Jump to content

Welcome Guest to Geeks to Go - Register now for FREE
Geeks To Go is a helpful hub, where thousands of friendly volunteers serve up answers and support. Get free advice from the experts. Feel free to browse the site as a guest. However, you must log in to reply to existing topics or start a new topic of your own, and enjoy all this forum has to offer. Additionally, if you can assist another member by sharing your knowledge, please post a reply! Best of all - Registration and all assistance, is FREE! Learn more about How it Works. Infected? Malware Cleaning Guide. What are you waiting for?
Create an Account Login to Account

Your Download was "DownTangoed"? WTH? [Closed]


  • This topic is locked This topic is locked

#1
thomas1gun

thomas1gun

    New Member

  • Member
  • Pip
  • 6 posts
OTL logfile created on: 11/19/2012 6:41:57 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\thomas1gun\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.49 Gb Total Physical Memory | 2.19 Gb Available Physical Memory | 62.94% Memory free
6.97 Gb Paging File | 5.62 Gb Available in Paging File | 80.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919.67 Gb Total Space | 853.73 Gb Free Space | 92.83% Space Free | Partition Type: NTFS
Drive D: | 11.74 Gb Total Space | 1.41 Gb Free Space | 11.98% Space Free | Partition Type: NTFS
Drive G: | 931.28 Gb Total Space | 925.02 Gb Free Space | 99.33% Space Free | Partition Type: FAT32

Computer Name: THOMAS1GUN-HP | User Name: thomas1gun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

========== Processes (SafeList) ==========

PRC - [2012/11/18 06:10:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\thomas1gun\Downloads\OTL.exe
PRC - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe
PRC - [2012/09/19 11:01:32 | 000,067,656 | ---- | M] (Simplygen) -- C:\Program Files (x86)\Protected Search\ProtectedSearch.exe
PRC - [2012/09/06 10:06:42 | 001,607,552 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
PRC - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe
PRC - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2010/11/20 19:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
PRC - [2008/11/20 09:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe


========== Modules (No Company Name) ==========

MOD - [2012/11/18 14:59:38 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
MOD - [2012/11/18 14:27:48 | 012,549,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\474914b7c8b9b5056943488991a57edc\System.Windows.Forms.ni.dll
MOD - [2012/11/18 14:27:30 | 001,595,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f961fb1ec279c14554f5580a457ef542\System.Drawing.ni.dll
MOD - [2012/11/18 14:22:43 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2011/08/19 15:33:28 | 000,047,960 | ---- | M] () -- C:\Program Files (x86)\IObit\Smart Defrag 2\NtfsData.dll
MOD - [2010/11/20 19:24:25 | 000,385,024 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/09/12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011/10/24 04:16:42 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011/02/16 21:47:28 | 000,682,040 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe -- (HPAuto)
SRV:64bit: - [2010/10/11 01:48:14 | 000,346,168 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe -- (HPClientSvc)
SRV:64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/11/13 19:34:54 | 000,115,168 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) [Auto | Running] -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe -- (VideoDownloadConverter_4zService)
SRV - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/09/09 16:10:28 | 000,086,072 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [Auto | Running] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
DRV:64bit: - [2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/18 05:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:64bit: - [2012/01/18 05:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2012/01/18 05:44:14 | 000,025,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64)
DRV:64bit: - [2012/01/12 08:28:48 | 000,074,872 | R--- | M] (GFI Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\sbapifs.sys -- (sbapifs)
DRV:64bit: - [2011/10/24 04:56:54 | 010,203,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/10/24 03:40:08 | 000,310,784 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/10/07 11:38:30 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/10/07 11:38:30 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/05/16 13:55:28 | 000,533,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/04 14:46:20 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2011/03/04 14:46:20 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2010/12/15 19:36:46 | 000,047,232 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010/11/26 17:02:18 | 000,017,720 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV:64bit: - [2010/11/20 19:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/20 19:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/12/04 00:35:14 | 000,020,992 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 12:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKLM\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://my.yahoo.com/ [binary data]
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...0003860778fbece
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3D54D766-A388-45E2-B552-F14FED0C055C}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{7C864D08-CA10-4FF4-BCFF-C51DA3BD89C3}: "URL" = http://search.condui...&ctid=CT1561552
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{92246B67-8961-4885-9413-B67C8CE22360}: "URL" = http://us.yhs4.searc...p={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}: "URL" = http://www2.inbox.co...id=80291&lng=en
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..CT3196716.browser.search.defaultthis.engineName: true
FF - prefs.js..CT3201318.browser.search.defaultthis.engineName: true
FF - prefs.js..browser.search.defaultengine: "Web Search"
FF - prefs.js..browser.search.param.yahoo-fr: "&hsimp=yhs-affiliate_a_ff&hspart=greentree&type=685749_yhs3tst"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.startup.homepage: "chrome://fvd.speeddial/content/fvd_about_blank.html"
FF - prefs.js..extensions.enabledAddons: wisestamp@wisestamp.com:3.11.21
FF - prefs.js..extensions.enabledAddons: tineye@ideeinc.com:1.1
FF - prefs.js..extensions.enabledAddons: amadlo@tomers.net:1.1.6
FF - prefs.js..extensions.enabledAddons: firefox@ghostery.com:2.8.3
FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: artur.dubovoy@gmail.com:3.7.6
FF - prefs.js..extensions.enabledAddons: adapter@babylontc.com:1.0.0.1
FF - prefs.js..extensions.enabledAddons: ocr@babylon.com:1.1
FF - prefs.js..extensions.enabledAddons: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:1.4
FF - prefs.js..extensions.enabledAddons: {c07d1a49-9894-49ff-a594-38960ede8fb9}:3.1.10
FF - prefs.js..extensions.enabledAddons: {3bbd3c14-4c16-4989-8366-95bc9179779d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: pavel.sherbakov@gmail.com:4.1.5
FF - prefs.js..extensions.enabledAddons: canitbecheaper@trafficbroker.co.uk:3.8.23
FF - prefs.js..extensions.enabledAddons: {E71B541F-5E72-5555-A47C-E47863195841}:1.0.26
FF - prefs.js..extensions.enabledAddons: donottrackplus@abine.com:2.2.1.829
FF - prefs.js..extensions.enabledAddons: 4zffxtbr@VideoDownloadConverter_4z.com:2.71.0.60687
FF - prefs.js..extensions.enabledAddons: {c95a4e8e-816d-4655-8c79-d736da1adb6d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {26605315-8a79-4ff6-bbb9-63363b9d86b3}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: Foxdie@tanjihay.com:15
FF - prefs.js..keyword.URL: "http://search.mywebs...000&searchfor="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: File not found
FF - HKLM\Software\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\4zffxtbr@VideoDownloadConverter_4z.com: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin [2012/09/30 22:14:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Components: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Plugins: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Components: C:\Program Files (x86)\SeaMonkey\components [2012/11/02 11:54:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Plugins: C:\Program Files (x86)\SeaMonkey\plugins

[2012/09/06 20:51:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Extensions
[2012/11/17 18:27:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions
[2012/11/13 15:53:42 | 000,000,000 | ---D | M] (Smart Defrag) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{26605315-8a79-4ff6-bbb9-63363b9d86b3}
[2012/11/13 15:53:50 | 000,000,000 | ---D | M] (FLV Runner) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{3bbd3c14-4c16-4989-8366-95bc9179779d}
[2012/11/17 17:23:33 | 000,000,000 | ---D | M] (FT DeepDark) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
[2012/11/15 13:06:43 | 000,000,000 | ---D | M] (Hotspot Shield) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}
[2012/11/15 03:57:45 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2012/11/13 15:53:58 | 000,000,000 | ---D | M] (WiseConvert) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}
[2012/11/16 12:17:09 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012/11/15 03:05:11 | 000,000,000 | ---D | M] (DoNotTrackPlus) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com
[2012/09/27 22:06:22 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\firefox@ghostery.com
[2012/09/27 21:54:01 | 000,000,000 | ---D | M] (Foxdie) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\Foxdie@tanjihay.com
[2012/11/15 00:36:07 | 000,000,000 | ---D | M] ("FVD Speed Dial with Full Online Sync") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\pavel.sherbakov@gmail.com
[2012/10/16 20:56:44 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\plugin@yontoo.com
[2012/11/08 17:09:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\firefox@ghostery.com
[2012/09/09 01:26:58 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\inspector@mozilla.org
[2012/10/17 21:59:20 | 000,021,707 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\adapter@babylontc.com.xpi
[2012/09/27 21:52:44 | 000,023,125 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\amadlo@tomers.net.xpi
[2012/10/17 20:07:56 | 000,221,098 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\artur.dubovoy@gmail.com.xpi
[2012/11/15 03:47:51 | 000,070,963 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\canitbecheaper@trafficbroker.co.uk.xpi
[2012/10/17 21:59:21 | 000,008,053 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\ocr@babylon.com.xpi
[2012/09/09 07:45:03 | 000,008,001 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\tineye@ideeinc.com.xpi
[2012/09/07 22:23:43 | 001,771,909 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\wisestamp@wisestamp.com.xpi
[2012/10/14 21:49:11 | 000,672,576 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi
[2012/11/11 21:00:53 | 000,447,304 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi
[2012/11/10 18:38:04 | 000,252,340 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2012/08/29 12:56:22 | 000,007,915 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com\chrome\content\ff\view_expiry.js
[2012/09/30 17:20:45 | 000,009,634 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\my-web-search.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\Web Search.xml
[2012/10/14 23:20:13 | 000,001,022 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\wiseconvert-customized-web-search.xml
[2012/11/17 02:10:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/11/13 19:34:55 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/11/15 04:04:38 | 000,002,349 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2012/09/05 17:26:22 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/11/13 19:34:21 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml

O1 HOSTS File: ([2012/09/09 08:07:20 | 000,000,860 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
O2 - BHO: (no name) - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - No CLSID value found.
O2 - BHO: (Search Assistant BHO) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (MindSpark)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {26605315-8A79-4FF6-BBB9-63363B9D86B3} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No CLSID value found.
O4:64bit: - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\.DEFAULT..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-18..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O16:64bit: - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} http://content.syste...nt_4.5.13.0.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.3.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C6715BFB-42A2-4A4D-98E2-B716B74A1C8D}: DhcpNameServer = 192.168.0.1 205.171.3.65
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) - c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{6224c52a-ffac-11e1-b93f-3860778fbece}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\...exe [@ = exefile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 180 Days ==========

[2012/11/18 05:49:08 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/11/18 00:00:35 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2012/11/18 00:00:35 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012/11/18 00:00:33 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012/11/18 00:00:33 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2012/11/18 00:00:31 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2012/11/18 00:00:31 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012/11/18 00:00:30 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2012/11/18 00:00:30 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012/11/18 00:00:29 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2012/11/18 00:00:29 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012/11/17 23:59:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012/11/17 23:59:18 | 064,010,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/11/17 19:14:36 | 000,000,000 | ---D | C] -- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[2012/11/17 18:22:44 | 000,703,632 | ---- | C] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/11/15 13:08:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\4kdownload.com
[2012/11/15 13:04:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\4KDownload
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\thriXXX
[2012/11/14 01:54:11 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:11 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:52:35 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:34 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:52:33 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:33 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:32 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:32 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:32 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:32 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:31 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:31 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:31 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:31 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:29 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:29 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:29 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:50:26 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:25 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:24 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:24 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/13 19:34:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/11/13 15:51:56 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/13 15:51:56 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/13 15:51:56 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/13 15:51:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/13 15:51:49 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/13 15:51:31 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/13 15:51:31 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 22:23:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
[2012/11/01 10:31:08 | 000,040,712 | ---- | C] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | C] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/28 02:21:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Command and Conquer Generals Data
[2012/10/25 00:30:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:09 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/10/25 00:30:09 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:08 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:08 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:08 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:07 | 003,174,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:07 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:07 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:07 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:07 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:07 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:07 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:07 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:07 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:07 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:06 | 005,773,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:06 | 004,916,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:28:39 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/25 00:28:39 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/21 15:07:48 | 000,032,600 | ---- | C] (IObit) -- C:\Windows\SysNative\SmartDefragBootTime.exe
[2012/10/21 15:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2
[2012/10/18 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roger Wilco
[2012/10/18 15:13:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EasyInfo
[2012/10/17 22:12:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinRAR
[2012/10/17 22:12:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Search
[2012/10/17 22:12:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Protected Search
[2012/10/17 22:11:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\DownTango
[2012/10/17 22:11:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Sky
[2012/10/17 20:07:53 | 137,398,872 | ---- | C] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 20:07:51 | 000,000,000 | ---D | C] -- C:\Program Files\Babylon
[2012/10/17 15:57:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Trymedia
[2012/10/17 11:34:15 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/10/16 23:07:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012/10/16 23:07:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/10/16 22:52:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2012/10/16 22:50:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Wajam
[2012/10/16 22:28:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/10/16 22:25:57 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012/10/16 21:48:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wolfenstein 3D
[2012/10/16 21:48:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wolfenstein 3D
[2012/10/16 20:56:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OApps
[2012/10/16 20:56:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yontoo
[2012/10/16 20:56:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2012/10/16 19:41:29 | 000,000,000 | ---D | C] -- C:\inetpub
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.74
[2012/10/14 08:16:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Apple Computer
[2012/10/14 00:45:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/10/14 00:44:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/10/14 00:43:57 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apple
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/10/10 09:34:37 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 09:34:37 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 09:34:37 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 09:34:37 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 09:34:37 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 09:34:37 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 09:34:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 09:34:37 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 09:34:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 09:34:37 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 09:34:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 09:34:29 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 09:34:19 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 09:34:19 | 003,968,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 09:34:19 | 003,914,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 09:33:51 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 09:33:51 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 14:45:09 | 010,220,472 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/09 09:40:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sensible Vision
[2012/10/06 12:08:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2012/10/06 12:07:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2012/10/05 21:21:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\hpremote
[2012/10/05 20:02:45 | 000,024,960 | ---- | C] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/10/04 23:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
[2012/10/04 23:01:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA GAMES
[2012/10/03 18:36:08 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012/10/03 18:35:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/10/03 14:44:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/10/03 14:44:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BlueSprig
[2012/10/03 11:38:00 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Roxio Log Files
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{6F2F3866-38AD-4f48-852C-2FF5DE7A7588}
[2012/10/03 10:55:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2012/10/03 10:55:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Conduit
[2012/10/03 10:40:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/10/03 10:40:07 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Utility Kit
[2012/10/03 10:17:04 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{0698D77A-C2AE-43D7-AF64-D63D72960D80}
[2012/10/02 01:11:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.72
[2012/10/01 15:51:26 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\vlc
[2012/10/01 02:09:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2012/10/01 02:09:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2012/09/30 22:09:28 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
[2012/09/30 22:04:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Ilivid Player
[2012/09/30 18:25:17 | 000,000,000 | ---D | C] -- C:\Plugins
[2012/09/30 17:19:52 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VideoDownloadConverter_4z
[2012/09/30 15:27:11 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/09/30 15:23:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoDownloadConverter_4z
[2012/09/28 11:00:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Roozz
[2012/09/27 00:00:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{2906D058-8E5B-4080-A802-F0AD4C60DCC8}
[2012/09/26 00:20:39 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Real
[2012/09/26 00:20:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rhapsody
[2012/09/25 10:49:47 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/09/18 09:37:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/09/18 09:37:57 | 000,018,760 | ---- | C] (WinZip Computing, S.L.(WinZip Computing)) -- C:\Windows\SysNative\roboot64.exe
[2012/09/18 09:37:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZip Registry Optimizer
[2012/09/16 14:00:02 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{B9EE30D3-4BF9-4373-AD11-683D379DB655}
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Windows Live Writer
[2012/09/16 02:13:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
[2012/09/16 02:00:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Blio
[2012/09/16 02:00:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{5DD8111D-4E12-4116-8D7F-E49696638D35}
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{3EE88425-AAC5-43B9-BE87-D47843BBB388}
[2012/09/15 22:40:30 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\U3
[2012/09/15 20:48:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Logitech
[2012/09/15 19:43:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Logitech® Webcam Software
[2012/09/15 19:41:00 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2012/09/15 19:40:29 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/15 19:39:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Logitech
[2012/09/15 19:39:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LWS
[2012/09/15 19:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2012/09/15 19:39:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2012/09/15 18:51:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\hpqLog
[2012/09/15 18:50:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/15 17:29:21 | 000,000,000 | ---D | C] -- C:\ProgramData\HardwareHelper
[2012/09/15 17:29:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hardware Helper
[2012/09/15 17:28:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2012/09/12 08:40:47 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/09/12 08:40:44 | 000,574,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/09/12 08:40:40 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/09/12 08:40:40 | 000,288,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/09/11 20:25:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Downloads
[2012/09/11 19:30:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2012/09/11 12:43:43 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012/09/11 12:43:35 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/11 12:43:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012/09/11 12:42:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012/09/10 11:01:09 | 000,074,872 | R--- | C] (GFI Software) -- C:\Windows\SysNative\drivers\sbapifs.sys
[2012/09/09 13:04:46 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2012/09/09 13:04:46 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012/09/09 13:04:45 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2012/09/09 13:04:45 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012/09/09 13:04:45 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2012/09/09 13:04:44 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2012/09/09 13:04:44 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012/09/09 13:04:44 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2012/09/09 13:04:44 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012/09/09 13:04:43 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2012/09/09 13:04:43 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2012/09/09 13:04:43 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012/09/09 13:04:43 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2012/09/09 13:04:41 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2012/09/09 13:04:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2012/09/09 13:04:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012/09/09 13:04:40 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2012/09/09 13:04:40 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012/09/09 13:04:40 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2012/09/09 13:04:40 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012/09/09 13:04:39 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2012/09/09 13:04:39 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012/09/09 13:04:38 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2012/09/09 13:04:38 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012/09/09 13:04:38 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2012/09/09 13:04:38 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012/09/09 13:04:37 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2012/09/09 13:04:37 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012/09/09 13:04:37 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2012/09/09 13:04:37 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012/09/09 13:04:36 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2012/09/09 13:04:36 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2012/09/09 13:04:36 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2012/09/09 13:04:36 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012/09/09 13:04:35 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2012/09/09 13:04:35 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2012/09/09 13:04:35 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012/09/09 12:56:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Oblivion
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\My Games
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Fallout3
[2012/09/09 12:23:35 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 12:14:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2012/09/09 12:14:27 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2012/09/09 12:14:27 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012/09/09 12:14:26 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2012/09/09 12:14:26 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012/09/09 12:14:23 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2012/09/09 12:14:23 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012/09/09 12:14:22 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2012/09/09 12:14:22 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012/09/09 12:14:22 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2012/09/09 12:14:22 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012/09/09 12:14:21 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2012/09/09 12:14:21 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012/09/09 12:14:20 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2012/09/09 12:14:20 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012/09/09 12:14:20 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2012/09/09 12:14:19 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2012/09/09 12:14:19 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012/09/09 12:14:18 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2012/09/09 12:14:18 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012/09/09 12:14:17 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2012/09/09 12:14:17 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012/09/09 12:14:16 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2012/09/09 12:14:16 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012/09/09 12:14:15 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2012/09/09 12:14:15 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012/09/09 12:14:12 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2012/09/09 12:14:12 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012/09/09 12:14:12 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2012/09/09 12:14:12 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012/09/09 12:14:11 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2012/09/09 12:14:11 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012/09/09 12:14:10 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2012/09/09 12:14:10 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012/09/09 12:14:07 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2012/09/09 12:14:07 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012/09/09 12:14:05 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2012/09/09 12:14:05 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012/09/09 12:13:58 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2012/09/09 12:13:58 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012/09/09 12:13:57 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2012/09/09 12:13:57 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2012/09/09 12:13:57 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2012/09/09 12:13:57 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012/09/09 12:13:57 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2012/09/09 12:13:57 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012/09/09 12:13:56 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2012/09/09 12:13:56 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2012/09/09 12:13:56 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012/09/09 12:13:56 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012/09/09 12:13:55 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2012/09/09 12:13:55 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2012/09/09 12:13:55 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012/09/09 12:13:55 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012/09/09 12:11:07 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012/09/09 12:11:07 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012/09/09 12:11:07 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012/09/09 12:11:07 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012/09/09 11:52:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012/09/09 11:42:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zombie Studios
[2012/09/09 11:37:52 | 000,304,128 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2012/09/09 03:12:42 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop\SMRTNTKY
[2012/09/09 01:26:45 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/09/09 01:26:45 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/09/09 01:26:44 | 016,877,056 | ---- | C] (Mozilla Foundation) -- C:\xul.dll
[2012/09/09 01:26:44 | 002,147,328 | ---- | C] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/09/09 01:26:44 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/09/09 01:26:44 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/09/09 01:26:44 | 000,770,384 | ---- | C] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/09/09 01:26:44 | 000,631,296 | ---- | C] (Mozilla Foundation) -- C:\nss3.dll
[2012/09/09 01:26:44 | 000,569,856 | ---- | C] (sqlite.org) -- C:\mozsqlite3.dll
[2012/09/09 01:26:44 | 000,423,424 | ---- | C] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/09/09 01:26:44 | 000,421,200 | ---- | C] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/09/09 01:26:44 | 000,363,520 | ---- | C] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/09/09 01:26:44 | 000,253,440 | ---- | C] (Mozilla Foundation) -- C:\updater.exe
[2012/09/09 01:26:44 | 000,251,392 | ---- | C] (Mozilla Foundation) -- C:\freebl3.dll
[2012/09/09 01:26:44 | 000,159,232 | ---- | C] (Mozilla Foundation) -- C:\nspr4.dll
[2012/09/09 01:26:44 | 000,147,968 | ---- | C] (Mozilla Foundation) -- C:\softokn3.dll
[2012/09/09 01:26:44 | 000,138,240 | ---- | C] (Mozilla Foundation) -- C:\ssl3.dll
[2012/09/09 01:26:44 | 000,089,088 | ---- | C] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/09/09 01:26:44 | 000,085,504 | ---- | C] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/09/09 01:26:44 | 000,083,968 | ---- | C] (Mozilla Foundation) -- C:\smime3.dll
[2012/09/09 01:26:44 | 000,081,920 | ---- | C] (Mozilla Foundation) -- C:\libEGL.dll
[2012/09/09 01:26:44 | 000,068,096 | ---- | C] (mozilla.org) -- C:\seamonkey.exe
[2012/09/09 01:26:44 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32.dll
[2012/09/09 01:26:44 | 000,041,472 | ---- | C] (Mozilla Foundation) -- C:\mozglue.dll
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] (Mozilla Foundation) -- C:\plc4.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\xpcom.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\plds4.dll
[2012/09/09 01:26:44 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy.dll
[2012/09/09 01:26:44 | 000,009,728 | ---- | C] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/09/09 01:26:44 | 000,008,704 | ---- | C] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\searchplugins
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\isp
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\extensions
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\distribution
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\dictionaries
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\defaults
[2012/09/09 01:26:43 | 000,111,616 | ---- | C] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/09/09 01:26:43 | 000,011,776 | ---- | C] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\uninstall
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\components
[2012/09/09 01:07:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SeaMonkey
[2012/09/09 01:07:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SeaMonkey
[2012/09/08 23:02:44 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft Games
[2012/09/08 00:28:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ElevatedDiagnostics
[2012/09/07 21:45:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roozz
[2012/09/07 21:14:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Roozz
[2012/09/07 18:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Ezprint
[2012/09/07 18:06:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lexmark Toolbar
[2012/09/07 18:03:38 | 000,000,000 | ---D | C] -- C:\drivers
[2012/09/07 17:45:43 | 000,000,000 | ---D | C] -- C:\ProgramData\lx_Cats
[2012/09/07 17:42:57 | 000,077,906 | ---- | C] (Lexmark International) -- C:\Windows\SysWow64\lxducfg.dll
[2012/09/07 17:42:57 | 000,065,536 | ---- | C] (Lexmark International) -- C:\Windows\SysNative\lxducfg64.dll
[2012/09/07 17:17:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Qwest
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Windows\XSxS
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Xenocode
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xenocode
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/09/07 15:49:05 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2012/09/07 15:49:05 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2012/09/07 15:39:26 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012/09/07 15:39:26 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012/09/07 15:36:31 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2012/09/07 15:36:30 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012/09/07 15:36:30 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2012/09/07 15:36:30 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2012/09/07 15:36:30 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012/09/07 15:36:30 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012/09/07 15:36:24 | 001,544,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2012/09/07 15:36:23 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2012/09/07 15:36:20 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012/09/07 15:36:20 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012/09/07 15:36:19 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012/09/07 15:36:19 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012/09/07 15:36:13 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2012/09/07 15:36:10 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2012/09/07 15:36:10 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2012/09/07 15:36:10 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012/09/07 15:36:10 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012/09/07 15:36:10 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2012/09/07 15:36:10 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2012/09/07 15:36:10 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012/09/07 15:36:10 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2012/09/07 15:36:10 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2012/09/07 15:36:10 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2012/09/07 15:36:09 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012/09/07 15:36:09 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2012/09/07 15:36:09 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012/09/07 15:35:59 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2012/09/07 15:35:59 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2012/09/07 15:35:51 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2012/09/07 15:35:49 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2012/09/07 15:35:49 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012/09/07 15:35:48 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2012/09/07 15:35:47 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012/09/07 15:35:47 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012/09/07 15:35:36 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2012/09/07 15:35:36 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012/09/07 15:35:28 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012/09/07 15:35:28 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012/09/07 15:35:28 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012/09/07 15:35:26 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2012/09/07 15:35:26 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2012/09/07 15:35:26 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2012/09/07 15:34:10 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2012/09/07 15:34:10 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2012/09/07 15:34:10 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2012/09/07 15:34:10 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2012/09/07 15:34:02 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012/09/07 15:33:44 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/09/07 15:33:44 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/09/07 15:33:44 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/09/07 15:33:34 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012/09/07 15:33:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012/09/07 15:33:01 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2012/09/07 15:32:53 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2012/09/07 15:32:51 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2012/09/07 15:32:51 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2012/09/07 15:32:50 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2012/09/07 15:32:50 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2012/09/07 15:27:54 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/09/07 15:27:54 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/09/07 15:26:59 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012/09/07 15:26:51 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012/09/07 15:26:51 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012/09/07 10:39:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HP Support Assistant
[2012/09/07 10:39:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HpUpdate
[2012/09/07 04:57:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/09/07 03:49:01 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2012/09/07 03:47:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Internet-Installed files
[2012/09/07 03:32:16 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\CrashDumps
[2012/09/07 02:42:15 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\CyberLink
[2012/09/07 02:23:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\my recieved files
[2012/09/06 21:01:50 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Macromedia
[2012/09/06 21:01:31 | 000,696,760 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/09/06 21:01:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Mozilla
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Mozilla
[2012/09/06 20:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/09/06 20:50:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/09/06 14:36:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Recovery
[2012/09/06 14:15:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Diagnostics
[2012/09/06 13:54:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Google
[2012/09/06 13:54:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apps
[2012/09/06 13:54:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Deployment
[2012/09/06 13:48:14 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2012/09/06 13:48:14 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012/09/06 13:46:46 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
[2012/09/06 13:46:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP User Manuals
[2012/09/06 13:46:17 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/09/06 13:46:17 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/09/06 13:46:17 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Temporary Internet Files
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Templates
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Start Menu
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\SendTo
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Recent
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\PrintHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\NetHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Videos
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Pictures
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Music
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\My Documents
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Local Settings
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\History
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Cookies
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Application Data
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Application Data
[2012/09/06 13:46:14 | 000,000,000 | --SD | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Videos
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Saved Games
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Pictures
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Music
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Links
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Favorites
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Downloads
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Documents
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/09/06 13:46:14 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\AppData
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Temp
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Media Center Programs
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Macromedia
[2012/09/06 13:46:11 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/09/06 13:46:11 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012/09/06 13:46:11 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/09/06 13:46:02 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/09/06 13:46:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/09/06 13:45:31 | 000,000,000 | ---D | C] -- C:\Windows\softwaredistribution.bak
[2012/09/06 13:42:22 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
[2012/09/06 13:38:08 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/09/06 13:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2012/09/06 13:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2012/09/06 12:55:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Adobe
[2012/09/06 12:52:54 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Skype
[2012/09/06 12:52:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\ATI
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ATI
[2012/09/06 12:51:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\PDFC
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Searches
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/09/06 12:50:57 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/09/06 12:50:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Identities
[2012/09/06 12:50:46 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Contacts
[2012/09/06 12:50:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VirtualStore
[2012/09/06 12:50:24 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\RemEngine
[2012/09/06 12:45:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Hewlett-Packard
[2012/09/06 12:45:07 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard
[2012/09/06 12:44:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard_Company
[2012/08/30 21:03:48 | 000,128,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/01 10:13:40 | 000,038,632 | ---- | C] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 180 Days ==========

[2012/11/19 13:40:59 | 000,000,302 | ---- | M] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:05:35 | 000,815,210 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/11/19 12:05:35 | 000,688,350 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/11/19 12:05:35 | 000,128,582 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/11/19 12:01:31 | 000,000,439 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2012/11/19 12:01:26 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/11/19 12:00:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/19 12:00:32 | 2808,225,792 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/18 19:01:54 | 000,000,023 | ---- | M] () -- C:\Windows\BlendSettings.ini
[2012/11/18 05:48:58 | 000,001,154 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/11/18 00:02:45 | 000,002,198 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/11/17 22:20:51 | 004,568,982 | R--- | M] () -- C:\Users\thomas1gun\Documents\windowstweaksguide.pdf
[2012/11/15 13:04:39 | 000,001,252 | ---- | M] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:58:09 | 000,279,520 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/11/14 01:55:16 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/14 01:54:29 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wdf01000.sys.mui
[2012/11/14 01:54:28 | 000,054,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:28 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:54:28 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:53:29 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/14 01:53:29 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/14 01:53:29 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/14 01:53:29 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/14 01:52:59 | 002,312,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:59 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:59 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:59 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:59 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:59 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:59 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:59 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:59 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:58 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:58 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:52:58 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:58 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:58 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:58 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:50:39 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:39 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/14 01:50:39 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:39 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/14 01:50:38 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:19 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/14 01:50:19 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 21:47:46 | 000,002,141 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | M] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/29 21:32:32 | 064,010,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/10/26 19:45:49 | 000,001,234 | ---- | M] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/25 00:30:26 | 005,773,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:26 | 004,916,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:30:26 | 003,174,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:26 | 001,123,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:26 | 001,048,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:26 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:26 | 000,322,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:26 | 000,269,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:26 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:26 | 000,228,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:26 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:26 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:26 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:26 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:26 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:26 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:26 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\tsusbflt.sys.mui
[2012/10/25 00:30:00 | 000,307,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/25 00:29:59 | 001,448,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/23 12:57:39 | 000,002,170 | ---- | M] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/10/21 23:02:26 | 000,001,176 | ---- | M] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/21 15:07:46 | 000,000,009 | ---- | M] () -- C:\END
[2012/10/19 11:53:05 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 21:12:26 | 000,001,990 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | M] () -- C:\Windows\eReg.dat
[2012/10/17 20:10:24 | 137,398,872 | ---- | M] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 19:22:53 | 000,001,237 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/10/17 19:22:52 | 000,001,381 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,002,581 | ---- | M] () -- C:\Users\Public\Desktop\WildTangent Games App - hp.lnk
[2012/10/17 19:22:47 | 000,002,202 | ---- | M] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/10/17 19:22:47 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/10/17 19:22:47 | 000,002,109 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office 2010.lnk
[2012/10/17 19:22:47 | 000,001,940 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/17 19:22:47 | 000,001,626 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/10/17 19:22:47 | 000,001,357 | ---- | M] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,001,136 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/10/17 19:22:47 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/10 10:01:31 | 005,559,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 10:01:31 | 003,968,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 10:01:31 | 003,914,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 10:01:24 | 001,162,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 10:01:24 | 000,424,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 10:01:24 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 10:01:24 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 10:01:24 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 10:01:24 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 10:01:24 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 10:01:24 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 10:01:24 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 10:01:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 10:01:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 10:01:15 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 10:00:37 | 001,464,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 10:00:37 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 18:43:00 | 000,703,632 | ---- | M] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/10/09 18:43:00 | 000,175,240 | ---- | M] () -- C:\Program Files (x86)\gtres.dll
[2012/10/09 14:45:14 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/10/09 14:45:14 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/10/09 14:45:09 | 010,220,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/06 12:15:36 | 000,002,062 | ---- | M] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | M] () -- C:\Windows\game.ini
[2012/10/03 07:02:10 | 000,005,496 | ---- | M] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/03 00:54:12 | 000,000,888 | ---- | M] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | M] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/09/21 00:50:42 | 002,725,977 | ---- | M] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/15 20:49:31 | 000,030,200 | ---- | M] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:31:55 | 000,000,127 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 14:46:47 | 000,795,856 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/09/11 20:47:39 | 005,231,224 | R--- | M] () -- C:\Users\thomas1gun\Documents\obliv_pc_manual_web.pdf
[2012/09/11 12:46:03 | 000,001,367 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/10 18:27:03 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 12:23:35 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 08:07:20 | 000,000,860 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/09/07 22:34:46 | 000,004,096 | ---- | M] () -- C:\Windows\d3dx.dat
[2012/09/06 22:08:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/30 02:01:30 | 000,015,432 | ---- | M] () -- C:\Windows\Launcher.exe
[2012/08/26 22:40:23 | 000,003,044 | ---- | M] () -- C:\precomplete
[2012/08/26 22:40:22 | 009,018,306 | ---- | M] () -- C:\omni.ja
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\softokn3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\nssdbm3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\freebl3.chk
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy.dll
[2012/08/26 22:40:07 | 000,631,296 | ---- | M] (Mozilla Foundation) -- C:\nss3.dll
[2012/08/26 22:40:07 | 000,363,520 | ---- | M] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe
[2012/08/26 22:40:07 | 000,251,392 | ---- | M] (Mozilla Foundation) -- C:\freebl3.dll
[2012/08/26 22:40:07 | 000,150,528 | ---- | M] () -- C:\nsldap32v60.dll
[2012/08/26 22:40:07 | 000,147,968 | ---- | M] (Mozilla Foundation) -- C:\softokn3.dll
[2012/08/26 22:40:07 | 000,138,240 | ---- | M] (Mozilla Foundation) -- C:\ssl3.dll
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:07 | 000,089,088 | ---- | M] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/08/26 22:40:07 | 000,085,504 | ---- | M] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/08/26 22:40:07 | 000,083,968 | ---- | M] (Mozilla Foundation) -- C:\smime3.dll
[2012/08/26 22:40:07 | 000,014,848 | ---- | M] () -- C:\nsldappr32v60.dll
[2012/08/26 22:40:07 | 000,010,240 | ---- | M] () -- C:\nsldif32v60.dll
[2012/08/26 22:40:07 | 000,004,003 | ---- | M] () -- C:\crashreporter.ini
[2012/08/26 22:40:07 | 000,000,787 | ---- | M] () -- C:\crashreporter-override.ini
[2012/08/26 22:40:03 | 016,877,056 | ---- | M] (Mozilla Foundation) -- C:\xul.dll
[2012/08/26 22:40:03 | 002,147,328 | ---- | M] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/08/26 22:40:03 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/08/26 22:40:03 | 002,054,144 | ---- | M] () -- C:\mozjs.dll
[2012/08/26 22:40:03 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/08/26 22:40:03 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/08/26 22:40:03 | 000,569,856 | ---- | M] (sqlite.org) -- C:\mozsqlite3.dll
[2012/08/26 22:40:03 | 000,423,424 | ---- | M] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/08/26 22:40:03 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/08/26 22:40:03 | 000,159,232 | ---- | M] (Mozilla Foundation) -- C:\nspr4.dll
[2012/08/26 22:40:03 | 000,081,920 | ---- | M] (Mozilla Foundation) -- C:\libEGL.dll
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:03 | 000,041,472 | ---- | M] (Mozilla Foundation) -- C:\mozglue.dll
[2012/08/26 22:40:03 | 000,019,731 | ---- | M] () -- C:\blocklist.xml
[2012/08/26 22:40:03 | 000,014,848 | ---- | M] (Mozilla Foundation) -- C:\plc4.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\xpcom.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\plds4.dll
[2012/08/26 22:40:03 | 000,011,776 | ---- | M] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,008,704 | ---- | M] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/08/26 22:40:03 | 000,001,111 | ---- | M] () -- C:\updater.ini
[2012/08/26 22:40:03 | 000,000,454 | ---- | M] () -- C:\application.ini
[2012/08/26 22:40:03 | 000,000,206 | ---- | M] () -- C:\dependentlibs.list
[2012/08/26 22:40:03 | 000,000,140 | ---- | M] () -- C:\platform.ini
[2012/08/26 22:40:03 | 000,000,131 | ---- | M] () -- C:\update-settings.ini
[2012/08/26 22:39:13 | 000,036,062 | ---- | M] () -- C:\removed-files
[2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/08/22 10:12:40 | 000,376,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/08/22 10:12:33 | 000,288,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/08/21 13:01:00 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/08/02 09:58:52 | 000,574,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[2012/07/20 12:24:42 | 000,024,960 | ---- | M] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/07/04 14:16:43 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/07/04 14:13:27 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/07/04 13:14:34 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/07/04 12:26:03 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/06/05 22:02:54 | 001,133,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/06/05 21:03:06 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/06/02 14:19:46 | 000,038,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/06/02 14:19:42 | 000,186,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/06/02 14:19:42 | 000,057,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/06/02 14:19:42 | 000,044,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/06/02 14:19:23 | 000,701,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/06/02 14:15:31 | 002,622,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/06/02 14:15:12 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/06/02 14:15:08 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/11/17 18:22:44 | 000,175,240 | ---- | C] () -- C:\Program Files (x86)\gtres.dll
[2012/11/15 13:04:39 | 000,001,252 | ---- | C] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:54:14 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:50:24 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/10 21:47:46 | 000,002,141 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/09 10:28:16 | 000,001,154 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/10/21 15:07:07 | 000,017,720 | ---- | C] () -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys
[2012/10/21 15:07:06 | 000,001,176 | ---- | C] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/19 11:53:05 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | C] () -- C:\Windows\eReg.dat
[2012/10/18 20:48:15 | 000,001,990 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 15:06:31 | 000,001,234 | ---- | C] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/17 22:12:01 | 000,015,432 | ---- | C] () -- C:\Windows\Launcher.exe
[2012/10/16 23:07:15 | 000,002,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/14 00:43:56 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/10/06 12:11:38 | 000,002,062 | ---- | C] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/05 21:40:01 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/04 23:09:45 | 000,001,940 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | C] () -- C:\Windows\game.ini
[2012/10/03 10:55:47 | 000,000,009 | ---- | C] () -- C:\END
[2012/10/03 06:12:47 | 000,005,496 | ---- | C] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | C] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/10/01 13:55:42 | 002,725,977 | ---- | C] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/30 22:14:50 | 000,000,888 | ---- | C] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/09/15 20:49:33 | 000,030,200 | ---- | C] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:39:21 | 000,001,626 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/09/15 19:31:55 | 000,000,127 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 18:52:59 | 000,002,181 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/09/15 17:29:04 | 000,001,237 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/09/15 14:46:57 | 000,002,198 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/09/11 21:01:11 | 000,002,202 | ---- | C] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/09/11 19:30:57 | 000,002,170 | ---- | C] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/09/11 07:49:08 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2012/09/10 18:27:03 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 01:26:44 | 009,018,306 | ---- | C] () -- C:\omni.ja
[2012/09/09 01:26:44 | 002,054,144 | ---- | C] () -- C:\mozjs.dll
[2012/09/09 01:26:44 | 000,150,528 | ---- | C] () -- C:\nsldap32v60.dll
[2012/09/09 01:26:44 | 000,036,062 | ---- | C] () -- C:\removed-files
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] () -- C:\nsldappr32v60.dll
[2012/09/09 01:26:44 | 000,010,240 | ---- | C] () -- C:\nsldif32v60.dll
[2012/09/09 01:26:44 | 000,003,044 | ---- | C] () -- C:\precomplete
[2012/09/09 01:26:44 | 000,001,111 | ---- | C] () -- C:\updater.ini
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\softokn3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\nssdbm3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\freebl3.chk
[2012/09/09 01:26:44 | 000,000,206 | ---- | C] () -- C:\dependentlibs.list
[2012/09/09 01:26:44 | 000,000,140 | ---- | C] () -- C:\platform.ini
[2012/09/09 01:26:44 | 000,000,131 | ---- | C] () -- C:\update-settings.ini
[2012/09/09 01:26:43 | 000,019,731 | ---- | C] () -- C:\blocklist.xml
[2012/09/09 01:26:43 | 000,004,003 | ---- | C] () -- C:\crashreporter.ini
[2012/09/09 01:26:43 | 000,000,787 | ---- | C] () -- C:\crashreporter-override.ini
[2012/09/09 01:26:43 | 000,000,454 | ---- | C] () -- C:\application.ini
[2012/09/09 01:07:19 | 000,001,357 | ---- | C] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/09/09 01:07:18 | 000,001,381 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/09/07 22:34:46 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2012/09/07 18:11:16 | 001,877,073 | ---- | C] () -- C:\Users\thomas1gun\Documents\Administrator-lxduuser.pdf
[2012/09/07 17:42:57 | 001,400,320 | ---- | C] () -- C:\Windows\SysNative\lxdudrs64.dll
[2012/09/07 17:42:57 | 001,036,288 | ---- | C] () -- C:\Windows\SysWow64\lxdudrs.dll
[2012/09/07 17:42:57 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\lxducaps.dll
[2012/09/07 17:42:57 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\lxducnv4.dll
[2012/09/07 17:42:57 | 000,054,784 | ---- | C] () -- C:\Windows\SysNative\lxducnv464.dll
[2012/09/07 17:42:57 | 000,025,600 | ---- | C] () -- C:\Windows\SysNative\lxducaps64.dll
[2012/09/06 23:28:31 | 000,065,536 | ---- | C] () -- C:\Windows\SysNative\Ikeext.etl
[2012/09/06 22:08:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 20:50:43 | 000,001,136 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/09/06 20:50:42 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/09/06 13:46:43 | 000,001,787 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warranty.lnk
[2012/09/06 13:46:14 | 000,000,290 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/09/06 13:46:14 | 000,000,272 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:38:08 | 2808,225,792 | -HS- | C] () -- C:\hiberfil.sys
[2012/09/06 13:00:13 | 000,001,367 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/01/18 05:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012/01/18 05:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012/01/18 05:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/10/07 11:41:23 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/10/07 11:38:57 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/06/20 23:07:00 | 000,007,736 | ---- | C] () -- C:\Windows\hpDSTRES.DLL
[2011/06/10 22:45:16 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/02/11 09:15:43 | 000,795,856 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 21:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 20:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 19:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/11/15 04:04:28 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/09/16 02:02:20 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/10/03 14:44:43 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/10/12 07:35:56 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/10/03 10:55:04 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/15 19:40:29 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/18 09:44:11 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/11/15 13:04:36 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/10/03 10:40:21 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/11/14 17:33:51 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/09/15 18:50:46 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/16 13:59:34 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009/07/13 21:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/13 21:08:49 | 000,032,298 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForthomas1gun.job
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\Tasks\SmartDefrag_Startup.job

< %SYSTEMDRIVE%\*.exe >
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe

< %systemdrive%\$Recycle.Bin|@;true;true;true >

< MD5 for: EXPLORER.EXE >
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 19:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/20 19:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: SERVICES >
[2009/06/10 13:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.EXE >
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SVCHOST.EXE >
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s >

< %systemroot%\*. /mp /s >

< %Temp%\smtmp\*.* /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files (x86)\Mozilla Firefox\firefox.exe [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -preferences [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -extoff [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files (x86)\Internet Explorer\iexplore.exe [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /HideShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /ShowShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\Program Files (x86)\SeaMonkey\seamonkey.exe [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -preferences [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -safe-mode [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -PREFERENCES [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -SAFE-MODE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< End of report >
OTL Extras logfile created on: 11/19/2012 6:41:57 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\thomas1gun\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.49 Gb Total Physical Memory | 2.19 Gb Available Physical Memory | 62.94% Memory free
6.97 Gb Paging File | 5.62 Gb Available in Paging File | 80.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919.67 Gb Total Space | 853.73 Gb Free Space | 92.83% Space Free | Partition Type: NTFS
Drive D: | 11.74 Gb Total Space | 1.41 Gb Free Space | 11.98% Space Free | Partition Type: NTFS
Drive G: | 931.28 Gb Total Space | 925.02 Gb Free Space | 99.33% Space Free | Partition Type: FAT32

Computer Name: THOMAS1GUN-HP | User Name: thomas1gun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = SeaMonkeyHTML] -- C:\Program Files (x86)\SeaMonkey\seamonkey.exe (mozilla.org)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = SeaMonkeyHTML] -- C:\Program Files (x86)\SeaMonkey\seamonkey.exe (mozilla.org)

[HKEY_USERS\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Classes\<extension>]
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = SeaMonkeyHTML] -- C:\Program Files (x86)\SeaMonkey\seamonkey.exe (mozilla.org)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
https [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
https [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02395456-4C01-4C95-9A4C-55A6082F840E}" = rport=138 | protocol=17 | dir=out | app=system |
"{026EE409-4D21-49F0-BCB2-4810678C71E4}" = lport=138 | protocol=17 | dir=in | app=system |
"{0276B15E-5457-4229-933B-1A906144769C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{12F1BDA4-4C6F-4636-8DDE-27C1466270DA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{139660CA-287B-400F-B383-D9524ECD2BA9}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{21DDA553-8EAE-45F1-88E4-C13503F28DB8}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{28F86D0D-D96B-4059-AE48-48ECD821E0FB}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{2FA94291-8545-4B61-A8A8-E36E4CC79B28}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{35E6F0FE-226C-4078-A0D4-577245CE5FB9}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{37BFEB92-4B74-48DC-898D-7059C65ED970}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{48DD0D10-4931-4194-B83A-ED20850248C9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4A1BFD1C-B6DD-43E6-A3FA-C56E17126850}" = lport=445 | protocol=6 | dir=in | app=system |
"{53ECA922-1C2A-443B-AC09-85AFBF2A5146}" = lport=2869 | protocol=6 | dir=in | app=system |
"{54452D5A-E8A6-46A5-84FF-AEB3177F11D7}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{57C91099-22A9-42F1-A834-623B992A59A1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{65DDD6C6-5456-4887-93B8-FF61D9218DB4}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{65FBDDDA-540F-4BDF-A2C6-E202F8B69161}" = rport=139 | protocol=6 | dir=out | app=system |
"{71B2B3A0-6E76-41AE-9336-38BC0765AEC2}" = rport=445 | protocol=6 | dir=out | app=system |
"{85E15477-5325-44A7-B77B-3DAA6B799E3B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8CA41617-CC36-4F87-ABFC-820724715DA3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{910CD331-EF62-44FA-BEF0-2693EB40CDE1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{932787A6-1705-4286-9F30-3201266711CD}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{9B7514B1-67DB-4732-8541-F050E1C7DB0A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A4D50598-1AF5-4762-B8E3-F5774B2701C1}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{ABEDA5B0-37D0-4CE1-B937-568BF9A64F35}" = lport=10243 | protocol=6 | dir=in | app=system |
"{AEB3FC9C-8BED-4071-BFEE-80074A9E1DD7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B2439A63-F919-436D-9EE8-D5EA2225487A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B77318EB-40B2-4F78-A392-1CE12E3E0995}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{B9587A93-0F26-4030-B3C1-0FCB4C027FC4}" = rport=137 | protocol=17 | dir=out | app=system |
"{BA87F1C4-B369-4513-BD42-7CD0EC2DA3DF}" = lport=139 | protocol=6 | dir=in | app=system |
"{C3F35B01-EED6-4959-8B90-0CD3AB47AAEC}" = lport=137 | protocol=17 | dir=in | app=system |
"{D680A646-E3CB-4B1C-A7E1-54CB31BB47E1}" = rport=10243 | protocol=6 | dir=out | app=system |
"{D909279F-DCE1-4577-B273-A47C5ED55C86}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{DE2EB255-07B9-4A90-B388-5E5E64D20779}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EDE22D9A-2644-4B81-B8CB-EE078B2F316E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EEF35981-771D-43A4-B3F5-B73CB1EBC217}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F2C56966-AB87-4E79-9B61-F3CD89CEF168}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F30137BE-54A3-4155-BC20-01C92D785761}" = rport=2869 | protocol=6 | dir=out | app=system |
"{F773A4BE-D976-46A2-B9B0-4382E3157C8F}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02F9730F-DE0C-4B34-9C26-4780E76C55C4}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{06AC877F-3054-42A7-8416-603C860E8227}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{0E10CF41-D304-4685-8C18-ACD067C87B63}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{1CFBA47E-6DAC-46CE-926C-7F03876D8534}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2DF6B18E-E728-4139-8AAC-927D380770BA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{3BC3594B-0673-439F-9D29-E9EF4CDC4766}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3C8CF32A-862C-43DF-81F0-3C688A53CDD0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3CDC183A-5151-4550-92A5-6C94D1CB4CEC}" = protocol=17 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs8fe5.tmp\symnrt.exe |
"{3E0BF1E4-FC3A-4675-B679-E613A2EC36ED}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{433B23DC-F3BC-4273-BD5A-0E93601E5C7E}" = protocol=6 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs6985.tmp\symnrt.exe |
"{493099C6-5F46-439E-8A63-D85871CF0593}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{49DB5868-986C-48C0-956C-CAAAB56F9DA4}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdupswx.exe |
"{4D5021C5-031F-47C3-A739-7E8EFEF9B84E}" = protocol=17 | dir=out | app=c:\program files (x86)\hewlett-packard\hp linkup\hp linkup viewer.exe |
"{4EDF63D8-19BF-458C-ACA6-CD07A3DAB72D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5C1EBA9B-3E92-4C54-90C0-F9587354ACC0}" = protocol=6 | dir=out | app=c:\program files (x86)\hewlett-packard\remote graphics receiver\rgreceiver.exe |
"{62E61438-AF1D-4F38-8AFF-C0729E772143}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{67B45DCA-1A8B-42E1-97FC-C5DA5813DE46}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{733226C4-E98C-4639-A269-95A732B7B39C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{75C6EF42-2C6B-4E4D-96B5-DC205F492C48}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A60684D-3A83-4C75-83BD-1F36EECC5E9E}" = protocol=17 | dir=in | app=c:\program files (x86)\hewlett-packard\mediasmart\roxionow\rnow.exe |
"{815D8DE9-BED7-48DE-8F40-00486F29EC32}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8E4927E5-FFE3-4D25-AE53-8F8666ECB64B}" = protocol=17 | dir=in | app=c:\program files (x86)\roxio\roxionow player\rnowshell.exe |
"{932D78FF-DE95-41EE-ACE3-26C479CB12FA}" = protocol=6 | dir=out | app=system |
"{9D7C7BD6-8694-46FD-A497-92D169F2046A}" = protocol=6 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs8fe5.tmp\symnrt.exe |
"{A14607A6-BA12-4CAC-A513-D4CA0B44F2CA}" = protocol=17 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{A448735A-5852-4DFD-B0A5-0378C49403DB}" = protocol=6 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{A6113285-9BFA-45C9-8374-979036421C71}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{A87D9064-BB2D-4A41-83DA-E76AFA4B976D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AB527F5C-C3F8-435F-B0CC-D065DF5F5EB5}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{AEDAD1C5-0530-497D-82F7-67DD93CC87D1}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{B6414D56-871D-4111-8365-B988421DD46A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B682F3EE-2E16-43F6-8E5A-C23745DD51BE}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{BB510B48-93FB-4E0F-8E53-8AEF7C6E4C3C}" = protocol=17 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs6985.tmp\symnrt.exe |
"{C0D01501-9043-4468-BC64-1E4D4D5FB8AB}" = protocol=17 | dir=in | app=c:\program files (x86)\hewlett-packard\hp linkup\hp linkup viewer.exe |
"{C6379D8B-32F3-46DD-B215-28FDB3B01EC6}" = protocol=6 | dir=in | app=c:\program files (x86)\hewlett-packard\remote graphics receiver\rgreceiver.exe |
"{C914C422-801B-4EE8-AEE3-5FACF5AD25D0}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{CEE57092-2B28-4C36-90A9-ADBF07B6E4DD}" = protocol=6 | dir=in | app=c:\program files (x86)\roxio\roxionow player\rnowshell.exe |
"{D365671E-CB4A-4D1E-8DC1-649EA6A55E58}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D8FEB7A6-58C7-4DA2-9A95-98110CD13CAA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{DC8CA681-CF21-43BD-A924-2804B9120F5B}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E177FA63-1A91-4D3A-9957-EB597043679E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E3962BE3-E1A6-4A5C-B9CC-5E23B4FA3DB0}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{E41600EF-BCD0-4E50-A13E-66BDE9115FB8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E69E2237-262D-45EB-A333-A6D501DF65F7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F16A6E9D-8D09-452E-8A21-9C8E3DA43DF9}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdupswx.exe |
"{F2D1A06A-94D4-444A-99E9-E54776494ED6}" = protocol=6 | dir=in | app=c:\program files (x86)\hewlett-packard\mediasmart\roxionow\rnow.exe |
"{F724DC17-1730-4146-BD9C-25429DE14774}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{F91D92A4-2109-48D3-9CBA-297A26A66C6D}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"TCP Query User{2607A96F-D080-4FB5-A980-044608DEDF9F}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=6 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"TCP Query User{2E661757-EA41-4B7E-8CBE-97D1E6B6DDD3}C:\program files (x86)\roger wilco\roger.exe" = protocol=6 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"TCP Query User{452D930C-887D-463D-82DC-66AE2798543E}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"TCP Query User{4DB0EBEE-5835-4365-A958-A9696FC628EE}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"TCP Query User{5D2DEFB3-E8B8-424C-9622-93E2DAAB8BD6}C:\users\thomas1gun\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\thomas1gun\appdata\local\akamai\netsession_win.exe |
"TCP Query User{884E7AFA-27D9-48C6-BEAE-B879A6788AB3}C:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe |
"TCP Query User{8EC25F19-FA56-4A9C-AF23-E534ADB41D36}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=6 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"TCP Query User{949FE66E-C255-4C39-9BB4-D853B936236D}C:\program files (x86)\free download manager\fdm.exe" = protocol=6 | dir=in | app=c:\program files (x86)\free download manager\fdm.exe |
"TCP Query User{AFDC7C59-D620-48E9-8765-96873A5B9419}C:\seamonkey.exe" = protocol=6 | dir=in | app=c:\seamonkey.exe |
"TCP Query User{B2CFC37B-6351-4920-AEA9-6587FCA32E69}C:\program files (x86)\xfire\ua_lsp_inst.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\ua_lsp_inst.exe |
"TCP Query User{D4C94911-4BA1-484F-A644-5FAD364AAA49}C:\program files (x86)\roger wilco\roger.exe" = protocol=6 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"TCP Query User{E0B2FEF4-4145-420A-94B1-2E3023AACE25}C:\program files (x86)\ea games\mohaa\moh_spearhead.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_spearhead.exe |
"TCP Query User{F497518F-FE8D-4499-96B8-8DDD39B4F806}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"TCP Query User{F77A8CF0-D6A5-42D8-9DA7-A5EF2E94C2A4}C:\program files (x86)\ea games\mohaa\moh_breakthrough.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_breakthrough.exe |
"UDP Query User{08253F4B-6811-499C-B774-433DFB5F0446}C:\program files (x86)\xfire\ua_lsp_inst.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\ua_lsp_inst.exe |
"UDP Query User{09890FCB-3D81-451E-A3FC-3440B4BF591A}C:\program files (x86)\roger wilco\roger.exe" = protocol=17 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"UDP Query User{1D0066EB-822E-4652-A286-8B7DFEEBA72E}C:\program files (x86)\ea games\mohaa\moh_spearhead.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_spearhead.exe |
"UDP Query User{2329F3F5-B237-4D18-96C5-02DF8D171F9E}C:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe |
"UDP Query User{29655E85-3458-496E-9762-444A8C85E1A0}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"UDP Query User{2ED45EC1-A414-42BA-88BF-F94E12E3F669}C:\program files (x86)\ea games\mohaa\moh_breakthrough.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_breakthrough.exe |
"UDP Query User{491E29F9-EB1A-4115-8FB8-9C3EBDDE7636}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=17 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"UDP Query User{4A4B661D-987C-4281-9578-339885B55260}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"UDP Query User{58A9D30E-0C7E-49FF-B2CA-965D30A93FD7}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=17 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"UDP Query User{7F47E7DB-F3C0-4819-8DB9-9A1AD681EFC9}C:\users\thomas1gun\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\thomas1gun\appdata\local\akamai\netsession_win.exe |
"UDP Query User{8EC7B951-233F-48FB-9523-C015EC432361}C:\program files (x86)\roger wilco\roger.exe" = protocol=17 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"UDP Query User{9644280B-E088-44F4-A4C5-BF6B108F330D}C:\program files (x86)\free download manager\fdm.exe" = protocol=17 | dir=in | app=c:\program files (x86)\free download manager\fdm.exe |
"UDP Query User{C1A91E13-E142-4A9A-9019-275169AAFDC2}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"UDP Query User{ED8F4A0C-8F6A-4D42-95CE-F843039A8F9C}C:\seamonkey.exe" = protocol=17 | dir=in | app=c:\seamonkey.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}" = HP Client Services
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4BCE1F46-1DA2-3607-65BA-EDFA544183B4}" = ccc-utility64
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{BCC01139-903A-6FC7-3358-85B0AE332601}" = ATI Catalyst Install Manager
"{C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}" = Microsoft Security Client
"{C9AAFA95-33DA-F963-DBD5-A9454DA2F19F}" = AMD Media Foundation Decoders
"{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}" = HP Auto
"{D79A02E9-6713-4335-9668-AAC7474C0C0E}" = HP Vision Hardware Diagnostics
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01C30C12-525A-8804-C623-8FC6DD4FF32F}" = CCC Help Chinese Traditional
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
"{089063BB-5B9D-D4AB-22D2-59F6EF4DE09E}" = CCC Help Polish
"{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}" = Netflix in Windows Media Center
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor Allied Assault
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{16FC3056-90C0-4757-8A68-64D8DA846ADA}" = Remote Graphics Receiver
"{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B6F7BE6-A4A2-02C6-2467-C58954985AB3}" = CCC Help Korean
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
"{23D683DD-93C6-48E6-B84E-78B57778F126}" = Oblivion - Construction Set
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{4337BD05-C42B-5F45-F228-EA5DC10BEB01}" = CCC Help Turkish
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{4984BBF2-8A6B-0F27-300B-69C6C9125CC8}" = CCC Help Greek
"{4EFB7F0F-C6EB-B189-9B57-B599372F8A3A}" = CCC Help Italian
"{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}" = Medal of Honor Pacific Assault™
"{59CE4831-355D-4110-9021-562D97913272}" = CCC Help German
"{66D6F3BD-CA23-41A4-9FA3-96B26B32528C}" = Command & Conquer The First Decade
"{689E5983-F9EA-61AE-632B-F26AC91B0E62}" = Catalyst Control Center Graphics Previews Common
"{68EBE0E8-C24F-DB74-0081-E976C7F9003D}" = CCC Help Finnish
"{6917E984-25D9-9D4E-7474-53262BEAE9F6}" = CCC Help Spanish
"{69FDD4EA-9D68-11D5-8A28-005004D37F93}" = Wolfenstein 3D
"{6ACE862C-EDDD-9A7E-FBF6-D06050F53D52}" = CCC Help Swedish
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.2.0
"{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}" = HP Support Assistant
"{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp" = WildTangent Games App (HP Games)
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71213B00-C3D5-C885-5302-9C6CC7DCE137}" = CCC Help Russian
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{717D3880-41BC-4CE8-3FA6-95DABE215DB1}" = CCC Help Danish
"{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7914BE1E-F186-4790-B8F4-9F63C52A41C1}" = Medal of Honor Allied Assault™ Spearhead
"{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}" = HP Support Information
"{7FB00B6B-6843-97EC-EED6-78BD6D35370A}" = Zinio Reader 4
"{823A68CC-3049-4A6B-8F63-7DC85E4BB1C9}" = Medal of Honor Allied Assault™ Breakthrough
"{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EEA0F2F-BC5C-3EB0-883D-B6F35730A5B5}" = CCC Help English
"{905E1976-AF8F-0351-EB63-5C76DC83165F}" = CCC Help Dutch
"{912CED74-88D3-4C5B-ACB0-132318649765}" = PressReader
"{941DC878-781C-E5EF-C246-E44F969FB318}" = CCC Help Japanese
"{95CC6FC9-9E4B-17CF-EACA-031F07F48BA4}" = Catalyst Control Center InstallProxy
"{9651CB1C-7EB7-2372-F345-45727C1AB823}" = CCC Help Chinese Standard
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
"{A2BE22D4-0F66-455E-9783-1D7113CC6F00}" = Catalyst Control Center - Branding
"{A7730A8E-CA1C-5238-02D6-45198D343202}" = CCC Help Thai
"{AE856388-AFAD-4753-81DF-D96B19D0A17C}" = HP Setup Manager
"{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR
"{B2E84E76-6D0C-51E2-B0B1-7567B10AEC96}" = Catalyst Control Center Localization All
"{B8AC1A89-FFD1-4F97-8051-E505A160F562}" = HP Odometer
"{BA945D93-DBEB-0BC6-B6AD-26330D2E9879}" = AMD VISION Engine Control Center
"{CB6189FB-94E0-CD39-7B41-92213433CD26}" = CCC Help French
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{D35B72B6-F0E4-462B-BDEB-E08032B3B681}" = HP Setup
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{D7422030-A87C-2A0C-7268-463512250CA4}" = CCC Help Portuguese
"{DB3147AB-4024-4773-8EC0-A1FE5B44933D}" = HP LinkUp
"{DE77FE3F-A33D-499A-87AD-5FC406617B40}" = HP Update
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E637DA92-2EAE-1B6F-9D65-A86F0780118E}" = CCC Help Hungarian
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{ED15F807-4242-3091-B32E-A349C37141C0}" = CCC Help Czech
"{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F7BFA5CC-8072-ACFD-D12F-69F4F2AAACB1}" = CCC Help Norwegian
"{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
"4K Video Downloader_is1" = 4K Video Downloader 2.5
"7-Zip" = 7-Zip 9.22beta
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Age of Empires 2.0" = Microsoft Age of Empires II
"Age of Empires II: The Conquerors Expansion 1.0" = Microsoft Age of Empires II: The Conquerors Expansion
"Hardware Helper_is1" = Hardware Helper
"Mozilla Firefox 16.0.2 (x86 en-US)" = Mozilla Firefox 16.0.2 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PDF Complete" = PDF Complete Special Edition
"Protected Search_is1" = Protected Search 1.1
"SeaMonkey 2.12 (x86 en-US)" = SeaMonkey 2.12 (x86 en-US)
"SeaMonkey 2.13.2 (x86 en-US)" = SeaMonkey 2.13.2 (x86 en-US)
"Smart Defrag 2_is1" = Smart Defrag 2
"StarCraft" = StarCraft
"VideoDownloadConverter_4zbar Uninstall" = VideoDownloadConverter Toolbar
"WildTangent hp Master Uninstall" = HP Games
"WTA-33bb784e-f643-462c-b08c-a1c2cda107ac" = Bejeweled 3
"WTA-63cce9a9-8e93-4573-8d36-9d83cbf861d0" = Mah Jong Medley
"WTA-bd70b2a4-b238-47e6-9b84-4513b598dd75" = Blackhawk Striker 2
"WTA-f09ffbdc-63ff-4d90-8648-39095dccb002" = Jewel Quest: The Sleepless Star - Collector's Edition
"ZinioReader4" = Zinio Reader 4

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10/19/2012 4:00:55 AM | Computer Name = thomas1gun-HP | Source = Windows Backup | ID = 4104
Description =

Error - 10/19/2012 4:02:12 AM | Computer Name = thomas1gun-HP | Source = Windows Backup | ID = 4104
Description =

Error - 10/19/2012 3:26:18 PM | Computer Name = thomas1gun-HP | Source = | ID = 0
Description =

Error - 10/19/2012 3:26:18 PM | Computer Name = thomas1gun-HP | Source = | ID = 0
Description =

Error - 10/19/2012 8:13:48 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Game.exe, version: 1.37.0.1, time stamp:
0x21214d44 Faulting module name: Mp3dec.asi, version: 3.0.0.0, time stamp: 0x3c1b97a9
Exception
code: 0xc0000005 Fault offset: 0x00001f4f Faulting process id: 0x5cc Faulting application
start time: 0x01cdae4a8704333f Faulting application path: C:\Program Files (x86)\EA
Games\Command & Conquer The First Decade\Command & Conquer Renegade™\Renegade\Game.exe
Faulting
module path: C:\Program Files (x86)\EA Games\Command & Conquer The First Decade\Command
& Conquer Renegade™\Renegade\Mp3dec.asi Report Id: 04695142-1a4b-11e2-b9b6-3860778fbece

Error - 10/21/2012 10:00:00 PM | Computer Name = thomas1gun-HP | Source = Windows Backup | ID = 4103
Description =

Error - 10/23/2012 5:00:22 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0001e298 Faulting process id:
0xc74 Faulting application start time: 0x01cdb1614e339e69 Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
a89ea079-1d54-11e2-822d-3860778fbece

Error - 10/23/2012 5:01:18 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0000548e Faulting process id:
0xcfc Faulting application start time: 0x01cdb1618a3d5dc0 Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
ca02af1b-1d54-11e2-822d-3860778fbece

Error - 10/23/2012 5:02:03 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0000548e Faulting process id:
0xd48 Faulting application start time: 0x01cdb161a4ca68c9 Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
e4c51a3c-1d54-11e2-822d-3860778fbece

Error - 10/23/2012 5:07:30 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0000548e Faulting process id:
0x478 Faulting application start time: 0x01cdb16268a088aa Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
a7c6b395-1d55-11e2-822d-3860778fbece

[ Hewlett-Packard Events ]
Error - 9/7/2012 8:02:57 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:03:16 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:05:20 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:13:45 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:15:48 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:17:53 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:18:50 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:22:56 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:23:11 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:25:23 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

[ Media Center Events ]
Error - 11/13/2012 1:39:40 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 9:39:40 PM - Error connecting to the internet. 9:39:40 PM - Unable
to contact server..

Error - 11/13/2012 1:39:47 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 9:39:45 PM - Error connecting to the internet. 9:39:45 PM - Unable
to contact server..

Error - 11/13/2012 2:39:52 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 10:39:52 PM - Error connecting to the internet. 10:39:52 PM - Unable
to contact server..

Error - 11/13/2012 2:39:59 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 10:39:57 PM - Error connecting to the internet. 10:39:57 PM - Unable
to contact server..

Error - 11/13/2012 3:40:04 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 11:40:04 PM - Error connecting to the internet. 11:40:04 PM - Unable
to contact server..

Error - 11/13/2012 3:40:10 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 11:40:09 PM - Error connecting to the internet. 11:40:09 PM - Unable
to contact server..

Error - 11/13/2012 4:09:50 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 12:09:50 PM - Error connecting to the internet. 12:09:50 PM - Unable
to contact server..

Error - 11/13/2012 4:10:00 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 12:09:55 PM - Error connecting to the internet. 12:09:55 PM - Unable
to contact server..

Error - 11/17/2012 4:04:09 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 12:03:58 PM - Error connecting to the internet. 12:03:58 PM - Unable
to contact server..

Error - 11/17/2012 5:04:19 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 1:04:17 PM - Error connecting to the internet. 1:04:17 PM - Unable
to contact server..

[ System Events ]
Error - 11/14/2012 7:40:29 PM | Computer Name = thomas1gun-HP | Source = ipnathlp | ID = 30013
Description =

Error - 11/15/2012 9:35:33 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2729449).

Error - 11/15/2012 9:36:18 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2737019).

Error - 11/15/2012 9:36:50 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2729449).

Error - 11/15/2012 9:37:00 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2737019).

Error - 11/15/2012 4:00:40 PM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 80
Description = Password device is not compatible with Windows.

Error - 11/15/2012 4:00:47 PM | Computer Name = thomas1gun-HP | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SBRE

Error - 11/15/2012 4:00:51 PM | Computer Name = thomas1gun-HP | Source = ipnathlp | ID = 34001
Description =

Error - 11/15/2012 4:00:51 PM | Computer Name = thomas1gun-HP | Source = ipnathlp | ID = 30013
Description =

Error - 11/15/2012 5:06:17 PM | Computer Name = thomas1gun-HP | Source = Service Control Manager | ID = 7030
Description = The Hotspot Shield Service service is marked as an interactive service.
However, the system is configured to not allow interactive services. This service
may not function properly.


< End of report >
OTL logfile created on: 11/19/2012 6:41:57 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\thomas1gun\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.49 Gb Total Physical Memory | 2.19 Gb Available Physical Memory | 62.94% Memory free
6.97 Gb Paging File | 5.62 Gb Available in Paging File | 80.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919.67 Gb Total Space | 853.73 Gb Free Space | 92.83% Space Free | Partition Type: NTFS
Drive D: | 11.74 Gb Total Space | 1.41 Gb Free Space | 11.98% Space Free | Partition Type: NTFS
Drive G: | 931.28 Gb Total Space | 925.02 Gb Free Space | 99.33% Space Free | Partition Type: FAT32

Computer Name: THOMAS1GUN-HP | User Name: thomas1gun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

========== Processes (SafeList) ==========

PRC - [2012/11/18 06:10:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\thomas1gun\Downloads\OTL.exe
PRC - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe
PRC - [2012/09/19 11:01:32 | 000,067,656 | ---- | M] (Simplygen) -- C:\Program Files (x86)\Protected Search\ProtectedSearch.exe
PRC - [2012/09/06 10:06:42 | 001,607,552 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
PRC - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe
PRC - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2010/11/20 19:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
PRC - [2008/11/20 09:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe


========== Modules (No Company Name) ==========

MOD - [2012/11/18 14:59:38 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
MOD - [2012/11/18 14:27:48 | 012,549,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\474914b7c8b9b5056943488991a57edc\System.Windows.Forms.ni.dll
MOD - [2012/11/18 14:27:30 | 001,595,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f961fb1ec279c14554f5580a457ef542\System.Drawing.ni.dll
MOD - [2012/11/18 14:22:43 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2011/08/19 15:33:28 | 000,047,960 | ---- | M] () -- C:\Program Files (x86)\IObit\Smart Defrag 2\NtfsData.dll
MOD - [2010/11/20 19:24:25 | 000,385,024 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/09/12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011/10/24 04:16:42 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011/02/16 21:47:28 | 000,682,040 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe -- (HPAuto)
SRV:64bit: - [2010/10/11 01:48:14 | 000,346,168 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe -- (HPClientSvc)
SRV:64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/11/13 19:34:54 | 000,115,168 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) [Auto | Running] -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe -- (VideoDownloadConverter_4zService)
SRV - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/09/09 16:10:28 | 000,086,072 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [Auto | Running] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
DRV:64bit: - [2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/18 05:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:64bit: - [2012/01/18 05:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2012/01/18 05:44:14 | 000,025,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64)
DRV:64bit: - [2012/01/12 08:28:48 | 000,074,872 | R--- | M] (GFI Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\sbapifs.sys -- (sbapifs)
DRV:64bit: - [2011/10/24 04:56:54 | 010,203,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/10/24 03:40:08 | 000,310,784 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/10/07 11:38:30 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/10/07 11:38:30 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/05/16 13:55:28 | 000,533,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/04 14:46:20 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2011/03/04 14:46:20 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2010/12/15 19:36:46 | 000,047,232 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010/11/26 17:02:18 | 000,017,720 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV:64bit: - [2010/11/20 19:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/20 19:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/12/04 00:35:14 | 000,020,992 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 12:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKLM\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://my.yahoo.com/ [binary data]
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...0003860778fbece
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3D54D766-A388-45E2-B552-F14FED0C055C}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{7C864D08-CA10-4FF4-BCFF-C51DA3BD89C3}: "URL" = http://search.condui...&ctid=CT1561552
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{92246B67-8961-4885-9413-B67C8CE22360}: "URL" = http://us.yhs4.searc...p={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}: "URL" = http://www2.inbox.co...id=80291&lng=en
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..CT3196716.browser.search.defaultthis.engineName: true
FF - prefs.js..CT3201318.browser.search.defaultthis.engineName: true
FF - prefs.js..browser.search.defaultengine: "Web Search"
FF - prefs.js..browser.search.param.yahoo-fr: "&hsimp=yhs-affiliate_a_ff&hspart=greentree&type=685749_yhs3tst"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.startup.homepage: "chrome://fvd.speeddial/content/fvd_about_blank.html"
FF - prefs.js..extensions.enabledAddons: wisestamp@wisestamp.com:3.11.21
FF - prefs.js..extensions.enabledAddons: tineye@ideeinc.com:1.1
FF - prefs.js..extensions.enabledAddons: amadlo@tomers.net:1.1.6
FF - prefs.js..extensions.enabledAddons: firefox@ghostery.com:2.8.3
FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: artur.dubovoy@gmail.com:3.7.6
FF - prefs.js..extensions.enabledAddons: adapter@babylontc.com:1.0.0.1
FF - prefs.js..extensions.enabledAddons: ocr@babylon.com:1.1
FF - prefs.js..extensions.enabledAddons: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:1.4
FF - prefs.js..extensions.enabledAddons: {c07d1a49-9894-49ff-a594-38960ede8fb9}:3.1.10
FF - prefs.js..extensions.enabledAddons: {3bbd3c14-4c16-4989-8366-95bc9179779d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: pavel.sherbakov@gmail.com:4.1.5
FF - prefs.js..extensions.enabledAddons: canitbecheaper@trafficbroker.co.uk:3.8.23
FF - prefs.js..extensions.enabledAddons: {E71B541F-5E72-5555-A47C-E47863195841}:1.0.26
FF - prefs.js..extensions.enabledAddons: donottrackplus@abine.com:2.2.1.829
FF - prefs.js..extensions.enabledAddons: 4zffxtbr@VideoDownloadConverter_4z.com:2.71.0.60687
FF - prefs.js..extensions.enabledAddons: {c95a4e8e-816d-4655-8c79-d736da1adb6d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {26605315-8a79-4ff6-bbb9-63363b9d86b3}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: Foxdie@tanjihay.com:15
FF - prefs.js..keyword.URL: "http://search.mywebs...000&searchfor="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: File not found
FF - HKLM\Software\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\4zffxtbr@VideoDownloadConverter_4z.com: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin [2012/09/30 22:14:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Components: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Plugins: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Components: C:\Program Files (x86)\SeaMonkey\components [2012/11/02 11:54:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Plugins: C:\Program Files (x86)\SeaMonkey\plugins

[2012/09/06 20:51:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Extensions
[2012/11/17 18:27:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions
[2012/11/13 15:53:42 | 000,000,000 | ---D | M] (Smart Defrag) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{26605315-8a79-4ff6-bbb9-63363b9d86b3}
[2012/11/13 15:53:50 | 000,000,000 | ---D | M] (FLV Runner) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{3bbd3c14-4c16-4989-8366-95bc9179779d}
[2012/11/17 17:23:33 | 000,000,000 | ---D | M] (FT DeepDark) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
[2012/11/15 13:06:43 | 000,000,000 | ---D | M] (Hotspot Shield) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}
[2012/11/15 03:57:45 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2012/11/13 15:53:58 | 000,000,000 | ---D | M] (WiseConvert) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}
[2012/11/16 12:17:09 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012/11/15 03:05:11 | 000,000,000 | ---D | M] (DoNotTrackPlus) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com
[2012/09/27 22:06:22 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\firefox@ghostery.com
[2012/09/27 21:54:01 | 000,000,000 | ---D | M] (Foxdie) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\Foxdie@tanjihay.com
[2012/11/15 00:36:07 | 000,000,000 | ---D | M] ("FVD Speed Dial with Full Online Sync") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\pavel.sherbakov@gmail.com
[2012/10/16 20:56:44 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\plugin@yontoo.com
[2012/11/08 17:09:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\firefox@ghostery.com
[2012/09/09 01:26:58 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\inspector@mozilla.org
[2012/10/17 21:59:20 | 000,021,707 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\adapter@babylontc.com.xpi
[2012/09/27 21:52:44 | 000,023,125 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\amadlo@tomers.net.xpi
[2012/10/17 20:07:56 | 000,221,098 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\artur.dubovoy@gmail.com.xpi
[2012/11/15 03:47:51 | 000,070,963 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\canitbecheaper@trafficbroker.co.uk.xpi
[2012/10/17 21:59:21 | 000,008,053 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\ocr@babylon.com.xpi
[2012/09/09 07:45:03 | 000,008,001 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\tineye@ideeinc.com.xpi
[2012/09/07 22:23:43 | 001,771,909 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\wisestamp@wisestamp.com.xpi
[2012/10/14 21:49:11 | 000,672,576 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi
[2012/11/11 21:00:53 | 000,447,304 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi
[2012/11/10 18:38:04 | 000,252,340 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2012/08/29 12:56:22 | 000,007,915 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com\chrome\content\ff\view_expiry.js
[2012/09/30 17:20:45 | 000,009,634 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\my-web-search.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\Web Search.xml
[2012/10/14 23:20:13 | 000,001,022 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\wiseconvert-customized-web-search.xml
[2012/11/17 02:10:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/11/13 19:34:55 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/11/15 04:04:38 | 000,002,349 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2012/09/05 17:26:22 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/11/13 19:34:21 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml

O1 HOSTS File: ([2012/09/09 08:07:20 | 000,000,860 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
O2 - BHO: (no name) - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - No CLSID value found.
O2 - BHO: (Search Assistant BHO) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (MindSpark)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {26605315-8A79-4FF6-BBB9-63363B9D86B3} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No CLSID value found.
O4:64bit: - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\.DEFAULT..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-18..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O16:64bit: - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} http://content.syste...nt_4.5.13.0.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.3.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C6715BFB-42A2-4A4D-98E2-B716B74A1C8D}: DhcpNameServer = 192.168.0.1 205.171.3.65
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) - c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{6224c52a-ffac-11e1-b93f-3860778fbece}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\...exe [@ = exefile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 180 Days ==========

[2012/11/18 05:49:08 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/11/18 00:00:35 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2012/11/18 00:00:35 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012/11/18 00:00:33 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012/11/18 00:00:33 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2012/11/18 00:00:31 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2012/11/18 00:00:31 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012/11/18 00:00:30 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2012/11/18 00:00:30 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012/11/18 00:00:29 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2012/11/18 00:00:29 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012/11/17 23:59:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012/11/17 23:59:18 | 064,010,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/11/17 19:14:36 | 000,000,000 | ---D | C] -- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[2012/11/17 18:22:44 | 000,703,632 | ---- | C] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/11/15 13:08:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\4kdownload.com
[2012/11/15 13:04:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\4KDownload
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\thriXXX
[2012/11/14 01:54:11 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:11 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:52:35 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:34 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:52:33 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:33 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:32 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:32 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:32 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:32 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:31 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:31 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:31 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:31 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:29 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:29 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:29 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:50:26 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:25 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:24 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:24 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/13 19:34:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/11/13 15:51:56 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/13 15:51:56 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/13 15:51:56 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/13 15:51:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/13 15:51:49 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/13 15:51:31 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/13 15:51:31 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 22:23:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
[2012/11/01 10:31:08 | 000,040,712 | ---- | C] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | C] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/28 02:21:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Command and Conquer Generals Data
[2012/10/25 00:30:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:09 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/10/25 00:30:09 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:08 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:08 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:08 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:07 | 003,174,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:07 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:07 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:07 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:07 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:07 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:07 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:07 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:07 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:07 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:06 | 005,773,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:06 | 004,916,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:28:39 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/25 00:28:39 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/21 15:07:48 | 000,032,600 | ---- | C] (IObit) -- C:\Windows\SysNative\SmartDefragBootTime.exe
[2012/10/21 15:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2
[2012/10/18 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roger Wilco
[2012/10/18 15:13:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EasyInfo
[2012/10/17 22:12:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinRAR
[2012/10/17 22:12:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Search
[2012/10/17 22:12:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Protected Search
[2012/10/17 22:11:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\DownTango
[2012/10/17 22:11:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Sky
[2012/10/17 20:07:53 | 137,398,872 | ---- | C] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 20:07:51 | 000,000,000 | ---D | C] -- C:\Program Files\Babylon
[2012/10/17 15:57:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Trymedia
[2012/10/17 11:34:15 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/10/16 23:07:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012/10/16 23:07:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/10/16 22:52:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2012/10/16 22:50:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Wajam
[2012/10/16 22:28:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/10/16 22:25:57 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012/10/16 21:48:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wolfenstein 3D
[2012/10/16 21:48:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wolfenstein 3D
[2012/10/16 20:56:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OApps
[2012/10/16 20:56:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yontoo
[2012/10/16 20:56:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2012/10/16 19:41:29 | 000,000,000 | ---D | C] -- C:\inetpub
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.74
[2012/10/14 08:16:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Apple Computer
[2012/10/14 00:45:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/10/14 00:44:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/10/14 00:43:57 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apple
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/10/10 09:34:37 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 09:34:37 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 09:34:37 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 09:34:37 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 09:34:37 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 09:34:37 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 09:34:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 09:34:37 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 09:34:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 09:34:37 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 09:34:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 09:34:29 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 09:34:19 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 09:34:19 | 003,968,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 09:34:19 | 003,914,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 09:33:51 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 09:33:51 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 14:45:09 | 010,220,472 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/09 09:40:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sensible Vision
[2012/10/06 12:08:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2012/10/06 12:07:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2012/10/05 21:21:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\hpremote
[2012/10/05 20:02:45 | 000,024,960 | ---- | C] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/10/04 23:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
[2012/10/04 23:01:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA GAMES
[2012/10/03 18:36:08 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012/10/03 18:35:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/10/03 14:44:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/10/03 14:44:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BlueSprig
[2012/10/03 11:38:00 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Roxio Log Files
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{6F2F3866-38AD-4f48-852C-2FF5DE7A7588}
[2012/10/03 10:55:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2012/10/03 10:55:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Conduit
[2012/10/03 10:40:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/10/03 10:40:07 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Utility Kit
[2012/10/03 10:17:04 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{0698D77A-C2AE-43D7-AF64-D63D72960D80}
[2012/10/02 01:11:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.72
[2012/10/01 15:51:26 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\vlc
[2012/10/01 02:09:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2012/10/01 02:09:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2012/09/30 22:09:28 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
[2012/09/30 22:04:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Ilivid Player
[2012/09/30 18:25:17 | 000,000,000 | ---D | C] -- C:\Plugins
[2012/09/30 17:19:52 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VideoDownloadConverter_4z
[2012/09/30 15:27:11 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/09/30 15:23:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoDownloadConverter_4z
[2012/09/28 11:00:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Roozz
[2012/09/27 00:00:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{2906D058-8E5B-4080-A802-F0AD4C60DCC8}
[2012/09/26 00:20:39 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Real
[2012/09/26 00:20:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rhapsody
[2012/09/25 10:49:47 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/09/18 09:37:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/09/18 09:37:57 | 000,018,760 | ---- | C] (WinZip Computing, S.L.(WinZip Computing)) -- C:\Windows\SysNative\roboot64.exe
[2012/09/18 09:37:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZip Registry Optimizer
[2012/09/16 14:00:02 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{B9EE30D3-4BF9-4373-AD11-683D379DB655}
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Windows Live Writer
[2012/09/16 02:13:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
[2012/09/16 02:00:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Blio
[2012/09/16 02:00:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{5DD8111D-4E12-4116-8D7F-E49696638D35}
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{3EE88425-AAC5-43B9-BE87-D47843BBB388}
[2012/09/15 22:40:30 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\U3
[2012/09/15 20:48:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Logitech
[2012/09/15 19:43:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Logitech® Webcam Software
[2012/09/15 19:41:00 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2012/09/15 19:40:29 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/15 19:39:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Logitech
[2012/09/15 19:39:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LWS
[2012/09/15 19:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2012/09/15 19:39:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2012/09/15 18:51:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\hpqLog
[2012/09/15 18:50:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/15 17:29:21 | 000,000,000 | ---D | C] -- C:\ProgramData\HardwareHelper
[2012/09/15 17:29:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hardware Helper
[2012/09/15 17:28:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2012/09/12 08:40:47 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/09/12 08:40:44 | 000,574,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/09/12 08:40:40 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/09/12 08:40:40 | 000,288,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/09/11 20:25:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Downloads
[2012/09/11 19:30:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2012/09/11 12:43:43 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012/09/11 12:43:35 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/11 12:43:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012/09/11 12:42:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012/09/10 11:01:09 | 000,074,872 | R--- | C] (GFI Software) -- C:\Windows\SysNative\drivers\sbapifs.sys
[2012/09/09 13:04:46 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2012/09/09 13:04:46 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012/09/09 13:04:45 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2012/09/09 13:04:45 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012/09/09 13:04:45 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2012/09/09 13:04:44 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2012/09/09 13:04:44 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012/09/09 13:04:44 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2012/09/09 13:04:44 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012/09/09 13:04:43 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2012/09/09 13:04:43 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2012/09/09 13:04:43 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012/09/09 13:04:43 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2012/09/09 13:04:41 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2012/09/09 13:04:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2012/09/09 13:04:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012/09/09 13:04:40 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2012/09/09 13:04:40 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012/09/09 13:04:40 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2012/09/09 13:04:40 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012/09/09 13:04:39 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2012/09/09 13:04:39 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012/09/09 13:04:38 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2012/09/09 13:04:38 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012/09/09 13:04:38 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2012/09/09 13:04:38 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012/09/09 13:04:37 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2012/09/09 13:04:37 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012/09/09 13:04:37 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2012/09/09 13:04:37 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012/09/09 13:04:36 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2012/09/09 13:04:36 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2012/09/09 13:04:36 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2012/09/09 13:04:36 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012/09/09 13:04:35 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2012/09/09 13:04:35 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2012/09/09 13:04:35 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012/09/09 12:56:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Oblivion
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\My Games
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Fallout3
[2012/09/09 12:23:35 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 12:14:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2012/09/09 12:14:27 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2012/09/09 12:14:27 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012/09/09 12:14:26 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2012/09/09 12:14:26 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012/09/09 12:14:23 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2012/09/09 12:14:23 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012/09/09 12:14:22 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2012/09/09 12:14:22 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012/09/09 12:14:22 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2012/09/09 12:14:22 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012/09/09 12:14:21 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2012/09/09 12:14:21 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012/09/09 12:14:20 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2012/09/09 12:14:20 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012/09/09 12:14:20 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2012/09/09 12:14:19 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2012/09/09 12:14:19 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012/09/09 12:14:18 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2012/09/09 12:14:18 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012/09/09 12:14:17 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2012/09/09 12:14:17 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012/09/09 12:14:16 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2012/09/09 12:14:16 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012/09/09 12:14:15 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2012/09/09 12:14:15 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012/09/09 12:14:12 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2012/09/09 12:14:12 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012/09/09 12:14:12 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2012/09/09 12:14:12 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012/09/09 12:14:11 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2012/09/09 12:14:11 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012/09/09 12:14:10 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2012/09/09 12:14:10 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012/09/09 12:14:07 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2012/09/09 12:14:07 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012/09/09 12:14:05 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2012/09/09 12:14:05 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012/09/09 12:13:58 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2012/09/09 12:13:58 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012/09/09 12:13:57 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2012/09/09 12:13:57 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2012/09/09 12:13:57 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2012/09/09 12:13:57 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012/09/09 12:13:57 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2012/09/09 12:13:57 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012/09/09 12:13:56 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2012/09/09 12:13:56 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2012/09/09 12:13:56 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012/09/09 12:13:56 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012/09/09 12:13:55 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2012/09/09 12:13:55 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2012/09/09 12:13:55 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012/09/09 12:13:55 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012/09/09 12:11:07 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012/09/09 12:11:07 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012/09/09 12:11:07 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012/09/09 12:11:07 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012/09/09 11:52:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012/09/09 11:42:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zombie Studios
[2012/09/09 11:37:52 | 000,304,128 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2012/09/09 03:12:42 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop\SMRTNTKY
[2012/09/09 01:26:45 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/09/09 01:26:45 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/09/09 01:26:44 | 016,877,056 | ---- | C] (Mozilla Foundation) -- C:\xul.dll
[2012/09/09 01:26:44 | 002,147,328 | ---- | C] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/09/09 01:26:44 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/09/09 01:26:44 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/09/09 01:26:44 | 000,770,384 | ---- | C] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/09/09 01:26:44 | 000,631,296 | ---- | C] (Mozilla Foundation) -- C:\nss3.dll
[2012/09/09 01:26:44 | 000,569,856 | ---- | C] (sqlite.org) -- C:\mozsqlite3.dll
[2012/09/09 01:26:44 | 000,423,424 | ---- | C] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/09/09 01:26:44 | 000,421,200 | ---- | C] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/09/09 01:26:44 | 000,363,520 | ---- | C] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/09/09 01:26:44 | 000,253,440 | ---- | C] (Mozilla Foundation) -- C:\updater.exe
[2012/09/09 01:26:44 | 000,251,392 | ---- | C] (Mozilla Foundation) -- C:\freebl3.dll
[2012/09/09 01:26:44 | 000,159,232 | ---- | C] (Mozilla Foundation) -- C:\nspr4.dll
[2012/09/09 01:26:44 | 000,147,968 | ---- | C] (Mozilla Foundation) -- C:\softokn3.dll
[2012/09/09 01:26:44 | 000,138,240 | ---- | C] (Mozilla Foundation) -- C:\ssl3.dll
[2012/09/09 01:26:44 | 000,089,088 | ---- | C] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/09/09 01:26:44 | 000,085,504 | ---- | C] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/09/09 01:26:44 | 000,083,968 | ---- | C] (Mozilla Foundation) -- C:\smime3.dll
[2012/09/09 01:26:44 | 000,081,920 | ---- | C] (Mozilla Foundation) -- C:\libEGL.dll
[2012/09/09 01:26:44 | 000,068,096 | ---- | C] (mozilla.org) -- C:\seamonkey.exe
[2012/09/09 01:26:44 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32.dll
[2012/09/09 01:26:44 | 000,041,472 | ---- | C] (Mozilla Foundation) -- C:\mozglue.dll
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] (Mozilla Foundation) -- C:\plc4.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\xpcom.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\plds4.dll
[2012/09/09 01:26:44 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy.dll
[2012/09/09 01:26:44 | 000,009,728 | ---- | C] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/09/09 01:26:44 | 000,008,704 | ---- | C] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\searchplugins
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\isp
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\extensions
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\distribution
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\dictionaries
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\defaults
[2012/09/09 01:26:43 | 000,111,616 | ---- | C] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/09/09 01:26:43 | 000,011,776 | ---- | C] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\uninstall
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\components
[2012/09/09 01:07:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SeaMonkey
[2012/09/09 01:07:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SeaMonkey
[2012/09/08 23:02:44 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft Games
[2012/09/08 00:28:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ElevatedDiagnostics
[2012/09/07 21:45:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roozz
[2012/09/07 21:14:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Roozz
[2012/09/07 18:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Ezprint
[2012/09/07 18:06:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lexmark Toolbar
[2012/09/07 18:03:38 | 000,000,000 | ---D | C] -- C:\drivers
[2012/09/07 17:45:43 | 000,000,000 | ---D | C] -- C:\ProgramData\lx_Cats
[2012/09/07 17:42:57 | 000,077,906 | ---- | C] (Lexmark International) -- C:\Windows\SysWow64\lxducfg.dll
[2012/09/07 17:42:57 | 000,065,536 | ---- | C] (Lexmark International) -- C:\Windows\SysNative\lxducfg64.dll
[2012/09/07 17:17:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Qwest
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Windows\XSxS
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Xenocode
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xenocode
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/09/07 15:49:05 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2012/09/07 15:49:05 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2012/09/07 15:39:26 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012/09/07 15:39:26 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012/09/07 15:36:31 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2012/09/07 15:36:30 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012/09/07 15:36:30 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2012/09/07 15:36:30 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2012/09/07 15:36:30 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012/09/07 15:36:30 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012/09/07 15:36:24 | 001,544,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2012/09/07 15:36:23 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2012/09/07 15:36:20 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012/09/07 15:36:20 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012/09/07 15:36:19 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012/09/07 15:36:19 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012/09/07 15:36:13 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2012/09/07 15:36:10 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2012/09/07 15:36:10 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2012/09/07 15:36:10 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012/09/07 15:36:10 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012/09/07 15:36:10 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2012/09/07 15:36:10 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2012/09/07 15:36:10 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012/09/07 15:36:10 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2012/09/07 15:36:10 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2012/09/07 15:36:10 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2012/09/07 15:36:09 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012/09/07 15:36:09 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2012/09/07 15:36:09 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012/09/07 15:35:59 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2012/09/07 15:35:59 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2012/09/07 15:35:51 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2012/09/07 15:35:49 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2012/09/07 15:35:49 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012/09/07 15:35:48 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2012/09/07 15:35:47 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012/09/07 15:35:47 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012/09/07 15:35:36 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2012/09/07 15:35:36 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012/09/07 15:35:28 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012/09/07 15:35:28 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012/09/07 15:35:28 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012/09/07 15:35:26 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2012/09/07 15:35:26 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2012/09/07 15:35:26 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2012/09/07 15:34:10 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2012/09/07 15:34:10 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2012/09/07 15:34:10 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2012/09/07 15:34:10 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2012/09/07 15:34:02 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012/09/07 15:33:44 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/09/07 15:33:44 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/09/07 15:33:44 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/09/07 15:33:34 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012/09/07 15:33:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012/09/07 15:33:01 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2012/09/07 15:32:53 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2012/09/07 15:32:51 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2012/09/07 15:32:51 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2012/09/07 15:32:50 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2012/09/07 15:32:50 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2012/09/07 15:27:54 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/09/07 15:27:54 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/09/07 15:26:59 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012/09/07 15:26:51 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012/09/07 15:26:51 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012/09/07 10:39:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HP Support Assistant
[2012/09/07 10:39:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HpUpdate
[2012/09/07 04:57:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/09/07 03:49:01 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2012/09/07 03:47:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Internet-Installed files
[2012/09/07 03:32:16 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\CrashDumps
[2012/09/07 02:42:15 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\CyberLink
[2012/09/07 02:23:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\my recieved files
[2012/09/06 21:01:50 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Macromedia
[2012/09/06 21:01:31 | 000,696,760 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/09/06 21:01:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Mozilla
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Mozilla
[2012/09/06 20:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/09/06 20:50:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/09/06 14:36:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Recovery
[2012/09/06 14:15:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Diagnostics
[2012/09/06 13:54:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Google
[2012/09/06 13:54:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apps
[2012/09/06 13:54:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Deployment
[2012/09/06 13:48:14 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2012/09/06 13:48:14 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012/09/06 13:46:46 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
[2012/09/06 13:46:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP User Manuals
[2012/09/06 13:46:17 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/09/06 13:46:17 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/09/06 13:46:17 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Temporary Internet Files
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Templates
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Start Menu
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\SendTo
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Recent
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\PrintHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\NetHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Videos
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Pictures
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Music
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\My Documents
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Local Settings
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\History
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Cookies
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Application Data
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Application Data
[2012/09/06 13:46:14 | 000,000,000 | --SD | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Videos
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Saved Games
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Pictures
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Music
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Links
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Favorites
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Downloads
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Documents
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/09/06 13:46:14 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\AppData
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Temp
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Media Center Programs
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Macromedia
[2012/09/06 13:46:11 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/09/06 13:46:11 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012/09/06 13:46:11 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/09/06 13:46:02 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/09/06 13:46:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/09/06 13:45:31 | 000,000,000 | ---D | C] -- C:\Windows\softwaredistribution.bak
[2012/09/06 13:42:22 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
[2012/09/06 13:38:08 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/09/06 13:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2012/09/06 13:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2012/09/06 12:55:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Adobe
[2012/09/06 12:52:54 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Skype
[2012/09/06 12:52:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\ATI
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ATI
[2012/09/06 12:51:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\PDFC
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Searches
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/09/06 12:50:57 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/09/06 12:50:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Identities
[2012/09/06 12:50:46 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Contacts
[2012/09/06 12:50:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VirtualStore
[2012/09/06 12:50:24 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\RemEngine
[2012/09/06 12:45:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Hewlett-Packard
[2012/09/06 12:45:07 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard
[2012/09/06 12:44:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard_Company
[2012/08/30 21:03:48 | 000,128,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/01 10:13:40 | 000,038,632 | ---- | C] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 180 Days ==========

[2012/11/19 13:40:59 | 000,000,302 | ---- | M] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:05:35 | 000,815,210 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/11/19 12:05:35 | 000,688,350 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/11/19 12:05:35 | 000,128,582 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/11/19 12:01:31 | 000,000,439 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2012/11/19 12:01:26 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/11/19 12:00:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/19 12:00:32 | 2808,225,792 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/18 19:01:54 | 000,000,023 | ---- | M] () -- C:\Windows\BlendSettings.ini
[2012/11/18 05:48:58 | 000,001,154 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/11/18 00:02:45 | 000,002,198 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/11/17 22:20:51 | 004,568,982 | R--- | M] () -- C:\Users\thomas1gun\Documents\windowstweaksguide.pdf
[2012/11/15 13:04:39 | 000,001,252 | ---- | M] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:58:09 | 000,279,520 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/11/14 01:55:16 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/14 01:54:29 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wdf01000.sys.mui
[2012/11/14 01:54:28 | 000,054,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:28 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:54:28 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:53:29 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/14 01:53:29 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/14 01:53:29 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/14 01:53:29 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/14 01:52:59 | 002,312,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:59 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:59 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:59 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:59 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:59 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:59 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:59 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:59 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:58 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:58 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:52:58 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:58 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:58 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:58 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:50:39 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:39 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/14 01:50:39 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:39 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/14 01:50:38 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:19 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/14 01:50:19 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 21:47:46 | 000,002,141 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | M] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/29 21:32:32 | 064,010,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/10/26 19:45:49 | 000,001,234 | ---- | M] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/25 00:30:26 | 005,773,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:26 | 004,916,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:30:26 | 003,174,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:26 | 001,123,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:26 | 001,048,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:26 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:26 | 000,322,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:26 | 000,269,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:26 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:26 | 000,228,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:26 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:26 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:26 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:26 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:26 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:26 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:26 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\tsusbflt.sys.mui
[2012/10/25 00:30:00 | 000,307,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/25 00:29:59 | 001,448,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/23 12:57:39 | 000,002,170 | ---- | M] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/10/21 23:02:26 | 000,001,176 | ---- | M] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/21 15:07:46 | 000,000,009 | ---- | M] () -- C:\END
[2012/10/19 11:53:05 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 21:12:26 | 000,001,990 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | M] () -- C:\Windows\eReg.dat
[2012/10/17 20:10:24 | 137,398,872 | ---- | M] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 19:22:53 | 000,001,237 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/10/17 19:22:52 | 000,001,381 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,002,581 | ---- | M] () -- C:\Users\Public\Desktop\WildTangent Games App - hp.lnk
[2012/10/17 19:22:47 | 000,002,202 | ---- | M] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/10/17 19:22:47 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/10/17 19:22:47 | 000,002,109 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office 2010.lnk
[2012/10/17 19:22:47 | 000,001,940 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/17 19:22:47 | 000,001,626 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/10/17 19:22:47 | 000,001,357 | ---- | M] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,001,136 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/10/17 19:22:47 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/10 10:01:31 | 005,559,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 10:01:31 | 003,968,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 10:01:31 | 003,914,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 10:01:24 | 001,162,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 10:01:24 | 000,424,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 10:01:24 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 10:01:24 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 10:01:24 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 10:01:24 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 10:01:24 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 10:01:24 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 10:01:24 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 10:01:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 10:01:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 10:01:15 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 10:00:37 | 001,464,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 10:00:37 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 18:43:00 | 000,703,632 | ---- | M] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/10/09 18:43:00 | 000,175,240 | ---- | M] () -- C:\Program Files (x86)\gtres.dll
[2012/10/09 14:45:14 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/10/09 14:45:14 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/10/09 14:45:09 | 010,220,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/06 12:15:36 | 000,002,062 | ---- | M] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | M] () -- C:\Windows\game.ini
[2012/10/03 07:02:10 | 000,005,496 | ---- | M] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/03 00:54:12 | 000,000,888 | ---- | M] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | M] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/09/21 00:50:42 | 002,725,977 | ---- | M] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/15 20:49:31 | 000,030,200 | ---- | M] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:31:55 | 000,000,127 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 14:46:47 | 000,795,856 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/09/11 20:47:39 | 005,231,224 | R--- | M] () -- C:\Users\thomas1gun\Documents\obliv_pc_manual_web.pdf
[2012/09/11 12:46:03 | 000,001,367 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/10 18:27:03 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 12:23:35 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 08:07:20 | 000,000,860 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/09/07 22:34:46 | 000,004,096 | ---- | M] () -- C:\Windows\d3dx.dat
[2012/09/06 22:08:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/30 02:01:30 | 000,015,432 | ---- | M] () -- C:\Windows\Launcher.exe
[2012/08/26 22:40:23 | 000,003,044 | ---- | M] () -- C:\precomplete
[2012/08/26 22:40:22 | 009,018,306 | ---- | M] () -- C:\omni.ja
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\softokn3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\nssdbm3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\freebl3.chk
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy.dll
[2012/08/26 22:40:07 | 000,631,296 | ---- | M] (Mozilla Foundation) -- C:\nss3.dll
[2012/08/26 22:40:07 | 000,363,520 | ---- | M] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe
[2012/08/26 22:40:07 | 000,251,392 | ---- | M] (Mozilla Foundation) -- C:\freebl3.dll
[2012/08/26 22:40:07 | 000,150,528 | ---- | M] () -- C:\nsldap32v60.dll
[2012/08/26 22:40:07 | 000,147,968 | ---- | M] (Mozilla Foundation) -- C:\softokn3.dll
[2012/08/26 22:40:07 | 000,138,240 | ---- | M] (Mozilla Foundation) -- C:\ssl3.dll
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:07 | 000,089,088 | ---- | M] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/08/26 22:40:07 | 000,085,504 | ---- | M] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/08/26 22:40:07 | 000,083,968 | ---- | M] (Mozilla Foundation) -- C:\smime3.dll
[2012/08/26 22:40:07 | 000,014,848 | ---- | M] () -- C:\nsldappr32v60.dll
[2012/08/26 22:40:07 | 000,010,240 | ---- | M] () -- C:\nsldif32v60.dll
[2012/08/26 22:40:07 | 000,004,003 | ---- | M] () -- C:\crashreporter.ini
[2012/08/26 22:40:07 | 000,000,787 | ---- | M] () -- C:\crashreporter-override.ini
[2012/08/26 22:40:03 | 016,877,056 | ---- | M] (Mozilla Foundation) -- C:\xul.dll
[2012/08/26 22:40:03 | 002,147,328 | ---- | M] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/08/26 22:40:03 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/08/26 22:40:03 | 002,054,144 | ---- | M] () -- C:\mozjs.dll
[2012/08/26 22:40:03 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/08/26 22:40:03 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/08/26 22:40:03 | 000,569,856 | ---- | M] (sqlite.org) -- C:\mozsqlite3.dll
[2012/08/26 22:40:03 | 000,423,424 | ---- | M] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/08/26 22:40:03 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/08/26 22:40:03 | 000,159,232 | ---- | M] (Mozilla Foundation) -- C:\nspr4.dll
[2012/08/26 22:40:03 | 000,081,920 | ---- | M] (Mozilla Foundation) -- C:\libEGL.dll
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:03 | 000,041,472 | ---- | M] (Mozilla Foundation) -- C:\mozglue.dll
[2012/08/26 22:40:03 | 000,019,731 | ---- | M] () -- C:\blocklist.xml
[2012/08/26 22:40:03 | 000,014,848 | ---- | M] (Mozilla Foundation) -- C:\plc4.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\xpcom.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\plds4.dll
[2012/08/26 22:40:03 | 000,011,776 | ---- | M] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,008,704 | ---- | M] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/08/26 22:40:03 | 000,001,111 | ---- | M] () -- C:\updater.ini
[2012/08/26 22:40:03 | 000,000,454 | ---- | M] () -- C:\application.ini
[2012/08/26 22:40:03 | 000,000,206 | ---- | M] () -- C:\dependentlibs.list
[2012/08/26 22:40:03 | 000,000,140 | ---- | M] () -- C:\platform.ini
[2012/08/26 22:40:03 | 000,000,131 | ---- | M] () -- C:\update-settings.ini
[2012/08/26 22:39:13 | 000,036,062 | ---- | M] () -- C:\removed-files
[2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/08/22 10:12:40 | 000,376,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/08/22 10:12:33 | 000,288,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/08/21 13:01:00 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/08/02 09:58:52 | 000,574,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[2012/07/20 12:24:42 | 000,024,960 | ---- | M] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/07/04 14:16:43 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/07/04 14:13:27 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/07/04 13:14:34 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/07/04 12:26:03 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/06/05 22:02:54 | 001,133,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/06/05 21:03:06 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/06/02 14:19:46 | 000,038,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/06/02 14:19:42 | 000,186,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/06/02 14:19:42 | 000,057,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/06/02 14:19:42 | 000,044,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/06/02 14:19:23 | 000,701,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/06/02 14:15:31 | 002,622,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/06/02 14:15:12 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/06/02 14:15:08 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/11/17 18:22:44 | 000,175,240 | ---- | C] () -- C:\Program Files (x86)\gtres.dll
[2012/11/15 13:04:39 | 000,001,252 | ---- | C] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:54:14 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:50:24 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/10 21:47:46 | 000,002,141 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/09 10:28:16 | 000,001,154 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/10/21 15:07:07 | 000,017,720 | ---- | C] () -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys
[2012/10/21 15:07:06 | 000,001,176 | ---- | C] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/19 11:53:05 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | C] () -- C:\Windows\eReg.dat
[2012/10/18 20:48:15 | 000,001,990 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 15:06:31 | 000,001,234 | ---- | C] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/17 22:12:01 | 000,015,432 | ---- | C] () -- C:\Windows\Launcher.exe
[2012/10/16 23:07:15 | 000,002,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/14 00:43:56 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/10/06 12:11:38 | 000,002,062 | ---- | C] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/05 21:40:01 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/04 23:09:45 | 000,001,940 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | C] () -- C:\Windows\game.ini
[2012/10/03 10:55:47 | 000,000,009 | ---- | C] () -- C:\END
[2012/10/03 06:12:47 | 000,005,496 | ---- | C] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | C] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/10/01 13:55:42 | 002,725,977 | ---- | C] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/30 22:14:50 | 000,000,888 | ---- | C] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/09/15 20:49:33 | 000,030,200 | ---- | C] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:39:21 | 000,001,626 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/09/15 19:31:55 | 000,000,127 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 18:52:59 | 000,002,181 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/09/15 17:29:04 | 000,001,237 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/09/15 14:46:57 | 000,002,198 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/09/11 21:01:11 | 000,002,202 | ---- | C] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/09/11 19:30:57 | 000,002,170 | ---- | C] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/09/11 07:49:08 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2012/09/10 18:27:03 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 01:26:44 | 009,018,306 | ---- | C] () -- C:\omni.ja
[2012/09/09 01:26:44 | 002,054,144 | ---- | C] () -- C:\mozjs.dll
[2012/09/09 01:26:44 | 000,150,528 | ---- | C] () -- C:\nsldap32v60.dll
[2012/09/09 01:26:44 | 000,036,062 | ---- | C] () -- C:\removed-files
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] () -- C:\nsldappr32v60.dll
[2012/09/09 01:26:44 | 000,010,240 | ---- | C] () -- C:\nsldif32v60.dll
[2012/09/09 01:26:44 | 000,003,044 | ---- | C] () -- C:\precomplete
[2012/09/09 01:26:44 | 000,001,111 | ---- | C] () -- C:\updater.ini
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\softokn3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\nssdbm3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\freebl3.chk
[2012/09/09 01:26:44 | 000,000,206 | ---- | C] () -- C:\dependentlibs.list
[2012/09/09 01:26:44 | 000,000,140 | ---- | C] () -- C:\platform.ini
[2012/09/09 01:26:44 | 000,000,131 | ---- | C] () -- C:\update-settings.ini
[2012/09/09 01:26:43 | 000,019,731 | ---- | C] () -- C:\blocklist.xml
[2012/09/09 01:26:43 | 000,004,003 | ---- | C] () -- C:\crashreporter.ini
[2012/09/09 01:26:43 | 000,000,787 | ---- | C] () -- C:\crashreporter-override.ini
[2012/09/09 01:26:43 | 000,000,454 | ---- | C] () -- C:\application.ini
[2012/09/09 01:07:19 | 000,001,357 | ---- | C] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/09/09 01:07:18 | 000,001,381 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/09/07 22:34:46 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2012/09/07 18:11:16 | 001,877,073 | ---- | C] () -- C:\Users\thomas1gun\Documents\Administrator-lxduuser.pdf
[2012/09/07 17:42:57 | 001,400,320 | ---- | C] () -- C:\Windows\SysNative\lxdudrs64.dll
[2012/09/07 17:42:57 | 001,036,288 | ---- | C] () -- C:\Windows\SysWow64\lxdudrs.dll
[2012/09/07 17:42:57 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\lxducaps.dll
[2012/09/07 17:42:57 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\lxducnv4.dll
[2012/09/07 17:42:57 | 000,054,784 | ---- | C] () -- C:\Windows\SysNative\lxducnv464.dll
[2012/09/07 17:42:57 | 000,025,600 | ---- | C] () -- C:\Windows\SysNative\lxducaps64.dll
[2012/09/06 23:28:31 | 000,065,536 | ---- | C] () -- C:\Windows\SysNative\Ikeext.etl
[2012/09/06 22:08:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 20:50:43 | 000,001,136 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/09/06 20:50:42 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/09/06 13:46:43 | 000,001,787 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warranty.lnk
[2012/09/06 13:46:14 | 000,000,290 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/09/06 13:46:14 | 000,000,272 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:38:08 | 2808,225,792 | -HS- | C] () -- C:\hiberfil.sys
[2012/09/06 13:00:13 | 000,001,367 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/01/18 05:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012/01/18 05:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012/01/18 05:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/10/07 11:41:23 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/10/07 11:38:57 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/06/20 23:07:00 | 000,007,736 | ---- | C] () -- C:\Windows\hpDSTRES.DLL
[2011/06/10 22:45:16 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/02/11 09:15:43 | 000,795,856 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 21:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 20:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 19:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/11/15 04:04:28 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/09/16 02:02:20 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/10/03 14:44:43 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/10/12 07:35:56 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/10/03 10:55:04 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/15 19:40:29 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/18 09:44:11 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/11/15 13:04:36 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/10/03 10:40:21 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/11/14 17:33:51 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/09/15 18:50:46 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/16 13:59:34 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009/07/13 21:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/13 21:08:49 | 000,032,298 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForthomas1gun.job
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\Tasks\SmartDefrag_Startup.job

< %SYSTEMDRIVE%\*.exe >
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe

< %systemdrive%\$Recycle.Bin|@;true;true;true >

< MD5 for: EXPLORER.EXE >
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 19:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/20 19:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: SERVICES >
[2009/06/10 13:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.EXE >
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SVCHOST.EXE >
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s >

< %systemroot%\*. /mp /s >

< %Temp%\smtmp\*.* /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files (x86)\Mozilla Firefox\firefox.exe [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -preferences [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -extoff [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files (x86)\Internet Explorer\iexplore.exe [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /HideShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /ShowShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\Program Files (x86)\SeaMonkey\seamonkey.exe [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -preferences [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -safe-mode [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -PREFERENCES [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -SAFE-MODE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< End of report >
this stops certain Downloads, Like games & patches for games.
Would like to Know where it came from, (will post warnings to all + freespeak.net), & how to get RID of it.
Almost seems like a MS-like product or a Back door into Windows 7-? Possible??

Edited by thomas1gun, 19 November 2012 - 09:02 PM.

  • 0

#2
Render

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Hi and welcome to GeeksToGo! Please make sure you read all of the instructions and fixes thoroughly before continuing with them. If you have any queries or you are unsure about anything, just say and I'll help you out :)

It may well be worth you printing/saving the instructions throughout the fix, so you have them to hand just in case you are unable to access this site.

Please note:
  • Remember to post your logs, not attach them. So, any logs from any programs we run, should be just 'copied & pasted' into your reply.
  • Please only run the tools that I request. I know malware can be frustrating but running other tools in the meantime and between posts, only makes it harder for us to analyse and fix your PC in the long run.
  • Please subscribe to this topic if you have not already done so. Please check back just in case, as the email system can fail at times.
  • Just because your machine is running better does not mean it is completely cleaned. Please wait for the 'all clear' from me to say when we are done.
  • Please reply within 3 days to be fair to other people asking for help.
  • Please tell me if you have your original Windows CD/DVD available
  • When in doubt, please stop and ask first. There's no harm in asking questions!

Did you install program named DownTango maybe?

Posted Image OTL Custom Scan

  • Download OTL to your desktop.
  • Double click on the Posted Image icon to run it.
  • Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top, make sure Stadard output is selected.
  • Select Scan all users
  • Under the Extra Registry section, check Use SafeList
  • Check the boxes beside LOP Check and Purity Check.
  • Under the Custom Scans/Fixes box copy and paste this in:

    netsvcs
    %SYSTEMDRIVE%\*.exe
    %systemdrive%\$Recycle.Bin|@;true;true;true
    /md5start
    services.*
    explorer.exe
    winlogon.exe
    userinit.exe
    svchost.exe
    consrv.dll
    /md5stop
    HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s
    %systemroot%\*. /mp /s
    %Temp%\smtmp\*.* /s
    hklm\software\clients\startmenuinternet|command /rs
    hklm\software\clients\startmenuinternet|command /64 /rs
    CREATERESTOREPOINT
  • Click the Posted Image button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic

  • 0

#3
thomas1gun

thomas1gun

    New Member

  • Member
  • Pip
  • 6 posts
do not recall downloading anything called "DownTangoed", I'm usually pretty careful as to what content I download, But Infallibility is not an attribute I can claim.
  • 0

#4
Render

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
OK. Please provide me with two OTL logs as requested above.
  • 0

#5
thomas1gun

thomas1gun

    New Member

  • Member
  • Pip
  • 6 posts
Believe I did, Check original post, Thanx.
  • 0

#6
Render

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Hi,

Please don't edit your previous posts and follow the steps below:

We need to run an OTL Fix

Note: If you have MalwareBytes Anti-Malware 1.6 or higher installed and are using the Pro version or trial version, please temporarily disable it for the duration of this fix as it may interfere with the successfully execution of the script below.

Warning This fix is only relevant for this system and no other, using on another computer may cause problems.

  • Please double click on Posted Image on your Desktop (If running Vista or Windows 7, right click on it and select "Run as an Administrator")
  • Under the Custom Scans/Fixes box copy and paste this in (Please carefully select all text in code box beginning with : ):

    :OTL
    O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
    O2 - BHO: (no name) - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - No CLSID value found.
    O2 - BHO: (Search Assistant BHO) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (MindSpark)
    O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)

    :Files
    ipconfig /flushdns /c
    xcopy %Temp%\smtmp\1 "%AllUsersProfile%\Start Menu" /H /I /S /Y /C
    xcopy %Temp%\smtmp\2 "%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch" /H /I /S /Y /C
    xcopy %Temp%\smtmp\3 "%AppData%\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar" /H /I /S /Y /C
    xcopy %Temp%\smtmp\4 "%AllUsersProfile%\Desktop" /H /I /S /Y /C
    C:\Users\thomas1gun\AppData\Local\DownTango

    :Reg

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [reboot]

  • Make sure all other windows are closed and to let it run uninterrupted.
  • Click on Posted Image button.
  • OTL may ask to reboot the machine. Please do so if asked.
  • Click on Posted Image button.
  • A report will open. Copy and Paste that report in your next reply.
  • If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss is the date of the tool run.
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

NEXT...

Posted Image Malwarebytes' Anti-Malware

Please download latest version of Malwarebytes' Anti-Malware from Here and double click on mbam-setup.exe to install the application

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Click on Check for Updates button.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the entire report in your next reply.

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.
  • 0

#7
thomas1gun

thomas1gun

    New Member

  • Member
  • Pip
  • 6 posts
All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{312f84fb-8970-4fd3-bddb-7012eac4afc9}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c547c6c2-561b-4169-a2a5-20ba771ca93b}\ deleted successfully.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
C:\Program Files (x86)\Yontoo\YontooIEClient.dll moved successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\thomas1gun\Downloads\cmd.bat deleted successfully.
C:\Users\thomas1gun\Downloads\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\1 "%AllUsersProfile%\Start Menu" /H /I /S /Y /C >
0 File(s) copied
C:\Users\thomas1gun\Downloads\cmd.bat deleted successfully.
C:\Users\thomas1gun\Downloads\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\2 "%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch" /H /I /S /Y /C >
0 File(s) copied
C:\Users\thomas1gun\Downloads\cmd.bat deleted successfully.
C:\Users\thomas1gun\Downloads\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\3 "%AppData%\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar" /H /I /S /Y /C >
0 File(s) copied
C:\Users\thomas1gun\Downloads\cmd.bat deleted successfully.
C:\Users\thomas1gun\Downloads\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\4 "%AllUsersProfile%\Desktop" /H /I /S /Y /C >
0 File(s) copied
C:\Users\thomas1gun\Downloads\cmd.bat deleted successfully.
C:\Users\thomas1gun\Downloads\cmd.txt deleted successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins\internal folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins\hoster folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins\hooks folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins\crypter folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins\container folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins\captcha folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins\accounts folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\userplugins folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp\jinja_cache folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp\container_file_lock folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp\container_file\c\c1 folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp\container_file\c folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp\container_file\2\21 folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp\container_file\2 folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp\container_file folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\tmp folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\unrar_finished folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\package_finished folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\download_preparing folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\download_finished folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\before_reconnect folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\all_dls_processed folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\all_dls_finished folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts\after_reconnect folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\scripts folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\Logs folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango\Downloads folder moved successfully.
C:\Users\thomas1gun\AppData\Local\DownTango folder moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: AppData

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56466 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: thomas1gun
->Temp folder emptied: 1832554759 bytes
->Temporary Internet Files folder emptied: 218661047 bytes
->FireFox cache emptied: 62921161 bytes
->Flash cache emptied: 58190 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 56118588 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50333 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 2,070.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 11222012_152030

Files\Folders moved on Reboot...
C:\Users\thomas1gun\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Here you are, Render, hope it aids u. accept a personal check, Thru Chase??
  • 0

#8
Render

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Please proceed with OTL quick and MBAM scan.
  • 0

#9
thomas1gun

thomas1gun

    New Member

  • Member
  • Pip
  • 6 posts
OTL logfile created on: 11/19/2012 6:41:57 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\thomas1gun\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.49 Gb Total Physical Memory | 2.19 Gb Available Physical Memory | 62.94% Memory free
6.97 Gb Paging File | 5.62 Gb Available in Paging File | 80.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919.67 Gb Total Space | 853.73 Gb Free Space | 92.83% Space Free | Partition Type: NTFS
Drive D: | 11.74 Gb Total Space | 1.41 Gb Free Space | 11.98% Space Free | Partition Type: NTFS
Drive G: | 931.28 Gb Total Space | 925.02 Gb Free Space | 99.33% Space Free | Partition Type: FAT32

Computer Name: THOMAS1GUN-HP | User Name: thomas1gun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

========== Processes (SafeList) ==========

PRC - [2012/11/18 06:10:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\thomas1gun\Downloads\OTL.exe
PRC - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe
PRC - [2012/09/19 11:01:32 | 000,067,656 | ---- | M] (Simplygen) -- C:\Program Files (x86)\Protected Search\ProtectedSearch.exe
PRC - [2012/09/06 10:06:42 | 001,607,552 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
PRC - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe
PRC - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2010/11/20 19:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
PRC - [2008/11/20 09:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe


========== Modules (No Company Name) ==========

MOD - [2012/11/18 14:59:38 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
MOD - [2012/11/18 14:27:48 | 012,549,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\474914b7c8b9b5056943488991a57edc\System.Windows.Forms.ni.dll
MOD - [2012/11/18 14:27:30 | 001,595,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f961fb1ec279c14554f5580a457ef542\System.Drawing.ni.dll
MOD - [2012/11/18 14:22:43 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2011/08/19 15:33:28 | 000,047,960 | ---- | M] () -- C:\Program Files (x86)\IObit\Smart Defrag 2\NtfsData.dll
MOD - [2010/11/20 19:24:25 | 000,385,024 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/09/12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011/10/24 04:16:42 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011/02/16 21:47:28 | 000,682,040 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe -- (HPAuto)
SRV:64bit: - [2010/10/11 01:48:14 | 000,346,168 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe -- (HPClientSvc)
SRV:64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/11/13 19:34:54 | 000,115,168 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) [Auto | Running] -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe -- (VideoDownloadConverter_4zService)
SRV - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/09/09 16:10:28 | 000,086,072 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [Auto | Running] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
DRV:64bit: - [2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/18 05:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:64bit: - [2012/01/18 05:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2012/01/18 05:44:14 | 000,025,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64)
DRV:64bit: - [2012/01/12 08:28:48 | 000,074,872 | R--- | M] (GFI Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\sbapifs.sys -- (sbapifs)
DRV:64bit: - [2011/10/24 04:56:54 | 010,203,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/10/24 03:40:08 | 000,310,784 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/10/07 11:38:30 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/10/07 11:38:30 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/05/16 13:55:28 | 000,533,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/04 14:46:20 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2011/03/04 14:46:20 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2010/12/15 19:36:46 | 000,047,232 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010/11/26 17:02:18 | 000,017,720 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV:64bit: - [2010/11/20 19:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/20 19:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/12/04 00:35:14 | 000,020,992 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 12:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKLM\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://my.yahoo.com/ [binary data]
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...0003860778fbece
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3D54D766-A388-45E2-B552-F14FED0C055C}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{7C864D08-CA10-4FF4-BCFF-C51DA3BD89C3}: "URL" = http://search.condui...&ctid=CT1561552
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{92246B67-8961-4885-9413-B67C8CE22360}: "URL" = http://us.yhs4.searc...p={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}: "URL" = http://www2.inbox.co...id=80291&lng=en
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..CT3196716.browser.search.defaultthis.engineName: true
FF - prefs.js..CT3201318.browser.search.defaultthis.engineName: true
FF - prefs.js..browser.search.defaultengine: "Web Search"
FF - prefs.js..browser.search.param.yahoo-fr: "&hsimp=yhs-affiliate_a_ff&hspart=greentree&type=685749_yhs3tst"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.startup.homepage: "chrome://fvd.speeddial/content/fvd_about_blank.html"
FF - prefs.js..extensions.enabledAddons: wisestamp@wisestamp.com:3.11.21
FF - prefs.js..extensions.enabledAddons: tineye@ideeinc.com:1.1
FF - prefs.js..extensions.enabledAddons: amadlo@tomers.net:1.1.6
FF - prefs.js..extensions.enabledAddons: firefox@ghostery.com:2.8.3
FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: artur.dubovoy@gmail.com:3.7.6
FF - prefs.js..extensions.enabledAddons: adapter@babylontc.com:1.0.0.1
FF - prefs.js..extensions.enabledAddons: ocr@babylon.com:1.1
FF - prefs.js..extensions.enabledAddons: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:1.4
FF - prefs.js..extensions.enabledAddons: {c07d1a49-9894-49ff-a594-38960ede8fb9}:3.1.10
FF - prefs.js..extensions.enabledAddons: {3bbd3c14-4c16-4989-8366-95bc9179779d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: pavel.sherbakov@gmail.com:4.1.5
FF - prefs.js..extensions.enabledAddons: canitbecheaper@trafficbroker.co.uk:3.8.23
FF - prefs.js..extensions.enabledAddons: {E71B541F-5E72-5555-A47C-E47863195841}:1.0.26
FF - prefs.js..extensions.enabledAddons: donottrackplus@abine.com:2.2.1.829
FF - prefs.js..extensions.enabledAddons: 4zffxtbr@VideoDownloadConverter_4z.com:2.71.0.60687
FF - prefs.js..extensions.enabledAddons: {c95a4e8e-816d-4655-8c79-d736da1adb6d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {26605315-8a79-4ff6-bbb9-63363b9d86b3}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: Foxdie@tanjihay.com:15
FF - prefs.js..keyword.URL: "http://search.mywebs...000&searchfor="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: File not found
FF - HKLM\Software\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\4zffxtbr@VideoDownloadConverter_4z.com: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin [2012/09/30 22:14:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Components: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Plugins: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Components: C:\Program Files (x86)\SeaMonkey\components [2012/11/02 11:54:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Plugins: C:\Program Files (x86)\SeaMonkey\plugins

[2012/09/06 20:51:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Extensions
[2012/11/17 18:27:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions
[2012/11/13 15:53:42 | 000,000,000 | ---D | M] (Smart Defrag) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{26605315-8a79-4ff6-bbb9-63363b9d86b3}
[2012/11/13 15:53:50 | 000,000,000 | ---D | M] (FLV Runner) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{3bbd3c14-4c16-4989-8366-95bc9179779d}
[2012/11/17 17:23:33 | 000,000,000 | ---D | M] (FT DeepDark) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
[2012/11/15 13:06:43 | 000,000,000 | ---D | M] (Hotspot Shield) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}
[2012/11/15 03:57:45 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2012/11/13 15:53:58 | 000,000,000 | ---D | M] (WiseConvert) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}
[2012/11/16 12:17:09 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012/11/15 03:05:11 | 000,000,000 | ---D | M] (DoNotTrackPlus) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com
[2012/09/27 22:06:22 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\firefox@ghostery.com
[2012/09/27 21:54:01 | 000,000,000 | ---D | M] (Foxdie) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\Foxdie@tanjihay.com
[2012/11/15 00:36:07 | 000,000,000 | ---D | M] ("FVD Speed Dial with Full Online Sync") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\pavel.sherbakov@gmail.com
[2012/10/16 20:56:44 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\plugin@yontoo.com
[2012/11/08 17:09:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\firefox@ghostery.com
[2012/09/09 01:26:58 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\inspector@mozilla.org
[2012/10/17 21:59:20 | 000,021,707 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\adapter@babylontc.com.xpi
[2012/09/27 21:52:44 | 000,023,125 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\amadlo@tomers.net.xpi
[2012/10/17 20:07:56 | 000,221,098 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\artur.dubovoy@gmail.com.xpi
[2012/11/15 03:47:51 | 000,070,963 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\canitbecheaper@trafficbroker.co.uk.xpi
[2012/10/17 21:59:21 | 000,008,053 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\ocr@babylon.com.xpi
[2012/09/09 07:45:03 | 000,008,001 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\tineye@ideeinc.com.xpi
[2012/09/07 22:23:43 | 001,771,909 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\wisestamp@wisestamp.com.xpi
[2012/10/14 21:49:11 | 000,672,576 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi
[2012/11/11 21:00:53 | 000,447,304 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi
[2012/11/10 18:38:04 | 000,252,340 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2012/08/29 12:56:22 | 000,007,915 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com\chrome\content\ff\view_expiry.js
[2012/09/30 17:20:45 | 000,009,634 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\my-web-search.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\Web Search.xml
[2012/10/14 23:20:13 | 000,001,022 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\wiseconvert-customized-web-search.xml
[2012/11/17 02:10:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/11/13 19:34:55 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/11/15 04:04:38 | 000,002,349 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2012/09/05 17:26:22 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/11/13 19:34:21 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml

O1 HOSTS File: ([2012/09/09 08:07:20 | 000,000,860 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
O2 - BHO: (no name) - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - No CLSID value found.
O2 - BHO: (Search Assistant BHO) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (MindSpark)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {26605315-8A79-4FF6-BBB9-63363B9D86B3} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No CLSID value found.
O4:64bit: - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\.DEFAULT..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-18..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O16:64bit: - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} http://content.syste...nt_4.5.13.0.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.3.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C6715BFB-42A2-4A4D-98E2-B716B74A1C8D}: DhcpNameServer = 192.168.0.1 205.171.3.65
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) - c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{6224c52a-ffac-11e1-b93f-3860778fbece}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\...exe [@ = exefile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 180 Days ==========

[2012/11/18 05:49:08 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/11/18 00:00:35 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2012/11/18 00:00:35 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012/11/18 00:00:33 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012/11/18 00:00:33 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2012/11/18 00:00:31 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2012/11/18 00:00:31 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012/11/18 00:00:30 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2012/11/18 00:00:30 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012/11/18 00:00:29 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2012/11/18 00:00:29 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012/11/17 23:59:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012/11/17 23:59:18 | 064,010,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/11/17 19:14:36 | 000,000,000 | ---D | C] -- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[2012/11/17 18:22:44 | 000,703,632 | ---- | C] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/11/15 13:08:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\4kdownload.com
[2012/11/15 13:04:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\4KDownload
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\thriXXX
[2012/11/14 01:54:11 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:11 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:52:35 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:34 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:52:33 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:33 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:32 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:32 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:32 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:32 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:31 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:31 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:31 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:31 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:29 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:29 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:29 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:50:26 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:25 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:24 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:24 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/13 19:34:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/11/13 15:51:56 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/13 15:51:56 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/13 15:51:56 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/13 15:51:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/13 15:51:49 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/13 15:51:31 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/13 15:51:31 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 22:23:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
[2012/11/01 10:31:08 | 000,040,712 | ---- | C] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | C] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/28 02:21:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Command and Conquer Generals Data
[2012/10/25 00:30:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:09 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/10/25 00:30:09 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:08 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:08 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:08 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:07 | 003,174,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:07 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:07 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:07 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:07 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:07 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:07 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:07 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:07 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:07 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:06 | 005,773,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:06 | 004,916,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:28:39 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/25 00:28:39 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/21 15:07:48 | 000,032,600 | ---- | C] (IObit) -- C:\Windows\SysNative\SmartDefragBootTime.exe
[2012/10/21 15:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2
[2012/10/18 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roger Wilco
[2012/10/18 15:13:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EasyInfo
[2012/10/17 22:12:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinRAR
[2012/10/17 22:12:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Search
[2012/10/17 22:12:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Protected Search
[2012/10/17 22:11:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\DownTango
[2012/10/17 22:11:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Sky
[2012/10/17 20:07:53 | 137,398,872 | ---- | C] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 20:07:51 | 000,000,000 | ---D | C] -- C:\Program Files\Babylon
[2012/10/17 15:57:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Trymedia
[2012/10/17 11:34:15 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/10/16 23:07:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012/10/16 23:07:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/10/16 22:52:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2012/10/16 22:50:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Wajam
[2012/10/16 22:28:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/10/16 22:25:57 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012/10/16 21:48:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wolfenstein 3D
[2012/10/16 21:48:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wolfenstein 3D
[2012/10/16 20:56:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OApps
[2012/10/16 20:56:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yontoo
[2012/10/16 20:56:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2012/10/16 19:41:29 | 000,000,000 | ---D | C] -- C:\inetpub
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.74
[2012/10/14 08:16:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Apple Computer
[2012/10/14 00:45:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/10/14 00:44:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/10/14 00:43:57 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apple
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/10/10 09:34:37 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 09:34:37 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 09:34:37 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 09:34:37 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 09:34:37 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 09:34:37 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 09:34:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 09:34:37 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 09:34:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 09:34:37 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 09:34:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 09:34:29 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 09:34:19 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 09:34:19 | 003,968,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 09:34:19 | 003,914,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 09:33:51 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 09:33:51 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 14:45:09 | 010,220,472 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/09 09:40:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sensible Vision
[2012/10/06 12:08:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2012/10/06 12:07:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2012/10/05 21:21:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\hpremote
[2012/10/05 20:02:45 | 000,024,960 | ---- | C] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/10/04 23:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
[2012/10/04 23:01:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA GAMES
[2012/10/03 18:36:08 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012/10/03 18:35:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/10/03 14:44:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/10/03 14:44:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BlueSprig
[2012/10/03 11:38:00 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Roxio Log Files
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{6F2F3866-38AD-4f48-852C-2FF5DE7A7588}
[2012/10/03 10:55:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2012/10/03 10:55:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Conduit
[2012/10/03 10:40:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/10/03 10:40:07 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Utility Kit
[2012/10/03 10:17:04 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{0698D77A-C2AE-43D7-AF64-D63D72960D80}
[2012/10/02 01:11:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.72
[2012/10/01 15:51:26 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\vlc
[2012/10/01 02:09:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2012/10/01 02:09:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2012/09/30 22:09:28 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
[2012/09/30 22:04:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Ilivid Player
[2012/09/30 18:25:17 | 000,000,000 | ---D | C] -- C:\Plugins
[2012/09/30 17:19:52 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VideoDownloadConverter_4z
[2012/09/30 15:27:11 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/09/30 15:23:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoDownloadConverter_4z
[2012/09/28 11:00:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Roozz
[2012/09/27 00:00:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{2906D058-8E5B-4080-A802-F0AD4C60DCC8}
[2012/09/26 00:20:39 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Real
[2012/09/26 00:20:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rhapsody
[2012/09/25 10:49:47 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/09/18 09:37:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/09/18 09:37:57 | 000,018,760 | ---- | C] (WinZip Computing, S.L.(WinZip Computing)) -- C:\Windows\SysNative\roboot64.exe
[2012/09/18 09:37:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZip Registry Optimizer
[2012/09/16 14:00:02 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{B9EE30D3-4BF9-4373-AD11-683D379DB655}
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Windows Live Writer
[2012/09/16 02:13:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
[2012/09/16 02:00:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Blio
[2012/09/16 02:00:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{5DD8111D-4E12-4116-8D7F-E49696638D35}
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{3EE88425-AAC5-43B9-BE87-D47843BBB388}
[2012/09/15 22:40:30 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\U3
[2012/09/15 20:48:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Logitech
[2012/09/15 19:43:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Logitech® Webcam Software
[2012/09/15 19:41:00 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2012/09/15 19:40:29 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/15 19:39:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Logitech
[2012/09/15 19:39:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LWS
[2012/09/15 19:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2012/09/15 19:39:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2012/09/15 18:51:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\hpqLog
[2012/09/15 18:50:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/15 17:29:21 | 000,000,000 | ---D | C] -- C:\ProgramData\HardwareHelper
[2012/09/15 17:29:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hardware Helper
[2012/09/15 17:28:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2012/09/12 08:40:47 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/09/12 08:40:44 | 000,574,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/09/12 08:40:40 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/09/12 08:40:40 | 000,288,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/09/11 20:25:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Downloads
[2012/09/11 19:30:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2012/09/11 12:43:43 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012/09/11 12:43:35 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/11 12:43:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012/09/11 12:42:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012/09/10 11:01:09 | 000,074,872 | R--- | C] (GFI Software) -- C:\Windows\SysNative\drivers\sbapifs.sys
[2012/09/09 13:04:46 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2012/09/09 13:04:46 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012/09/09 13:04:45 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2012/09/09 13:04:45 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012/09/09 13:04:45 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2012/09/09 13:04:44 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2012/09/09 13:04:44 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012/09/09 13:04:44 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2012/09/09 13:04:44 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012/09/09 13:04:43 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2012/09/09 13:04:43 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2012/09/09 13:04:43 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012/09/09 13:04:43 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2012/09/09 13:04:41 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2012/09/09 13:04:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2012/09/09 13:04:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012/09/09 13:04:40 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2012/09/09 13:04:40 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012/09/09 13:04:40 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2012/09/09 13:04:40 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012/09/09 13:04:39 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2012/09/09 13:04:39 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012/09/09 13:04:38 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2012/09/09 13:04:38 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012/09/09 13:04:38 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2012/09/09 13:04:38 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012/09/09 13:04:37 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2012/09/09 13:04:37 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012/09/09 13:04:37 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2012/09/09 13:04:37 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012/09/09 13:04:36 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2012/09/09 13:04:36 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2012/09/09 13:04:36 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2012/09/09 13:04:36 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012/09/09 13:04:35 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2012/09/09 13:04:35 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2012/09/09 13:04:35 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012/09/09 12:56:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Oblivion
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\My Games
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Fallout3
[2012/09/09 12:23:35 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 12:14:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2012/09/09 12:14:27 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2012/09/09 12:14:27 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012/09/09 12:14:26 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2012/09/09 12:14:26 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012/09/09 12:14:23 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2012/09/09 12:14:23 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012/09/09 12:14:22 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2012/09/09 12:14:22 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012/09/09 12:14:22 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2012/09/09 12:14:22 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012/09/09 12:14:21 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2012/09/09 12:14:21 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012/09/09 12:14:20 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2012/09/09 12:14:20 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012/09/09 12:14:20 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2012/09/09 12:14:19 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2012/09/09 12:14:19 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012/09/09 12:14:18 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2012/09/09 12:14:18 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012/09/09 12:14:17 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2012/09/09 12:14:17 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012/09/09 12:14:16 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2012/09/09 12:14:16 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012/09/09 12:14:15 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2012/09/09 12:14:15 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012/09/09 12:14:12 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2012/09/09 12:14:12 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012/09/09 12:14:12 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2012/09/09 12:14:12 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012/09/09 12:14:11 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2012/09/09 12:14:11 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012/09/09 12:14:10 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2012/09/09 12:14:10 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012/09/09 12:14:07 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2012/09/09 12:14:07 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012/09/09 12:14:05 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2012/09/09 12:14:05 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012/09/09 12:13:58 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2012/09/09 12:13:58 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012/09/09 12:13:57 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2012/09/09 12:13:57 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2012/09/09 12:13:57 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2012/09/09 12:13:57 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012/09/09 12:13:57 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2012/09/09 12:13:57 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012/09/09 12:13:56 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2012/09/09 12:13:56 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2012/09/09 12:13:56 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012/09/09 12:13:56 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012/09/09 12:13:55 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2012/09/09 12:13:55 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2012/09/09 12:13:55 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012/09/09 12:13:55 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012/09/09 12:11:07 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012/09/09 12:11:07 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012/09/09 12:11:07 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012/09/09 12:11:07 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012/09/09 11:52:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012/09/09 11:42:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zombie Studios
[2012/09/09 11:37:52 | 000,304,128 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2012/09/09 03:12:42 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop\SMRTNTKY
[2012/09/09 01:26:45 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/09/09 01:26:45 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/09/09 01:26:44 | 016,877,056 | ---- | C] (Mozilla Foundation) -- C:\xul.dll
[2012/09/09 01:26:44 | 002,147,328 | ---- | C] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/09/09 01:26:44 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/09/09 01:26:44 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/09/09 01:26:44 | 000,770,384 | ---- | C] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/09/09 01:26:44 | 000,631,296 | ---- | C] (Mozilla Foundation) -- C:\nss3.dll
[2012/09/09 01:26:44 | 000,569,856 | ---- | C] (sqlite.org) -- C:\mozsqlite3.dll
[2012/09/09 01:26:44 | 000,423,424 | ---- | C] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/09/09 01:26:44 | 000,421,200 | ---- | C] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/09/09 01:26:44 | 000,363,520 | ---- | C] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/09/09 01:26:44 | 000,253,440 | ---- | C] (Mozilla Foundation) -- C:\updater.exe
[2012/09/09 01:26:44 | 000,251,392 | ---- | C] (Mozilla Foundation) -- C:\freebl3.dll
[2012/09/09 01:26:44 | 000,159,232 | ---- | C] (Mozilla Foundation) -- C:\nspr4.dll
[2012/09/09 01:26:44 | 000,147,968 | ---- | C] (Mozilla Foundation) -- C:\softokn3.dll
[2012/09/09 01:26:44 | 000,138,240 | ---- | C] (Mozilla Foundation) -- C:\ssl3.dll
[2012/09/09 01:26:44 | 000,089,088 | ---- | C] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/09/09 01:26:44 | 000,085,504 | ---- | C] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/09/09 01:26:44 | 000,083,968 | ---- | C] (Mozilla Foundation) -- C:\smime3.dll
[2012/09/09 01:26:44 | 000,081,920 | ---- | C] (Mozilla Foundation) -- C:\libEGL.dll
[2012/09/09 01:26:44 | 000,068,096 | ---- | C] (mozilla.org) -- C:\seamonkey.exe
[2012/09/09 01:26:44 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32.dll
[2012/09/09 01:26:44 | 000,041,472 | ---- | C] (Mozilla Foundation) -- C:\mozglue.dll
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] (Mozilla Foundation) -- C:\plc4.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\xpcom.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\plds4.dll
[2012/09/09 01:26:44 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy.dll
[2012/09/09 01:26:44 | 000,009,728 | ---- | C] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/09/09 01:26:44 | 000,008,704 | ---- | C] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\searchplugins
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\isp
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\extensions
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\distribution
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\dictionaries
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\defaults
[2012/09/09 01:26:43 | 000,111,616 | ---- | C] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/09/09 01:26:43 | 000,011,776 | ---- | C] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\uninstall
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\components
[2012/09/09 01:07:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SeaMonkey
[2012/09/09 01:07:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SeaMonkey
[2012/09/08 23:02:44 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft Games
[2012/09/08 00:28:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ElevatedDiagnostics
[2012/09/07 21:45:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roozz
[2012/09/07 21:14:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Roozz
[2012/09/07 18:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Ezprint
[2012/09/07 18:06:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lexmark Toolbar
[2012/09/07 18:03:38 | 000,000,000 | ---D | C] -- C:\drivers
[2012/09/07 17:45:43 | 000,000,000 | ---D | C] -- C:\ProgramData\lx_Cats
[2012/09/07 17:42:57 | 000,077,906 | ---- | C] (Lexmark International) -- C:\Windows\SysWow64\lxducfg.dll
[2012/09/07 17:42:57 | 000,065,536 | ---- | C] (Lexmark International) -- C:\Windows\SysNative\lxducfg64.dll
[2012/09/07 17:17:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Qwest
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Windows\XSxS
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Xenocode
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xenocode
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/09/07 15:49:05 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2012/09/07 15:49:05 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2012/09/07 15:39:26 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012/09/07 15:39:26 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012/09/07 15:36:31 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2012/09/07 15:36:30 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012/09/07 15:36:30 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2012/09/07 15:36:30 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2012/09/07 15:36:30 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012/09/07 15:36:30 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012/09/07 15:36:24 | 001,544,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2012/09/07 15:36:23 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2012/09/07 15:36:20 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012/09/07 15:36:20 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012/09/07 15:36:19 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012/09/07 15:36:19 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012/09/07 15:36:13 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2012/09/07 15:36:10 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2012/09/07 15:36:10 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2012/09/07 15:36:10 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012/09/07 15:36:10 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012/09/07 15:36:10 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2012/09/07 15:36:10 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2012/09/07 15:36:10 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012/09/07 15:36:10 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2012/09/07 15:36:10 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2012/09/07 15:36:10 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2012/09/07 15:36:09 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012/09/07 15:36:09 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2012/09/07 15:36:09 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012/09/07 15:35:59 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2012/09/07 15:35:59 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2012/09/07 15:35:51 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2012/09/07 15:35:49 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2012/09/07 15:35:49 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012/09/07 15:35:48 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2012/09/07 15:35:47 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012/09/07 15:35:47 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012/09/07 15:35:36 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2012/09/07 15:35:36 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012/09/07 15:35:28 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012/09/07 15:35:28 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012/09/07 15:35:28 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012/09/07 15:35:26 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2012/09/07 15:35:26 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2012/09/07 15:35:26 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2012/09/07 15:34:10 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2012/09/07 15:34:10 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2012/09/07 15:34:10 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2012/09/07 15:34:10 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2012/09/07 15:34:02 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012/09/07 15:33:44 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/09/07 15:33:44 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/09/07 15:33:44 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/09/07 15:33:34 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012/09/07 15:33:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012/09/07 15:33:01 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2012/09/07 15:32:53 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2012/09/07 15:32:51 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2012/09/07 15:32:51 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2012/09/07 15:32:50 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2012/09/07 15:32:50 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2012/09/07 15:27:54 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/09/07 15:27:54 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/09/07 15:26:59 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012/09/07 15:26:51 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012/09/07 15:26:51 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012/09/07 10:39:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HP Support Assistant
[2012/09/07 10:39:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HpUpdate
[2012/09/07 04:57:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/09/07 03:49:01 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2012/09/07 03:47:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Internet-Installed files
[2012/09/07 03:32:16 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\CrashDumps
[2012/09/07 02:42:15 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\CyberLink
[2012/09/07 02:23:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\my recieved files
[2012/09/06 21:01:50 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Macromedia
[2012/09/06 21:01:31 | 000,696,760 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/09/06 21:01:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Mozilla
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Mozilla
[2012/09/06 20:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/09/06 20:50:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/09/06 14:36:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Recovery
[2012/09/06 14:15:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Diagnostics
[2012/09/06 13:54:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Google
[2012/09/06 13:54:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apps
[2012/09/06 13:54:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Deployment
[2012/09/06 13:48:14 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2012/09/06 13:48:14 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012/09/06 13:46:46 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
[2012/09/06 13:46:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP User Manuals
[2012/09/06 13:46:17 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/09/06 13:46:17 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/09/06 13:46:17 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Temporary Internet Files
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Templates
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Start Menu
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\SendTo
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Recent
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\PrintHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\NetHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Videos
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Pictures
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Music
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\My Documents
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Local Settings
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\History
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Cookies
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Application Data
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Application Data
[2012/09/06 13:46:14 | 000,000,000 | --SD | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Videos
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Saved Games
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Pictures
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Music
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Links
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Favorites
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Downloads
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Documents
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/09/06 13:46:14 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\AppData
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Temp
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Media Center Programs
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Macromedia
[2012/09/06 13:46:11 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/09/06 13:46:11 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012/09/06 13:46:11 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/09/06 13:46:02 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/09/06 13:46:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/09/06 13:45:31 | 000,000,000 | ---D | C] -- C:\Windows\softwaredistribution.bak
[2012/09/06 13:42:22 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
[2012/09/06 13:38:08 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/09/06 13:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2012/09/06 13:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2012/09/06 12:55:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Adobe
[2012/09/06 12:52:54 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Skype
[2012/09/06 12:52:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\ATI
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ATI
[2012/09/06 12:51:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\PDFC
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Searches
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/09/06 12:50:57 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/09/06 12:50:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Identities
[2012/09/06 12:50:46 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Contacts
[2012/09/06 12:50:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VirtualStore
[2012/09/06 12:50:24 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\RemEngine
[2012/09/06 12:45:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Hewlett-Packard
[2012/09/06 12:45:07 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard
[2012/09/06 12:44:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard_Company
[2012/08/30 21:03:48 | 000,128,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/01 10:13:40 | 000,038,632 | ---- | C] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 180 Days ==========

[2012/11/19 13:40:59 | 000,000,302 | ---- | M] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:05:35 | 000,815,210 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/11/19 12:05:35 | 000,688,350 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/11/19 12:05:35 | 000,128,582 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/11/19 12:01:31 | 000,000,439 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2012/11/19 12:01:26 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/11/19 12:00:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/19 12:00:32 | 2808,225,792 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/18 19:01:54 | 000,000,023 | ---- | M] () -- C:\Windows\BlendSettings.ini
[2012/11/18 05:48:58 | 000,001,154 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/11/18 00:02:45 | 000,002,198 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/11/17 22:20:51 | 004,568,982 | R--- | M] () -- C:\Users\thomas1gun\Documents\windowstweaksguide.pdf
[2012/11/15 13:04:39 | 000,001,252 | ---- | M] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:58:09 | 000,279,520 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/11/14 01:55:16 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/14 01:54:29 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wdf01000.sys.mui
[2012/11/14 01:54:28 | 000,054,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:28 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:54:28 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:53:29 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/14 01:53:29 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/14 01:53:29 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/14 01:53:29 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/14 01:52:59 | 002,312,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:59 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:59 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:59 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:59 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:59 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:59 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:59 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:59 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:58 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:58 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:52:58 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:58 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:58 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:58 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:50:39 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:39 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/14 01:50:39 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:39 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/14 01:50:38 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:19 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/14 01:50:19 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 21:47:46 | 000,002,141 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | M] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/29 21:32:32 | 064,010,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/10/26 19:45:49 | 000,001,234 | ---- | M] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/25 00:30:26 | 005,773,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:26 | 004,916,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:30:26 | 003,174,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:26 | 001,123,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:26 | 001,048,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:26 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:26 | 000,322,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:26 | 000,269,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:26 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:26 | 000,228,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:26 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:26 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:26 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:26 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:26 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:26 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:26 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\tsusbflt.sys.mui
[2012/10/25 00:30:00 | 000,307,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/25 00:29:59 | 001,448,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/23 12:57:39 | 000,002,170 | ---- | M] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/10/21 23:02:26 | 000,001,176 | ---- | M] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/21 15:07:46 | 000,000,009 | ---- | M] () -- C:\END
[2012/10/19 11:53:05 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 21:12:26 | 000,001,990 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | M] () -- C:\Windows\eReg.dat
[2012/10/17 20:10:24 | 137,398,872 | ---- | M] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 19:22:53 | 000,001,237 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/10/17 19:22:52 | 000,001,381 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,002,581 | ---- | M] () -- C:\Users\Public\Desktop\WildTangent Games App - hp.lnk
[2012/10/17 19:22:47 | 000,002,202 | ---- | M] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/10/17 19:22:47 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/10/17 19:22:47 | 000,002,109 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office 2010.lnk
[2012/10/17 19:22:47 | 000,001,940 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/17 19:22:47 | 000,001,626 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/10/17 19:22:47 | 000,001,357 | ---- | M] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,001,136 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/10/17 19:22:47 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/10 10:01:31 | 005,559,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 10:01:31 | 003,968,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 10:01:31 | 003,914,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 10:01:24 | 001,162,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 10:01:24 | 000,424,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 10:01:24 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 10:01:24 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 10:01:24 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 10:01:24 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 10:01:24 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 10:01:24 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 10:01:24 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 10:01:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 10:01:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 10:01:15 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 10:00:37 | 001,464,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 10:00:37 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 18:43:00 | 000,703,632 | ---- | M] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/10/09 18:43:00 | 000,175,240 | ---- | M] () -- C:\Program Files (x86)\gtres.dll
[2012/10/09 14:45:14 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/10/09 14:45:14 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/10/09 14:45:09 | 010,220,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/06 12:15:36 | 000,002,062 | ---- | M] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | M] () -- C:\Windows\game.ini
[2012/10/03 07:02:10 | 000,005,496 | ---- | M] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/03 00:54:12 | 000,000,888 | ---- | M] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | M] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/09/21 00:50:42 | 002,725,977 | ---- | M] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/15 20:49:31 | 000,030,200 | ---- | M] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:31:55 | 000,000,127 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 14:46:47 | 000,795,856 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/09/11 20:47:39 | 005,231,224 | R--- | M] () -- C:\Users\thomas1gun\Documents\obliv_pc_manual_web.pdf
[2012/09/11 12:46:03 | 000,001,367 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/10 18:27:03 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 12:23:35 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 08:07:20 | 000,000,860 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/09/07 22:34:46 | 000,004,096 | ---- | M] () -- C:\Windows\d3dx.dat
[2012/09/06 22:08:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/30 02:01:30 | 000,015,432 | ---- | M] () -- C:\Windows\Launcher.exe
[2012/08/26 22:40:23 | 000,003,044 | ---- | M] () -- C:\precomplete
[2012/08/26 22:40:22 | 009,018,306 | ---- | M] () -- C:\omni.ja
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\softokn3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\nssdbm3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\freebl3.chk
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy.dll
[2012/08/26 22:40:07 | 000,631,296 | ---- | M] (Mozilla Foundation) -- C:\nss3.dll
[2012/08/26 22:40:07 | 000,363,520 | ---- | M] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe
[2012/08/26 22:40:07 | 000,251,392 | ---- | M] (Mozilla Foundation) -- C:\freebl3.dll
[2012/08/26 22:40:07 | 000,150,528 | ---- | M] () -- C:\nsldap32v60.dll
[2012/08/26 22:40:07 | 000,147,968 | ---- | M] (Mozilla Foundation) -- C:\softokn3.dll
[2012/08/26 22:40:07 | 000,138,240 | ---- | M] (Mozilla Foundation) -- C:\ssl3.dll
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:07 | 000,089,088 | ---- | M] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/08/26 22:40:07 | 000,085,504 | ---- | M] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/08/26 22:40:07 | 000,083,968 | ---- | M] (Mozilla Foundation) -- C:\smime3.dll
[2012/08/26 22:40:07 | 000,014,848 | ---- | M] () -- C:\nsldappr32v60.dll
[2012/08/26 22:40:07 | 000,010,240 | ---- | M] () -- C:\nsldif32v60.dll
[2012/08/26 22:40:07 | 000,004,003 | ---- | M] () -- C:\crashreporter.ini
[2012/08/26 22:40:07 | 000,000,787 | ---- | M] () -- C:\crashreporter-override.ini
[2012/08/26 22:40:03 | 016,877,056 | ---- | M] (Mozilla Foundation) -- C:\xul.dll
[2012/08/26 22:40:03 | 002,147,328 | ---- | M] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/08/26 22:40:03 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/08/26 22:40:03 | 002,054,144 | ---- | M] () -- C:\mozjs.dll
[2012/08/26 22:40:03 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/08/26 22:40:03 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/08/26 22:40:03 | 000,569,856 | ---- | M] (sqlite.org) -- C:\mozsqlite3.dll
[2012/08/26 22:40:03 | 000,423,424 | ---- | M] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/08/26 22:40:03 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/08/26 22:40:03 | 000,159,232 | ---- | M] (Mozilla Foundation) -- C:\nspr4.dll
[2012/08/26 22:40:03 | 000,081,920 | ---- | M] (Mozilla Foundation) -- C:\libEGL.dll
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:03 | 000,041,472 | ---- | M] (Mozilla Foundation) -- C:\mozglue.dll
[2012/08/26 22:40:03 | 000,019,731 | ---- | M] () -- C:\blocklist.xml
[2012/08/26 22:40:03 | 000,014,848 | ---- | M] (Mozilla Foundation) -- C:\plc4.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\xpcom.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\plds4.dll
[2012/08/26 22:40:03 | 000,011,776 | ---- | M] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,008,704 | ---- | M] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/08/26 22:40:03 | 000,001,111 | ---- | M] () -- C:\updater.ini
[2012/08/26 22:40:03 | 000,000,454 | ---- | M] () -- C:\application.ini
[2012/08/26 22:40:03 | 000,000,206 | ---- | M] () -- C:\dependentlibs.list
[2012/08/26 22:40:03 | 000,000,140 | ---- | M] () -- C:\platform.ini
[2012/08/26 22:40:03 | 000,000,131 | ---- | M] () -- C:\update-settings.ini
[2012/08/26 22:39:13 | 000,036,062 | ---- | M] () -- C:\removed-files
[2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/08/22 10:12:40 | 000,376,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/08/22 10:12:33 | 000,288,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/08/21 13:01:00 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/08/02 09:58:52 | 000,574,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[2012/07/20 12:24:42 | 000,024,960 | ---- | M] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/07/04 14:16:43 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/07/04 14:13:27 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/07/04 13:14:34 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/07/04 12:26:03 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/06/05 22:02:54 | 001,133,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/06/05 21:03:06 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/06/02 14:19:46 | 000,038,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/06/02 14:19:42 | 000,186,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/06/02 14:19:42 | 000,057,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/06/02 14:19:42 | 000,044,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/06/02 14:19:23 | 000,701,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/06/02 14:15:31 | 002,622,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/06/02 14:15:12 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/06/02 14:15:08 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/11/17 18:22:44 | 000,175,240 | ---- | C] () -- C:\Program Files (x86)\gtres.dll
[2012/11/15 13:04:39 | 000,001,252 | ---- | C] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:54:14 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:50:24 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/10 21:47:46 | 000,002,141 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/09 10:28:16 | 000,001,154 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/10/21 15:07:07 | 000,017,720 | ---- | C] () -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys
[2012/10/21 15:07:06 | 000,001,176 | ---- | C] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/19 11:53:05 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | C] () -- C:\Windows\eReg.dat
[2012/10/18 20:48:15 | 000,001,990 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 15:06:31 | 000,001,234 | ---- | C] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/17 22:12:01 | 000,015,432 | ---- | C] () -- C:\Windows\Launcher.exe
[2012/10/16 23:07:15 | 000,002,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/14 00:43:56 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/10/06 12:11:38 | 000,002,062 | ---- | C] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/05 21:40:01 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/04 23:09:45 | 000,001,940 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | C] () -- C:\Windows\game.ini
[2012/10/03 10:55:47 | 000,000,009 | ---- | C] () -- C:\END
[2012/10/03 06:12:47 | 000,005,496 | ---- | C] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | C] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/10/01 13:55:42 | 002,725,977 | ---- | C] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/30 22:14:50 | 000,000,888 | ---- | C] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/09/15 20:49:33 | 000,030,200 | ---- | C] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:39:21 | 000,001,626 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/09/15 19:31:55 | 000,000,127 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 18:52:59 | 000,002,181 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/09/15 17:29:04 | 000,001,237 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/09/15 14:46:57 | 000,002,198 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/09/11 21:01:11 | 000,002,202 | ---- | C] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/09/11 19:30:57 | 000,002,170 | ---- | C] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/09/11 07:49:08 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2012/09/10 18:27:03 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 01:26:44 | 009,018,306 | ---- | C] () -- C:\omni.ja
[2012/09/09 01:26:44 | 002,054,144 | ---- | C] () -- C:\mozjs.dll
[2012/09/09 01:26:44 | 000,150,528 | ---- | C] () -- C:\nsldap32v60.dll
[2012/09/09 01:26:44 | 000,036,062 | ---- | C] () -- C:\removed-files
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] () -- C:\nsldappr32v60.dll
[2012/09/09 01:26:44 | 000,010,240 | ---- | C] () -- C:\nsldif32v60.dll
[2012/09/09 01:26:44 | 000,003,044 | ---- | C] () -- C:\precomplete
[2012/09/09 01:26:44 | 000,001,111 | ---- | C] () -- C:\updater.ini
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\softokn3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\nssdbm3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\freebl3.chk
[2012/09/09 01:26:44 | 000,000,206 | ---- | C] () -- C:\dependentlibs.list
[2012/09/09 01:26:44 | 000,000,140 | ---- | C] () -- C:\platform.ini
[2012/09/09 01:26:44 | 000,000,131 | ---- | C] () -- C:\update-settings.ini
[2012/09/09 01:26:43 | 000,019,731 | ---- | C] () -- C:\blocklist.xml
[2012/09/09 01:26:43 | 000,004,003 | ---- | C] () -- C:\crashreporter.ini
[2012/09/09 01:26:43 | 000,000,787 | ---- | C] () -- C:\crashreporter-override.ini
[2012/09/09 01:26:43 | 000,000,454 | ---- | C] () -- C:\application.ini
[2012/09/09 01:07:19 | 000,001,357 | ---- | C] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/09/09 01:07:18 | 000,001,381 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/09/07 22:34:46 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2012/09/07 18:11:16 | 001,877,073 | ---- | C] () -- C:\Users\thomas1gun\Documents\Administrator-lxduuser.pdf
[2012/09/07 17:42:57 | 001,400,320 | ---- | C] () -- C:\Windows\SysNative\lxdudrs64.dll
[2012/09/07 17:42:57 | 001,036,288 | ---- | C] () -- C:\Windows\SysWow64\lxdudrs.dll
[2012/09/07 17:42:57 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\lxducaps.dll
[2012/09/07 17:42:57 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\lxducnv4.dll
[2012/09/07 17:42:57 | 000,054,784 | ---- | C] () -- C:\Windows\SysNative\lxducnv464.dll
[2012/09/07 17:42:57 | 000,025,600 | ---- | C] () -- C:\Windows\SysNative\lxducaps64.dll
[2012/09/06 23:28:31 | 000,065,536 | ---- | C] () -- C:\Windows\SysNative\Ikeext.etl
[2012/09/06 22:08:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 20:50:43 | 000,001,136 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/09/06 20:50:42 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/09/06 13:46:43 | 000,001,787 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warranty.lnk
[2012/09/06 13:46:14 | 000,000,290 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/09/06 13:46:14 | 000,000,272 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:38:08 | 2808,225,792 | -HS- | C] () -- C:\hiberfil.sys
[2012/09/06 13:00:13 | 000,001,367 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/01/18 05:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012/01/18 05:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012/01/18 05:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/10/07 11:41:23 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/10/07 11:38:57 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/06/20 23:07:00 | 000,007,736 | ---- | C] () -- C:\Windows\hpDSTRES.DLL
[2011/06/10 22:45:16 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/02/11 09:15:43 | 000,795,856 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 21:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 20:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 19:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/11/15 04:04:28 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/09/16 02:02:20 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/10/03 14:44:43 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/10/12 07:35:56 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/10/03 10:55:04 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/15 19:40:29 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/18 09:44:11 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/11/15 13:04:36 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/10/03 10:40:21 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/11/14 17:33:51 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/09/15 18:50:46 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/16 13:59:34 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009/07/13 21:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/13 21:08:49 | 000,032,298 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForthomas1gun.job
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\Tasks\SmartDefrag_Startup.job

< %SYSTEMDRIVE%\*.exe >
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe

< %systemdrive%\$Recycle.Bin|@;true;true;true >

< MD5 for: EXPLORER.EXE >
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 19:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/20 19:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: SERVICES >
[2009/06/10 13:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.EXE >
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SVCHOST.EXE >
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s >

< %systemroot%\*. /mp /s >

< %Temp%\smtmp\*.* /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files (x86)\Mozilla Firefox\firefox.exe [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -preferences [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -extoff [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files (x86)\Internet Explorer\iexplore.exe [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /HideShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /ShowShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\Program Files (x86)\SeaMonkey\seamonkey.exe [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -preferences [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -safe-mode [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -PREFERENCES [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -SAFE-MODE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< End of report >
OTL Extras logfile created on: 11/19/2012 6:41:57 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\thomas1gun\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.49 Gb Total Physical Memory | 2.19 Gb Available Physical Memory | 62.94% Memory free
6.97 Gb Paging File | 5.62 Gb Available in Paging File | 80.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919.67 Gb Total Space | 853.73 Gb Free Space | 92.83% Space Free | Partition Type: NTFS
Drive D: | 11.74 Gb Total Space | 1.41 Gb Free Space | 11.98% Space Free | Partition Type: NTFS
Drive G: | 931.28 Gb Total Space | 925.02 Gb Free Space | 99.33% Space Free | Partition Type: FAT32

Computer Name: THOMAS1GUN-HP | User Name: thomas1gun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = SeaMonkeyHTML] -- C:\Program Files (x86)\SeaMonkey\seamonkey.exe (mozilla.org)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = SeaMonkeyHTML] -- C:\Program Files (x86)\SeaMonkey\seamonkey.exe (mozilla.org)

[HKEY_USERS\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Classes\<extension>]
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = SeaMonkeyHTML] -- C:\Program Files (x86)\SeaMonkey\seamonkey.exe (mozilla.org)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
https [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
https [open] -- "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -requestPending -osint -url "%1" (mozilla.org)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02395456-4C01-4C95-9A4C-55A6082F840E}" = rport=138 | protocol=17 | dir=out | app=system |
"{026EE409-4D21-49F0-BCB2-4810678C71E4}" = lport=138 | protocol=17 | dir=in | app=system |
"{0276B15E-5457-4229-933B-1A906144769C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{12F1BDA4-4C6F-4636-8DDE-27C1466270DA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{139660CA-287B-400F-B383-D9524ECD2BA9}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{21DDA553-8EAE-45F1-88E4-C13503F28DB8}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{28F86D0D-D96B-4059-AE48-48ECD821E0FB}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{2FA94291-8545-4B61-A8A8-E36E4CC79B28}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{35E6F0FE-226C-4078-A0D4-577245CE5FB9}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{37BFEB92-4B74-48DC-898D-7059C65ED970}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{48DD0D10-4931-4194-B83A-ED20850248C9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4A1BFD1C-B6DD-43E6-A3FA-C56E17126850}" = lport=445 | protocol=6 | dir=in | app=system |
"{53ECA922-1C2A-443B-AC09-85AFBF2A5146}" = lport=2869 | protocol=6 | dir=in | app=system |
"{54452D5A-E8A6-46A5-84FF-AEB3177F11D7}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{57C91099-22A9-42F1-A834-623B992A59A1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{65DDD6C6-5456-4887-93B8-FF61D9218DB4}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{65FBDDDA-540F-4BDF-A2C6-E202F8B69161}" = rport=139 | protocol=6 | dir=out | app=system |
"{71B2B3A0-6E76-41AE-9336-38BC0765AEC2}" = rport=445 | protocol=6 | dir=out | app=system |
"{85E15477-5325-44A7-B77B-3DAA6B799E3B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8CA41617-CC36-4F87-ABFC-820724715DA3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{910CD331-EF62-44FA-BEF0-2693EB40CDE1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{932787A6-1705-4286-9F30-3201266711CD}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{9B7514B1-67DB-4732-8541-F050E1C7DB0A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A4D50598-1AF5-4762-B8E3-F5774B2701C1}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{ABEDA5B0-37D0-4CE1-B937-568BF9A64F35}" = lport=10243 | protocol=6 | dir=in | app=system |
"{AEB3FC9C-8BED-4071-BFEE-80074A9E1DD7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B2439A63-F919-436D-9EE8-D5EA2225487A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B77318EB-40B2-4F78-A392-1CE12E3E0995}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{B9587A93-0F26-4030-B3C1-0FCB4C027FC4}" = rport=137 | protocol=17 | dir=out | app=system |
"{BA87F1C4-B369-4513-BD42-7CD0EC2DA3DF}" = lport=139 | protocol=6 | dir=in | app=system |
"{C3F35B01-EED6-4959-8B90-0CD3AB47AAEC}" = lport=137 | protocol=17 | dir=in | app=system |
"{D680A646-E3CB-4B1C-A7E1-54CB31BB47E1}" = rport=10243 | protocol=6 | dir=out | app=system |
"{D909279F-DCE1-4577-B273-A47C5ED55C86}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{DE2EB255-07B9-4A90-B388-5E5E64D20779}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EDE22D9A-2644-4B81-B8CB-EE078B2F316E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EEF35981-771D-43A4-B3F5-B73CB1EBC217}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F2C56966-AB87-4E79-9B61-F3CD89CEF168}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F30137BE-54A3-4155-BC20-01C92D785761}" = rport=2869 | protocol=6 | dir=out | app=system |
"{F773A4BE-D976-46A2-B9B0-4382E3157C8F}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02F9730F-DE0C-4B34-9C26-4780E76C55C4}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{06AC877F-3054-42A7-8416-603C860E8227}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{0E10CF41-D304-4685-8C18-ACD067C87B63}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{1CFBA47E-6DAC-46CE-926C-7F03876D8534}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2DF6B18E-E728-4139-8AAC-927D380770BA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{3BC3594B-0673-439F-9D29-E9EF4CDC4766}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3C8CF32A-862C-43DF-81F0-3C688A53CDD0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3CDC183A-5151-4550-92A5-6C94D1CB4CEC}" = protocol=17 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs8fe5.tmp\symnrt.exe |
"{3E0BF1E4-FC3A-4675-B679-E613A2EC36ED}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{433B23DC-F3BC-4273-BD5A-0E93601E5C7E}" = protocol=6 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs6985.tmp\symnrt.exe |
"{493099C6-5F46-439E-8A63-D85871CF0593}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{49DB5868-986C-48C0-956C-CAAAB56F9DA4}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdupswx.exe |
"{4D5021C5-031F-47C3-A739-7E8EFEF9B84E}" = protocol=17 | dir=out | app=c:\program files (x86)\hewlett-packard\hp linkup\hp linkup viewer.exe |
"{4EDF63D8-19BF-458C-ACA6-CD07A3DAB72D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5C1EBA9B-3E92-4C54-90C0-F9587354ACC0}" = protocol=6 | dir=out | app=c:\program files (x86)\hewlett-packard\remote graphics receiver\rgreceiver.exe |
"{62E61438-AF1D-4F38-8AFF-C0729E772143}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{67B45DCA-1A8B-42E1-97FC-C5DA5813DE46}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{733226C4-E98C-4639-A269-95A732B7B39C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{75C6EF42-2C6B-4E4D-96B5-DC205F492C48}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A60684D-3A83-4C75-83BD-1F36EECC5E9E}" = protocol=17 | dir=in | app=c:\program files (x86)\hewlett-packard\mediasmart\roxionow\rnow.exe |
"{815D8DE9-BED7-48DE-8F40-00486F29EC32}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8E4927E5-FFE3-4D25-AE53-8F8666ECB64B}" = protocol=17 | dir=in | app=c:\program files (x86)\roxio\roxionow player\rnowshell.exe |
"{932D78FF-DE95-41EE-ACE3-26C479CB12FA}" = protocol=6 | dir=out | app=system |
"{9D7C7BD6-8694-46FD-A497-92D169F2046A}" = protocol=6 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs8fe5.tmp\symnrt.exe |
"{A14607A6-BA12-4CAC-A513-D4CA0B44F2CA}" = protocol=17 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{A448735A-5852-4DFD-B0A5-0378C49403DB}" = protocol=6 | dir=in | app=c:\program files (x86)\rhapsody\rhapsody.exe |
"{A6113285-9BFA-45C9-8374-979036421C71}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{A87D9064-BB2D-4A41-83DA-E76AFA4B976D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AB527F5C-C3F8-435F-B0CC-D065DF5F5EB5}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{AEDAD1C5-0530-497D-82F7-67DD93CC87D1}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{B6414D56-871D-4111-8365-B988421DD46A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B682F3EE-2E16-43F6-8E5A-C23745DD51BE}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{BB510B48-93FB-4E0F-8E53-8AEF7C6E4C3C}" = protocol=17 | dir=in | app=c:\users\thomas1gun\appdata\local\temp\7zs6985.tmp\symnrt.exe |
"{C0D01501-9043-4468-BC64-1E4D4D5FB8AB}" = protocol=17 | dir=in | app=c:\program files (x86)\hewlett-packard\hp linkup\hp linkup viewer.exe |
"{C6379D8B-32F3-46DD-B215-28FDB3B01EC6}" = protocol=6 | dir=in | app=c:\program files (x86)\hewlett-packard\remote graphics receiver\rgreceiver.exe |
"{C914C422-801B-4EE8-AEE3-5FACF5AD25D0}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{CEE57092-2B28-4C36-90A9-ADBF07B6E4DD}" = protocol=6 | dir=in | app=c:\program files (x86)\roxio\roxionow player\rnowshell.exe |
"{D365671E-CB4A-4D1E-8DC1-649EA6A55E58}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D8FEB7A6-58C7-4DA2-9A95-98110CD13CAA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{DC8CA681-CF21-43BD-A924-2804B9120F5B}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E177FA63-1A91-4D3A-9957-EB597043679E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E3962BE3-E1A6-4A5C-B9CC-5E23B4FA3DB0}" = dir=out | app=c:\program files (x86)\protected search\protectedsearch.exe |
"{E41600EF-BCD0-4E50-A13E-66BDE9115FB8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E69E2237-262D-45EB-A333-A6D501DF65F7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F16A6E9D-8D09-452E-8A21-9C8E3DA43DF9}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdupswx.exe |
"{F2D1A06A-94D4-444A-99E9-E54776494ED6}" = protocol=6 | dir=in | app=c:\program files (x86)\hewlett-packard\mediasmart\roxionow\rnow.exe |
"{F724DC17-1730-4146-BD9C-25429DE14774}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{F91D92A4-2109-48D3-9CBA-297A26A66C6D}" = dir=in | app=c:\program files (x86)\protected search\protectedsearch.exe |
"TCP Query User{2607A96F-D080-4FB5-A980-044608DEDF9F}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=6 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"TCP Query User{2E661757-EA41-4B7E-8CBE-97D1E6B6DDD3}C:\program files (x86)\roger wilco\roger.exe" = protocol=6 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"TCP Query User{452D930C-887D-463D-82DC-66AE2798543E}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"TCP Query User{4DB0EBEE-5835-4365-A958-A9696FC628EE}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"TCP Query User{5D2DEFB3-E8B8-424C-9622-93E2DAAB8BD6}C:\users\thomas1gun\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\thomas1gun\appdata\local\akamai\netsession_win.exe |
"TCP Query User{884E7AFA-27D9-48C6-BEAE-B879A6788AB3}C:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe |
"TCP Query User{8EC25F19-FA56-4A9C-AF23-E534ADB41D36}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=6 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"TCP Query User{949FE66E-C255-4C39-9BB4-D853B936236D}C:\program files (x86)\free download manager\fdm.exe" = protocol=6 | dir=in | app=c:\program files (x86)\free download manager\fdm.exe |
"TCP Query User{AFDC7C59-D620-48E9-8765-96873A5B9419}C:\seamonkey.exe" = protocol=6 | dir=in | app=c:\seamonkey.exe |
"TCP Query User{B2CFC37B-6351-4920-AEA9-6587FCA32E69}C:\program files (x86)\xfire\ua_lsp_inst.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\ua_lsp_inst.exe |
"TCP Query User{D4C94911-4BA1-484F-A644-5FAD364AAA49}C:\program files (x86)\roger wilco\roger.exe" = protocol=6 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"TCP Query User{E0B2FEF4-4145-420A-94B1-2E3023AACE25}C:\program files (x86)\ea games\mohaa\moh_spearhead.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_spearhead.exe |
"TCP Query User{F497518F-FE8D-4499-96B8-8DDD39B4F806}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"TCP Query User{F77A8CF0-D6A5-42D8-9DA7-A5EF2E94C2A4}C:\program files (x86)\ea games\mohaa\moh_breakthrough.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_breakthrough.exe |
"UDP Query User{08253F4B-6811-499C-B774-433DFB5F0446}C:\program files (x86)\xfire\ua_lsp_inst.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\ua_lsp_inst.exe |
"UDP Query User{09890FCB-3D81-451E-A3FC-3440B4BF591A}C:\program files (x86)\roger wilco\roger.exe" = protocol=17 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"UDP Query User{1D0066EB-822E-4652-A286-8B7DFEEBA72E}C:\program files (x86)\ea games\mohaa\moh_spearhead.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_spearhead.exe |
"UDP Query User{2329F3F5-B237-4D18-96C5-02DF8D171F9E}C:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\command & conquer the first decade\command & conquer™ tiberian sun™\sun\game.exe |
"UDP Query User{29655E85-3458-496E-9762-444A8C85E1A0}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"UDP Query User{2ED45EC1-A414-42BA-88BF-F94E12E3F669}C:\program files (x86)\ea games\mohaa\moh_breakthrough.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\moh_breakthrough.exe |
"UDP Query User{491E29F9-EB1A-4115-8FB8-9C3EBDDE7636}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=17 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"UDP Query User{4A4B661D-987C-4281-9578-339885B55260}C:\program files (x86)\ea games\mohaa\mohaa.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\mohaa\mohaa.exe |
"UDP Query User{58A9D30E-0C7E-49FF-B2CA-965D30A93FD7}C:\program files (x86)\seamonkey\seamonkey.exe" = protocol=17 | dir=in | app=c:\program files (x86)\seamonkey\seamonkey.exe |
"UDP Query User{7F47E7DB-F3C0-4819-8DB9-9A1AD681EFC9}C:\users\thomas1gun\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\thomas1gun\appdata\local\akamai\netsession_win.exe |
"UDP Query User{8EC7B951-233F-48FB-9523-C015EC432361}C:\program files (x86)\roger wilco\roger.exe" = protocol=17 | dir=in | app=c:\program files (x86)\roger wilco\roger.exe |
"UDP Query User{9644280B-E088-44F4-A4C5-BF6B108F330D}C:\program files (x86)\free download manager\fdm.exe" = protocol=17 | dir=in | app=c:\program files (x86)\free download manager\fdm.exe |
"UDP Query User{C1A91E13-E142-4A9A-9019-275169AAFDC2}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"UDP Query User{ED8F4A0C-8F6A-4D42-95CE-F843039A8F9C}C:\seamonkey.exe" = protocol=17 | dir=in | app=c:\seamonkey.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects
"{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}" = HP Client Services
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4BCE1F46-1DA2-3607-65BA-EDFA544183B4}" = ccc-utility64
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{BCC01139-903A-6FC7-3358-85B0AE332601}" = ATI Catalyst Install Manager
"{C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}" = Microsoft Security Client
"{C9AAFA95-33DA-F963-DBD5-A9454DA2F19F}" = AMD Media Foundation Decoders
"{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}" = HP Auto
"{D79A02E9-6713-4335-9668-AAC7474C0C0E}" = HP Vision Hardware Diagnostics
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01C30C12-525A-8804-C623-8FC6DD4FF32F}" = CCC Help Chinese Traditional
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video
"{089063BB-5B9D-D4AB-22D2-59F6EF4DE09E}" = CCC Help Polish
"{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}" = Netflix in Windows Media Center
"{0DEA94ED-915A-4834-A87E-388D012C8E02}" = Medal of Honor Allied Assault
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi
"{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main
"{16FC3056-90C0-4757-8A68-64D8DA846ADA}" = Remote Graphics Receiver
"{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1B6F7BE6-A4A2-02C6-2467-C58954985AB3}" = CCC Help Korean
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin
"{23D683DD-93C6-48E6-B84E-78B57778F126}" = Oblivion - Construction Set
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT
"{4337BD05-C42B-5F45-F228-EA5DC10BEB01}" = CCC Help Turkish
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{4984BBF2-8A6B-0F27-300B-69C6C9125CC8}" = CCC Help Greek
"{4EFB7F0F-C6EB-B189-9B57-B599372F8A3A}" = CCC Help Italian
"{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}" = Medal of Honor Pacific Assault™
"{59CE4831-355D-4110-9021-562D97913272}" = CCC Help German
"{66D6F3BD-CA23-41A4-9FA3-96B26B32528C}" = Command & Conquer The First Decade
"{689E5983-F9EA-61AE-632B-F26AC91B0E62}" = Catalyst Control Center Graphics Previews Common
"{68EBE0E8-C24F-DB74-0081-E976C7F9003D}" = CCC Help Finnish
"{6917E984-25D9-9D4E-7474-53262BEAE9F6}" = CCC Help Spanish
"{69FDD4EA-9D68-11D5-8A28-005004D37F93}" = Wolfenstein 3D
"{6ACE862C-EDDD-9A7E-FBF6-D06050F53D52}" = CCC Help Swedish
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.2.0
"{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}" = HP Support Assistant
"{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp" = WildTangent Games App (HP Games)
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71213B00-C3D5-C885-5302-9C6CC7DCE137}" = CCC Help Russian
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{717D3880-41BC-4CE8-3FA6-95DABE215DB1}" = CCC Help Danish
"{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7914BE1E-F186-4790-B8F4-9F63C52A41C1}" = Medal of Honor Allied Assault™ Spearhead
"{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}" = HP Support Information
"{7FB00B6B-6843-97EC-EED6-78BD6D35370A}" = Zinio Reader 4
"{823A68CC-3049-4A6B-8F63-7DC85E4BB1C9}" = Medal of Honor Allied Assault™ Breakthrough
"{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher
"{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EEA0F2F-BC5C-3EB0-883D-B6F35730A5B5}" = CCC Help English
"{905E1976-AF8F-0351-EB63-5C76DC83165F}" = CCC Help Dutch
"{912CED74-88D3-4C5B-ACB0-132318649765}" = PressReader
"{941DC878-781C-E5EF-C246-E44F969FB318}" = CCC Help Japanese
"{95CC6FC9-9E4B-17CF-EACA-031F07F48BA4}" = Catalyst Control Center InstallProxy
"{9651CB1C-7EB7-2372-F345-45727C1AB823}" = CCC Help Chinese Standard
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin
"{A2BE22D4-0F66-455E-9783-1D7113CC6F00}" = Catalyst Control Center - Branding
"{A7730A8E-CA1C-5238-02D6-45198D343202}" = CCC Help Thai
"{AE856388-AFAD-4753-81DF-D96B19D0A17C}" = HP Setup Manager
"{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR
"{B2E84E76-6D0C-51E2-B0B1-7567B10AEC96}" = Catalyst Control Center Localization All
"{B8AC1A89-FFD1-4F97-8051-E505A160F562}" = HP Odometer
"{BA945D93-DBEB-0BC6-B6AD-26330D2E9879}" = AMD VISION Engine Control Center
"{CB6189FB-94E0-CD39-7B41-92213433CD26}" = CCC Help French
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{D35B72B6-F0E4-462B-BDEB-E08032B3B681}" = HP Setup
"{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software
"{D7422030-A87C-2A0C-7268-463512250CA4}" = CCC Help Portuguese
"{DB3147AB-4024-4773-8EC0-A1FE5B44933D}" = HP LinkUp
"{DE77FE3F-A33D-499A-87AD-5FC406617B40}" = HP Update
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E637DA92-2EAE-1B6F-9D65-A86F0780118E}" = CCC Help Hungarian
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{ED15F807-4242-3091-B32E-A349C37141C0}" = CCC Help Czech
"{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F7BFA5CC-8072-ACFD-D12F-69F4F2AAACB1}" = CCC Help Norwegian
"{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook
"4K Video Downloader_is1" = 4K Video Downloader 2.5
"7-Zip" = 7-Zip 9.22beta
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Age of Empires 2.0" = Microsoft Age of Empires II
"Age of Empires II: The Conquerors Expansion 1.0" = Microsoft Age of Empires II: The Conquerors Expansion
"Hardware Helper_is1" = Hardware Helper
"Mozilla Firefox 16.0.2 (x86 en-US)" = Mozilla Firefox 16.0.2 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PDF Complete" = PDF Complete Special Edition
"Protected Search_is1" = Protected Search 1.1
"SeaMonkey 2.12 (x86 en-US)" = SeaMonkey 2.12 (x86 en-US)
"SeaMonkey 2.13.2 (x86 en-US)" = SeaMonkey 2.13.2 (x86 en-US)
"Smart Defrag 2_is1" = Smart Defrag 2
"StarCraft" = StarCraft
"VideoDownloadConverter_4zbar Uninstall" = VideoDownloadConverter Toolbar
"WildTangent hp Master Uninstall" = HP Games
"WTA-33bb784e-f643-462c-b08c-a1c2cda107ac" = Bejeweled 3
"WTA-63cce9a9-8e93-4573-8d36-9d83cbf861d0" = Mah Jong Medley
"WTA-bd70b2a4-b238-47e6-9b84-4513b598dd75" = Blackhawk Striker 2
"WTA-f09ffbdc-63ff-4d90-8648-39095dccb002" = Jewel Quest: The Sleepless Star - Collector's Edition
"ZinioReader4" = Zinio Reader 4

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10/19/2012 4:00:55 AM | Computer Name = thomas1gun-HP | Source = Windows Backup | ID = 4104
Description =

Error - 10/19/2012 4:02:12 AM | Computer Name = thomas1gun-HP | Source = Windows Backup | ID = 4104
Description =

Error - 10/19/2012 3:26:18 PM | Computer Name = thomas1gun-HP | Source = | ID = 0
Description =

Error - 10/19/2012 3:26:18 PM | Computer Name = thomas1gun-HP | Source = | ID = 0
Description =

Error - 10/19/2012 8:13:48 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Game.exe, version: 1.37.0.1, time stamp:
0x21214d44 Faulting module name: Mp3dec.asi, version: 3.0.0.0, time stamp: 0x3c1b97a9
Exception
code: 0xc0000005 Fault offset: 0x00001f4f Faulting process id: 0x5cc Faulting application
start time: 0x01cdae4a8704333f Faulting application path: C:\Program Files (x86)\EA
Games\Command & Conquer The First Decade\Command & Conquer Renegade™\Renegade\Game.exe
Faulting
module path: C:\Program Files (x86)\EA Games\Command & Conquer The First Decade\Command
& Conquer Renegade™\Renegade\Mp3dec.asi Report Id: 04695142-1a4b-11e2-b9b6-3860778fbece

Error - 10/21/2012 10:00:00 PM | Computer Name = thomas1gun-HP | Source = Windows Backup | ID = 4103
Description =

Error - 10/23/2012 5:00:22 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0001e298 Faulting process id:
0xc74 Faulting application start time: 0x01cdb1614e339e69 Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
a89ea079-1d54-11e2-822d-3860778fbece

Error - 10/23/2012 5:01:18 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0000548e Faulting process id:
0xcfc Faulting application start time: 0x01cdb1618a3d5dc0 Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
ca02af1b-1d54-11e2-822d-3860778fbece

Error - 10/23/2012 5:02:03 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0000548e Faulting process id:
0xd48 Faulting application start time: 0x01cdb161a4ca68c9 Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
e4c51a3c-1d54-11e2-822d-3860778fbece

Error - 10/23/2012 5:07:30 PM | Computer Name = thomas1gun-HP | Source = Application Error | ID = 1000
Description = Faulting application name: Oblivion.exe, version: 1.2.0.416, time
stamp: 0x462392c7 Faulting module name: Oblivion.exe, version: 1.2.0.416, time stamp:
0x462392c7 Exception code: 0xc0000005 Fault offset: 0x0000548e Faulting process id:
0x478 Faulting application start time: 0x01cdb16268a088aa Faulting application path:
C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Faulting module
path: C:\Program Files (x86)\Bethesda Softworks\Oblivion\Oblivion.exe Report Id:
a7c6b395-1d55-11e2-822d-3860778fbece

[ Hewlett-Packard Events ]
Error - 9/7/2012 8:02:57 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:03:16 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:05:20 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:13:45 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:15:48 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:17:53 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:18:50 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:22:56 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:23:11 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

Error - 9/7/2012 8:25:23 PM | Computer Name = thomas1gun-HP | Source = HPSF.exe | ID = 4000
Description =

[ Media Center Events ]
Error - 11/13/2012 1:39:40 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 9:39:40 PM - Error connecting to the internet. 9:39:40 PM - Unable
to contact server..

Error - 11/13/2012 1:39:47 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 9:39:45 PM - Error connecting to the internet. 9:39:45 PM - Unable
to contact server..

Error - 11/13/2012 2:39:52 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 10:39:52 PM - Error connecting to the internet. 10:39:52 PM - Unable
to contact server..

Error - 11/13/2012 2:39:59 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 10:39:57 PM - Error connecting to the internet. 10:39:57 PM - Unable
to contact server..

Error - 11/13/2012 3:40:04 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 11:40:04 PM - Error connecting to the internet. 11:40:04 PM - Unable
to contact server..

Error - 11/13/2012 3:40:10 AM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 11:40:09 PM - Error connecting to the internet. 11:40:09 PM - Unable
to contact server..

Error - 11/13/2012 4:09:50 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 12:09:50 PM - Error connecting to the internet. 12:09:50 PM - Unable
to contact server..

Error - 11/13/2012 4:10:00 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 12:09:55 PM - Error connecting to the internet. 12:09:55 PM - Unable
to contact server..

Error - 11/17/2012 4:04:09 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 12:03:58 PM - Error connecting to the internet. 12:03:58 PM - Unable
to contact server..

Error - 11/17/2012 5:04:19 PM | Computer Name = thomas1gun-HP | Source = MCUpdate | ID = 0
Description = 1:04:17 PM - Error connecting to the internet. 1:04:17 PM - Unable
to contact server..

[ System Events ]
Error - 11/14/2012 7:40:29 PM | Computer Name = thomas1gun-HP | Source = ipnathlp | ID = 30013
Description =

Error - 11/15/2012 9:35:33 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2729449).

Error - 11/15/2012 9:36:18 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2737019).

Error - 11/15/2012 9:36:50 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2729449).

Error - 11/15/2012 9:37:00 AM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft .NET Framework 4 on XP, Server
2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2737019).

Error - 11/15/2012 4:00:40 PM | Computer Name = thomas1gun-HP | Source = Microsoft-Windows-EnhancedStorage-EhStorCertDrv | ID = 80
Description = Password device is not compatible with Windows.

Error - 11/15/2012 4:00:47 PM | Computer Name = thomas1gun-HP | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SBRE

Error - 11/15/2012 4:00:51 PM | Computer Name = thomas1gun-HP | Source = ipnathlp | ID = 34001
Description =

Error - 11/15/2012 4:00:51 PM | Computer Name = thomas1gun-HP | Source = ipnathlp | ID = 30013
Description =

Error - 11/15/2012 5:06:17 PM | Computer Name = thomas1gun-HP | Source = Service Control Manager | ID = 7030
Description = The Hotspot Shield Service service is marked as an interactive service.
However, the system is configured to not allow interactive services. This service
may not function properly.


< End of report >
OTL logfile created on: 11/19/2012 6:41:57 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\thomas1gun\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.49 Gb Total Physical Memory | 2.19 Gb Available Physical Memory | 62.94% Memory free
6.97 Gb Paging File | 5.62 Gb Available in Paging File | 80.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919.67 Gb Total Space | 853.73 Gb Free Space | 92.83% Space Free | Partition Type: NTFS
Drive D: | 11.74 Gb Total Space | 1.41 Gb Free Space | 11.98% Space Free | Partition Type: NTFS
Drive G: | 931.28 Gb Total Space | 925.02 Gb Free Space | 99.33% Space Free | Partition Type: FAT32

Computer Name: THOMAS1GUN-HP | User Name: thomas1gun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

========== Processes (SafeList) ==========

PRC - [2012/11/18 06:10:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\thomas1gun\Downloads\OTL.exe
PRC - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe
PRC - [2012/09/19 11:01:32 | 000,067,656 | ---- | M] (Simplygen) -- C:\Program Files (x86)\Protected Search\ProtectedSearch.exe
PRC - [2012/09/06 10:06:42 | 001,607,552 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
PRC - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe
PRC - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2010/11/20 19:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
PRC - [2008/11/20 09:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe


========== Modules (No Company Name) ==========

MOD - [2012/11/18 14:59:38 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
MOD - [2012/11/18 14:27:48 | 012,549,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\474914b7c8b9b5056943488991a57edc\System.Windows.Forms.ni.dll
MOD - [2012/11/18 14:27:30 | 001,595,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f961fb1ec279c14554f5580a457ef542\System.Drawing.ni.dll
MOD - [2012/11/18 14:22:43 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2011/08/19 15:33:28 | 000,047,960 | ---- | M] () -- C:\Program Files (x86)\IObit\Smart Defrag 2\NtfsData.dll
MOD - [2010/11/20 19:24:25 | 000,385,024 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/09/12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011/10/24 04:16:42 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011/02/16 21:47:28 | 000,682,040 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe -- (HPAuto)
SRV:64bit: - [2010/10/11 01:48:14 | 000,346,168 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe -- (HPClientSvc)
SRV:64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/11/13 19:34:54 | 000,115,168 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/30 15:23:12 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) [Auto | Running] -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe -- (VideoDownloadConverter_4zService)
SRV - [2012/01/18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/09/09 16:10:28 | 000,086,072 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011/05/05 15:40:52 | 001,128,952 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2011/03/28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/12 09:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [Auto | Running] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
DRV:64bit: - [2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/18 05:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:64bit: - [2012/01/18 05:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2012/01/18 05:44:14 | 000,025,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvbflt64.sys -- (CompFilter64)
DRV:64bit: - [2012/01/12 08:28:48 | 000,074,872 | R--- | M] (GFI Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\sbapifs.sys -- (sbapifs)
DRV:64bit: - [2011/10/24 04:56:54 | 010,203,648 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/10/24 03:40:08 | 000,310,784 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/10/07 11:38:30 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/10/07 11:38:30 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/05/16 13:55:28 | 000,533,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/04 14:46:20 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2011/03/04 14:46:20 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2010/12/15 19:36:46 | 000,047,232 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010/11/26 17:02:18 | 000,017,720 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV:64bit: - [2010/11/20 19:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/20 19:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/12/04 00:35:14 | 000,020,992 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 12:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE:64bit: - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKLM\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.certif...q={searchTerms}
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKLM\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://my.yahoo.com/ [binary data]
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certif...=592&bs=true&q=
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certif...me=true&tid=592
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.certif...q={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...0003860778fbece
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3d29c02b-bf3e-4d3b-8a7a-e0e7d0f6dbab}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{3D54D766-A388-45E2-B552-F14FED0C055C}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{7C864D08-CA10-4FF4-BCFF-C51DA3BD89C3}: "URL" = http://search.condui...&ctid=CT1561552
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{92246B67-8961-4885-9413-B67C8CE22360}: "URL" = http://us.yhs4.searc...p={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPDTDF
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}: "URL" = http://www2.inbox.co...id=80291&lng=en
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia....h={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.co...w={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\SearchScopes\{DB5842FF-251E-48EB-B87B-342C0FB42EBD}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..CT3196716.browser.search.defaultthis.engineName: true
FF - prefs.js..CT3201318.browser.search.defaultthis.engineName: true
FF - prefs.js..browser.search.defaultengine: "Web Search"
FF - prefs.js..browser.search.param.yahoo-fr: "&hsimp=yhs-affiliate_a_ff&hspart=greentree&type=685749_yhs3tst"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.startup.homepage: "chrome://fvd.speeddial/content/fvd_about_blank.html"
FF - prefs.js..extensions.enabledAddons: wisestamp@wisestamp.com:3.11.21
FF - prefs.js..extensions.enabledAddons: tineye@ideeinc.com:1.1
FF - prefs.js..extensions.enabledAddons: amadlo@tomers.net:1.1.6
FF - prefs.js..extensions.enabledAddons: firefox@ghostery.com:2.8.3
FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: artur.dubovoy@gmail.com:3.7.6
FF - prefs.js..extensions.enabledAddons: adapter@babylontc.com:1.0.0.1
FF - prefs.js..extensions.enabledAddons: ocr@babylon.com:1.1
FF - prefs.js..extensions.enabledAddons: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:1.4
FF - prefs.js..extensions.enabledAddons: {c07d1a49-9894-49ff-a594-38960ede8fb9}:3.1.10
FF - prefs.js..extensions.enabledAddons: {3bbd3c14-4c16-4989-8366-95bc9179779d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: pavel.sherbakov@gmail.com:4.1.5
FF - prefs.js..extensions.enabledAddons: canitbecheaper@trafficbroker.co.uk:3.8.23
FF - prefs.js..extensions.enabledAddons: {E71B541F-5E72-5555-A47C-E47863195841}:1.0.26
FF - prefs.js..extensions.enabledAddons: donottrackplus@abine.com:2.2.1.829
FF - prefs.js..extensions.enabledAddons: 4zffxtbr@VideoDownloadConverter_4z.com:2.71.0.60687
FF - prefs.js..extensions.enabledAddons: {c95a4e8e-816d-4655-8c79-d736da1adb6d}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: {26605315-8a79-4ff6-bbb9-63363b9d86b3}:10.13.40.15
FF - prefs.js..extensions.enabledAddons: Foxdie@tanjihay.com:15
FF - prefs.js..keyword.URL: "http://search.mywebs...000&searchfor="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: File not found
FF - HKLM\Software\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\4zffxtbr@VideoDownloadConverter_4z.com: C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin [2012/09/30 22:14:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/11/13 19:34:55 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Components: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.12\extensions\\Plugins: C:\Users\thomas1gun\AppData\Local\Temp\7zS79C1.tmp\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Components: C:\Program Files (x86)\SeaMonkey\components [2012/11/02 11:54:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.13.2\extensions\\Plugins: C:\Program Files (x86)\SeaMonkey\plugins

[2012/09/06 20:51:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Extensions
[2012/11/17 18:27:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions
[2012/11/13 15:53:42 | 000,000,000 | ---D | M] (Smart Defrag) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{26605315-8a79-4ff6-bbb9-63363b9d86b3}
[2012/11/13 15:53:50 | 000,000,000 | ---D | M] (FLV Runner) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{3bbd3c14-4c16-4989-8366-95bc9179779d}
[2012/11/17 17:23:33 | 000,000,000 | ---D | M] (FT DeepDark) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
[2012/11/15 13:06:43 | 000,000,000 | ---D | M] (Hotspot Shield) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}
[2012/11/15 03:57:45 | 000,000,000 | ---D | M] ("SimilarSites") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{E71B541F-5E72-5555-A47C-E47863195841}
[2012/11/13 15:53:58 | 000,000,000 | ---D | M] (WiseConvert) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}
[2012/11/16 12:17:09 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012/11/15 03:05:11 | 000,000,000 | ---D | M] (DoNotTrackPlus) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com
[2012/09/27 22:06:22 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\firefox@ghostery.com
[2012/09/27 21:54:01 | 000,000,000 | ---D | M] (Foxdie) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\Foxdie@tanjihay.com
[2012/11/15 00:36:07 | 000,000,000 | ---D | M] ("FVD Speed Dial with Full Online Sync") -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\pavel.sherbakov@gmail.com
[2012/10/16 20:56:44 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\plugin@yontoo.com
[2012/11/08 17:09:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2012/09/20 15:13:14 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\firefox@ghostery.com
[2012/09/09 01:26:58 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\SeaMonkey\Profiles\3kj45fc6.default\extensions\inspector@mozilla.org
[2012/10/17 21:59:20 | 000,021,707 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\adapter@babylontc.com.xpi
[2012/09/27 21:52:44 | 000,023,125 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\amadlo@tomers.net.xpi
[2012/10/17 20:07:56 | 000,221,098 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\artur.dubovoy@gmail.com.xpi
[2012/11/15 03:47:51 | 000,070,963 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\canitbecheaper@trafficbroker.co.uk.xpi
[2012/10/17 21:59:21 | 000,008,053 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\ocr@babylon.com.xpi
[2012/09/09 07:45:03 | 000,008,001 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\tineye@ideeinc.com.xpi
[2012/09/07 22:23:43 | 001,771,909 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\wisestamp@wisestamp.com.xpi
[2012/10/14 21:49:11 | 000,672,576 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{5A170DD3-63CA-4c58-93B7-DE9FF536C2FF}.xpi
[2012/11/11 21:00:53 | 000,447,304 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi
[2012/11/10 18:38:04 | 000,252,340 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2012/08/29 12:56:22 | 000,007,915 | ---- | M] () (No name found) -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\extensions\donottrackplus@abine.com\chrome\content\ff\view_expiry.js
[2012/09/30 17:20:45 | 000,009,634 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\my-web-search.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\Web Search.xml
[2012/10/14 23:20:13 | 000,001,022 | ---- | M] () -- C:\Users\thomas1gun\AppData\Roaming\Mozilla\Firefox\Profiles\wwv7i0cv.default\searchplugins\wiseconvert-customized-web-search.xml
[2012/11/17 02:10:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/11/13 19:34:55 | 000,261,600 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/11/15 04:04:38 | 000,002,349 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2012/09/05 17:26:22 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/11/13 19:34:21 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
[2012/10/17 22:12:35 | 000,003,267 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml

O1 HOSTS File: ([2012/09/09 08:07:20 | 000,000,860 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
O2 - BHO: (no name) - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - No CLSID value found.
O2 - BHO: (Search Assistant BHO) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (MindSpark)
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {26605315-8A79-4FF6-BBB9-63363B9D86B3} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O3 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\..\Toolbar\WebBrowser: (no name) - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No CLSID value found.
O4:64bit: - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\.DEFAULT..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-18..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart File not found
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O16:64bit: - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} http://content.syste...nt_4.5.13.0.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.3.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C6715BFB-42A2-4A4D-98E2-B716B74A1C8D}: DhcpNameServer = 192.168.0.1 205.171.3.65
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) - c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{6224c52a-ffac-11e1-b93f-3860778fbece}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2575648806-3173031158-2232906571-1001\...exe [@ = exefile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 180 Days ==========

[2012/11/18 05:49:08 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012/11/18 00:00:35 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2012/11/18 00:00:35 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2012/11/18 00:00:35 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012/11/18 00:00:33 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012/11/18 00:00:33 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012/11/18 00:00:33 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2012/11/18 00:00:31 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2012/11/18 00:00:31 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012/11/18 00:00:30 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012/11/18 00:00:30 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2012/11/18 00:00:30 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012/11/18 00:00:29 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2012/11/18 00:00:29 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012/11/17 23:59:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012/11/17 23:59:18 | 064,010,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/11/17 19:14:36 | 000,000,000 | ---D | C] -- C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[2012/11/17 18:22:44 | 000,703,632 | ---- | C] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/11/15 13:08:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\4kdownload.com
[2012/11/15 13:04:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/11/15 13:04:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\4KDownload
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/11/15 04:04:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/11/14 17:33:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\thriXXX
[2012/11/14 01:54:11 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:11 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:52:35 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:34 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:52:33 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:33 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:32 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:32 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:32 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:32 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:31 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:31 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:31 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:31 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:29 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:29 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:29 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:50:26 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:25 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:24 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:24 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/13 19:34:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/11/13 15:51:56 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/13 15:51:56 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/13 15:51:56 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/13 15:51:55 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/13 15:51:55 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/13 15:51:49 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/13 15:51:48 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/13 15:51:31 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/13 15:51:31 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 22:23:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
[2012/11/01 10:31:08 | 000,040,712 | ---- | C] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | C] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/28 02:21:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Command and Conquer Generals Data
[2012/10/25 00:30:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:09 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/10/25 00:30:09 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:08 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:08 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:08 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:07 | 003,174,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:07 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:07 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:07 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:07 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:07 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:07 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:07 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:07 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:07 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:07 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:06 | 005,773,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:06 | 004,916,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:28:39 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/25 00:28:39 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/21 15:07:48 | 000,032,600 | ---- | C] (IObit) -- C:\Windows\SysNative\SmartDefragBootTime.exe
[2012/10/21 15:07:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2
[2012/10/18 20:44:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Roger Wilco
[2012/10/18 15:13:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EasyInfo
[2012/10/17 22:12:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinRAR
[2012/10/17 22:12:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Search
[2012/10/17 22:12:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Protected Search
[2012/10/17 22:11:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\DownTango
[2012/10/17 22:11:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Sky
[2012/10/17 20:07:53 | 137,398,872 | ---- | C] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 20:07:51 | 000,000,000 | ---D | C] -- C:\Program Files\Babylon
[2012/10/17 15:57:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Trymedia
[2012/10/17 11:34:15 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/10/16 23:07:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012/10/16 23:07:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/10/16 22:52:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2012/10/16 22:50:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Wajam
[2012/10/16 22:28:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/10/16 22:25:57 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012/10/16 21:48:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wolfenstein 3D
[2012/10/16 21:48:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wolfenstein 3D
[2012/10/16 20:56:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OApps
[2012/10/16 20:56:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yontoo
[2012/10/16 20:56:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2012/10/16 19:41:29 | 000,000,000 | ---D | C] -- C:\inetpub
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
[2012/10/15 21:38:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.74
[2012/10/14 08:16:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Apple Computer
[2012/10/14 00:45:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012/10/14 00:44:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/10/14 00:44:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/10/14 00:43:57 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apple
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/10/14 00:43:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/10/10 09:34:37 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 09:34:37 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 09:34:37 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 09:34:37 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 09:34:37 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 09:34:37 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 09:34:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 09:34:37 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 09:34:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 09:34:37 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 09:34:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 09:34:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:37 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 09:34:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 09:34:29 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 09:34:19 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 09:34:19 | 003,968,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 09:34:19 | 003,914,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 09:33:51 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 09:33:51 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 14:45:09 | 010,220,472 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/09 09:40:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sensible Vision
[2012/10/06 12:08:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2012/10/06 12:07:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StarCraft
[2012/10/05 21:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2012/10/05 21:21:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\hpremote
[2012/10/05 20:02:45 | 000,024,960 | ---- | C] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/10/04 23:02:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
[2012/10/04 23:01:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA GAMES
[2012/10/03 18:36:08 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012/10/03 18:35:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/10/03 14:44:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/10/03 14:44:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BlueSprig
[2012/10/03 11:38:00 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Roxio Log Files
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
[2012/10/03 11:03:35 | 000,000,000 | ---D | C] -- C:\ProgramData\{6F2F3866-38AD-4f48-852C-2FF5DE7A7588}
[2012/10/03 10:55:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2012/10/03 10:55:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Conduit
[2012/10/03 10:40:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/10/03 10:40:07 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Utility Kit
[2012/10/03 10:17:04 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{0698D77A-C2AE-43D7-AF64-D63D72960D80}
[2012/10/02 01:11:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DOSBox-0.72
[2012/10/01 15:51:26 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\vlc
[2012/10/01 02:09:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2012/10/01 02:09:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2012/09/30 22:09:28 | 000,000,000 | ---D | C] -- C:\ProgramData\STOPzilla!
[2012/09/30 22:04:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Ilivid Player
[2012/09/30 18:25:17 | 000,000,000 | ---D | C] -- C:\Plugins
[2012/09/30 17:19:52 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VideoDownloadConverter_4z
[2012/09/30 15:27:11 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/09/30 15:23:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoDownloadConverter_4z
[2012/09/28 11:00:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Roozz
[2012/09/27 00:00:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{2906D058-8E5B-4080-A802-F0AD4C60DCC8}
[2012/09/26 00:20:39 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Real
[2012/09/26 00:20:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rhapsody
[2012/09/25 10:49:47 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/09/18 09:37:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/09/18 09:37:57 | 000,018,760 | ---- | C] (WinZip Computing, S.L.(WinZip Computing)) -- C:\Windows\SysNative\roboot64.exe
[2012/09/18 09:37:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZip Registry Optimizer
[2012/09/16 14:00:02 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{B9EE30D3-4BF9-4373-AD11-683D379DB655}
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer
[2012/09/16 13:59:34 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Windows Live Writer
[2012/09/16 02:13:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
[2012/09/16 02:00:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Blio
[2012/09/16 02:00:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{5DD8111D-4E12-4116-8D7F-E49696638D35}
[2012/09/15 22:40:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\{3EE88425-AAC5-43B9-BE87-D47843BBB388}
[2012/09/15 22:40:30 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\U3
[2012/09/15 20:48:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Logitech
[2012/09/15 19:43:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Logitech® Webcam Software
[2012/09/15 19:41:00 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2012/09/15 19:40:29 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/15 19:39:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Logitech
[2012/09/15 19:39:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\LWS
[2012/09/15 19:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
[2012/09/15 19:39:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logitech
[2012/09/15 18:51:19 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\hpqLog
[2012/09/15 18:50:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/15 17:29:21 | 000,000,000 | ---D | C] -- C:\ProgramData\HardwareHelper
[2012/09/15 17:29:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hardware Helper
[2012/09/15 17:28:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2012/09/12 08:40:47 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/09/12 08:40:44 | 000,574,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/09/12 08:40:40 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/09/12 08:40:40 | 000,288,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/09/11 20:25:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\Downloads
[2012/09/11 19:30:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
[2012/09/11 12:43:43 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012/09/11 12:43:35 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/11 12:43:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012/09/11 12:42:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012/09/10 11:01:09 | 000,074,872 | R--- | C] (GFI Software) -- C:\Windows\SysNative\drivers\sbapifs.sys
[2012/09/09 13:04:46 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012/09/09 13:04:46 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2012/09/09 13:04:46 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012/09/09 13:04:46 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2012/09/09 13:04:46 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012/09/09 13:04:45 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2012/09/09 13:04:45 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012/09/09 13:04:45 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2012/09/09 13:04:44 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2012/09/09 13:04:44 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012/09/09 13:04:44 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012/09/09 13:04:44 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2012/09/09 13:04:44 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012/09/09 13:04:43 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2012/09/09 13:04:43 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2012/09/09 13:04:43 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012/09/09 13:04:43 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2012/09/09 13:04:41 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012/09/09 13:04:41 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2012/09/09 13:04:41 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2012/09/09 13:04:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2012/09/09 13:04:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012/09/09 13:04:40 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2012/09/09 13:04:40 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012/09/09 13:04:40 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012/09/09 13:04:40 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012/09/09 13:04:40 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012/09/09 13:04:40 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2012/09/09 13:04:40 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012/09/09 13:04:39 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012/09/09 13:04:39 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012/09/09 13:04:39 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012/09/09 13:04:39 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2012/09/09 13:04:39 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2012/09/09 13:04:39 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012/09/09 13:04:39 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2012/09/09 13:04:39 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012/09/09 13:04:38 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2012/09/09 13:04:38 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012/09/09 13:04:38 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012/09/09 13:04:38 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2012/09/09 13:04:38 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2012/09/09 13:04:38 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012/09/09 13:04:37 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2012/09/09 13:04:37 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012/09/09 13:04:37 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012/09/09 13:04:37 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012/09/09 13:04:37 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012/09/09 13:04:37 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2012/09/09 13:04:37 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012/09/09 13:04:36 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2012/09/09 13:04:36 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2012/09/09 13:04:36 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2012/09/09 13:04:36 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2012/09/09 13:04:36 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012/09/09 13:04:35 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2012/09/09 13:04:35 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2012/09/09 13:04:35 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012/09/09 12:56:40 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Oblivion
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\My Games
[2012/09/09 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Fallout3
[2012/09/09 12:23:35 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 12:14:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bethesda Softworks
[2012/09/09 12:14:27 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012/09/09 12:14:27 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2012/09/09 12:14:27 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012/09/09 12:14:26 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2012/09/09 12:14:26 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012/09/09 12:14:23 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2012/09/09 12:14:23 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012/09/09 12:14:22 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2012/09/09 12:14:22 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012/09/09 12:14:22 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012/09/09 12:14:22 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2012/09/09 12:14:22 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012/09/09 12:14:21 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012/09/09 12:14:21 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012/09/09 12:14:21 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012/09/09 12:14:21 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2012/09/09 12:14:21 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012/09/09 12:14:20 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2012/09/09 12:14:20 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012/09/09 12:14:20 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2012/09/09 12:14:19 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012/09/09 12:14:19 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012/09/09 12:14:19 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2012/09/09 12:14:19 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012/09/09 12:14:18 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2012/09/09 12:14:18 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012/09/09 12:14:17 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2012/09/09 12:14:17 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012/09/09 12:14:16 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2012/09/09 12:14:16 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012/09/09 12:14:15 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2012/09/09 12:14:15 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012/09/09 12:14:12 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2012/09/09 12:14:12 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012/09/09 12:14:12 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012/09/09 12:14:12 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2012/09/09 12:14:12 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012/09/09 12:14:11 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012/09/09 12:14:11 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2012/09/09 12:14:11 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012/09/09 12:14:10 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2012/09/09 12:14:10 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012/09/09 12:14:07 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2012/09/09 12:14:07 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012/09/09 12:14:05 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2012/09/09 12:14:05 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012/09/09 12:13:58 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2012/09/09 12:13:58 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012/09/09 12:13:57 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2012/09/09 12:13:57 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2012/09/09 12:13:57 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2012/09/09 12:13:57 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012/09/09 12:13:57 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012/09/09 12:13:57 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2012/09/09 12:13:57 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012/09/09 12:13:56 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2012/09/09 12:13:56 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2012/09/09 12:13:56 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012/09/09 12:13:56 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012/09/09 12:13:55 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2012/09/09 12:13:55 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2012/09/09 12:13:55 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012/09/09 12:13:55 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012/09/09 12:11:07 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012/09/09 12:11:07 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012/09/09 12:11:07 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012/09/09 12:11:07 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012/09/09 11:52:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012/09/09 11:42:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zombie Studios
[2012/09/09 11:37:52 | 000,304,128 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2012/09/09 03:12:42 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop\SMRTNTKY
[2012/09/09 01:26:45 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/09/09 01:26:45 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/09/09 01:26:44 | 016,877,056 | ---- | C] (Mozilla Foundation) -- C:\xul.dll
[2012/09/09 01:26:44 | 002,147,328 | ---- | C] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/09/09 01:26:44 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/09/09 01:26:44 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/09/09 01:26:44 | 000,770,384 | ---- | C] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/09/09 01:26:44 | 000,631,296 | ---- | C] (Mozilla Foundation) -- C:\nss3.dll
[2012/09/09 01:26:44 | 000,569,856 | ---- | C] (sqlite.org) -- C:\mozsqlite3.dll
[2012/09/09 01:26:44 | 000,423,424 | ---- | C] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/09/09 01:26:44 | 000,421,200 | ---- | C] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/09/09 01:26:44 | 000,363,520 | ---- | C] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/09/09 01:26:44 | 000,253,440 | ---- | C] (Mozilla Foundation) -- C:\updater.exe
[2012/09/09 01:26:44 | 000,251,392 | ---- | C] (Mozilla Foundation) -- C:\freebl3.dll
[2012/09/09 01:26:44 | 000,159,232 | ---- | C] (Mozilla Foundation) -- C:\nspr4.dll
[2012/09/09 01:26:44 | 000,147,968 | ---- | C] (Mozilla Foundation) -- C:\softokn3.dll
[2012/09/09 01:26:44 | 000,138,240 | ---- | C] (Mozilla Foundation) -- C:\ssl3.dll
[2012/09/09 01:26:44 | 000,089,088 | ---- | C] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/09/09 01:26:44 | 000,085,504 | ---- | C] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/09/09 01:26:44 | 000,083,968 | ---- | C] (Mozilla Foundation) -- C:\smime3.dll
[2012/09/09 01:26:44 | 000,081,920 | ---- | C] (Mozilla Foundation) -- C:\libEGL.dll
[2012/09/09 01:26:44 | 000,068,096 | ---- | C] (mozilla.org) -- C:\seamonkey.exe
[2012/09/09 01:26:44 | 000,041,984 | ---- | C] (Mozilla.org) -- C:\mozMapi32.dll
[2012/09/09 01:26:44 | 000,041,472 | ---- | C] (Mozilla Foundation) -- C:\mozglue.dll
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] (Mozilla Foundation) -- C:\plc4.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\xpcom.dll
[2012/09/09 01:26:44 | 000,012,288 | ---- | C] (Mozilla Foundation) -- C:\plds4.dll
[2012/09/09 01:26:44 | 000,010,752 | ---- | C] (Mozilla.org) -- C:\MapiProxy.dll
[2012/09/09 01:26:44 | 000,009,728 | ---- | C] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/09/09 01:26:44 | 000,008,704 | ---- | C] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\searchplugins
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\isp
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\extensions
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\distribution
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\dictionaries
[2012/09/09 01:26:44 | 000,000,000 | ---D | C] -- C:\defaults
[2012/09/09 01:26:43 | 000,111,616 | ---- | C] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/09/09 01:26:43 | 000,011,776 | ---- | C] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\uninstall
[2012/09/09 01:26:43 | 000,000,000 | ---D | C] -- C:\components
[2012/09/09 01:07:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SeaMonkey
[2012/09/09 01:07:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SeaMonkey
[2012/09/08 23:02:44 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft Games
[2012/09/08 00:28:21 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ElevatedDiagnostics
[2012/09/07 21:45:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roozz
[2012/09/07 21:14:53 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Roozz
[2012/09/07 18:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Ezprint
[2012/09/07 18:06:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lexmark Toolbar
[2012/09/07 18:03:38 | 000,000,000 | ---D | C] -- C:\drivers
[2012/09/07 17:45:43 | 000,000,000 | ---D | C] -- C:\ProgramData\lx_Cats
[2012/09/07 17:42:57 | 000,077,906 | ---- | C] (Lexmark International) -- C:\Windows\SysWow64\lxducfg.dll
[2012/09/07 17:42:57 | 000,065,536 | ---- | C] (Lexmark International) -- C:\Windows\SysNative\lxducfg64.dll
[2012/09/07 17:17:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Qwest
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Windows\XSxS
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Xenocode
[2012/09/07 17:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xenocode
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/09/07 16:59:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/09/07 15:49:05 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2012/09/07 15:49:05 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2012/09/07 15:39:26 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012/09/07 15:39:26 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012/09/07 15:36:31 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2012/09/07 15:36:30 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012/09/07 15:36:30 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012/09/07 15:36:30 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2012/09/07 15:36:30 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2012/09/07 15:36:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2012/09/07 15:36:30 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012/09/07 15:36:30 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012/09/07 15:36:24 | 001,544,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2012/09/07 15:36:23 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2012/09/07 15:36:20 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012/09/07 15:36:20 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012/09/07 15:36:19 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012/09/07 15:36:19 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012/09/07 15:36:13 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2012/09/07 15:36:10 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2012/09/07 15:36:10 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2012/09/07 15:36:10 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012/09/07 15:36:10 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012/09/07 15:36:10 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2012/09/07 15:36:10 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2012/09/07 15:36:10 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012/09/07 15:36:10 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2012/09/07 15:36:10 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2012/09/07 15:36:10 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2012/09/07 15:36:09 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012/09/07 15:36:09 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2012/09/07 15:36:09 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012/09/07 15:35:59 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2012/09/07 15:35:59 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2012/09/07 15:35:55 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2012/09/07 15:35:51 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2012/09/07 15:35:49 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2012/09/07 15:35:49 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012/09/07 15:35:48 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2012/09/07 15:35:47 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012/09/07 15:35:47 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012/09/07 15:35:36 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2012/09/07 15:35:36 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012/09/07 15:35:28 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012/09/07 15:35:28 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012/09/07 15:35:28 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012/09/07 15:35:26 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2012/09/07 15:35:26 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2012/09/07 15:35:26 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2012/09/07 15:34:10 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2012/09/07 15:34:10 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2012/09/07 15:34:10 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2012/09/07 15:34:10 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2012/09/07 15:34:02 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012/09/07 15:33:44 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/09/07 15:33:44 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/09/07 15:33:44 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/09/07 15:33:34 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012/09/07 15:33:34 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012/09/07 15:33:01 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2012/09/07 15:32:53 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2012/09/07 15:32:51 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2012/09/07 15:32:51 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2012/09/07 15:32:50 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2012/09/07 15:32:50 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2012/09/07 15:27:54 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/09/07 15:27:54 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/09/07 15:26:59 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012/09/07 15:26:51 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012/09/07 15:26:51 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012/09/07 10:39:31 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HP Support Assistant
[2012/09/07 10:39:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\HpUpdate
[2012/09/07 04:57:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/09/07 04:12:09 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/09/07 03:49:01 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2012/09/07 03:47:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Internet-Installed files
[2012/09/07 03:32:16 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\CrashDumps
[2012/09/07 02:42:15 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\CyberLink
[2012/09/07 02:23:22 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\Documents\my recieved files
[2012/09/06 21:01:50 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Macromedia
[2012/09/06 21:01:31 | 000,696,760 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/09/06 21:01:30 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Mozilla
[2012/09/06 20:50:51 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Mozilla
[2012/09/06 20:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/09/06 20:50:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2012/09/06 14:36:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Recovery
[2012/09/06 14:15:03 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Diagnostics
[2012/09/06 13:54:59 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Google
[2012/09/06 13:54:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Apps
[2012/09/06 13:54:42 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Deployment
[2012/09/06 13:48:14 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2012/09/06 13:48:14 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012/09/06 13:46:46 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
[2012/09/06 13:46:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP User Manuals
[2012/09/06 13:46:17 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/09/06 13:46:17 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/09/06 13:46:17 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Temporary Internet Files
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Templates
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Start Menu
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\SendTo
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Recent
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\PrintHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\NetHood
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Videos
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Pictures
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Documents\My Music
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\My Documents
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Local Settings
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\History
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Cookies
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\Application Data
[2012/09/06 13:46:15 | 000,000,000 | -HSD | C] -- C:\Users\thomas1gun\AppData\Local\Application Data
[2012/09/06 13:46:14 | 000,000,000 | --SD | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Videos
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Saved Games
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Pictures
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Music
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Links
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Favorites
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Downloads
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Documents
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Desktop
[2012/09/06 13:46:14 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012/09/06 13:46:14 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\AppData
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Temp
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Microsoft
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Media Center Programs
[2012/09/06 13:46:14 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Macromedia
[2012/09/06 13:46:11 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/09/06 13:46:11 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012/09/06 13:46:11 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/09/06 13:46:02 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/09/06 13:46:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/09/06 13:45:31 | 000,000,000 | ---D | C] -- C:\Windows\softwaredistribution.bak
[2012/09/06 13:42:22 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
[2012/09/06 13:38:08 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/09/06 13:17:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2012/09/06 13:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2012/09/06 12:55:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Adobe
[2012/09/06 12:52:54 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Skype
[2012/09/06 12:52:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\ATI
[2012/09/06 12:52:27 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\ATI
[2012/09/06 12:51:25 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\PDFC
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Searches
[2012/09/06 12:50:57 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012/09/06 12:50:57 | 000,000,000 | -H-D | C] -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012/09/06 12:50:49 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Identities
[2012/09/06 12:50:46 | 000,000,000 | R--D | C] -- C:\Users\thomas1gun\Contacts
[2012/09/06 12:50:43 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\VirtualStore
[2012/09/06 12:50:24 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\RemEngine
[2012/09/06 12:45:10 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Roaming\Hewlett-Packard
[2012/09/06 12:45:07 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard
[2012/09/06 12:44:58 | 000,000,000 | ---D | C] -- C:\Users\thomas1gun\AppData\Local\Hewlett-Packard_Company
[2012/08/30 21:03:48 | 000,128,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/01 10:13:40 | 000,038,632 | ---- | C] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 180 Days ==========

[2012/11/19 13:40:59 | 000,000,302 | ---- | M] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:08:33 | 000,024,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/11/19 12:05:35 | 000,815,210 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/11/19 12:05:35 | 000,688,350 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/11/19 12:05:35 | 000,128,582 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/11/19 12:01:31 | 000,000,439 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2012/11/19 12:01:26 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/11/19 12:00:56 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/11/19 12:00:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/11/19 12:00:32 | 2808,225,792 | -HS- | M] () -- C:\hiberfil.sys
[2012/11/18 19:01:54 | 000,000,023 | ---- | M] () -- C:\Windows\BlendSettings.ini
[2012/11/18 05:48:58 | 000,001,154 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/11/18 00:02:45 | 000,002,198 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/11/17 22:20:51 | 004,568,982 | R--- | M] () -- C:\Users\thomas1gun\Documents\windowstweaksguide.pdf
[2012/11/15 13:04:39 | 000,001,252 | ---- | M] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:58:09 | 000,279,520 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/11/14 01:55:16 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012/11/14 01:55:16 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012/11/14 01:54:29 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\wdf01000.sys.mui
[2012/11/14 01:54:28 | 000,054,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2012/11/14 01:54:28 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2012/11/14 01:54:28 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:53:29 | 000,246,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2012/11/14 01:53:29 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012/11/14 01:53:29 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2012/11/14 01:53:29 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2012/11/14 01:53:29 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2012/11/14 01:52:59 | 002,312,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/11/14 01:52:59 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/11/14 01:52:59 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/11/14 01:52:59 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/11/14 01:52:59 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/11/14 01:52:59 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/11/14 01:52:59 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/11/14 01:52:59 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/11/14 01:52:59 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/11/14 01:52:58 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/11/14 01:52:58 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/11/14 01:52:58 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/11/14 01:52:58 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/11/14 01:52:58 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/11/14 01:52:58 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/11/14 01:50:39 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2012/11/14 01:50:39 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2012/11/14 01:50:39 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2012/11/14 01:50:39 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/14 01:50:38 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2012/11/14 01:50:19 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2012/11/14 01:50:19 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2012/11/10 21:47:46 | 000,002,141 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/01 10:31:08 | 000,040,712 | ---- | M] (Anchorfree Inc.) -- C:\Windows\SysNative\drivers\taphss6.sys
[2012/11/01 10:25:26 | 000,042,248 | ---- | M] (AnchorFree Inc.) -- C:\Windows\SysNative\drivers\hssdrv6.sys
[2012/10/29 21:32:32 | 064,010,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MRT.exe
[2012/10/26 19:45:49 | 000,001,234 | ---- | M] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/25 00:30:26 | 005,773,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2012/10/25 00:30:26 | 004,916,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2012/10/25 00:30:26 | 003,174,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2012/10/25 00:30:26 | 001,123,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2012/10/25 00:30:26 | 001,048,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2012/10/25 00:30:26 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2012/10/25 00:30:26 | 000,322,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2012/10/25 00:30:26 | 000,269,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2012/10/25 00:30:26 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2012/10/25 00:30:26 | 000,228,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2012/10/25 00:30:26 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2012/10/25 00:30:26 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012/10/25 00:30:26 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2012/10/25 00:30:26 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2012/10/25 00:30:26 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012/10/25 00:30:26 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2012/10/25 00:30:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012/10/25 00:30:26 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2012/10/25 00:30:26 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2012/10/25 00:30:26 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012/10/25 00:30:26 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012/10/25 00:30:26 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\en-US\tsusbflt.sys.mui
[2012/10/25 00:30:00 | 000,307,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2012/10/25 00:29:59 | 001,448,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012/10/23 12:57:39 | 000,002,170 | ---- | M] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/10/21 23:02:26 | 000,001,176 | ---- | M] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/21 15:07:46 | 000,000,009 | ---- | M] () -- C:\END
[2012/10/19 11:53:05 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 21:12:26 | 000,001,990 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | M] () -- C:\Windows\eReg.dat
[2012/10/17 20:10:24 | 137,398,872 | ---- | M] (Microsoft Corporation) -- C:\Users\thomas1gun\Desktop\Halo.exe
[2012/10/17 19:22:53 | 000,001,237 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/10/17 19:22:52 | 000,001,381 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,002,581 | ---- | M] () -- C:\Users\Public\Desktop\WildTangent Games App - hp.lnk
[2012/10/17 19:22:47 | 000,002,202 | ---- | M] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/10/17 19:22:47 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/10/17 19:22:47 | 000,002,109 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Office 2010.lnk
[2012/10/17 19:22:47 | 000,001,940 | ---- | M] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/17 19:22:47 | 000,001,626 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/10/17 19:22:47 | 000,001,357 | ---- | M] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/10/17 19:22:47 | 000,001,136 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/10/17 19:22:47 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/10 10:01:31 | 005,559,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012/10/10 10:01:31 | 003,968,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012/10/10 10:01:31 | 003,914,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012/10/10 10:01:24 | 001,162,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/10/10 10:01:24 | 000,424,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/10/10 10:01:24 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/10/10 10:01:24 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/10/10 10:01:24 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/10/10 10:01:24 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/10/10 10:01:24 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/10/10 10:01:24 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/10/10 10:01:24 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/10/10 10:01:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/10/10 10:01:24 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/10/10 10:01:24 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/10/10 10:01:24 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/10/10 10:01:15 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012/10/10 10:00:37 | 001,464,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012/10/10 10:00:37 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012/10/09 18:43:00 | 000,703,632 | ---- | M] (MindSpark) -- C:\Program Files (x86)\gtUninstall GamingWonderland.dll
[2012/10/09 18:43:00 | 000,175,240 | ---- | M] () -- C:\Program Files (x86)\gtres.dll
[2012/10/09 14:45:14 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/10/09 14:45:14 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/10/09 14:45:09 | 010,220,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2012/10/06 12:15:36 | 000,002,062 | ---- | M] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | M] () -- C:\Windows\game.ini
[2012/10/03 07:02:10 | 000,005,496 | ---- | M] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/03 00:54:12 | 000,000,888 | ---- | M] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | M] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/09/21 00:50:42 | 002,725,977 | ---- | M] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/15 20:49:31 | 000,030,200 | ---- | M] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:31:55 | 000,000,127 | ---- | M] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 14:46:47 | 000,795,856 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/09/11 20:47:39 | 005,231,224 | R--- | M] () -- C:\Users\thomas1gun\Documents\obliv_pc_manual_web.pdf
[2012/09/11 12:46:03 | 000,001,367 | ---- | M] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/10 18:27:03 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | M] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 12:23:35 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2012/09/09 08:07:20 | 000,000,860 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/09/07 22:34:46 | 000,004,096 | ---- | M] () -- C:\Windows\d3dx.dat
[2012/09/06 22:08:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:46:39 | 000,000,000 | RHS- | M] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012/09/06 13:44:28 | 000,108,227 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012/08/30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys
[2012/08/30 02:01:30 | 000,015,432 | ---- | M] () -- C:\Windows\Launcher.exe
[2012/08/26 22:40:23 | 000,003,044 | ---- | M] () -- C:\precomplete
[2012/08/26 22:40:22 | 009,018,306 | ---- | M] () -- C:\omni.ja
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\softokn3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\nssdbm3.chk
[2012/08/26 22:40:16 | 000,000,478 | ---- | M] () -- C:\freebl3.chk
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32_InUse.dll
[2012/08/26 22:40:08 | 000,041,984 | ---- | M] (Mozilla.org) -- C:\mozMapi32.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy_InUse.dll
[2012/08/26 22:40:08 | 000,010,752 | ---- | M] (Mozilla.org) -- C:\MapiProxy.dll
[2012/08/26 22:40:07 | 000,631,296 | ---- | M] (Mozilla Foundation) -- C:\nss3.dll
[2012/08/26 22:40:07 | 000,363,520 | ---- | M] (Mozilla Foundation) -- C:\nssckbi.dll
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe
[2012/08/26 22:40:07 | 000,251,392 | ---- | M] (Mozilla Foundation) -- C:\freebl3.dll
[2012/08/26 22:40:07 | 000,150,528 | ---- | M] () -- C:\nsldap32v60.dll
[2012/08/26 22:40:07 | 000,147,968 | ---- | M] (Mozilla Foundation) -- C:\softokn3.dll
[2012/08/26 22:40:07 | 000,138,240 | ---- | M] (Mozilla Foundation) -- C:\ssl3.dll
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:07 | 000,089,088 | ---- | M] (Mozilla Foundation) -- C:\nssdbm3.dll
[2012/08/26 22:40:07 | 000,085,504 | ---- | M] (Mozilla Foundation) -- C:\nssutil3.dll
[2012/08/26 22:40:07 | 000,083,968 | ---- | M] (Mozilla Foundation) -- C:\smime3.dll
[2012/08/26 22:40:07 | 000,014,848 | ---- | M] () -- C:\nsldappr32v60.dll
[2012/08/26 22:40:07 | 000,010,240 | ---- | M] () -- C:\nsldif32v60.dll
[2012/08/26 22:40:07 | 000,004,003 | ---- | M] () -- C:\crashreporter.ini
[2012/08/26 22:40:07 | 000,000,787 | ---- | M] () -- C:\crashreporter-override.ini
[2012/08/26 22:40:03 | 016,877,056 | ---- | M] (Mozilla Foundation) -- C:\xul.dll
[2012/08/26 22:40:03 | 002,147,328 | ---- | M] (Mozilla Foundation) -- C:\gkmedias.dll
[2012/08/26 22:40:03 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\D3DCompiler_43.dll
[2012/08/26 22:40:03 | 002,054,144 | ---- | M] () -- C:\mozjs.dll
[2012/08/26 22:40:03 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\d3dx9_43.dll
[2012/08/26 22:40:03 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\msvcr100.dll
[2012/08/26 22:40:03 | 000,569,856 | ---- | M] (sqlite.org) -- C:\mozsqlite3.dll
[2012/08/26 22:40:03 | 000,423,424 | ---- | M] (Mozilla Foundation) -- C:\libGLESv2.dll
[2012/08/26 22:40:03 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\msvcp100.dll
[2012/08/26 22:40:03 | 000,159,232 | ---- | M] (Mozilla Foundation) -- C:\nspr4.dll
[2012/08/26 22:40:03 | 000,081,920 | ---- | M] (Mozilla Foundation) -- C:\libEGL.dll
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:03 | 000,041,472 | ---- | M] (Mozilla Foundation) -- C:\mozglue.dll
[2012/08/26 22:40:03 | 000,019,731 | ---- | M] () -- C:\blocklist.xml
[2012/08/26 22:40:03 | 000,014,848 | ---- | M] (Mozilla Foundation) -- C:\plc4.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\xpcom.dll
[2012/08/26 22:40:03 | 000,012,288 | ---- | M] (Mozilla Foundation) -- C:\plds4.dll
[2012/08/26 22:40:03 | 000,011,776 | ---- | M] (Mozilla Foundation) -- C:\AccessibleMarshal.dll
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,008,704 | ---- | M] (Mozilla Foundation) -- C:\mozalloc.dll
[2012/08/26 22:40:03 | 000,001,111 | ---- | M] () -- C:\updater.ini
[2012/08/26 22:40:03 | 000,000,454 | ---- | M] () -- C:\application.ini
[2012/08/26 22:40:03 | 000,000,206 | ---- | M] () -- C:\dependentlibs.list
[2012/08/26 22:40:03 | 000,000,140 | ---- | M] () -- C:\platform.ini
[2012/08/26 22:40:03 | 000,000,131 | ---- | M] () -- C:\update-settings.ini
[2012/08/26 22:39:13 | 000,036,062 | ---- | M] () -- C:\removed-files
[2012/08/23 06:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2012/08/22 10:12:40 | 000,376,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012/08/22 10:12:33 | 000,288,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012/08/21 13:01:00 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2012/08/02 09:58:52 | 000,574,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2012/08/01 10:13:40 | 000,038,632 | ---- | M] (AnchorFree Inc) -- C:\Windows\SysNative\drivers\taphss.sys
[2012/07/20 12:24:42 | 000,024,960 | ---- | M] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2012/07/04 14:16:43 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/07/04 14:13:27 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/07/04 13:14:34 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/07/04 12:26:03 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2012/06/05 22:02:54 | 001,133,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2012/06/05 21:03:06 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012/06/02 14:19:46 | 000,038,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012/06/02 14:19:42 | 000,186,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012/06/02 14:19:42 | 000,057,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012/06/02 14:19:42 | 000,044,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012/06/02 14:19:23 | 000,701,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012/06/02 14:15:31 | 002,622,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012/06/02 14:15:12 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012/06/02 14:15:08 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/11/17 18:22:44 | 000,175,240 | ---- | C] () -- C:\Program Files (x86)\gtres.dll
[2012/11/15 13:04:39 | 000,001,252 | ---- | C] () -- C:\Users\thomas1gun\Desktop\4K Video Downloader.lnk
[2012/11/14 01:54:14 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 01:50:24 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/10 21:47:46 | 000,002,141 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Pacific Assault™.lnk
[2012/11/09 10:28:16 | 000,001,154 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Windows Update Troubleshooting Info.lnk
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\tasks\SmartDefrag_Startup.job
[2012/10/21 15:07:07 | 000,017,720 | ---- | C] () -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys
[2012/10/21 15:07:06 | 000,001,176 | ---- | C] () -- C:\Users\Public\Desktop\Smart Defrag 2.lnk
[2012/10/19 11:53:05 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Breakthrough.lnk
[2012/10/18 20:53:20 | 000,000,843 | ---- | C] () -- C:\Windows\eReg.dat
[2012/10/18 20:48:15 | 000,001,990 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault™ Spearhead.lnk
[2012/10/18 15:06:31 | 000,001,234 | ---- | C] () -- C:\Users\Public\Desktop\Command & Conquer The First Decade.lnk
[2012/10/17 22:12:01 | 000,015,432 | ---- | C] () -- C:\Windows\Launcher.exe
[2012/10/16 23:07:15 | 000,002,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/10/15 21:38:45 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\DOSBox 0.74.lnk
[2012/10/14 00:45:15 | 000,001,847 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/10/14 00:43:56 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/10/06 12:11:38 | 000,002,062 | ---- | C] () -- C:\Users\Public\Desktop\The Conquerors.lnk
[2012/10/05 21:40:01 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\StarCraft - Brood War.lnk
[2012/10/04 23:09:45 | 000,001,940 | ---- | C] () -- C:\Users\Public\Desktop\Medal of Honor Allied Assault.lnk
[2012/10/03 13:23:36 | 000,000,336 | ---- | C] () -- C:\Windows\game.ini
[2012/10/03 10:55:47 | 000,000,009 | ---- | C] () -- C:\END
[2012/10/03 06:12:47 | 000,005,496 | ---- | C] () -- C:\Windows\SysNative\drivers\kgpcpy.cfg
[2012/10/01 16:33:46 | 000,000,115 | ---- | C] () -- C:\Program Files (x86)\WinZip Registry Optimizer.7z.001
[2012/10/01 13:55:42 | 002,725,977 | ---- | C] () -- C:\Users\thomas1gun\Documents\wipo_pub_943_2012.pdf
[2012/09/30 22:14:50 | 000,000,888 | ---- | C] () -- C:\Windows\SysWow64\drivers\kgpfr2.cfg
[2012/09/15 20:49:33 | 000,030,200 | ---- | C] () -- C:\Users\thomas1gun\Documents\LWSLogFiles.zip
[2012/09/15 19:39:21 | 000,001,626 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Webcam Software .lnk
[2012/09/15 19:31:55 | 000,000,127 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Support + Downloads.url
[2012/09/15 18:52:59 | 000,002,181 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/09/15 17:29:04 | 000,001,237 | ---- | C] () -- C:\Users\thomas1gun\Desktop\Hardware Helper.lnk
[2012/09/15 14:46:57 | 000,002,198 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/09/11 21:01:11 | 000,002,202 | ---- | C] () -- C:\Users\Public\Desktop\TES Construction Set (Oblivion).lnk
[2012/09/11 19:30:57 | 000,002,170 | ---- | C] () -- C:\Users\Public\Desktop\Oblivion.lnk
[2012/09/11 07:49:08 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2012/09/10 18:27:03 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex # 2.lnk
[2012/09/10 18:26:59 | 000,001,087 | ---- | C] () -- C:\Users\thomas1gun\Desktop\FreeAgent GoFlex - Shortcut.lnk
[2012/09/09 01:26:44 | 009,018,306 | ---- | C] () -- C:\omni.ja
[2012/09/09 01:26:44 | 002,054,144 | ---- | C] () -- C:\mozjs.dll
[2012/09/09 01:26:44 | 000,150,528 | ---- | C] () -- C:\nsldap32v60.dll
[2012/09/09 01:26:44 | 000,036,062 | ---- | C] () -- C:\removed-files
[2012/09/09 01:26:44 | 000,014,848 | ---- | C] () -- C:\nsldappr32v60.dll
[2012/09/09 01:26:44 | 000,010,240 | ---- | C] () -- C:\nsldif32v60.dll
[2012/09/09 01:26:44 | 000,003,044 | ---- | C] () -- C:\precomplete
[2012/09/09 01:26:44 | 000,001,111 | ---- | C] () -- C:\updater.ini
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\softokn3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\nssdbm3.chk
[2012/09/09 01:26:44 | 000,000,478 | ---- | C] () -- C:\freebl3.chk
[2012/09/09 01:26:44 | 000,000,206 | ---- | C] () -- C:\dependentlibs.list
[2012/09/09 01:26:44 | 000,000,140 | ---- | C] () -- C:\platform.ini
[2012/09/09 01:26:44 | 000,000,131 | ---- | C] () -- C:\update-settings.ini
[2012/09/09 01:26:43 | 000,019,731 | ---- | C] () -- C:\blocklist.xml
[2012/09/09 01:26:43 | 000,004,003 | ---- | C] () -- C:\crashreporter.ini
[2012/09/09 01:26:43 | 000,000,787 | ---- | C] () -- C:\crashreporter-override.ini
[2012/09/09 01:26:43 | 000,000,454 | ---- | C] () -- C:\application.ini
[2012/09/09 01:07:19 | 000,001,357 | ---- | C] () -- C:\Users\Public\Desktop\SeaMonkey.lnk
[2012/09/09 01:07:18 | 000,001,381 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\SeaMonkey.lnk
[2012/09/07 22:34:46 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2012/09/07 18:11:16 | 001,877,073 | ---- | C] () -- C:\Users\thomas1gun\Documents\Administrator-lxduuser.pdf
[2012/09/07 17:42:57 | 001,400,320 | ---- | C] () -- C:\Windows\SysNative\lxdudrs64.dll
[2012/09/07 17:42:57 | 001,036,288 | ---- | C] () -- C:\Windows\SysWow64\lxdudrs.dll
[2012/09/07 17:42:57 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\lxducaps.dll
[2012/09/07 17:42:57 | 000,069,632 | ---- | C] () -- C:\Windows\SysWow64\lxducnv4.dll
[2012/09/07 17:42:57 | 000,054,784 | ---- | C] () -- C:\Windows\SysNative\lxducnv464.dll
[2012/09/07 17:42:57 | 000,025,600 | ---- | C] () -- C:\Windows\SysNative\lxducaps64.dll
[2012/09/06 23:28:31 | 000,065,536 | ---- | C] () -- C:\Windows\SysNative\Ikeext.etl
[2012/09/06 22:08:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_EhStorPwdDrv_01_09_00.Wdf
[2012/09/06 20:50:43 | 000,001,136 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/09/06 20:50:42 | 000,001,148 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/09/06 13:46:43 | 000,001,787 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warranty.lnk
[2012/09/06 13:46:14 | 000,000,290 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012/09/06 13:46:14 | 000,000,272 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysWow64\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:41:09 | 000,000,000 | RHS- | C] () -- C:\Windows\SysNative\drivers\103C_HP_cPC_p6-2003w_Y53316J_0U_Q4CE143_E11NA3MRW604_4A_I2ACF_SPEGATRON CORPORATION_V1.01_B7.06_T110816_W73-1_L409_M3571_J1000_7AMD_8F10_92.40_#120906_N10EC8168_Z_G10029642_Ohp DVD-RAM GH80N ATA Device_DHWP2935.MRK
[2012/09/06 13:38:08 | 2808,225,792 | -HS- | C] () -- C:\hiberfil.sys
[2012/09/06 13:00:13 | 000,001,367 | ---- | C] () -- C:\Users\thomas1gun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForthomas1gun.job
[2012/01/18 05:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012/01/18 05:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012/01/18 05:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2011/10/07 11:41:23 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/10/07 11:38:57 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/06/20 23:07:00 | 000,007,736 | ---- | C] () -- C:\Windows\hpDSTRES.DLL
[2011/06/10 22:45:16 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011/02/11 09:15:43 | 000,795,856 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 21:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 20:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 19:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/11/15 04:04:28 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Babylon
[2012/09/16 02:02:20 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Blio
[2012/10/03 14:44:43 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\BlueSprig
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\DriverCure
[2012/10/12 07:35:56 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Free Download Manager
[2012/10/03 10:55:04 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\IObit
[2012/09/15 19:40:29 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Leadertech
[2012/09/18 09:44:11 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Nico Mak Computing
[2012/11/15 13:04:36 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\OpenCandy
[2012/10/03 10:40:21 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\PC Utility Kit
[2012/09/07 04:12:09 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\SpeedyPC Software
[2012/11/14 17:33:51 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\thriXXX
[2012/09/15 18:50:46 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\WinBatch
[2012/09/16 13:59:34 | 000,000,000 | ---D | M] -- C:\Users\thomas1gun\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009/07/13 21:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/13 21:08:49 | 000,032,298 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/09/06 12:50:29 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForthomas1gun.job
[2012/09/13 12:50:48 | 000,000,352 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForTHOMAS1GUN-HP$.job
[2012/10/21 15:11:54 | 000,000,302 | ---- | C] () -- C:\Windows\Tasks\SmartDefrag_Startup.job

< %SYSTEMDRIVE%\*.exe >
[2012/08/26 22:40:07 | 000,111,616 | ---- | M] (Mozilla Foundation) -- C:\crashreporter.exe
[2012/08/26 22:40:03 | 000,009,728 | ---- | M] (Mozilla Corporation) -- C:\plugin-container.exe
[2012/08/26 22:40:03 | 000,068,096 | ---- | M] (mozilla.org) -- C:\seamonkey.exe
[2012/08/26 22:40:07 | 000,253,440 | ---- | M] (Mozilla Foundation) -- C:\updater.exe

< %systemdrive%\$Recycle.Bin|@;true;true;true >

< MD5 for: EXPLORER.EXE >
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/10/07 11:35:24 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 19:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/10/07 11:35:24 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/20 19:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: SERVICES >
[2009/06/10 13:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services

< MD5 for: SERVICES.EXE >
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/13 17:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
[2010/11/20 23:06:16 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/13 20:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
[2009/06/10 12:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof

< MD5 for: SERVICES.MSC >
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
[2010/11/20 23:06:14 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
[2009/06/10 12:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
[2010/11/20 23:06:17 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/10 13:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
[2009/07/13 12:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml

< MD5 for: SVCHOST.EXE >
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/13 17:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/13 17:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 19:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 19:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 19:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s >

< %systemroot%\*. /mp /s >

< %Temp%\smtmp\*.* /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files (x86)\Mozilla Firefox\firefox.exe [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -preferences [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide [2011/10/07 11:29:35 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -extoff [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files (x86)\Internet Explorer\iexplore.exe [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /HideShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /ShowShortcuts [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\SeaMonkey\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\Program Files (x86)\SeaMonkey\seamonkey.exe [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -preferences [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\Program Files (x86)\SeaMonkey\seamonkey.exe" -safe-mode [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/13 19:34:21 | 000,889,848 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE [2012/11/13 19:34:55 | 000,917,984 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2011/10/07 11:29:34 | 000,089,088 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE [2012/11/14 01:52:58 | 000,748,704 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\SEAMONKEY\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2012/11/02 11:54:09 | 000,850,796 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -PREFERENCES [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\SEAMONKEY.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\SEAMONKEY\SEAMONKEY.EXE" -SAFE-MODE [2012/11/02 11:54:09 | 000,068,096 | ---- | M] (mozilla.org)

< End of report >
this stops certain Downloads, Like games & patches for games.
Would like to Know where it came from, (will post warnings to all + freespeak.net), & how to get RID of it.
Almost seems like a MS-like product or a Back door into Windows 7-? Possible??
  • 0

#10
Render

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Please post MBAM log.
  • 0

#11
thomas1gun

thomas1gun

    New Member

  • Member
  • Pip
  • 6 posts
Why should I post again, It's already in my original post. You don't seem to want read it, So I'll Find Help else-where. Thanks for nada.
  • 0

#12
Render

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Sorry, but I don't see it in any of your posts. Am I missing something?
  • 0

#13
Render

Render

    Trusted Helper

  • Malware Removal
  • 4,195 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

featured