Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Windows 7 Professional x64 White Screen [Closed]


  • This topic is locked This topic is locked

#1
TheRogueX

TheRogueX

    New Member

  • Member
  • Pip
  • 4 posts
My first post here, and it's a doozy. Anyway, thanks in advance for helping me out. I found you guys while searching for fixes for my problem, and it looks like you know your stuff.

Last night, somewhat randomly, I was using my computer when the screen went bright white. I still had my cursor but could not do anything. Upon hitting CTRL+AL+DEL all I could do was log off (Task Manager did nothing). Logging off brought back the desktop for a moment, and logging back on gave me access to it for just a few moments before the white screen came back and I was locked out.

Seeing that others were pointed to use the 'Farbar Recovery Scan Tool' I downloaded it and booted into Safe Mode w/Command Prompt and ran the tool. Below you'll find my results attached.

Again, thanks a ton. I haven't worked in IT support for awhile and since I so rarely get viruses on my own machines (this is only my third serious one ever), my virus-busting skills are rusty.

-Travis

EDIT: I should have posted the contents of the file directly instead of attachments. I'll remedy that now.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2013
Ran by RogueAssassin (administrator) on 08-08-2013 01:07:44
Running from H:\
Windows 7 Professional Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Safe Mode (minimal)

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Windows\system32\cmd.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10038304 2010-01-29] (Realtek Semiconductor)
HKLM\...\Run: [Launch LgDeviceAgent] - C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [415816 2010-08-03] (Logitech Inc.)
HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [4725320 2010-08-03] (Logitech Inc.)
HKLM\...\Run: [Launch LCDMon] - C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2412616 2010-08-03] (Logitech Inc.)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-06-20] (Microsoft Corporation)
HKLM\...\Run: [IntelliType Pro] - C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1464944 2012-11-02] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] - C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2076272 2012-11-02] (Microsoft Corporation)
HKCU\...\Run: [GarminExpressTrayApp] - C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1098072 2013-03-27] (Garmin Ltd or its subsidiaries)
HKCU\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2011-09-23] (AMD)
HKCU\...\Run: [Google Update] - C:\Users\RogueAssassin\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2010-09-07] (Google Inc.)
HKCU\...\Winlogon: [Shell] explorer.exe,C:\Users\RogueAssassin\AppData\Roaming\skype.dat [209920 2011-11-17] (KeyDevelop Software Group) <==== ATTENTION
MountPoints2: E - E:\.\Bin\ASSETUP.exe
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Octh Class - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll ()
Toolbar: HKCU - No Name - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creat...13/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...15113/CTPID.cab
Handler: msdaipp - No CLSID Value -
Handler-x32: msdaipp - No CLSID Value -
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.110.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 - C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 - C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.11 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\RogueAssassin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\RogueAssassin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\RogueAssassin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Extension: No Name - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
FF Extension: No Name - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default\Extensions\staged
FF Extension: No Name - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default\Extensions\{35379F86-8CCB-4724-AE33-4278DE266C70}
FF Extension: No Name - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{0329E7D6-6F54-462D-93F6-F5C3118BADF2}] C:\Program Files (x86)\SpeedBit Video Downloader\SPFireFox
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\firefox.exe

Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (ActiveTouch General Plugin Container) - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\plugins\npatgpc.dll (Cisco WebEx LLC)
CHR Plugin: (Google Talk Plugin) - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (DivX Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 6 U39) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR Plugin: (VLC Multimedia Plug-in) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Nexon Game Controller) - C:\ProgramData\NexonUS\NGM\npNxGameUS.dll No File
CHR Plugin: (Unity Player) - C:\Users\RogueAssassin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.390.4) - C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (iGoogle) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmgmamhdocpcnkhcedgjemhcngapljj\2012.7.8.16633_0
CHR Extension: (Angry Birds) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0
CHR Extension: (Google Drive) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Add to Amazon Wish List) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced\1.0.0.10_0
CHR Extension: (Google Search) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (High Contrast) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\djcfdncoelnlbldjfhinnjlhdjlikmph\0.5_0
CHR Extension: (Facebook) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnknkgccldocdogpnhbaddbdhhjiindo\2012.7.8.16646_0
CHR Extension: (DSLReports Home : Broadband ISP Reviews News Tools and Forums) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkoheonhjbianbpenfgpnjhehfbojgki\2012.7.8.16652_0
CHR Extension: (Wikipedia) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gigfahoidehcoolojohkidgehjiojakl\2012.7.8.16641_0
CHR Extension: (AdBlock) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.4_0
CHR Extension: (Angry Birds Seasons) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\glfgpgljcapdjhcnmecmgihadngabijc\1.1_0
CHR Extension: (Watch TV. Watch Movies. | Online | Free | Hulu) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhgbkjbpjkpdkbbalmaggmmlcffjaaae\2012.7.8.16657_0
CHR Extension: (Enhanced Steam) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg\4.0.1_0
CHR Extension: (LogMeIn) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\omkjapkpkiciphacnalicgmmcelfolon\1.0.0.1029_0
CHR Extension: (Gmail) - C:\Users\ROGUEA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR StartMenuInternet: Google Chrome - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-28] (Advanced Micro Devices, Inc.)
S3 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [96896 2009-12-28] (ASUSTeK Computer Inc.)
S3 DAUpdaterSvc; G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [25832 2009-12-15] (BioWare)
S2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [185688 2013-03-27] (Garmin Ltd or its subsidiaries)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [366640 2011-05-29] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-06-20] (Microsoft Corporation)
S3 MySQL; C:\Program Files (x86)\MySQL\MySQL Server 5.1\my.ini [8926 2011-02-05] ()
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-06-20] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4323256 2011-03-28] (INCA Internet Co., Ltd.)
S3 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75136 2012-02-27] ()

==================== Drivers (Whitelisted) ====================

S2 AODDriver4.01; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
S1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-05] ()
S1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-05] ()
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 MAUSBPRODUCER; C:\Windows\System32\DRIVERS\MAudioProducer.sys [187912 2009-09-02] (Avid Technology, Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25912 2011-05-29] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25912 2011-05-29] (Malwarebytes Corporation)
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-15] ()
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [51712 2009-06-10] (Realtek Semiconductor Corporation )
S3 ALSysIO; \??\C:\Users\ROGUEA~1\AppData\Local\Temp\ALSysIO64.sys [x]
S3 dump_wmimmc; \??\C:\Program Files (x86)\NCsoft\Lineage II\system\GameGuard\dump_wmimmc.sys [x]
S3 easytether; system32\DRIVERS\easytthr.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
S3 X6va005; \??\C:\Users\ROGUEA~1\AppData\Local\Temp\005C175.tmp [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-08 01:07 - 2013-08-08 01:07 - 00000000 ____D C:\FRST
2013-08-08 00:45 - 2013-08-08 00:45 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-08 00:45 - 2013-08-08 00:45 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-08 00:45 - 2013-08-08 00:45 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-08 00:45 - 2013-08-08 00:45 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-08 00:45 - 2013-08-08 00:45 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-08-08 00:45 - 2013-08-08 00:45 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-08-08 00:45 - 2013-08-08 00:45 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-08-08 00:45 - 2013-08-08 00:45 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-08-08 00:45 - 2013-08-08 00:45 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-08-08 00:45 - 2013-08-08 00:45 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-08-08 00:45 - 2013-08-08 00:45 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-08-08 00:42 - 2013-08-08 00:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-08 00:38 - 2013-08-08 00:47 - 00008378 _____ C:\Windows\IE10_main.log
2013-08-08 00:35 - 2013-08-08 00:35 - 00000000 ____D C:\Windows\system32\MRT
2013-08-08 00:32 - 2013-08-08 01:02 - 00000004 _____ C:\Users\RogueAssassin\AppData\Roaming\skype.ini
2013-08-05 22:14 - 2013-08-05 22:14 - 01067456 _____ (Solid State Networks) C:\Users\RogueAssassin\Desktop\install_flashplayer11x32au_mssd_aaa_aih.exe
2013-08-05 21:47 - 2013-08-05 21:47 - 00000096 _____ C:\Users\RogueAssassin\Desktop\Shadow of the Eternals by Precursor Games — Kickstarter.url
2013-08-05 21:46 - 2013-08-05 21:46 - 00000100 _____ C:\Users\RogueAssassin\Desktop\Satellite Reign by 5 Lives Studios — Kickstarter.url
2013-08-05 21:46 - 2013-08-05 21:46 - 00000059 _____ C:\Users\RogueAssassin\Desktop\Pledge - Satellite Reign.url
2013-08-05 21:46 - 2013-08-05 21:46 - 00000047 _____ C:\Users\RogueAssassin\Desktop\StarMade - StarMade.url
2013-08-04 20:42 - 2013-08-04 20:42 - 00111053 _____ C:\Users\RogueAssassin\Desktop\dirtyhack.zip
2013-08-04 19:21 - 2013-08-04 19:21 - 00000000 ____D C:\Users\ROGUEA~1\AppData\Local\Harebrained Schemes
2013-08-04 15:45 - 2013-08-04 15:45 - 00000222 _____ C:\Users\RogueAssassin\Desktop\Shadowrun Returns.url
2013-08-04 15:29 - 2013-08-04 15:29 - 00675988 _____ C:\Users\RogueAssassin\Desktop\Minecraft.exe
2013-08-04 15:26 - 2013-08-04 15:26 - 00367332 _____ (http://magiclauncher.com) C:\Users\RogueAssassin\Desktop\MagicLauncher_1.1.7.exe
2013-07-30 09:40 - 2013-07-30 09:40 - 00002222 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-24 23:56 - 2013-07-24 23:56 - 00290825 _____ C:\Users\RogueAssassin\Downloads\Download Fort Zombie.exe
2013-07-20 16:30 - 2013-07-20 16:30 - 00001411 _____ C:\Users\RogueAssassin\Desktop\TEdit.lnk
2013-07-20 15:06 - 2013-07-21 14:34 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\TEdit
2013-07-20 15:03 - 2013-07-20 15:03 - 00000000 ____D C:\Program Files (x86)\TEdit
2013-07-17 23:52 - 2013-07-17 23:52 - 00000067 _____ C:\Users\RogueAssassin\Desktop\Falskaar at Skyrim Nexus - Skyrim mods and community.url
2013-07-13 20:36 - 2013-07-21 17:42 - 00000000 ____D C:\Program Files (x86)\FreeDNS Update
2013-07-13 20:36 - 2013-07-13 20:36 - 00001088 _____ C:\Users\Vicky-Share\Desktop\FreeDNS Update.lnk
2013-07-13 20:36 - 2013-07-13 20:36 - 00001088 _____ C:\Users\RogueAssassin\Desktop\FreeDNS Update.lnk
2013-07-13 20:36 - 2013-07-13 20:36 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeDNS Update
2013-07-11 19:32 - 2013-07-11 19:32 - 00000000 ____D C:\Users\ROGUEA~1\AppData\Local\LogMeIn
2013-07-11 19:32 - 2013-07-11 19:32 - 00000000 ____D C:\ProgramData\LogMeIn
2013-07-11 15:16 - 2013-07-11 15:16 - 00003118 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2013-07-11 15:16 - 2013-07-11 15:16 - 00003090 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2013-07-11 15:16 - 2013-07-11 15:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_point64_01011.Wdf
2013-07-11 15:14 - 2013-07-11 15:14 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2013-07-10 21:53 - 2013-06-04 22:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-10 21:53 - 2013-05-13 00:51 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-07-10 21:53 - 2013-05-13 00:51 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-07-10 21:53 - 2013-05-13 00:51 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-07-10 21:53 - 2013-05-13 00:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-07-10 21:53 - 2013-05-12 23:45 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-07-10 21:53 - 2013-05-12 23:45 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-07-10 21:53 - 2013-05-12 23:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-07-10 21:53 - 2013-05-12 22:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-07-10 21:53 - 2013-05-12 22:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-07-10 21:53 - 2013-05-12 22:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-07-10 21:53 - 2013-05-08 01:39 - 01910632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-10 21:53 - 2013-05-06 01:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-10 21:53 - 2013-05-05 23:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-10 21:53 - 2013-04-12 09:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-07-10 21:53 - 2013-02-27 01:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-07-10 21:53 - 2013-02-27 00:52 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-07-10 21:53 - 2013-02-27 00:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-07-10 21:53 - 2013-02-27 00:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-07-10 21:53 - 2013-02-27 00:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-07-10 21:53 - 2013-02-26 23:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-07-10 21:53 - 2013-02-26 23:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-07-10 21:53 - 2013-02-26 23:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-07-10 21:52 - 2013-06-04 01:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-10 21:52 - 2013-06-03 23:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-10 21:52 - 2013-04-26 00:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-07-10 21:52 - 2013-04-25 23:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-07-10 21:52 - 2013-04-10 01:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-07-10 21:52 - 2013-04-10 01:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-07-10 21:52 - 2011-02-03 06:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll

==================== One Month Modified Files and Folders =======

2013-08-08 01:07 - 2013-08-08 01:07 - 00000000 ____D C:\FRST
2013-08-08 01:04 - 2010-09-09 23:28 - 00097252 _____ C:\Windows\PFRO.log
2013-08-08 01:02 - 2013-08-08 00:32 - 00000004 _____ C:\Users\RogueAssassin\AppData\Roaming\skype.ini
2013-08-08 01:02 - 2010-09-07 17:23 - 01533419 _____ C:\Windows\WindowsUpdate.log
2013-08-08 00:56 - 2009-07-13 23:45 - 00015072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-08 00:56 - 2009-07-13 23:45 - 00015072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-08 00:52 - 2011-05-03 15:16 - 00000908 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-08 00:52 - 2010-09-07 17:24 - 00001427 _____ C:\Users\RogueAssassin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-08-08 00:50 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-08 00:49 - 2009-07-13 23:51 - 00084315 _____ C:\Windows\setupact.log
2013-08-08 00:49 - 2009-07-13 23:45 - 00384688 _____ C:\Windows\system32\FNTCACHE.DAT
2013-08-08 00:47 - 2013-08-08 00:38 - 00008378 _____ C:\Windows\IE10_main.log
2013-08-08 00:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-08-08 00:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-08-08 00:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-08-08 00:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-08-08 00:47 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-08-08 00:45 - 2013-08-08 00:45 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-08 00:45 - 2013-08-08 00:45 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-08 00:45 - 2013-08-08 00:45 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-08 00:45 - 2013-08-08 00:45 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-08 00:45 - 2013-08-08 00:45 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-08-08 00:45 - 2013-08-08 00:45 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-08-08 00:45 - 2013-08-08 00:45 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-08-08 00:45 - 2013-08-08 00:45 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-08-08 00:45 - 2013-08-08 00:45 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-08-08 00:45 - 2013-08-08 00:45 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-08-08 00:45 - 2013-08-08 00:45 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-08-08 00:45 - 2013-08-08 00:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-08-08 00:45 - 2013-08-08 00:45 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-08-08 00:42 - 2013-08-08 00:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-08 00:42 - 2013-08-08 00:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-08 00:39 - 2011-05-03 15:16 - 00000912 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-08 00:38 - 2013-08-08 00:35 - 00000000 ____D C:\Windows\system32\MRT
2013-08-08 00:33 - 2012-09-06 23:44 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\Orbit
2013-08-08 00:30 - 2010-09-07 17:29 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001UA.job
2013-08-08 00:25 - 2012-04-04 17:21 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-07 20:30 - 2010-09-07 17:29 - 00000888 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001Core.job
2013-08-05 22:14 - 2013-08-05 22:14 - 01067456 _____ (Solid State Networks) C:\Users\RogueAssassin\Desktop\install_flashplayer11x32au_mssd_aaa_aih.exe
2013-08-05 21:59 - 2010-09-08 12:23 - 00000000 ____D C:\Program Files (x86)\Steam
2013-08-05 21:47 - 2013-08-05 21:47 - 00000096 _____ C:\Users\RogueAssassin\Desktop\Shadow of the Eternals by Precursor Games — Kickstarter.url
2013-08-05 21:46 - 2013-08-05 21:46 - 00000100 _____ C:\Users\RogueAssassin\Desktop\Satellite Reign by 5 Lives Studios — Kickstarter.url
2013-08-05 21:46 - 2013-08-05 21:46 - 00000059 _____ C:\Users\RogueAssassin\Desktop\Pledge - Satellite Reign.url
2013-08-05 21:46 - 2013-08-05 21:46 - 00000047 _____ C:\Users\RogueAssassin\Desktop\StarMade - StarMade.url
2013-08-05 20:31 - 2010-09-13 23:35 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\Mozilla
2013-08-04 20:42 - 2013-08-04 20:42 - 00111053 _____ C:\Users\RogueAssassin\Desktop\dirtyhack.zip
2013-08-04 19:21 - 2013-08-04 19:21 - 00000000 ____D C:\Users\ROGUEA~1\AppData\Local\Harebrained Schemes
2013-08-04 16:12 - 2011-04-21 14:00 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\.minecraft
2013-08-04 15:45 - 2013-08-04 15:45 - 00000222 _____ C:\Users\RogueAssassin\Desktop\Shadowrun Returns.url
2013-08-04 15:29 - 2013-08-04 15:29 - 00675988 _____ C:\Users\RogueAssassin\Desktop\Minecraft.exe
2013-08-04 15:26 - 2013-08-04 15:26 - 00367332 _____ (http://magiclauncher.com) C:\Users\RogueAssassin\Desktop\MagicLauncher_1.1.7.exe
2013-07-30 09:40 - 2013-07-30 09:40 - 00002222 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-07-30 09:40 - 2011-05-03 15:16 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-28 22:33 - 2012-02-06 20:47 - 00000900 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-07-28 22:33 - 2012-02-06 20:47 - 00000000 ____D C:\Program Files\Nexus Mod Manager
2013-07-28 22:33 - 2011-11-11 01:57 - 00000000 ____D C:\Users\ROGUEA~1\AppData\Local\Skyrim
2013-07-27 12:25 - 2011-07-31 03:20 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\TS3Client
2013-07-25 19:18 - 2010-09-08 22:36 - 00715157 _____ C:\Windows\DirectX.log
2013-07-25 18:50 - 2012-02-27 00:33 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-07-25 18:20 - 2012-02-27 00:33 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-25 00:00 - 2010-09-08 23:17 - 00002588 _____ C:\Windows\unins000.dat
2013-07-24 23:59 - 2010-09-08 23:17 - 01197507 _____ C:\Windows\unins000.exe
2013-07-24 23:56 - 2013-07-24 23:56 - 00290825 _____ C:\Users\RogueAssassin\Downloads\Download Fort Zombie.exe
2013-07-23 00:22 - 2012-05-01 19:55 - 00000000 ____D C:\Users\ROGUEA~1\AppData\Local\Firestorm
2013-07-21 17:42 - 2013-07-13 20:36 - 00000000 ____D C:\Program Files (x86)\FreeDNS Update
2013-07-21 14:34 - 2013-07-20 15:06 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\TEdit
2013-07-20 16:30 - 2013-07-20 16:30 - 00001411 _____ C:\Users\RogueAssassin\Desktop\TEdit.lnk
2013-07-20 15:03 - 2013-07-20 15:03 - 00000000 ____D C:\Program Files (x86)\TEdit
2013-07-17 23:52 - 2013-07-17 23:52 - 00000067 _____ C:\Users\RogueAssassin\Desktop\Falskaar at Skyrim Nexus - Skyrim mods and community.url
2013-07-16 20:56 - 2013-07-01 21:07 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\.tshock
2013-07-14 16:00 - 2012-02-27 00:34 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\Origin
2013-07-14 16:00 - 2012-02-27 00:34 - 00000000 ____D C:\Users\ROGUEA~1\AppData\Local\Origin
2013-07-14 16:00 - 2012-02-27 00:33 - 00000000 ____D C:\ProgramData\Origin
2013-07-13 20:36 - 2013-07-13 20:36 - 00001088 _____ C:\Users\Vicky-Share\Desktop\FreeDNS Update.lnk
2013-07-13 20:36 - 2013-07-13 20:36 - 00001088 _____ C:\Users\RogueAssassin\Desktop\FreeDNS Update.lnk
2013-07-13 20:36 - 2013-07-13 20:36 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeDNS Update
2013-07-11 20:34 - 2011-05-03 15:16 - 00003908 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-11 20:34 - 2011-05-03 15:16 - 00003656 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-11 20:25 - 2010-09-07 17:29 - 00003926 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001UA
2013-07-11 20:25 - 2010-09-07 17:29 - 00003530 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001Core
2013-07-11 19:32 - 2013-07-11 19:32 - 00000000 ____D C:\Users\ROGUEA~1\AppData\Local\LogMeIn
2013-07-11 19:32 - 2013-07-11 19:32 - 00000000 ____D C:\ProgramData\LogMeIn
2013-07-11 18:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2013-07-11 15:16 - 2013-07-11 15:16 - 00003118 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2013-07-11 15:16 - 2013-07-11 15:16 - 00003090 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2013-07-11 15:16 - 2013-07-11 15:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_point64_01011.Wdf
2013-07-11 15:16 - 2010-09-08 11:40 - 00003092 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2013-07-11 15:14 - 2013-07-11 15:14 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2013-07-11 15:07 - 2010-11-25 04:02 - 00000000 ___RD C:\Users\RogueAssassin\Virtual Machines
2013-07-11 15:07 - 2010-09-07 17:24 - 00000000 ___RD C:\Users\RogueAssassin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-11 15:07 - 2010-09-07 17:24 - 00000000 ___RD C:\Users\RogueAssassin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-07-11 15:02 - 2013-04-10 14:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-11 15:02 - 2013-04-10 14:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-11 14:50 - 2009-07-14 02:47 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-11 14:50 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-11 14:50 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-10 22:27 - 2010-09-12 13:58 - 00788632 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-07-10 22:27 - 2009-07-14 00:13 - 00788632 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-10 22:27 - 2009-07-13 21:34 - 00000529 _____ C:\Windows\win.ini
2013-07-10 22:17 - 2011-01-26 04:58 - 00001945 _____ C:\Windows\epplauncher.mif
2013-07-10 22:17 - 2011-01-26 04:57 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-07-10 22:16 - 2012-04-27 00:52 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-07-10 07:10 - 2010-09-08 11:51 - 00000000 ____D C:\Users\RogueAssassin\AppData\Roaming\Skype

Files to move or delete:
====================
C:\Users\RogueAssassin\AppData\Roaming\skype.dat
C:\Users\RogueAssassin\AppData\Roaming\skype.ini

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-08-02 00:32

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-08-2013
Ran by RogueAssassin at 2013-08-08 01:09:14
Running from H:\
Boot Mode: Safe Mode (minimal)
==========================================================


==================== Installed Programs =======================


µTorrent (x32 Version: 2.0.4)
7-Zip 9.20 (x32)
Adobe CreatePDF Desktop Printer (x32 Version: 3.1.1)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Adobe Reader X (10.1.0) (x32 Version: 10.1.0)
Alice Madness Returns (x32 Version: 1.0.0.0)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD AVIVO64 Codecs (Version: 11.7.0.10923)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2013.0328.2218.38225)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
AMD VISION Engine Control Center (x32 Version: 2013.0328.2218.38225)
Amnesia: The Dark Descent (x32)
Apple Application Support (x32 Version: 2.3)
Apple Software Update (x32 Version: 2.1.3.127)
ASUSUpdate (x32 Version: 7.18.03)
ATI Catalyst Registration (x32 Version: 3.00.0000)
Baldur's Gate: Enhanced Edition (x32)
Bandisoft MPEG-1 Decoder (x32)
Bastion (x32)
Battlefield 3™ (x32 Version: 1.0.0.0)
Battleground Europe (x32)
Battlelog Web Plugins (x32 Version: 1.110.0)
BioShock Infinite (x32)
BioWare Premium Module: Neverwinter Nights™ Kingmaker (x32)
Blood Bowl: Legendary Edition (x32)
Bonjour (Version: 3.0.0.10)
Braid (x32)
Brother MFL-Pro Suite MFC-J835DW (x32 Version: 1.1.6.0)
Bully: Scholarship Edition (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2013.0328.2218.38225)
Cisco WebEx Meetings (HKCU)
Civilization III Complete Edition (x32 Version: 1.00.0000)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)
Cool Edit Pro 2.0 (x32)
Core Temp version 0.99.7 (Version: 0.99.7)
CPUID CPU-Z 1.55
Creation Kit (x32)
Crysis 2 Maximum Edition (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
DDS Converter 2.1 (x32)
Dead Island (x32)
Debugging Tools for Windows (x64) (Version: 6.12.2.633)
Deus Ex New Vision (x32 Version: 1.5)
Deus Ex: Human Revolution - The Missing Link (x32)
Deus Ex: Human Revolution (x32)
Dishonored (x32 Version: 1.0)
DivX Setup (x32 Version: 2.1.2.2)
D-Link DFE-530TX+ (x32 Version: )
D-Link DFE-530TX+ (x32)
dows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
DRADIS-CIC (x32)
Dragon Age II (x32 Version: 1.04)
Dragon Age: Origins (x32 Version: 1.04)
Elevated Installer (x32 Version: 2.1.13)
Endless Space (x32)
ESN Sonar (x32 Version: 0.70.4)
Ezvid (x32 Version: 0.9.3.6)
Fallout 2 (x32)
Fallout 3 - The Garden of Eden Creation Kit (x32 Version: 1.00.0000)
Fallout 3 (x32 Version: 1.00.0000)
Fallout Mod Manager 0.13.21 (x32)
Fallout: New Vegas (x32)
Far Cry® 3 Blood Dragon (x32)
Fences (Version: 1.0)
Fences (x32)
FileZilla Client 3.7.0.1 (x32 Version: 3.7.0.1)
FINAL FANTASY XIV - A Realm Reborn (Beta Version) (x32 Version: 0.9.1000)
Firestorm-Release (remove only) (x32 Version: 4.3.1.31155)
FLV Player 2.0 (build 25) (x32 Version: 2.0 (build 25))
Fort Zombie (x32 Version: 1.0.7)
Fort Zombie version Fort Zombie 1.0.7 (x32 Version: Fort Zombie 1.0.7)
Fraps (remove only) (x32)
FreeDNS Update 1.8.4 (x32 Version: 1.8.4)
From Dust (x32)
FrostWire 5.0.8 (x32 Version: 5.0.8.0)
Garmin Communicator Plugin (x32 Version: 4.0.4)
Garmin Communicator Plugin x64 (Version: 4.0.1)
Garmin Communicator Plugin x64 (Version: 4.0.4)
Garmin Express (x32 Version: 2.1.13)
Garmin Express Tray (x32 Version: 2.1.13)
Garmin Update Service (x32 Version: 2.1.13)
Garmin USB Drivers (x32 Version: 2.3.0.0)
GIMP 2.6.11 (x32 Version: 2.6.11)
GOG.com Downloader version 3.5.7 (x32 Version: 3.5.7)
Google Chrome (HKCU Version: 28.0.1500.95)
Google Drive (x32 Version: 1.10.4769.632)
Google Earth (x32 Version: 7.1.1.1888)
Google Talk (remove only) (HKCU)
Google Talk Plugin (x32 Version: 4.4.2.14502)
Google Update Helper (x32 Version: 1.3.21.153)
Grand Theft Auto IV (x32 Version: 1.0.0013.131)
Grand Theft Auto IV (x32 Version: 1.00.0000)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135)
Grand Theft Auto: Episodes From Liberty City (x32 Version: 1.1.0.0)
Guild Wars (x32)
Hitman: Absolution (x32)
Hitman: Codename 47 (x32)
Hitman: Sniper Challenge (x32)
Homefront (x32)
HydraVision (x32 Version: 4.2.216.0)
I Am Alive (x32)
ImgBurn (x32 Version: 2.5.5.0)
Java 7 Update 11 (64-bit) (Version: 7.0.110)
Java Auto Updater (x32 Version: 2.0.7.2)
Java™ 6 Update 26 (64-bit) (Version: 6.0.260)
Java™ 6 Update 39 (x32 Version: 6.0.390)
JMicron JMB36X Driver (x32 Version: 1.00.0000)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Katawa Shoujo (x32)
Kerbal Space Program (x32)
Kingdoms of Amalur: Reckoning Demo (x32)
K-Lite Codec Pack (64-bit) v4.7.0 (Version: 4.7.0)
Lagarith lossless video codec (Remove Only) (x32)
Lame ACM MP3 Codec
Lara Croft and the Guardian of Light (x32)
LIMBO (x32)
Logitech GamePanel Software 3.06.109 (Version: 3.06.109)
Logitech Webcam Software (Version: 12.10.1113)
Logitech Webcam Software Driver Package (Version: 12.10.1110)
Lone Survivor (x32)
Magicka (x32)
Male Voice Pack (x32 Version: 1.3.0)
Malwarebytes' Anti-Malware version 1.51.0.1200 (x32 Version: 1.51.0.1200)
Mass Effect 2 (x32 Version: 1.02)
Mass Effect™ 3 (x32 Version: 1.05.0.0)
M-Audio Producer Driver 6.0.2 (x64) (Version: 6.0.2)
Media Player Classic - Home Cinema v1.5.0.2827 x64 (Version: 1.5.0.2827)
Mesh Runtime (x32 Version: 15.4.5722.2)
Messenger Companion (x32 Version: 15.4.3502.0922)
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322)
Microsoft .NET Framework 1.1 (x32)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Mouse and Keyboard Center (Version: 2.0.162.0)
Microsoft Office Outlook Connector (x32 Version: 14.0.5118.5000)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Security Essentials (Version: 4.3.215.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Windows Performance Toolkit (Version: 4.8.0)
Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.30514)
Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.7600.0.30514)
Microsoft Windows SDK for Windows 7 Redistributable Components for Common Tools (30514) (Version: 7.1.30514)
Microsoft Windows SDK for Windows 7 Redistributable Components for Windows Debugging Tools (30514) (Version: 7.1.30514)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 3.0 (x32 Version: 3.0.11010.0)
Microsoft XNA Framework Redistributable 3.1 (x32 Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0)
Minecraft (x32 Version: 1.5)
MINERVA: Metastasis (x32)
mIRC (x32 Version: 7.17)
MorphVOX Pro (x32 Version: 4.2.8)
Mozilla Firefox 20.0.1 (x86 en-US) (x32 Version: 20.0.1)
Mozilla Maintenance Service (x32 Version: 20.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
Music Manager (HKCU)
NCsoft Launcher (x32 Version: 1.5.19002)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0)
Neverwinter Nights (x32)
Nexus Mod Manager (Version: 0.45.5)
NifSkope (remove only) (x32)
Notepad++ (x32 Version: 5.7)
NVIDIA Drivers (Version: 1.7)
NVIDIA PhysX (x32 Version: 9.11.1111)
ObjectDock (x32)
Oblivion (x32 Version: 1.00.0000)
OpenAL (x32)
Orbit Downloader (x32)
Organ Trail: Director's Cut (x32)
Origin (x32 Version: 8.5.0.4550)
PC Probe II (x32 Version: 1.04.86)
Personality Voices (x32 Version: 1.0.0)
Pirates of the Burning Sea (English) (HKCU)
PlanetSide 2 (x32)
Portal 2 (x32)
Psychonauts (x32)
PunkBuster Services (x32 Version: 0.991)
QuickTime (x32 Version: 7.73.80.64)
RAGE (x32)
Real Alternative 2.0.2 (x32 Version: 2.0.2)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.17.304.2010)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6037)
Recettear: An Item Shop's Tale (x32)
Remember Me (x32)
SAM Broadcaster (remove only) (x32)
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.6.0)
Scan to PDF (x32 Version: 2.50)
SecondLifeViewer (remove only) (x32)
SecondLifeViewer2 (remove only) (x32)
Shadowrun Returns (x32)
Sid Meier's Civilization 4 (x32 Version: 1.09)
Sid Meier's Civilization V (x32)
SimCity 4 Deluxe (x32)
Skype™ 6.1 (x32 Version: 6.1.129)
Skyrim NPC Editor (x32 Version: 0.67)
Sleeping Dogs™ (x32)
Source SDK (x32)
Source SDK Base 2007 (x32)
Star Wars: The Old Republic (x32 Version: 1.00)
StarCraft II (x32 Version: 2.0.7.25293)
Steam (x32 Version: 1.0.0.0)
Super Meat Boy (x32)
Super Street Fighter IV: Arcade Edition (x32 Version: 1.0.0000.129)
SUPER STREET FIGHTER IV: ARCADE EDITION (x32 Version: 1.0.0005.129)
Superbrothers: Sword & Sworcery EP (x32)
System Shock 2 (x32)
TeamSpeak 3 Client (Version: 3.0.10)
TeamViewer 8 (x32 Version: 8.0.18930)
TEdit 3 (x32 Version: 1.0.0.0)
Terrafirma (x32 Version: 1.9.8)
Terraria (x32)
The Elder Scrolls III: Morrowind (x32)
The Elder Scrolls V: Skyrim (x32)
The Lord of the Rings FREE Trial (x32 Version: 1.00.0000)
The Lord of the Rings Online™ v03.02.03.8013 (x32 Version: 03.02.03.8013)
The Lord of the Rings Online™: Siege of Mirkwood™ v03.02.00.185 (x32 Version: 03.02.00.1850)
The Secret World (x32)
The Witcher Enhanced Edition (x32 Version: 1.00.0000)
Tomb Raider (x32)
Trillian (x32)
Tropico 3 - Steam Special Edition (x32)
Tropico 3: Absolute Power (x32)
Two Worlds II (x32)
Ubuntu (x32 Version: 12.10-rev273)
Unity Web Player (HKCU Version: )
Universe Sandbox (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
VC80CRTRedist - 8.0.50727.4053 (x32 Version: 1.1.0)
Ventrilo Client for Windows x64 (Version: 3.0.5.0)
VLC media player 1.1.11 (x32 Version: 1.1.11)
War Thunder Launcher 1.0.1.152 (x32)
Warhammer 40,000 Space Marine (x32)
Warhammer 40,000: Dawn of War - Game of the Year Edition (x32)
Warhammer 40,000: Dawn of War – Soulstorm (x32)
Warhammer® 40,000®: Dawn of War® II – Retribution™ (x32)
Warhammer® 40,000™: Dawn of War® II (x32)
Warhammer® 40,000™: Dawn of War® II – Chaos Rising™ (x32)
Winamp (x32 Version: 5.581 )
Winamp Detector Plug-in (HKCU Version: 1.0.0.1)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
Windows XP Mode (Version: 1.3.7600.16423)
WinRAR archiver
WinSCP 4.3.5 (x32 Version: 4.3.5)
World of Warcraft (x32 Version: 4.3.4.15595)
Xfire (remove only) (x32)
You Don't Know Jack® (x32 Version: 1.00.0000)
Zero Assumption Recovery Version 9 (x32)

==================== Restore Points =========================

03-08-2013 02:47:49 Windows Update
06-08-2013 08:04:18 Windows Update
08-08-2013 05:35:16 Windows Update

==================== Hosts content: ==========================

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {18E3FBF7-A430-4C30-9A70-BE39992DADBC} - System32\Tasks\{4B01C55E-461B-4976-840A-2D51449EE9CD} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-01-08] (Skype Technologies S.A.)
Task: {3BD7F8ED-76A2-48B4-8CB8-8D725119654F} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe No File
Task: {48F295D8-AEF0-4065-8E82-A720B3342724} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001Core => C:\Users\RogueAssassin\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-07] (Google Inc.)
Task: {4D560C97-DEE9-4249-9C32-E20D9F0DDF93} - System32\Tasks\Core Temp Autostart => C:\Program Files\Core Temp\Core Temp.exe [2010-07-02] ()
Task: {621900AA-8D58-4E90-B7DA-9AED51C3214B} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => c:\Program Files\Microsoft Security Client\MpCmdRun.exe [2013-06-20] (Microsoft Corporation)
Task: {7A67B588-95C2-42E2-8BFD-7A0933D301B7} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2012-11-02] (Microsoft)
Task: {80511BB4-B679-4374-8D13-92BD438A3DCB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001UA => C:\Users\RogueAssassin\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-07] (Google Inc.)
Task: {835A0ECD-A95F-4D5A-A2F8-DAD99CBD2FA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-03] (Google Inc.)
Task: {85F1F6EE-7992-408B-8216-CFD6EA9BF1C5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated)
Task: {9BCBD1B0-0129-450E-998E-34ECC0661C00} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2012-11-02] (Microsoft Corporation)
Task: {AE2A3856-524F-4422-80BA-59C2FCB08AF1} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2012-11-02] (Microsoft Corporation)
Task: {CF7B27B3-8BFA-4B37-99A8-333DCDB3899A} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {D9553F0D-09B1-4075-A29F-EB004CA333B0} - System32\Tasks\{7DCBD46E-D52C-4147-A476-042780D6115D} => D:\Old Legend HDD\AOL2\DOWNLOAD\NWN222.EXE [1995-11-29] ()
Task: {E19A2834-2BB5-4DFD-A271-464BE892D891} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe [2013-06-20] (Microsoft Corporation)
Task: {E847206D-B5EE-459F-B06C-489A6BD3E43B} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [2009-03-30] ()
Task: {EDA32964-3E74-4374-B17C-E1976650B15C} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {EDDAEC09-770F-419A-B0D1-E24B6A0DAB7A} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {FE9D8F52-6F72-4494-8C30-FD5B66207784} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-03] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001Core.job => C:\Users\RogueAssassin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2804422850-2889914714-4134411462-1001UA.job => C:\Users\RogueAssassin\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Faulty Device Manager Devices =============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/02/2013 06:48:05 PM) (Source: Application Error) (User: )
Description: Faulting application name: orbitdm.exe, version: 4.1.1.0, time stamp: 0x4fe17fe1
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e3be
Faulting process id: 0xae8
Faulting application start time: 0xorbitdm.exe0
Faulting application path: orbitdm.exe1
Faulting module path: orbitdm.exe2
Report Id: orbitdm.exe3

Error: (08/02/2013 00:14:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: orbitdm.exe, version: 4.1.1.0, time stamp: 0x4fe17fe1
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e3be
Faulting process id: 0xae8
Faulting application start time: 0xorbitdm.exe0
Faulting application path: orbitdm.exe1
Faulting module path: orbitdm.exe2
Report Id: orbitdm.exe3

Error: (07/27/2013 01:09:34 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16496, time stamp: 0x51a55c6d
Faulting module name: jscript9.dll, version: 9.0.8112.16496, time stamp: 0x51a55eca
Exception code: 0xc0000005
Fault offset: 0x0002736a
Faulting process id: 0x1e90
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (07/13/2013 07:21:44 PM) (Source: Application Error) (User: )
Description: Faulting application name: atieclxx.exe, version: 6.14.11.1143, time stamp: 0x5154efc9
Faulting module name: atieclxx.exe, version: 6.14.11.1143, time stamp: 0x5154efc9
Exception code: 0xc0000005
Fault offset: 0x000000000002ea19
Faulting process id: 0x4a8
Faulting application start time: 0xatieclxx.exe0
Faulting application path: atieclxx.exe1
Faulting module path: atieclxx.exe2
Report Id: atieclxx.exe3

Error: (07/02/2013 10:35:37 PM) (Source: Application Hang) (User: )
Description: The program chrome.exe version 27.0.1453.116 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1370

Start Time: 01ce76c560c09f46

Termination Time: 23

Application Path: C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\chrome.exe

Report Id: 9bdcd108-e391-11e2-9204-485b39b9fc47

Error: (06/28/2013 09:11:10 PM) (Source: Application Error) (User: )
Description: Faulting application name: GameOverlayUI.exe, version: 1.32.20.50, time stamp: 0x4f46a9bf
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x18a13b54
Faulting process id: 0x8a8
Faulting application start time: 0xGameOverlayUI.exe0
Faulting application path: GameOverlayUI.exe1
Faulting module path: GameOverlayUI.exe2
Report Id: GameOverlayUI.exe3

Error: (06/27/2013 00:00:02 AM) (Source: Application Hang) (User: )
Description: The program chrome.exe version 27.0.1453.116 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 12a8

Start Time: 01ce721a27d41b72

Termination Time: 16

Application Path: C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\chrome.exe

Report Id: 6b264749-dee6-11e2-9204-485b39b9fc47

Error: (06/24/2013 11:10:26 PM) (Source: Application Error) (User: )
Description: Faulting application name: TheSecretWorldDX11.exe, version: 1.0.0.0, time stamp: 0x51b2324e
Faulting module name: Awesomium.dll, version: 1.6.0.4, time stamp: 0x50784c0d
Exception code: 0x4000001f
Fault offset: 0x00f966d0
Faulting process id: 0x1c20
Faulting application start time: 0xTheSecretWorldDX11.exe0
Faulting application path: TheSecretWorldDX11.exe1
Faulting module path: TheSecretWorldDX11.exe2
Report Id: TheSecretWorldDX11.exe3

Error: (06/24/2013 11:10:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: TheSecretWorldDX11.exe, version: 1.0.0.0, time stamp: 0x51b2324e
Faulting module name: Awesomium.dll, version: 1.6.0.4, time stamp: 0x50784c0d
Exception code: 0xc0000005
Fault offset: 0x00123d60
Faulting process id: 0x1c20
Faulting application start time: 0xTheSecretWorldDX11.exe0
Faulting application path: TheSecretWorldDX11.exe1
Faulting module path: TheSecretWorldDX11.exe2
Report Id: TheSecretWorldDX11.exe3

Error: (06/24/2013 10:42:38 PM) (Source: Application Error) (User: )
Description: Faulting application name: TheSecretWorldDX11.exe, version: 1.0.0.0, time stamp: 0x51b2324e
Faulting module name: Awesomium.dll, version: 1.6.0.4, time stamp: 0x50784c0d
Exception code: 0x4000001f
Fault offset: 0x00f966d0
Faulting process id: 0x17bc
Faulting application start time: 0xTheSecretWorldDX11.exe0
Faulting application path: TheSecretWorldDX11.exe1
Faulting module path: TheSecretWorldDX11.exe2
Report Id: TheSecretWorldDX11.exe3


System errors:
=============
Error: (08/08/2013 01:07:16 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (08/08/2013 01:06:56 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (08/08/2013 01:06:56 AM) (Source: DCOM) (User: )
Description: 1068fdPHost{D3DCB472-7261-43CE-924B-0704BD730D5F}

Error: (08/08/2013 01:06:56 AM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (08/08/2013 01:06:56 AM) (Source: DCOM) (User: )
Description: 1068netprofm{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/08/2013 01:05:25 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AFD
AsIO
AsUpIO
CSC
DfsC
discache
MpFilter
NetBIOS
NetBT
nsiproxy
rdbss
spldr
tdx
vpcnfltr
vpcvmm
Wanarpv6
WfpLwf

Error: (08/08/2013 01:05:25 AM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error:
%%1068

Error: (08/08/2013 01:05:25 AM) (Source: Service Control Manager) (User: )
Description: The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
%%1068

Error: (08/08/2013 01:05:25 AM) (Source: Service Control Manager) (User: )
Description: The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error:
%%1068

Error: (08/08/2013 01:05:25 AM) (Source: Service Control Manager) (User: )
Description: The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error:
%%31


Microsoft Office Sessions:
=========================
Error: (08/02/2013 06:48:05 PM) (Source: Application Error)(User: )
Description: orbitdm.exe4.1.1.04fe17fe1ntdll.dll6.1.7601.177254ec49b8fc00000050002e3beae801ce8f3f21741888C:\Program Files (x86)\Orbitdownloader\orbitdm.exeC:\Windows\SysWOW64\ntdll.dllf9a6b835-fbcd-11e2-b132-485b39b9fc47

Error: (08/02/2013 00:14:20 PM) (Source: Application Error)(User: )
Description: orbitdm.exe4.1.1.04fe17fe1ntdll.dll6.1.7601.177254ec49b8fc00000050002e3beae801ce8f3f21741888C:\Program Files (x86)\Orbitdownloader\orbitdm.exeC:\Windows\SysWOW64\ntdll.dllf80c8a89-fb96-11e2-b132-485b39b9fc47

Error: (07/27/2013 01:09:34 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.1649651a55c6djscript9.dll9.0.8112.1649651a55ecac00000050002736a1e9001ce8a8ec2f21c5aC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\SysWOW64\jscript9.dll1b97fdd9-f683-11e2-9229-485b39b9fc47

Error: (07/13/2013 07:21:44 PM) (Source: Application Error)(User: )
Description: atieclxx.exe6.14.11.11435154efc9atieclxx.exe6.14.11.11435154efc9c0000005000000000002ea194a801ce802814afa132C:\Windows\system32\atieclxx.exeC:\Windows\system32\atieclxx.exe5ca606d4-ec1b-11e2-9229-485b39b9fc47

Error: (07/02/2013 10:35:37 PM) (Source: Application Hang)(User: )
Description: chrome.exe27.0.1453.116137001ce76c560c09f4623C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\chrome.exe9bdcd108-e391-11e2-9204-485b39b9fc47

Error: (06/28/2013 09:11:10 PM) (Source: Application Error)(User: )
Description: GameOverlayUI.exe1.32.20.504f46a9bfunknown0.0.0.000000000c000000518a13b548a801ce745c83955548C:\Program Files (x86)\Steam\GameOverlayUI.exeunknown2a2d4375-e061-11e2-9204-485b39b9fc47

Error: (06/27/2013 00:00:02 AM) (Source: Application Hang)(User: )
Description: chrome.exe27.0.1453.11612a801ce721a27d41b7216C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\chrome.exe6b264749-dee6-11e2-9204-485b39b9fc47

Error: (06/24/2013 11:10:26 PM) (Source: Application Error)(User: )
Description: TheSecretWorldDX11.exe1.0.0.051b2324eAwesomium.dll1.6.0.450784c0d4000001f00f966d01c2001ce71562b23a647C:\Program Files (x86)\Steam\steamapps\common\The Secret World\TheSecretWorldDX11.exeC:\Program Files (x86)\Steam\steamapps\common\The Secret World\Awesomium.dll29595804-dd4d-11e2-9204-485b39b9fc47

Error: (06/24/2013 11:10:24 PM) (Source: Application Error)(User: )
Description: TheSecretWorldDX11.exe1.0.0.051b2324eAwesomium.dll1.6.0.450784c0dc000000500123d601c2001ce71562b23a647C:\Program Files (x86)\Steam\steamapps\common\The Secret World\TheSecretWorldDX11.exeC:\Program Files (x86)\Steam\steamapps\common\The Secret World\Awesomium.dll285aa8f9-dd4d-11e2-9204-485b39b9fc47

Error: (06/24/2013 10:42:38 PM) (Source: Application Error)(User: )
Description: TheSecretWorldDX11.exe1.0.0.051b2324eAwesomium.dll1.6.0.450784c0d4000001f00f966d017bc01ce7147d9145401C:\Program Files (x86)\Steam\steamapps\common\The Secret World\TheSecretWorldDX11.exeC:\Program Files (x86)\Steam\steamapps\common\The Secret World\Awesomium.dll47ac7dd7-dd49-11e2-9204-485b39b9fc47


==================== Memory info ===========================

Percentage of memory in use: 9%
Total physical RAM: 8190.18 MB
Available physical RAM: 7382.68 MB
Total Pagefile: 16378.54 MB
Available Pagefile: 15599.52 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (VCORE 4322) (Fixed) (Total:931.51 GB) (Free:113.21 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)]
Drive d: (VCORE 4323) (Fixed) (Total:465.76 GB) (Free:135.1 GB) NTFS (Disk=2 Partition=1)
Drive g: (VCORE 4325) (Fixed) (Total:298.09 GB) (Free:121.24 GB) NTFS (Disk=1 Partition=1)
Drive h: () (Removable) (Total:3.72 GB) (Free:2.36 GB) FAT32 (Disk=4 Partition=1)
Drive o: (VCORE 4322Old) (Fixed) (Total:49.12 GB) (Free:25.43 GB) NTFS (Disk=3 Partition=1) ==>[System with boot components (obtained from reading drive)]
Drive z: (VCORE 4324) (Fixed) (Total:183.76 GB) (Free:70.48 GB) NTFS (Disk=3 Partition=2)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 932 GB) (Disk ID: 29CE29CD)
Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 298 GB) (Disk ID: 8455903A)
Partition 1: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: E8000000)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 02AEC2F6)
Partition 1: (Active) - (Size=49 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=184 GB) - (Type=07 NTFS)

========================================================
Disk: 4 (Size: 4 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)

==================== End Of Log ============================

Attached Files


Edited by TheRogueX, 08 August 2013 - 06:38 PM.

  • 0

Advertisements


#2
Phel

Phel

    Trusted Helper

  • Malware Removal
  • 1,386 posts
Hello, TheRogueX and welcome to GeeksToGo!

You can call me Phel and today I will try to help you with your trouble.

Please, read these instructions carefully, because they contain some very useful information.

Please, let me know, if you don't understand something. It is really important to understand any instruction. Also, please read all instructions carefully before performing them. Feel free to ask questions, if you aren't sure.

Please, be patient. You should stay here until your computer will become really clean. Malware Removal isn't very fast procedure, it usually has multiple steps, but result should be glad.;)

Please, wait for a while now, currently I'm analyzing your logs. Please note, that my answers could come with a slight delay, because they are checked by my teacher.
  • 0

#3
TheRogueX

TheRogueX

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Hi Phel! Take all the time you need, I'm still at work and won't be able to do anything with my computer for another hour and a half anyway. I appreciate your assistance!
  • 0

#4
TheRogueX

TheRogueX

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Ok, I'm home now. Hopefully you'll be around so that I can get some work done on this machine tonight. :)
  • 0

#5
Phel

Phel

    Trusted Helper

  • Malware Removal
  • 1,386 posts
Sorry for delay.

Step 1. FRST Fix.

  • Boot your computer into Safe Mode.
  • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
  • Right-click in the open notepad and select Paste.
  • Save it in the same location with FRST as fixlist.txt

    HKCU\...\Winlogon: [Shell] explorer.exe,C:\Users\RogueAssassin\AppData\Roaming\skype.dat [209920 2011-11-17] (KeyDevelop Software Group) <==== ATTENTION
    C:\Users\RogueAssassin\AppData\Roaming\skype.dat 
    2013-08-08 00:32 - 2013-08-08 01:02 - 00000004 _____ C:\Users\RogueAssassin\AppData\Roaming\skype.ini
    2013-07-25 00:00 - 2010-09-08 23:17 - 00002588 _____ C:\Windows\unins000.dat
    2013-07-24 23:59 - 2010-09-08 23:17 - 01197507 _____ C:\Windows\unins000.exe
    

    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST and press the Fix button just once and wait. The tool will make a log on the flashdrive (Fixlog.txt) please post it in your next reply.

Step 2. OTL scan.

Boot your computer into normal mode and download OTL to your Desktop
Double click on OTL.exe to run it
  • Find in the OTL window Extra Registry section and change radiobutton there to the Use SafeList.
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    BASESERVICES
  • Then click the Run Scan button at the top
  • Let the program run unhindered
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.

So, please, don't forget to post in your next message:

  • OTL.txt
  • Extras.txt
  • Fixlog.txt

  • 0

#6
TheRogueX

TheRogueX

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Ok, here you go:

OTL logfile created on: 8/9/2013 5:18:25 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\RogueAssassin\Desktop\Tools
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

8.00 Gb Total Physical Memory | 5.83 Gb Available Physical Memory | 72.85% Memory free
15.99 Gb Paging File | 12.94 Gb Available in Paging File | 80.93% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.51 Gb Total Space | 113.26 Gb Free Space | 12.16% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 136.24 Gb Free Space | 29.25% Space Free | Partition Type: NTFS
Drive G: | 298.09 Gb Total Space | 122.06 Gb Free Space | 40.95% Space Free | Partition Type: NTFS
Drive O: | 49.12 Gb Total Space | 29.24 Gb Free Space | 59.53% Space Free | Partition Type: NTFS
Drive Z: | 183.76 Gb Total Space | 70.47 Gb Free Space | 38.35% Space Free | Partition Type: NTFS

Computer Name: VICKY7 | User Name: RogueAssassin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\RogueAssassin\Desktop\Tools\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Orbitdownloader\orbitnet.exe (Orbitdownloader.com)
PRC - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD)
PRC - C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
PRC - C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Logitech Inc.)
PRC - C:\Windows\DAODx.exe ()


========== Modules (No Company Name) ==========

MOD - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\ppgooglenaclpluginchrome.dll ()
MOD - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\pdf.dll ()
MOD - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\libglesv2.dll ()
MOD - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\libegl.dll ()
MOD - C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\ffmpegsumo.dll ()
MOD - C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll ()
MOD - C:\Windows\DAODx.exe ()


========== Services (SafeList) ==========

SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (LVPrcS64) -- C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (avgwd) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (AVGIDSAgent) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (Garmin Core Update Service) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe (Garmin Ltd or its subsidiaries)
SRV - (atashost) -- C:\Windows\SysWOW64\atashost.exe (Cisco WebEx LLC)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (npggsvc) -- C:\Windows\SysWOW64\GameMon.des (INCA Internet Co., Ltd.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (AsSysCtrlService) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe (ASUSTeK Computer Inc.)
SRV - (DAUpdaterSvc) -- G:\Dragon Age\bin_ship\daupdatersvc.service.exe (BioWare)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (Avgloga) -- C:\Windows\SysNative\drivers\avgloga.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AVGIDSDriver) -- C:\Windows\SysNative\drivers\avgidsdrivera.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AVGIDSHA) -- C:\Windows\SysNative\drivers\avgidsha.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgldx64) -- C:\Windows\SysNative\drivers\avgldx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgrkx64) -- C:\Windows\SysNative\drivers\avgrkx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgmfx64) -- C:\Windows\SysNative\drivers\avgmfx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (Avgtdia) -- C:\Windows\SysNative\drivers\avgtdia.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices)
DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (AODDriver4.2) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys (Advanced Micro Devices)
DRV:64bit: - (AODDriver4.01) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys (Advanced Micro Devices)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:64bit: - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation)
DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
DRV:64bit: - (androidusb) -- C:\Windows\SysNative\drivers\ssadadb.sys (Google Inc)
DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (vpcvmm) -- C:\Windows\SysNative\drivers\vpcvmm.sys (Microsoft Corporation)
DRV:64bit: - (vpcbus) -- C:\Windows\SysNative\drivers\vpchbus.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (vpcusb) -- C:\Windows\SysNative\drivers\vpcusb.sys (Microsoft Corporation)
DRV:64bit: - (vpcnfltr) -- C:\Windows\SysNative\drivers\vpcnfltr.sys (Microsoft Corporation)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (cpuz134) -- C:\Windows\SysNative\drivers\cpuz134_x64.sys (Windows ® Win 7 DDK provider)
DRV:64bit: - (hap17v2k) -- C:\Windows\SysNative\drivers\haP17v2k.sys (Creative Technology Ltd)
DRV:64bit: - (hap16v2k) -- C:\Windows\SysNative\drivers\haP16v2k.sys (Creative Technology Ltd)
DRV:64bit: - (ha10kx2k) -- C:\Windows\SysNative\drivers\ha10kx2k.sys (Creative Technology Ltd)
DRV:64bit: - (emupia) -- C:\Windows\SysNative\drivers\emupia2k.sys (Creative Technology Ltd)
DRV:64bit: - (ctsfm2k) -- C:\Windows\SysNative\drivers\ctsfm2k.sys (Creative Technology Ltd)
DRV:64bit: - (ctprxy2k) -- C:\Windows\SysNative\drivers\ctprxy2k.sys (Creative Technology Ltd)
DRV:64bit: - (ossrv) -- C:\Windows\SysNative\drivers\ctoss2k.sys (Creative Technology Ltd.)
DRV:64bit: - (ctaud2k) -- C:\Windows\SysNative\drivers\ctaud2k.sys (Creative Technology Ltd)
DRV:64bit: - (ctac32k) -- C:\Windows\SysNative\drivers\ctac32k.sys (Creative Technology Ltd)
DRV:64bit: - (CTERFXFX.SYS) -- C:\Windows\SysNative\drivers\CTERFXFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTERFXFX) -- C:\Windows\SysNative\drivers\CTERFXFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTSBLFX.SYS) -- C:\Windows\SysNative\drivers\CTSBLFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTSBLFX) -- C:\Windows\SysNative\drivers\CTSBLFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTAUDFX.SYS) -- C:\Windows\SysNative\drivers\CTAUDFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTAUDFX) -- C:\Windows\SysNative\drivers\CTAUDFX.sys (Creative Technology Ltd)
DRV:64bit: - (COMMONFX.SYS) -- C:\Windows\SysNative\drivers\COMMONFX.sys (Creative Technology Ltd)
DRV:64bit: - (COMMONFX) -- C:\Windows\SysNative\drivers\COMMONFX.sys (Creative Technology Ltd)
DRV:64bit: - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices)
DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (NEC Electronics Corporation)
DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (NEC Electronics Corporation)
DRV:64bit: - (JRAID) -- C:\Windows\SysNative\drivers\jraid.sys (JMicron Technology Corp.)
DRV:64bit: - (LGVirHid) -- C:\Windows\SysNative\drivers\LGVirHid.sys (Logitech Inc.)
DRV:64bit: - (LGBusEnum) -- C:\Windows\SysNative\drivers\LGBusEnum.sys (Logitech Inc.)
DRV:64bit: - (LVPr2Mon) -- C:\Windows\SysNative\drivers\LVPr2M64.sys ()
DRV:64bit: - (LVPr2M64) -- C:\Windows\SysNative\drivers\LVPr2M64.sys ()
DRV:64bit: - (MAUSBPRODUCER) -- C:\Windows\SysNative\drivers\MAudioProducer.sys (Avid Technology, Inc.)
DRV:64bit: - (xusb21) -- C:\Windows\SysNative\drivers\xusb21.sys (Microsoft Corporation)
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (xnacc) -- C:\Windows\SysNative\drivers\xnacc.sys (Microsoft Corporation)
DRV:64bit: - (RTL8023x64) -- C:\Windows\SysNative\drivers\Rtnic64.sys (Realtek Semiconductor Corporation )
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (LVRS64) -- C:\Windows\SysNative\drivers\lvrs64.sys (Logitech Inc.)
DRV:64bit: - (PID_PEPI) -- C:\Windows\SysNative\drivers\LV302V64.SYS (Logitech Inc.)
DRV:64bit: - (lvpepf64) -- C:\Windows\SysNative\drivers\lv302a64.sys (Logitech Inc.)
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.)
DRV:64bit: - (ScreamBAudioSvc) -- C:\Windows\SysNative\drivers\ScreamingBAudio64.sys (Screaming Bee LLC)
DRV:64bit: - (LVUSBS64) -- C:\Windows\SysNative\drivers\LVUSBS64.sys (Logitech Inc.)
DRV:64bit: - (RimUsb) -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys (Research In Motion Limited)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (NPPTNT2) -- C:\Windows\SysWOW64\npptNT2.sys (INCA Internet Co., Ltd.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 49 4D 2E 95 44 11 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0442B182-89C0-49DD-8D38-4314DCA4EA8B}
IE - HKCU\..\SearchScopes\{0442B182-89C0-49DD-8D38-4314DCA4EA8B}: "URL" = http://www.google.co...age={startPage}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0033-ABCDEFFEDCBA%7D:6.0.33
FF - prefs.js..extensions.enabledAddons: %7BCAFEEFAC-0016-0000-0039-ABCDEFFEDCBA%7D:6.0.39
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.6.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.11.2: C:\Windows\system32\npDeployJava1.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.110.0: C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_39: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\RogueAssassin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\RogueAssassin\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\RogueAssassin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}: C:\Program Files (x86)\SpeedBit Video Downloader\SPFireFox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\components [2013/05/27 00:26:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins [2013/05/27 00:26:23 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\components [2013/05/27 00:26:49 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins [2013/05/27 00:26:23 | 000,000,000 | ---D | M]

[2011/02/28 06:12:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Extensions
[2011/02/28 06:12:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2013/06/25 00:24:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default\extensions
[2013/06/25 00:24:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default\extensions\staged
[2013/06/24 23:20:28 | 000,534,261 | ---- | M] () (No name found) -- C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2013/06/25 00:24:32 | 000,534,298 | ---- | M] () (No name found) -- C:\Users\RogueAssassin\AppData\Roaming\Mozilla\Firefox\Profiles\2zjfk3cp.default\extensions\staged\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2013/05/27 00:26:22 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES (X86)\MOZILLA FIREFOX 4.0 BETA 6\EXTENSIONS\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2013/05/27 00:26:22 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES (X86)\MOZILLA FIREFOX 4.0 BETA 6\EXTENSIONS\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\np-mswmp.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\nppl3260.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\npqtplugin7.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\plugins\nprpjplug.dll
CHR - plugin: ActiveTouch General Plugin Container (Enabled) = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\plugins\npatgpc.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Google Talk Plugin Video Renderer (Enabled) = C:\Users\RogueAssassin\AppData\Roaming\Mozilla\plugins\npo1d.dll
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll
CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 6 U39 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: VLC Multimedia Plug-in (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Nexon Game Controller (Enabled) = C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\RogueAssassin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
CHR - plugin: Java Deployment Toolkit 6.0.390.4 (Enabled) = C:\Windows\SysWOW64\npdeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: iGoogle = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmgmamhdocpcnkhcedgjemhcngapljj\2012.7.8.16633_0\
CHR - Extension: Angry Birds = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Google Drive = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Add to Amazon Wish List = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced\1.0.0.10_0\
CHR - Extension: Google Search = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: High Contrast = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\djcfdncoelnlbldjfhinnjlhdjlikmph\0.5_0\
CHR - Extension: Facebook = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnknkgccldocdogpnhbaddbdhhjiindo\2012.7.8.16646_0\
CHR - Extension: DSLReports Home : Broadband ISP Reviews News Tools and Forums = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkoheonhjbianbpenfgpnjhehfbojgki\2012.7.8.16652_0\
CHR - Extension: Wikipedia = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gigfahoidehcoolojohkidgehjiojakl\2012.7.8.16641_0\
CHR - Extension: AdBlock = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.4_0\
CHR - Extension: Angry Birds Seasons = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\glfgpgljcapdjhcnmecmgihadngabijc\1.1_0\
CHR - Extension: Watch TV. Watch Movies. | Online | Free | Hulu = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhgbkjbpjkpdkbbalmaggmmlcffjaaae\2012.7.8.16657_0\
CHR - Extension: Enhanced Steam = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg\4.0.1_0\
CHR - Extension: LogMeIn = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\omkjapkpkiciphacnalicgmmcelfolon\1.0.0.1029_0\
CHR - Extension: Gmail = C:\Users\RogueAssassin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll ()
O4:64bit: - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelliType Pro] C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Launch LCDMon] C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [Launch LGDCore] C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [Launch LgDeviceAgent] C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [HydraVisionDesktopManager] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe (AMD)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: &Download by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8:64bit: - Extra context menu item: &Grab video by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8:64bit: - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8:64bit: - Extra context menu item: Down&load all by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Download by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Value error.)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.11.2)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_39)
O16 - DPF: {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_39)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_39)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creat...13/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...15113/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{14F0AC50-1538-4DF6-A0C5-26DF62F1F399}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5F7AE4B-C148-4C36-8C6B-EFC72E72FB5A}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22:64bit: - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll (Stardock)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/01/31 23:48:00 | 000,000,000 | ---- | M] () - O:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008/02/21 16:18:00 | 000,000,000 | ---D | M] - Z:\Autorun -- [ NTFS ]
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\.\Bin\ASSETUP.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/08/08 23:53:09 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Roaming\AVG2013
[2013/08/08 23:51:59 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Roaming\TuneUp Software
[2013/08/08 23:51:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2013/08/08 23:47:34 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013/08/08 23:47:33 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2013
[2013/08/08 23:46:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2013/08/08 22:33:39 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2013/08/08 22:33:39 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Local\MFAData
[2013/08/08 22:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2013/08/08 22:33:39 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Local\Avg2013
[2013/08/08 22:11:43 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\Desktop\Tools
[2013/08/08 22:11:35 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013/08/08 01:07:20 | 000,000,000 | ---D | C] -- C:\FRST
[2013/08/08 00:45:23 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/08/08 00:45:23 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/08/08 00:45:23 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/08/08 00:45:23 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/08/08 00:45:23 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/08/08 00:45:23 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/08/08 00:45:23 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/08/08 00:45:23 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/08/08 00:45:23 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/08/08 00:45:22 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/08/08 00:45:22 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/08/08 00:45:22 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/08/08 00:45:22 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/08/08 00:45:22 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/08/08 00:45:22 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/08/08 00:45:22 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/08/08 00:45:22 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/08/08 00:45:22 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/08/08 00:45:22 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/08/08 00:45:22 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/08/08 00:45:22 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/08/08 00:45:22 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/08/08 00:45:22 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/08/08 00:45:22 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/08/08 00:45:22 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/08/08 00:45:22 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/08/08 00:45:22 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/08/08 00:45:21 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/08/08 00:45:21 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/08/08 00:45:21 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/08/08 00:45:21 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/08/08 00:45:21 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/08/08 00:45:21 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/08/08 00:45:21 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/08/08 00:45:21 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/08/08 00:45:21 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/08/08 00:45:21 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/08/08 00:45:21 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/08/08 00:45:21 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/08/08 00:45:21 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/08/08 00:45:21 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/08/08 00:45:21 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/08/08 00:45:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/08/08 00:45:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/08/08 00:45:21 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/08/08 00:45:21 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/08/08 00:45:21 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/08/08 00:45:21 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/08/08 00:45:20 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/08/08 00:45:20 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/08/08 00:45:20 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/08/08 00:45:20 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/08/08 00:45:20 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/08/08 00:45:20 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/08/08 00:45:20 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/08/08 00:45:20 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/08/08 00:45:20 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/08/08 00:45:20 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/08/08 00:45:20 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/08/08 00:45:20 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/08/08 00:45:20 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/08/08 00:45:20 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/08/08 00:45:20 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/08/08 00:45:20 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/08/08 00:45:20 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/08/08 00:45:20 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/08/08 00:45:20 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/08/08 00:45:20 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/08/08 00:42:46 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/08/08 00:42:46 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2013/08/08 00:42:46 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/08/08 00:42:46 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2013/08/08 00:42:46 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2013/08/08 00:42:46 | 001,504,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/08/08 00:42:46 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2013/08/08 00:42:46 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2013/08/08 00:42:46 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/08/08 00:42:46 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/08/08 00:42:46 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2013/08/08 00:42:46 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/08/08 00:42:46 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/08/08 00:42:46 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/08/08 00:42:46 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/08/08 00:42:46 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/08/08 00:42:45 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/08/08 00:42:45 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/08/08 00:42:45 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2013/08/08 00:42:45 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2013/08/08 00:42:45 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2013/08/08 00:42:45 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2013/08/08 00:42:45 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2013/08/08 00:42:45 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2013/08/08 00:42:45 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2013/08/08 00:42:45 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2013/08/08 00:35:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2013/08/04 19:21:51 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Local\Harebrained Schemes
[2013/08/04 15:26:57 | 000,367,332 | ---- | C] (http://magiclauncher.com) -- C:\Users\RogueAssassin\Desktop\MagicLauncher_1.1.7.exe
[2013/07/30 09:40:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013/07/20 15:06:49 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Roaming\TEdit
[2013/07/20 15:03:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TEdit
[2013/07/20 15:03:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TEdit
[2013/07/20 01:51:00 | 000,311,608 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgloga.sys
[2013/07/20 01:50:56 | 000,246,072 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgidsdrivera.sys
[2013/07/20 01:50:56 | 000,071,480 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgidsha.sys
[2013/07/20 01:50:50 | 000,206,648 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgldx64.sys
[2013/07/13 20:36:09 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeDNS Update
[2013/07/13 20:36:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeDNS Update
[2013/07/13 20:36:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FreeDNS Update
[2013/07/11 19:32:57 | 000,000,000 | ---D | C] -- C:\Users\RogueAssassin\AppData\Local\LogMeIn
[2013/07/11 19:32:57 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn
[2013/07/11 15:16:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
[2013/07/11 15:14:21 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Mouse and Keyboard Center
[2013/07/10 21:53:46 | 001,887,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2013/07/10 21:53:46 | 001,620,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2013/07/10 21:53:25 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2013/07/10 21:53:25 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013/07/10 21:53:24 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2013/07/10 21:53:24 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2013/07/10 21:53:05 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2013/07/10 21:53:05 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2013/07/10 21:53:04 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2013/07/10 21:53:04 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2013/07/10 21:53:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll
[2013/07/10 21:53:04 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll
[2013/07/10 21:52:58 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013/07/10 21:52:58 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013/07/10 21:52:55 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2013/07/10 21:52:55 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2013/07/10 21:52:52 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2013/07/10 21:52:52 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2011/03/06 13:12:15 | 077,687,456 | ---- | C] (K2 Network, Inc.) -- C:\Users\RogueAssassin\APB_Reloaded_Installer.exe.downloading
[4 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[3 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/08/09 17:12:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/09 17:12:11 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/08/08 23:53:30 | 000,015,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/08/08 23:53:30 | 000,015,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/08/08 23:51:59 | 000,000,975 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[2013/08/08 23:42:34 | 2146,050,047 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/08 23:41:25 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/08/08 22:15:33 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/08/08 22:15:33 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/08/08 00:49:49 | 000,384,688 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/08/08 00:45:23 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/08/08 00:45:23 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/08/08 00:45:23 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/08/08 00:45:23 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/08/08 00:45:23 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/08/08 00:45:23 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/08/08 00:45:23 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/08/08 00:45:23 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/08/08 00:45:23 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/08/08 00:45:22 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/08/08 00:45:22 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/08/08 00:45:22 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/08/08 00:45:22 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/08/08 00:45:22 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/08/08 00:45:22 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/08/08 00:45:22 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/08/08 00:45:22 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/08/08 00:45:22 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/08/08 00:45:22 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/08/08 00:45:22 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/08/08 00:45:22 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/08/08 00:45:22 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/08/08 00:45:22 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/08/08 00:45:22 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/08/08 00:45:22 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/08/08 00:45:22 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/08/08 00:45:22 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/08/08 00:45:22 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/08/08 00:45:21 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/08/08 00:45:21 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/08/08 00:45:21 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/08/08 00:45:21 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/08/08 00:45:21 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/08/08 00:45:21 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/08/08 00:45:21 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/08/08 00:45:21 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/08/08 00:45:21 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/08/08 00:45:21 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/08/08 00:45:21 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/08/08 00:45:21 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/08/08 00:45:21 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/08/08 00:45:21 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/08/08 00:45:21 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/08/08 00:45:21 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/08/08 00:45:21 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/08/08 00:45:21 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/08/08 00:45:21 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/08/08 00:45:21 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/08/08 00:45:21 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/08/08 00:45:21 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/08/08 00:45:21 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/08/08 00:45:20 | 003,958,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/08/08 00:45:20 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/08/08 00:45:20 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/08/08 00:45:20 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/08/08 00:45:20 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/08/08 00:45:20 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/08/08 00:45:20 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/08/08 00:45:20 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/08/08 00:45:20 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/08/08 00:45:20 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/08/08 00:45:20 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/08/08 00:45:20 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/08/08 00:45:20 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/08/08 00:45:20 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/08/08 00:45:20 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/08/08 00:45:20 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/08/08 00:45:20 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/08/08 00:45:20 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/08/08 00:45:20 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/08/08 00:42:46 | 003,928,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/08/08 00:42:46 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2013/08/08 00:42:46 | 002,565,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/08/08 00:42:46 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2013/08/08 00:42:46 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2013/08/08 00:42:46 | 001,504,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/08/08 00:42:46 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2013/08/08 00:42:46 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2013/08/08 00:42:46 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/08/08 00:42:46 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/08/08 00:42:46 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2013/08/08 00:42:46 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/08/08 00:42:46 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/08/08 00:42:46 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/08/08 00:42:46 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/08/08 00:42:46 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/08/08 00:42:46 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/08/08 00:42:45 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/08/08 00:42:45 | 001,424,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/08/08 00:42:45 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2013/08/08 00:42:45 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2013/08/08 00:42:45 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2013/08/08 00:42:45 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2013/08/08 00:42:45 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2013/08/08 00:42:45 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2013/08/08 00:42:45 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2013/08/08 00:42:45 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2013/08/05 21:47:04 | 000,000,096 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\Shadow of the Eternals by Precursor Games — Kickstarter.url
[2013/08/05 21:46:59 | 000,000,059 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\Pledge - Satellite Reign.url
[2013/08/05 21:46:54 | 000,000,100 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\Satellite Reign by 5 Lives Studios — Kickstarter.url
[2013/08/05 21:46:50 | 000,000,047 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\StarMade - StarMade.url
[2013/08/04 20:42:37 | 000,111,053 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\dirtyhack.zip
[2013/08/04 15:45:49 | 000,000,222 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\Shadowrun Returns.url
[2013/08/04 15:29:15 | 000,675,988 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\Minecraft.exe
[2013/08/04 15:26:58 | 000,367,332 | ---- | M] (http://magiclauncher.com) -- C:\Users\RogueAssassin\Desktop\MagicLauncher_1.1.7.exe
[2013/07/30 09:40:34 | 000,002,222 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/07/28 22:33:09 | 000,000,900 | ---- | M] () -- C:\Users\Public\Desktop\Nexus Mod Manager.lnk
[2013/07/27 01:01:34 | 000,001,147 | ---- | M] () -- C:\Users\RogueAssassin\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2013/07/20 16:30:08 | 000,001,411 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\TEdit.lnk
[2013/07/20 01:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgloga.sys
[2013/07/20 01:50:56 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgidsdrivera.sys
[2013/07/20 01:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgidsha.sys
[2013/07/20 01:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgldx64.sys
[2013/07/17 23:52:31 | 000,000,067 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\Falskaar at Skyrim Nexus - Skyrim mods and community.url
[2013/07/13 20:36:09 | 000,001,088 | ---- | M] () -- C:\Users\RogueAssassin\Desktop\FreeDNS Update.lnk
[2013/07/11 15:16:02 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_point64_01011.Wdf
[2013/07/11 14:50:46 | 000,033,688 | ---- | M] () -- C:\Windows\SysNative\BMXStateBkp-{00000001-00000000-00000006-00001102-00000008-10211102}.rfx
[2013/07/11 14:50:46 | 000,033,688 | ---- | M] () -- C:\Windows\SysNative\BMXState-{00000001-00000000-00000006-00001102-00000008-10211102}.rfx
[2013/07/11 14:50:46 | 000,029,604 | ---- | M] () -- C:\Windows\SysNative\BMXCtrlState-{00000001-00000000-00000006-00001102-00000008-10211102}.rfx
[2013/07/11 14:50:46 | 000,029,604 | ---- | M] () -- C:\Windows\SysNative\BMXBkpCtrlState-{00000001-00000000-00000006-00001102-00000008-10211102}.rfx
[2013/07/11 14:50:46 | 000,011,564 | ---- | M] () -- C:\Windows\SysNative\DVCState-{00000001-00000000-00000006-00001102-00000008-10211102}.rfx
[2013/07/10 22:27:16 | 000,788,632 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/07/10 22:27:16 | 000,670,676 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/07/10 22:27:16 | 000,125,852 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/07/10 22:27:11 | 000,788,632 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[4 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[3 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/08/08 23:51:59 | 000,000,975 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[2013/08/08 00:45:21 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/08/08 00:45:21 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/08/05 21:47:04 | 000,000,096 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\Shadow of the Eternals by Precursor Games — Kickstarter.url
[2013/08/05 21:46:59 | 000,000,059 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\Pledge - Satellite Reign.url
[2013/08/05 21:46:54 | 000,000,100 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\Satellite Reign by 5 Lives Studios — Kickstarter.url
[2013/08/05 21:46:50 | 000,000,047 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\StarMade - StarMade.url
[2013/08/04 20:42:36 | 000,111,053 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\dirtyhack.zip
[2013/08/04 15:45:49 | 000,000,222 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\Shadowrun Returns.url
[2013/08/04 15:29:14 | 000,675,988 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\Minecraft.exe
[2013/07/30 09:40:34 | 000,002,222 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/07/20 16:30:08 | 000,001,411 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\TEdit.lnk
[2013/07/17 23:52:31 | 000,000,067 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\Falskaar at Skyrim Nexus - Skyrim mods and community.url
[2013/07/13 20:36:09 | 000,001,088 | ---- | C] () -- C:\Users\RogueAssassin\Desktop\FreeDNS Update.lnk
[2013/07/11 15:16:02 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_point64_01011.Wdf
[2013/04/24 06:55:41 | 000,000,533 | ---- | C] () -- C:\Windows\eReg.dat
[2013/04/08 21:48:52 | 000,751,141 | ---- | C] () -- C:\Windows\unins001.exe
[2013/04/08 21:48:52 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\LAGARITH.DLL
[2013/04/08 21:48:51 | 000,029,591 | ---- | C] () -- C:\Windows\unins001.dat
[2013/03/28 21:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013/03/28 21:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013/03/28 13:20:41 | 000,000,894 | ---- | C] () -- C:\Users\RogueAssassin\.recently-used.xbel
[2013/03/06 20:41:35 | 000,003,303 | ---- | C] () -- C:\Windows\BRPARAM.INI
[2013/03/06 20:41:15 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\BRTCPCON.DLL
[2013/03/06 20:40:49 | 000,000,114 | ---- | C] () -- C:\Windows\SysWow64\BRLMW03A.INI
[2012/11/27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012/11/14 14:18:30 | 000,092,951 | ---- | C] () -- C:\Windows\Scan to PDF Uninstaller.exe
[2012/07/07 00:28:41 | 000,000,353 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Roaming\Network Meter_Settings.ini
[2012/07/07 00:27:39 | 000,000,412 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Roaming\All CPU Meter_Settings.ini
[2012/07/07 00:26:35 | 000,000,240 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Roaming\GPU Meter_Settings.ini
[2012/03/08 23:31:26 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/03/08 23:31:26 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/02/27 01:08:12 | 000,280,904 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012/02/27 01:07:54 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/09/19 02:42:34 | 000,000,600 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Roaming\winscp.rnd
[2011/09/19 01:12:39 | 000,000,600 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Local\PUTTY.RND
[2011/09/12 18:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/07/24 06:09:13 | 000,000,200 | ---- | C] () -- C:\Users\RogueAssassin\.cloudexport.ini
[2011/04/21 17:51:58 | 003,430,825 | ---- | C] () -- C:\Users\RogueAssassin\Tectonicus.jar
[2011/03/06 13:12:15 | 240,313,186 | ---- | C] () -- C:\Users\RogueAssassin\Client1.4.3.559640.7z.downloading
[2010/11/20 17:28:43 | 000,009,216 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/09/21 04:46:24 | 000,007,665 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Local\resmon.resmoncfg
[2010/09/17 17:02:38 | 000,146,129 | ---- | C] () -- C:\Users\RogueAssassin\StreamDialIn.mp3
[2010/09/17 17:02:38 | 000,121,676 | ---- | C] () -- C:\Users\RogueAssassin\5SecondBleep.mp3
[2010/09/17 17:02:38 | 000,090,960 | ---- | C] () -- C:\Users\RogueAssassin\FreqModAdjust.mp3
[2010/09/17 17:02:38 | 000,025,755 | ---- | C] () -- C:\Users\RogueAssassin\ShortBleep.mp3
[2010/09/17 17:02:38 | 000,025,754 | ---- | C] () -- C:\Users\RogueAssassin\1SecondBleep.mp3
[2010/09/13 23:24:26 | 000,000,101 | ---- | C] () -- C:\Users\RogueAssassin\AppData\Local\fusioncache.dat
[2010/09/08 12:07:36 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 00:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/26 23:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 05:19:04 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2009/07/13 20:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2013/02/27 00:47:10 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/13 20:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2010/11/20 06:27:24 | 000,849,920 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2010/11/20 06:25:46 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2011/11/17 01:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/13 20:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/13 20:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2012/07/04 17:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2013/05/13 00:51:01 | 000,184,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2013/05/12 23:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2010/11/20 06:27:26 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2010/11/20 06:26:06 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/20 05:18:32 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2011/03/03 01:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/13 20:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/13 20:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/13 20:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2009/07/13 20:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2010/11/20 06:26:40 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/07/13 20:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/13 20:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/13 20:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/13 20:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/13 20:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2010/11/20 06:27:24 | 000,303,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/13 20:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2011/05/24 06:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2012/02/11 01:36:02 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2011/11/17 01:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:64bit: - [2009/07/13 20:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2010/11/20 06:27:26 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2010/11/20 06:27:26 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2010/11/20 06:27:26 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2011/11/17 01:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2009/07/13 20:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2010/11/20 06:27:28 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2010/11/20 06:27:26 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/20 05:21:20 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2010/11/20 06:27:26 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2010/11/20 06:27:28 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/20 05:21:30 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/13 20:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2010/11/20 06:27:24 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2010/11/20 06:25:28 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2010/11/20 06:25:44 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2010/11/20 06:25:44 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2010/11/20 06:27:26 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:64bit: - [2013/05/27 00:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2010/11/20 06:27:30 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:64bit: - [2010/11/20 06:27:00 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2010/11/20 06:27:30 | 000,580,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2010/11/20 06:25:00 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/20 05:17:24 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/13 20:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2012/06/02 17:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2010/11/20 06:26:08 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/13 20:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2010/11/20 06:27:30 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< End of report >


OTL Extras logfile created on: 8/9/2013 5:18:25 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\RogueAssassin\Desktop\Tools
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

8.00 Gb Total Physical Memory | 5.83 Gb Available Physical Memory | 72.85% Memory free
15.99 Gb Paging File | 12.94 Gb Available in Paging File | 80.93% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.51 Gb Total Space | 113.26 Gb Free Space | 12.16% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 136.24 Gb Free Space | 29.25% Space Free | Partition Type: NTFS
Drive G: | 298.09 Gb Total Space | 122.06 Gb Free Space | 40.95% Space Free | Partition Type: NTFS
Drive O: | 49.12 Gb Total Space | 29.24 Gb Free Space | 59.53% Space Free | Partition Type: NTFS
Drive Z: | 183.76 Gb Total Space | 70.47 Gb Free Space | 38.35% Space Free | Partition Type: NTFS

Computer Name: VICKY7 | User Name: RogueAssassin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\Orbitdownloader\orbitdm.exe" = C:\Program Files (x86)\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"C:\Program Files (x86)\Orbitdownloader\orbitnet.exe" = C:\Program Files (x86)\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"C:\Program Files (x86)\Orbitdownloader\orbitdm.exe" = C:\Program Files (x86)\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit -- (Orbitdownloader.com)
"C:\Program Files (x86)\Orbitdownloader\orbitnet.exe" = C:\Program Files (x86)\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit -- (Orbitdownloader.com)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04AAA83B-B37B-459D-BA14-B0A5F5A4F046}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{058EA96E-ED8A-4BE6-82A4-6E5F1B94BF16}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{172597D6-F46A-4EF8-BE01-BBCDA274AA67}" = lport=10243 | protocol=6 | dir=in | app=system |
"{1D1F660E-29AE-4BF3-8CED-807C679EEC3D}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{1E788DBE-7826-4777-99E8-9F0738EE50AF}" = lport=445 | protocol=6 | dir=in | app=system |
"{38507D98-44C9-487F-BEEB-52798B09BCA6}" = lport=137 | protocol=17 | dir=in | app=system |
"{3BB89CC3-E954-4352-A279-4FA99A39C104}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3CB13E58-7F21-444E-A088-5D2D43F3BF8B}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{45BA84D4-A930-4C35-B62D-157148F9A7BB}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{4823D37E-3397-47E5-ABBE-58963DDB06D8}" = lport=138 | protocol=17 | dir=in | app=system |
"{4C2145C3-DF6B-4390-BCFA-D415BBAFCD5A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5308C4DC-1432-4003-BCE4-33A3CF0A37E8}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{59D17756-9C0A-477E-9DA7-25C7ADCC7738}" = rport=445 | protocol=6 | dir=out | app=system |
"{5A9E9082-BA07-44BA-835F-3F76FA34EFB3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5F35D4AD-59BC-4C1A-A48F-FF7F7CC18ECF}" = rport=10243 | protocol=6 | dir=out | app=system |
"{5F5FEC1D-DA45-4E76-AB09-9F0C24DA20A4}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6144F2E5-1525-4436-8EAF-8B67129A521B}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{726FEA94-51D4-407E-902E-9CED04A80098}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{782F0EA4-0629-4006-95D5-4D662CBE7E23}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{7C8944C4-E9D3-4F78-9E3C-ED9902E8862C}" = rport=138 | protocol=17 | dir=out | app=system |
"{80F6ACB9-92A4-45FA-B36F-075612B8059F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{84535ADB-6CB7-4A09-9E74-41FCCB46859F}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{8A163308-5DF2-4A87-84FA-4CB07980E1C9}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{9947E3BE-C553-4D97-9429-324EF68C3590}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ABAAED5D-7F6B-46A0-AEAB-FD51B6988F4D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B98DAC28-C856-415F-B341-62FBF4D51E7A}" = rport=137 | protocol=17 | dir=out | app=system |
"{B9B0E020-31F7-439E-8F84-84B3AEBE1481}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C127A5BA-BD9C-4BB4-A400-A1F680285B62}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{C75E91EA-4E62-4D6D-8985-DBFB6D1A7905}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{CAC8AFF4-0E2B-4D56-8A53-F6065E215C12}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CCBAF82F-DAE6-4912-813D-963FB3C623AD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D03A04FD-4BB4-4DBB-817C-FCD5B0C20AB1}" = rport=139 | protocol=6 | dir=out | app=system |
"{D03DD80A-B2C9-4CD1-928F-FA25BB708403}" = lport=139 | protocol=6 | dir=in | app=system |
"{F050B94A-7609-4CCD-A1B8-C8E4718819ED}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{F37A96B0-7A1F-4E29-A86E-88B74A1634C3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00BA06A1-0759-4002-B5D8-C98E18662A0B}" = protocol=6 | dir=in | app=c:\star wars-the old republic\launcher.exe |
"{00F41C4F-E2A9-4C28-803F-9D0A652CF981}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{0109AB5B-43C8-41E3-98C0-9C7F5B904795}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempireconfig.exe |
"{01959281-77F7-46E4-8C99-7838A08E9732}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\psychonauts\psychonauts.exe |
"{019B0ECA-636D-4BBA-AF98-E5ADB995028C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.515\agent.exe |
"{01DE22D3-DEFF-458E-B9D3-2A23D22C29CC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\opposing force\hl.exe |
"{021B48B5-71A1-4B56-ABF8-A390ECBB0AE7}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.516\agent.exe |
"{031A5745-DA5A-4373-BD65-F9B7F0C3D78D}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"{035F974C-188F-4591-BBF4-313CF08C810F}" = protocol=1 | dir=out | [email protected],-28544 |
"{047B3F24-0CD6-4E9E-81F6-CF6D397C5B6A}" = protocol=6 | dir=in | app=d:\starcraft ii\starcraft ii public test.exe |
"{04D15916-3032-4C24-9C42-E6976C5829A6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\source sdk base 2007\hl2.exe |
"{06359FDE-B6B9-4A96-B6B5-78001D871966}" = protocol=17 | dir=in | app=c:\program files (x86)\diablo iii beta\diablo iii.exe |
"{06754E0C-3972-4E91-A57C-8D408334DD5D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\homefront\binaries\homefront.exe |
"{0748F590-DB46-4667-9F6A-B5C65A708657}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{07DF2310-F8BC-454F-AA82-4BA80C7F9B16}" = protocol=17 | dir=in | app=d:\squareenix\final fantasy xiv - a realm reborn (beta version)\boot\ffxivboot.exe |
"{07FCCC78-5327-4960-9E78-FC1AE9655DA8}" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
"{087935A1-3E5E-4399-A978-D3C44BA6A885}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war 2\dow2.exe |
"{087FC4AB-FEE4-41A4-A48B-66FFCE86A9E9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dear esther\dearesther.exe |
"{08990493-7F57-419A-916E-6ED98C29CF3F}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{098E4106-C536-4FBF-A59B-CF292A6B1292}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{09C66E50-4256-4AA0-9066-143B600D44A5}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tropico 3\tropico3.exe |
"{0A5AA132-C62C-4EF0-8858-A6F0A533840D}" = protocol=17 | dir=in | app=d:\mass effect 2\masseffect2launcher.exe |
"{0BABEB9B-22DD-47F7-BA6E-E57D71637DFA}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rusty hearts\clientlauncher.exe |
"{0BE07F63-C032-4FD5-8537-16397D11B21C}" = protocol=6 | dir=in | app=c:\program files (x86)\war thunder\launcher.exe |
"{0C2D1105-2943-40CF-B36B-20720D098E9D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\homefront\binaries\homefront.exe |
"{0D040542-206F-48CE-B021-621A19D0B2A0}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0D07DCC5-8177-403D-9F0A-962EFC1811A0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\the secret world\clientpatcher.exe |
"{0D9EEF38-2621-49FD-8ADD-36F26EEB6FCF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rage\rage64.exe |
"{0F337064-0432-42B4-8AFA-61E5FF3D9B19}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{0F79DE67-CA7F-4057-A135-4741A7C0F4C4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0F87DB48-EF0F-43F1-ADA7-85DA1B0904AB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bully scholarship edition\bully.exe |
"{0FD660C1-CF7D-449B-B251-6938BC529768}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\kings bounty armored princess\kb.exe |
"{10370F4E-F65C-4531-957E-A9E50ABEFDC0}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{10AC99AC-17E7-41D1-B4E4-018C5968545E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\organtraildc\organtrail.exe |
"{1114CC4D-5AA9-4236-9574-00D636AAE925}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\half-life\hl.exe |
"{1127DF86-67E3-4B1F-8490-8307F2F71ABA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{11834D06-41B9-483A-8660-ABEF1DB9E77C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex invisible war\system\dx2.exe |
"{119D0D3C-416E-41BB-A59A-4799D3ADD979}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempireconfig.exe |
"{11CDAF92-7366-4A43-A7B6-D3149FE02651}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tropico 3\tropico3.exe |
"{1215EDD9-35B6-45CF-80AF-B89D74AF6525}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fallout new vegas\falloutnvlauncher.exe |
"{12304455-3FCF-4917-93FC-831765DB277A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\help.htm |
"{127A6762-2551-4EE0-A41E-58696876263D}" = protocol=6 | dir=in | app=c:\program files (x86)\diablo iii beta\diablo iii.exe |
"{12829886-3977-4C7E-8FC9-E5058E924956}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fallout new vegas\falloutnvlauncher.exe |
"{136A1746-BEF6-4303-9C31-84ABAE5D9595}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warhammer 40,000 space marine\spacemarine.exe |
"{13BDC6F0-65A9-4E66-B6F3-1BD692DB9348}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\i am alive\src\system\iamalive_game.exe |
"{13C5A922-2371-47B7-A814-9B258A22843D}" = protocol=6 | dir=in | app=g:\rockstar games\grand theft auto iv\grand theft auto iv\launchgtaiv.exe |
"{17998085-0E5B-4077-8D61-7DAEE4B676F2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\from dust\from_dust.exe |
"{1A1BB077-23FE-49E2-AE41-9872881A0993}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe |
"{1B017641-2289-4935-9B29-35D1F730B689}" = protocol=6 | dir=in | app=g:\cryptic studios\star trek online\live\gameclient.exe |
"{1B86C52A-EFD1-48E0-B7D9-D47B2A47BB16}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dxhrml\dxhrml.exe |
"{1B8F95AF-339C-41B9-A533-128F46106982}" = protocol=17 | dir=in | app=d:\league of legends\lol.launcher.exe |
"{1BAA332E-DA2A-4F62-A51F-D24621DB4910}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex\system\deusex.exe |
"{1C335012-90B2-49AB-8315-086822FE1E76}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dishonored\binaries\win32\dishonored.exe |
"{1CEDAF31-07B2-477F-B6CB-B31DB1696A38}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dishonored\binaries\win32\dishonored.exe |
"{1DDFED1C-4559-4100-85BF-34D9F7D4B6E4}" = protocol=17 | dir=in | app=g:\dragon age\daoriginslauncher.exe |
"{1EB13808-8AE4-4113-BC79-0B832D210E56}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bastion\bastion.exe |
"{1EB98D3D-F489-4438-AD1F-748F87D17E3C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe |
"{1EFA58E2-143C-41F6-8B9E-3EA3ED6CDD9C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\morrowind\morrowind launcher.exe |
"{1FC8B9AF-EF4A-4E24-A286-12106F670ABD}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman codename 47\setup.exe |
"{1FDAE52A-7D56-45DF-A6B4-A7BD7EA28CF1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tropico 3\tropico3.exe |
"{2033344D-FDDC-44EC-8A4D-F8261358484C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\half-life 2\hl2.exe |
"{213B90D7-0691-4EAA-834E-2F7F6829B16C}" = protocol=17 | dir=in | app=d:\star wars-the old republic\launcher.exe |
"{217C843E-45A4-42ED-AB38-CD3D5ED5BFCF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe |
"{227A897E-F4A4-425F-B028-3F71BA91A68A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\king's bounty - the legend\save_fixer.exe |
"{22AAF02B-4F7D-4B3E-B59E-C5D9835CD94D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bully scholarship edition\bully.exe |
"{23185BE0-B5F8-4D0A-9139-A5B7F30A8827}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman codename 47\setup.exe |
"{234C2C78-AADE-498A-92D2-9230682039EA}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lone survivor\lonesurvivor\lonesurvivor.exe |
"{239BD891-E63A-430E-BD0C-19D1B3E030D5}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mass effect\docs\ea help\electronic_arts_technical_support.htm |
"{241E78D6-684D-4B0B-A554-54F6C85648A6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{2497AE20-1F1B-47BC-9289-6FCCBE66B094}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{25083551-D8AB-433E-BBD0-3DF29EDFAE0C}" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"{259C1342-07B1-472B-AFEC-69DA68EFB9D8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{26365C12-C3BA-42C7-8BCB-4165D95CC09A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war soulstorm\soulstorm.exe |
"{2642AF88-B133-49F0-A4A6-6E2064B03FAD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\half-life 2\hl2.exe |
"{26A969B3-2D7C-4235-8ABE-9562B8B7EC55}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war gold\w40k.exe |
"{26D880C3-917B-463F-BC26-0F386EF9B7F4}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mass effect\binaries\masseffect.exe |
"{27CCB62E-9C78-487C-B0B1-C9D626278834}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bastion\bastion.exe |
"{295B466C-94D9-4CE3-ADFE-D522D0AB1313}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\ss2\shock2.exe |
"{2A65E821-D2EE-4C12-8E8F-E2C0C2F21293}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dxhrml\dxhrml.exe |
"{2A708165-CAD9-46CF-8D46-43ED6C28A072}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe |
"{2B20C653-5CF4-4910-87C5-29F1FA41ABF2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\max payne\maxpayne.exe |
"{2B7EE942-2D6C-46D3-AFD7-A4EB36690371}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex invisible war\system\dx2.exe |
"{2BCF381B-23D8-4CF2-8D2B-60A12788E236}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker call of pripyat\stalker-cop.exe |
"{3015FBEA-2446-452B-9D07-30A645AB202E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fallout new vegas\falloutnvlauncher.exe |
"{306206B2-6810-4915-AF61-097075ADA7E5}" = protocol=17 | dir=in | app=g:\dragon age\bin_ship\daorigins.exe |
"{30700B04-5FF1-41AC-ACD0-6329B9BEEED1}" = protocol=17 | dir=in | app=d:\squareenix\final fantasy xiv - a realm reborn (beta version)\boot\ffxivlauncher.exe |
"{30ABB263-19F6-41A2-ACF6-446D6B77CE80}" = dir=in | name=youtube custom rule |
"{32EEBDDF-D0EC-4D30-AC35-95B4F2E27B4B}" = protocol=17 | dir=in | app=g:\rockstar games\grand theft auto iv\grand theft auto iv\launchgtaiv.exe |
"{336DDDDB-B35C-4451-B18F-8B3D5D37BAB4}" = protocol=6 | dir=in | app=g:\dragon age\bin_ship\daupdatersvc.service.exe |
"{3370ACC7-964C-401B-8032-03800F0DF959}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex\system\deusex.exe |
"{3396A01E-7A1A-4E98-B806-5E467522FCC0}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{33FDDD09-FDAD-48A9-8F0C-FCFFF10738B2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bioshock infinite\binaries\win32\benchmark.bat |
"{340767E3-6EB6-4B79-85E7-CACF93271530}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lone survivor\lonesurvivor\lonesurvivor.exe |
"{3477DEC9-6DA6-422A-B5B0-EFD1DCC90E63}" = protocol=6 | dir=in | app=d:\dawn of war - soulstorm\soulstorm.exe |
"{34F195D5-F31E-4E1D-8F59-A2EFA0C5033E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{35104FF9-C8DD-42C1-A44D-C4FFE0A7FC2E}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\blood bowl legendary edition\bb_le.exe |
"{352783C7-5BAF-43E5-BC46-761A52B4C2B6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\the path - prologue\pathviewer-prologue.exe |
"{35BF3CDA-E014-4A41-B59D-84D6511547AC}" = protocol=17 | dir=in | app=g:\capcom\super street fighter iv\ssfiv.exe |
"{3641289F-FC65-4BBC-A37B-F5BCACC1B800}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lara croft and the guardian of light\lcgol.exe |
"{3667E92B-1E8F-47AA-A4F6-07E3427BE064}" = protocol=6 | dir=in | app=d:\firestorm-release\slvoice.exe |
"{377F1857-B5A5-4441-83AB-28FF698BD7FA}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\lara croft and the guardian of light\lcgol.exe |
"{398DE46D-7DF0-49CA-87F8-2661A8D625A8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\half-life\hl.exe |
"{39CEE333-AA11-4663-8F45-1E050C59B374}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\homefront\binaries\homefront.exe |
"{3B1D177E-C748-4159-8156-D13295F54C07}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\help.htm |
"{3C395F52-6F3D-4631-AB34-562E1220C1A3}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\universe sandbox\universe sandbox.exe |
"{3CC11FB1-0843-4725-A816-AE070014909D}" = protocol=17 | dir=in | app=c:\program files (x86)\secondlifeviewer\slvoice.exe |
"{3DC02830-9466-45AA-9AFC-20A913665FF7}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\help.htm |
"{3F74602C-1BCF-47DD-AAF5-B1FC5D42C609}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\chronicles of riddick - assault on dark athena\system\win32_x86\darkathena.exe |
"{42056BFA-2D62-4E27-AE39-55D03041E5A9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\baldur's gate enhanced edition\bgee.exe |
"{423C61FE-40CF-4C44-BDA1-3B1227B9E2F4}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman 2 silent assassin\config.exe |
"{44348A84-962E-4ABE-B9AF-E9658C9926CE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\help.htm |
"{44F05BE1-E41D-4B13-B7FD-C8C0B88CBE15}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman absolution\hma.exe |
"{45D4F921-D5D0-4937-9F4B-B67C4A1B55B3}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{46A42A77-8984-4AB3-92F4-1AF07A6FC781}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman 2 silent assassin\config.exe |
"{475DF446-0395-48BA-95C6-2122733EE5DD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex\system\deusex.exe |
"{4884BFDD-3D85-4358-8059-A8757C1A52BF}" = protocol=17 | dir=in | app=d:\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe |
"{48E02DDE-E0F7-4770-A2DA-5B23628F8C3F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{49821275-DE0C-44E4-9432-F9A3488F9B8D}" = protocol=17 | dir=in | app=c:\users\rogueassassin\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{4A25F4B1-6995-4D7C-8049-BF8761C86203}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\help.htm |
"{4B5C00D4-FE7B-434B-890A-DA33CC250DB6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dear esther\dearesther.exe |
"{4B932B62-F402-4244-A18B-5D5D673DBCE3}" = protocol=17 | dir=in | app=c:\dragon age 2\dragonage2launcher.exe |
"{4CAE2AC0-8CFB-4016-8A74-EFAB14F87942}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dead island\deadislandgame.exe |
"{4CC1AA81-87F1-402F-B29F-C88476DE7AC1}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\moon base alpha\binaries\win32\moonbasealphagame.exe |
"{4D199062-19AE-4502-A230-03F6BC10FEB8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe |
"{4D888A45-001E-4C9D-8816-FA3F91574402}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\psychonauts\psychonauts.exe |
"{4E27277A-0323-4CCF-B4A9-CA1ABCF847EB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman 2 silent assassin\hitman2.exe |
"{4E9DBBB5-C111-4E35-B713-85ED0786DB32}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\counter-strike\hl.exe |
"{4FDE45FB-E7BB-4C6B-BF64-9255BC8F58E9}" = protocol=6 | dir=in | app=c:\users\rogueassassin\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{4FFB57A7-CBAD-4386-ABB9-6FB9474A584B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\recettear\custom.exe |
"{50C09A2D-B6F5-47F0-8E69-4D7DE76A1D26}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\i am alive\src\system\iamalive_game.exe |
"{51FF70E4-337C-4749-A3E7-12104E69AC85}" = protocol=6 | dir=in | app=c:\dragon age 2\bin_ship\dragonage2.exe |
"{5222FB67-4698-4842-B197-470118700492}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\chronicles of riddick - assault on dark athena\system\win32_x86\darkathena.exe |
"{523C66DF-CD8B-4393-B635-369F5F7077F8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{531BEC7F-E2F6-44AD-8131-9C2BC7FFB3ED}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe |
"{540616E0-7855-4FCD-83F1-DB6A759C34ED}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgdiagex.exe |
"{54A37544-D1AD-44A4-9365-8BE3CDC733B7}" = protocol=6 | dir=in | app=g:\rockstar games\eflc\eflc.exe |
"{5521F75C-628A-45E3-8A3F-AA5FB0A4B9C7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\superbrothers sword & sworcery ep\swordandsworcery_pc.exe |
"{5564A117-08DB-48F9-8985-AD61615D4633}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5592858F-728C-4555-A911-47FAD5A6FD19}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex invisible war\system\dx2.exe |
"{55B4531C-34B0-4972-82FC-A83A6B9BB796}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempirelauncher.exe |
"{55E233B3-18AE-4290-A197-909FE19FE7A6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe |
"{568593A1-308A-4B83-AC84-08A396AACC33}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fallout new vegas\falloutnvlauncher.exe |
"{56BDC174-1B75-48DA-A26C-C87AE23167C1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\titan quest.exe |
"{57E9B7A4-EFB9-4976-97E9-8926D7B57FA0}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\recettear\custom.exe |
"{58808C6E-3E89-489D-80CB-6B0169C55DD4}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dead island\deadislandgame.exe |
"{58DD7062-81AF-4339-9AC4-3268FA83142B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\kerbal space program\ksp.exe |
"{5B05EAE8-B0C2-4753-8AD1-96AB16777784}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\creationkit.exe |
"{5B0EA5EE-5E57-46D0-9D34-116531838E02}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war 2\dow2.exe |
"{5B1FE74D-A7E5-449C-93D9-710B880680FF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker call of pripyat\stalker-cop.exe |
"{5BCA62E2-6C39-4E8F-BCFC-2B1857E28845}" = protocol=17 | dir=in | app=c:\dragon age 2\bin_ship\dragonage2.exe |
"{5C070C24-F6AD-41FC-9028-432A8208527D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe |
"{5CB4C10E-D754-475B-8926-D63EB4F5C9DB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\planetside 2\launchpad.exe |
"{5E3B2E71-B5F9-4D2D-B866-E1884A40CCDF}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{5EC73502-768D-498A-B9AD-A7616B1BC05B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\magicka\magicka.exe |
"{5FB35E14-DB6A-486F-B286-5F3A252DAA45}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman codename 47\hitman.exe |
"{5FEDCA4B-A453-40D5-B1E0-74B3F1A71FB6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\creationkit.exe |
"{60BF5538-8B60-42E1-82D2-8FA758D5EB7B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{616E227F-9141-4569-B640-FA8B2033912B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3bdupdatersteam.exe |
"{63C3BC27-0CE6-42B3-8F47-B0EB027D6F14}" = protocol=6 | dir=in | app=d:\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"{6412EBF9-BA47-40BF-B1F0-EA950A40D31F}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe |
"{65A513F6-B446-4572-B5DC-6F7371C3E831}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{65E5D3C4-2B1A-4ED9-BBD6-569EE593D6BA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\blood bowl legendary edition\bb_le.exe |
"{65F51336-453B-4892-AC11-74A11E5E3A88}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\moon base alpha\binaries\win32\moonbasealphagame.exe |
"{66D2DF6D-E751-46C0-90FB-40127607BF1C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{6846FDED-801E-437B-B16A-1430541CD684}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-downloader.exe |
"{687E15BA-5919-4576-A763-502A0C0CDB16}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dirt 3\dirt3.exe |
"{690C2416-9589-4F49-953F-14049619AFA6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{694DB52A-A1DF-4BDE-822A-A70454EFF889}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\kerbal space program\ksp.exe |
"{696A7F48-AFF3-45D6-87B3-D19C3EB405F2}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{6A7026B6-AB17-49A9-AA2D-05E6962BCF3F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex\system\deusex.exe |
"{6AC024DB-90C2-410B-A631-FCEB62D71D8D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\king's bounty - the legend\kb.exe |
"{6BEAFF8C-48C8-43D1-B425-67835A30C5E1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman 2 silent assassin\hitman2.exe |
"{6CBFDA55-502F-466D-B0C6-79381D00A2C8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\half-life source\hl2.exe |
"{6D80DEEE-A614-431F-9C24-E63A465D97A3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6DDE9C99-2460-48F0-821A-E45336F924D0}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\creationkit.exe |
"{6EBDCB11-C2D9-4B61-91FA-61CE56573D07}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempireconfig.exe |
"{6EF30B52-F674-4DB1-9EBC-D6F9F44E6FD7}" = protocol=6 | dir=in | app=g:\capcom\super street fighter iv\ssfiv.exe |
"{6F103EA1-5E21-41EA-B243-9D33DD6C2255}" = protocol=6 | dir=in | app=d:\world of warcraft\launcher.patch.exe |
"{6F12896A-9588-4FD5-9FB1-84DBC736B651}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\help.htm |
"{6F6C11AE-50EC-4861-A07A-8CB8F95A774E}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\recettear\recettear.exe |
"{71DBA48D-9122-4628-B278-EE6D03C8BB24}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\titan quest.exe |
"{71F9F6C6-3514-46D4-A979-EA3D41E270DB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\two worlds ii\twoworlds2_dx10.exe |
"{730575B2-7533-4782-9424-B7E96EEB0B90}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\titan quest.exe |
"{73263224-EB59-4EE3-8D32-93A76A5AE166}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe |
"{74456B55-5B13-483C-AC7A-34FAD366D2BE}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgemca.exe |
"{7517E11A-6FEA-4258-8A4A-0716B2EB48D6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\superbrothers sword & sworcery ep\swordandsworcery_pc.exe |
"{75532C8A-8F95-4BF9-ADC1-BD5A073FFF8D}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-downloader.exe |
"{758C0910-A034-400F-A749-8B7C7A3F3341}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\amnesia the dark descent\launcher.exe |
"{7632DA1E-1FC5-46EC-896A-9D27D58FCE5E}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{7656D4EF-D6F2-4CF3-A1BB-C1339836F7BE}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{77DC8EF3-DDA9-4A51-833D-2C2FB334F703}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\moon base alpha\binaries\win32\moonbasealphagame.exe |
"{77FB5FA2-6748-436D-A1F6-38D3E36B848A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\blood bowl legendary edition\bb_le.exe |
"{78D4DAA3-8E49-41D1-B74D-395788172FCE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{792B3AAE-5C58-4E3B-A48B-42CAAF9D4B77}" = protocol=17 | dir=in | app=d:\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"{792F4071-B975-43C0-A71A-581524E3C7F5}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempireconfig.exe |
"{794E2C0C-1EB2-4A31-B0B6-D84B4AD1636F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\help.htm |
"{79BA4DD4-2FA0-416F-9F40-CC342579987C}" = protocol=17 | dir=in | app=c:\star wars-the old republic\launcher.exe |
"{7AA0D82F-A949-4782-B05F-712FB87E3A9C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dirt 3\dirt3.exe |
"{7AC09D00-42A2-408F-ACFD-DD6924D3F31F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war ii - retribution\dow2.exe |
"{7AC8189E-52F4-4F3A-A7CC-91CC99EBE76A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\half-life source\hl2.exe |
"{7B039385-A15A-4349-9821-3D6E84D38FD1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\remember me\binaries\win32\rememberme.exe |
"{7B7F575A-3B3D-40A9-ABE3-C022896CD08E}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\the path - prologue\pathviewer-prologue.exe |
"{7E8B9F52-38C5-4BDF-BF98-B1EE5CB59B6A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mass effect\docs\ea help\electronic_arts_technical_support.htm |
"{7F68C149-3C9C-4DFB-B3B0-1721B9C66B86}" = protocol=6 | dir=in | app=d:\mass effect 2\masseffect2launcher.exe |
"{811344C1-E162-4041-83D4-5AADDE35B70C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rage\rage.exe |
"{82B5C0F9-3BE6-4C1F-A233-19CACA6433A0}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{832058E1-3E86-45F2-B193-593B24805C62}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war gold\w40k.exe |
"{83C9EBC5-E10C-424D-9B70-5EEEBE2296A8}" = protocol=17 | dir=in | app=g:\dragon age\bin_ship\daupdatersvc.service.exe |
"{857CCDE6-CCA6-4988-93B4-B5055D00A1DE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mass effect\binaries\masseffect.exe |
"{85DCC5BD-5EB5-4350-98E0-18FFC87C8E4A}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.515\agent.exe |
"{85EF6F1E-A937-41B7-810A-4665624752A7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe |
"{862FE53F-77FE-4DAD-8CF7-B26C51091A7A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempirelauncher.exe |
"{8653FA5E-4859-46DB-8C3D-18D8405C1970}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warhammer 40,000 space marine\spacemarine.exe |
"{86DD23F1-1BDF-41C9-8884-2EECD9A18CD3}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{8825511A-545A-4132-9053-93AC2FCB5A27}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\recettear\recettear.exe |
"{88649B55-F10E-4C5F-B764-9247EB46EB64}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman sniper challenge\hmsc.exe |
"{88F9D631-0262-4BF4-BED2-95EA2D098829}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{89EAD1EF-43C2-405F-AFB9-D106DA0CDE40}" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |
"{8A4339C7-3CCA-4CEC-A934-F5D03A0FFA2C}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{8A50B7EF-99A1-4212-869A-4EFB520FA96C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bully scholarship edition\bully.exe |
"{8BBFB251-49A3-48DA-B567-1DF5B2B5BD58}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker call of pripyat\stalker-cop.exe |
"{8C0CD72D-865A-4C84-A3CB-9888749E3F37}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\baldur's gate enhanced edition\bgee.exe |
"{8C43CB64-F551-4FDF-904E-4EA77E30ACF8}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dishonored\binaries\win32\dishonored.exe |
"{8DACF46C-1A65-4E3C-8D71-BF369D5C983F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sleepingdogs\hkship.exe |
"{8E5D0FAA-7377-4216-BE38-6A0369363649}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\king's bounty - the legend\kb.exe |
"{8EAC8250-04A7-4B3D-ACA5-E53847981873}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\two worlds ii\twoworlds2_dx10.exe |
"{8EFF2498-D073-4E4B-A989-B83A4C3BF172}" = protocol=6 | dir=out | app=system |
"{8F6F8B39-D051-49FB-92F5-E2B3716A4373}" = protocol=17 | dir=in | app=d:\world of warcraft\launcher.patch.exe |
"{9014F8C2-7D1A-410C-AD08-EB69492124A5}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{903E7D75-6ACA-4DF7-88DE-A54D9CCEDDC6}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{909D4856-659B-4CE3-802F-7F10024DAD90}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{916D7924-3F68-471E-9057-CC07F5874102}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe |
"{92FFB963-5177-41BE-A7B5-5BDDC082015D}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{93C5B272-622A-497A-A06C-0F73B1653AC4}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\planetside 2\launchpad.exe |
"{940F3FD1-1D18-4B75-B5ED-BA9939FE2DA4}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgnsa.exe |
"{944BB123-556E-4F9E-9AD9-B8B56F3E90A6}" = protocol=58 | dir=out | [email protected],-28546 |
"{95148651-F3C0-406E-B1E5-5CDAE794C5A7}" = protocol=6 | dir=in | app=c:\program files (x86)\secondlifeviewer\slvoice.exe |
"{961D71E9-F33B-47E3-8E03-413A17B8B0C1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9630051A-CEBC-4098-9DF6-3A73E03A761B}" = protocol=6 | dir=in | app=d:\squareenix\final fantasy xiv - a realm reborn (beta version)\boot\ffxivboot.exe |
"{9698AC27-E253-4ABB-9FA3-5B62297AD9EC}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{96E1F36B-0AC0-47E2-9456-72D43CB8B974}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{9700C13F-FE47-4A14-BEB2-62588369A52F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe |
"{9899590A-1C3E-410A-9E30-15CE18A66D78}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{98CF2207-EA0A-4CA3-9D3E-1BCCF2004055}" = protocol=17 | dir=in | app=g:\cryptic studios\star trek online\live\gameclient.exe |
"{9978D539-20E4-46EE-8302-24762DB7E7D0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\shadowrun returns\shadowrun.exe |
"{9AD10760-E7F0-4A45-BD08-5EE6DBF1A0BA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe |
"{9B4E8C1C-0539-4A1B-8D0C-B42F1E0DFBB5}" = protocol=6 | dir=in | app=d:\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe |
"{9D5AEADD-5CA1-42D0-9D35-B8C0D7A1880A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sid meier's civilization v\launcher.exe |
"{9EE15491-6230-4413-9199-B63EC5968D3F}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
"{A06DB3B2-84F3-4A4D-A3DB-792C68C9B987}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman codename 47\hitman.exe |
"{A0B56A65-2564-48F8-BBB5-9BC09DE4D735}" = protocol=6 | dir=in | app=c:\program files (x86)\ncsoft\lineage ii\system\l2.bin |
"{A1A44985-4C72-4F92-B969-840AB0695E86}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\two worlds ii\twoworlds2.exe |
"{A1C0C4E3-BF49-43F6-A53D-4E36CE77AB74}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bastion\bastion.exe |
"{A20A2367-BA5C-4315-9139-5950B132C697}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tropico 3\tropico3.exe |
"{A26128A6-4DAB-4AA0-A4F5-4FDC050D7378}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\kings bounty armored princess\kb.exe |
"{A3F6F6F4-4180-4E01-AFCB-51E7AA51E5F9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\tqit.exe |
"{A54934A3-8514-44C3-9D38-65EC0331664B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\from dust\from_dust.exe |
"{A5B9C2FF-D978-45D2-80F4-D7212092531B}" = protocol=17 | dir=in | app=d:\star wars-the old republic\squadron157\retailclient\swtor.exe |
"{A5D57488-EBEA-4376-B037-27E00329ECDE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex invisible war\system\dx2.exe |
"{A736A905-7954-4F27-B782-BD19F2430456}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terraria.exe |
"{A80A8244-AA68-421C-A138-DE25479546CA}" = protocol=17 | dir=in | app=c:\program files (x86)\ncsoft\lineage ii\system\l2.bin |
"{A8202DEF-1A5C-4923-905E-47D5E2FE9B9E}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe |
"{A82D8E93-B02C-414E-8073-3640EA8C194A}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A896C769-3141-436B-90FF-C8A1ABB75224}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war 2\dow2.exe |
"{A93C562E-5E8C-4B3E-9004-A11C155A23E4}" = protocol=58 | dir=in | [email protected],-28545 |
"{AC765628-4744-4CD6-A908-BBF850D64D4E}" = protocol=17 | dir=in | app=d:\starcraft ii\starcraft ii public test.exe |
"{ACDB0EF1-D00E-42D5-8E89-B34D6FA75FEA}" = protocol=17 | dir=in | app=d:\star wars-the old republic\launcher.exe |
"{AD718A11-F14A-4E95-AB43-4EE8EFACB6BE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\braid\braid.exe |
"{AE74803E-C793-4514-B56B-F9301C5EBA09}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bastion\bastion.exe |
"{AEB42287-55F4-43F3-A37E-DE972BE51A00}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{AEDD0855-61AB-4B53-AA90-6BAB0E3CDF8D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\shadowrun returns\shadowrun.exe |
"{AF2830BF-B63C-4C13-9BCA-CBF045560059}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{B1083B37-8D04-4F43-8746-4A3C6EDE34E6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war 2\dow2.exe |
"{B2E4AB0D-4B0B-4E32-B369-62D3B233D626}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{B3994200-5FCF-408E-9D57-F5709178A36A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bioshock infinite\binaries\win32\benchmark.bat |
"{B47886C0-1E4E-4BBB-8075-C1965DD5BD14}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\opposing force\hl.exe |
"{B47ABA89-5145-46D7-B515-8FD4637F17C6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\organtraildc\organtrail.exe |
"{B4EAA76A-B87C-4139-96FB-050B75568241}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman absolution\hma.exe |
"{B5E288E6-60D8-4CEA-8DF0-ECBBC5EF472E}" = protocol=6 | dir=in | app=g:\dragon age\daoriginslauncher.exe |
"{B64FC751-DD2B-418D-8C68-E28A6BEF5774}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\king's bounty - the legend\save_fixer.exe |
"{B69DA468-2C1B-4DDB-B5B2-829899952DE2}" = protocol=6 | dir=in | app=c:\dragon age 2\dragonage2launcher.exe |
"{B6F4EA1F-6DE2-47C6-B751-05EDBAB5D132}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{B8190F07-F373-4C01-9599-AD71608DFEA8}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\bully scholarship edition\bully.exe |
"{B9A345E5-4BB3-400B-A433-DD47B3A7F673}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BA1A6C87-485A-4855-A10B-715233F011CD}" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"{BB31A496-AC32-49B3-AEAC-352D7C8F1D23}" = protocol=6 | dir=in | app=d:\mass effect 2\binaries\masseffect2.exe |
"{BB6FB7BC-0EED-4AD6-8E5E-5B63D4F07BEB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rusty hearts\clientlauncher.exe |
"{BBAC3E2E-B963-4926-9870-B904D7571F07}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war ii - retribution\dow2.exe |
"{BC963DAF-67B4-450A-9051-A4D0D628C852}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{BD22D5C6-86FF-466B-96CF-6D2ADAF6A5BB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker shadow of chernobyl\bin\xr_3da.exe |
"{BD2A6B0D-A56B-4F9C-B6D5-C12996ABD59B}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{BD906EDB-C9D1-4B1C-95D6-18B1B989BF76}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker shadow of chernobyl\bin\xr_3da.exe |
"{BDCAB65B-00EE-4A0B-9D30-A10508CBB4E0}" = protocol=6 | dir=in | app=d:\world of warcraft\launcher.exe |
"{C012B3D7-B9E7-4C9A-9A2C-74980EAEFA16}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\day of defeat\hl.exe |
"{C0665E20-F9E2-4062-9654-65C3CA7EBBF5}" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"{C0884D02-DCD5-4CF5-9C55-8AF19E7D16F0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\magicka\magicka.exe |
"{C12F1F4F-EFCD-4938-8263-C8305C182AA0}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe |
"{C23F1A57-15A7-484A-A4CD-1844A26B1652}" = protocol=6 | dir=in | app=d:\squareenix\final fantasy xiv - a realm reborn (beta version)\boot\ffxivlauncher.exe |
"{C277FF0D-5C58-4251-B702-225703041374}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\max payne\maxpayne.exe |
"{C341B097-6D32-4AAE-8D47-C5BE5111A50F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\super meat boy\supermeatboy.exe |
"{C45505B3-5ED8-460F-9449-D228BDD66CF2}" = protocol=6 | dir=in | app=d:\star wars-the old republic\squadron157\retailclient\swtor.exe |
"{C51FDCF1-4870-4937-AA10-029AA058123F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\creationkit.exe |
"{C521A16E-4771-4F23-85B5-842059D95EA9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tomb raider\tombraider.exe |
"{C542839B-0BD4-439E-BA66-71E87DF36412}" = protocol=17 | dir=in | app=c:\program files (x86)\war thunder\launcher.exe |
"{C717890B-43A7-4EA8-8991-FA20391EAAFC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker shadow of chernobyl\bin\xr_3da.exe |
"{C7C6D39E-1D1A-48BC-A413-F0012F10C355}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\might and magic heroes vi demo\might & magic heroes vi.exe |
"{C88A6D11-84C4-402D-8F73-70B52C802DDF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\source sdk base 2007\hl2.exe |
"{C9C2AE8B-F1C8-467C-A258-E39F57A27906}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sleepingdogs\hkship.exe |
"{CA4BF855-3D34-4322-9090-4FF78C52C4BB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terraria.exe |
"{CA8E70A9-8E69-4B8D-8C4C-ECC2F8A29A43}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{CC50D24F-9217-4377-8AC3-808869505373}" = protocol=6 | dir=in | app=g:\rockstar games\eflc\launcheflc.exe |
"{CC7583F9-CC74-49D6-BC00-8F8E55E48061}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{CCEBF2C7-BAED-4C75-9189-ABDDE3A44749}" = protocol=17 | dir=in | app=d:\dawn of war - soulstorm\soulstorm.exe |
"{CD3DF5AF-B3EF-4587-B70A-C8F4D3F76D9A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deus ex - human revolution\dxhr.exe |
"{CD7544F2-AC8A-4B91-8DD9-BFC98E276DB5}" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |
"{CE02DD3B-687E-4025-8D72-67D930E88DEB}" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
"{D0C871DE-3E49-4ACD-B34B-E21D72B6FEC6}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.516\agent.exe |
"{D139FA5B-0346-4526-B2FD-19F27E7CF659}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{D2A1D82B-064C-45BE-8116-D4BEA89F89AE}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D39C8007-BC42-4842-B45D-02F3C4790B52}" = protocol=17 | dir=in | app=g:\rockstar games\eflc\launcheflc.exe |
"{D39E32A7-42BC-4136-B00C-4E72402894D1}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dishonored\binaries\win32\dishonored.exe |
"{D48E7EBB-9B75-4C72-83CF-FD60487D9E16}" = protocol=6 | dir=in | app=d:\starcraft ii\starcraft ii.exe |
"{D4D9D97C-2090-45ED-89E9-553B48534AA9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\ss2\shock2.exe |
"{D5DE6126-EB25-426E-AC99-18E9C72294AC}" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"{D6764B17-C5E8-4C17-9CE5-6A49A94A59D1}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{D6E0FE82-7F75-4943-869C-62455F737982}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\the secret world\clientpatcher.exe |
"{D70F3815-0305-482D-B0E1-4444BC9D38E9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\super meat boy\supermeatboy.exe |
"{D824CBDC-E34C-43C4-A270-08ACB2B8D504}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker call of pripyat\stalker-cop.exe |
"{D8BE8BA9-A82E-4966-99F0-20AA38EFF2F2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rage\rage.exe |
"{D900FD48-B60A-49E4-907C-8944BDF9828C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\amnesia the dark descent\launcher.exe |
"{D93EA087-EC52-4ACD-9AA3-771F25A64958}" = protocol=1 | dir=in | [email protected],-28543 |
"{D9A4AE10-17EB-405D-A83F-EA9F957D9DFE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{DB032B78-0C5F-42EA-B4FF-348A5A2C957D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\psychonauts\psychonauts.exe |
"{DB682C71-2B32-410D-A909-6ED262E568B5}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war soulstorm\soulstorm.exe |
"{DBB872B4-830A-4045-963B-E18F4D2267BB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\braid\braid.exe |
"{DBF4EEC0-0009-47B6-B445-E368A69E32ED}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{DC8AA262-8049-4255-AAF2-3A9677F9BA36}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\counter-strike\hl.exe |
"{DD1CBF98-9850-4954-9AB3-8680A96C7698}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{DD37D351-01ED-4DD3-9603-E33392538DAC}" = protocol=6 | dir=in | app=d:\star wars-the old republic\launcher.exe |
"{DF40C520-8216-4639-B8AE-D10EB61EE354}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{DFD5B4BA-DA20-4157-BD3D-87406EB2ED7C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\blood bowl legendary edition\bb_le.exe |
"{E0126FA2-726D-4479-9316-E63DF8863683}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E0AC8EFF-AA82-40CD-8924-28EA57DD6C3C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\endless space\endlessspace.exe |
"{E11918FF-7DC2-4653-91B7-9FF79F11307E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim\skyrimlauncher.exe |
"{E193E3B1-75DC-4D12-BB7B-ACD06D73CBFB}" = protocol=17 | dir=in | app=d:\firestorm-release\slvoice.exe |
"{E19CBBB1-B88B-4C13-8630-DE30EF73E70B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stalker shadow of chernobyl\bin\xr_3da.exe |
"{E23F7538-BA8F-41A7-B94F-FAE45B342F8D}" = protocol=6 | dir=in | app=d:\league of legends\lol.launcher.exe |
"{E248ACCA-3092-4120-97F2-1B7786E4B64D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\remember me\binaries\win32\rememberme.exe |
"{E299D86B-A366-4EBA-84C8-BAA0767AEDDA}" = protocol=17 | dir=in | app=d:\mass effect 2\binaries\masseffect2.exe |
"{E2FB7410-7EFE-4442-A2D0-E39A873E6FBB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{E4ADAE86-00A5-4612-9E01-302D7F8A9DA9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\[email protected]\day of defeat\hl.exe |
"{E4D8BA8F-0FCA-421C-A8AD-E1059B566CFF}" = protocol=17 | dir=in | app=c:\star wars-the old republic\launcher.exe |
"{E4E72B2B-7969-4E80-B845-1125628CF2C1}" = protocol=17 | dir=in | app=g:\rockstar games\eflc\eflc.exe |
"{E6636BAB-DA11-4159-815B-5B08E3077472}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempirelauncher.exe |
"{E6DB0A49-36EC-4F57-AB8B-F53E93548B0B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rage\rage64.exe |
"{E8336037-8462-4371-B49A-B16185F82D46}" = protocol=6 | dir=in | app=g:\dragon age\bin_ship\daorigins.exe |
"{E87E702D-CBDF-48CF-B2AE-B027D231124D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tomb raider\tombraider.exe |
"{E937356D-4284-4662-BD2B-FB4CC2732635}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\two worlds ii\twoworlds2.exe |
"{E98EB379-3CC7-4708-8D7C-D42DC56642F1}" = protocol=17 | dir=in | app=d:\starcraft ii\starcraft ii.exe |
"{EA6858A5-17BE-4172-89D9-9A67C68F78B4}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\morrowind\morrowind launcher.exe |
"{EAF61547-60D8-49D0-8CE3-B91F6F63495A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3bdupdatersteam.exe |
"{EBCD6674-7F4D-400B-A2F3-DD670AA72166}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
"{EC2C41FC-C57A-40A9-8270-24988C8DFBCF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{EC96303B-69F8-47FB-A439-273A1D103FCF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\moon base alpha\binaries\win32\moonbasealphagame.exe |
"{ED9AA314-BFF1-4FBB-A9DF-8E408A32C239}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest\titan quest.exe |
"{EDE38D09-E65B-43CE-8555-8D3D8F10D49F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\might and magic heroes vi demo\might & magic heroes vi.exe |
"{EF70D625-375D-4F16-8015-FF4B9AF46697}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe |
"{EF9D7A0E-3513-4078-83FB-0A71CCB333E0}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\universe sandbox\universe sandbox.exe |
"{F03C4C51-DFD4-4C53-A32C-5969533EDBFB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman sniper challenge\hmsc.exe |
"{F0EA6DEE-4EA7-429D-B690-6247D491AD1D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\titan quest immortal throne\help.htm |
"{F2844E18-A342-483D-9E40-5860383B75F4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F44D6B99-8532-48A0-8DB5-E69D56AEEBCB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\homefront\binaries\homefront.exe |
"{F5CA8E4A-AA2E-4308-9AE3-E901D6F399CF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\psychonauts\psychonauts.exe |
"{F70E1FCA-BEE4-412A-92F5-65BD846383D6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\jade empire\jadeempirelauncher.exe |
"{F7D89B58-CAF0-42F2-8026-EFBF904E0822}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rage\rage.exe |
"{F86707FA-7080-49DD-8529-B2BCE681EF09}" = protocol=6 | dir=in | app=c:\star wars-the old republic\launcher.exe |
"{F9795AB1-F632-4504-8C8D-10EF91E9BB73}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\rage\rage.exe |
"{F9AAB283-C2A1-4969-8090-095AC3B7BDD3}" = protocol=6 | dir=in | app=d:\star wars-the old republic\launcher.exe |
"{FE329BD0-3B15-403F-ACBD-F6AC402CC151}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FF3DF68B-9DA0-4192-B7B1-2C11596F704A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\endless space\endlessspace.exe |
"{FF8E8FE5-2F9A-4032-A6F1-02235697BB48}" = protocol=17 | dir=in | app=d:\world of warcraft\launcher.exe |
"TCP Query User{031A1F74-362D-4F69-8877-BAC46915209B}D:\league of legends\lol.launcher.exe" = protocol=6 | dir=in | app=d:\league of legends\lol.launcher.exe |
"TCP Query User{094070B3-2636-45BA-954B-AF6A1A5F2E18}D:\the lord of the rings online\lotroclient.exe" = protocol=6 | dir=in | app=d:\the lord of the rings online\lotroclient.exe |
"TCP Query User{0F3D2063-9688-406A-BA48-4181BF29BF3F}D:\f3_demo\f3.exe" = protocol=6 | dir=in | app=d:\f3_demo\f3.exe |
"TCP Query User{0FD02ABB-4439-4CE1-AB37-CC673CE7DEF9}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{11536AD9-AFE8-4FF8-A845-D53800996AC4}C:\users\rogueassassin\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\rogueassassin\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{15E57AE9-D343-4A68-9AF0-E96AFCD7C989}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"TCP Query User{2A9C894A-B751-41B7-96FE-4FEE15D69DDB}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe |
"TCP Query User{3459EEB6-D7B4-4B60-BE38-93F13F94BF5E}C:\program files (x86)\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |
"TCP Query User{3F375921-030E-4F8B-9FA7-5ADA3C909746}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{45D54E3A-416C-4D5D-935D-3F4FBE66963C}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{48A22162-C77E-490C-8851-FB94B8D4374F}D:\the lord of the rings online - public test\lotroclient.exe" = protocol=6 | dir=in | app=d:\the lord of the rings online - public test\lotroclient.exe |
"TCP Query User{66417499-B854-47DB-9B2A-B2541D6F599A}C:\program files (x86)\bitcoin\bitcoin.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitcoin\bitcoin.exe |
"TCP Query User{6B007105-6CC6-4BF1-8D63-A9366F79D4C5}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe |
"TCP Query User{6BAF64C2-FAD6-477C-9176-F455F58A7636}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{6E0190EB-8ED8-44E0-9ECC-DC3AE520F123}C:\program files (x86)\secondlifeviewer\slvoice.exe" = protocol=6 | dir=in | app=c:\program files (x86)\secondlifeviewer\slvoice.exe |
"TCP Query User{73601932-D93D-439C-AA31-B0254FF551E6}D:\dawn of war - dark crusade\darkcrusade\darkcrusade.exe" = protocol=6 | dir=in | app=d:\dawn of war - dark crusade\darkcrusade\darkcrusade.exe |
"TCP Query User{7C561F8D-56B0-4AE8-ABA1-8E26AB3CB676}C:\program files (x86)\steam\steamapps\common\dear esther\dearesther.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dear esther\dearesther.exe |
"TCP Query User{7FA4E7AF-2572-4314-B479-4A3D34B67346}G:\rockstar games\eflc\eflc.exe" = protocol=6 | dir=in | app=g:\rockstar games\eflc\eflc.exe |
"TCP Query User{82ADB517-0CD3-4775-AFF8-0BC6898FDCB7}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{84A0919D-3BA6-426F-9B16-5A50EDBAC207}D:\starcraft ii\versions\base24944\sc2.exe" = protocol=6 | dir=in | app=d:\starcraft ii\versions\base24944\sc2.exe |
"TCP Query User{984DBC5F-0392-4BDD-8302-9C6B3876035D}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{98B0B29E-5E9D-467B-A5A2-72439612B3C2}C:\tshock\terrariaserver.exe" = protocol=6 | dir=in | app=c:\tshock\terrariaserver.exe |
"TCP Query User{A341CA1B-AD72-45F9-B407-544A0B4D6E6C}G:\cryptic studios\star trek online\live\gameclient.exe" = protocol=6 | dir=in | app=g:\cryptic studios\star trek online\live\gameclient.exe |
"TCP Query User{A4284702-8FAC-4B15-8923-3D0CA5BCB677}C:\program files (x86)\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |
"TCP Query User{ADFCC643-DAFF-479C-A886-3522E9DDCF39}D:\nwn\nwmain.exe" = protocol=6 | dir=in | app=d:\nwn\nwmain.exe |
"TCP Query User{AE733750-FBB8-4137-BDC5-F5815803BD6E}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{C20D66EA-107E-4A4D-B6CA-EA3BA1D1152F}D:\secondlifeviewer2\slvoice.exe" = protocol=6 | dir=in | app=d:\secondlifeviewer2\slvoice.exe |
"TCP Query User{C3CE8E68-2BBC-4214-B8F1-349415609F6F}G:\rockstar games\grand theft auto iv\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=g:\rockstar games\grand theft auto iv\grand theft auto iv\gtaiv.exe |
"TCP Query User{CA74CD8D-F439-4747-9581-D9E2E5A346D8}C:\program files (x86)\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
"TCP Query User{CDD0F2C7-EB4E-4A0B-87A8-4FC46853241C}D:\dawn of war - soulstorm\soulstorm.exe" = protocol=6 | dir=in | app=d:\dawn of war - soulstorm\soulstorm.exe |
"TCP Query User{D156255B-B720-4B1F-BA9C-6D6D4F162466}C:\windows\system32\java.exe" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |
"TCP Query User{D71C2307-01FD-4A56-8F53-1EBF0CC1964A}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"TCP Query User{E3200B7A-1FD6-44DD-9043-3E21623E72F9}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{EEDE84E5-9A3A-4B43-A81F-EEFB42FB12B2}C:\program files (x86)\orbitdownloader\orbitnet.exe" = protocol=6 | dir=in | app=c:\program files (x86)\orbitdownloader\orbitnet.exe |
"TCP Query User{F2C295D4-C770-46D1-9F82-FDC3C861DB93}C:\program files (x86)\steam\steamapps\common\dawn of war soulstorm\soulstorm.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war soulstorm\soulstorm.exe |
"TCP Query User{F36BBC3B-E42C-4C47-A6B7-217BDA79D695}C:\program files (x86)\trillian\trillian.exe" = protocol=6 | dir=in | app=c:\program files (x86)\trillian\trillian.exe |
"TCP Query User{F6BD6C75-D1E7-4223-A650-922E7F214F03}C:\program files (x86)\spacialaudio\sambc\sambc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\spacialaudio\sambc\sambc.exe |
"TCP Query User{F8683747-7DF1-4C4F-95A9-72E67B7654A9}D:\firestorm-release\slvoice.exe" = protocol=6 | dir=in | app=d:\firestorm-release\slvoice.exe |
"UDP Query User{032D76E3-E282-460F-B049-31182BCB9C05}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe |
"UDP Query User{08E8A3B0-CABC-46C2-B319-03C13662E3DC}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{10D0D048-5F16-4AAA-87D7-687026A1C1B5}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe |
"UDP Query User{11D7D9C7-6FF8-41FB-9639-357CB25F17B7}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{166C24D4-6AD8-4319-8CBB-8EF85FC84DC2}C:\program files (x86)\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\google earth\plugin\geplugin.exe |
"UDP Query User{176D2E54-E4ED-4B46-81F6-E51EC1968131}D:\dawn of war - dark crusade\darkcrusade\darkcrusade.exe" = protocol=17 | dir=in | app=d:\dawn of war - dark crusade\darkcrusade\darkcrusade.exe |
"UDP Query User{2CAD66EA-03AC-4795-AC3C-7F8F005049F2}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{3A59D551-802C-48B0-9DAB-927D8ABF73A5}C:\program files (x86)\secondlifeviewer\slvoice.exe" = protocol=17 | dir=in | app=c:\program files (x86)\secondlifeviewer\slvoice.exe |
"UDP Query User{3DA72115-2D3C-45F7-BE0E-84030CA9EF65}D:\league of legends\lol.launcher.exe" = protocol=17 | dir=in | app=d:\league of legends\lol.launcher.exe |
"UDP Query User{3E3AC33D-91F5-4C4C-B62D-8B393FF63867}C:\program files (x86)\spacialaudio\sambc\sambc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\spacialaudio\sambc\sambc.exe |
"UDP Query User{404C9C45-C202-4A43-A515-F388771602DA}D:\f3_demo\f3.exe" = protocol=17 | dir=in | app=d:\f3_demo\f3.exe |
"UDP Query User{5E3C88E4-01F6-497D-8664-5D43E53E66C2}D:\firestorm-release\slvoice.exe" = protocol=17 | dir=in | app=d:\firestorm-release\slvoice.exe |
"UDP Query User{608514A8-5950-4DC8-A848-A8EFFEF9354F}C:\program files (x86)\orbitdownloader\orbitnet.exe" = protocol=17 | dir=in | app=c:\program files (x86)\orbitdownloader\orbitnet.exe |
"UDP Query User{64E04769-60F5-4171-841C-EFC8033F143C}C:\program files (x86)\steam\steamapps\common\dawn of war soulstorm\soulstorm.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dawn of war soulstorm\soulstorm.exe |
"UDP Query User{6714B91E-FBEA-435D-8DC7-4A82DF9FBB26}D:\starcraft ii\versions\base24944\sc2.exe" = protocol=17 | dir=in | app=d:\starcraft ii\versions\base24944\sc2.exe |
"UDP Query User{68D1D026-8ED5-4527-A5D7-35B4CB415A7B}C:\program files (x86)\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
"UDP Query User{75D7DAA8-AF7B-40F9-83A6-8943C84743A7}C:\program files (x86)\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |
"UDP Query User{7D7711CE-D96A-4F11-8D8F-56622F055378}C:\program files (x86)\trillian\trillian.exe" = protocol=17 | dir=in | app=c:\program files (x86)\trillian\trillian.exe |
"UDP Query User{7DE63E9A-87D0-4FD4-A7C7-75257F960766}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{86886DE1-3D37-4777-B475-430E1CF8D2B0}C:\program files (x86)\bitcoin\bitcoin.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitcoin\bitcoin.exe |
"UDP Query User{8EEA05FB-D89E-4D25-918D-5F60D36D8292}D:\the lord of the rings online - public test\lotroclient.exe" = protocol=17 | dir=in | app=d:\the lord of the rings online - public test\lotroclient.exe |
"UDP Query User{9320064F-16FF-4017-B1D6-F1F005979FBB}G:\rockstar games\grand theft auto iv\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=g:\rockstar games\grand theft auto iv\grand theft auto iv\gtaiv.exe |
"UDP Query User{958162B0-78AC-4E88-A6D2-46A377E722DC}D:\secondlifeviewer2\slvoice.exe" = protocol=17 | dir=in | app=d:\secondlifeviewer2\slvoice.exe |
"UDP Query User{99C90919-1601-4DC4-B742-B5781D7C770E}D:\nwn\nwmain.exe" = protocol=17 | dir=in | app=d:\nwn\nwmain.exe |
"UDP Query User{A8E8D76D-A9E3-4937-8EA9-590015F7EEA8}D:\the lord of the rings online\lotroclient.exe" = protocol=17 | dir=in | app=d:\the lord of the rings online\lotroclient.exe |
"UDP Query User{BA977286-FE04-404D-96D8-C8647585143B}D:\dawn of war - soulstorm\soulstorm.exe" = protocol=17 | dir=in | app=d:\dawn of war - soulstorm\soulstorm.exe |
"UDP Query User{BBD9FF63-8C96-473A-8F67-7F95C6502972}C:\windows\system32\java.exe" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{BE2F545F-6AE8-4A59-ADA0-6985C2536C9B}G:\cryptic studios\star trek online\live\gameclient.exe" = protocol=17 | dir=in | app=g:\cryptic studios\star trek online\live\gameclient.exe |
"UDP Query User{C30477EA-8B10-4409-9345-38613BE0DCC0}C:\users\rogueassassin\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\rogueassassin\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{C4862853-5B21-4E14-9519-85DEFE5E9F41}C:\tshock\terrariaserver.exe" = protocol=17 | dir=in | app=c:\tshock\terrariaserver.exe |
"UDP Query User{C5ED3390-40C3-4460-93DA-430BBC444A1E}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{D811F075-A05B-415A-9CF0-2288060684F8}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{D981562D-992D-4542-8E16-E300329AE2AD}G:\rockstar games\eflc\eflc.exe" = protocol=17 | dir=in | app=g:\rockstar games\eflc\eflc.exe |
"UDP Query User{DA95B6A8-0C14-4DB5-AC3C-2EAF1766226C}C:\program files (x86)\steam\steamapps\common\dear esther\dearesther.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dear esther\dearesther.exe |
"UDP Query User{DB73BC1D-9BB7-43A0-A8C8-61C45DC694DB}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"UDP Query User{E4D2FF43-6658-43C4-9884-20F309EAA769}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{FA9786A2-038A-4AF8-BA3E-ABCD1DC99AC6}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{FDC3F702-B6D3-4BFC-BD71-34A1556B8693}C:\program files (x86)\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirc\mirc.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{003B37AE-21F5-5BC5-F5EB-CD60A8928696}" = AMD Accelerated Video Transcoding
"{08347912-0AA5-C85E-BC02-416568E741B4}" = AMD Drag and Drop Transcoding
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp version 0.99.7
"{10CD364B-FFCC-48BE-B469-B9622A033075}" = Fences
"{1374CC63-B520-4f3f-98E8-E9020BF01CFF}" = Windows XP Mode
"{1AAF3A3B-7B32-4DDF-8ABB-438DAEB46EEC}" = Windows Live Family Safety
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{237D687E-9E50-4A30-B810-262764CC491B}" = Garmin Communicator Plugin x64
"{26A24AE4-039D-4CA4-87B4-2F86416026FF}" = Java™ 6 Update 26 (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F86417011FF}" = Java 7 Update 11 (64-bit)
"{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1" = Media Player Classic - Home Cinema v1.5.0.2827 x64
"{2D290715-B0FC-3898-9247-62F803A585DF}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Common Tools (30514)
"{3156336D-8E44-3671-A6FE-AE51D3D6564E}" = Microsoft Windows SDK for Windows 7 (7.1)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4FF9E8AA-D554-4CE7-89F9-B69DAA5A1E98}" = AVG 2013
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6397820D-9FC6-774C-1EF5-CBA09049E426}" = AMD Fuel
"{653B9326-BD45-53BE-681A-A49CAAEE8A3C}" = ccc-utility64
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7AB6F8D7-7804-4662-BE8C-1AFCCD602D9F}" = Microsoft Mouse and Keyboard Center
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{987FE247-4E69-4A2E-A961-D14F901FDBF6}" = Logitech Webcam Software
"{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}" = AMD Catalyst Install Manager
"{A1E85B9A-AFAD-4D38-AF01-6B020DD5213A}" = Logitech GamePanel Software 3.06.109
"{A4F467A8-FCD3-B119-7E8D-D5739F946F4C}" = AMD AVIVO64 Codecs
"{AAFE68DD-A2D5-BDBF-E1B2-CB01DEFD6EB0}" = AMD Media Foundation Decoders
"{B7D0C3BC-CB39-3CA1-9295-A23A93994893}" = Microsoft Windows SDK for Windows 7 Redistributable Components for Windows Debugging Tools (30514)
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D9C50188-12D5-4D3E-8F00-682346C2AA5F}" = Microsoft Xbox 360 Accessories 1.2
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DBFC6AAE-DCCB-4C23-B01C-3EDDDC03298B}" = Debugging Tools for Windows (x64)
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E74BF83C-2CA5-48EF-901F-959309E7D9EC}" = AVG 2013
"{E7F9E526-2324-437B-A609-E8C5309465CB}" = Microsoft Windows Performance Toolkit
"{EB418DDD-5365-4381-87F6-D8BBB21CC1CA}" = Garmin Communicator Plugin x64
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"{F0BCF5AB-B2A4-4529-BC40-2223C2C25AB0}" = M-Audio Producer Driver 6.0.2 (x64)
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"49CF605F02C7954F4E139D18828DE298CD59217C" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0)
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"AVG" = AVG 2013
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.55
"KLiteCodecPack64_is1" = K-Lite Codec Pack (64-bit) v4.7.0
"lvdrivers_12.10" = Logitech Webcam Software Driver Package
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"SDKSetup_7.1.7600.0.30514" = Microsoft Windows SDK for Windows 7 (7.1)
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{13464292-6666-B2DB-1B0C-A3FE14DAD1F9}" = CCC Help Dutch
"{15CC861C-C69E-3758-8961-CE304C2595B6}" = Google Talk Plugin
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2157961D-0507-44A8-BCF2-1EE2D439E8DF}" = Civilization III Complete Edition
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 39
"{26C36F95-8E4A-4171-98CE-0EA217E0399B}" = Adobe CreatePDF Desktop Printer
"{27F1C968-61B0-43DA-B400-AD0843681703}" = Fort Zombie
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{29C042AB-059B-414C-840E-94775E3F24A8}" = Personality Voices
"{2D6A5BD9-FE4B-49CD-8D96-2C4746302A82}" = D-Link DFE-530TX+
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{338CD56F-1CDC-CF32-33F6-DED2DF92284E}" = CCC Help French
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}" = Microsoft XNA Framework Redistributable 3.0
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{43430FA0-49F0-4B13-B4C5-611000008100}" = Super Street Fighter IV: Arcade Edition
"{43430FA0-4A2E-404A-B715-951000058101}" = SUPER STREET FIGHTER IV: ARCADE EDITION
"{43B24867-0D47-4995-80F9-5435F1B959FF}" = TEdit 3
"{456A5815-604D-4D72-94DF-346D2B978A59}_is1" = GOG.com Downloader version 3.5.7
"{45BF4F8E-7BE7-4384-94C6-60AC70C401C6}" = Male Voice Pack
"{46458556-5C46-79A9-A6FF-81DF1F8B2729}" = CCC Help Hungarian
"{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}" = NVIDIA PhysX
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{510D2239-6C2E-457B-9590-485EC552D94D}" = Garmin USB Drivers
"{519D68B8-A768-4CDC-E4C9-B115D49CED93}" = CCC Help Norwegian
"{51D383BC-D988-8C1E-FAA1-BC5260A32A87}" = CCC Help Polish
"{534A31BD-20F4-46b0-85CE-09778379663C}" = Mass Effect™ 3
"{5454083B-1308-4485-BF17-111000038701}" = Grand Theft Auto: Episodes from Liberty City
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{5454083B-1308-4485-BF17-1110000D8302}" = Grand Theft Auto IV
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{5A883D2B-D279-0D01-6E62-B810AFD8CC62}" = Catalyst Control Center InstallProxy
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}" = NCsoft Launcher
"{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}" = Grand Theft Auto: Episodes From Liberty City
"{647BB978-2876-487B-9B0E-FDB73F0EA4A2}" = Garmin Communicator Plugin
"{65135558-F1AE-4B9B-8C0B-180730ACA261}" = Garmin Express
"{66C948DD-A242-474B-B4F0-6C04CD885321}" = MorphVOX Pro
"{67A4760F-9804-CCF6-C319-27840ED77924}" = CCC Help Korean
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack
"{6BE5E4A9-D88B-532D-26E6-883C32BF098A}" = CCC Help Thai
"{6E0D26C1-4265-1D02-4D19-D0A8F6A463F8}" = AMD VISION Engine Control Center
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72E80496-C446-4389-B4F2-CC46DF704A7F}" = Terrafirma
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7DD62206-7B6C-E32E-BD11-B49B3B089D16}" = CCC Help Danish
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{876AB032-B2A4-41FF-AF87-DBC78454C1B0}" = Garmin Update Service
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93765DFA-8A67-41FB-9FC0-B12341CA65F3}" = Elevated Installer
"{93A3AB24-36E8-41BA-80C6-CCEC237836DC}" = Alice Madness Returns
"{95140000-007A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}" = Google Earth
"{9739158D-EDED-D628-9865-1460B5A7FAE3}" = CCC Help Portuguese
"{974C4B12-4D02-4879-85E0-61C95CC63E9E}" = Fallout 3
"{9809124C-0C4C-2367-7889-1E16D8EF1AAF}" = CCC Help Chinese Standard
"{989FB5FD-9B00-4B32-8663-849CB1370DD1}" = Google Drive
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C1BB613-F398-49B7-B346-5DEBA8ABBF38}" = FINAL FANTASY XIV - A Realm Reborn (Beta Version)
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A1B36B88-AF90-43A3-8906-6DBEE89B4FBD}" = Brother MFL-Pro Suite MFC-J835DW
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A6E1EE9D-01DD-82FD-BDBC-193BCEF9FD5C}" = CCC Help Greek
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB13F192-49FC-A065-F15C-746B10CC43C8}" = CCC Help Japanese
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.0)
"{AE548812-D611-608D-61C6-7E40F28573A2}" = CCC Help Russian
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B1BEC7BE-E362-4936-98ED-8B0CE05E501F}_is1" = Fort Zombie version Fort Zombie 1.0.7
"{B343B0E3-212A-40B9-8207-1BD299228F5D}" = Fallout 3 - The Garden of Eden Creation Kit
"{BC63AEF9-1367-9F7C-5926-52E56450EDCD}" = CCC Help Spanish
"{C1583439-B034-4881-819C-D52A0587662B}" = Neverwinter Nights
"{C1E2D27F-B363-588E-8859-9EF7F4EBF418}" = CCC Help Chinese Traditional
"{C233BCC3-29C4-49C0-B955-0A94509FC4FC}" = Garmin Express Tray
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE75C837-4BA9-4CF8-B912-C3ED5BD0EAAC}" = You Don't Know Jack®
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{D76AC809-CCC1-6198-4970-A63FA5CF7DCB}" = CCC Help Swedish
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{DA675EE2-4C04-9699-0EE2-7EF9FE7AB870}" = CCC Help German
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E06F7C95-4D68-63D9-2231-AA5F8E186FCB}" = CCC Help English
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E21A8F3C-1ACB-46B1-CE72-E9CF09549DED}" = Catalyst Control Center Localization All
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E2F52AC2-B925-C18F-E1AE-42FBD46ECAC7}" = CCC Help Czech
"{E35372BE-9326-4059-899A-933E70B3008F}" = Skyrim NPC Editor
"{e47a5c85-88a2-47d2-b380-fc2e763c2e6d}" = Garmin Express
"{E58C571A-D165-AF15-5CBD-B3B77CFD5B61}" = HydraVision
"{E649AC39-69C0-C6FE-0A54-4752DB5D1FD2}" = Catalyst Control Center Graphics Previews Common
"{E9463114-898C-7C2A-2C47-E9ABC63F5D43}" = CCC Help Finnish
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.152
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}" = The Witcher Enhanced Edition
"{F2E23139-3404-4E3C-9855-7724415D62A5}" = Dragon Age II
"{F5266D28-E0B2-4130-BFC5-EE155AD514DC}" = Apple Application Support
"{F7338FA3-DAB5-49B2-900D-0AFB5760C166}" = PC Probe II
"{F96D619D-99D6-4C9C-A393-0CD22DE1CA66}_is1" = Ezvid
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF10AC4D-3349-99DA-3E58-5197CEA1D833}" = CCC Help Italian
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFEC93FF-C162-C0C3-B5E7-01214B0E5F2D}" = CCC Help Turkish
"12bbe590-c890-11d9-9669-0800200c9a66_is1" = The Lord of the Rings Online™ v03.02.03.8013
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"Battleground Europe" = Battleground Europe
"Battlelog Web Plugins" = Battlelog Web Plugins
"Cool Edit Pro 2.0" = Cool Edit Pro 2.0
"DDS Converter 2.1" = DDS Converter 2.1
"Deus Ex New Vision" = Deus Ex New Vision
"DivX Setup.divx.com" = DivX Setup
"DRADIS-CIC_is1" = DRADIS-CIC
"e01f4d10-f2d0-11dd-ba2f-0800200c9a66_is1" = The Lord of the Rings Online™: Siege of Mirkwood™ v03.02.00.185
"ESN Sonar-0.70.4" = ESN Sonar
"Fallout 2" = Fallout 2
"Fences" = Fences
"FileZilla Client" = FileZilla Client 3.7.0.1
"Firestorm-Release" = Firestorm-Release (remove only)
"FLV Player" = FLV Player 2.0 (build 25)
"Fraps" = Fraps (remove only)
"FreeDNS Update" = FreeDNS Update 1.8.4
"FrostWire 5" = FrostWire 5.0.8
"Generic Mod Manager_is1" = Fallout Mod Manager 0.13.21
"GFWL_{43430FA0-49F0-4B13-B4C5-611000008100}" = Super Street Fighter IV: Arcade Edition
"Guild Wars" = Guild Wars
"ImgBurn" = ImgBurn
"InstallShield_{2157961D-0507-44A8-BCF2-1EE2D439E8DF}" = Civilization III Complete Edition
"InstallShield_{2D6A5BD9-FE4B-49CD-8D96-2C4746302A82}" = D-Link DFE-530TX+
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"Katawa Shoujo" = Katawa Shoujo
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"mIRC" = mIRC
"Mozilla Firefox 20.0.1 (x86 en-US)" = Mozilla Firefox 20.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Neverwinter Nights™ Kingmaker" = BioWare Premium Module: Neverwinter Nights™ Kingmaker
"NifSkope" = NifSkope (remove only)
"Notepad++" = Notepad++
"ObjectDock" = ObjectDock
"OpenAL" = OpenAL
"Orbit_is1" = Orbit Downloader
"Origin" = Origin
"PunkBusterSvc" = PunkBuster Services
"RealAlt_is1" = Real Alternative 2.0.2
"SAM3" = SAM Broadcaster (remove only)
"Scan to PDF" = Scan to PDF
"SecondLifeViewer" = SecondLifeViewer (remove only)
"SecondLifeViewer2" = SecondLifeViewer2 (remove only)
"StarCraft II" = StarCraft II
"Steam App 105600" = Terraria
"Steam App 107100" = Bastion
"Steam App 108800" = Crysis 2 Maximum Edition
"Steam App 12200" = Bully: Scholarship Edition
"Steam App 15620" = Warhammer® 40,000™: Dawn of War® II
"Steam App 201280" = Deus Ex: Human Revolution - The Missing Link
"Steam App 202170" = Sleeping Dogs™
"Steam App 202480" = Creation Kit
"Steam App 203140" = Hitman: Absolution
"Steam App 203160" = Tomb Raider
"Steam App 203970" = Kingdoms of Amalur: Reckoning Demo
"Steam App 204060" = Superbrothers: Sword & Sworcery EP
"Steam App 205100" = Dishonored
"Steam App 20570" = Warhammer® 40,000™: Dawn of War® II – Chaos Rising™
"Steam App 205930" = Hitman: Sniper Challenge
"Steam App 208140" = Endless Space
"Steam App 209830" = Lone Survivor
"Steam App 211" = Source SDK
"Steam App 214250" = I Am Alive
"Steam App 215280" = The Secret World
"Steam App 218" = Source SDK Base 2007
"Steam App 218230" = PlanetSide 2
"Steam App 220200" = Kerbal Space Program
"Steam App 22320" = The Elder Scrolls III: Morrowind
"Steam App 22380" = Fallout: New Vegas
"Steam App 228280" = Baldur's Gate: Enhanced Edition
"Steam App 228300" = Remember Me
"Steam App 233270" = Far Cry® 3 Blood Dragon
"Steam App 233740" = Organ Trail: Director's Cut
"Steam App 234650" = Shadowrun Returns
"Steam App 23490" = Tropico 3 - Steam Special Edition
"Steam App 235780" = MINERVA: Metastasis
"Steam App 238210" = System Shock 2
"Steam App 26800" = Braid
"Steam App 28050" = Deus Ex: Human Revolution
"Steam App 33460" = From Dust
"Steam App 35130" = Lara Croft and the Guardian of Light
"Steam App 3830" = Psychonauts
"Steam App 40800" = Super Meat Boy
"Steam App 42910" = Magicka
"Steam App 4570" = Warhammer 40,000: Dawn of War - Game of the Year Edition
"Steam App 48000" = LIMBO
"Steam App 55100" = Homefront
"Steam App 55150" = Warhammer 40,000 Space Marine
"Steam App 56400" = Warhammer® 40,000®: Dawn of War® II – Retribution™
"Steam App 57300" = Amnesia: The Dark Descent
"Steam App 57600" = Tropico 3: Absolute Power
"Steam App 58520" = Blood Bowl: Legendary Edition
"Steam App 620" = Portal 2
"Steam App 6900" = Hitman: Codename 47
"Steam App 70400" = Recettear: An Item Shop's Tale
"Steam App 72200" = Universe Sandbox
"Steam App 72850" = The Elder Scrolls V: Skyrim
"Steam App 7520" = Two Worlds II
"Steam App 8870" = BioShock Infinite
"Steam App 8930" = Sid Meier's Civilization V
"Steam App 91310" = Dead Island
"Steam App 9200" = RAGE
"Steam App 9450" = Warhammer 40,000: Dawn of War – Soulstorm
"TeamViewer 8" = TeamViewer 8
"Trillian" = Trillian
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.11
"Winamp" = Winamp
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite" = Windows Live Essentials
"winscp3_is1" = WinSCP 4.3.5
"World of Warcraft" = World of Warcraft
"Xfire" = Xfire (remove only)
"Zero Assumption Recovery_is1" = Zero Assumption Recovery Version 9

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)
"ActiveTouchMeetingClient" = Cisco WebEx Meetings
"Google Chrome" = Google Chrome
"MusicManager" = Music Manager
"SOE-Pirates of the Burning Sea (English)" = Pirates of the Burning Sea (English)
"UnityWebPlayer" = Unity Web Player
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 6/27/2013 1:00:02 AM | Computer Name = Vicky7 | Source = Application Hang | ID = 1002
Description = The program chrome.exe version 27.0.1453.116 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 12a8 Start
Time: 01ce721a27d41b72 Termination Time: 16 Application Path: C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\chrome.exe

Report
Id: 6b264749-dee6-11e2-9204-485b39b9fc47

Error - 6/28/2013 10:11:10 PM | Computer Name = Vicky7 | Source = Application Error | ID = 1000
Description = Faulting application name: GameOverlayUI.exe, version: 1.32.20.50,
time stamp: 0x4f46a9bf Faulting module name: unknown, version: 0.0.0.0, time stamp:
0x00000000 Exception code: 0xc0000005 Fault offset: 0x18a13b54 Faulting process id:
0x8a8 Faulting application start time: 0x01ce745c83955548 Faulting application path:
C:\Program Files (x86)\Steam\GameOverlayUI.exe Faulting module path: unknown Report
Id: 2a2d4375-e061-11e2-9204-485b39b9fc47

Error - 7/2/2013 11:35:37 PM | Computer Name = Vicky7 | Source = Application Hang | ID = 1002
Description = The program chrome.exe version 27.0.1453.116 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1370 Start
Time: 01ce76c560c09f46 Termination Time: 23 Application Path: C:\Users\RogueAssassin\AppData\Local\Google\Chrome\Application\chrome.exe

Report
Id: 9bdcd108-e391-11e2-9204-485b39b9fc47

Error - 7/13/2013 8:21:44 PM | Computer Name = Vicky7 | Source = Application Error | ID = 1000
Description = Faulting application name: atieclxx.exe, version: 6.14.11.1143, time
stamp: 0x5154efc9 Faulting module name: atieclxx.exe, version: 6.14.11.1143, time
stamp: 0x5154efc9 Exception code: 0xc0000005 Fault offset: 0x000000000002ea19 Faulting
process id: 0x4a8 Faulting application start time: 0x01ce802814afa132 Faulting application
path: C:\Windows\system32\atieclxx.exe Faulting module path: C:\Windows\system32\atieclxx.exe
Report
Id: 5ca606d4-ec1b-11e2-9229-485b39b9fc47

Error - 7/27/2013 2:09:34 AM | Computer Name = Vicky7 | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 9.0.8112.16496,
time stamp: 0x51a55c6d Faulting module name: jscript9.dll, version: 9.0.8112.16496,
time stamp: 0x51a55eca Exception code: 0xc0000005 Fault offset: 0x0002736a Faulting
process id: 0x1e90 Faulting application start time: 0x01ce8a8ec2f21c5a Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWOW64\jscript9.dll Report Id: 1b97fdd9-f683-11e2-9229-485b39b9fc47

Error - 8/2/2013 1:14:20 PM | Computer Name = Vicky7 | Source = Application Error | ID = 1000
Description = Faulting application name: orbitdm.exe, version: 4.1.1.0, time stamp:
0x4fe17fe1 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000005 Fault offset: 0x0002e3be Faulting process id:
0xae8 Faulting application start time: 0x01ce8f3f21741888 Faulting application path:
C:\Program Files (x86)\Orbitdownloader\orbitdm.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: f80c8a89-fb96-11e2-b132-485b39b9fc47

Error - 8/2/2013 7:48:05 PM | Computer Name = Vicky7 | Source = Application Error | ID = 1000
Description = Faulting application name: orbitdm.exe, version: 4.1.1.0, time stamp:
0x4fe17fe1 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000005 Fault offset: 0x0002e3be Faulting process id:
0xae8 Faulting application start time: 0x01ce8f3f21741888 Faulting application path:
C:\Program Files (x86)\Orbitdownloader\orbitdm.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: f9a6b835-fbcd-11e2-b132-485b39b9fc47

Error - 8/8/2013 8:29:46 PM | Computer Name = Vicky7 | Source = Microsoft-Windows-CAPI2 | ID = 512
Description = The Cryptographic Services service failed to initialize the VSS backup
"System Writer" object. Details: Could not query the status of the EventSystem service.

System
Error: A system shutdown is in progress. .

Error - 8/8/2013 11:36:19 PM | Computer Name = Vicky7 | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Application or service 'Catalyst Control Center: Host application'
could not be shut down.

Error - 8/9/2013 6:14:28 PM | Computer Name = Vicky7 | Source = Application Error | ID = 1000
Description = Faulting application name: orbitdm.exe, version: 4.1.1.0, time stamp:
0x4fe17fe1 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000005 Fault offset: 0x00036a98 Faulting process id:
0x1548 Faulting application start time: 0x01ce954dcec4bf73 Faulting application path:
C:\Program Files (x86)\Orbitdownloader\orbitdm.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: 0e0c4b51-0141-11e3-a46f-485b39b9fc47

[ System Events ]
Error - 8/8/2013 8:19:59 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7001
Description = The Network Location Awareness service depends on the Network Store
Interface Service service which failed to start because of the following error:
%%1068

Error - 8/8/2013 8:19:59 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
AFD AsIO AsUpIO CSC DfsC discache MpFilter NetBIOS NetBT nsiproxy rdbss spldr tdx vpcnfltr vpcvmm
Wanarpv6
WfpLwf

Error - 8/8/2013 8:30:58 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7000
Description = The AODDriver4.2 service failed to start due to the following error:
%%2

Error - 8/8/2013 8:31:07 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7023
Description = The Server service terminated with the following error: %%14

Error - 8/8/2013 10:04:50 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7000
Description = The AODDriver4.2 service failed to start due to the following error:
%%2

Error - 8/8/2013 10:07:47 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the ShellHWDetection service.

Error - 8/8/2013 11:20:25 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7000
Description = The AODDriver4.2 service failed to start due to the following error:
%%2

Error - 8/9/2013 12:42:50 AM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7000
Description = The AODDriver4.2 service failed to start due to the following error:
%%2

Error - 8/9/2013 12:47:05 AM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7031
Description = The Garmin Core Update Service service terminated unexpectedly. It
has done this 1 time(s). The following corrective action will be taken in 60000
milliseconds: Restart the service.

Error - 8/9/2013 6:12:02 PM | Computer Name = Vicky7 | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the lmhosts service.


< End of report >


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-08-2013
Ran by RogueAssassin at 2013-08-09 17:17:07 Run:1
Running from C:\Users\RogueAssassin\Desktop\Tools
Boot Mode: Normal
==============================================

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value not found.
"C:\Users\RogueAssassin\AppData\Roaming\skype.dat " => File/Directory not found.
"C:\Users\RogueAssassin\AppData\Roaming\skype.ini" => File/Directory not found.
C:\Windows\unins000.dat => Moved successfully.
C:\Windows\unins000.exe => Moved successfully.

==== End of Fixlog ====
  • 0

#7
Phel

Phel

    Trusted Helper

  • Malware Removal
  • 1,386 posts
Sorry for my delay.

Have you installed Orbitdownloader by yourself? I would recommend you to uninstall it, because this program contains adware (software, which displays ads and can hijack your homepage).

Have you fixed anything without supervision? I wouldn't recommend to do so. It may harm your computer so it can become unbootable and we won't be able to restore it. So, it's better to be patient and be sure that your computer will be OK after Malware removal procedure. :)

Step 1. MBAM scan.

Run Malwarebytes Anti-Malware.
  • Go to the Update tab.
  • Click on the Check for updates button. New small window should appear.
  • If an update is found, it will download and install the latest definitions.
  • Go back to the Scanner tab.
  • Select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

Step 2. ESET Online Scanner scan.

Please run a free online scan with the ESET Online Scanner

Disable your AVG antivirus, as it's written here. Don't forget to enable it after scan.

Vista / Win7 users: Right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator.

Note: This scan works with Internet Explorer or Mozilla FireFox.

If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.

  • Click the green ESET Online Scanner box
  • Tick the box next to YES, I accept the Terms of Use
    then click on: Start
  • You may see a panel towards the top of the screen telling you the website wants to install an addon... click and allow it to install. If your firewall asks whether you want to allow installation, say yes.
  • Make sure that the option Scan archives is checked.
  • Make sure that the option Remove found threats is Not checked
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click on Start
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close, make sure you copy the logfile first!
  • Then click on: Finish
  • Use notepad to open the logfile located at C:\Program Files (x86)\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

So, please, don't forget to post in your next message:

  • ESET Online Scanner's log
  • MBAM log

  • 0

#8
Dakeyras

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,684 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP