]
R3 b06diag;Broadcom NetXtreme II Diag Driver;c:\windows\system32\drivers\bxdiaga.sys;c:\windows\SYSNATIVE\drivers\bxdiaga.sys [x]
R3 BFN7x64;Bigfoot Networks Killer Gaming Service;c:\windows\system32\drivers\Xeno7x64.sys;c:\windows\SYSNATIVE\drivers\Xeno7x64.sys [x]
R3 BFNVis64;Bigfoot Networks Killer Gaming Service;c:\windows\system32\drivers\XenoVa64.sys;c:\windows\SYSNATIVE\drivers\XenoVa64.sys [x]
R3 bxfcoe;bxfcoe;c:\windows\system32\drivers\bxfcoe.sys;c:\windows\SYSNATIVE\drivers\bxfcoe.sys [x]
R3 bxois;bxois;c:\windows\system32\drivers\bxois.sys;c:\windows\SYSNATIVE\drivers\bxois.sys [x]
R3 cbaf;UWB Cable Based Association Framework Driver;c:\windows\System32\Drivers\cbaf.sys;c:\windows\SYSNATIVE\Drivers\cbaf.sys [x]
R3 DC133;DC133;c:\windows\system32\drivers\DC133.sys;c:\windows\SYSNATIVE\drivers\DC133.sys [x]
R3 DC150;DC150;c:\windows\system32\drivers\DC150.sys;c:\windows\SYSNATIVE\drivers\DC150.sys [x]
R3 DC154;DC154;c:\windows\system32\drivers\DC154.sys;c:\windows\SYSNATIVE\drivers\DC154.sys [x]
R3 DC300e;DC300e;c:\windows\system32\drivers\DC300e.sys;c:\windows\SYSNATIVE\drivers\DC300e.sys [x]
R3 DC4300;DC4300;c:\windows\system32\drivers\DC4300.sys;c:\windows\SYSNATIVE\drivers\DC4300.sys [x]
R3 DC600e;DC600e;c:\windows\system32\drivers\DC600e.sys;c:\windows\SYSNATIVE\drivers\DC600e.sys [x]
R3 dfuuwb;Intel Wireless UWB Link 1480M Device Firmware Utility;c:\windows\System32\Drivers\DfuUWB.sys;c:\windows\SYSNATIVE\Drivers\DfuUWB.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\System32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\System32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\drivers\FLxHCIc.sys;c:\windows\SYSNATIVE\drivers\FLxHCIc.sys [x]
R3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\drivers\FLxHCIh.sys;c:\windows\SYSNATIVE\drivers\FLxHCIh.sys [x]
R3 FTT3s;FTT3s;c:\windows\system32\drivers\FTT3s.sys;c:\windows\SYSNATIVE\drivers\FTT3s.sys [x]
R3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys;c:\windows\SYSNATIVE\drivers\HECIx64.sys [x]
R3 hptiop;hptiop;c:\windows\system32\drivers\hptiop.sys;c:\windows\SYSNATIVE\drivers\hptiop.sys [x]
R3 hptmv;hptmv;c:\windows\system32\drivers\hptmv.sys;c:\windows\SYSNATIVE\drivers\hptmv.sys [x]
R3 hptmv6;hptmv6;c:\windows\system32\drivers\hptmv6.sys;c:\windows\SYSNATIVE\drivers\hptmv6.sys [x]
R3 HWA;Intel® Wireless USB Host Adapter;c:\windows\System32\Drivers\HWA.sys;c:\windows\SYSNATIVE\Drivers\HWA.sys [x]
R3 IAMTVE;Driver for Intel® Active Management Technology - KCS;c:\windows\system32\drivers\IAMTVE.sys;c:\windows\SYSNATIVE\drivers\IAMTVE.sys [x]
R3 IAMTXPE;Driver for Intel® Active Management Technology - KCS;c:\windows\system32\drivers\IAMTXPE.sys;c:\windows\SYSNATIVE\drivers\IAMTXPE.sys [x]
R3 iaStorA;iaStorA;c:\windows\system32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
R3 iaStorS;iaStorS;c:\windows\system32\drivers\iaStorS.sys;c:\windows\SYSNATIVE\drivers\iaStorS.sys [x]
R3 IFCoEMP;IFCoEMP;c:\windows\system32\drivers\ifM60x64.sys;c:\windows\SYSNATIVE\drivers\ifM60x64.sys [x]
R3 IFCoEVB;IFCoEVB;c:\windows\system32\drivers\ifP60X64.sys;c:\windows\SYSNATIVE\drivers\ifP60X64.sys [x]
R3 ioatdma1;ioatdma1;c:\windows\System32\Drivers\qd162x64.sys;c:\windows\SYSNATIVE\Drivers\qd162x64.sys [x]
R3 ioatdma2;Intel® QuickData Technology device ver.2;c:\windows\System32\Drivers\qd260x64.sys;c:\windows\SYSNATIVE\Drivers\qd260x64.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.130\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.130\McCHSvc.exe [x]
R3 megasas2;megasas2;c:\windows\system32\drivers\megasas2.sys;c:\windows\SYSNATIVE\drivers\megasas2.sys [x]
R3 MegaSR1;MegaSR1;c:\windows\system32\drivers\MegaSR1.sys;c:\windows\SYSNATIVE\drivers\MegaSR1.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys;c:\windows\SYSNATIVE\drivers\mv61xx.sys [x]
R3 mv64xx;mv64xx;c:\windows\system32\drivers\mv64xx.sys;c:\windows\SYSNATIVE\drivers\mv64xx.sys [x]
R3 mv91cons;mv91cons;c:\windows\system32\drivers\mv91cons.sys;c:\windows\SYSNATIVE\drivers\mv91cons.sys [x]
R3 mv91xx;mv91xx;c:\windows\system32\drivers\mv91xx.sys;c:\windows\SYSNATIVE\drivers\mv91xx.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;c:\windows\system32\drivers\nvstusb.sys;c:\windows\SYSNATIVE\drivers\nvstusb.sys [x]
R3 percsas2;percsas2;c:\windows\system32\drivers\percsas2.sys;c:\windows\SYSNATIVE\drivers\percsas2.sys [x]
R3 Pnp680;Pnp680;c:\windows\system32\drivers\pnp680.sys;c:\windows\SYSNATIVE\drivers\pnp680.sys [x]
R3 rr172x;rr172x;c:\windows\system32\drivers\rr172x.sys;c:\windows\SYSNATIVE\drivers\rr172x.sys [x]
R3 rr174x;rr174x;c:\windows\system32\drivers\rr174x.sys;c:\windows\SYSNATIVE\drivers\rr174x.sys [x]
R3 rr2210;rr2210;c:\windows\system32\drivers\rr2210.sys;c:\windows\SYSNATIVE\drivers\rr2210.sys [x]
R3 rr232x;rr232x;c:\windows\system32\drivers\rr232x.sys;c:\windows\SYSNATIVE\drivers\rr232x.sys [x]
R3 rr2340;rr2340;c:\windows\system32\drivers\rr2340.sys;c:\windows\SYSNATIVE\drivers\rr2340.sys [x]
R3 rr2522;rr2522;c:\windows\system32\drivers\rr2522.sys;c:\windows\SYSNATIVE\drivers\rr2522.sys [x]
R3 rr276x;rr276x;c:\windows\system32\drivers\rr276x.sys;c:\windows\SYSNATIVE\drivers\rr276x.sys [x]
R3 rr278x;rr278x;c:\windows\system32\drivers\rr278x.sys;c:\windows\SYSNATIVE\drivers\rr278x.sys [x]
R3 rr62x;rr62x;c:\windows\system32\drivers\rr62x.sys;c:\windows\SYSNATIVE\drivers\rr62x.sys [x]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0);c:\windows\system32\drivers\rusb3hub.sys;c:\windows\SYSNATIVE\drivers\rusb3hub.sys [x]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0);c:\windows\system32\drivers\rusb3xhc.sys;c:\windows\SYSNATIVE\drivers\rusb3xhc.sys [x]
R3 SI3112r;SI3112r;c:\windows\system32\drivers\SI3112r.sys;c:\windows\SYSNATIVE\drivers\SI3112r.sys [x]
R3 SI3114;SI3114;c:\windows\system32\drivers\SI3114.sys;c:\windows\SYSNATIVE\drivers\SI3114.sys [x]
R3 SI3124;SI3124;c:\windows\system32\drivers\SI3124.sys;c:\windows\SYSNATIVE\drivers\SI3124.sys [x]
R3 Si3124r5;Si3124r5;c:\windows\system32\drivers\Si3124r5.sys;c:\windows\SYSNATIVE\drivers\Si3124r5.sys [x]
R3 Si3531;Si3531;c:\windows\system32\drivers\Si3531.sys;c:\windows\SYSNATIVE\drivers\Si3531.sys [x]
R3 tihub3;TI USB3 Hub Service;c:\windows\system32\drivers\tihub3.sys;c:\windows\SYSNATIVE\drivers\tihub3.sys [x]
R3 tixhci;TI XHCI Service;c:\windows\system32\drivers\tixhci.sys;c:\windows\SYSNATIVE\drivers\tixhci.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 uwbusb;UWB Bus Control USB-Miniport Driver;c:\windows\System32\Drivers\usbuwbmini.sys;c:\windows\SYSNATIVE\Drivers\usbuwbmini.sys [x]
R3 viamrx64;viamrx64;c:\windows\system32\drivers\viamrx64.sys;c:\windows\SYSNATIVE\drivers\viamrx64.sys [x]
R3 videX64;videX64;c:\windows\system32\drivers\videX64.sys;c:\windows\SYSNATIVE\drivers\videX64.sys [x]
R3 vmci;VMware VMCI Bus Driver;c:\windows\system32\drivers\vmci.sys;c:\windows\SYSNATIVE\drivers\vmci.sys [x]
R3 VUSB3HUB;VIA USB 3 Root Hub Service;c:\windows\system32\drivers\ViaHub3.sys;c:\windows\SYSNATIVE\drivers\ViaHub3.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
R3 xhcdrv;VIA USB eXtensible Host Controller Service;c:\windows\system32\drivers\xhcdrv.sys;c:\windows\SYSNATIVE\drivers\xhcdrv.sys [x]
R3 xsherlock;xsherlock;c:\windows\system32\xsherlock.xem;c:\windows\SYSNATIVE\xsherlock.xem [x]
R4 RAMDiskVE;RAMDiskVE;c:\windows\system32\Drivers\RAMDiskVE.sys;c:\windows\SYSNATIVE\Drivers\RAMDiskVE.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 DC324e;DC324e;c:\windows\system32\drivers\DC324e.sys;c:\windows\SYSNATIVE\drivers\DC324e.sys [x]
S0 DC3410;DC3410;c:\windows\system32\drivers\DC3410.sys;c:\windows\SYSNATIVE\drivers\DC3410.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\drivers\iaStorF.sys;c:\windows\SYSNATIVE\drivers\iaStorF.sys [x]
S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;c:\windows\system32\drivers\iusb3hcs.sys;c:\windows\SYSNATIVE\drivers\iusb3hcs.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 xfiltx64;VIA SATA IDE Hot-plug Driver;c:\windows\system32\drivers\xfiltx64.sys;c:\windows\SYSNATIVE\drivers\xfiltx64.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2014\avgwdsvc.exe [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe;c:\windows\SYSNATIVE\viakaraokesrv.exe [x]
S3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys;c:\windows\SYSNATIVE\DRIVERS\vrtaucbl.sys [x]
S3 hxsyol;hxsyol;c:\aeriagames\AuraKingdom\avital\hxsy64.sys;c:\aeriagames\AuraKingdom\avital\hxsy64.sys [x]
S3 iusb3hub;Intel® USB 3.0 Hub Driver;c:\windows\system32\drivers\iusb3hub.sys;c:\windows\SYSNATIVE\drivers\iusb3hub.sys [x]
S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\drivers\iusb3xhc.sys;c:\windows\SYSNATIVE\drivers\iusb3xhc.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192Ce.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys;c:\windows\SYSNATIVE\drivers\usbfilter.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2014-03-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-28 11:00]
.
2014-03-01 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job
- c:\users\RafaelGAMING\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-06 11:47]
.
2014-03-02 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job
- c:\users\RafaelGAMING\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-06 11:47]
.
2014-03-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30 09:27]
.
2014-03-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-11-30 09:27]
.
2014-03-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001Core.job
- c:\users\RafaelGAMING\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-27 07:20]
.
2014-03-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3692048799-716141490-1008594922-1001UA.job
- c:\users\RafaelGAMING\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-27 07:20]
.
2014-03-02 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task c53acb57-956a-499b-8bbe-7b47dd89922c.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2013-11-07 20:08]
.
2014-03-01 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task dc8ef805-9d10-4cf9-bb6d-ffb64f1667cf.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2013-11-07 20:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-07-31 12:36 3359088 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-07-31 12:36 3359088 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-07-31 12:36 3359088 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-27 11:26 244672 ----a-w- c:\users\RafaelGAMING\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-27 11:26 244672 ----a-w- c:\users\RafaelGAMING\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-27 11:26 244672 ----a-w- c:\users\RafaelGAMING\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-01-30 05:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-01-30 05:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-01-30 05:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-01-30 05:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-01-30 05:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-10-18 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-10-18 1063200]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2012-02-05 415680]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local;<local>
IE: E&xport to Microsoft Excel - c:\progra~2\MIF5BA~1\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: Se&nd to OneNote - c:\progra~2\MIF5BA~1\Office14\ONBttnIE.dll/105
Trusted Zone: aeriagames.com
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\RafaelGAMING\AppData\Roaming\Mozilla\Firefox\Profiles\l9903zog.default\
FF - prefs.js: browser.startup.homepage - hxxp://mysearch.avg.com?cid={56A1AB89-4FD2-46EB-B23A-BEA1E6A54FF6}&mid=1f9cb1683c9347d08f82416272f92a57-de24b43e3d9c04bcad79ea9cf4ccc4ec82497233&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 17:45&v=17.2.0.38&pid=safeguard&sg=&sap=hp
FF - prefs.js: keyword.URL - 
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-Algematics - c:\program files (x86)\Algematics\UNINST.EXE
AddRemove-Cube World - July 23, 2013July 23, 2013 - c:\program files (x86)\1-click run\Cube World - July 23
AddRemove-Eden Eternal - c:\aeriagames\EdenEternal\Uninst.exe
AddRemove-Free YouTube Download_is1 - c:\program files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe
AddRemove-Halo CE - c:\program files (x86)\Microsoft Games\Halo Custom Edition\Uninstal.exe
AddRemove-Pixillion - c:\program files (x86)\NCH Software\Pixillion\pixillion.exe
AddRemove-PunkBusterSvc - c:\program files (x86)\Origin Games\Battlefield 4 Beta\pbsvc.exe
AddRemove-Switch - c:\program files (x86)\NCH Software\Switch\switch.exe
AddRemove-{1a413f37-ed88-4fec-9666-5c48dc4b7bb7} - c:\program files (x86)\GreenTree Applications\YTD Video Downloader\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\xsherlock]
"ImagePath"="c:\windows\system32\xsherlock.xem"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}"=hex:51,66,7a,6c,4c,1d,38,12,c3,8a,99,
   0a,e5,db,85,05,f2,8b,4b,7e,f2,58,2e,15
"{6DB9FDFE-B718-4962-BE0C-0A5FCE7F7F7B}"=hex:51,66,7a,6c,4c,1d,38,12,90,fe,aa,
   69,2a,f9,0c,0c,c1,1a,49,1f,cb,21,3b,6f
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
   72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
   94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
   b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
   df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16,
   fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17
"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,
   b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:db,0f,1f,9b,cf,06,cf,01
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ae,6f,b1,1c,b5,d4,ce,4d,a7,21,98,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ae,6f,b1,1c,b5,d4,ce,4d,a7,21,98,\
.
[HKEY_USERS\S-1-5-21-3692048799-716141490-1008594922-1001\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:67,58,7c,a4,76,6d,7f,ab,4b,49,97,e3,09,4c,eb,2d,60,7d,63,c5,3e,10,31,
   92,ce,17,a9,3b,a2,9f,ef,67,4e,9e,46,f1,57,2f,57,93,76,cc,40,0c,5a,e7,4f,b4,\
"??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d
.
[HKEY_USERS\S-1-5-21-3692048799-716141490-1008594922-1001\Software\SecuROM\License information*]
"datasecu"=hex:a8,bb,70,e9,47,c7,3b,87,b6,61,93,8a,cd,de,0b,db,bd,b2,83,37,e3,
   1b,8b,70,d4,98,0b,42,55,c9,38,ca,64,8d,be,6e,f6,43,c9,df,5b,2c,19,18,2b,a4,\
"rkeysecu"=hex:d1,f0,de,24,4c,58,5d,c3,5f,90,a1,74,18,3f,44,b6
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2014-03-02  17:13:36
ComboFix-quarantined-files.txt  2014-03-02 07:13
ComboFix2.txt  2014-02-18 07:16
.
Pre-Run: 162,933,653,504 bytes free
Post-Run: 162,794,577,920 bytes free
.
- - End Of File - - EA8A9F9DD027585F1B0B5F033F11904B

#14 ----------------

----------------

    SuperMember

  • Authentic Member
  • PipPipPipPipPip
  • 1,095 posts

Posted 02 March 2014 - 08:05 AM

Scan with ESET Online Scan

Please go to here to run the online scannner from ESET.

  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings and ensure these options are ticked:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click Scan
  • Wait for the scan to finish
  • If any threats were found, click the 'List of found threats' , then click Export to text file....
  • Save it to your desktop, then please copy and paste that log as a reply to this topic.


Proud Member of UNITE & TB
 

#15 hoteret

hoteret

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 06 March 2014 - 12:01 AM

C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\DaemonProcess.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\Mobogenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\New_UpdateMoboGenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mobogenie\UpdateMoboGenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Pixillion\pixillion.exe.vir probably a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Pixillion\pixillionsetup_v2.59.exe.vir probably a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Switch\switch.exe.vir a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\NCH Software\Switch\switchsetup_v4.47.exe.vir a variant of Win32/Toolbar.Conduit.H potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProCrash.dll.vir a variant of Win32/SProtector.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptProLauncher.exe.vir a variant of Win32/AdWare.SpeedingUpMyPC.D application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Default\Extensions\dknkjnkhedbanphkkpbpcgoblmkbfhlf\10.22.3.518_0\TBHostSupport\TBHostSupport.dll.vir a variant of Win32/Toolbar.Conduit.AA potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\DaemonProcess.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\Mobogenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\RafaelGAMING\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\New_UpdateMoboGenie.exe.vir a variant of Win32/Mobogenie.A potentially unwanted application
C:\FRST\Quarantine\hphehadppenpmajgnkjdcopcfijjegaf20-02-2014_06-36-34\1.0.0_0\background.js Win32/BrowseFox.B potentially unwanted application
C:\FRST\Quarantine\hphehadppenpmajgnkjdcopcfijjegaf20-02-2014_06-36-34\1.0.0_0\content.js Win32/BrowseFox.B potentially unwanted application
C:\FRST\Quarantine\hphehadppenpmajgnkjdcopcfijjegaf26-02-2014_23-56-35\1.0.0_0\background.js Win32/BrowseFox.B potentially unwanted application
C:\FRST\Quarantine\hphehadppenpmajgnkjdcopcfijjegaf26-02-2014_23-56-35\1.0.0_0\content.js Win32/BrowseFox.B potentially unwanted application
C:\FRST\Quarantine\Jump Flip20-02-2014_06-36-34\JumpFlipUninstall.exe Win32/BrowseFox.C potentially unwanted application
C:\FRST\Quarantine\Jump Flip20-02-2014_06-36-34\bin\JumpFlipBrowserFilter.exe a variant of MSIL/BrowseFox.B potentially unwanted application
C:\Program Files (x86)\Cheat Engine 6.2\cheatengine-i386.exe a variant of Win32/HackTool.CheatEngine.AB potentially unsafe application
C:\Program Files (x86)\Cheat Engine 6.2\standalonephase1.dat a variant of Win32/HackTool.CheatEngine.AF potentially unsafe application
C:\Program Files (x86)\SimpleFiles\uninstall.exe a variant of Win32/ExpressDownloader.H potentially unwanted application
C:\Users\RafaelGAMING\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apnpfcegijiidalnoeeigipepclpljgh\1.1.3_0\cnt.js Win32/Adware.MultiPlug.H application
C:\Users\RafaelGAMING\Downloads\dfsetup216.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\RafaelGAMING\Downloads\switchsetup.exe a variant of Win32/Toolbar.Conduit.H potentially unwanted application

Related Topics

Back to Virus, Spyware & Malware Removal · Next Unread Topic →

Also tagged with one or more of these keywords: mshta

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. What the Tech
  2. Spyware / Malware / Virus Removal
  3. Virus, Spyware & Malware Removal
  4. Privacy Policy
  5. Terms of Use ·