Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

RegSvr32 error message on boot up - module failed to load [Solved]

Started by rav3n82 , Apr 07 2014 08:01 AM

regsvr32 module failed to load

This topic is locked

#1
rav3n82

Posted 07 April 2014 - 08:01 AM

Member

Member
13 posts

Greetings, I have recently come to receive the below RegSvr32 error message each time I boot up my PC. I have tried scanning with both Avast and Malwarebytes, but they could not remove this nuisance.

"The module 'C:/Users/Teoh Khai Siang/AppData/Local/U.../ParamBlk2.dll' failed to load. Make sure the binary is stored at the specific path or debug it to check for problems with the binary or dependent .DLL files. The specified module could not be found.

Since the problem I have encountered is of an almost similar nature with what was reported here earlier: http://www.geekstogo...failed-to-load/, I have run the Farbar Recovery Scan Tool in advance and have attached the logs for both FRST.txt and Addition.txt to save some time (yes I am also of a different time zone ).

Appreciate any help to resolve this problem.

Thanks!

Here are the results from the OTL scan:

OTL logfile created on: 4/7/2014 9:08:37 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Teoh Khai Siang\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.98 Gb Total Physical Memory | 5.68 Gb Available Physical Memory | 71.18% Memory free
15.95 Gb Paging File | 13.67 Gb Available in Paging File | 85.69% Paging File free
Paging file location(s): e:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111.69 Gb Total Space | 58.54 Gb Free Space | 52.41% Space Free | Partition Type: NTFS
Drive D: | 931.51 Gb Total Space | 407.55 Gb Free Space | 43.75% Space Free | Partition Type: NTFS
Drive E: | 931.51 Gb Total Space | 492.53 Gb Free Space | 52.87% Space Free | Partition Type: NTFS
Drive H: | 29.80 Gb Total Space | 15.16 Gb Free Space | 50.86% Space Free | Partition Type: FAT32

Computer Name: TEOHKHAISIANG | User Name: Teoh Khai Siang | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/04/07 14:54:48 | 001,426,178 | ---- | M] () -- C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
PRC - [2014/04/07 11:43:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Teoh Khai Siang\Desktop\OTL.exe
PRC - [2014/04/06 16:51:38 | 003,854,640 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014/04/06 16:51:38 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/03/07 13:39:00 | 000,444,760 | ---- | M] (Razer Inc.) -- C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
PRC - [2014/02/05 17:32:47 | 002,234,144 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014/02/05 17:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2013/12/19 02:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/06/28 17:56:24 | 000,733,184 | ---- | M] () -- C:\Users\Teoh Khai Siang\My Documents\GIGABYTE\AIVIA GHOST\Tilt.exe
PRC - [2013/02/05 10:10:48 | 000,581,624 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe
PRC - [2013/02/05 10:10:46 | 000,046,072 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe
PRC - [2012/12/24 10:25:22 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012/10/25 16:19:46 | 000,846,848 | ---- | M] () -- C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
PRC - [2012/09/18 15:41:02 | 000,191,488 | ---- | M] () -- C:\Users\Teoh Khai Siang\My Documents\GIGABYTE\AIVIA GHOST\GHOSTOPEN.exe
PRC - [2012/05/31 16:11:02 | 000,065,296 | ---- | M] (Greatis Software, LLC) -- C:\Program Files (x86)\BootRacer\BootRacerServ.exe
PRC - [2012/02/15 00:39:36 | 030,705,792 | ---- | M] (Gemalto N.V.) -- C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk\SanDiskSecureAccess_Manager.exe
PRC - [2011/09/16 14:39:24 | 000,115,048 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2009/07/20 11:51:52 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe

========== Modules (No Company Name) ==========

MOD - [2014/04/07 14:54:48 | 001,426,178 | ---- | M] () -- C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
MOD - [2014/02/13 21:42:33 | 000,399,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\b6c7a1ca929c1b10f36b683c9f1a0517\System.Xml.Linq.ni.dll
MOD - [2014/02/13 21:42:17 | 000,190,976 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\75b6a68103e1b76063d9f69b8275ae61\UIAutomationTypes.ni.dll
MOD - [2014/02/13 21:42:16 | 000,018,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\47e7fc401facd4a5d3f2237f16948f36\PresentationFramework-SystemXml.ni.dll
MOD - [2014/02/13 21:42:16 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio4b37ff64#\0d3cb1df8b6af32cebdc6e2cc4948c69\PresentationFramework-SystemXmlLinq.ni.dll
MOD - [2014/02/13 21:30:32 | 018,813,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\a4b45c44490c75bc2fb22780e7ef087d\PresentationFramework.ni.dll
MOD - [2014/02/13 21:30:23 | 011,025,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\a74542efbeb46445949a39026c501132\PresentationCore.ni.dll
MOD - [2014/02/13 21:30:22 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f4f6ee0df2aa4189bf36e6335cb92761\System.Windows.Forms.ni.dll
MOD - [2014/02/13 21:30:19 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dce99d8de14d8a015313db98c72552ee\System.Core.ni.dll
MOD - [2014/02/13 21:30:18 | 007,662,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll
MOD - [2014/02/13 21:30:18 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\3fe705796c6a41d4889d9001d1c56af8\System.Xaml.ni.dll
MOD - [2014/02/13 21:30:17 | 001,180,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\0893e0e7137e3b2da905da6216b75344\System.Management.ni.dll
MOD - [2014/02/13 21:30:16 | 003,950,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\acf97bfe2a931d4a47253b26b7218991\WindowsBase.ni.dll
MOD - [2014/02/13 21:30:16 | 002,825,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll
MOD - [2014/02/13 21:30:16 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll
MOD - [2014/02/13 21:30:15 | 000,806,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\34b53ecafa1d7ccc7ca961d722b5d983\System.ServiceModel.Internals.ni.dll
MOD - [2014/02/13 21:30:15 | 000,122,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\78652b7fa68ee058bff6a118c657f565\SMDiagnostics.ni.dll
MOD - [2014/02/13 21:30:14 | 010,060,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll
MOD - [2014/02/13 21:30:14 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\bbc48ec4245e502ae19b0601d3799c9e\System.Configuration.ni.dll
MOD - [2014/02/13 21:30:14 | 000,470,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\75f8bc4cf08030c4a53b6d5e0ae20046\PresentationFramework.Aero.ni.dll
MOD - [2014/02/13 21:30:10 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
MOD - [2013/11/23 12:31:58 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/06/28 17:56:24 | 000,733,184 | ---- | M] () -- C:\Users\Teoh Khai Siang\My Documents\GIGABYTE\AIVIA GHOST\Tilt.exe
MOD - [2013/02/05 10:11:18 | 000,465,824 | ---- | M] () -- C:\Program Files (x86)\NTI\NTI Backup Now EZ\sqlite3.dll
MOD - [2012/10/25 16:19:46 | 000,846,848 | ---- | M] () -- C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
MOD - [2012/10/25 16:19:44 | 001,411,072 | ---- | M] () -- C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
MOD - [2012/10/25 16:19:34 | 000,293,376 | ---- | M] () -- C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRtl.dll
MOD - [2012/10/25 16:19:34 | 000,193,024 | ---- | M] () -- C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
MOD - [2012/09/18 15:41:02 | 000,191,488 | ---- | M] () -- C:\Users\Teoh Khai Siang\My Documents\GIGABYTE\AIVIA GHOST\GHOSTOPEN.exe
MOD - [2012/02/15 07:37:52 | 011,796,096 | ---- | M] () -- C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk\My Vaults\dmBackup.dll

========== Services (SafeList) ==========

SRV:64bit: - [2014/04/06 16:51:38 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2014/03/01 12:33:34 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/02/05 17:32:24 | 016,941,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013/05/27 13:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012/09/06 01:53:46 | 000,170,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel®
SRV - [2014/03/15 17:36:17 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/02/28 02:41:42 | 000,520,416 | ---- | M] (Futuremark) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2014/02/05 17:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2013/12/19 02:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/09/11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2013/06/12 06:08:26 | 000,903,456 | ---- | M] (Cloud Engines, Inc.) [Auto | Running] -- C:\Program Files (x86)\PogoplugPC\hbadmin.exe -- (HBAdmin)
SRV - [2013/02/05 10:10:46 | 000,046,072 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe -- (NTI BackupNowEZSvr)
SRV - [2013/02/04 17:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/12/24 10:25:22 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/05/31 16:11:02 | 000,065,296 | ---- | M] (Greatis Software, LLC) [Auto | Running] -- C:\Program Files (x86)\BootRacer\BootRacerServ.exe -- (BootRacerServ)
SRV - [2009/07/20 11:51:52 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/06/11 05:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2014/04/06 16:51:39 | 001,039,096 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014/04/06 16:51:39 | 000,423,240 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014/04/06 16:51:39 | 000,208,928 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014/04/06 16:51:39 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014/04/06 16:51:39 | 000,084,816 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aswstm.sys -- (aswStm)
DRV:64bit: - [2014/04/06 16:51:39 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014/04/06 16:51:39 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014/04/03 21:39:20 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2014/04/03 21:39:20 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2014/01/22 08:52:10 | 000,108,800 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2013/12/28 02:42:26 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013/11/15 14:37:16 | 000,039,080 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzendpt.sys -- (rzendpt)
DRV:64bit: - [2013/11/15 14:37:14 | 000,149,160 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzudd.sys -- (rzudd)
DRV:64bit: - [2013/10/28 01:12:12 | 000,204,568 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2013/03/01 03:58:14 | 000,039,712 | ---- | M] (Cloud Engines, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xcetap0.sys -- (xcetap0)
DRV:64bit: - [2012/10/29 08:21:40 | 000,990,864 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtwlanu.sys -- (RTL8192cu)
DRV:64bit: - [2012/10/03 06:26:46 | 000,066,360 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LGSHidFilt.Sys -- (LGSHidFilt)
DRV:64bit: - [2012/08/11 06:44:16 | 000,482,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress)
DRV:64bit: - [2012/03/01 14:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/10/25 09:57:38 | 000,213,504 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/10/25 09:57:38 | 000,096,768 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/10/14 15:24:16 | 000,025,600 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\KYEKBPRO.sys -- (KYEKBPRO)
DRV:64bit: - [2011/04/20 03:07:48 | 001,930,240 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athurx.sys -- (athur)
DRV:64bit: - [2011/03/11 14:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 14:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/21 11:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 11:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 11:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2009/11/24 09:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid)
DRV:64bit: - [2009/11/24 09:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:64bit: - [2009/07/14 09:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 09:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 09:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/11 04:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/11 04:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/11 04:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/11 04:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/05 16:46:08 | 000,018,432 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2009/05/05 16:46:08 | 000,016,896 | ---- | M] (NewTech Infosystems Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV - [2009/07/14 09:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://malaysia.msn....MY&dcc=MY&opt=0
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E9 65 F6 DA 29 3A CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE11SR
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www1.delta-se...66B647002239141
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll File not found

[2013/04/15 22:52:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions

O1 HOSTS File: ([2013/07/11 22:52:17 | 000,000,856 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 acdid.acdsystems.com
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BackupNowEZtray] C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe (NTI Corporation)
O4 - HKLM..\Run: [ghost] C:\Users\Teoh Khai Siang\My Documents\GIGABYTE\AIVIA GHOST\GHOSTOPEN.exe ()
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Razer Synapse] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc.)
O4 - HKLM..\Run: [Tilt] C:\Users\Teoh Khai Siang\My Documents\GIGABYTE\AIVIA GHOST\Tilt.exe ()
O4 - HKCU..\Run: [PogoplugPC] C:\Program Files (x86)\PogoplugPC\ppserver.exe (Cloud Engines, Inc.)
O4 - HKCU..\Run: [SanDiskSecureAccess_Manager.exe] C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk\SanDiskSecureAccess_Manager.exe (Gemalto N.V.)
O4 - HKCU..\Run: [Uddgmedia] C:\Windows\SysWow64\regsvr32.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BootRacer = "C:\Program Files (x86)\BootRacer\Bootrace.exe" /2 (Greatis Software)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 122.255.99.228 122.255.99.236
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{07ECC0F9-3973-4025-855B-BD41068A541E}: DhcpNameServer = 122.255.99.228 122.255.99.236
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{07ECC0F9-3973-4025-855B-BD41068A541E}: NameServer = 122.255.99.236,122.255.99.228
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{656E27BD-FBE5-4DD7-A093-63FAC2420158}: DhcpNameServer = 122.255.99.236 122.255.99.228
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{471e9465-6a26-11e2-ae3a-002215a9f666}\Shell - "" = AutoRun
O33 - MountPoints2\{471e9465-6a26-11e2-ae3a-002215a9f666}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{471e947f-6a26-11e2-ae3a-002215a9f666}\Shell - "" = AutoRun
O33 - MountPoints2\{471e947f-6a26-11e2-ae3a-002215a9f666}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{e26de56e-bb30-11e3-a68f-002215a9f666}\Shell - "" = AutoRun
O33 - MountPoints2\{e26de56e-bb30-11e3-a68f-002215a9f666}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{ed2db96b-4e38-11e2-a250-002215a9f666}\Shell - "" = AutoRun
O33 - MountPoints2\{ed2db96b-4e38-11e2-a250-002215a9f666}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/04/07 21:09:20 | 002,157,056 | ---- | C] (Farbar) -- C:\Users\Teoh Khai Siang\Desktop\FRST64.exe
[2014/04/07 21:09:19 | 001,016,261 | ---- | C] (Thisisu) -- C:\Users\Teoh Khai Siang\Desktop\JRT.exe
[2014/04/07 21:08:27 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Teoh Khai Siang\Desktop\OTL.exe
[2014/04/07 21:06:22 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/04/06 20:06:24 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Apple Computer
[2014/04/06 19:44:39 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2014/04/06 19:44:36 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\IObit
[2014/04/06 19:44:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2014/04/06 19:40:48 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Solvusoft
[2014/04/06 19:40:47 | 000,019,888 | ---- | C] (solvusoft) -- C:\Windows\SysNative\roboot64.exe
[2014/04/06 19:40:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinThruster
[2014/04/06 16:51:39 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014/04/04 06:44:04 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\.mono
[2014/04/04 06:44:04 | 000,000,000 | ---D | C] -- C:\ProgramData\.mono
[2014/04/03 21:39:20 | 000,027,760 | ---- | C] (Sony Ericsson Mobile Communications) -- C:\Windows\SysNative\drivers\ggsemc.sys
[2014/04/03 21:39:20 | 000,014,448 | ---- | C] (Sony Ericsson Mobile Communications) -- C:\Windows\SysNative\drivers\ggflt.sys
[2014/04/03 21:39:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Mobile
[2014/04/03 21:39:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony Mobile
[2014/04/03 21:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2014/04/03 21:34:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony
[2014/04/03 21:34:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony
[2014/04/02 23:41:00 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Local\Blizzard Entertainment
[2014/04/02 23:40:52 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Battle.net
[2014/04/02 23:40:52 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Local\Battle.net
[2014/04/02 23:17:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
[2014/03/30 16:47:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Futuremark
[2014/03/25 22:12:52 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Local\{A89310C3-B735-437D-B92F-78F44195678F}
[2014/03/25 21:56:26 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Malwarebytes
[2014/03/25 21:56:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2014/03/25 21:56:16 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014/03/25 21:56:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2014/03/25 21:56:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/03/25 21:48:32 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\Documents\Thief
[2014/03/22 20:47:55 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\NVIDIA
[2014/03/22 20:46:46 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2014/03/22 20:45:43 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Local\NVIDIA
[2014/03/22 20:45:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2014/03/22 20:45:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2014/03/22 20:45:18 | 000,062,408 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2014/03/22 20:45:18 | 000,054,216 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2014/03/22 20:44:05 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2014/03/22 19:57:57 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZOTAC FireStorm
[2014/03/15 17:08:18 | 000,000,000 | ---D | C] -- C:\Users\Teoh Khai Siang\AppData\Local\Uddgmedia

========== Files - Modified Within 30 Days ==========

[2014/04/07 21:07:58 | 000,781,790 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/04/07 21:07:58 | 000,662,060 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/04/07 21:07:58 | 000,121,928 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/04/07 21:05:32 | 000,000,220 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2014/04/07 21:05:32 | 000,000,202 | ---- | M] () -- C:\Windows\tasks\AutoKMSDaily.job
[2014/04/07 21:05:22 | 000,078,848 | ---- | M] () -- C:\Windows\KMSEmulator.exe
[2014/04/07 21:05:13 | 000,000,407 | ---- | M] () -- C:\Users\Public\Documents\bootracer.ini
[2014/04/07 21:05:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/04/07 14:54:48 | 001,426,178 | ---- | M] () -- C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
[2014/04/07 14:02:26 | 001,016,261 | ---- | M] (Thisisu) -- C:\Users\Teoh Khai Siang\Desktop\JRT.exe
[2014/04/07 13:56:10 | 002,157,056 | ---- | M] (Farbar) -- C:\Users\Teoh Khai Siang\Desktop\FRST64.exe
[2014/04/07 11:43:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Teoh Khai Siang\Desktop\OTL.exe
[2014/04/06 20:36:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/04/06 20:19:23 | 000,000,533 | ---- | M] () -- C:\Users\Public\Desktop\Deus Ex The Fall.lnk
[2014/04/06 20:15:47 | 000,022,528 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/04/06 20:15:47 | 000,022,528 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/04/06 18:01:53 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/04/06 17:20:20 | 000,776,261 | ---- | M] () -- C:\Users\Teoh Khai Siang\Desktop\Untitled.jpg
[2014/04/06 16:51:39 | 001,039,096 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014/04/06 16:51:39 | 000,423,240 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2014/04/06 16:51:39 | 000,334,648 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014/04/06 16:51:39 | 000,208,928 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014/04/06 16:51:39 | 000,093,568 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014/04/06 16:51:39 | 000,084,816 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswstm.sys
[2014/04/06 16:51:39 | 000,079,184 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014/04/06 16:51:39 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2014/04/06 16:51:39 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014/04/03 23:50:24 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ggsemc_01009.Wdf
[2014/04/03 23:50:24 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ggflt_01009.Wdf
[2014/04/03 21:39:20 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Windows\SysNative\drivers\ggsemc.sys
[2014/04/03 21:39:20 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) -- C:\Windows\SysNative\drivers\ggflt.sys
[2014/04/03 21:34:07 | 000,002,058 | ---- | M] () -- C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
[2014/04/02 23:18:14 | 000,000,780 | ---- | M] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2014/03/30 17:07:25 | 000,000,022 | ---- | M] () -- C:\Windows\GPU-Z.INI
[2014/03/30 16:48:23 | 000,001,192 | ---- | M] () -- C:\Users\Public\Desktop\3DMark.lnk
[2014/03/27 21:59:20 | 002,712,576 | ---- | M] () -- C:\Users\Teoh Khai Siang\AppData\Local\file__0.localstorage
[2014/03/25 21:57:29 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/03/25 21:56:42 | 000,001,328 | ---- | M] () -- C:\Users\Teoh Khai Siang\Desktop\Thief.lnk
[2014/03/23 20:15:40 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2014/03/22 20:46:10 | 000,001,347 | ---- | M] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2014/03/22 19:58:06 | 000,001,991 | ---- | M] () -- C:\Users\Teoh Khai Siang\Desktop\ZOTAC FireStorm.lnk
[2014/03/15 18:38:25 | 000,319,664 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2014/04/07 21:06:14 | 001,426,178 | ---- | C] () -- C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
[2014/04/06 20:19:23 | 000,000,533 | ---- | C] () -- C:\Users\Public\Desktop\Deus Ex The Fall.lnk
[2014/04/06 20:19:23 | 000,000,533 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deus Ex The Fall.lnk
[2014/04/06 17:20:20 | 000,776,261 | ---- | C] () -- C:\Users\Teoh Khai Siang\Desktop\Untitled.jpg
[2014/04/03 23:50:24 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ggsemc_01009.Wdf
[2014/04/03 23:50:24 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_ggflt_01009.Wdf
[2014/04/03 21:34:07 | 000,002,058 | ---- | C] () -- C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
[2014/04/02 23:18:14 | 000,000,780 | ---- | C] () -- C:\Users\Public\Desktop\Battle.net.lnk
[2014/03/25 21:56:42 | 000,001,328 | ---- | C] () -- C:\Users\Teoh Khai Siang\Desktop\Thief.lnk
[2014/03/25 21:56:17 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/03/22 20:46:10 | 000,001,347 | ---- | C] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2014/03/22 20:45:25 | 003,649,185 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2014/03/22 20:44:44 | 000,024,544 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2014/03/22 19:58:06 | 000,001,991 | ---- | C] () -- C:\Users\Teoh Khai Siang\Desktop\ZOTAC FireStorm.lnk
[2014/02/14 22:20:04 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013/12/11 19:10:48 | 000,007,602 | ---- | C] () -- C:\Users\Teoh Khai Siang\AppData\Local\Resmon.ResmonCfg
[2013/12/11 17:44:33 | 000,000,000 | -HS- | C] () -- C:\Users\Teoh Khai Siang\AppData\Local\LumaEmu
[2013/10/06 16:45:01 | 000,078,848 | ---- | C] () -- C:\Windows\KMSEmulator.exe
[2013/07/24 22:22:30 | 000,000,022 | ---- | C] () -- C:\Windows\GPU-Z.INI
[2013/07/05 23:47:52 | 000,000,624 | ---- | C] () -- C:\Users\Teoh Khai Siang\AppData\Roaming\All CPU MeterV3_Settings.ini
[2013/04/16 22:28:55 | 000,647,168 | ---- | C] () -- C:\Windows\AutoKMS.exe
[2013/04/16 22:28:55 | 000,000,184 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2012/12/26 23:39:02 | 002,712,576 | ---- | C] () -- C:\Users\Teoh Khai Siang\AppData\Local\file__0.localstorage
[2012/12/26 19:35:27 | 000,773,912 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/12/24 10:25:30 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012/12/24 10:25:22 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012/12/23 00:10:32 | 000,000,000 | ---- | C] () -- C:\Windows\Bench32.INI
[2012/12/22 23:53:35 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll

========== ZeroAccess Check ==========

[2009/07/14 12:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 10:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 09:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 09:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 11:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 09:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014/04/04 06:44:04 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\.mono
[2013/07/11 22:50:46 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\ACD Systems
[2013/11/23 12:23:58 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\AVAST Software
[2013/04/15 22:52:01 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Babylon
[2014/04/02 23:53:42 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Battle.net
[2013/02/28 23:07:10 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Crysis 3
[2013/04/15 22:52:04 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\GoforFiles
[2014/01/04 21:39:30 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Injustice
[2014/04/06 19:44:36 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\IObit
[2012/12/22 22:47:02 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Leadertech
[2013/12/09 19:44:35 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\library_dir
[2013/08/06 22:49:07 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\MKKE
[2013/07/23 23:42:43 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk
[2013/06/20 23:32:19 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk SecureAccess
[2014/04/06 20:03:42 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\Solvusoft
[2013/09/14 19:39:43 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\The Creative Assembly
[2013/08/15 21:50:00 | 000,000,000 | ---D | M] -- C:\Users\Teoh Khai Siang\AppData\Roaming\TP-LINK

========== Purity Check ==========

< End of report >

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Teoh Khai Siang (administrator) on TEOHKHAISIANG on 07-04-2014 21:28:26
Running from C:\Users\Teoh Khai Siang\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Greatis Software, LLC) C:\Program Files (x86)\BootRacer\BootRacerServ.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Cloud Engines, Inc.) C:\Program Files (x86)\PogoplugPC\HBADMIN.EXE
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NTI Corporation) C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Gemalto N.V.) C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk\SanDiskSecureAccess_Manager.exe
(Cloud Engines, Inc.) C:\Program Files (x86)\PogoplugPC\ppserver.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(NTI Corporation) C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
() C:\Users\Teoh Khai Siang\Documents\GIGABYTE\AIVIA GHOST\Tilt.exe
() C:\Users\Teoh Khai Siang\Documents\GIGABYTE\AIVIA GHOST\GHOSTOPEN.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(OldTimer Tools) C:\Users\Teoh Khai Siang\Desktop\OTL.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1179576 2014-02-05] (NVIDIA Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [BackupNowEZtray] - C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZtray.exe [581624 2013-02-05] (NTI Corporation)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [Razer Synapse] - C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [444760 2014-03-07] (Razer Inc.)
HKLM-x32\...\Run: [Tilt] - C:\Users\Teoh Khai Siang\Documents\GIGABYTE\AIVIA GHOST\Tilt.exe [733184 2013-06-28] ()
HKLM-x32\...\Run: [ghost] - C:\Users\Teoh Khai Siang\Documents\GIGABYTE\AIVIA GHOST\ghostopen.exe [191488 2012-09-18] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-04-06] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BootRacer] - C:\Program Files (x86)\BootRacer\Bootrace.exe [6357264 2012-10-18] ( (Greatis Software))
HKU\S-1-5-21-1729804402-3177559583-490602787-1000\...\Run: [SanDiskSecureAccess_Manager.exe] - C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk\SanDiskSecureAccess_Manager.exe [30705792 2012-02-15] (Gemalto N.V.)
HKU\S-1-5-21-1729804402-3177559583-490602787-1000\...\Run: [PogoplugPC] - C:\Program Files (x86)\PogoplugPC\ppserver.exe [23797248 2013-06-12] (Cloud Engines, Inc.)
HKU\S-1-5-21-1729804402-3177559583-490602787-1000\...\Run: [Uddgmedia] - regsvr32.exe "C:\Users\Teoh Khai Siang\AppData\Local\Uddgmedia\ParamBlk2.dll" <===== ATTENTION
HKU\S-1-5-21-1729804402-3177559583-490602787-1000\...\MountPoints2: {471e9465-6a26-11e2-ae3a-002215a9f666} - G:\AutoRun.exe
HKU\S-1-5-21-1729804402-3177559583-490602787-1000\...\MountPoints2: {471e947f-6a26-11e2-ae3a-002215a9f666} - G:\AutoRun.exe
HKU\S-1-5-21-1729804402-3177559583-490602787-1000\...\MountPoints2: {e26de56e-bb30-11e3-a68f-002215a9f666} - G:\Startme.exe
HKU\S-1-5-21-1729804402-3177559583-490602787-1000\...\MountPoints2: {ed2db96b-4e38-11e2-a250-002215a9f666} - G:\AutoRun.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://malaysia.msn....MY&dcc=MY&opt=0
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE965F6DA293ACE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www1.delta-se...66B647002239141
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Hosts: 127.0.0.1 acdid.acdsystems.com
Tcpip\Parameters: [DhcpNameServer] 122.255.99.228 122.255.99.236
Tcpip\..\Interfaces\{07ECC0F9-3973-4025-855B-BD41068A541E}: [NameServer]122.255.99.236,122.255.99.228

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-06] (AVAST Software)
R2 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [65296 2012-05-31] (Greatis Software, LLC)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2014-02-28] (Futuremark)
R2 HBAdmin; C:\Program Files (x86)\PogoplugPC\HBADMIN.EXE [903456 2013-06-12] (Cloud Engines, Inc.)
R2 NTI BackupNowEZSvr; C:\Program Files (x86)\NTI\NTI Backup Now EZ\BackupNowEZSvr.exe [46072 2013-02-05] (NTI Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2012-12-24] ()

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-04-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-04-06] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [84816 2014-04-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208928 2014-04-06] ()
S3 KYEKBPRO; C:\Windows\System32\drivers\KYEKBPRO.sys [25600 2011-10-14] ( )
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-28] (NVIDIA Corporation)
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [990864 2012-10-29] (Realtek Semiconductor Corporation )
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2013-11-15] (Razer Inc)
R3 xcetap0; C:\Windows\System32\DRIVERS\xcetap0.sys [39712 2013-03-01] (Cloud Engines, Inc.)
S3 cpuz137; \??\C:\Windows\TEMP\cpuz137\cpuz137_x64.sys [X]
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-04-07 21:28 - 2014-04-07 21:28 - 00011225 _____ () C:\Users\Teoh Khai Siang\Desktop\FRST.txt
2014-04-07 21:28 - 2014-04-07 21:28 - 00000000 ____D () C:\FRST
2014-04-07 21:11 - 2014-04-07 21:11 - 00088340 _____ () C:\Users\Teoh Khai Siang\Desktop\OTL.Txt
2014-04-07 21:11 - 2014-04-07 21:11 - 00080392 _____ () C:\Users\Teoh Khai Siang\Desktop\Extras.Txt
2014-04-07 21:09 - 2014-04-07 14:02 - 01016261 _____ (Thisisu) C:\Users\Teoh Khai Siang\Desktop\JRT.exe
2014-04-07 21:09 - 2014-04-07 13:56 - 02157056 _____ (Farbar) C:\Users\Teoh Khai Siang\Desktop\FRST64.exe
2014-04-07 21:08 - 2014-04-07 11:43 - 00602112 _____ (OldTimer Tools) C:\Users\Teoh Khai Siang\Desktop\OTL.exe
2014-04-07 21:06 - 2014-04-07 21:06 - 00000000 ____D () C:\AdwCleaner
2014-04-07 21:06 - 2014-04-07 14:54 - 01426178 _____ () C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
2014-04-06 20:36 - 2014-04-06 20:37 - 00017627 _____ () C:\Windows\DirectX.log
2014-04-06 20:19 - 2014-04-06 20:19 - 00000533 _____ () C:\Users\Public\Desktop\Deus Ex The Fall.lnk
2014-04-06 20:08 - 2014-04-07 21:08 - 00033709 _____ () C:\Windows\WindowsUpdate.log
2014-04-06 20:08 - 2014-04-07 21:05 - 00001503 _____ () C:\Windows\AutoKMS.log
2014-04-06 20:08 - 2014-04-07 21:05 - 00000504 _____ () C:\Windows\setupact.log
2014-04-06 20:08 - 2014-04-06 20:08 - 00000420 _____ () C:\Windows\PFRO.log
2014-04-06 20:08 - 2014-04-06 20:08 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-06 20:06 - 2014-04-06 20:06 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Apple Computer
2014-04-06 19:44 - 2014-04-06 19:44 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\IObit
2014-04-06 19:44 - 2014-04-06 19:44 - 00000000 ____D () C:\ProgramData\IObit
2014-04-06 19:44 - 2014-04-06 19:44 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-04-06 19:40 - 2014-04-06 20:04 - 00000000 ____D () C:\Program Files (x86)\WinThruster
2014-04-06 19:40 - 2014-04-06 20:03 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Solvusoft
2014-04-06 19:40 - 2012-10-15 17:02 - 00019888 _____ (solvusoft) C:\Windows\system32\roboot64.exe
2014-04-06 18:53 - 2014-04-06 18:53 - 00388608 _____ (Trend Micro Inc.) C:\Users\Teoh Khai Siang\Downloads\HijackThis.exe
2014-04-06 16:51 - 2014-04-06 16:51 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-04 06:44 - 2014-04-04 06:44 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\.mono
2014-04-04 06:44 - 2014-04-04 06:44 - 00000000 ____D () C:\ProgramData\.mono
2014-04-03 23:50 - 2014-04-03 23:50 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf
2014-04-03 23:50 - 2014-04-03 23:50 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-04-03 21:39 - 2014-04-03 21:39 - 00027760 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggsemc.sys
2014-04-03 21:39 - 2014-04-03 21:39 - 00014448 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys
2014-04-03 21:39 - 2014-04-03 21:39 - 00000000 ____D () C:\ProgramData\Sony Mobile
2014-04-03 21:39 - 2014-04-03 21:39 - 00000000 ____D () C:\Program Files (x86)\Sony Mobile
2014-04-03 21:34 - 2014-04-03 21:34 - 00002058 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-04-03 21:34 - 2014-04-03 21:34 - 00000000 ____D () C:\ProgramData\Sony
2014-04-03 21:34 - 2014-04-03 21:34 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-04-02 23:41 - 2014-04-02 23:41 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\Blizzard Entertainment
2014-04-02 23:40 - 2014-04-04 07:18 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\Battle.net
2014-04-02 23:40 - 2014-04-02 23:53 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Battle.net
2014-04-02 23:18 - 2014-04-02 23:18 - 00000780 _____ () C:\Users\Public\Desktop\Battle.net.lnk
2014-03-30 16:47 - 2014-03-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2014-03-30 16:46 - 2014-03-30 16:46 - 02621440 _____ () C:\Users\Teoh Khai Siang\Downloads\Futuremark_SystemInfo_v426_installer.msi
2014-03-25 22:12 - 2014-03-25 22:13 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\{A89310C3-B735-437D-B92F-78F44195678F}
2014-03-25 21:56 - 2014-03-25 21:57 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-25 21:56 - 2014-03-25 21:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-25 21:56 - 2014-03-25 21:56 - 00001328 _____ () C:\Users\Teoh Khai Siang\Desktop\Thief.lnk
2014-03-25 21:56 - 2014-03-25 21:56 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Malwarebytes
2014-03-25 21:56 - 2014-03-25 21:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-25 21:56 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-25 21:48 - 2014-03-25 21:51 - 00000000 ____D () C:\Users\Teoh Khai Siang\Documents\Thief
2014-03-23 16:44 - 2014-03-23 18:20 - 1007422198 _____ () C:\Users\Teoh Khai Siang\Downloads\3DMark-v1-2-362.zip
2014-03-22 20:47 - 2014-04-02 23:41 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\NVIDIA
2014-03-22 20:46 - 2014-03-22 20:46 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-03-22 20:46 - 2014-03-22 20:46 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-22 20:45 - 2014-03-22 20:53 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\NVIDIA
2014-03-22 20:45 - 2014-03-22 20:45 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-03-22 20:45 - 2014-03-04 22:35 - 00062408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-03-22 20:45 - 2014-03-04 22:35 - 00054216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-03-22 20:45 - 2014-03-04 21:06 - 06714312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-03-22 20:45 - 2014-03-04 21:06 - 03497816 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-03-22 20:45 - 2014-03-04 21:05 - 03649185 _____ () C:\Windows\system32\nvcoproc.bin
2014-03-22 20:45 - 2014-03-04 21:05 - 00922968 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-03-22 20:45 - 2014-03-04 21:05 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-03-22 20:45 - 2014-03-04 21:05 - 00064968 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-03-22 20:45 - 2014-02-05 17:31 - 01048152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-03-22 20:45 - 2014-02-05 17:30 - 01179576 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-03-22 20:44 - 2014-03-22 20:45 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-22 20:44 - 2014-03-04 22:35 - 31474976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 18302384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 14709720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-22 20:44 - 2014-03-04 22:35 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 03093280 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 02715264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00947808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00832936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00484296 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00409544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00377688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00174296 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-03-22 20:44 - 2014-03-04 22:35 - 00024544 _____ () C:\Windows\system32\nvinfo.pb
2014-03-22 20:44 - 2013-12-28 02:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-03-22 20:44 - 2013-12-28 02:42 - 00035104 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-03-22 20:44 - 2013-12-28 02:42 - 00033056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-03-22 19:58 - 2014-03-22 19:58 - 00001991 _____ () C:\Users\Teoh Khai Siang\Desktop\ZOTAC FireStorm.lnk
2014-03-22 19:57 - 2014-03-22 19:57 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZOTAC FireStorm
2014-03-22 19:54 - 2014-03-22 19:54 - 02765850 _____ () C:\Users\Teoh Khai Siang\Downloads\FireStorm_installer_2.0.5.exe
2014-03-18 22:04 - 2014-03-18 22:06 - 00000046 _____ () C:\Windows\lnk.txt
2014-03-15 17:45 - 2014-03-01 14:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-15 17:45 - 2014-03-01 13:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-15 17:45 - 2014-03-01 13:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-15 17:45 - 2014-03-01 12:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-15 17:45 - 2014-03-01 12:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-15 17:45 - 2014-03-01 12:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-15 17:45 - 2014-03-01 12:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-15 17:45 - 2014-03-01 12:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-15 17:45 - 2014-03-01 12:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-15 17:45 - 2014-03-01 12:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-15 17:45 - 2014-03-01 12:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-15 17:45 - 2014-03-01 12:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-15 17:45 - 2014-03-01 12:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-15 17:45 - 2014-03-01 12:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-15 17:45 - 2014-03-01 12:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-15 17:45 - 2014-03-01 12:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-15 17:45 - 2014-03-01 12:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-15 17:45 - 2014-03-01 11:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-15 17:45 - 2014-03-01 11:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-15 17:45 - 2014-03-01 11:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-15 17:45 - 2014-03-01 11:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-15 17:45 - 2014-03-01 11:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-15 17:45 - 2014-03-01 11:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-15 17:45 - 2014-03-01 11:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-15 17:45 - 2014-03-01 11:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-15 17:45 - 2014-03-01 11:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-15 17:45 - 2014-03-01 11:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-15 17:45 - 2014-03-01 11:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-15 17:45 - 2014-03-01 11:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-15 17:45 - 2014-03-01 11:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-15 17:45 - 2014-03-01 11:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-15 17:45 - 2014-03-01 11:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-15 17:45 - 2014-03-01 11:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-15 17:45 - 2014-03-01 11:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-15 17:45 - 2014-03-01 10:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-15 17:45 - 2014-03-01 10:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-15 17:45 - 2014-03-01 10:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-15 17:45 - 2014-03-01 10:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-15 17:45 - 2014-03-01 10:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-15 17:45 - 2014-03-01 10:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-15 17:40 - 2014-02-07 09:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-15 17:40 - 2014-02-04 10:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-15 17:40 - 2014-02-04 10:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-15 17:40 - 2014-02-04 10:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-15 17:40 - 2014-02-04 10:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-15 17:40 - 2014-01-29 10:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-15 17:40 - 2014-01-29 10:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-15 17:40 - 2014-01-28 10:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-15 17:08 - 2014-04-06 19:31 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\Uddgmedia
2014-03-15 17:07 - 2014-03-15 17:07 - 00003200 _____ () C:\Windows\System32\Tasks\{C1824F5C-A447-4C64-9AEA-87C68DCE36E2}
2014-03-15 17:06 - 2014-03-15 17:28 - 232485456 _____ (NVIDIA Corporation) C:\Users\Teoh Khai Siang\Downloads\335.23-desktop-win8-win7-winvista-64bit-english-whql.exe

==================== One Month Modified Files and Folders =======

2014-04-07 21:28 - 2014-04-07 21:28 - 00011225 _____ () C:\Users\Teoh Khai Siang\Desktop\FRST.txt
2014-04-07 21:28 - 2014-04-07 21:28 - 00000000 ____D () C:\FRST
2014-04-07 21:21 - 2009-07-14 12:45 - 00022528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-07 21:21 - 2009-07-14 12:45 - 00022528 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-07 21:11 - 2014-04-07 21:11 - 00088340 _____ () C:\Users\Teoh Khai Siang\Desktop\OTL.Txt
2014-04-07 21:11 - 2014-04-07 21:11 - 00080392 _____ () C:\Users\Teoh Khai Siang\Desktop\Extras.Txt
2014-04-07 21:10 - 2009-07-14 13:13 - 00781790 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-07 21:08 - 2014-04-06 20:08 - 00033709 _____ () C:\Windows\WindowsUpdate.log
2014-04-07 21:06 - 2014-04-07 21:06 - 00000000 ____D () C:\AdwCleaner
2014-04-07 21:05 - 2014-04-06 20:08 - 00001503 _____ () C:\Windows\AutoKMS.log
2014-04-07 21:05 - 2014-04-06 20:08 - 00000504 _____ () C:\Windows\setupact.log
2014-04-07 21:05 - 2013-10-06 16:45 - 00078848 _____ () C:\Windows\KMSEmulator.exe
2014-04-07 21:05 - 2013-04-16 22:28 - 00002740 _____ () C:\Windows\System32\Tasks\AutoKMSDaily
2014-04-07 21:05 - 2013-04-16 22:28 - 00000220 _____ () C:\Windows\Tasks\AutoKMS.job
2014-04-07 21:05 - 2013-04-16 22:28 - 00000202 _____ () C:\Windows\Tasks\AutoKMSDaily.job
2014-04-07 21:05 - 2012-12-22 23:55 - 00000557 ____H () C:\Users\Public\Documents\bootracer.log
2014-04-07 21:05 - 2012-12-22 23:55 - 00000407 _____ () C:\Users\Public\Documents\bootracer.ini
2014-04-07 21:05 - 2012-12-22 23:55 - 00000000 ____D () C:\Program Files (x86)\BootRacer
2014-04-07 21:05 - 2009-07-14 13:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-07 14:54 - 2014-04-07 21:06 - 01426178 _____ () C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
2014-04-07 14:02 - 2014-04-07 21:09 - 01016261 _____ (Thisisu) C:\Users\Teoh Khai Siang\Desktop\JRT.exe
2014-04-07 13:56 - 2014-04-07 21:09 - 02157056 _____ (Farbar) C:\Users\Teoh Khai Siang\Desktop\FRST64.exe
2014-04-07 11:43 - 2014-04-07 21:08 - 00602112 _____ (OldTimer Tools) C:\Users\Teoh Khai Siang\Desktop\OTL.exe
2014-04-06 20:37 - 2014-04-06 20:36 - 00017627 _____ () C:\Windows\DirectX.log
2014-04-06 20:36 - 2012-12-27 19:14 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-06 20:19 - 2014-04-06 20:19 - 00000533 _____ () C:\Users\Public\Desktop\Deus Ex The Fall.lnk
2014-04-06 20:08 - 2014-04-06 20:08 - 00000420 _____ () C:\Windows\PFRO.log
2014-04-06 20:08 - 2014-04-06 20:08 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-06 20:06 - 2014-04-06 20:06 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Apple Computer
2014-04-06 20:04 - 2014-04-06 19:40 - 00000000 ____D () C:\Program Files (x86)\WinThruster
2014-04-06 20:03 - 2014-04-06 19:40 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Solvusoft
2014-04-06 19:44 - 2014-04-06 19:44 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\IObit
2014-04-06 19:44 - 2014-04-06 19:44 - 00000000 ____D () C:\ProgramData\IObit
2014-04-06 19:44 - 2014-04-06 19:44 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-04-06 19:31 - 2014-03-15 17:08 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\Uddgmedia
2014-04-06 18:53 - 2014-04-06 18:53 - 00388608 _____ (Trend Micro Inc.) C:\Users\Teoh Khai Siang\Downloads\HijackThis.exe
2014-04-06 18:01 - 2013-11-23 12:34 - 00002010 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-04-06 16:51 - 2014-04-06 16:51 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-06 16:51 - 2014-01-05 08:13 - 00084816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-04-06 16:51 - 2013-11-23 12:32 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-06 16:51 - 2013-11-23 12:31 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-06 16:51 - 2013-11-23 12:31 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-06 16:51 - 2013-11-23 12:31 - 00208928 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-06 16:51 - 2013-11-23 12:31 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-06 16:51 - 2013-11-23 12:31 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-06 16:51 - 2013-11-23 12:31 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-06 16:51 - 2012-12-22 23:40 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-04 07:18 - 2014-04-02 23:40 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\Battle.net
2014-04-04 06:44 - 2014-04-04 06:44 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\.mono
2014-04-04 06:44 - 2014-04-04 06:44 - 00000000 ____D () C:\ProgramData\.mono
2014-04-03 23:50 - 2014-04-03 23:50 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf
2014-04-03 23:50 - 2014-04-03 23:50 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-04-03 21:39 - 2014-04-03 21:39 - 00027760 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggsemc.sys
2014-04-03 21:39 - 2014-04-03 21:39 - 00014448 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys
2014-04-03 21:39 - 2014-04-03 21:39 - 00000000 ____D () C:\ProgramData\Sony Mobile
2014-04-03 21:39 - 2014-04-03 21:39 - 00000000 ____D () C:\Program Files (x86)\Sony Mobile
2014-04-03 21:34 - 2014-04-03 21:34 - 00002058 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-04-03 21:34 - 2014-04-03 21:34 - 00000000 ____D () C:\ProgramData\Sony
2014-04-03 21:34 - 2014-04-03 21:34 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-04-03 21:34 - 2012-12-22 22:30 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-02 23:53 - 2014-04-02 23:40 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Battle.net
2014-04-02 23:41 - 2014-04-02 23:41 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\Blizzard Entertainment
2014-04-02 23:41 - 2014-03-22 20:47 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\NVIDIA
2014-04-02 23:18 - 2014-04-02 23:18 - 00000780 _____ () C:\Users\Public\Desktop\Battle.net.lnk
2014-03-30 17:07 - 2013-07-24 22:22 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-03-30 16:48 - 2013-12-18 21:42 - 00001192 _____ () C:\Users\Public\Desktop\3DMark.lnk
2014-03-30 16:48 - 2013-11-11 19:50 - 00000000 ____D () C:\ProgramData\Package Cache
2014-03-30 16:48 - 2012-12-23 00:26 - 00000000 ____D () C:\Program Files\Futuremark
2014-03-30 16:47 - 2014-03-30 16:47 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2014-03-30 16:46 - 2014-03-30 16:46 - 02621440 _____ () C:\Users\Teoh Khai Siang\Downloads\Futuremark_SystemInfo_v426_installer.msi
2014-03-27 21:59 - 2012-12-26 23:39 - 02712576 _____ () C:\Users\Teoh Khai Siang\AppData\Local\file__0.localstorage
2014-03-25 22:14 - 2012-12-23 00:15 - 00000000 ____D () C:\Users\Teoh Khai Siang\Tracing
2014-03-25 22:13 - 2014-03-25 22:12 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\{A89310C3-B735-437D-B92F-78F44195678F}
2014-03-25 22:11 - 2012-12-25 10:16 - 00000000 ____D () C:\ProgramData\DatacardService
2014-03-25 21:57 - 2014-03-25 21:56 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-25 21:57 - 2014-03-25 21:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-25 21:56 - 2014-03-25 21:56 - 00001328 _____ () C:\Users\Teoh Khai Siang\Desktop\Thief.lnk
2014-03-25 21:56 - 2014-03-25 21:56 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Malwarebytes
2014-03-25 21:56 - 2014-03-25 21:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-25 21:51 - 2014-03-25 21:48 - 00000000 ____D () C:\Users\Teoh Khai Siang\Documents\Thief
2014-03-23 20:15 - 2014-01-12 18:49 - 00000913 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2014-03-23 18:20 - 2014-03-23 16:44 - 1007422198 _____ () C:\Users\Teoh Khai Siang\Downloads\3DMark-v1-2-362.zip
2014-03-23 16:30 - 2009-07-14 13:08 - 00032636 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-22 20:53 - 2014-03-22 20:45 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\NVIDIA
2014-03-22 20:46 - 2014-03-22 20:46 - 00001347 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk
2014-03-22 20:46 - 2014-03-22 20:46 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-22 20:46 - 2014-02-14 23:14 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-03-22 20:45 - 2014-03-22 20:45 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-03-22 20:45 - 2014-03-22 20:44 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-22 20:45 - 2014-02-19 22:40 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-22 20:45 - 2009-07-14 11:20 - 00000000 ____D () C:\Windows\Help
2014-03-22 20:13 - 2014-02-14 23:20 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Local\NVIDIA Corporation
2014-03-22 19:58 - 2014-03-22 19:58 - 00001991 _____ () C:\Users\Teoh Khai Siang\Desktop\ZOTAC FireStorm.lnk
2014-03-22 19:57 - 2014-03-22 19:57 - 00000000 ____D () C:\Users\Teoh Khai Siang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZOTAC FireStorm
2014-03-22 19:57 - 2013-07-06 19:48 - 00000000 ____D () C:\Program Files (x86)\ZOTAC FireStorm
2014-03-22 19:54 - 2014-03-22 19:54 - 02765850 _____ () C:\Users\Teoh Khai Siang\Downloads\FireStorm_installer_2.0.5.exe
2014-03-18 22:06 - 2014-03-18 22:04 - 00000046 _____ () C:\Windows\lnk.txt
2014-03-15 18:38 - 2013-03-14 06:56 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-15 18:38 - 2013-03-14 06:56 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-15 18:38 - 2009-07-14 12:45 - 00319664 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 18:12 - 2012-12-22 23:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-15 18:12 - 2011-04-12 16:28 - 00000000 ____D () C:\Windows\ShellNew
2014-03-15 17:48 - 2013-07-11 22:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-15 17:47 - 2012-12-26 19:38 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-15 17:36 - 2012-12-27 19:14 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-15 17:36 - 2012-12-27 19:14 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-15 17:36 - 2012-12-27 19:14 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-15 17:28 - 2014-03-15 17:06 - 232485456 _____ (NVIDIA Corporation) C:\Users\Teoh Khai Siang\Downloads\335.23-desktop-win8-win7-winvista-64bit-english-whql.exe
2014-03-15 17:07 - 2014-03-15 17:07 - 00003200 _____ () C:\Windows\System32\Tasks\{C1824F5C-A447-4C64-9AEA-87C68DCE36E2}

Some content of TEMP:
====================
C:\Users\Teoh Khai Siang\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-04-03 07:15

==================== End Of Log ============================

Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Teoh Khai Siang at 2014-04-07 21:28:41
Running from C:\Users\Teoh Khai Siang\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

¡¶ËÀÍö¿Õ¼ä3¡·ÓÎÏÀ°¿Ïèºº»¯ÖÐÎÄÓ²ÅÌ°æ (HKLM-x32\...\¡¶ËÀÍö¿Õ¼ä3¡·ÓÎÏÀ°¿Ïèºº»¯ÖÐÎÄÓ²ÅÌ°æ_is1) (Version: - Dead Space 3)
«Borderlands 2» 1.3.1.0 (HKLM-x32\...\Borderlands 2_is1) (Version: 1.3.1.0 - Take-Two Interactive Software, Inc.)
3DMark (HKLM-x32\...\{38f32cea-14ce-4349-882e-8779bcd45e5c}) (Version: 1.2.362.0 - Futuremark)
3DMark (Version: 1.2.362.0 - Futuremark) Hidden
3DMark 11 (HKLM-x32\...\{46EDCFA5-7EDB-46A9-B093-1C6237470CEC}) (Version: 1.0.5 - Futuremark Corporation)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
AIVIA GHOST (HKLM-x32\...\{4E711815-5F4E-47F2-B1E1-C0B43A8D57F3}) (Version: 1.06.0000 - GIGABYTE)
Assassins Creed IV Black Flag (HKLM-x32\...\Assassins Creed IV Black Flag_is1) (Version: - )
Assassins Creed IV Black Flag Freedom Cry (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRJVkJsYWNrRmxhZw==_is1) (Version: 1 - )
Assassin's Creed Liberation HD (HKLM-x32\...\Assassin's Creed Liberation HD_is1) (Version: - )
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2016 - Avast Software)
Baldur's Gate - Enhanced Edition (HKLM-x32\...\Baldur's Gate - Enhanced Edition_is1) (Version: - )
BatmanOrigins version BatmanOrigins (HKLM-x32\...\BatmanOrigins_is1) (Version: BatmanOrigins - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 4 version Battlefield 4 (HKLM-x32\...\Battlefield 4_is1) (Version: Battlefield 4 - )
BioShock Infinite version 5.1 (HKLM-x32\...\{D36F3F6C-8411-4738-AF52-90536270C65B}_is1) (Version: 5.1 - Black_Box)
BootRacer (HKLM-x32\...\{A39CE04E-255B-4B75-86B6-8787660E0B24}) (Version: 4.0.0 - Greatis Software, LLC)
Call of Duty Ghosts (HKLM-x32\...\Call of Duty Ghosts_is1) (Version: Call of Duty Ghosts - )
Call Of Pripyat Benchmark 1.6.02 (HKLM-x32\...\{151F4583-1A05-46D9-8A0E-8F61B9C3502B}_is1) (Version: - GSC Game World)
Castlevania Lords of Shadow (HKLM-x32\...\{F14EDCE5-B45D-4D77-A5B8-C7513E5C7BDA}) (Version: 6.0 - Black Box)
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Company of Heroes 2 (HKLM-x32\...\Company of Heroes 2_is1) (Version: - )
Core Temp 1.0 RC5 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.69 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.24 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Crysis 3 (HKLM-x32\...\Crysis 3_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.1.0.0 - Electronic Arts)
CrystalDiskInfo 6.0.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.0.1 - Crystal Dew World)
CrystalDiskMark 3.0.3 (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.3 - Crystal Dew World)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Deadpool (HKLM-x32\...\Deadpool_is1) (Version: 1.0 - Activision)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{92C42EDD-6524-4577-B2EB-6C68C63B6D4A}) (Version: - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{92C42EDD-6524-4577-B2EB-6C68C63B6D4A}) (Version: - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{92C42EDD-6524-4577-B2EB-6C68C63B6D4A}) (Version: - Microsoft)
Defraggler (HKLM\...\Defraggler) (Version: 2.16 - Piriform)
Deus Ex Human Revolution - The Missing Link (HKLM-x32\...\Deus Ex Human Revolution - The Missing Link_is1) (Version: - )
Deus ex Human Revolution (HKLM-x32\...\Deus ex Human Revolution_is1) (Version: - )
Deus Ex: The Fall (HKLM-x32\...\RGV1c0V4VGhlRmFsbA==_is1) (Version: 1 - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dishonored (HKLM-x32\...\Dishonored_is1) (Version: - )
DMC Devil May Cry Vergils Downfall (HKLM-x32\...\DMC Devil May Cry Vergils Downfall_is1) (Version: - )
DolbyFiles (x32 Version: 0.1 - Nero AG) Hidden
Driver Fusion (HKLM-x32\...\Driver Fusion) (Version: 1.9 - Treexy)
Driver Sweeper version 3.2.0 (HKLM-x32\...\{5A67D2EA-FB70-4033-A6F3-606AD85B2015}_is1) (Version: 3.2.0 - Phyxion.net)
Dungeons and Dragons Daggerdale (HKLM-x32\...\Dungeons and Dragons Daggerdale_is1) (Version: - )
EVGA Precision X 4.2.1 (HKLM-x32\...\PrecisionX) (Version: 4.2.1 - EVGA Corporation)
Fallout New Vegas version 1.3.0.452 (HKLM-x32\...\{53CE0AE1-8092-4702-B1A6-99BBFB2344A6}_is1) (Version: 1.3.0.452 - Bethesda Softworks)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{EF7EA37B-C009-4D53-AE2A-FF7C6AEC35CE}) (Version: 4.26.386 - Futuremark)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Heaven DX11 Benchmark version 3.0 (HKLM\...\Unigine Heaven DX11 Benchmark (Basic Edition)_is1) (Version: 3.0 - Unigine Corp.)
Hitman Absolution (HKLM-x32\...\Hitman Absolution_is1) (Version: - )
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Injustice Gods Among Us Ultimate Edition (HKLM-x32\...\Injustice Gods Among Us Ultimate Edition_is1) (Version: - )
Intel® Network Connections 17.4.95.0 (HKLM\...\PROSetDX) (Version: 17.4.95.0 - Intel)
Intel® Network Connections 17.4.95.0 (Version: 17.4.95.0 - Intel) Hidden
Intel® Update Manager (x32 Version: 1.6.3.70 - Intel Corporation) Hidden
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.2.0.400 - Intel Corporation)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
K-Lite Codec Pack 10.0.3 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.3 - )
Logitech Gaming Software (Version: 8.40.83 - Logitech Inc.) Hidden
Lost Planet 3 (HKLM-x32\...\Lost Planet 3_is1) (Version: - )
Magic 2014 — Duels of the Planeswalkers (HKLM-x32\...\Magic 2014 — Duels of the Planeswalkers_is1) (Version: - )
Magic The Gathering - Duels of the Planeswalkers 2013 (HKLM-x32\...\Magic The Gathering - Duels of the Planeswalkers 2013_is1) (Version: - )
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Menu Templates - Starter Kit (x32 Version: 9.4.2.0 - Nero AG) Hidden
Metal Gear Rising: Revengeance (HKLM-x32\...\Metal Gear Rising: Revengeance_is1) (Version: 1.0 - Konami)
Metro: Last Light © Deep Silver version 1 (HKLM-x32\...\TWV0cm9MYXN0TGlnaHQ=_is1) (Version: 1 - )
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Excel 2010 (HKLM-x32\...\Office14.EXCEL) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Excel 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft PowerPoint 2010 (HKLM-x32\...\Office14.POWERPOINT) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Word 2010 (HKLM-x32\...\Office14.WORD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Might and Magic X Legacy (HKLM-x32\...\TWlnaHRhbmRNYWdpY1hMZWdhY3k=_is1) (Version: 1 - )
Mortal Kombat Komplete Edition (HKLM-x32\...\Mortal Kombat Komplete Edition_is1) (Version: - )
MSI Afterburner 3.0.0 Beta 18 (HKLM-x32\...\Afterburner) (Version: 3.0.0 Beta 18 - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM-x32\...\{09bcda7c-254d-46b5-bada-61e611bba738}) (Version: - Nero AG)
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero Express Help (x32 Version: 9.6.2.101 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.9.0 - Nero AG) Hidden
Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.12.100 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.12.100 - Nero AG) Hidden
NeroExpress (x32 Version: 9.4.17.100 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NTI Backup Now EZ (HKLM-x32\...\InstallShield_{B9ECA41B-55CC-4654-B6B5-6731D009EC69}) (Version: 3.0.2.32 - NTI Corporation)
NTI Backup Now EZ (x32 Version: 3.0.2.32 - NTI Corporation) Hidden
NVIDIA Control Panel 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Update 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PCMark 7 (HKLM-x32\...\{75C3C9C0-6CE6-42FA-A0E9-658E8F539124}) (Version: 1.4.0 - Futuremark)
Pogoplug PC (HKLM\...\PogoplugPC) (Version: 1.1.14 - Cloud Engines Inc.)
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.17.22 - Razer Inc.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden
Resident Evil 6 Benchmark (HKLM-x32\...\{0343CD8E-625A-47FF-BC7E-92BCDF2E5929}) (Version: 1.00.0000 - CAPCOM CO., LTD.)
ROCCAT Power-Grid version 0.458 (HKLM-x32\...\{953CF6E6-4EC8-4E55-A263-720CEBD591FE}_is1) (Version: 0.458 - ROCCAT GmbH)
SanDiskSecureAccess_Manager.exe (HKCU\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.1.19755 - Gemalto N.V.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
Shadowrun Returns (HKLM-x32\...\Shadowrun Returns_is1) (Version: - Harebrained Holdings)
SHIELD Streaming (Version: 1.7.321 - NVIDIA Corporation) Hidden
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.4.201403101311 - Sony Mobile Communications AB)
Sony PC Companion 2.10.197 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.197 - Sony)
SSDlife Free (HKLM-x32\...\{F371CE3B-8994-44E3-9518-92B22EE4A7FF}) (Version: 2.3.56 - BinarySense Inc.)
StarCraft II Heart Of Swarm (HKLM-x32\...\StarCraft II Heart Of Swarm_is1) (Version: - )
The Bureau XCOM Declassified (HKLM-x32\...\The Bureau XCOM Declassified_is1) (Version: - )
The Elder Scrolls V: Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V: Skyrim - Legendary Edition_is1) (Version: - )
The Incredible Adventures of Van Helsing (HKLM-x32\...\{779468AF-3247-4272-8DC5-F0A2F73C544B}_is1) (Version: - )
Thief version Thief (HKLM-x32\...\Thief_is1) (Version: Thief - )
TL-WN822N/TL-WN821N Driver (HKLM-x32\...\{62FE0726-9652-4CD2-9F09-C769D8699C21}) (Version: 1.0.0 - TP-LINK)
Tom Clancy`s Splinter Cell® Blacklist™ (HKLM-x32\...\Tom Clancy`s Splinter Cell® Blacklist™_is1) (Version: 1.01 - R.G. Revenants)
Tom Clancy's Splinter Cell® Blacklist™ (HKLM-x32\...\{A6356F2F-D3E1-4D83-9AA2-72871DD0C298}) (Version: 1.01 - Ubisoft)
Tombraider (HKLM-x32\...\Tombraider_is1) (Version: - )
Torchlight II © Runic Games version 1 (HKLM-x32\...\Torchlight II © Runic Games_is1) (Version: 1 - )
Total War ROME II (HKLM-x32\...\Total War ROME II_is1) (Version: - )
TP-LINK TL-WN8200ND Driver (HKLM-x32\...\{FDA7E907-6539-42C1-9721-0239C281B336}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.EXCEL_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.POWERPOINT_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.WORD_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.EXCEL_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.POWERPOINT_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.WORD_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.EXCEL_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.POWERPOINT_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.WORD_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.EXCEL_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.POWERPOINT_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.WORD_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.EXCEL_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.POWERPOINT_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.WORD_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.EXCEL_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.POWERPOINT_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.WORD_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.EXCEL_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.POWERPOINT_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.WORD_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.POWERPOINT_{DA2F7ECE-6629-4A80-9CDE-EC95261B75E2}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.EXCEL_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.POWERPOINT_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.WORD_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINT_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version: - Microsoft)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
ZOTAC FireStorm (HKLM-x32\...\ZOTAC FireStorm) (Version: - )

==================== Restore Points =========================

06-04-2014 11:42:23 Windows Backup
06-04-2014 12:36:25 Installed DirectX

==================== Hosts content: ==========================

2009-07-14 10:34 - 2013-07-11 22:52 - 00000856 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 acdid.acdsystems.com

==================== Scheduled Tasks (whitelisted) =============

Task: {12681D07-A084-4822-94F4-D2CB1FE174E1} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\Bootstrap.exe [2013-07-03] (Intel Corporation)
Task: {1C12F48C-7555-433A-8774-F914E2C91571} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {21AAF612-5E68-4ABD-9261-4FB57C910C74} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-06] (AVAST Software)
Task: {3A5408FD-8050-4EA9-AD33-EEF9331353E4} - System32\Tasks\AutoKMSDaily => C:\Windows\AutoKMS.exe [2013-04-16] ()
Task: {423BDBBE-03D6-45CE-809D-6D76D9E0C60C} - System32\Tasks\4807 => Wscript.exe C:\Users\TEOHKH~1\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: {9ED654E0-DD86-4BDF-AC6C-8F17C3B86407} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {A6DE0D19-63F2-4757-A7C3-517B3DC4F909} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe <==== ATTENTION
Task: {A72C454F-09B8-4987-A06A-F881B3189C74} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {C860EFD6-9842-4756-99C1-55A77A6C4A07} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\Bootstrap.exe [2013-07-03] (Intel Corporation)
Task: {CAF28985-E4DA-4F40-AA20-0165E682DA2A} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe [2013-04-16] ()
Task: {D3E16264-898F-4FC6-AD6F-2306543A90C8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-15] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe

==================== Loaded Modules (whitelisted) =============

2014-03-22 20:45 - 2014-03-04 21:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-12-23 00:06 - 2009-08-16 17:06 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2012-12-24 10:25 - 2012-12-24 10:25 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-06-23 18:14 - 2013-06-23 18:14 - 00012520 _____ () C:\Users\Teoh Khai Siang\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll
2013-06-23 18:14 - 2013-06-23 18:14 - 00015080 _____ () C:\Users\Teoh Khai Siang\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\GetCoreTempInfoNET.dll
2013-06-23 18:14 - 2013-06-23 18:14 - 00014056 _____ () C:\Users\Teoh Khai Siang\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\SystemInfo.dll
2013-05-22 21:55 - 2012-10-25 16:19 - 00846848 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2013-06-28 17:56 - 2013-06-28 17:56 - 00733184 _____ () C:\Users\Teoh Khai Siang\Documents\GIGABYTE\AIVIA GHOST\Tilt.exe
2012-09-18 15:41 - 2012-09-18 15:41 - 00191488 _____ () C:\Users\Teoh Khai Siang\Documents\GIGABYTE\AIVIA GHOST\GHOSTOPEN.exe
2014-04-07 21:06 - 2014-04-07 14:54 - 01426178 _____ () C:\Users\Teoh Khai Siang\Desktop\AdwCleaner.exe
2014-04-06 16:49 - 2014-04-06 15:21 - 02189824 _____ () C:\Program Files\AVAST Software\Avast\defs\14040600\algo.dll
2014-04-07 21:06 - 2014-04-07 21:06 - 02189824 _____ () C:\Program Files\AVAST Software\Avast\defs\14040700\algo.dll
2013-02-05 10:11 - 2013-02-05 10:11 - 00465824 _____ () C:\Program Files (x86)\NTI\NTI Backup Now EZ\sqlite3.dll
2012-02-15 07:05 - 2012-02-15 07:37 - 11796096 _____ () C:\Users\Teoh Khai Siang\AppData\Roaming\SanDisk\My Vaults\dmBackup.dll
2013-05-22 21:55 - 2012-10-25 16:19 - 01411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2013-05-22 21:55 - 2012-10-25 16:19 - 00193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2013-05-22 21:55 - 2012-10-25 16:19 - 00293376 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRtl.dll
2013-11-23 12:31 - 2013-11-23 12:31 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Disabled items from MSCONFIG ==============

==================== Faulty Device Manager Devices =============

Name: PCI Simple Communications Controller
Description: PCI Simple Communications Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (04/07/2014 09:07:00 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/06/2014 08:10:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/06/2014 08:07:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/06/2014 07:34:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/06/2014 06:05:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/06/2014 05:21:43 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/06/2014 04:50:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/04/2014 10:23:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/04/2014 06:28:51 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/03/2014 09:09:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (04/07/2014 09:05:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.