[demibear]

Not really sure where to post this, but this seemed the most best place for it. AVG 7.5 free edition (my fault since I didn't have time to upgrade it to my paid version of 8.5) started to go bonkers over dll files on my computer but would not give a cause for it. I "healed" them and restarted my computer as it instructed me and when I turned on my computer for the first time all my start up programs displayed this "The application failed to initialize properly. oxc0000022" message. Even running any other program displays it as well. I tried to run a system restore to several hours before all this started but it did not work. Help!!

[Advertisements]

Solved it on my own. Went into safe mode and realized that the programs were missing the dlls that AVG wiped out. I restored them and booted normal. Still had the issue, so I went back into safe mode and installed malwarebyte's anti-malware program. I reported I had the Trojan.BHO in a lot of places and I got them removed. After also installing comodo's internet security suite to make sure everything was clean as a second source, I did a system restore again. Everything is working like a charm once again.

[demibear]

Solved it on my own. Went into safe mode and realized that the programs were missing the dlls that AVG wiped out. I restored them and booted normal. Still had the issue, so I went back into safe mode and installed malwarebyte's anti-malware program. I reported I had the Trojan.BHO in a lot of places and I got them removed. After also installing comodo's internet security suite to make sure everything was clean as a second source, I did a system restore again. Everything is working like a charm once again.

[demibear]

Trojan/virus doesn't show up in scans anymore, but the effects of me not being able to open any programs is still there. I can use a registry cleaner to remove it, but it just comes back when ever I restart the computer. So I need help in finally exterminating this vermin. I have no intention to keep having to go in safe mode, lol.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:51:36 PM, on 4/20/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\BigFix\bigfix.exe
C:\Program Files (x86)\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\Camera Assistant Software for Gateway\traybar.exe
C:\Program Files\Camera Assistant Software for Gateway\CEC_MAIN.exe
C:\Program Files (x86)\Redblade 3.5e\Redblade.exe
C:\Program Files (x86)\Eusing Free Registry Cleaner\Regcleaner.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.gate...G...8&m=p-7801u
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.gate...G...8&m=p-7801u
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Trigger New Acer AlaunchX] c:\Acer\Preload\Command\AlaunchX\AppInRun.exe
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Gateway\traybar.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~2\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\RunOnce: [New Acer AlaunchX] c:\Acer\Preload\Command\AlaunchX\LaunchAlaunchX.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{D68CB3C0-0631-41A4-9AAC-6AA6981195B8}: NameServer = 210.5.192.4,66.178.2.25
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\cssdll32.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgrssvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgemc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\GATEWAY\Gateway Recovery Management\Service\ETService.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files (x86)\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Unknown owner - C:\Windows\system32\DRIVERS\xaudio64.exe (file missing)
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)

--
End of file - 9935 bytes

OTScanIt2 logfile created on: 4/20/2009 9:52:55 PM - Run 3
OTScanIt2 by OldTimer - Version 1.0.14.0	 Folder = C:\OTcanIt\OTScanIt2
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.99 Gb Total Physical Memory | 2.71 Gb Available Physical Memory | 67.83% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys;
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 288.09 Gb Total Space | 178.66 Gb Free Space | 62.02% Space Free | Partition Type: NTFS
Drive D: | 7.50 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 298.09 Gb Total Space | 277.76 Gb Free Space | 93.18% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: MHARRIS54-PC
Current User Name: mharris54
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days
 
[Processes - Safe List]
avgemc.exe -> %ProgramFiles%\Grisoft\AVG7\avgemc.exe -> [2009/04/16 18:25:32 | 00,353,280 | ---- | M] (GRISOFT, s.r.o.)
avgrssvc.exe -> %ProgramFiles%\Grisoft\AVG7\avgrssvc.exe -> [2009/04/16 18:25:32 | 00,192,512 | ---- | M] (GRISOFT, s.r.o.)
avgrssvc.exe -> %ProgramFiles%\Grisoft\AVG7\avgrssvc.exe -> [2009/04/16 18:25:32 | 00,192,512 | ---- | M] (GRISOFT, s.r.o.)
avgupsvc.exe -> %ProgramFiles%\Grisoft\AVG7\avgupsvc.exe -> [2009/04/16 18:25:33 | 00,049,664 | ---- | M] (GRISOFT, s.r.o.)
bigfix.exe -> %SystemDrive%\Program Files\BigFix\bigfix.exe -> [2007/08/17 04:17:56 | 02,342,912 | ---- | M] (BigFix Inc.)
cec_main.exe -> %SystemDrive%\Program Files\Camera Assistant Software for Gateway\CEC_MAIN.exe -> [2007/09/28 03:27:02 | 04,839,936 | ---- | M] ()
googletoolbarnotifier.exe -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> [2009/04/16 18:27:07 | 00,068,856 | ---- | M] (Google Inc.)
hijackthis.exe -> %ProgramFiles%\Trend Micro\HijackThis\HijackThis.exe -> [2009/04/20 20:45:27 | 00,396,288 | ---- | M] (Trend Micro Inc.)
iaanotif.exe -> %ProgramFiles%\Intel\Intel Matrix Storage Manager\IAAnotif.exe -> [2008/04/16 04:54:40 | 00,178,712 | ---- | M] (Intel Corporation)
iaantmon.exe -> %ProgramFiles%\Intel\Intel Matrix Storage Manager\IAANTMon.exe -> [2008/04/16 04:54:42 | 00,354,840 | ---- | M] (Intel Corporation)
jusched.exe -> %ProgramFiles%\Java\jre1.6.0_05\bin\jusched.exe -> [2008/02/22 15:25:21 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.)
notepad.exe -> %SystemRoot%\SysWOW64\NOTEPAD.EXE -> [2008/01/21 06:49:30 | 00,151,040 | ---- | M] (Microsoft Corporation)
o2flash.exe -> %ProgramFiles%\O2Micro Flash Memory Card Driver\o2flash.exe -> [2007/02/12 12:43:44 | 00,065,536 | ---- | M] (O2Micro International)
otscanit2.exe -> %SystemDrive%\OTcanIt\OTScanIt2\OTScanIt2.exe -> [2009/04/11 16:32:52 | 00,494,080 | ---- | M] (OldTimer Tools)
reader_sl.exe -> %ProgramFiles%\Adobe\Reader 9.0\Reader\reader_sl.exe -> [2008/06/12 13:38:00 | 00,034,672 | ---- | M] (Adobe Systems Incorporated)
redblade.exe -> %ProgramFiles%\Redblade 3.5e\Redblade.exe -> [2006/03/25 21:11:22 | 01,568,768 | ---- | M] ()
regcleaner.exe -> %ProgramFiles%\Eusing Free Registry Cleaner\Regcleaner.exe -> [2009/03/31 10:24:14 | 01,464,320 | ---- | M] ()
rpcnet.exe -> %SystemRoot%\SysWOW64\rpcnet.exe -> [2009/04/16 14:12:43 | 00,047,104 | ---- | M] (Absolute Software Corp.)
teatimer.exe -> %ProgramFiles%\Spybot - Search & Destroy\TeaTimer.exe -> [2008/07/07 09:42:06 | 02,156,368 | RHS- | M] (Safer Networking Limited)
traybar.exe -> %SystemDrive%\Program Files\Camera Assistant Software for Gateway\traybar.exe -> [2007/09/14 01:09:44 | 00,638,976 | ---- | M] (Chicony)
viewpointservice.exe -> %ProgramFiles%\Viewpoint\Common\ViewpointService.exe -> [2007/01/05 01:38:08 | 00,024,652 | ---- | M] (Viewpoint Corporation)
 
[Win32 Services - Safe List]
(Avg7Alrt) AVG7 Alert Manager Server [Win32_Own | Auto | Stopped] -> %ProgramFiles%\Grisoft\AVG7\avgamsvr.exe -> [2009/04/16 18:25:32 | 00,353,280 | ---- | M] (GRISOFT, s.r.o.)
(Avg7UpdSvc) AVG7 Update Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG7\avgupsvc.exe -> [2009/04/16 18:25:33 | 00,049,664 | ---- | M] (GRISOFT, s.r.o.)
(AvgCoreSvc) AVG7 Resident Shield Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG7\avgrssvc.exe -> [2009/04/16 18:25:32 | 00,192,512 | ---- | M] (GRISOFT, s.r.o.)
(AVGEMS) AVG E-mail Scanner [Win32_Own | Auto | Start_Pending] -> %ProgramFiles%\Grisoft\AVG7\avgemc.exe -> [2009/04/16 18:25:32 | 00,353,280 | ---- | M] (GRISOFT, s.r.o.)
(clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Win32_Own | On_Demand | Stopped] -> %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2008/01/21 06:50:58 | 00,070,144 | ---- | M] (Microsoft Corporation)
(clr_optimization_v2.0.50727_64) Microsoft .NET Framework NGEN v2.0.50727_X64 [Win32_Own | On_Demand | Stopped] -> %SystemRoot%\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -> [2008/01/21 06:50:38 | 00,093,696 | ---- | M] (Microsoft Corporation)
(cmdAgent) COMODO Internet Security Helper Service [Win32_Own | Auto | Running] -> %SystemDrive%\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -> [2009/04/19 18:21:22 | 01,043,192 | ---- | M] ()
(ehRecvr) Windows Media Center Receiver Service [Win32_Own | On_Demand | Stopped] -> %SystemRoot%\ehome\ehRecvr.exe -> [2008/01/21 06:51:36 | 00,344,064 | ---- | M] (Microsoft Corporation)
(ehSched) Windows Media Center Scheduler Service [Win32_Own | On_Demand | Stopped] -> %SystemRoot%\ehome\ehsched.exe -> [2008/01/21 06:51:36 | 00,153,600 | ---- | M] (Microsoft Corporation)
(ehstart) Windows Media Center Service Launcher [Win32_Shared | Auto | Stopped] -> %SystemRoot%\ehome\ehstart.dll -> [2006/11/02 19:03:48 | 00,015,360 | ---- | M] (Microsoft Corporation)
(ETService) Empowering Technology Service [Win32_Own | Auto | Running] -> %SystemDrive%\Program Files\GATEWAY\Gateway Recovery Management\Service\ETService.exe -> [2008/06/11 22:18:30 | 00,024,576 | ---- | M] ()
(FontCache3.0.0.0) Windows Presentation Foundation Font Cache 3.0.0.0 [Win32_Own | On_Demand | Stopped] -> %SystemRoot%\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe -> [2008/01/21 06:51:57 | 00,036,864 | ---- | M] (Microsoft Corporation)
(GameConsoleService) GameConsoleService [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Gateway Games\Gateway Game Console\GameConsoleService.exe -> [2008/05/06 02:25:46 | 00,165,416 | ---- | M] (WildTangent, Inc.)
(gusvc) Google Software Updater [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> [2009/04/16 14:51:15 | 00,182,768 | ---- | M] (Google)
(IAANTMON) Intel(R) Matrix Storage Event Monitor [Win32_Own | Auto | Running] -> %ProgramFiles%\Intel\Intel Matrix Storage Manager\IAANTMon.exe -> [2008/04/16 04:54:42 | 00,354,840 | ---- | M] (Intel Corporation)
(idsvc) Windows CardSpace [Win32_Shared | Unknown | Stopped] -> %SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe -> [2008/01/21 06:51:49 | 00,921,600 | ---- | M] (Microsoft Corporation)
(NetTcpPortSharing) Net.Tcp Port Sharing Service [Win32_Shared | Disabled | Stopped] -> %SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe -> [2008/01/21 06:51:53 | 00,122,880 | ---- | M] (Microsoft Corporation)
(o2flash) O2Micro Flash Memory Card Service [Win32_Own | Auto | Running] -> %ProgramFiles%\O2Micro Flash Memory Card Driver\o2flash.exe -> [2007/02/12 12:43:44 | 00,065,536 | ---- | M] (O2Micro International)
(odserv) Microsoft Office Diagnostics Service [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\Microsoft Shared\OFFICE12\ODSERV.EXE -> [2007/08/24 14:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation)
(ose) Office Source Engine [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\Microsoft Shared\Source Engine\OSE.EXE -> [2006/10/27 01:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation)
(PcaSvc) Program Compatibility Assistant Service [Win32_Shared | Auto | Running] -> %SystemRoot%\sysnative\pcasvc.dll -> [2008/01/21 06:47:55 | 00,079,360 | ---- | M] ()
(PerfHost) Performance Counter DLL Host [Win32_Own | On_Demand | Stopped] -> %SystemRoot%\SysWow64\perfhost.exe -> [2008/01/21 06:51:00 | 00,019,968 | ---- | M] (Microsoft Corporation)
(rpcnet) Remote Procedure Call (RPC) Net [Win32_Own | Auto | Running] -> %SystemRoot%\SysWOW64\rpcnet.exe -> [2009/04/16 14:12:43 | 00,047,104 | ---- | M] (Absolute Software Corp.)
(usnjsvc) Messenger Sharing Folders USN Journal Reader service [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\MSN Messenger\usnsvc.exe -> [2007/01/19 23:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation)
(Viewpoint Manager Service) Viewpoint Manager Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Viewpoint\Common\ViewpointService.exe -> [2007/01/05 01:38:08 | 00,024,652 | ---- | M] (Viewpoint Corporation)
(WMPNetworkSvc) Windows Media Player Network Sharing Service [Win32_Own | On_Demand | Stopped] -> %SystemDrive%\Program Files\Windows Media Player\wmpnetwk.exe -> [2008/01/21 06:52:15 | 01,216,000 | ---- | M] (Microsoft Corporation)
(XAudioService) XAudioService [Win32_Own | Auto | Running] -> %SystemRoot%\sysnative\DRIVERS\xaudio64.exe -> [2007/10/19 02:37:22 | 00,412,672 | ---- | M] ()
 
[Driver Services - Safe List]
(AvgCln64) AVG7 Clean Driver (x64) [Kernel | System | Running] -> %SystemRoot%\sysnative\Drivers\avgcln64.sys -> [2009/04/16 18:25:34 | 00,014,088 | ---- | M] ()
(AvgMfx64) AVG Minifilter x64 Resident Driver [File_System | System | Running] -> %SystemRoot%\sysnative\Drivers\avgmfx64.sys -> [2009/04/16 18:25:34 | 00,031,688 | ---- | M] ()
(AvgWFPx64) AVG7 Firewall Driver x64 [Kernel | On_Demand | Stopped] -> %SystemRoot%\sysnative\Drivers\avgwfpx64.sys -> [2009/04/16 18:25:34 | 00,063,240 | ---- | M] ()
(CAXHWAZL) CAXHWAZL [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\CAXHWAZL.sys -> [2008/03/26 03:47:06 | 00,294,400 | ---- | M] ()
(CmBatt) Microsoft ACPI Control Method Battery Driver [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\CmBatt.sys -> [2008/01/21 06:46:51 | 00,017,792 | ---- | M] ()
(CnxtHdAudService) Conexant UAA Function Driver for High Definition Audio Service [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\drivers\CHDRT64.sys -> [2008/06/02 11:50:04 | 00,264,192 | ---- | M] ()
(HdAudAddService) Microsoft 1.1 UAA Function Driver for High Definition Audio Service [Kernel | On_Demand | Stopped] -> %SystemRoot%\sysnative\drivers\HdAudio.sys -> [2006/11/02 09:28:10 | 00,273,920 | ---- | M] ()
(HSFHWAZL) HSFHWAZL [Kernel | On_Demand | Stopped] -> %SystemRoot%\sysnative\DRIVERS\VSTAZL6.SYS -> [2008/01/21 06:46:57 | 00,286,720 | ---- | M] ()
(HSF_DPV) HSF_DPV [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\CAX_DPV.sys -> [2008/03/26 03:51:16 | 01,487,872 | ---- | M] ()
(iaStor) Intel AHCI Controller [Kernel | Boot | Running] -> %SystemRoot%\sysnative\DRIVERS\iaStor.sys -> [2008/04/16 04:54:16 | 00,388,120 | ---- | M] ()
(int15) int15 [Kernel | Auto | Running] -> %SystemRoot%\SysWOW64\drivers\int15_64.sys -> [2008/06/11 22:13:24 | 00,017,952 | ---- | M] (Acer, Inc.)
(mdmxsdk) mdmxsdk [Kernel | Auto | Running] -> %SystemRoot%\sysnative\DRIVERS\mdmxsdk.sys -> [2006/06/19 09:27:24 | 00,017,024 | ---- | M] ()
(NETw5v64) Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 64 Bit  [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\NETw5v64.sys -> [2008/04/28 02:38:12 | 04,730,368 | ---- | M] ()
(NVHDA) Service for NVIDIA High Definition Audio Driver [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\drivers\nvhda64v.sys -> [2008/07/14 07:04:00 | 00,056,352 | ---- | M] ()
(O2MDRDR) O2MDRDR [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\o2mdx64.sys -> [2008/05/13 08:48:38 | 00,062,424 | ---- | M] ()
(O2SDRDR) O2SDRDR [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\o2sdx64.sys -> [2008/06/12 05:29:30 | 00,051,800 | ---- | M] ()
(PxHlpa64) PxHlpa64 [Kernel | Boot | Running] -> %SystemRoot%\sysnative\Drivers\PxHlpa64.sys -> [2007/07/26 14:00:00 | 00,053,488 | ---- | M] ()
(sdbus) sdbus [Kernel | Disabled | Stopped] -> %SystemRoot%\sysnative\DRIVERS\sdbus.sys -> [2008/01/21 06:46:55 | 00,111,104 | ---- | M] ()
(SynTP) Synaptics TouchPad Driver [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\SynTP.sys -> [2008/01/18 07:31:30 | 00,320,560 | ---- | M] ()
(usbvideo) Gateway USB 2.0 Webcam [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\Drivers\usbvideo.sys -> [2008/01/21 06:47:27 | 00,168,704 | ---- | M] ()
(UVCFTR) UVCFTR [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\Drivers\UVCFTR_S.SYS -> [2007/05/24 04:47:28 | 00,020,784 | ---- | M] ()
(winachsf) winachsf [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\CAX_CNXT.sys -> [2008/03/26 03:45:44 | 00,740,864 | ---- | M] ()
(XAudio) XAudio [Kernel | Auto | Running] -> %SystemRoot%\sysnative\DRIVERS\xaudio64.sys -> [2007/10/19 02:37:10 | 00,010,240 | ---- | M] ()
(yukonx64) NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller [Kernel | On_Demand | Running] -> %SystemRoot%\sysnative\DRIVERS\yk60x64.sys -> [2008/07/24 21:03:00 | 00,392,192 | ---- | M] ()
 
[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> 
HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://go.microsoft.com/fwlink/?LinkId=69157 -> 
HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> 
HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" -> Reg Error: Invalid data type. -> 
HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons -> 
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> %SystemRoot%\system32\blank.htm -> 
HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> 
HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk -> 
HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=0808&m=p-7801u -> 
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> 
HKEY_CURRENT_USER\: Main\\"Local Page" -> C:\Windows\system32\blank.htm -> 
HKEY_CURRENT_USER\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> 
HKEY_CURRENT_USER\: Main\\"SearchDefaultBranded" -> Reg Error: Invalid data type. -> 
HKEY_CURRENT_USER\: Main\\"Start Page" -> http://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&s=2&o=vp64&d=0808&m=p-7801u -> 
HKEY_CURRENT_USER\: Main\\"StartPageCache" -> Reg Error: Invalid data type. -> 
HKEY_CURRENT_USER\: URLSearchHooks\\"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" [HKLM] -> %SystemRoot%\SysWOW64\ieframe.dll [Microsoft Url Search Hook] -> [2008/01/21 06:50:10 | 06,068,736 | ---- | M] (Microsoft Corporation)
HKEY_CURRENT_USER\: "ProxyEnable" -> 0 -> 
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
< FireFox Extensions [User Folders] > -> 
< HOSTS File > (761 bytes and 20 lines) -> C:\Windows\System32\drivers\etc\Hosts -> 
Reset Hosts
127.0.0.1	   localhost
::1			 localhost
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> 
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} [HKLM] -> %CommonProgramFiles%\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe PDF Link Helper] -> [2008/06/12 09:33:16 | 00,075,128 | ---- | M] (Adobe Systems Incorporated)
{201f27d4-3704-41d6-89c1-aa35e39143ed} [HKLM] -> %ProgramFiles%\AskBarDis\bar\bin\askBar.dll [AskBar BHO] -> [2008/08/06 15:20:04 | 00,279,944 | ---- | M] (Ask.com)
{53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> %ProgramFiles%\Spybot - Search & Destroy\SDHelper.dll [Spybot-S&D IE Protection] -> [2008/07/07 09:41:58 | 01,562,448 | ---- | M] (Safer Networking Limited)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> %ProgramFiles%\Java\jre1.6.0_05\bin\ssv.dll [SSVHelper Class] -> [2008/02/22 15:25:19 | 00,509,328 | ---- | M] (Sun Microsystems, Inc.)
{7E853D72-626A-48EC-A868-BA8D5E23E045} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{AA58ED58-01DD-4d91-8333-CF10577473F7} [HKLM] -> %ProgramFiles%\Google\Google Toolbar\GoogleToolbar.dll [Google Toolbar Helper] -> [2009/04/16 14:26:14 | 00,259,696 | ---- | M] (Google Inc.)
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [HKLM] -> %ProgramFiles%\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [Google Toolbar Notifier BHO] -> [2009/04/16 14:51:15 | 00,668,656 | ---- | M] (Google Inc.)
{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} [HKLM] -> %ProgramFiles%\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [Google Dictionary Compression sdch] -> [2009/04/16 14:26:05 | 00,470,512 | ---- | M] (Google Inc.)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> 
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" [HKLM] -> %ProgramFiles%\Google\Google Toolbar\GoogleToolbar.dll [Google Toolbar] -> [2009/04/16 14:26:14 | 00,259,696 | ---- | M] (Google Inc.)
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}" [HKLM] -> %ProgramFiles%\AskBarDis\bar\bin\askBar.dll [Ask Toolbar] -> [2008/08/06 15:20:04 | 00,279,944 | ---- | M] (Ask.com)
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> 
WebBrowser\\"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" [HKLM] -> %ProgramFiles%\Google\Google Toolbar\GoogleToolbar.dll [Google Toolbar] -> [2009/04/16 14:26:14 | 00,259,696 | ---- | M] (Google Inc.)
WebBrowser\\"{3041D03E-FD4B-44E0-B742-2D9B88305F98}" [HKLM] -> %ProgramFiles%\AskBarDis\bar\bin\askBar.dll [Ask Toolbar] -> [2008/08/06 15:20:04 | 00,279,944 | ---- | M] (Ask.com)
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 
"Adobe Reader Speed Launcher" -> %ProgramFiles%\Adobe\Reader 9.0\Reader\Reader_sl.exe ["C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"] -> [2008/06/12 13:38:00 | 00,034,672 | ---- | M] (Adobe Systems Incorporated)
"AVG7_CC" ->  [C:\PROGRA~2\Grisoft\AVG7\avgcc.exe /STARTUP] -> File not found
"Camera Assistant Software" -> %SystemDrive%\Program Files\Camera Assistant Software for Gateway\traybar.exe ["C:\Program Files\Camera Assistant Software for Gateway\traybar.exe"] -> [2007/09/14 01:09:44 | 00,638,976 | ---- | M] (Chicony)
"eRecoveryService" ->  [] -> File not found
"SunJavaUpdateSched" -> %ProgramFiles%\Java\jre1.6.0_05\bin\jusched.exe ["C:\Program Files (x86)\Java\jre1.6.0_05\bin\jusched.exe"] -> [2008/02/22 15:25:21 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.)
"Trigger New Acer AlaunchX" -> %SystemDrive%\Acer\Preload\Command\AlaunchX\AppInRun.exe [c:\Acer\Preload\Command\AlaunchX\AppInRun.exe] -> [2008/07/17 07:52:02 | 00,008,192 | ---- | M] (Acer Inc.)
< RunOnce [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> 
"New Acer AlaunchX" -> %SystemDrive%\Acer\Preload\Command\AlaunchX\LaunchAlaunchX.exe [c:\Acer\Preload\Command\AlaunchX\LaunchAlaunchX.exe] -> [2008/07/17 07:45:46 | 00,200,704 | ---- | M] (Acer Inc.)
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 
"SpybotSD TeaTimer" -> %ProgramFiles%\Spybot - Search & Destroy\TeaTimer.exe [C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe] -> [2008/07/07 09:42:06 | 02,156,368 | RHS- | M] (Safer Networking Limited)
"swg" -> %ProgramFiles%\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] -> [2009/04/16 18:27:07 | 00,068,856 | ---- | M] (Google Inc.)
"WindowsWelcomeCenter" -> %SystemRoot%\system32\oobefldr.DLL [rundll32.exe oobefldr.dll,ShowWelcomeCenter] -> [2008/01/21 06:47:52 | 02,153,472 | ---- | M] (Microsoft Corporation)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoActiveDesktop" ->  [1] -> File not found
\\"ForceActiveDesktopOn" ->  [0] -> File not found
\\"NoActiveDesktopChanges" ->  [0] -> File not found
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"ConsentPromptBehaviorAdmin" ->  [2] -> File not found
\\"ConsentPromptBehaviorUser" ->  [1] -> File not found
\\"EnableInstallerDetection" ->  [1] -> File not found
\\"EnableLUA" ->  [1] -> File not found
\\"EnableSecureUIAPaths" ->  [1] -> File not found
\\"EnableVirtualization" ->  [1] -> File not found
\\"PromptOnSecureDesktop" ->  [1] -> File not found
\\"ValidateAdminCodeSignatures" ->  [0] -> File not found
\\"dontdisplaylastusername" ->  [0] -> File not found
\\"legalnoticecaption" ->  [] -> File not found
\\"legalnoticetext" ->  [] -> File not found
\\"scforceoption" ->  [0] -> File not found
\\"shutdownwithoutlogon" ->  [1] -> File not found
\\"undockwithoutlogon" ->  [1] -> File not found
\\"FilterAdministratorToken" ->  [0] -> File not found
\\"EnableUIADesktopToggle" ->  [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
\UIPI\Clipboard\ExceptionFormats\\"CF_TEXT" ->  [1] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_BITMAP" ->  [2] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_OEMTEXT" ->  [7] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIB" ->  [8] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_PALETTE" ->  [9] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_UNICODETEXT" ->  [13] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIBV5" ->  [17] -> File not found
< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> 
E&xport to Microsoft Excel -> %ProgramFiles%\Microsoft Office\Office12\EXCEL.EXE [res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000] -> [2007/10/06 07:37:38 | 17,927,192 | ---- | M] (Microsoft Corporation)
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> 
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [Button: Send to OneNote] -> [2007/08/29 11:49:28 | 00,606,120 | ---- | M] (Microsoft Corporation)
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\ONBttnIE.dll [Menu: S&end to OneNote] -> [2007/08/29 11:49:28 | 00,606,120 | ---- | M] (Microsoft Corporation)
{92780B25-18CC-41C8-B9BE-3C9C571A8263}:{FF059E31-CC5A-4E2E-BF3B-96E929D65503} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [Button: Research] -> [2006/10/27 07:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2}:{53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> %ProgramFiles%\Spybot - Search & Destroy\SDHelper.dll [Menu: Spybot - Search && Destroy Configuration] -> [2008/07/07 09:41:58 | 01,562,448 | ---- | M] (Safer Networking Limited)
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> 
PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> 
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> 
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> 
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab [Java Plug-in 1.6.0_05] -> 
{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab [Java Plug-in 1.6.0_05] -> 
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab [Java Plug-in 1.6.0_05] -> 
< DNS Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> 
{78118CF4-2187-40CF-AECD-B7C5A8B629F5} ->	(Intel(R) Wireless WiFi Link 5100) -> 
{D68CB3C0-0631-41A4-9AAC-6AA6981195B8} -> 210.5.192.4,66.178.2.25   (Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller) -> 
< AppInit_DLLs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs -> 
*AppInit_DLLs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls -> 
C:\Windows\SysWOW64\cssdll32.dll -> %SystemRoot%\SysWOW64\cssdll32.dll -> [2009/04/19 18:23:40 | 00,253,688 | ---- | M] (COMODO)
*MultiFile Done* -> -> 
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> 
explorer.exe -> %SystemRoot%\system32\explorer.exe -> [2008/01/21 06:49:23 | 02,927,104 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> -> 
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> 
"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> %SystemRoot%\SysWOW64\webcheck.dll [WebCheck] -> [2008/01/21 06:48:55 | 00,233,984 | ---- | M] (Microsoft Corporation)
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> 
"AlternateShell" -> cmd.exe -> 
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 -> 
"DisplayName" -> CD-ROM Driver -> 
"ImagePath" ->  [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > ->  -> 
D:\autorun.inf [[autorun] | OPEN=SETUP.EXE | ICON=ICON.ICO |  | ] -> D:\autorun.inf [ CDFS ] -> [2009/01/14 05:31:38 | 00,000,044 | R--- | M] ()
G:\autorun.inf [07EF:0001:0001:0000 | [autorun] | open=InstallSeagateManager.exe | icon=InstallSeagateManager.exe | action=Install Seagate Manager | ] -> G:\autorun.inf [ NTFS ] -> [2007/11/26 10:24:00 | 00,000,126 | ---- | M] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> 
\E
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\shell\AutoRun\command
\E\shell\AutoRun\command\\"" -> E:\InstallSeagateManager.exe [E:\InstallSeagateManager.exe] -> File not found
\G
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\shell\AutoRun\command
\G\shell\AutoRun\command\\"" -> G:\InstallSeagateManager.exe [G:\InstallSeagateManager.exe] -> [2007/11/26 10:25:00 | 00,132,392 | ---- | M] (Macrovision Corporation)
\{655a2696-76ba-11dd-a396-806e6f6e6963}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{655a2696-76ba-11dd-a396-806e6f6e6963}\shell
\{655a2696-76ba-11dd-a396-806e6f6e6963}\shell\\"" ->  [AutoRun] -> File not found
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{655a2696-76ba-11dd-a396-806e6f6e6963}\shell\AutoRun\command
\{655a2696-76ba-11dd-a396-806e6f6e6963}\shell\AutoRun\command\\"" -> D:\SETUP.EXE [D:\SETUP.EXE] -> [2009/01/24 03:03:48 | 00,341,240 | R--- | M] (Valve Corporation)
\{f1939d89-2aed-11de-bb71-00215d5ba180}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f1939d89-2aed-11de-bb71-00215d5ba180}\shell\AutoRun\command
\{f1939d89-2aed-11de-bb71-00215d5ba180}\shell\AutoRun\command\\"" -> G:\InstallSeagateManager.exe [G:\InstallSeagateManager.exe] -> [2007/11/26 10:25:00 | 00,132,392 | ---- | M] (Macrovision Corporation)
\{f1939e25-2aed-11de-bb71-9148d1dac440}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f1939e25-2aed-11de-bb71-9148d1dac440}\shell\AutoRun\command
\{f1939e25-2aed-11de-bb71-9148d1dac440}\shell\AutoRun\command\\"" -> E:\InstallSeagateManager.exe [E:\InstallSeagateManager.exe] -> File not found
 
 
[Files/Folders - Created Within 30 Days]
hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [2009/04/20 21:46:25 | 42,896,01536 | -HS- | C] ()
D3DCompiler_40.dll -> %SystemRoot%\System32\D3DCompiler_40.dll -> [2009/04/20 21:26:36 | 02,036,576 | ---- | C] (Microsoft Corporation)
d3dx10_40.dll -> %SystemRoot%\System32\d3dx10_40.dll -> [2009/04/20 21:26:36 | 00,452,440 | ---- | C] (Microsoft Corporation)
D3DX9_40.dll -> %SystemRoot%\System32\D3DX9_40.dll -> [2009/04/20 21:26:35 | 04,379,984 | ---- | C] (Microsoft Corporation)
XAudio2_3.dll -> %SystemRoot%\System32\XAudio2_3.dll -> [2009/04/20 21:26:34 | 00,514,384 | ---- | C] (Microsoft Corporation)
xactengine3_3.dll -> %SystemRoot%\System32\xactengine3_3.dll -> [2009/04/20 21:26:34 | 00,235,856 | ---- | C] (Microsoft Corporation)
XAPOFX1_2.dll -> %SystemRoot%\System32\XAPOFX1_2.dll -> [2009/04/20 21:26:34 | 00,070,992 | ---- | C] (Microsoft Corporation)
X3DAudio1_5.dll -> %SystemRoot%\System32\X3DAudio1_5.dll -> [2009/04/20 21:26:33 | 00,023,376 | ---- | C] (Microsoft Corporation)
XAudio2_2.dll -> %SystemRoot%\System32\XAudio2_2.dll -> [2009/04/20 21:26:32 | 00,509,448 | ---- | C] (Microsoft Corporation)
XAPOFX1_1.dll -> %SystemRoot%\System32\XAPOFX1_1.dll -> [2009/04/20 21:26:32 | 00,068,616 | ---- | C] (Microsoft Corporation)
D3DCompiler_39.dll -> %SystemRoot%\System32\D3DCompiler_39.dll -> [2009/04/20 21:26:31 | 01,493,528 | ---- | C] (Microsoft Corporation)
d3dx10_39.dll -> %SystemRoot%\System32\d3dx10_39.dll -> [2009/04/20 21:26:31 | 00,467,984 | ---- | C] (Microsoft Corporation)
xactengine3_2.dll -> %SystemRoot%\System32\xactengine3_2.dll -> [2009/04/20 21:26:31 | 00,238,088 | ---- | C] (Microsoft Corporation)
D3DX9_39.dll -> %SystemRoot%\System32\D3DX9_39.dll -> [2009/04/20 21:26:30 | 03,851,784 | ---- | C] (Microsoft Corporation)
XAudio2_1.dll -> %SystemRoot%\System32\XAudio2_1.dll -> [2009/04/20 21:26:29 | 00,507,400 | ---- | C] (Microsoft Corporation)
XAPOFX1_0.dll -> %SystemRoot%\System32\XAPOFX1_0.dll -> [2009/04/20 21:26:29 | 00,065,032 | ---- | C] (Microsoft Corporation)
xactengine3_1.dll -> %SystemRoot%\System32\xactengine3_1.dll -> [2009/04/20 21:26:28 | 00,238,088 | ---- | C] (Microsoft Corporation)
X3DAudio1_4.dll -> %SystemRoot%\System32\X3DAudio1_4.dll -> [2009/04/20 21:26:28 | 00,025,608 | ---- | C] (Microsoft Corporation)
D3DX9_38.dll -> %SystemRoot%\System32\D3DX9_38.dll -> [2009/04/20 21:26:27 | 03,850,760 | ---- | C] (Microsoft Corporation)
D3DCompiler_38.dll -> %SystemRoot%\System32\D3DCompiler_38.dll -> [2009/04/20 21:26:27 | 01,491,992 | ---- | C] (Microsoft Corporation)
d3dx10_38.dll -> %SystemRoot%\System32\d3dx10_38.dll -> [2009/04/20 21:26:27 | 00,467,984 | ---- | C] (Microsoft Corporation)
XAudio2_0.dll -> %SystemRoot%\System32\XAudio2_0.dll -> [2009/04/20 21:26:26 | 00,479,752 | ---- | C] (Microsoft Corporation)
xactengine3_0.dll -> %SystemRoot%\System32\xactengine3_0.dll -> [2009/04/20 21:26:25 | 00,238,088 | ---- | C] (Microsoft Corporation)
X3DAudio1_3.dll -> %SystemRoot%\System32\X3DAudio1_3.dll -> [2009/04/20 21:26:25 | 00,025,608 | ---- | C] (Microsoft Corporation)
D3DCompiler_37.dll -> %SystemRoot%\System32\D3DCompiler_37.dll -> [2009/04/20 21:26:24 | 01,420,824 | ---- | C] (Microsoft Corporation)
d3dx10_37.dll -> %SystemRoot%\System32\d3dx10_37.dll -> [2009/04/20 21:26:24 | 00,462,864 | ---- | C] (Microsoft Corporation)
D3DX9_37.dll -> %SystemRoot%\System32\D3DX9_37.dll -> [2009/04/20 21:26:23 | 03,786,760 | ---- | C] (Microsoft Corporation)
xactengine2_10.dll -> %SystemRoot%\System32\xactengine2_10.dll -> [2009/04/20 21:26:22 | 00,267,272 | ---- | C] (Microsoft Corporation)
d3dx9_36.dll -> %SystemRoot%\System32\d3dx9_36.dll -> [2009/04/20 21:26:20 | 03,734,536 | ---- | C] (Microsoft Corporation)
D3DCompiler_36.dll -> %SystemRoot%\System32\D3DCompiler_36.dll -> [2009/04/20 21:26:20 | 01,374,232 | ---- | C] (Microsoft Corporation)
d3dx10_36.dll -> %SystemRoot%\System32\d3dx10_36.dll -> [2009/04/20 21:26:20 | 00,444,776 | ---- | C] (Microsoft Corporation)
xactengine2_9.dll -> %SystemRoot%\System32\xactengine2_9.dll -> [2009/04/20 21:26:19 | 00,267,112 | ---- | C] (Microsoft Corporation)
D3DCompiler_35.dll -> %SystemRoot%\System32\D3DCompiler_35.dll -> [2009/04/20 21:26:18 | 01,358,192 | ---- | C] (Microsoft Corporation)
d3dx10_35.dll -> %SystemRoot%\System32\d3dx10_35.dll -> [2009/04/20 21:26:18 | 00,444,776 | ---- | C] (Microsoft Corporation)
D3DCompiler_34.dll -> %SystemRoot%\System32\D3DCompiler_34.dll -> [2009/04/20 21:26:16 | 01,124,720 | ---- | C] (Microsoft Corporation)
d3dx10_34.dll -> %SystemRoot%\System32\d3dx10_34.dll -> [2009/04/20 21:26:16 | 00,443,752 | ---- | C] (Microsoft Corporation)
xactengine2_8.dll -> %SystemRoot%\System32\xactengine2_8.dll -> [2009/04/20 21:26:16 | 00,266,088 | ---- | C] (Microsoft Corporation)
X3DAudio1_2.dll -> %SystemRoot%\System32\X3DAudio1_2.dll -> [2009/04/20 21:26:16 | 00,017,928 | ---- | C] (Microsoft Corporation)
d3dx9_34.dll -> %SystemRoot%\System32\d3dx9_34.dll -> [2009/04/20 21:26:15 | 03,497,832 | ---- | C] (Microsoft Corporation)
xinput1_3.dll -> %SystemRoot%\System32\xinput1_3.dll -> [2009/04/20 21:26:15 | 00,081,768 | ---- | C] (Microsoft Corporation)
xactengine2_7.dll -> %SystemRoot%\System32\xactengine2_7.dll -> [2009/04/20 21:26:14 | 00,261,480 | ---- | C] (Microsoft Corporation)
D3DCompiler_33.dll -> %SystemRoot%\System32\D3DCompiler_33.dll -> [2009/04/20 21:26:13 | 01,123,696 | ---- | C] (Microsoft Corporation)
d3dx10_33.dll -> %SystemRoot%\System32\d3dx10_33.dll -> [2009/04/20 21:26:13 | 00,443,752 | ---- | C] (Microsoft Corporation)
d3dx9_33.dll -> %SystemRoot%\System32\d3dx9_33.dll -> [2009/04/20 21:26:12 | 03,495,784 | ---- | C] (Microsoft Corporation)
xactengine2_6.dll -> %SystemRoot%\System32\xactengine2_6.dll -> [2009/04/20 21:26:12 | 00,255,848 | ---- | C] (Microsoft Corporation)
d3dx10.dll -> %SystemRoot%\System32\d3dx10.dll -> [2009/04/20 21:26:11 | 00,440,080 | ---- | C] (Microsoft Corporation)
xactengine2_5.dll -> %SystemRoot%\System32\xactengine2_5.dll -> [2009/04/20 21:26:11 | 00,251,672 | ---- | C] (Microsoft Corporation)
d3dx9_32.dll -> %SystemRoot%\System32\d3dx9_32.dll -> [2009/04/20 21:25:50 | 03,426,072 | ---- | C] (Microsoft Corporation)
x3daudio1_1.dll -> %SystemRoot%\System32\x3daudio1_1.dll -> [2009/04/20 21:25:49 | 00,015,128 | ---- | C] (Microsoft Corporation)
Eusing Free Registry Cleaner.lnk -> %UserProfile%\Desktop\Eusing Free Registry Cleaner.lnk -> [2009/04/20 20:46:15 | 00,000,894 | ---- | C] ()
Eusing Free Registry Cleaner -> %ProgramFiles%\Eusing Free Registry Cleaner -> [2009/04/20 20:46:14 | 00,000,000 | ---D | C]
HijackThis.lnk -> %UserProfile%\Desktop\HijackThis.lnk -> [2009/04/20 20:45:28 | 00,001,930 | ---- | C] ()
Taun We - Wookieepedia, the Star Wars Wiki.mht -> %UserProfile%\Documents\Taun We - Wookieepedia, the Star Wars Wiki.mht -> [2009/04/20 17:04:18 | 00,990,604 | ---- | C] ()
Jedi Exile - Wookieepedia, the Star Wars Wiki.mht -> %UserProfile%\Documents\Jedi Exile - Wookieepedia, the Star Wars Wiki.mht -> [2009/04/20 16:58:04 | 01,222,293 | ---- | C] ()
Mandalorian - Wookieepedia, the Star Wars Wiki.mht -> %UserProfile%\Documents\Mandalorian - Wookieepedia, the Star Wars Wiki.mht -> [2009/04/20 16:47:16 | 01,378,789 | ---- | C] ()
CyberLink -> %AllUsersProfile%\CyberLink -> [2009/04/20 16:24:09 | 00,000,000 | ---D | C]
CyberLink -> %AppData%\CyberLink -> [2009/04/20 16:22:58 | 00,000,000 | ---D | C]
FOXNews_com - Sean Hannity 'On the Record' on the Anti-Tax Tea Party Protests - Greta Van Susteren  On The Record With Greta.mht -> %UserProfile%\Documents\FOXNews_com - Sean Hannity 'On the Record' on the Anti-Tax Tea Party Protests - Greta Van Susteren  On The Record With Greta.mht -> [2009/04/20 16:12:49 | 00,590,758 | ---- | C] ()
EVE -> %UserProfile%\Documents\EVE -> [2009/04/20 15:23:44 | 00,000,000 | ---D | C]
CCP -> %AllUsersProfile%\CCP -> [2009/04/20 15:23:43 | 00,000,000 | ---D | C]
CCP -> %UserProfile%\AppData\Local\CCP -> [2009/04/20 15:23:39 | 00,000,000 | ---D | C]
wuwebv.dll -> %SystemRoot%\System32\wuwebv.dll -> [2009/04/20 14:20:23 | 00,162,064 | ---- | C] (Microsoft Corporation)
wuapp.exe -> %SystemRoot%\System32\wuapp.exe -> [2009/04/20 14:20:23 | 00,031,232 | ---- | C] (Microsoft Corporation)
d3dx9_35.dll -> %SystemRoot%\System32\d3dx9_35.dll -> [2009/04/20 13:02:10 | 03,727,720 | ---- | C] (Microsoft Corporation)
CCP -> %ProgramFiles%\CCP -> [2009/04/20 12:56:52 | 00,000,000 | ---D | C]
Sosy 2.jpg -> %UserProfile%\Documents\Sosy 2.jpg -> [2009/04/20 10:40:12 | 00,051,140 | ---- | C] ()
Sosy.jpg -> %UserProfile%\Documents\Sosy.jpg -> [2009/04/20 10:39:06 | 00,036,783 | ---- | C] ()
Spybot - Search & Destroy.lnk -> %UserProfile%\Desktop\Spybot - Search & Destroy.lnk -> [2009/04/19 23:59:13 | 00,001,099 | ---- | C] ()
Spybot - Search & Destroy -> %ProgramFiles%\Spybot - Search & Destroy -> [2009/04/19 23:59:10 | 00,000,000 | ---D | C]
Spybot - Search & Destroy -> %AllUsersProfile%\Spybot - Search & Destroy -> [2009/04/19 23:59:10 | 00,000,000 | ---D | C]
Wise Installation Wizard -> %CommonProgramFiles%\Wise Installation Wizard -> [2009/04/19 22:48:54 | 00,000,000 | ---D | C]
OTcanIt -> %SystemDrive%\OTcanIt -> [2009/04/19 22:23:44 | 00,000,000 | ---D | C]
mbam.sys -> %SystemRoot%\System32\drivers\mbam.sys -> [2009/04/19 22:22:37 | 00,015,504 | ---- | C] (Malwarebytes Corporation)
Malwarebytes' Anti-Malware.lnk -> %SystemDrive%\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk -> [2009/04/19 22:22:37 | 00,000,850 | ---- | C] ()
mbamswissarmy.sys -> %SystemRoot%\System32\drivers\mbamswissarmy.sys -> [2009/04/19 22:22:35 | 00,038,496 | ---- | C] (Malwarebytes Corporation)
COMODO Internet Security.lnk -> %SystemDrive%\Users\Public\Desktop\COMODO Internet Security.lnk -> [2009/04/19 19:04:06 | 00,000,950 | ---- | C] ()
cssdll32.dll -> %SystemRoot%\System32\cssdll32.dll -> [2009/04/19 18:23:41 | 00,253,688 | ---- | C] (COMODO)
guard32.dll -> %SystemRoot%\System32\guard32.dll -> [2009/04/19 18:21:30 | 00,155,384 | ---- | C] ()
ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> %UserProfile%\ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> [2009/04/19 18:17:25 | 00,524,288 | -HS- | C] ()
ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> %UserProfile%\ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> [2009/04/19 18:17:25 | 00,524,288 | -HS- | C] ()
ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TM.blf -> %UserProfile%\ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TM.blf -> [2009/04/19 18:17:25 | 00,065,536 | -HS- | C] ()
COMODO -> %UserProfile%\AppData\Local\COMODO -> [2009/04/19 17:17:28 | 00,000,000 | ---D | C]
Mozilla -> %AppData%\Mozilla -> [2009/04/19 16:09:51 | 00,000,000 | ---D | C]
AskBarDis -> %ProgramFiles%\AskBarDis -> [2009/04/19 16:09:51 | 00,000,000 | ---D | C]
Comodo -> %AllUsersProfile%\Comodo -> [2009/04/19 16:07:04 | 00,000,000 | ---D | C]
Rooter$ -> %SystemDrive%\Rooter$ -> [2009/04/19 16:05:45 | 00,000,000 | ---D | C]
Trend Micro -> %ProgramFiles%\Trend Micro -> [2009/04/19 16:01:21 | 00,000,000 | ---D | C]
Malwarebytes -> %AppData%\Malwarebytes -> [2009/04/19 16:00:41 | 00,000,000 | ---D | C]
Malwarebytes -> %AllUsersProfile%\Malwarebytes -> [2009/04/19 16:00:36 | 00,000,000 | ---D | C]
Malwarebytes' Anti-Malware -> %ProgramFiles%\Malwarebytes' Anti-Malware -> [2009/04/19 16:00:35 | 00,000,000 | ---D | C]
NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> %UserProfile%\NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> [2009/04/19 15:34:02 | 00,524,288 | -HS- | C] ()
NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> %UserProfile%\NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> [2009/04/19 15:34:02 | 00,524,288 | -HS- | C] ()
NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TM.blf -> %UserProfile%\NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TM.blf -> [2009/04/19 15:34:02 | 00,065,536 | -HS- | C] ()
R u really out there___.htm -> %UserProfile%\Documents\R u really out there___.htm -> [2009/04/19 12:34:45 | 00,004,739 | ---- | C] ()
R u really out there____files -> %UserProfile%\Documents\R u really out there____files -> [2009/04/19 12:34:45 | 00,000,000 | ---D | C]
Never done this before!.mht -> %UserProfile%\Documents\Never done this before!.mht -> [2009/04/19 12:34:29 | 00,113,333 | ---- | C] ()
Trying to find a nice guy__.htm -> %UserProfile%\Documents\Trying to find a nice guy__.htm -> [2009/04/19 12:34:09 | 00,004,386 | ---- | C] ()
Trying to find a nice guy___files -> %UserProfile%\Documents\Trying to find a nice guy___files -> [2009/04/19 12:34:09 | 00,000,000 | ---D | C]
Love, Laugh, Spoil me.mht -> %UserProfile%\Documents\Love, Laugh, Spoil me.mht -> [2009/04/19 12:25:02 | 00,139,787 | ---- | C] ()
Looking for a nice guy.mht -> %UserProfile%\Documents\Looking for a nice guy.mht -> [2009/04/19 12:22:53 | 00,107,534 | ---- | C] ()
Gmail - Fellow Ohioan here.mht -> %UserProfile%\Documents\Gmail - Fellow Ohioan here.mht -> [2009/04/19 12:06:38 | 00,069,130 | ---- | C] ()
$VAULT$.AVG -> %SystemDrive%\$VAULT$.AVG -> [2009/04/19 11:07:29 | 00,000,000 | RH-D | C]
CmdLineExt_x64.dll -> %SystemRoot%\System32\CmdLineExt_x64.dll -> [2009/04/19 10:08:45 | 00,178,800 | ---- | C] (Sony DADC Austria AG.)
SecuROM -> %AppData%\SecuROM -> [2009/04/19 10:07:42 | 00,000,000 | RH-D | C]
b29cc06e4bd0bc800ff7ef -> %SystemDrive%\b29cc06e4bd0bc800ff7ef -> [2009/04/19 09:55:53 | 00,000,000 | ---D | C]
BlendSettings.ini -> %SystemRoot%\BlendSettings.ini -> [2009/04/17 21:21:14 | 00,000,023 | ---- | C] ()
Oblivion.lnk -> %SystemDrive%\Users\Public\Desktop\Oblivion.lnk -> [2009/04/17 17:43:56 | 00,002,001 | ---- | C] ()
Celsa.rb5 -> %UserProfile%\Desktop\Celsa.rb5 -> [2009/04/17 17:11:52 | 00,019,551 | ---- | C] ()
Bethesda Softworks -> %ProgramFiles%\Bethesda Softworks -> [2009/04/17 17:11:21 | 00,000,000 | ---D | C]
Oblivion -> %UserProfile%\AppData\Local\Oblivion -> [2009/04/17 17:10:37 | 00,000,000 | ---D | C]
My Games -> %UserProfile%\Documents\My Games -> [2009/04/17 17:10:37 | 00,000,000 | ---D | C]
Fleet Command.lnk -> %SystemDrive%\Users\Public\Desktop\Fleet Command.lnk -> [2009/04/17 15:32:38 | 00,001,965 | ---- | C] ()
688I Hunter-Killer.lnk -> %SystemDrive%\Users\Public\Desktop\688I Hunter-Killer.lnk -> [2009/04/17 15:22:06 | 00,001,960 | ---- | C] ()
Sonalysts Combat Simulations -> %ProgramFiles%\Sonalysts Combat Simulations -> [2009/04/17 15:18:29 | 00,000,000 | ---D | C]
The Sims™ 2 Apartment Life.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Apartment Life.lnk -> [2009/04/17 12:08:20 | 00,002,139 | ---- | C] ()
www.thesims3.com.lnk -> %SystemDrive%\Users\Public\Desktop\www.thesims3.com.lnk -> [2009/04/17 12:08:20 | 00,001,346 | ---- | C] ()
Ciera.rb5 -> %UserProfile%\Desktop\Ciera.rb5 -> [2009/04/17 12:07:50 | 00,015,380 | ---- | C] ()
The Sims™ 2 Seasons.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Seasons.lnk -> [2009/04/17 12:03:27 | 00,002,051 | ---- | C] ()
Kirsten.html -> %UserProfile%\Desktop\Kirsten.html -> [2009/04/17 11:58:26 | 00,096,468 | ---- | C] ()
Kirsten.rb5 -> %UserProfile%\Desktop\Kirsten.rb5 -> [2009/04/17 11:55:06 | 00,035,037 | ---- | C] ()
The Sims™ 2 FreeTime.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 FreeTime.lnk -> [2009/04/17 11:53:06 | 00,002,085 | ---- | C] ()
The Sims™ 2 Bon Voyage.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Bon Voyage.lnk -> [2009/04/17 11:41:49 | 00,002,103 | ---- | C] ()
The Sims 2 Open For Business.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims 2 Open For Business.lnk -> [2009/04/17 11:32:37 | 00,002,141 | ---- | C] ()
EA Games -> %SystemDrive%\Users\Public\Documents\EA Games -> [2009/04/17 11:32:22 | 00,000,000 | ---D | C]
The Sims 2 University.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims 2 University.lnk -> [2009/04/17 11:22:39 | 00,002,078 | ---- | C] ()
The Sims™ 2 Double Deluxe.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Double Deluxe.lnk -> [2009/04/17 11:13:04 | 00,002,226 | ---- | C] ()
EA Games -> %UserProfile%\Documents\EA Games -> [2009/04/17 11:12:49 | 00,000,000 | ---D | C]
EA GAMES -> %ProgramFiles%\EA GAMES -> [2009/04/17 11:02:08 | 00,000,000 | ---D | C]
vp6vfw.dll -> %SystemRoot%\System32\vp6vfw.dll -> [2009/04/17 11:02:07 | 00,445,504 | R--- | C] (On2.com)
Give to Danielle -> %UserProfile%\Desktop\Give to Danielle -> [2009/04/17 09:51:39 | 00,000,000 | ---D | C]
7-Zip -> %ProgramFiles%\7-Zip -> [2009/04/17 09:46:30 | 00,000,000 | ---D | C]
rpcnetp.dll -> %SystemRoot%\System32\rpcnetp.dll -> [2009/04/17 05:23:14 | 00,017,408 | ---- | C] ()
rpcnetp.exe -> %SystemRoot%\System32\rpcnetp.exe -> [2009/04/17 05:20:49 | 00,017,408 | ---- | C] ()
MassEffectLauncher - Shortcut.lnk -> %UserProfile%\Desktop\MassEffectLauncher - Shortcut.lnk -> [2009/04/16 21:31:12 | 00,000,919 | ---- | C] ()
N360BUOptions.ini -> %AllUsersProfile%\N360BUOptions.ini -> [2009/04/16 21:27:08 | 00,005,115 | ---- | C] ()
TeraCopy -> %AppData%\TeraCopy -> [2009/04/16 20:30:39 | 00,000,000 | ---D | C]
dotnetfx3530729.01 -> %UserProfile%\AppData\Local\dotnetfx3530729.01 -> [2009/04/16 19:54:51 | 00,000,000 | ---D | C]
DivX -> %AppData%\DivX -> [2009/04/16 19:51:10 | 00,000,000 | ---D | C]
Clipboard06.jpg -> %UserProfile%\Documents\Clipboard06.jpg -> [2009/04/16 19:46:43 | 00,129,092 | ---- | C] ()
Kirsten.jpg -> %UserProfile%\Documents\Kirsten.jpg -> [2009/04/16 19:46:19 | 00,077,659 | ---- | C] ()
Clipboard02.jpg -> %UserProfile%\Documents\Clipboard02.jpg -> [2009/04/16 19:45:50 | 00,018,669 | ---- | C] ()
DivX Player.lnk -> %SystemDrive%\Users\Public\Desktop\DivX Player.lnk -> [2009/04/16 18:33:29 | 00,000,979 | ---- | C] ()
DivX Converter.lnk -> %SystemDrive%\Users\Public\Desktop\DivX Converter.lnk -> [2009/04/16 18:33:23 | 00,000,990 | ---- | C] ()
DivX Movies.lnk -> %UserProfile%\Desktop\DivX Movies.lnk -> [2009/04/16 18:33:17 | 00,001,424 | ---- | C] ()
DivX -> %ProgramFiles%\DivX -> [2009/04/16 18:33:17 | 00,000,000 | ---D | C]
GDIPFONTCACHEV1.DAT -> %UserProfile%\AppData\Local\GDIPFONTCACHEV1.DAT -> [2009/04/16 18:28:22 | 00,070,192 | ---- | C] ()
Symantec -> %AppData%\Symantec -> [2009/04/16 18:28:09 | 00,000,000 | ---D | C]
desktop.ini -> %UserProfile%\Documents\desktop.ini -> [2009/04/16 18:28:03 | 00,000,402 | -HS- | C] ()
desktop.ini -> %UserProfile%\Desktop\desktop.ini -> [2009/04/16 18:28:03 | 00,000,282 | -HS- | C] ()
desktop.ini -> %AppData%\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -> [2009/04/16 18:28:03 | 00,000,174 | -HS- | C] ()
Searches -> %UserProfile%\Searches -> [2009/04/16 18:28:03 | 00,000,000 | R--D | C]
Identities -> %AppData%\Identities -> [2009/04/16 18:27:56 | 00,000,000 | ---D | C]
Contacts -> %UserProfile%\Contacts -> [2009/04/16 18:27:54 | 00,000,000 | R--D | C]
Application Data -> %AllUsersProfile%\Application Data -> [2009/04/16 18:27:39 | 00,000,000 | ---D | C]
eBay.lnk -> %SystemDrive%\Users\Public\Desktop\eBay.lnk -> [2009/04/16 18:27:22 | 00,001,527 | ---- | C] ()
Google -> %AllUsersProfile%\Google -> [2009/04/16 18:27:07 | 00,000,000 | ---D | C]
Google -> %ProgramFiles%\Google -> [2009/04/16 18:27:04 | 00,000,000 | ---D | C]
VirtualStore -> %UserProfile%\AppData\Local\VirtualStore -> [2009/04/16 18:26:38 | 00,000,000 | ---D | C]
ntuser.dat_previous -> %UserProfile%\ntuser.dat_previous -> [2009/04/16 18:26:36 | 01,572,864 | -HS- | C] ()
ntuser.dat -> %UserProfile%\ntuser.dat -> [2009/04/16 18:26:36 | 01,572,864 | -HS- | C] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000002.regtrans-ms -> %UserProfile%\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000002.regtrans-ms -> [2009/04/16 18:26:36 | 00,524,288 | -HS- | C] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms -> %UserProfile%\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms -> [2009/04/16 18:26:36 | 00,524,288 | -HS- | C] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf -> %UserProfile%\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf -> [2009/04/16 18:26:36 | 00,065,536 | -HS- | C] ()
ntuser.ini -> %UserProfile%\ntuser.ini -> [2009/04/16 18:26:36 | 00,000,020 | -HS- | C] ()
Microsoft -> %AppData%\Microsoft -> [2009/04/16 18:26:36 | 00,000,000 | --SD | C]
Videos -> %UserProfile%\Videos -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Saved Games -> %UserProfile%\Saved Games -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Pictures -> %UserProfile%\Pictures -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Music -> %UserProfile%\Music -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Links -> %UserProfile%\Links -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Favorites -> %UserProfile%\Favorites -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Downloads -> %UserProfile%\Downloads -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Documents -> %UserProfile%\Documents -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Desktop -> %UserProfile%\Desktop -> [2009/04/16 18:26:36 | 00,000,000 | R--D | C]
Temporary Internet Files -> %UserProfile%\AppData\Local\Temporary Internet Files -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
Templates -> %UserProfile%\Templates -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
Start Menu -> %UserProfile%\Start Menu -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
SendTo -> %UserProfile%\SendTo -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
Recent -> %UserProfile%\Recent -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
PrintHood -> %UserProfile%\PrintHood -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
NetHood -> %UserProfile%\NetHood -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
My Videos -> %UserProfile%\Documents\My Videos -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
My Pictures -> %UserProfile%\Documents\My Pictures -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
My Music -> %UserProfile%\Documents\My Music -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
My Documents -> %UserProfile%\My Documents -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
Local Settings -> %UserProfile%\Local Settings -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
History -> %UserProfile%\AppData\Local\History -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
Cookies -> %UserProfile%\Cookies -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
Application Data -> %UserProfile%\Application Data -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
Application Data -> %UserProfile%\AppData\Local\Application Data -> [2009/04/16 18:26:36 | 00,000,000 | -HSD | C]
AppData -> %UserProfile%\AppData -> [2009/04/16 18:26:36 | 00,000,000 | -H-D | C]
Temp -> %UserProfile%\AppData\Local\Temp -> [2009/04/16 18:26:36 | 00,000,000 | ---D | C]
Microsoft -> %UserProfile%\AppData\Local\Microsoft -> [2009/04/16 18:26:36 | 00,000,000 | ---D | C]
Media Center Programs -> %AppData%\Media Center Programs -> [2009/04/16 18:26:36 | 00,000,000 | ---D | C]
AVG7 -> %AppData%\AVG7 -> [2009/04/16 18:25:51 | 00,000,000 | ---D | C]
AVG 7.5.lnk -> %SystemDrive%\Users\Public\Desktop\AVG 7.5.lnk -> [2009/04/16 18:25:34 | 00,001,716 | ---- | C] ()
Grisoft -> %ProgramFiles%\Grisoft -> [2009/04/16 18:25:32 | 00,000,000 | ---D | C]
Grisoft -> %AllUsersProfile%\Grisoft -> [2009/04/16 18:25:32 | 00,000,000 | ---D | C]
avg7 -> %AllUsersProfile%\avg7 -> [2009/04/16 18:25:32 | 00,000,000 | ---D | C]
BioWare -> %UserProfile%\Documents\BioWare -> [2009/04/16 18:23:24 | 00,000,000 | ---D | C]
Auslogics -> %AppData%\Auslogics -> [2009/04/16 18:18:00 | 00,000,000 | ---D | C]
AusLogics Disk Defrag.lnk -> %UserProfile%\Desktop\AusLogics Disk Defrag.lnk -> [2009/04/16 18:17:58 | 00,000,973 | ---- | C] ()
Auslogics -> %ProgramFiles%\Auslogics -> [2009/04/16 18:17:57 | 00,000,000 | ---D | C]
xvidcore.dll -> %SystemRoot%\System32\xvidcore.dll -> [2009/04/16 18:17:01 | 00,765,952 | ---- | C] ()
xvidvfw.dll -> %SystemRoot%\System32\xvidvfw.dll -> [2009/04/16 18:17:01 | 00,180,224 | ---- | C] ()
xvid.ax -> %SystemRoot%\System32\xvid.ax -> [2009/04/16 18:17:01 | 00,077,824 | ---- | C] ()
Xvid -> %ProgramFiles%\Xvid -> [2009/04/16 18:17:01 | 00,000,000 | ---D | C]
TeraCopy.lnk -> %UserProfile%\Desktop\TeraCopy.lnk -> [2009/04/16 18:14:59 | 00,000,784 | ---- | C] ()
TeraCopy -> %ProgramFiles%\TeraCopy -> [2009/04/16 18:14:58 | 00,000,000 | ---D | C]
Media Center Programs -> %AllUsersProfile%\Media Center Programs -> [2009/04/16 18:14:49 | 00,000,000 | ---D | C]
BioWare -> %CommonProgramFiles%\BioWare -> [2009/04/16 18:14:48 | 00,000,000 | ---D | C]
Winamp.lnk -> %SystemDrive%\Users\Public\Desktop\Winamp.lnk -> [2009/04/16 18:07:52 | 00,000,830 | ---- | C] ()
Winamp -> %ProgramFiles%\Winamp -> [2009/04/16 18:07:44 | 00,000,000 | ---D | C]
Winamp -> %AppData%\Winamp -> [2009/04/16 18:07:44 | 00,000,000 | ---D | C]
Redblade.lnk -> %UserProfile%\Desktop\Redblade.lnk -> [2009/04/16 18:06:37 | 00,000,811 | ---- | C] ()
Redblade 3.5e -> %ProgramFiles%\Redblade 3.5e -> [2009/04/16 18:06:36 | 00,000,000 | ---D | C]
Nvu.lnk -> %UserProfile%\Desktop\Nvu.lnk -> [2009/04/16 18:06:10 | 00,000,722 | ---- | C] ()
Nvu -> %ProgramFiles%\Nvu -> [2009/04/16 18:06:06 | 00,000,000 | ---D | C]
AIM 6.lnk -> %SystemDrive%\Users\Public\Desktop\AIM 6.lnk -> [2009/04/16 18:05:55 | 00,001,852 | ---- | C] ()
Viewpoint -> %ProgramFiles%\Viewpoint -> [2009/04/16 18:05:55 | 00,000,000 | ---D | C]
Viewpoint -> %AllUsersProfile%\Viewpoint -> [2009/04/16 18:05:55 | 00,000,000 | ---D | C]
AOL OCP -> %AllUsersProfile%\AOL OCP -> [2009/04/16 18:05:50 | 00,000,000 | ---D | C]
AOL -> %AllUsersProfile%\AOL -> [2009/04/16 18:05:50 | 00,000,000 | ---D | C]
AOL -> %CommonProgramFiles%\AOL -> [2009/04/16 18:05:37 | 00,000,000 | ---D | C]
AIM6 -> %ProgramFiles%\AIM6 -> [2009/04/16 18:05:26 | 00,000,000 | ---D | C]
IPH.PH -> %SystemDrive%\IPH.PH -> [2009/04/16 18:05:24 | 00,000,367 | -H-- | C] ()
IrfanView Thumbnails.lnk -> %UserProfile%\Desktop\IrfanView Thumbnails.lnk -> [2009/04/16 18:04:41 | 00,001,731 | ---- | C] ()
IrfanView.lnk -> %UserProfile%\Desktop\IrfanView.lnk -> [2009/04/16 18:04:41 | 00,000,839 | ---- | C] ()
IrfanView -> %ProgramFiles%\IrfanView -> [2009/04/16 18:04:39 | 00,000,000 | ---D | C]
FLV Player.lnk -> %SystemDrive%\Users\Public\Desktop\FLV Player.lnk -> [2009/04/16 18:01:41 | 00,000,867 | ---- | C] ()
FLV Player -> %ProgramFiles%\FLV Player -> [2009/04/16 18:01:41 | 00,000,000 | ---D | C]
xactengine2_4.dll -> %SystemRoot%\System32\xactengine2_4.dll -> [2009/04/16 18:01:39 | 00,237,848 | ---- | C] (Microsoft Corporation)
d3dx9_31.dll -> %SystemRoot%\System32\d3dx9_31.dll -> [2009/04/16 18:01:37 | 02,414,360 | ---- | C] (Microsoft Corporation)
xactengine2_3.dll -> %SystemRoot%\System32\xactengine2_3.dll -> [2009/04/16 18:01:36 | 00,236,824 | ---- | C] (Microsoft Corporation)
xinput1_2.dll -> %SystemRoot%\System32\xinput1_2.dll -> [2009/04/16 18:01:36 | 00,062,744 | ---- | C] (Microsoft Corporation)
xactengine2_2.dll -> %SystemRoot%\System32\xactengine2_2.dll -> [2009/04/16 18:01:35 | 00,230,168 | ---- | C] (Microsoft Corporation)
xinput1_1.dll -> %SystemRoot%\System32\xinput1_1.dll -> [2009/04/16 18:01:34 | 00,062,672 | ---- | C] (Microsoft Corporation)
xactengine2_1.dll -> %SystemRoot%\System32\xactengine2_1.dll -> [2009/04/16 18:01:33 | 00,229,584 | ---- | C] (Microsoft Corporation)
d3dx9_30.dll -> %SystemRoot%\System32\d3dx9_30.dll -> [2009/04/16 18:01:28 | 02,388,176 | ---- | C] (Microsoft Corporation)
xactengine2_0.dll -> %SystemRoot%\System32\xactengine2_0.dll -> [2009/04/16 18:01:27 | 00,230,096 | ---- | C] (Microsoft Corporation)
x3daudio1_0.dll -> %SystemRoot%\System32\x3daudio1_0.dll -> [2009/04/16 18:01:27 | 00,014,032 | ---- | C] (Microsoft Corporation)
d3dx9_29.dll -> %SystemRoot%\System32\d3dx9_29.dll -> [2009/04/16 18:01:26 | 02,332,368 | ---- | C] (Microsoft Corporation)
d3dx9_28.dll -> %SystemRoot%\System32\d3dx9_28.dll -> [2009/04/16 18:01:24 | 02,323,664 | ---- | C] (Microsoft Corporation)
d3dx9_27.dll -> %SystemRoot%\System32\d3dx9_27.dll -> [2009/04/16 18:01:23 | 02,319,568 | ---- | C] (Microsoft Corporation)
d3dx9_26.dll -> %SystemRoot%\System32\d3dx9_26.dll -> [2009/04/16 18:01:22 | 02,297,552 | ---- | C] (Microsoft Corporation)
d3dx9_25.dll -> %SystemRoot%\System32\d3dx9_25.dll -> [2009/04/16 18:01:21 | 02,337,488 | ---- | C] (Microsoft Corporation)
d3dx9_24.dll -> %SystemRoot%\System32\d3dx9_24.dll -> [2009/04/16 18:01:20 | 02,222,800 | ---- | C] (Microsoft Corporation)
Mass Effect -> %ProgramFiles%\Mass Effect -> [2009/04/16 17:59:10 | 00,000,000 | ---D | C]
Zune -> %ProgramFiles%\Zune -> [2009/04/16 17:48:46 | 00,000,000 | ---D | C]
zunesetuppkg-x64.exe -> %UserProfile%\Desktop\zunesetuppkg-x64.exe -> [2009/04/16 17:48:15 | 13,972,7504 | ---- | C] (Microsoft Corporation)
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %UserProfile%\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2009/04/16 17:09:26 | 00,064,512 | ---- | C] ()
nvModes.001 -> %AllUsersProfile%\nvModes.001 -> [2009/04/16 14:26:25 | 00,028,219 | ---- | C] ()
nvModes.dat -> %AllUsersProfile%\nvModes.dat -> [2009/04/16 14:26:20 | 00,028,219 | ---- | C] ()
Adobe -> %AppData%\Adobe -> [2009/04/16 14:26:00 | 00,000,000 | ---D | C]
Google -> %UserProfile%\AppData\Local\Google -> [2009/04/16 14:25:03 | 00,000,000 | ---D | C]
Google -> %AppData%\Google -> [2009/04/16 14:25:03 | 00,000,000 | ---D | C]
rpcnet.exe -> %SystemRoot%\System32\rpcnet.exe -> [2009/04/16 14:14:24 | 00,047,104 | ---- | C] (Absolute Software Corp.)
rpcnet.dll -> %SystemRoot%\System32\rpcnet.dll -> [2009/04/16 14:14:24 | 00,047,104 | ---- | C] (Absolute Software Corp.)
Adobe -> %UserProfile%\AppData\Local\Adobe -> [2009/04/16 14:02:33 | 00,000,000 | ---D | C]
Macromedia -> %AppData%\Macromedia -> [2009/04/16 13:29:50 | 00,000,000 | ---D | C]
wceprv.dll -> %SystemRoot%\System32\wceprv.dll -> [2008/10/10 18:57:26 | 00,003,584 | ---- | C] ()
qt-dx331.dll -> %SystemRoot%\System32\qt-dx331.dll -> [2008/09/20 01:57:34 | 03,596,288 | ---- | C] ()
dtu100.dll.manifest -> %SystemRoot%\System32\dtu100.dll.manifest -> [2008/09/20 01:55:10 | 00,000,416 | ---- | C] ()
dpl100.dll.manifest -> %SystemRoot%\System32\dpl100.dll.manifest -> [2008/09/20 01:55:10 | 00,000,416 | ---- | C] ()
DivXWMPExtType.dll -> %SystemRoot%\System32\DivXWMPExtType.dll -> [2008/09/20 01:54:18 | 00,012,288 | ---- | C] ()
system.ini -> %SystemRoot%\system.ini -> [2006/11/02 16:34:27 | 00,000,219 | ---- | C] ()
win.ini -> %SystemRoot%\win.ini -> [2006/11/02 16:34:27 | 00,000,169 | ---- | C] ()
 
[Files/Folders - Modified Within 30 Days]
14 C:\Users\mharris54\AppData\Local\Temp\*.tmp files -> C:\Users\mharris54\AppData\Local\Temp\*.tmp -> 
14 C:\Users\mharris54\AppData\Local\Temp\*.tmp files -> C:\Users\mharris54\AppData\Local\Temp\*.tmp -> 
ntuser.dat -> %UserProfile%\ntuser.dat -> [2009/04/20 21:54:25 | 01,572,864 | -HS- | M] ()
qmgr1.dat -> %AllUsersProfile%\Microsoft\Network\Downloader\qmgr1.dat -> [2009/04/20 21:51:48 | 04,194,304 | ---- | M] ()
qmgr0.dat -> %AllUsersProfile%\Microsoft\Network\Downloader\qmgr0.dat -> [2009/04/20 21:51:48 | 04,194,304 | ---- | M] ()
nvModes.001 -> %AllUsersProfile%\nvModes.001 -> [2009/04/20 21:48:31 | 00,028,219 | ---- | M] ()
rpcnetp.exe -> %SystemRoot%\System32\rpcnetp.exe -> [2009/04/20 21:47:13 | 00,017,408 | ---- | M] ()
rpcnet.dll -> %SystemRoot%\System32\rpcnet.dll -> [2009/04/20 21:46:39 | 00,047,104 | ---- | M] (Absolute Software Corp.)
rpcnetp.dll -> %SystemRoot%\System32\rpcnetp.dll -> [2009/04/20 21:46:39 | 00,017,408 | ---- | M] ()
SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [2009/04/20 21:46:35 | 00,000,006 | -H-- | M] ()
bootstat.dat -> %SystemRoot%\bootstat.dat -> [2009/04/20 21:46:31 | 00,067,584 | --S- | M] ()
hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [2009/04/20 21:46:25 | 42,896,01536 | -HS- | M] ()
ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> %UserProfile%\ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> [2009/04/20 21:45:19 | 00,524,288 | -HS- | M] ()
ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TM.blf -> %UserProfile%\ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TM.blf -> [2009/04/20 21:45:19 | 00,065,536 | -HS- | M] ()
Eusing Free Registry Cleaner.lnk -> %UserProfile%\Desktop\Eusing Free Registry Cleaner.lnk -> [2009/04/20 20:46:15 | 00,000,894 | ---- | M] ()
HijackThis.lnk -> %UserProfile%\Desktop\HijackThis.lnk -> [2009/04/20 20:45:28 | 00,001,930 | ---- | M] ()
Taun We - Wookieepedia, the Star Wars Wiki.mht -> %UserProfile%\Documents\Taun We - Wookieepedia, the Star Wars Wiki.mht -> [2009/04/20 17:04:18 | 00,990,604 | ---- | M] ()
Jedi Exile - Wookieepedia, the Star Wars Wiki.mht -> %UserProfile%\Documents\Jedi Exile - Wookieepedia, the Star Wars Wiki.mht -> [2009/04/20 16:58:04 | 01,222,293 | ---- | M] ()
Mandalorian - Wookieepedia, the Star Wars Wiki.mht -> %UserProfile%\Documents\Mandalorian - Wookieepedia, the Star Wars Wiki.mht -> [2009/04/20 16:47:17 | 01,378,789 | ---- | M] ()
FOXNews_com - Sean Hannity 'On the Record' on the Anti-Tax Tea Party Protests - Greta Van Susteren  On The Record With Greta.mht -> %UserProfile%\Documents\FOXNews_com - Sean Hannity 'On the Record' on the Anti-Tax Tea Party Protests - Greta Van Susteren  On The Record With Greta.mht -> [2009/04/20 16:12:57 | 00,590,758 | ---- | M] ()
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> %UserProfile%\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2009/04/20 12:36:34 | 00,064,512 | ---- | M] ()
Sosy 2.jpg -> %UserProfile%\Documents\Sosy 2.jpg -> [2009/04/20 10:40:12 | 00,051,140 | ---- | M] ()
Sosy.jpg -> %UserProfile%\Documents\Sosy.jpg -> [2009/04/20 10:39:06 | 00,036,783 | ---- | M] ()
drm_dyndata_7370007.dll -> %UserProfile%\AppData\Local\Temp\drm_dyndata_7370007.dll -> [2009/04/20 10:14:16 | 00,204,800 | ---- | M] (Sony DADC Austria AG)
PublishedRacMonSWITable.DAT -> %AllUsersProfile%\Microsoft\RAC\PublishedData\PublishedRacMonSWITable.DAT -> [2009/04/20 00:04:57 | 00,012,496 | ---- | M] ()
PublishedRacMonAFLTable.DAT -> %AllUsersProfile%\Microsoft\RAC\PublishedData\PublishedRacMonAFLTable.DAT -> [2009/04/20 00:04:57 | 00,001,656 | ---- | M] ()
PublishedRacMonOSFTable.DAT -> %AllUsersProfile%\Microsoft\RAC\PublishedData\PublishedRacMonOSFTable.DAT -> [2009/04/20 00:04:57 | 00,000,276 | ---- | M] ()
PublishedRacMonIndex.DAT -> %AllUsersProfile%\Microsoft\RAC\PublishedData\PublishedRacMonIndex.DAT -> [2009/04/20 00:04:57 | 00,000,096 | ---- | M] ()
PublishedRacMonHFLTable.DAT -> %AllUsersProfile%\Microsoft\RAC\PublishedData\PublishedRacMonHFLTable.DAT -> [2009/04/20 00:04:57 | 00,000,000 | ---- | M] ()
PublishedRacMonCLKTable.DAT -> %AllUsersProfile%\Microsoft\RAC\PublishedData\PublishedRacMonCLKTable.DAT -> [2009/04/20 00:04:57 | 00,000,000 | ---- | M] ()
Spybot - Search & Destroy.lnk -> %UserProfile%\Desktop\Spybot - Search & Destroy.lnk -> [2009/04/19 23:59:13 | 00,001,099 | ---- | M] ()
Malwarebytes' Anti-Malware.lnk -> %SystemDrive%\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk -> [2009/04/19 22:22:37 | 00,000,850 | ---- | M] ()
ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> %UserProfile%\ntuser.dat{9d00bb83-2cec-11de-9815-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> [2009/04/19 19:04:31 | 00,524,288 | -HS- | M] ()
COMODO Internet Security.lnk -> %SystemDrive%\Users\Public\Desktop\COMODO Internet Security.lnk -> [2009/04/19 19:04:06 | 00,000,950 | ---- | M] ()
cssdll32.dll -> %SystemRoot%\System32\cssdll32.dll -> [2009/04/19 18:23:40 | 00,253,688 | ---- | M] (COMODO)
guard32.dll -> %SystemRoot%\System32\guard32.dll -> [2009/04/19 18:21:28 | 00,155,384 | ---- | M] ()
NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> %UserProfile%\NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000001.regtrans-ms -> [2009/04/19 18:08:56 | 00,524,288 | -HS- | M] ()
NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TM.blf -> %UserProfile%\NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TM.blf -> [2009/04/19 18:08:56 | 00,065,536 | -HS- | M] ()
NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> %UserProfile%\NTUSER.DAT{f2ff5182-2cc4-11de-8324-00215d5ba180}.TMContainer00000000000000000002.regtrans-ms -> [2009/04/19 15:37:12 | 00,524,288 | -HS- | M] ()
ntuser.dat_previous -> %UserProfile%\ntuser.dat_previous -> [2009/04/19 13:36:42 | 01,572,864 | -HS- | M] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms -> %UserProfile%\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms -> [2009/04/19 13:36:41 | 00,524,288 | -HS- | M] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf -> %UserProfile%\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf -> [2009/04/19 13:36:41 | 00,065,536 | -HS- | M] ()
R u really out there___.htm -> %UserProfile%\Documents\R u really out there___.htm -> [2009/04/19 12:34:45 | 00,004,739 | ---- | M] ()
Never done this before!.mht -> %UserProfile%\Documents\Never done this before!.mht -> [2009/04/19 12:34:29 | 00,113,333 | ---- | M] ()
Trying to find a nice guy__.htm -> %UserProfile%\Documents\Trying to find a nice guy__.htm -> [2009/04/19 12:34:09 | 00,004,386 | ---- | M] ()
Love, Laugh, Spoil me.mht -> %UserProfile%\Documents\Love, Laugh, Spoil me.mht -> [2009/04/19 12:25:02 | 00,139,787 | ---- | M] ()
Looking for a nice guy.mht -> %UserProfile%\Documents\Looking for a nice guy.mht -> [2009/04/19 12:22:53 | 00,107,534 | ---- | M] ()
Gmail - Fellow Ohioan here.mht -> %UserProfile%\Documents\Gmail - Fellow Ohioan here.mht -> [2009/04/19 12:06:49 | 00,069,130 | ---- | M] ()
opa12.dat -> %AllUsersProfile%\Microsoft\OFFICE\DATA\opa12.dat -> [2009/04/19 10:30:01 | 00,008,294 | ---- | M] ()
nvModes.dat -> %AllUsersProfile%\nvModes.dat -> [2009/04/19 10:10:44 | 00,028,219 | ---- | M] ()
CmdLineExt_x64.dll -> %SystemRoot%\System32\CmdLineExt_x64.dll -> [2009/04/19 10:08:45 | 00,178,800 | ---- | M] (Sony DADC Austria AG.)
index.dat -> %SystemRoot%\Temp\Temporary Internet Files\Content.IE5\index.dat -> [2009/04/19 09:25:14 | 00,032,768 | -HS- | M] ()
index.dat -> %SystemRoot%\Temp\History\History.IE5\index.dat -> [2009/04/19 09:25:14 | 00,016,384 | -HS- | M] ()
index.dat -> %SystemRoot%\Temp\Cookies\index.dat -> [2009/04/19 09:25:14 | 00,016,384 | -HS- | M] ()
Celsa.rb5 -> %UserProfile%\Desktop\Celsa.rb5 -> [2009/04/18 08:06:47 | 00,019,551 | ---- | M] ()
BlendSettings.ini -> %SystemRoot%\BlendSettings.ini -> [2009/04/17 21:21:14 | 00,000,023 | ---- | M] ()
Oblivion.lnk -> %SystemDrive%\Users\Public\Desktop\Oblivion.lnk -> [2009/04/17 17:43:56 | 00,002,001 | ---- | M] ()
Fleet Command.lnk -> %SystemDrive%\Users\Public\Desktop\Fleet Command.lnk -> [2009/04/17 15:32:38 | 00,001,965 | ---- | M] ()
688I Hunter-Killer.lnk -> %SystemDrive%\Users\Public\Desktop\688I Hunter-Killer.lnk -> [2009/04/17 15:22:06 | 00,001,960 | ---- | M] ()
The Sims™ 2 Apartment Life.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Apartment Life.lnk -> [2009/04/17 12:08:20 | 00,002,139 | ---- | M] ()
www.thesims3.com.lnk -> %SystemDrive%\Users\Public\Desktop\www.thesims3.com.lnk -> [2009/04/17 12:08:20 | 00,001,346 | ---- | M] ()
Ciera.rb5 -> %UserProfile%\Desktop\Ciera.rb5 -> [2009/04/17 12:07:50 | 00,015,380 | ---- | M] ()
The Sims™ 2 Seasons.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Seasons.lnk -> [2009/04/17 12:03:27 | 00,002,051 | ---- | M] ()
Kirsten.html -> %UserProfile%\Desktop\Kirsten.html -> [2009/04/17 11:58:26 | 00,096,468 | ---- | M] ()
Kirsten.rb5 -> %UserProfile%\Desktop\Kirsten.rb5 -> [2009/04/17 11:57:53 | 00,035,037 | ---- | M] ()
The Sims™ 2 FreeTime.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 FreeTime.lnk -> [2009/04/17 11:53:06 | 00,002,085 | ---- | M] ()
The Sims™ 2 Bon Voyage.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Bon Voyage.lnk -> [2009/04/17 11:41:49 | 00,002,103 | ---- | M] ()
The Sims 2 Open For Business.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims 2 Open For Business.lnk -> [2009/04/17 11:32:37 | 00,002,141 | ---- | M] ()
The Sims 2 University.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims 2 University.lnk -> [2009/04/17 11:22:39 | 00,002,078 | ---- | M] ()
The Sims™ 2 Double Deluxe.lnk -> %SystemDrive%\Users\Public\Desktop\The Sims™ 2 Double Deluxe.lnk -> [2009/04/17 11:13:04 | 00,002,226 | ---- | M] ()
MassEffectLauncher - Shortcut.lnk -> %UserProfile%\Desktop\MassEffectLauncher - Shortcut.lnk -> [2009/04/16 21:31:12 | 00,000,919 | ---- | M] ()
N360BUOptions.ini -> %AllUsersProfile%\N360BUOptions.ini -> [2009/04/16 21:27:08 | 00,005,115 | ---- | M] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000002.regtrans-ms -> %UserProfile%\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000002.regtrans-ms -> [2009/04/16 19:47:38 | 00,524,288 | -HS- | M] ()
Clipboard06.jpg -> %UserProfile%\Documents\Clipboard06.jpg -> [2009/04/16 19:46:43 | 00,129,092 | ---- | M] ()
Kirsten.jpg -> %UserProfile%\Documents\Kirsten.jpg -> [2009/04/16 19:46:19 | 00,077,659 | ---- | M] ()
Clipboard02.jpg -> %UserProfile%\Documents\Clipboard02.jpg -> [2009/04/16 19:45:50 | 00,018,669 | ---- | M] ()
DivX Player.lnk -> %SystemDrive%\Users\Public\Desktop\DivX Player.lnk -> [2009/04/16 18:33:29 | 00,000,979 | ---- | M] ()
DivX Converter.lnk -> %SystemDrive%\Users\Public\Desktop\DivX Converter.lnk -> [2009/04/16 18:33:23 | 00,000,990 | ---- | M] ()
DivX Movies.lnk -> %UserProfile%\Desktop\DivX Movies.lnk -> [2009/04/16 18:33:17 | 00,001,424 | ---- | M] ()
GDIPFONTCACHEV1.DAT -> %UserProfile%\AppData\Local\GDIPFONTCACHEV1.DAT -> [2009/04/16 18:28:22 | 00,070,192 | ---- | M] ()
desktop.ini -> %UserProfile%\Documents\desktop.ini -> [2009/04/16 18:28:05 | 00,000,402 | -HS- | M] ()
desktop.ini -> %UserProfile%\Desktop\desktop.ini -> [2009/04/16 18:28:05 | 00,000,282 | -HS- | M] ()
desktop.ini -> %AppData%\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini -> [2009/04/16 18:28:05 | 00,000,174 | -HS- | M] ()
eBay.lnk -> %SystemDrive%\Users\Public\Desktop\eBay.lnk -> [2009/04/16 18:27:22 | 00,001,527 | ---- | M] ()
ntuser.ini -> %UserProfile%\ntuser.ini -> [2009/04/16 18:26:36 | 00,000,020 | -HS- | M] ()
mharris54.dat -> %AllUsersProfile%\Microsoft\User Account Pictures\mharris54.dat -> [2009/04/16 18:26:36 | 00,000,000 | ---- | M] ()
AVG 7.5.lnk -> %SystemDrive%\Users\Public\Desktop\AVG 7.5.lnk -> [2009/04/16 18:25:34 | 00,001,716 | ---- | M] ()
AusLogics Disk Defrag.lnk -> %UserProfile%\Desktop\AusLogics Disk Defrag.lnk -> [2009/04/16 18:17:58 | 00,000,973 | ---- | M] ()
TeraCopy.lnk -> %UserProfile%\Desktop\TeraCopy.lnk -> [2009/04/16 18:14:59 | 00,000,784 | ---- | M] ()
Winamp.lnk -> %SystemDrive%\Users\Public\Desktop\Winamp.lnk -> [2009/04/16 18:07:52 | 00,000,830 | ---- | M] ()
Redblade.lnk -> %UserProfile%\Desktop\Redblade.lnk -> [2009/04/16 18:06:37 | 00,000,811 | ---- | M] ()
IPH.PH -> %SystemDrive%\IPH.PH -> [2009/04/16 18:06:17 | 00,000,367 | -H-- | M] ()
Nvu.lnk -> %UserProfile%\Desktop\Nvu.lnk -> [2009/04/16 18:06:10 | 00,000,722 | ---- | M] ()
AIM 6.lnk -> %SystemDrive%\Users\Public\Desktop\AIM 6.lnk -> [2009/04/16 18:05:55 | 00,001,852 | ---- | M] ()
IrfanView Thumbnails.lnk -> %UserProfile%\Desktop\IrfanView Thumbnails.lnk -> [2009/04/16 18:04:41 | 00,001,731 | ---- | M] ()
IrfanView.lnk -> %UserProfile%\Desktop\IrfanView.lnk -> [2009/04/16 18:04:41 | 00,000,839 | ---- | M] ()
FLV Player.lnk -> %SystemDrive%\Users\Public\Desktop\FLV Player.lnk -> [2009/04/16 18:01:41 | 00,000,867 | ---- | M] ()
rpcnet.exe -> %SystemRoot%\System32\rpcnet.exe -> [2009/04/16 14:12:43 | 00,047,104 | ---- | M] (Absolute Software Corp.)
mbamswissarmy.sys -> %SystemRoot%\System32\drivers\mbamswissarmy.sys -> [2009/04/06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation)
mbam.sys -> %SystemRoot%\System32\drivers\mbam.sys -> [2009/04/06 15:32:46 | 00,015,504 | ---- | M] (Malwarebytes Corporation)
VP6VFW.dll -> %UserProfile%\AppData\Local\Temp\VP6VFW.dll -> [2008/03/13 03:38:57 | 00,445,504 | R--- | M] (On2.com)
VP6Install.exe -> %UserProfile%\AppData\Local\Temp\VP6Install.exe -> [2008/03/13 03:38:57 | 00,026,176 | R--- | M] ()
DXSETUP.exe -> %UserProfile%\AppData\Local\Temp\AUG2005DXREDIST\DXSETUP.exe -> [2005/07/27 02:23:16 | 00,482,000 | R--- | M] (Microsoft Corporation)
dsetup32.dll -> %UserProfile%\AppData\Local\Temp\AUG2005DXREDIST\dsetup32.dll -> [2005/07/27 02:23:14 | 02,245,840 | R--- | M] (Microsoft Corporation)
DSETUP.dll -> %UserProfile%\AppData\Local\Temp\AUG2005DXREDIST\DSETUP.dll -> [2005/07/27 02:23:14 | 00,075,472 | R--- | M] (Microsoft Corporation)
isxdl.dll -> %UserProfile%\AppData\Local\Temp\is-U5PL7.tmp\isxdl.dll -> [2005/03/11 20:42:14 | 00,059,392 | ---- | M] (Bjørnar Henden)
< End of report >