Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

getting a .dll popup error whenever I log in [Closed]

Started by Lucky Dearly , Jan 17 2013 07:43 PM

  • This topic is locked This topic is locked

#1
Lucky Dearly
Posted 17 January 2013 - 07:43 PM

Lucky Dearly

    Member

  • Member
  • PipPipPip
  • 349 posts
hey guys, these past few days I've been getting virus alerts from AVG and have been clearing it with AVG and Malware Bytes but now my pc is giving me an error message everytime I log in

there was a problem starting c:\users\gamerpc\appdata\roaming\mthpsy.dll

here's an OTL log just incase

OTL logfile created on: 1/17/2013 5:20:25 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\gamerpc\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.97 Gb Total Physical Memory | 5.28 Gb Available Physical Memory | 66.25% Memory free
15.93 Gb Paging File | 12.70 Gb Available in Paging File | 79.70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 631.61 Gb Free Space | 67.81% Space Free | Partition Type: NTFS
Drive J: | 931.48 Gb Total Space | 622.76 Gb Free Space | 66.86% Space Free | Partition Type: NTFS

Computer Name: NWOFAN-PC | User Name: gamerpc | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/17 17:19:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\gamerpc\Desktop\OTL.exe
PRC - [2013/01/17 17:09:06 | 000,059,964 | ---- | M] (Macrovision Europe Ltd.) -- C:\Users\gamerpc\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001
PRC - [2013/01/17 11:03:00 | 000,541,608 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2013/01/08 18:15:18 | 000,699,400 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe
PRC - [2013/01/04 02:11:19 | 001,046,984 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
PRC - [2013/01/04 02:11:19 | 000,894,920 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe
PRC - [2012/12/29 02:53:20 | 000,383,416 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/12/29 02:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/12/18 00:38:48 | 000,308,368 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/12/14 16:49:28 | 000,512,360 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/12/11 03:52:44 | 003,147,384 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
PRC - [2012/12/10 11:11:44 | 001,342,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
PRC - [2012/12/09 16:12:47 | 000,969,104 | ---- | M] (BitTorrent, Inc.) -- C:\Users\gamerpc\Desktop\Emulators\uTorrent.exe
PRC - [2012/12/04 22:37:58 | 005,379,472 | ---- | M] (ManyCam LLC) -- C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe
PRC - [2012/11/30 11:13:07 | 001,354,736 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2012/11/29 18:06:58 | 001,263,512 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
PRC - [2012/11/28 16:41:36 | 001,123,720 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
PRC - [2012/11/28 16:34:18 | 000,793,600 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
PRC - [2012/11/26 03:14:06 | 000,213,344 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\ytbb.exe
PRC - [2012/11/22 10:29:16 | 003,290,304 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012/11/15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
PRC - [2012/10/24 20:31:15 | 000,079,360 | ---- | M] (Creative Labs) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
PRC - [2012/10/24 20:28:46 | 005,019,360 | ---- | M] (FNet Co., Ltd.) -- C:\Program Files (x86)\XFastUSB\XFastUsb.exe
PRC - [2012/10/23 00:25:10 | 003,108,480 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe
PRC - [2012/10/23 00:25:06 | 002,744,960 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
PRC - [2012/10/22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2012/10/19 14:51:08 | 000,395,200 | ---- | M] (Eastman Kodak Company) -- C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
PRC - [2012/10/19 08:07:16 | 000,255,880 | ---- | M] (Inuvo Inc.) -- C:\Users\gamerpc\AppData\LocalLow\alotservice\alotservice.exe
PRC - [2012/10/15 11:58:22 | 000,779,200 | ---- | M] (Eastman Kodak Company) -- C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
PRC - [2012/10/04 11:47:20 | 027,112,568 | ---- | M] (ooVoo LLC) -- C:\Program Files (x86)\ooVoo\ooVoo.exe
PRC - [2012/09/17 19:46:35 | 000,505,872 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
PRC - [2012/09/17 19:46:25 | 000,295,440 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
PRC - [2012/09/17 19:46:23 | 000,078,352 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
PRC - [2012/09/17 19:46:19 | 000,090,640 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
PRC - [2012/08/13 09:57:02 | 010,376,704 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2012/08/13 09:57:02 | 010,368,512 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2012/06/28 07:40:52 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\Winamp\winampa.exe
PRC - [2012/06/11 15:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
PRC - [2012/05/30 09:18:07 | 004,331,392 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AIM\aim.exe
PRC - [2012/05/25 03:25:02 | 006,595,928 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
PRC - [2012/02/07 16:53:32 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/02/07 16:52:04 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/10/01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011/10/01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2010/11/05 22:54:22 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/11/05 22:54:20 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/03/07 23:27:49 | 000,041,800 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\Common Files\AOL\1352139576\ee\aolsoftware.exe
PRC - [2009/12/23 13:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009/11/06 11:58:38 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/07/08 14:32:50 | 001,233,195 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe
PRC - [2009/05/04 18:05:04 | 000,241,789 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
PRC - [2009/02/22 19:43:56 | 000,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2009/01/29 14:20:49 | 000,057,344 | ---- | M] (SlySoft, Inc.) -- C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
PRC - [2008/11/09 12:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/17 17:10:20 | 000,086,016 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM192C.tmp
MOD - [2013/01/17 17:10:19 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM15D7.tmp
MOD - [2013/01/17 17:10:19 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM14EB.tmp
MOD - [2013/01/17 17:10:19 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM145D.tmp
MOD - [2013/01/17 17:10:19 | 000,086,016 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM1737.tmp
MOD - [2013/01/17 17:10:19 | 000,086,016 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM1725.tmp
MOD - [2013/01/17 17:10:19 | 000,086,016 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM1704.tmp
MOD - [2013/01/17 17:10:18 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM1323.tmp
MOD - [2013/01/17 17:10:18 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM11F9.tmp
MOD - [2013/01/17 17:10:18 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM10AF.tmp
MOD - [2013/01/17 17:10:17 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMF08.tmp
MOD - [2013/01/17 17:10:17 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEME5A.tmp
MOD - [2013/01/17 17:10:17 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMD6E.tmp
MOD - [2013/01/17 17:10:16 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMC53.tmp
MOD - [2013/01/17 17:10:16 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMABC.tmp
MOD - [2013/01/17 17:10:16 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM953.tmp
MOD - [2013/01/17 17:10:15 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM7AC.tmp
MOD - [2013/01/17 17:10:15 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM70E.tmp
MOD - [2013/01/17 17:10:15 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM660.tmp
MOD - [2013/01/17 17:10:15 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM5F1.tmp
MOD - [2013/01/17 17:10:15 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM591.tmp
MOD - [2013/01/17 17:10:15 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM429.tmp
MOD - [2013/01/17 17:10:14 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM3B9.tmp
MOD - [2013/01/17 17:10:14 | 000,120,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM28E.tmp
MOD - [2013/01/17 17:10:14 | 000,072,192 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMA6.tmp
MOD - [2013/01/17 17:10:14 | 000,072,192 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEM125.tmp
MOD - [2013/01/17 17:10:13 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFCF0.tmp
MOD - [2013/01/17 17:10:13 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFCDF.tmp
MOD - [2013/01/17 17:10:13 | 000,072,704 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFF5D.tmp
MOD - [2013/01/17 17:10:13 | 000,072,192 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFF1C.tmp
MOD - [2013/01/17 17:10:13 | 000,064,000 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFE0D.tmp
MOD - [2013/01/17 17:10:13 | 000,057,344 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFEAD.tmp
MOD - [2013/01/17 17:10:13 | 000,053,760 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFE2E.tmp
MOD - [2013/01/17 17:10:13 | 000,053,760 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFD02.tmp
MOD - [2013/01/17 17:10:12 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFC4E.tmp
MOD - [2013/01/17 17:10:12 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFC3D.tmp
MOD - [2013/01/17 17:10:12 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFBED.tmp
MOD - [2013/01/17 17:10:12 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFB5C.tmp
MOD - [2013/01/17 17:10:12 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFAFD.tmp
MOD - [2013/01/17 17:10:12 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFA40.tmp
MOD - [2013/01/17 17:10:12 | 000,068,608 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMF925.tmp
MOD - [2013/01/17 17:10:12 | 000,056,832 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFBCC.tmp
MOD - [2013/01/17 17:10:12 | 000,056,320 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMFCAE.tmp
MOD - [2013/01/17 17:10:12 | 000,033,792 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\YTMP7MC8AA\TAAF923.tmp
MOD - [2013/01/17 17:10:11 | 000,075,776 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMF630.tmp
MOD - [2013/01/17 17:10:11 | 000,056,320 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMF642.tmp
MOD - [2013/01/17 17:10:11 | 000,055,296 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE\DEMF837.tmp
MOD - [2013/01/17 17:09:27 | 000,592,896 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0059\~de6248.tmp
MOD - [2013/01/17 17:09:06 | 000,697,884 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0059\~df394b.tmp
MOD - [2013/01/17 11:04:35 | 000,647,168 | ---- | M] () -- C:\Program Files (x86)\Steam\sdl.dll
MOD - [2013/01/17 11:02:54 | 020,320,240 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2013/01/17 11:02:47 | 001,100,800 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll
MOD - [2013/01/17 11:02:47 | 000,969,640 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2013/01/17 11:02:47 | 000,192,000 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll
MOD - [2013/01/17 11:02:47 | 000,124,416 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll
MOD - [2013/01/09 13:13:03 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\4d6518ef6ae8d6f005c49ab1c86de7fe\IAStorCommon.ni.dll
MOD - [2013/01/09 13:13:02 | 000,475,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\ab54c04b3df40416205883b4049fe273\IAStorUtil.ni.dll
MOD - [2013/01/09 05:24:15 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
MOD - [2013/01/09 05:23:57 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll
MOD - [2013/01/09 05:23:53 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013/01/09 05:23:43 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
MOD - [2013/01/09 05:23:40 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013/01/09 05:23:37 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
MOD - [2013/01/09 05:23:36 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013/01/09 05:23:32 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2013/01/04 02:11:19 | 001,828,808 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll
MOD - [2013/01/04 02:11:19 | 001,046,984 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2013/01/04 02:11:19 | 000,566,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\13.3.2\avgdttbx.dll
MOD - [2013/01/04 02:11:19 | 000,137,672 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.3.2\SiteSafety.dll
MOD - [2012/12/04 22:33:42 | 002,010,624 | ---- | M] () -- C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
MOD - [2012/12/04 22:33:42 | 001,241,088 | ---- | M] () -- C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
MOD - [2012/12/04 22:33:42 | 000,775,680 | ---- | M] () -- C:\Program Files (x86)\ManyCam\Bin\opencv_highgui220.dll
MOD - [2012/12/04 22:33:42 | 000,241,152 | ---- | M] () -- C:\Program Files (x86)\ManyCam\Bin\opencv_objdetect220.dll
MOD - [2012/12/04 22:33:42 | 000,201,216 | ---- | M] () -- C:\Program Files (x86)\ManyCam\Bin\opencv_video220.dll
MOD - [2012/11/29 18:07:48 | 000,100,248 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2012/11/29 18:06:58 | 001,263,512 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
MOD - [2012/08/27 20:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/08/27 20:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012/08/10 15:51:32 | 000,985,088 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
MOD - [2012/05/30 09:11:47 | 000,176,128 | ---- | M] () -- C:\Program Files (x86)\AIM\nssckbi.dll
MOD - [2012/05/25 03:25:00 | 000,921,600 | ---- | M] () -- C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
MOD - [2012/05/25 03:25:00 | 000,078,336 | ---- | M] () -- C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll
MOD - [2009/04/20 10:55:58 | 000,148,480 | ---- | M] () -- C:\Windows\SysWOW64\APOMngr.DLL
MOD - [2009/02/06 17:52:24 | 000,073,728 | ---- | M] () -- C:\Windows\SysWOW64\CmdRtr.DLL


========== Services (SafeList) ==========

SRV:64bit: - [2012/02/02 21:29:52 | 000,628,448 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV:64bit: - [2011/08/05 12:53:12 | 000,467,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\ZuneWlanCfgSvc.exe -- (ZuneWlanCfgSvc)
SRV:64bit: - [2011/08/05 12:53:12 | 000,306,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\WMZuneComm.exe -- (WMZuneComm)
SRV:64bit: - [2011/08/05 12:53:06 | 008,277,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Zune\ZuneNss.exe -- (ZuneNetworkSvc)
SRV:64bit: - [2011/02/17 06:51:10 | 000,027,760 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\SysNative\ViakaraokeSrv.exe -- (VIAKaraokeService)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/01/17 11:03:00 | 000,541,608 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/01/10 21:57:07 | 000,115,760 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/01/08 19:15:20 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/01/04 02:11:19 | 000,894,920 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe -- (vToolbarUpdater13.3.2)
SRV - [2012/12/29 02:53:20 | 000,383,416 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/12/29 02:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/12/10 11:11:44 | 001,342,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgfws.exe -- (avgfws)
SRV - [2012/11/28 16:34:18 | 000,793,600 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2012/11/22 10:29:16 | 003,290,304 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012/11/15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/11/09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/10/24 20:35:00 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2012/10/24 20:33:14 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2012/10/24 20:31:15 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe -- (Sound Blaster X-Fi MB Licensing Service)
SRV - [2012/10/22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2012/10/19 14:51:08 | 000,395,200 | ---- | M] (Eastman Kodak Company) [Auto | Running] -- C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe -- (Kodak AiO Network Discovery Service)
SRV - [2012/10/19 08:07:16 | 000,255,880 | ---- | M] (Inuvo Inc.) [Auto | Running] -- C:\Users\gamerpc\AppData\LocalLow\alotservice\alotservice.exe -- (AlotService)
SRV - [2012/10/15 11:58:22 | 000,779,200 | ---- | M] (Eastman Kodak Company) [Auto | Running] -- C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe -- (Kodak AiO Status Monitor Service)
SRV - [2012/09/17 19:46:25 | 000,295,440 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe -- (CyberLink PowerDVD 12 Media Server Service)
SRV - [2012/09/17 19:46:23 | 000,078,352 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe -- (CyberLink PowerDVD 12 Media Server Monitor Service)
SRV - [2012/09/17 19:46:19 | 000,090,640 | ---- | M] (CyberLink Corp.) [Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe -- (CLHNServiceForPowerDVD12)
SRV - [2012/06/11 15:22:16 | 000,240,208 | ---- | M] (Microsoft Corporation.) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE -- (BBUpdate)
SRV - [2012/06/11 15:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE -- (BBSvc)
SRV - [2012/02/07 16:53:32 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/02/07 16:52:04 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/01/05 07:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Auto | Stopped] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2011/10/01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010/11/05 22:54:22 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/12/23 13:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009/11/06 11:58:38 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/02/22 19:43:56 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2008/11/09 12:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2006/10/23 04:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe -- (AOL ACS)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/01/04 02:11:19 | 000,030,568 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012/12/26 23:03:10 | 000,032,320 | ---- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FNETTBOH_305.SYS -- (FNETTBOH_305)
DRV:64bit: - [2012/12/14 16:49:28 | 000,024,176 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/11/15 23:33:24 | 000,111,968 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2012/10/24 20:28:47 | 000,015,936 | ---- | M] (FNet Co., Ltd.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\FNETURPX.SYS -- (FNETURPX)
DRV:64bit: - [2012/10/24 15:21:55 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/10/24 14:30:05 | 000,564,824 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2012/10/22 13:02:44 | 000,154,464 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2012/10/15 03:48:50 | 000,063,328 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2012/10/10 19:08:38 | 000,044,928 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys -- (ManyCam)
DRV:64bit: - [2012/10/10 19:08:36 | 000,029,696 | ---- | M] (ManyCam LLC) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple)
DRV:64bit: - [2012/10/02 03:30:38 | 000,185,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2012/09/28 10:32:56 | 000,053,760 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/09/21 03:46:04 | 000,200,032 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2012/09/21 03:46:00 | 000,225,120 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2012/09/14 03:05:18 | 000,040,800 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2012/09/04 10:39:32 | 000,050,296 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgfwd6a.sys -- (Avgfwfd)
DRV:64bit: - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/07/03 07:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/13 11:52:38 | 000,031,016 | ---- | M] (ASRock Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AsrRamDisk.sys -- (AsrRamDisk)
DRV:64bit: - [2011/11/10 00:04:14 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2011/10/01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2011/10/01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2011/10/01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2011/10/01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2011/05/13 15:37:54 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2011/04/21 10:17:04 | 000,471,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/03/10 22:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 22:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/02/17 06:51:06 | 002,153,072 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2010/11/20 19:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 19:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 19:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/05 22:45:48 | 000,438,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/06/11 13:37:14 | 000,015,368 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AsrAppCharger.sys -- (AsrAppCharger)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 16:01:09 | 000,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xnacc.sys -- (xnacc)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/04/08 13:28:46 | 000,068,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2009/02/24 17:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcdbus.sys -- (mcdbus)
DRV:64bit: - [2009/02/17 09:11:25 | 000,031,400 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2008/05/06 15:06:00 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2007/02/15 16:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV:64bit: - [2006/11/29 14:24:49 | 000,024,064 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wanatw64.sys -- (wanatw)
DRV - [2012/09/10 22:31:56 | 000,147,704 | ---- | M] (CyberLink Corp.) [2012/10/24 21:37:32] [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl -- ({73526619-C24F-470B-9BED-53D455FBB5C6})
DRV - [2012/06/20 01:35:49 | 000,083,704 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys -- (ntk_PowerDVD12)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007/02/15 16:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV - [2006/12/24 04:15:18 | 000,027,904 | ---- | M] (Compuware Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\xPADFL02.sys -- (XPADFL02)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
IE - HKLM\..\URLSearchHook: {f0e98552-8e47-4c6c-9b3a-11ab0549f94d} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/...q={searchTerms}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://slirsredirect...mrud=25-11-2012

IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snap.do/...q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snap.do/...q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wwe.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snap.do/...q={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do/...q={searchTerms}
IE - HKCU\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\6.6\ytdToolbarIE.dll (Spigot, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {AF4567E4-9E84-41CA-AD29-EE3375472E02}
IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/...q={searchTerms}
IE - HKCU\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://slirsredirect...mrud=30-10-2012
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7AURU_enUS507
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.c...pr&d=2013-01-04 02:11:43&v=13.3.0.17&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{A531D99C-5A22-449b-83DA-872725C6D0ED}: "URL" = http://search.alot.c...q={searchTerms}
IE - HKCU\..\SearchScopes\{AF4567E4-9E84-41CA-AD29-EE3375472E02}: "URL" = http://search.yahoo....p={searchTerms}
IE - HKCU\..\SearchScopes\{E34B1138-4774-438F-A58E-9E086EA66E8E}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&ilc=12&type=937811"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.wwe.com"
FF - prefs.js..extensions.enabledAddons: ytd%40mybrowserbar.com:6.6
FF - prefs.js..extensions.enabledAddons: %7B635abd67-4fe9-1b23-4f01-e679fa7484c1%7D:2.5.1.20121012015120
FF - prefs.js..extensions.enabledAddons: %7B7affbfae-c4e2-4915-8c0f-00fa3ec610a1%7D:5.74.1.9045
FF - prefs.js..extensions.enabledAddons: %7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.145
FF - prefs.js..extensions.enabledAddons: wtxpcom%40mybrowserbar.com:6.6
FF - prefs.js..extensions.enabledAddons: %7Bb94b04aa-6a61-4de1-b533-f34c1aa7c2fd%7D:3.0.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0
FF - prefs.js..keyword.URL: "http://search.yahoo....type=937811&p="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.3.2\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\13.2.0.5 [2012/11/09 08:07:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/12/12 00:59:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/10 21:57:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/01/10 21:57:00 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 18.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/10 21:57:07 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 18.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/01/10 21:57:00 | 000,000,000 | ---D | M]

[2012/10/23 02:44:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\gamerpc\AppData\Roaming\mozilla\Extensions
[2013/01/14 16:15:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\gamerpc\AppData\Roaming\mozilla\Firefox\Profiles\d318tudj.default\extensions
[2012/10/29 22:02:52 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\gamerpc\AppData\Roaming\mozilla\Firefox\Profiles\d318tudj.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2012/12/08 22:35:18 | 000,000,000 | ---D | M] ("AOL Toolbar") -- C:\Users\gamerpc\AppData\Roaming\mozilla\Firefox\Profiles\d318tudj.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2012/12/11 01:12:01 | 000,415,384 | ---- | M] () (No name found) -- C:\Users\gamerpc\AppData\Roaming\mozilla\firefox\profiles\d318tudj.default\extensions\[email protected]
[2013/01/16 18:30:55 | 000,004,034 | ---- | M] () (No name found) -- C:\Users\gamerpc\AppData\Roaming\mozilla\firefox\profiles\d318tudj.default\extensions\{b94b04aa-6a61-4de1-b533-f34c1aa7c2fd}.xpi
[2012/12/08 22:35:22 | 000,002,529 | ---- | M] () -- C:\Users\gamerpc\AppData\Roaming\mozilla\firefox\profiles\d318tudj.default\searchplugins\aol-search.xml
[2012/11/11 17:30:03 | 000,002,401 | ---- | M] () -- C:\Users\gamerpc\AppData\Roaming\mozilla\firefox\profiles\d318tudj.default\searchplugins\Web Search.xml
[2013/01/10 21:56:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/01/10 21:56:59 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/01/10 21:56:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions
[2013/01/10 21:56:59 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2013/01/12 10:05:23 | 000,000,000 | ---D | M] (Widgi Toolbar Platform) -- C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\WTXPCOM
[2012/12/12 00:59:28 | 000,000,000 | ---D | M] (DivX Plus Web Player HTML5 <video>) -- C:\PROGRAM FILES (X86)\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5
[2012/11/28 14:45:48 | 000,000,000 | ---D | M] (YTD Toolbar) -- C:\PROGRAM FILES (X86)\YTD TOOLBAR\FF
[2013/01/10 21:57:07 | 000,262,704 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/06/28 07:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll
[2013/01/04 02:11:48 | 000,003,573 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/10/10 17:05:38 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/10/10 17:05:38 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://search.yahoo....r=spigot-yhp-ch
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://search.yahoo....r=spigot-yhp-ch
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\gcswf32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
CHR - Extension: Domain Error Assistant = C:\Users\gamerpc\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj\1.1_0\
CHR - Extension: Skype Click to Call = C:\Users\gamerpc\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.4.0.11328_0\
CHR - Extension: Savings-Slider = C:\Users\gamerpc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk\2.3_0\
CHR - Extension: AVG Secure Search = C:\Users\gamerpc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.2.0.5_0\
CHR - Extension: AVG Secure Search = C:\Users\gamerpc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.2.0.5_0\.bak
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\gamerpc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\

O1 HOSTS File: ([2009/06/10 13:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (AOL Toolbar Loader) - {3ef64538-8b54-4573-b48f-4d34b0238ab2} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (ALOT Appbar Helper) - {85F5CF95-EC8F-49fc-BB3F-38C79455CBA2} - C:\Program Files (x86)\alotappbar\bin\BHO\ALOTHelperBHO.dll (Inuvo, Inc)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (AOL Messaging Toolbar Loader) - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
O2 - BHO: (Price Check by AOL) - {D25B97E9-62B2-40CE-BECF-E43A7B879072} - C:\Program Files (x86)\Price Check by AOL\aolpricecheck.dll (AOL Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (YTD Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\6.6\ytdToolbarIE.dll (Spigot, Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AOL Messaging Toolbar) - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (ALOT Appbar) - {A531D99C-5A22-449b-83DA-872725C6D0ED} - C:\Program Files (x86)\alotappbar\bin\alothelper.dll (Inuvo, Inc)
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (YTD Toolbar) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\6.6\ytdToolbarIE.dll (Spigot, Inc.)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Messaging Toolbar) - {61539ECD-CC67-4437-A03C-9AACCBD14326} - C:\Program Files (x86)\AIM Toolbar\aimtb.dll (AOL Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [EKIJ5000StatusMonitor] C:\Windows\SysNative\spool\drivers\x64\3\EKIJ5000MUI.exe (Eastman Kodak Company)
O4:64bit: - HKLM..\Run: [RunDLLEntry] C:\Windows\SysNative\AmbRunE.DLL (Creative Technology Ltd.)
O4:64bit: - HKLM..\Run: [Zune Launcher] C:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [Conime] %windir%\system32\conime.exe File not found
O4 - HKLM..\Run: [CTSyncService] C:\Program Files (x86)\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe ()
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [EKIJ5000StatusMonitor] C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe File not found
O4 - HKLM..\Run: [EKStatusMonitor] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [HostManager] C:\Program Files (x86)\Common Files\AOL\1352139576\ee\aolsoftware.exe (AOL Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [PowerDVD12Agent] C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [PowerDVD12DMREngine] C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe (CyberLink)
O4 - HKLM..\Run: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12 File not found
O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [Smart File Advisor] C:\Program Files (x86)\Smart File Advisor\sfa.exe (Filefacts.net)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [WinampAgent] C:\Program Files (x86)\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [XFastUSB] C:\Program Files (x86)\XFastUSB\XFastUsb.exe (FNet Co., Ltd.)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [AIM] C:\Program Files (x86)\AIM\aim.exe (AOL Inc.)
O4 - HKCU..\Run: [AlcoholAutomount] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKCU..\Run: [ASRockXTU] File not found
O4 - HKCU..\Run: [DAEMON Tools Pro Agent] C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ManyCam] C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe (ManyCam LLC)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [mthpsy] "C:\Windows\System32\rundll32.exe" "C:\Users\gamerpc\AppData\Roaming\mthpsy.dll",write_init_3 File not found
O4 - HKCU..\Run: [ooVoo.exe] C:\Program Files (x86)\ooVoo\oovoo.exe (ooVoo LLC)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [uTorrent] C:\Users\gamerpc\Desktop\Emulators\uTorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [zASRockInstantBoot] File not found
O4 - Startup: C:\Users\gamerpc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FD7777E4-C973-442F-99B2-C53AE23EC24F}: DhcpNameServer = 209.18.47.61 209.18.47.62
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.3.2\ViProtocol.dll ()
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/05/10 21:02:29 | 000,000,000 | ---D | M] - J:\Automatically Add to iTunes -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/01/17 17:19:25 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\gamerpc\Desktop\OTL.exe
[2013/01/17 15:47:45 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{FDC47EE6-E1AD-4AFF-A881-3742627F6B8D}
[2013/01/17 03:47:08 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{961EAA8F-96E5-4342-B01F-56385F1F0F91}
[2013/01/16 15:46:33 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{EA390EDF-B464-492B-A604-224C03B422CC}
[2013/01/16 15:22:07 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2013/01/16 15:21:32 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/01/16 15:21:32 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/01/16 15:21:32 | 000,095,648 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/01/16 03:45:58 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{C0DDC3B6-02F0-4FF0-89AF-DB7EE3267DEE}
[2013/01/15 15:45:41 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{15B61FA9-B158-42B1-AAB5-D020BB5A9892}
[2013/01/15 02:37:18 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{7FB49402-862E-4B7D-9C45-07002E9B4BBB}
[2013/01/14 14:36:43 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{25FDE238-CD2D-491B-80FD-5FBCDF6019F6}
[2013/01/13 17:21:19 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{BE9B623B-990C-42FC-99A2-ED14644BD2ED}
[2013/01/13 02:50:01 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{CB6FF1B9-A0A8-4040-A1E9-8F6E0A71962A}
[2013/01/12 14:49:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{21C21E08-AE46-437F-9561-0EE0DCFBBF8F}
[2013/01/12 02:49:04 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{F58F80EB-EC9C-42D3-AE8F-B6A36AC2DDA2}
[2013/01/11 14:48:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{6E6965E4-3084-4963-A697-83900E4C2FCC}
[2013/01/11 02:23:25 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\SingularityViewer
[2013/01/11 02:23:25 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\SecondLife
[2013/01/11 02:23:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Singularity Viewer
[2013/01/11 02:22:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Singularity
[2013/01/11 01:52:34 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{FA74E606-8C0E-435D-AD05-236FA087EA04}
[2013/01/10 21:56:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/01/10 17:13:09 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2013/01/10 13:51:59 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{ED0D9311-AF3F-4AD2-8FFA-94BA433A54D6}
[2013/01/10 11:54:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2013/01/10 01:51:23 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{5A944ECC-F141-4EFE-8490-EE0ACADCBCD1}
[2013/01/09 13:50:48 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{BB1E596F-78CA-4DFA-AEE1-56AEDC9A38BE}
[2013/01/09 01:50:13 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{67FE1111-1324-4DAB-8241-774C0DFBC981}
[2013/01/09 01:29:14 | 000,750,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013/01/09 01:29:14 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013/01/09 01:29:07 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2013/01/09 01:29:06 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2013/01/09 01:29:05 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2013/01/09 01:29:05 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2013/01/09 01:29:05 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2013/01/09 01:29:05 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\fpb.rs
[2013/01/09 01:29:05 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysNative\fpb.rs
[2013/01/09 01:29:05 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc-nz.rs
[2013/01/09 01:29:05 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc-nz.rs
[2013/01/09 01:29:05 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegibbfc.rs
[2013/01/09 01:29:05 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegibbfc.rs
[2013/01/09 01:29:05 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\csrr.rs
[2013/01/09 01:29:05 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysNative\csrr.rs
[2013/01/09 01:29:05 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cob-au.rs
[2013/01/09 01:29:05 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cob-au.rs
[2013/01/09 01:29:05 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\usk.rs
[2013/01/09 01:29:05 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysNative\usk.rs
[2013/01/09 01:29:05 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\grb.rs
[2013/01/09 01:29:05 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysNative\grb.rs
[2013/01/09 01:29:05 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-pt.rs
[2013/01/09 01:29:05 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-pt.rs
[2013/01/09 01:29:05 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi.rs
[2013/01/09 01:29:05 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi.rs
[2013/01/09 01:29:05 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\djctq.rs
[2013/01/09 01:29:05 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysNative\djctq.rs
[2013/01/09 01:29:04 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2013/01/09 01:29:04 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cero.rs
[2013/01/09 01:29:04 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cero.rs
[2013/01/09 01:29:04 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\esrb.rs
[2013/01/09 01:29:04 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysNative\esrb.rs
[2013/01/09 01:29:04 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc.rs
[2013/01/09 01:29:04 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc.rs
[2013/01/09 01:29:04 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-fi.rs
[2013/01/09 01:29:04 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-fi.rs
[2013/01/09 01:28:43 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/01/09 01:28:42 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013/01/09 01:28:42 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013/01/09 01:28:42 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013/01/09 01:28:42 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/01/09 01:28:42 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/01/09 01:28:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013/01/09 01:28:42 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/01/09 01:28:42 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013/01/09 01:28:42 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013/01/09 01:28:42 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013/01/09 01:28:42 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013/01/09 01:28:42 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013/01/09 01:28:42 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/01/09 01:28:42 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013/01/09 01:28:42 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013/01/09 01:28:42 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013/01/09 01:28:41 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/01/09 01:28:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/01/09 01:28:41 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013/01/09 01:28:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013/01/09 01:28:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013/01/09 01:28:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013/01/09 01:28:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013/01/09 01:28:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/01/09 01:28:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013/01/09 01:28:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013/01/09 01:28:41 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/01/09 01:28:29 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013/01/08 13:49:37 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{CD226033-9569-4A73-8140-A3CA765D9BAF}
[2013/01/08 01:49:03 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{34E5C588-5C34-49A3-9D67-AAD0BBFE594C}
[2013/01/07 13:48:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{FEB82BBA-4DF5-47A6-ADE6-0E83E63E1FA9}
[2013/01/06 16:15:04 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{2E90BAED-4C7E-4A96-A209-59BF5F16DB2E}
[2013/01/06 01:55:13 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\Desktop\Dolphin-x64
[2013/01/05 22:08:11 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2013/01/05 22:08:11 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2013/01/05 22:08:11 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2013/01/05 22:08:11 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2013/01/05 22:08:10 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2013/01/05 22:08:10 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2013/01/05 22:08:09 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2013/01/05 22:08:09 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2013/01/05 22:08:07 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2013/01/05 22:08:07 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2013/01/05 22:08:06 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2013/01/05 22:08:06 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2013/01/05 22:08:04 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2013/01/05 22:08:04 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2013/01/05 22:08:03 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2013/01/05 22:08:03 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2013/01/05 22:08:01 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2013/01/05 22:08:01 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2013/01/05 22:08:01 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2013/01/05 22:08:01 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2013/01/05 22:08:00 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2013/01/05 22:08:00 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2013/01/05 22:07:59 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2013/01/05 22:07:59 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2013/01/05 22:07:57 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2013/01/05 22:07:56 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2013/01/05 22:07:56 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2013/01/05 22:07:54 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2013/01/05 22:07:54 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2013/01/05 22:07:52 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2013/01/05 22:07:52 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2013/01/05 22:07:51 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2013/01/05 22:07:51 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2013/01/05 22:07:49 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2013/01/05 22:07:49 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2013/01/05 22:07:47 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2013/01/05 22:07:47 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2013/01/05 22:07:45 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2013/01/05 22:07:45 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2013/01/05 22:07:43 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2013/01/05 22:07:43 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2013/01/05 22:07:43 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2013/01/05 22:07:42 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2013/01/05 22:07:42 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2013/01/05 22:07:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2013/01/05 22:07:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2013/01/05 22:07:38 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2013/01/05 22:07:38 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2013/01/05 22:07:38 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2013/01/05 22:07:38 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2013/01/05 22:07:36 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2013/01/05 22:07:36 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2013/01/05 22:07:34 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2013/01/05 22:07:34 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2013/01/05 22:07:34 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2013/01/05 22:07:34 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2013/01/05 22:07:32 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2013/01/05 22:07:32 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2013/01/05 22:07:31 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2013/01/05 22:07:31 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2013/01/05 22:07:29 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2013/01/05 22:07:29 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2013/01/05 22:07:29 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2013/01/05 22:07:29 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2013/01/05 22:07:28 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2013/01/05 22:07:28 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2013/01/05 22:07:26 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2013/01/05 22:07:26 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2013/01/05 22:07:26 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2013/01/05 22:07:26 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2013/01/05 22:07:24 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2013/01/05 22:07:24 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2013/01/05 22:07:22 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2013/01/05 22:07:22 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2013/01/05 22:07:22 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2013/01/05 22:07:22 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2013/01/05 22:07:21 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2013/01/05 22:07:21 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2013/01/05 22:07:20 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2013/01/05 22:07:20 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2013/01/05 22:07:17 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2013/01/05 22:07:17 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2013/01/05 22:07:17 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2013/01/05 22:07:17 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2013/01/05 22:07:15 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2013/01/05 22:07:15 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2013/01/05 22:07:14 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2013/01/05 22:07:14 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2013/01/05 22:07:13 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2013/01/05 22:07:13 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2013/01/05 22:07:12 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2013/01/05 22:07:12 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2013/01/05 22:07:09 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2013/01/05 22:07:09 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2013/01/05 22:07:09 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2013/01/05 22:07:09 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2013/01/05 22:07:07 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2013/01/05 22:07:07 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2013/01/05 22:07:06 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2013/01/05 22:07:06 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2013/01/05 22:07:03 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2013/01/05 22:07:03 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2013/01/05 22:07:03 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2013/01/05 22:07:03 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2013/01/05 22:07:01 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2013/01/05 22:07:01 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2013/01/05 22:07:00 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2013/01/05 22:07:00 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2013/01/05 22:06:57 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2013/01/05 22:06:57 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2013/01/05 22:06:57 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2013/01/05 22:06:57 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2013/01/05 22:06:56 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2013/01/05 22:06:56 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2013/01/05 22:06:54 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2013/01/05 22:06:54 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2013/01/05 22:06:54 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2013/01/05 22:06:54 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2013/01/05 22:06:52 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2013/01/05 22:06:52 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2013/01/05 22:06:52 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2013/01/05 22:06:52 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2013/01/05 22:06:51 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2013/01/05 22:06:51 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2013/01/05 22:06:49 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2013/01/05 22:06:48 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2013/01/05 22:06:48 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2013/01/05 22:06:45 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2013/01/05 22:06:45 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2013/01/05 22:06:45 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2013/01/05 22:06:45 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2013/01/05 22:06:44 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2013/01/05 22:06:44 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2013/01/05 22:06:42 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2013/01/05 22:06:42 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2013/01/05 22:06:41 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2013/01/05 22:06:41 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2013/01/05 22:06:40 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2013/01/05 22:06:40 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2013/01/05 22:06:36 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2013/01/05 22:06:36 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2013/01/05 22:06:36 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2013/01/05 22:06:36 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2013/01/05 22:06:35 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2013/01/05 22:06:35 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2013/01/05 22:06:33 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2013/01/05 22:06:33 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2013/01/05 22:06:32 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2013/01/05 22:06:32 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2013/01/05 22:06:31 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2013/01/05 22:06:31 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2013/01/05 22:06:30 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2013/01/05 22:06:30 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2013/01/05 22:06:30 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2013/01/05 22:06:30 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2013/01/05 22:06:20 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2013/01/05 22:06:20 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2013/01/05 22:06:18 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2013/01/05 22:06:18 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2013/01/05 22:06:18 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2013/01/05 22:06:18 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2013/01/05 22:06:16 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2013/01/05 22:06:16 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2013/01/05 22:06:14 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2013/01/05 22:06:14 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2013/01/05 22:06:12 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2013/01/05 22:06:12 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2013/01/05 22:06:10 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2013/01/05 22:06:10 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2013/01/05 22:06:08 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2013/01/05 22:06:08 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2013/01/05 22:06:07 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2013/01/05 22:06:07 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2013/01/05 20:25:41 | 026,931,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2013/01/05 20:25:41 | 025,256,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2013/01/05 20:25:41 | 020,450,232 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2013/01/05 20:25:41 | 018,054,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2013/01/05 20:25:41 | 017,560,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2013/01/05 20:25:41 | 009,389,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2013/01/05 20:25:41 | 007,931,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2013/01/05 20:25:41 | 007,565,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2013/01/05 20:25:41 | 006,263,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2013/01/05 20:25:41 | 002,904,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2013/01/05 20:25:41 | 002,720,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2013/01/05 20:25:41 | 002,344,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2013/01/05 20:25:41 | 001,985,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2013/01/05 20:25:41 | 000,958,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2013/01/05 20:25:41 | 000,246,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2013/01/05 20:25:41 | 000,201,728 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2013/01/05 15:03:12 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{8DD2A794-C309-4FF1-94F9-2DBB24D2D611}
[2013/01/05 03:02:37 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{F6EFCD5E-4FFD-41E8-81B6-D858B7061717}
[2013/01/04 15:02:15 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{976AD298-1E63-43B3-A7BE-1103193D884D}
[2013/01/04 03:01:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{519FB32D-3AA0-4520-A9DE-D60EC4C186B8}
[2013/01/04 02:12:35 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\AVG2013
[2013/01/04 02:11:50 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\TuneUp Software
[2013/01/04 02:11:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG Secure Search
[2013/01/04 02:09:36 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013/01/04 02:09:36 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2013
[2013/01/04 02:08:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2013/01/04 02:02:45 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\MFAData
[2013/01/04 02:02:45 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2013/01/04 02:02:45 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\Avg2013
[2013/01/03 15:01:17 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{FA64F3DD-D5A8-44FB-8224-3A1BC45DC982}
[2013/01/03 03:05:24 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\Programs
[2013/01/03 03:00:42 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{75B64FE1-9955-4B61-9318-D1FE765B452A}
[2013/01/02 15:00:20 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{B526F3C8-0C14-4A49-B6C3-988EE0C7F084}
[2013/01/02 02:59:45 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{A440CFCC-1EAB-41CB-87B0-9B918D2D982D}
[2013/01/01 19:44:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lame For Audacity
[2013/01/01 19:35:35 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\Audacity
[2013/01/01 18:53:04 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\NCH Software
[2013/01/01 14:59:21 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{05290AF2-5268-44B0-A752-F12C08815F71}
[2013/01/01 02:32:30 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{EA7EA8D4-7F16-4827-A58F-497B1DBB8842}
[2012/12/31 14:32:18 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{9A23E207-B90A-4BD9-875A-638F87F7E0CE}
[2012/12/30 19:21:33 | 000,000,000 | ---D | C] -- C:\Windows\Your Product
[2012/12/30 19:21:33 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Product
[2012/12/30 19:21:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Your Product
[2012/12/30 18:48:15 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{0544B3E4-4AEA-41A3-9C70-DBB28D0AAA1B}
[2012/12/30 09:43:14 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\Eastman Kodak Company
[2012/12/30 01:53:59 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{53A9D408-4830-452A-9633-7750CCA646C3}
[2012/12/29 13:53:37 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{429A3AB0-3817-47EF-A1D2-674459388C64}
[2012/12/29 02:54:24 | 000,550,328 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2012/12/29 01:53:02 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{5929E136-9CB2-47BD-98A8-4014D62D9723}
[2012/12/28 21:28:25 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\Temp
[2012/12/28 21:18:51 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\Eastman_Kodak_Company
[2012/12/28 13:52:49 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{F44B29AF-06AA-497A-AEE6-31490F81180F}
[2012/12/28 00:43:24 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{657672FC-E375-46AA-B19A-C8716E0E5EA0}
[2012/12/27 12:42:49 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{39BC9C0A-53AF-4CEA-A614-D95451F0A42A}
[2012/12/27 00:42:14 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{3302E6C0-0846-4E75-929F-C4DAFFA36F2F}
[2012/12/26 18:44:19 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2012/12/26 12:41:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{78FEA251-CA8C-4414-BE67-5098A5AAD452}
[2012/12/26 00:41:03 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{3DF7A1A6-646B-45B7-89AC-FB68AE2CD6E1}
[2012/12/25 12:40:52 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{E34578C9-E0D4-4B60-BEDB-134BAA342568}
[2012/12/25 10:47:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintProjects
[2012/12/25 10:47:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Visan
[2012/12/25 10:47:10 | 000,000,000 | ---D | C] -- C:\ProgramData\PrintProjects
[2012/12/25 10:47:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PrintProjects
[2012/12/25 10:45:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodak
[2012/12/25 10:45:10 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\kodak
[2012/12/25 10:44:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kodak
[2012/12/24 16:41:23 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{D3D34AAF-B975-4EC5-9DA6-53FDC2E0E372}
[2012/12/23 19:17:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{5499BBBD-366B-411A-AC28-EBB2D5576B77}
[2012/12/23 03:01:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{A3A6AA5A-7E88-4662-AA27-C281756690A7}
[2012/12/22 15:01:17 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{A135106B-7543-422D-ADDC-307B997F1F35}
[2012/12/22 03:00:42 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{33048925-A5B0-4014-8CCC-1C24F5DCA2D3}
[2012/12/21 15:00:25 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{6694FB46-8DBF-4761-9FB1-2FCFFCFC37D2}
[2012/12/21 03:00:33 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/12/21 03:00:33 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/12/21 03:00:32 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/12/21 03:00:32 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/12/21 02:04:59 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{E672A0AB-AAF8-4110-B04A-6921DEDEF607}
[2012/12/20 14:04:36 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{EFA9767A-25F5-445F-97AB-B835DA7CCDD6}
[2012/12/20 02:04:02 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{27F522CA-5D89-48D5-AAB4-1692E3570EA1}
[2012/12/19 14:03:39 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{57FEDD36-5C9E-42A9-9183-2C9C6E7A7348}
[2012/12/19 02:03:04 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Local\{FBC74FE2-6A5C-4982-9E6E-3D107A553013}
[2012/12/19 00:09:30 | 000,000,000 | ---D | C] -- C:\Users\gamerpc\AppData\Roaming\NCH Swift Sound
[2012/12/19 00:09:30 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Swift Sound
[2012/10/23 21:33:03 | 001,048,576 | ---- | C] (Hazar Co.) -- C:\Users\gamerpc\RemoveWAT.exe
[2012/10/23 21:33:02 | 015,432,864 | ---- | C] (ManyCam LLC) -- C:\Users\gamerpc\ManyCam.exe
[2012/10/23 21:32:58 | 001,973,368 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Users\gamerpc\avg_remover_stf_x86_2012_2125.exe
[2012/10/23 21:32:57 | 030,218,224 | ---- | C] (IObit ) -- C:\Users\gamerpc\asc-setup.exe
[2012/10/23 21:32:40 | 000,243,360 | ---- | C] (Adobe Systems, Inc.) -- C:\Users\gamerpc\uninstall_flash_player.exe
[1998/04/26 21:00:00 | 000,570,128 | ---- | C] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\DAO350.DLL
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/01/17 17:19:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\gamerpc\Desktop\OTL.exe
[2013/01/17 17:15:57 | 000,021,888 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/17 17:15:57 | 000,021,888 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/17 17:15:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/17 17:08:52 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/17 17:08:31 | 2121,359,359 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/17 17:08:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/17 16:37:08 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/16 18:30:38 | 000,006,521 | ---- | M] () -- C:\Users\gamerpc\AppData\Local\b94b04aa-6a61-4de1-b533-f34c1aa7c2fd.crx
[2013/01/15 06:27:08 | 000,727,182 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/15 06:27:08 | 000,624,384 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/15 06:27:08 | 000,106,502 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/01/12 03:30:18 | 000,095,648 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/01/12 03:26:16 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/01/12 03:24:49 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/01/11 14:49:19 | 000,002,021 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2013/01/11 02:23:18 | 000,001,256 | ---- | M] () -- C:\Users\Public\Desktop\Singularity Viewer.lnk
[2013/01/10 17:25:55 | 000,000,000 | ---- | M] () -- C:\Users\gamerpc\ljxsxgidzjh.exe
[2013/01/10 11:54:31 | 000,000,187 | ---- | M] () -- C:\Windows\SysWow64\userawacs.cfg
[2013/01/10 11:54:25 | 000,000,891 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[2013/01/09 22:07:09 | 000,801,935 | ---- | M] () -- C:\Users\gamerpc\Paddedfenny.png
[2013/01/09 05:19:17 | 004,931,040 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/08 19:15:19 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/01/08 19:15:19 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/01/06 01:02:41 | 000,000,221 | ---- | M] () -- C:\Users\gamerpc\Desktop\Saints Row The Third.url
[2013/01/04 02:11:19 | 000,030,568 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2013/01/03 17:22:27 | 000,000,132 | ---- | M] () -- C:\Users\gamerpc\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2013/01/03 03:05:37 | 000,001,144 | ---- | M] () -- C:\Users\gamerpc\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2013/01/03 03:05:37 | 000,001,120 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/29 12:31:43 | 000,001,112 | ---- | M] () -- C:\Users\gamerpc\Desktop\MKFMasterv053.exe - Shortcut.lnk
[2012/12/29 12:19:55 | 000,001,034 | ---- | M] () -- C:\Users\gamerpc\Desktop\TESConstructionSet.exe - Shortcut.lnk
[2012/12/29 12:19:35 | 000,000,933 | ---- | M] () -- C:\Users\gamerpc\Desktop\left4dead2.exe - Shortcut.lnk
[2012/12/29 12:18:35 | 000,000,515 | ---- | M] () -- C:\Users\gamerpc\Desktop\zelda-w.exe - Shortcut.lnk
[2012/12/29 02:54:24 | 000,550,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2012/12/29 02:34:47 | 026,931,128 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/12/29 02:34:47 | 025,256,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/12/29 02:34:47 | 020,450,232 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/12/29 02:34:47 | 018,054,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/12/29 02:34:47 | 017,560,504 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/12/29 02:34:47 | 015,129,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/12/29 02:34:47 | 015,052,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012/12/29 02:34:47 | 012,641,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012/12/29 02:34:47 | 009,389,888 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/12/29 02:34:47 | 007,931,896 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/12/29 02:34:47 | 007,565,240 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/12/29 02:34:47 | 006,263,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/12/29 02:34:47 | 002,904,504 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/12/29 02:34:47 | 002,824,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012/12/29 02:34:47 | 002,720,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/12/29 02:34:47 | 002,504,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012/12/29 02:34:47 | 002,344,888 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/12/29 02:34:47 | 001,985,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/12/29 02:34:47 | 001,813,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012/12/29 02:34:47 | 001,504,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/12/29 02:34:47 | 001,107,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012/12/29 02:34:47 | 000,958,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/12/29 02:34:47 | 000,246,024 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/12/29 02:34:47 | 000,201,728 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/12/29 02:34:47 | 000,017,266 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012/12/29 00:40:27 | 006,382,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012/12/29 00:40:27 | 003,455,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012/12/29 00:40:11 | 002,923,201 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012/12/29 00:40:09 | 000,118,712 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012/12/29 00:40:09 | 000,063,928 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012/12/26 23:03:10 | 000,032,320 | ---- | M] (FNet Co., Ltd.) -- C:\Windows\SysNative\drivers\FNETTBOH_305.SYS
[2012/12/26 18:44:13 | 000,000,041 | -HS- | M] () -- C:\ProgramData\.zreglib
[2012/12/25 10:47:11 | 000,001,957 | ---- | M] () -- C:\Users\Public\Desktop\PrintProjects.lnk
[2012/12/25 10:46:51 | 000,002,163 | ---- | M] () -- C:\Users\Public\Desktop\KODAK AiO Home Center.lnk
[2012/12/25 10:45:52 | 000,002,082 | ---- | M] () -- C:\Users\Public\Desktop\Get CleanPrint.lnk
[2012/12/24 17:14:40 | 000,001,927 | ---- | M] () -- C:\Users\gamerpc\Desktop\Deal Or No Deal.lnk
[2012/12/18 23:53:29 | 000,001,300 | ---- | M] () -- C:\Users\Public\Desktop\YTD Video Downloader.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/14 16:15:00 | 000,006,521 | ---- | C] () -- C:\Users\gamerpc\AppData\Local\b94b04aa-6a61-4de1-b533-f34c1aa7c2fd.crx
[2013/01/11 02:23:18 | 000,001,256 | ---- | C] () -- C:\Users\Public\Desktop\Singularity Viewer.lnk
[2013/01/10 17:23:18 | 000,000,000 | ---- | C] () -- C:\Users\gamerpc\ljxsxgidzjh.exe
[2013/01/10 11:54:31 | 000,000,187 | ---- | C] () -- C:\Windows\SysWow64\userawacs.cfg
[2013/01/09 22:07:05 | 000,801,935 | ---- | C] () -- C:\Users\gamerpc\Paddedfenny.png
[2013/01/05 15:02:01 | 000,000,221 | ---- | C] () -- C:\Users\gamerpc\Desktop\Saints Row The Third.url
[2013/01/04 02:11:50 | 000,000,891 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[2012/12/30 10:24:51 | 000,001,030 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2012/12/25 10:47:11 | 000,001,957 | ---- | C] () -- C:\Users\Public\Desktop\PrintProjects.lnk
[2012/12/25 10:46:51 | 000,002,163 | ---- | C] () -- C:\Users\Public\Desktop\KODAK AiO Home Center.lnk
[2012/12/25 10:45:52 | 000,002,082 | ---- | C] () -- C:\Users\Public\Desktop\Get CleanPrint.lnk
[2012/12/16 01:28:23 | 001,546,964 | ---- | C] () -- C:\Users\gamerpc\twotone 12_2012.psd
[2012/12/12 02:07:49 | 000,000,132 | ---- | C] () -- C:\Users\gamerpc\AppData\Roaming\Adobe GIF Format CS6 Prefs
[2012/11/29 22:43:32 | 000,743,066 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/11/19 00:49:25 | 000,220,737 | ---- | C] () -- C:\Users\gamerpc\Doctor Who The Heroes of Time.jpg
[2012/11/17 16:47:04 | 000,000,132 | ---- | C] () -- C:\Users\gamerpc\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2012/11/13 02:19:45 | 000,000,132 | ---- | C] () -- C:\Users\gamerpc\AppData\Roaming\Adobe BMP Format CS6 Prefs
[2012/11/11 00:48:49 | 000,000,135 | ---- | C] () -- C:\Users\gamerpc\DB581CF5.pnach
[2012/11/09 00:51:54 | 000,000,041 | -HS- | C] () -- C:\ProgramData\.zreglib
[2012/11/05 10:17:34 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat
[2012/10/27 01:44:43 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2012/10/24 20:36:46 | 000,002,265 | ---- | C] () -- C:\Windows\FF08_Render_Spk_Hp.ini
[2012/10/24 20:36:46 | 000,001,650 | ---- | C] () -- C:\Windows\FF08_Capture.ini
[2012/10/24 20:36:46 | 000,001,540 | ---- | C] () -- C:\Windows\FF08_Render.ini
[2012/10/24 20:35:05 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2012/10/24 20:35:05 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2012/10/24 20:29:08 | 000,000,003 | ---- | C] () -- C:\Users\gamerpc\AppData\Local\user_data.ini
[2012/10/23 21:33:05 | 001,039,211 | ---- | C] () -- C:\Users\gamerpc\TT and my new_007.png
[2012/10/23 21:33:05 | 000,541,559 | ---- | C] () -- C:\Users\gamerpc\TT and my new_006.png
[2012/10/23 21:33:04 | 003,162,583 | ---- | C] () -- C:\Users\gamerpc\Simpsons - Garden of Eden.flv
[2012/10/23 21:33:04 | 003,023,232 | ---- | C] () -- C:\Users\gamerpc\Terminator Theme.mp3
[2012/10/23 21:33:04 | 002,931,179 | ---- | C] () -- C:\Users\gamerpc\The Brian Kendrick - Man With A Plan [Full].mp3
[2012/10/23 21:33:04 | 001,142,980 | ---- | C] () -- C:\Users\gamerpc\Scan0001.tif
[2012/10/23 21:33:04 | 001,040,772 | ---- | C] () -- C:\Users\gamerpc\TT and my new_005.png
[2012/10/23 21:33:04 | 001,024,654 | ---- | C] () -- C:\Users\gamerpc\TT and my new_002.png
[2012/10/23 21:33:04 | 000,989,946 | ---- | C] () -- C:\Users\gamerpc\TT and my new_001.png
[2012/10/23 21:33:04 | 000,984,485 | ---- | C] () -- C:\Users\gamerpc\TT and my new_004.png
[2012/10/23 21:33:04 | 000,971,336 | ---- | C] () -- C:\Users\gamerpc\SoMuchWork.wmv
[2012/10/23 21:33:04 | 000,737,247 | ---- | C] () -- C:\Users\gamerpc\TT and my new_003.png
[2012/10/23 21:33:04 | 000,590,923 | ---- | C] () -- C:\Users\gamerpc\Tacticageniuspool.jpg
[2012/10/23 21:33:04 | 000,283,626 | ---- | C] () -- C:\Users\gamerpc\template.jpg
[2012/10/23 21:33:04 | 000,270,860 | ---- | C] () -- C:\Users\gamerpc\sierra forms.png
[2012/10/23 21:33:04 | 000,260,146 | ---- | C] () -- C:\Users\gamerpc\Scallop_Stamp_Template_by_plztikphishphood.psd
[2012/10/23 21:33:04 | 000,245,778 | ---- | C] () -- C:\Users\gamerpc\SL error.jpg
[2012/10/23 21:33:04 | 000,120,264 | ---- | C] () -- C:\Users\gamerpc\Riverrecolor.jpg
[2012/10/23 21:33:04 | 000,067,018 | ---- | C] () -- C:\Users\gamerpc\segway-rough-riders-imperial-guard-warhammer-40k-segway-roug-demotivational-poster-1255553637.jpg
[2012/10/23 21:33:04 | 000,027,200 | ---- | C] () -- C:\Users\gamerpc\sally.jpg
[2012/10/23 21:33:04 | 000,018,503 | ---- | C] () -- C:\Users\gamerpc\TKSCREST.jpg
[2012/10/23 21:33:04 | 000,005,624 | ---- | C] () -- C:\Users\gamerpc\sandworm texture.jpg
[2012/10/23 21:33:04 | 000,004,027 | ---- | C] () -- C:\Users\gamerpc\RP for today.rtf
[2012/10/23 21:33:03 | 007,036,992 | ---- | C] () -- C:\Users\gamerpc\nWo theme (voodoo child w_ voices).mp3
[2012/10/23 21:33:03 | 001,032,326 | ---- | C] () -- C:\Users\gamerpc\nWo Theme - Hulk Hogan TNA Theme w-Quotes_19477679.mp3
[2012/10/23 21:33:03 | 000,738,033 | ---- | C] () -- C:\Users\gamerpc\mom 438.jpg
[2012/10/23 21:33:03 | 000,539,687 | ---- | C] () -- C:\Users\gamerpc\plush Two-tone with bottle.JPG
[2012/10/23 21:33:03 | 000,405,054 | ---- | C] () -- C:\Users\gamerpc\pee wee mug shot.bmp
[2012/10/23 21:33:03 | 000,280,739 | ---- | C] () -- C:\Users\gamerpc\pretty_kitty_by_toddlergirl-d397r7f.png
[2012/10/23 21:33:03 | 000,129,493 | ---- | C] () -- C:\Users\gamerpc\PICE0BC.tmp.jpg
[2012/10/23 21:33:03 | 000,070,015 | ---- | C] () -- C:\Users\gamerpc\Peach Boss Goddess.jpg
[2012/10/23 21:33:03 | 000,066,764 | ---- | C] () -- C:\Users\gamerpc\Picture 27.jpg
[2012/10/23 21:33:03 | 000,029,665 | ---- | C] () -- C:\Users\gamerpc\nachof-10.jpg
[2012/10/23 21:33:03 | 000,025,645 | ---- | C] () -- C:\Users\gamerpc\Picture 10.jpg
[2012/10/23 21:33:03 | 000,002,616 | ---- | C] () -- C:\Users\gamerpc\Nero StartSmart Essentials.lnk
[2012/10/23 21:33:03 | 000,002,242 | ---- | C] () -- C:\Users\gamerpc\Norton PC Checkup.LNK
[2012/10/23 21:33:03 | 000,002,175 | ---- | C] () -- C:\Users\gamerpc\Norton Internet Security.lnk
[2012/10/23 21:33:03 | 000,001,903 | ---- | C] () -- C:\Users\gamerpc\MOTOROLA MEDIA LINK.lnk
[2012/10/23 21:33:03 | 000,000,980 | ---- | C] () -- C:\Users\gamerpc\My Music Tools.lnk
[2012/10/23 21:33:03 | 000,000,624 | ---- | C] () -- C:\Users\gamerpc\Mutation Mod.lnk
[2012/10/23 21:33:03 | 000,000,512 | ---- | C] () -- C:\Users\gamerpc\MBR.dat
[2012/10/23 21:33:03 | 000,000,179 | ---- | C] () -- C:\Users\gamerpc\PIXELA Product Registration.url
[2012/10/23 21:33:02 | 008,481,615 | ---- | C] () -- C:\Users\gamerpc\mara_jade.zip
[2012/10/23 21:33:02 | 004,996,669 | ---- | C] () -- C:\Users\gamerpc\Legacy.mp3
[2012/10/23 21:33:02 | 002,992,128 | ---- | C] () -- C:\Users\gamerpc\Jerishow's Newest Theme 2009 BEST QUALITY.mp3
[2012/10/23 21:33:02 | 001,525,339 | ---- | C] () -- C:\Users\gamerpc\IMAG0449.jpg
[2012/10/23 21:33:02 | 000,663,651 | ---- | C] () -- C:\Users\gamerpc\khorneberzerkers.png
[2012/10/23 21:33:02 | 000,235,899 | ---- | C] () -- C:\Users\gamerpc\m_1281890420297_fluff-kevlar_fkevlar_aryteweb.jpg
[2012/10/23 21:33:02 | 000,130,082 | ---- | C] () -- C:\Users\gamerpc\m_1284928089033_W_CANISLUPUS.jpg
[2012/10/23 21:33:02 | 000,082,123 | ---- | C] () -- C:\Users\gamerpc\Joker1.jpg
[2012/10/23 21:33:02 | 000,018,460 | ---- | C] () -- C:\Users\gamerpc\KARISCREST.jpg
[2012/10/23 21:33:02 | 000,007,326 | ---- | C] () -- C:\Users\gamerpc\lucky-char.jpg
[2012/10/23 21:33:02 | 000,000,692 | ---- | C] () -- C:\Users\gamerpc\L4D2 Updater.lnk
[2012/10/23 21:33:01 | 004,258,368 | ---- | C] () -- C:\Users\gamerpc\Hulk Hogan Entrance Video.mp3
[2012/10/23 21:33:01 | 001,923,244 | ---- | C] () -- C:\Users\gamerpc\IMAG0026.jpg
[2012/10/23 21:33:01 | 001,649,591 | ---- | C] () -- C:\Users\gamerpc\IMAG0028.jpg
[2012/10/23 21:33:01 | 001,643,789 | ---- | C] () -- C:\Users\gamerpc\IMAG0027.jpg
[2012/10/23 21:33:00 | 022,730,332 | ---- | C] () -- C:\Users\gamerpc\Hitler Original Bunker Scene No Subtitles.avi
[2012/10/23 21:33:00 | 002,886,982 | ---- | C] () -- C:\Users\gamerpc\For Two-Tone.bmp
[2012/10/23 21:33:00 | 000,728,934 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_009.png
[2012/10/23 21:33:00 | 000,706,288 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_013.png
[2012/10/23 21:33:00 | 000,671,988 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_011.png
[2012/10/23 21:33:00 | 000,638,994 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_012.png
[2012/10/23 21:33:00 | 000,503,753 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_010.png
[2012/10/23 21:33:00 | 000,475,100 | ---- | C] () -- C:\Users\gamerpc\fuangrymarine.jpg
[2012/10/23 21:33:00 | 000,454,306 | ---- | C] () -- C:\Users\gamerpc\diaper buster 1.png
[2012/10/23 21:33:00 | 000,360,946 | ---- | C] () -- C:\Users\gamerpc\cwps-1099843-1.jpg
[2012/10/23 21:33:00 | 000,218,857 | ---- | C] () -- C:\Users\gamerpc\DSW.jpg
[2012/10/23 21:33:00 | 000,162,488 | ---- | C] () -- C:\Users\gamerpc\George of the Jungle2.wav
[2012/10/23 21:33:00 | 000,162,488 | ---- | C] () -- C:\Users\gamerpc\George of the Jungle.wav2.wav
[2012/10/23 21:33:00 | 000,162,488 | ---- | C] () -- C:\Users\gamerpc\George of the Jungle.wav
[2012/10/23 21:33:00 | 000,151,190 | ---- | C] () -- C:\Users\gamerpc\FalloutNewVegasSOTTglitch.jpg
[2012/10/23 21:33:00 | 000,065,536 | ---- | C] () -- C:\Users\gamerpc\f261e365-0eb3-49cc-a7a4-388fb1eeeb0f.jpg
[2012/10/23 21:33:00 | 000,056,392 | ---- | C] () -- C:\Users\gamerpc\ECP_00010.jpg
[2012/10/23 21:33:00 | 000,051,934 | ---- | C] () -- C:\Users\gamerpc\ECP_00002.jpg
[2012/10/23 21:33:00 | 000,050,421 | ---- | C] () -- C:\Users\gamerpc\ECP_00003.jpg
[2012/10/23 21:33:00 | 000,048,925 | ---- | C] () -- C:\Users\gamerpc\ECP_00004.jpg
[2012/10/23 21:33:00 | 000,035,876 | ---- | C] () -- C:\Users\gamerpc\CP RP.rtf
[2012/10/23 21:33:00 | 000,000,979 | ---- | C] () -- C:\Users\gamerpc\Free M4a to MP3 Converter.lnk
[2012/10/23 21:33:00 | 000,000,176 | ---- | C] () -- C:\Users\gamerpc\Everio MediaBrowser Homepage.url
[2012/10/23 21:32:59 | 000,770,414 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_008.png
[2012/10/23 21:32:59 | 000,745,688 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_006.png
[2012/10/23 21:32:59 | 000,699,558 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_002.png
[2012/10/23 21:32:59 | 000,695,738 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_003.png
[2012/10/23 21:32:59 | 000,687,334 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_004.png
[2012/10/23 21:32:59 | 000,626,365 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_005.png
[2012/10/23 21:32:59 | 000,594,443 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_001.png
[2012/10/23 21:32:59 | 000,380,206 | ---- | C] () -- C:\Users\gamerpc\Breaking the law.flv
[2012/10/23 21:32:59 | 000,334,133 | ---- | C] () -- C:\Users\gamerpc\cfc and Twotone 2_007.png
[2012/10/23 21:32:59 | 000,270,336 | ---- | C] () -- C:\Users\gamerpc\Cadpig_goes_bad.wps
[2012/10/23 21:32:59 | 000,083,417 | ---- | C] () -- C:\Users\gamerpc\Bolter.jpg
[2012/10/23 21:32:59 | 000,065,146 | ---- | C] () -- C:\Users\gamerpc\Buster in his pajama top.jpg
[2012/10/23 21:32:59 | 000,043,712 | ---- | C] () -- C:\Users\gamerpc\brian-lawler-mugshot.jpg
[2012/10/23 21:32:58 | 009,403,779 | ---- | C] () -- C:\Users\gamerpc\bnb - Tornado.flv
[2012/10/23 21:32:58 | 004,386,885 | ---- | C] () -- C:\Users\gamerpc\autosave.fxs
[2012/10/23 21:32:58 | 001,632,470 | ---- | C] () -- C:\Users\gamerpc\AVGInstLog.cab
[2012/10/23 21:32:58 | 000,236,336 | ---- | C] () -- C:\Users\gamerpc\Babs playing in her panties.png
[2012/10/23 21:32:58 | 000,231,703 | ---- | C] () -- C:\Users\gamerpc\Battle of the Universes II Banner.jpg
[2012/10/23 21:32:58 | 000,069,275 | ---- | C] () -- C:\Users\gamerpc\autograph.jpg
[2012/10/23 21:32:58 | 000,061,621 | ---- | C] () -- C:\Users\gamerpc\Babs in her pajama top.jpg
[2012/10/23 21:32:58 | 000,051,151 | ---- | C] () -- C:\Users\gamerpc\bff.jpg
[2012/10/23 21:32:57 | 004,305,600 | ---- | C] () -- C:\Users\gamerpc\Angry Video Game Nerd Full Theme Song.mp3
[2012/10/23 21:32:57 | 001,440,054 | ---- | C] () -- C:\Users\gamerpc\alex.bmp
[2012/10/23 21:32:57 | 000,101,917 | ---- | C] () -- C:\Users\gamerpc\1259637709948.jpg
[2012/10/23 21:32:57 | 000,050,329 | ---- | C] () -- C:\Users\gamerpc\1259637858517.png
[2012/10/23 21:32:57 | 000,001,894 | ---- | C] () -- C:\Users\gamerpc\ArcSoft Products.lnk
[2012/10/23 21:32:56 | 002,713,862 | ---- | C] () -- C:\Users\gamerpc\1279523769_arumontwolf_1279489370_constantine_auromwolf.png
[2012/10/23 21:32:56 | 001,131,946 | ---- | C] () -- C:\Users\gamerpc\108_2508.JPG
[2012/10/23 21:32:56 | 000,888,184 | ---- | C] () -- C:\Users\gamerpc\108_2517.JPG
[2012/10/23 21:32:56 | 000,762,761 | ---- | C] () -- C:\Users\gamerpc\108_2518.JPG
[2012/10/23 21:32:56 | 000,725,701 | ---- | C] () -- C:\Users\gamerpc\104_2340.JPG
[2012/10/23 21:32:56 | 000,559,296 | ---- | C] () -- C:\Users\gamerpc\108_2519.JPG
[2012/10/23 21:32:56 | 000,450,821 | ---- | C] () -- C:\Users\gamerpc\101 Dalmatians Style1.png
[2012/10/23 21:32:56 | 000,365,675 | ---- | C] () -- C:\Users\gamerpc\101 Dalmatians Banner 1.png
[2012/10/23 21:32:56 | 000,058,335 | ---- | C] () -- C:\Users\gamerpc\1581j5l.gif
[2012/10/23 21:32:56 | 000,044,681 | ---- | C] () -- C:\Users\gamerpc\60474_Tactical_facepalm.jpg
[2012/10/23 21:32:56 | 000,032,768 | ---- | C] () -- C:\Users\gamerpc\67fcc669-29fd-4962-b862-0236bf649d88.jpg
[2012/10/23 21:32:56 | 000,016,298 | ---- | C] () -- C:\Users\gamerpc\1303432436.inflationcouplingist_101.rtf
[2012/10/23 21:32:56 | 000,005,395 | ---- | C] () -- C:\Users\gamerpc\1288751380.luckybolt20_thebigcrossover.rtf
[2012/10/23 21:32:56 | 000,000,865 | ---- | C] () -- C:\Users\gamerpc\.recently-used.xbel
[2012/10/23 21:32:41 | 005,120,640 | ---- | C] () -- C:\Users\gamerpc\WWE Kurt Angle theme (You suck choir).mp3
[2012/10/23 21:32:41 | 002,869,528 | ---- | C] () -- C:\Users\gamerpc\Zach Gowen.wmv
[2012/10/23 21:32:41 | 002,192,034 | ---- | C] () -- C:\Users\gamerpc\Wonkatastic.gif
[2012/10/23 21:32:41 | 001,110,929 | ---- | C] () -- C:\Users\gamerpc\Ychan - r - wolf - wolf 6.jpg
[2012/10/23 21:32:41 | 000,281,818 | ---- | C] () -- C:\Users\gamerpc\whomper2-065.jpg
[2012/10/23 21:32:41 | 000,246,761 | ---- | C] () -- C:\Users\gamerpc\WWE & UFC Titles.rar
[2012/10/23 21:32:41 | 000,202,017 | ---- | C] () -- C:\Users\gamerpc\Ychan - r - wolf - 81529.jpg
[2012/10/23 21:32:41 | 000,163,898 | ---- | C] () -- C:\Users\gamerpc\wof 100K win.jpg
[2012/10/23 21:32:41 | 000,008,528 | ---- | C] () -- C:\Users\gamerpc\wrongcollarcolor[1].jpg
[2012/10/23 21:32:41 | 000,000,937 | ---- | C] () -- C:\Users\gamerpc\WinRAR.lnk
[2012/10/23 21:32:40 | 001,687,242 | ---- | C] () -- C:\Users\gamerpc\TTandtheTARDIS_001.png
[2012/10/23 21:32:40 | 000,028,046 | ---- | C] () -- C:\Users\gamerpc\Two Tone Badge.JPG
[2012/10/23 21:32:40 | 000,004,611 | ---- | C] () -- C:\Users\gamerpc\TwoTone paci icon.JPG
[2012/10/23 21:32:40 | 000,000,915 | ---- | C] () -- C:\Users\gamerpc\Ventrilo.lnk
[2012/10/23 21:32:40 | 000,000,802 | ---- | C] () -- C:\Users\gamerpc\TunesUp20.lnk
[2012/10/22 22:37:25 | 059,089,634 | ---- | C] () -- C:\Users\gamerpc\Monday Night Bowling video 1.3gp
[2012/02/02 21:08:26 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
[2011/09/19 05:03:40 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
"ThreadingModel" = Both
"" = C:\$Recycle.Bin\S-1-5-21-1692155839-1707551626-4126777635-1001\$ddb81ab28dd6b0b58f6a36364c2b80df\n.

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 21:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 20:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 19:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Files - Unicode (All) ==========
[2012/12/15 05:21:54 | 000,000,000 | ---- | M] ()(C:\Windows\SysWow64\?V?Ylotserviceruntime.log) -- C:\Windows\SysWow64\돠VYlotserviceruntime.log
[2012/12/15 05:21:54 | 000,000,000 | ---- | C] ()(C:\Windows\SysWow64\?V?Ylotserviceruntime.log) -- C:\Windows\SysWow64\돠VYlotserviceruntime.log

========== Alternate Data Streams ==========

@Alternate Data Stream - 24 bytes -> C:\Windows:AE78203BC46AE322

< End of report >
  • 0

Advertisements

#2
Lucky Dearly
Posted 17 January 2013 - 07:45 PM

Lucky Dearly

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 349 posts
also the Extras log OTL made too

OTL Extras logfile created on: 1/17/2013 5:20:25 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\gamerpc\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.97 Gb Total Physical Memory | 5.28 Gb Available Physical Memory | 66.25% Memory free
15.93 Gb Paging File | 12.70 Gb Available in Paging File | 79.70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 631.61 Gb Free Space | 67.81% Space Free | Partition Type: NTFS
Drive J: | 931.48 Gb Total Space | 622.76 Gb Free Space | 66.86% Space Free | Partition Type: NTFS

Computer Name: NWOFAN-PC | User Name: gamerpc | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /unknown "%1" (Filefacts.net)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /unknown "%1" (Filefacts.net)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0ADE82A7-1BE0-4862-872C-FD72A562F339}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0BDE180F-293A-4232-B132-8CD8A615BECA}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{0CA91CD6-A437-40FD-847A-99B2A52878F9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{13B45F65-C037-4B22-B9BF-D7D5E43ACAE8}" = lport=445 | protocol=6 | dir=in | app=system |
"{332CAB8C-7396-4557-8703-1195AB17EBF6}" = lport=137 | protocol=17 | dir=in | app=system |
"{58D6A0FF-00F5-4B94-9233-C567960D76A2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{59CE9ED5-E4DF-4C01-9F55-B243297E604D}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{5B6D344E-E924-45AE-9488-6561E6C698B0}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5BCBE92F-39F1-4B81-891A-D19AC5A9B50B}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{5C85800B-BA27-4470-B381-ED3ED6959CDA}" = rport=138 | protocol=17 | dir=out | app=system |
"{5E69825B-DC28-4F73-9628-ACBFC3E093CE}" = lport=5353 | protocol=17 | dir=in | name=bonjour port 5353 |
"{5F7921C1-0BBD-47B5-B4D5-54D23E8CC038}" = lport=2869 | protocol=6 | dir=in | app=system |
"{5FDEC2E2-8880-4154-A7F3-1F97D3D190B5}" = rport=445 | protocol=6 | dir=out | app=system |
"{69C48025-55A1-4E57-9849-D9B135278F15}" = lport=9322 | protocol=6 | dir=in | name=ekdiscovery |
"{797BDEAA-61ED-4B31-8964-7B3831EAB324}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A5D0EE6B-105B-4F83-88FF-3E494E528125}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A7203066-155E-4B0E-91BC-E91C86F6D652}" = rport=139 | protocol=6 | dir=out | app=system |
"{A955701E-A137-4638-AE11-03D93E8ACC4E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C3D4E492-17D2-47EA-86B7-01F7A41D8176}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C41A1C30-91FC-464F-835D-AC2022F1AAA0}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C94B1BF2-3ED9-48AC-A0E7-8A531D14F1A6}" = lport=9322 | protocol=6 | dir=in | name=ekdiscovery |
"{CA106084-C91B-498D-B2EE-2B56C75D7C9D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D346A567-B67C-498B-8EC0-E7723ADC3E12}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D597C050-E98D-49CA-868A-218ABCA48579}" = lport=139 | protocol=6 | dir=in | app=system |
"{DB5F6B3F-397F-44F8-B199-04CCB781F585}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EF09DE80-2C70-484B-AA73-18F24D12A598}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{FAD9F7CE-153A-4BF7-BB82-51D604AF7953}" = lport=5353 | protocol=17 | dir=in | name=bonjour port 5353 |
"{FDB1B8D5-1423-4A9A-AE94-C7FF8813E189}" = lport=138 | protocol=17 | dir=in | app=system |
"{FE3C6B01-B16A-4C6B-A156-0D85A194D0E3}" = rport=137 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02C3759D-BC28-47D7-B6E7-6B6302EDC591}" = protocol=17 | dir=in | app=c:\program files (x86)\kodak\aio\center\aiohomecenter.exe |
"{043AC39A-3A11-4AAD-84D6-9E3AF6AE4DF2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0581BE53-25DD-4996-8FC1-37DE1DB26C9D}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{0720CF7C-A7E9-45A4-8D98-836F1061142D}" = protocol=17 | dir=in | app=c:\program files (x86)\kodak\aio\firmware\kodakaioupdater.exe |
"{0A03B21F-7E62-4794-A62E-BFA14A484DBE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{0E2AC9BC-1EF4-427C-A710-7016CCDE866A}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{0ED0529C-17A9-4BBA-9867-97937716B26D}" = protocol=6 | dir=in | app=c:\program files (x86)\aol desktop 9.7a\waol.exe |
"{1112E3C6-6520-4715-A9B7-A9F90EE771E7}" = protocol=58 | dir=in | [email protected],-28545 |
"{13992455-6AAB-4C48-BB6F-ED69B5BF9149}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{14B0F30A-C17D-4835-91A9-0ECD4E7CD2C8}" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
"{16BA6D7A-420D-4B3A-B8E5-900ACE3FECC6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\saints row the third\game_launcher.exe |
"{170120EF-DEDD-4F09-B238-6EFEB5E5486D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird.exe |
"{19C32809-9C06-4027-84FD-260D5DD89369}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{21DFC853-E552-4915-B713-DFAE11C5B76E}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\acs\aolacsd.exe |
"{2789DE90-33B6-4600-8AF3-4ADD7B66C8DF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{294181F2-29AB-4178-9239-1DA65CB34F78}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2B20F0BE-E750-457B-908C-50EB23B7B536}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\1352139576\ee\aolsoftware.exe |
"{2C4F659E-0A7C-4369-B339-C49964590284}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3249ECDE-2DFA-4D4E-8948-DF83DC3C12FF}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{33AAD18F-FAD8-426B-8D57-101044FAAD9A}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd12\kernel\dms\clmsserverpdvd12.exe |
"{357C43A8-B750-4769-A798-310B90214AFC}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\system information\sinf.exe |
"{35B5BF46-B0DD-4A6F-B939-47444D4489D8}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{370D113D-1A14-4EC3-9753-6705408CAB8C}" = protocol=17 | dir=in | app=c:\program files (x86)\aol desktop 9.7a\waol.exe |
"{39EA8ED6-63EE-4DEF-8B66-C983B9AC7C0C}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{39FCEAD8-37B4-43F5-8548-54C8BBAC4BB5}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{3A7FCDEF-CB07-4FC5-8531-B48C32ABD5ED}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3B687935-421C-4AF9-AC17-A42580B79891}" = protocol=17 | dir=in | app=c:\program files (x86)\kodak\aio\center\kodak.statistics.exe |
"{3C83DE61-A0FD-4CF6-926B-3CF450C06657}" = protocol=17 | dir=in | app=c:\programdata\kodak\installer\setup.exe |
"{3F69E2BB-977F-4095-B5E4-E4D6F111C4E9}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd12\kernel\dmr\powerdvd12dmrengine.exe |
"{4440EF15-8F4F-4FBB-AD58-334FDF0B06D7}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4480F8A9-403E-4A7B-B651-1F2C87E7C87E}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd12\powerdvd12ml.exe |
"{44E5DEFB-2992-4124-982A-F7A40A7BE507}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{46511359-790E-4A79-8241-C0F0356C58EB}" = protocol=6 | dir=in | app=c:\program files (x86)\kodak\aio\center\kodak.statistics.exe |
"{474F3568-53A2-4C04-B23F-8877DBC3799C}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{483A89E5-0E66-4744-A4F4-9B29B36C4833}" = protocol=6 | dir=in | app=c:\program files (x86)\kodak\aio\firmware\kodakaioupdater.exe |
"{53596066-7C54-4365-A891-EAD07A226988}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{5779392D-A8B2-48A8-86CE-81C264C97B10}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd12\powerdvd12.exe |
"{5A4DEAAC-C8FE-4A7F-B135-5F0F74F617CB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{629D6F60-914E-4BFE-9F2A-4A02903C29E8}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{6501FC84-67D5-4547-9B62-43730DA8FED6}" = protocol=17 | dir=in | app=c:\program files (x86)\kodak\aio\center\networkprinterdiscovery.exe |
"{6868446C-5CCA-4F94-8D6B-830194DECB43}" = protocol=58 | dir=out | [email protected],-28546 |
"{6E5D8C2F-9194-446B-B549-F9C69D0CA1CA}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{717FF371-C533-42DB-898B-66DF3A61412C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{781AE50C-AF36-4AA0-9701-164FEB2E72FB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{7CE7C8CB-7B23-43EF-BD6D-7CAD8621C923}" = protocol=1 | dir=out | [email protected],-28544 |
"{7CF899CC-86FE-4735-B48C-07A5DFA458D9}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{81BA5CA0-6915-45FD-ACCC-9DA7B22EDFE2}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{81CA680A-2EA5-4FBA-8EF2-9547FDB3178B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe |
"{84938C48-B713-4FCE-A0AE-343A4D4E7305}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{8673CC4E-9C57-4668-8297-A03CC0AB9A40}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8A48427C-E8DC-458B-A714-2A0D2D0D465D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\saints row the third\game_launcher.exe |
"{8A943C6B-0621-4F5E-AC58-B1A703FD431E}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\acs\aoldial.exe |
"{94ACF66A-21A8-4045-99EC-DF0CE6EA4C02}" = protocol=6 | dir=in | app=c:\program files (x86)\kodak\aio\center\networkprinterdiscovery.exe |
"{9A83B3E6-01D5-4539-BE87-3ED74088C769}" = protocol=6 | dir=in | app=c:\program files (x86)\capcom\resident evil 5\re5dx10.exe |
"{9D9C035E-1B3A-4AE2-83B2-18DC8BC171FB}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A2CE2911-1476-4E85-B49F-C2F2919DAE8D}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{A409B33F-987E-424F-A25D-14F291847268}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{A5E38786-B8A4-4CA9-8133-4833079B4D67}" = protocol=6 | dir=in | app=c:\program files (x86)\aol desktop 9.7a\aolbrowser\aolbrowser.exe |
"{A9F6CEA6-80C4-4EF4-9F78-E61A5FCE945A}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{AA55ECBF-EA52-49B4-B74D-1D48748294D6}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\1352139576\ee\aolsoftware.exe |
"{ABDD7C8F-2797-4F97-BA37-819BE472BA3A}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
"{AD47CE6C-6FAB-4483-B871-78D868C77FCF}" = protocol=17 | dir=in | app=c:\program files (x86)\capcom\resident evil 5\re5dx10.exe |
"{B0839E92-5164-42A6-B53D-A33763D1AF8C}" = protocol=6 | dir=in | app=c:\program files (x86)\kodak\aio\center\aiohomecenter.exe |
"{B9947546-DED0-4E7A-A6B4-A5874E19CF0E}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\acs\aolacsd.exe |
"{BFA2370C-BF3E-4B0C-B6A9-29876FA0A9A8}" = protocol=6 | dir=in | app=c:\program files (x86)\capcom\resident evil 5\re5dx9.exe |
"{C303E843-854B-4A7A-A760-FE6D7A099701}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\system information\sinf.exe |
"{C3D83043-FF2C-4655-A0A7-D1104B152E61}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\acs\aoldial.exe |
"{C54905FE-4329-4594-B855-61E9CA9DAEB0}" = protocol=17 | dir=in | app=c:\program files (x86)\aol desktop 9.7a\aolbrowser\aolbrowser.exe |
"{C67E4B8B-3019-488E-B281-C26D017DF089}" = protocol=6 | dir=out | app=system |
"{C8C7CDBA-CEDF-4B46-956A-30E12F5F9D59}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe |
"{CE12126D-1351-4E2D-9D67-C40F05DC1047}" = protocol=1 | dir=in | [email protected],-28543 |
"{D240ABC4-CF84-429F-88DD-B3B31FA6FA56}" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{D7A10693-B436-4F59-A64F-B50FC73FFBEA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird.exe |
"{DDD1885D-568F-460E-A252-4F8FE05A396A}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
"{DE0F0CF9-862D-44E7-ABE2-165B1E894545}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{DE39463F-DA20-497B-82B0-3314BDCC1E6D}" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
"{DE8F23DC-F505-4E3F-9F63-95D329C50E0A}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{E1D62AC6-029F-4055-88C3-E9BE176D8811}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{E352C255-5BAF-450D-A381-9BD1766D9F1C}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd12\movie\powerdvd cinema\powerdvdcinema12.exe |
"{E94ECF67-022D-4E3E-BCF0-F83B8165A68A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{EBDE03A5-BD74-448D-A402-CBA26C4959F5}" = protocol=6 | dir=in | app=c:\programdata\kodak\installer\setup.exe |
"{EC890CB4-92E6-4AE6-80B8-F453B07CD2BC}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\topspeed\3.0\aoltpsd3.exe |
"{F50CFAED-DAC1-4BFC-A858-BAB7602D8D46}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{FBCE57DB-73BD-4402-9D63-491829A51AC0}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd12\powerdvd12agent.exe |
"{FC7A769C-626B-4CFE-86B2-9055627E12A8}" = protocol=17 | dir=in | app=c:\program files (x86)\capcom\resident evil 5\re5dx9.exe |
"{FC95E72D-C741-44A4-ADE1-80A8280EF689}" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
"{FF487F05-6496-4F94-9CD1-124C4816E8B2}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"TCP Query User{0A799680-2390-4AF2-9C67-EE3574E3F0FE}C:\program files (x86)\oovoo\oovoo.exe" = protocol=6 | dir=in | app=c:\program files (x86)\oovoo\oovoo.exe |
"TCP Query User{2D528BE5-CE2B-4F85-87F0-2C0E5EA7D30D}C:\program files (x86)\the elder scrolls v skyrim\creationkit.exe" = protocol=6 | dir=in | app=c:\program files (x86)\the elder scrolls v skyrim\creationkit.exe |
"TCP Query User{2D53B1BB-6431-4F5E-9FE6-D3B57A3B6C09}C:\program files (x86)\firestorm-release\slvoice.exe" = protocol=6 | dir=in | app=c:\program files (x86)\firestorm-release\slvoice.exe |
"TCP Query User{7ACDB258-712B-4855-BE45-0F81CFF94A44}C:\program files (x86)\oovoo\oovoo.exe" = protocol=6 | dir=in | app=c:\program files (x86)\oovoo\oovoo.exe |
"TCP Query User{89756743-D339-40B9-AE00-11F6E6AC7642}E:\left 4 dead 2\left4dead2.gex" = protocol=6 | dir=in | app=e:\left 4 dead 2\left4dead2.gex |
"TCP Query User{8D5E4FDE-13B8-4B08-9674-0E7F6154EC79}C:\users\gamerpc\desktop\dukenukem3d.highresolution.modern\eduke32.exe" = protocol=6 | dir=in | app=c:\users\gamerpc\desktop\dukenukem3d.highresolution.modern\eduke32.exe |
"TCP Query User{AB802133-685C-4360-B0F1-6EB9B9B90E48}C:\users\gamerpc\desktop\emulators\utorrent.exe" = protocol=6 | dir=in | app=c:\users\gamerpc\desktop\emulators\utorrent.exe |
"TCP Query User{B4CBA59D-34D2-4263-AD22-A6A47EB54ECC}C:\users\gamerpc\desktop\emulators\utorrent.exe" = protocol=6 | dir=in | app=c:\users\gamerpc\desktop\emulators\utorrent.exe |
"TCP Query User{E25B3CF3-D598-4C5A-958C-244513466F9F}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{16A12D6B-B3A1-4C8E-A3C8-530077C3E6BC}C:\program files (x86)\firestorm-release\slvoice.exe" = protocol=17 | dir=in | app=c:\program files (x86)\firestorm-release\slvoice.exe |
"UDP Query User{3CA33249-5F3A-47C8-B39E-50731A1F9AA9}C:\users\gamerpc\desktop\emulators\utorrent.exe" = protocol=17 | dir=in | app=c:\users\gamerpc\desktop\emulators\utorrent.exe |
"UDP Query User{3F0D5168-5F20-41D8-8C67-2567EAD2BCA5}C:\program files (x86)\oovoo\oovoo.exe" = protocol=17 | dir=in | app=c:\program files (x86)\oovoo\oovoo.exe |
"UDP Query User{4C5BCD6E-1E88-410A-9125-034ACA2F1367}E:\left 4 dead 2\left4dead2.gex" = protocol=17 | dir=in | app=e:\left 4 dead 2\left4dead2.gex |
"UDP Query User{5091DA96-1B6A-4D3C-A230-ADFF98F687FF}C:\users\gamerpc\desktop\dukenukem3d.highresolution.modern\eduke32.exe" = protocol=17 | dir=in | app=c:\users\gamerpc\desktop\dukenukem3d.highresolution.modern\eduke32.exe |
"UDP Query User{52F04C02-F5CA-48C4-81B7-517D8238A157}C:\program files (x86)\the elder scrolls v skyrim\creationkit.exe" = protocol=17 | dir=in | app=c:\program files (x86)\the elder scrolls v skyrim\creationkit.exe |
"UDP Query User{5CCBFBEB-F536-4F37-B421-A4F4E4C95C30}C:\users\gamerpc\desktop\emulators\utorrent.exe" = protocol=17 | dir=in | app=c:\users\gamerpc\desktop\emulators\utorrent.exe |
"UDP Query User{BB8CA678-6D1F-4376-B5E9-A881B0237A97}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{E511A840-B700-4C55-8C70-6713115A8D0F}C:\program files (x86)\oovoo\oovoo.exe" = protocol=17 | dir=in | app=c:\program files (x86)\oovoo\oovoo.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07EEE598-5F21-4B57-B40B-46592625B3D9}" = Zune Language Pack (PTB)
"{09536BA1-E498-4CC3-B834-D884A67D7E34}" = Intel® Trusted Connect Service Client
"{0E5D76AD-A3FB-48D5-8400-8903B10317D3}" = iTunes
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1FB31F44-D4D0-4D76-944A-A1A5D79FD321}" = Windows Live Family Safety
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{27EF8E7F-88D1-4ec5-ADE2-7E447FDF114E}" = Kodak AIO Printer
"{2A9DFFD8-4E09-4B91-B957-454805B0D7C4}" = Zune Language Pack (CHS)
"{3589A659-F732-4E65-A89A-5438C332E59D}" = Zune Language Pack (ELL)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{502275B0-3DA3-44D8-8702-066525CAAE98}" = AVG 2013
"{51C839E1-2BE4-4E77-A1BA-CCEA5DAFA741}" = Zune Language Pack (KOR)
"{57C51D56-B287-4C11-9192-EC3C46EF76A4}" = Zune Language Pack (RUS)
"{5C93E291-A1CC-4E51-85C6-E194209FCDB4}" = Zune Language Pack (PTG)
"{5DEFD397-4012-46C3-B6DA-E8013E660772}" = Zune Language Pack (NOR)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6740BCB0-5863-47F4-80F4-44F394DE4FE2}" = Zune Language Pack (NLD)
"{6B33492E-FBBC-4EC3-8738-09E16E395A10}" = Zune Language Pack (ESP)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{6EB931CD-A7DA-4A44-B74A-89C8EB50086F}" = Zune Language Pack (SVE)
"{76BA306B-2AA0-47C0-AB6B-F313AB56C136}" = Zune Language Pack (MSL)
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{8960A0A1-BB5A-479E-92CF-65AB9D684B43}" = Zune Language Pack (PLK)
"{8B112338-2B08-4851-AF84-E7CAD74CEB32}" = Zune Language Pack (DAN)
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{92ECE3F9-591E-4C12-8A62-B9FCE38BF646}" = Zune Language Pack (IND)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B75648B-6C30-4A0D-9DE6-0D09D20AF5A5}" = Zune
"{A5A53EA8-A11E-49F0-BDF5-AE536426A31A}" = Zune Language Pack (CHT)
"{A8F2E50B-86E2-4D96-9BD2-9758BCC6F9B3}" = Zune Language Pack (CSY)
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.18.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B4870774-5F3A-46D9-9DFE-06FB5599E26B}" = Zune Language Pack (FIN)
"{BE236D9A-52EC-4A17-82DA-84B5EAD31E3E}" = Zune Language Pack (DEU)
"{BFAB7835-55A2-41CD-AE66-F673BCA4E49F}" = AVG 2013
"{C5D37FFA-7483-410B-982B-91E93FD3B7DA}" = Zune Language Pack (ITA)
"{C68D33B1-0204-4EBE-BC45-A6E432B1D13A}" = Zune Language Pack (FRA)
"{C6BE19C6-B102-4038-B2A6-1C313872DBB4}" = Zune Language Pack (HUN)
"{CEA21F20-DBF4-464C-8B81-28B8508AFDDD}" = Windows Live Family Safety
"{D0CB24F4-084F-40DE-B6B9-A03626E682F0}" = iCloud
"{D70884EA-E2CE-4539-91DB-4766CC1E5F5F}" = Apple Mobile Device Support
"{D8A781C9-3892-4E2E-9320-480CF896CFBB}" = Zune Language Pack (JPN)
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F2CB8C3C-9C9E-4FAB-9067-655601C5F748}" = Windows Mobile Device Updater Component
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"ASRock App Charger_is1" = ASRock App Charger v1.0.4
"ASRock XFast RAM_is1" = ASRock XFast RAM v2.0.9
"AVG" = AVG 2013
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"WinRAR archiver" = WinRAR 4.20 (64-bit)
"Zune" = Zune

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{02627EE5-EACA-4742-A9CC-E687631773E4}" = Nero ShowTime
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}" = Microsoft Games for Windows - LIVE Redistributable
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{10934A28-0CC6-4B98-A14F-76B3546003AF}" = ksDIP
"{120a48c5-c576-409a-a382-4500030f3965}" = Nero 9 Essentials
"{16D919E6-F019-4E15-BFBE-4A85EF19DA57}" = Oblivion - Spell Tomes
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YTD Video Downloader 3.9.6
"{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}" = Bing Bar
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 11
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2F2E3D62-8B8C-448F-8900-451325E50948}" = Oblivion - Wizard's Tower
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{376348C2-E372-48BC-A138-E896757BD86A}" = aioscnnr
"{3ABEBD00-299D-4DCA-967F-B912163AB5EA}" = Oblivion - Horse Armor Pack
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{3ECECC41-64EC-47F7-BCD1-6EC7039FF88A}" = YTD Toolbar v6.6
"{42C509F1-C451-11E1-AEC9-F04DA23A5C58}" = DVD Architect Studio 5.0
"{43E39830-1826-415D-8BAE-86845787B54B}" = Nero Vision
"{46928CB0-C451-11E1-9E62-F04DA23A5C58}" = MSVCRT Redists
"{48B41C3A-9A92-4B81-B653-C97FEB85C910}" = C4USelfUpdater
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D243BA7-9AC4-46D1-90E5-EEB88974F501}" = Microsoft Games for Windows - LIVE
"{4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{520F4B09-3A51-47A2-82B0-9FF1DC2D20FA}" = Oblivion - Vile Lair
"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries
"{56BA241F-580C-43D2-8403-947241AAE633}" = center
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5D9BE3C1-8BA4-4E7E-82FD-9F74FA6815D1}" = Nero Vision Help
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6DC79411-858B-11E1-8E7A-F04DA23A5C58}" = Vegas Movie Studio HD 11.0
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{71CB4200-858B-11E1-B14B-F04DA23A5C58}" = MSVCRT Redists
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140011-0066-0409-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - English
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}" = OpenOffice.org 3.4.1
"{A0A20753-92DF-4631-82B4-9CACE2FCED6A}" = Oblivion - The Fighter's Stronghold
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA027AE9-DD20-4677-AA72-D760A358320B}" = Microsoft VC9 runtime libraries
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC08BBA0-96B9-431A-A7D0-D8598E493775}" = RESIDENT EVIL 5
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.3
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}" = DolbyFiles
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B46BEA36-0B71-4A4E-AE41-87241643FA0A}" = CyberLink PowerDVD 12
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B78120A0-CF84-4366-A393-4D0A59BC546C}" = Menu Templates - Starter Kit
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BE94C681-68E2-4561-8ABC-8D2E799168B4}" = essentials
"{BFBCF96F-7361-486A-965C-54B17AC35421}" = ocr
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{CCE825DB-347A-4004-A186-5F4A6FDD8547}" = Apple Application Support
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CE96F5A5-584D-4F8F-AA3E-9BAED413DB72}" = Nero CoverDesigner Help
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}" = Nero ShowTime
"{DA5BDB2A-12F0-4343-8351-21AAEB293990}" = PreReq
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E0F274B7-592B-4669-8FB8-8D9825A09858}" = KODAK AiO Software
"{E498385E-1C51-459A-B45F-1721E37AA1A0}" = Movie Templates - Starter Kit
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EC425CFC-EE78-4A91-AA25-3BFA65B75364}" = Oblivion - Orrery
"{EF295F5C-7B57-47AA-8889-6B3E8E214E89}" = Oblivion - Mehrunes Razor
"{EF53BFAB-4C10-40DB-A82D-9B07111715C6}" = aioscnnr
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}" = Sound Blaster X-Fi MB
"{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}" = Nero ControlCenter
"{F6BDD7C5-89ED-4569-9318-469AA9732572}" = Nero BurnRights Help
"{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}" = ooVoo
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FFFFFD17-B460-41EB-93F1-C48ABAD63828}" = Oblivion - Thieves Den
"5513-1208-7298-9440" = JDownloader 0.9
"Action Replay DSi Code Manager_is1" = Action Replay DSi Code Manager
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Afterburner" = MSI Afterburner 2.2.1
"AIM Toolbar" = AOL Messaging Toolbar
"AIM_7" = AIM 7
"alotAppbar" = ALOT Appbar
"AOL Toolbar" = AOL Toolbar
"AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove)
"ASRock eXtreme Tuner_is1" = ASRock eXtreme Tuner v0.1.169
"ASRock InstantBoot_is1" = ASRock InstantBoot v1.26
"Audacity_is1" = Audacity 2.0.2
"BigJon PCGames Config Wizard1.1" = BigJon PCGames Config Wizard
"BJWOF" = Wheel Of Fortune 7.1.x
"BOSS" = BOSS
"CloneCD" = CloneCD
"DAEMON Tools Pro" = DAEMON Tools Pro
"DivX Setup" = DivX Setup
"Fallout New Vegas_is1" = Fallout New Vegas
"Firestorm-Release" = Firestorm-Release (remove only)
"GameSaike SixaxisDriver_is1" = SixaxisDriver 0.91
"Generic Mod Manager_is1" = Fallout Mod Manager 0.13.21
"Google Chrome" = Google Chrome
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}" = CyberLink PowerDVD 12
"LAME_is1" = LAME v3.99.3 (for Windows)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100
"ManyCam" = ManyCam 3.1.21
"Monopoly by Parker Brothers" = Monopoly by Parker Brothers
"Mozilla Firefox 18.0 (x86 en-US)" = Mozilla Firefox 18.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"pcsx2-r5350" = PCSX2 - Playstation 2 Emulator
"Price Check by AOL" = Price Check by AOL
"PrintProjects" = PrintProjects
"Project64 1.7" = Project64 1.7
"Singularity" = Singularity (remove only)
"Smart File Advisor_is1" = Smart File Advisor 1.1.1
"SoftwareUpdUtility" = Download Updater (AOL Inc.)
"Steam App 55230" = Saints Row: The Third
"Steam App 570" = Dota 2
"The Jokers' Wild1.0.x" = The Jokers' Wild
"The Price Is Right7.9.0" = The Price Is Right
"ViewpointMediaPlayer" = Viewpoint Media Player
"Whammy_1.0" = Tic Tac Dough 1.0
"Wheel of Fortune Deluxe" = Wheel of Fortune Deluxe (remove only)
"Winamp" = Winamp
"WinLiveSuite" = Windows Live Essentials
"XFastUSB" = XFastUSB
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Messenger" = Yahoo! Messenger
"Yahoo! Software Update" = Yahoo! Software Update
"Your Product1.0" = Your Product
"YTdetect" = Yahoo! Detect

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"AOL Messaging Toolbar" = AOL Messaging Toolbar
"AOL Toolbar" = AOL Toolbar
"JoinMe" = join.me

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1/11/2013 2:31:12 PM | Computer Name = nwofan-PC | Source = Bonjour Service | ID = 100
Description = mDNSCoreReceiveResponse: Unexpected conflict discarding 17 2.0.168.192.in-addr.arpa.
PTR nwofan-PC.local.

Error - 1/11/2013 2:32:09 PM | Computer Name = nwofan-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/11/2013 3:18:48 PM | Computer Name = nwofan-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/11/2013 4:09:44 PM | Computer Name = nwofan-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/11/2013 4:39:19 PM | Computer Name = nwofan-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "C:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "C:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.

Error - 1/11/2013 6:53:44 PM | Computer Name = nwofan-PC | Source = Bonjour Service | ID = 100
Description = mDNSCoreReceiveResponse: Received from 192.168.0.2:5353 19 2.0.168.192.in-addr.arpa.
PTR nwofan-PC-2.local.

Error - 1/11/2013 6:53:44 PM | Computer Name = nwofan-PC | Source = Bonjour Service | ID = 100
Description = mDNSCoreReceiveResponse: Unexpected conflict discarding 17 2.0.168.192.in-addr.arpa.
PTR nwofan-PC.local.

Error - 1/11/2013 6:55:06 PM | Computer Name = nwofan-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/12/2013 5:45:13 AM | Computer Name = nwofan-PC | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 9.0.8112.16457,
time stamp: 0x50a2f9e3 Faulting module name: ntdll.dll, version: 6.1.7601.17725,
time stamp: 0x4ec49b8f Exception code: 0xc0000005 Fault offset: 0x00038dc9 Faulting
process id: 0x28b0 Faulting application start time: 0x01cdf09dcaa61202 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWOW64\ntdll.dll Report Id: c2e5e757-5c9c-11e2-9cc5-00038a000015

Error - 1/12/2013 2:06:43 PM | Computer Name = nwofan-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 1/17/2013 3:00:55 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureActions with the following
error: %%5

Error - 1/17/2013 3:01:02 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureActions with the following
error: %%5

Error - 1/17/2013 3:01:29 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Nero
BackItUp Scheduler 4.0 service to connect.

Error - 1/17/2013 3:01:29 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7000
Description = The Nero BackItUp Scheduler 4.0 service failed to start due to the
following error: %%1053

Error - 1/17/2013 3:04:41 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Steam
Client Service service to connect.

Error - 1/17/2013 3:04:41 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7000
Description = The Steam Client Service service failed to start due to the following
error: %%1053

Error - 1/17/2013 9:07:19 PM | Computer Name = nwofan-PC | Source = DCOM | ID = 10010
Description =

Error - 1/17/2013 9:07:36 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureActions with the following
error: %%5

Error - 1/17/2013 9:08:34 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureActions with the following
error: %%5

Error - 1/17/2013 9:08:37 PM | Computer Name = nwofan-PC | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureActions with the following
error: %%5


< End of report >
  • 0

#3
Essexboy
Posted 18 January 2013 - 08:20 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there lets get you cleaned up

CLEAR THE BAD TOOLBARS

Download AdwCleaner from here to your desktop
Run AdwCleaner and select Delete

Posted Image

Once done it will ask to reboot, allow this
On reboot a log will be produced please attach that

THEN

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    Posted Image
:OTL
O4 - HKCU..\Run: [mthpsy] "C:\Windows\System32\rundll32.exe" "C:\Users\gamerpc\AppData\Roaming\mthpsy.dll",write_init_3 File not found
[2013/01/14 16:15:00 | 000,006,521 | ---- | C] () -- C:\Users\gamerpc\AppData\Local\b94b04aa-6a61-4de1-b533-f34c1aa7c2fd.crx

:Files
C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE

:Commands
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

  • 0

#4
Lucky Dearly
Posted 18 January 2013 - 06:04 PM

Lucky Dearly

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 349 posts
after these fixes the popup no longer shows up ^^

here's the logs first OTL

All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\mthpsy deleted successfully.
C:\Users\gamerpc\AppData\Local\b94b04aa-6a61-4de1-b533-f34c1aa7c2fd.crx moved successfully.
========== FILES ==========
C:\Users\gamerpc\AppData\Local\Temp\XTMP1MC3VE folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator

User: Alex Valencia
->Temp folder emptied: 86417643 bytes
->Temporary Internet Files folder emptied: 505926073 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 96612349 bytes
->Flash cache emptied: 16505 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: gamerpc
->Temp folder emptied: 2812538783 bytes
->Temporary Internet Files folder emptied: 627693349 bytes
->Java cache emptied: 45993 bytes
->FireFox cache emptied: 422123973 bytes
->Google Chrome cache emptied: 377010167 bytes
->Flash cache emptied: 62653 bytes

User: Mario Valencia

User: Mario Valencia.NWOFAN-PC
->Temp folder emptied: 173115797 bytes
->Temporary Internet Files folder emptied: 334010620 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 199676635 bytes
->Google Chrome cache emptied: 376848276 bytes
->Flash cache emptied: 2178 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Veronica Valencia

User: Veronica Valencia.NWOFAN-PC
->Temp folder emptied: 35851705 bytes
->Temporary Internet Files folder emptied: 81439978 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 338195435 bytes
->Flash cache emptied: 1791 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 1618992 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 226221590 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67563 bytes
RecycleBin emptied: 21728711 bytes

Total Files Cleaned = 6,406.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 01182013_153839

Files\Folders moved on Reboot...
File\Folder C:\Users\gamerpc\AppData\Local\Temp\Temporary Internet Files\Content.IE5\KLYGW62Z\01[1].htm not found!
File\Folder C:\Users\gamerpc\AppData\Local\Temp\Temporary Internet Files\Content.IE5\KLYGW62Z\adoapn_AppNexusDemoActionTag_1[1].htm not found!
File\Folder C:\Users\gamerpc\AppData\Local\Temp\Temporary Internet Files\Content.IE5\KLYGW62Z\ADSAdClient31[3].htm not found!
File\Folder C:\Users\gamerpc\AppData\Local\Temp\Low\~DFEC207B40BB1C5E72.TMP not found!
C:\Users\gamerpc\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\gamerpc\AppData\Local\Temp\~DF99553087E47807BD.TMP not found!
File\Folder C:\Users\gamerpc\AppData\Local\Temp\~DFA55D61379D6F5499.TMP not found!
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\IAJDJ5G6\rsa[1].htm moved successfully.
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GV03BRKU\pingCAJ4SKX2.js moved successfully.
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\78PUOBBS\IBCode.rev02[1].js moved successfully.
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5AVUFV0F\pingCA8HV223.js moved successfully.
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\4S3DH6T9\yahoo[1].htm moved successfully.
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\35UI3QJ0\pingCA1ZTMGS.js moved successfully.
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
C:\Users\gamerpc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
File move failed. C:\Windows\temp\CLDigitalHome\CLMS_AGENT_LOG1.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

attached is the adwcleaner log

also I noticed a glitch with Internet Explorer, it doesn't seem to be recording history anymore save for what i do on the desktop

Attached Files


Edited by Lucky Dearly, 18 January 2013 - 06:19 PM.

  • 0

#5
Essexboy
Posted 19 January 2013 - 05:33 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
For the history problem do the following

Go to Control Panel > Internet Options
Select Browsing History > Settings
History Tab
Set the number of days that you wish history to be kept for (mine is set to delete on browser closure)



THEN

Update Malwarebytes
Run a quick scan
Post the resultant log
  • 0

#6
Lucky Dearly
Posted 19 January 2013 - 04:29 PM

Lucky Dearly

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 349 posts
here's the scan log for malware bytes

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.19.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
gamerpc :: NWOFAN-PC [administrator]

1/19/2013 2:18:04 PM
mbam-log-2013-01-19 (14-18-04).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 346349
Time elapsed: 2 minute(s), 31 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

also the history still isn't being recorded by internet explorer
  • 0

#7
Essexboy
Posted 19 January 2013 - 04:36 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets try this

Open an elevated command prompt

Go Start > All Programs > Accessories
Right click Command Prompt and select "Run as Administrator"
In the black box type the following pressing enter after each line

cd AppData\Local\Microsoft\Windows\History\Low\History.IE5
del/a index.dat

Then visit a few web pages and see if the history is being kept
  • 0

#8
Essexboy
Posted 24 January 2013 - 01:46 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP