[code] OTS logfile created on: 29/05/2011 11:01:07 - Run 1 OTS by OldTimer - Version 3.1.43.0 Folder = C:\Users\MCGA\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy 3.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 41.00% Memory free 6.00 Gb Paging File | 3.00 Gb Available in Paging File | 59.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 225.99 Gb Total Space | 184.34 Gb Free Space | 81.57% Space Free | Partition Type: NTFS Drive D: | 226.00 Gb Total Space | 225.61 Gb Free Space | 99.83% Space Free | Partition Type: NTFS Drive E: | 49.28 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive J: | 14.94 Gb Total Space | 14.89 Gb Free Space | 99.72% Space Free | Partition Type: FAT32 Computer Name: MCGA-PC Current User Name: MCGA Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days [Processes - Safe List] ots.exe -> C:\Users\MCGA\Downloads\OTS.exe -> [2011/05/29 10:48:24 | 000,645,632 | ---- | M] (OldTimer Tools) sqlserverspatialwow.exe -> c:\Windows\SqlServerSpatialwow.exe -> [2011/05/29 08:45:24 | 000,524,288 | -HS- | M] () lsass.exe -> C:\Users\MCGA\AppData\Roaming\SysWin\lsass.exe -> [2011/05/27 22:09:57 | 000,200,704 | ---- | M] () kbdcz232.exe -> C:\Windows\SysWOW64\KBDCZ232.exe -> [2011/05/26 08:29:28 | 001,412,096 | ---- | M] () icsigd32.exe -> C:\ProgramData\icsigd32.exe -> [2011/05/26 08:29:28 | 001,412,096 | ---- | M] () avastui.exe -> C:\Program Files\AVAST Software\Avast\AvastUI.exe -> [2011/05/10 13:10:58 | 003,459,712 | ---- | M] (AVAST Software) avastsvc.exe -> C:\Program Files\AVAST Software\Avast\AvastSvc.exe -> [2011/05/10 13:10:57 | 000,042,184 | ---- | M] (AVAST Software) firefox.exe -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe -> [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) hotkeyutility.exe -> C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe -> [2010/08/04 13:40:12 | 000,611,872 | ---- | M] () wna1100.exe -> C:\Program Files (x86)\NETGEAR\WNA1100\WNA1100.exe -> [2010/06/14 14:56:02 | 004,573,664 | ---- | M] () sftvsa.exe -> C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -> [2010/04/24 01:10:34 | 000,209,768 | ---- | M] (Microsoft Corporation) sftlist.exe -> C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -> [2010/04/24 01:10:28 | 000,483,688 | ---- | M] (Microsoft Corporation) wifisvc.exe -> C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvc.exe -> [2010/03/22 20:07:22 | 000,268,768 | ---- | M] () arcademovieservice.exe -> C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe -> [2010/02/05 12:33:46 | 000,124,136 | ---- | M] (CyberLink Corp.) mwldaemon.exe -> C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe -> [2010/02/01 19:05:02 | 000,349,552 | ---- | M] (Egis Technology Inc.) updaterservice.exe -> C:\Program Files\Acer\Acer Updater\UpdaterService.exe -> [2010/01/29 00:27:36 | 000,243,232 | ---- | M] (Acer Group) pmmupdate.exe -> C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe -> [2009/12/25 02:45:16 | 000,401,192 | ---- | M] (Egis Technology Inc.) egisupdate.exe -> C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe -> [2009/12/25 02:44:48 | 000,201,512 | ---- | M] (Egis Technology Inc.) greghsrw.exe -> C:\Program Files (x86)\Acer\Registration\GregHSRW.exe -> [2009/08/28 10:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) iaanotif.exe -> C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe -> [2009/06/05 03:03:32 | 000,186,904 | ---- | M] (Intel Corporation) iaantmon.exe -> C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -> [2009/06/05 03:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Modules - Safe List] ots.exe -> C:\Users\MCGA\Downloads\OTS.exe -> [2011/05/29 10:48:24 | 000,645,632 | ---- | M] (OldTimer Tools) snxhk.dll -> C:\Program Files\AVAST Software\Avast\snxhk.dll -> [2011/05/10 13:10:55 | 000,199,792 | ---- | M] (AVAST Software) sahook.dll -> c:\Program Files (x86)\McAfee\SiteAdvisor\sahook.dll -> [2011/04/08 16:56:28 | 000,018,176 | ---- | M] (McAfee, Inc.) comctl32.dll -> C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll -> [2010/08/21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) normaliz.dll -> C:\Windows\SysWOW64\normaliz.dll -> [2009/07/14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) [Win32 Services - Safe List] 64bit-(avast! Antivirus) [Auto | Running] -> C:\Program Files\AVAST Software\Avast\AvastSvc.exe -> [2011/05/10 13:10:57 | 000,042,184 | ---- | M] (AVAST Software) 64bit-(mfefire) [Auto | Running] -> C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -> [2011/04/14 14:01:38 | 000,245,352 | ---- | M] (McAfee, Inc.) 64bit-(McShield) [Unknown | Running] -> C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -> [2011/04/14 14:01:38 | 000,200,056 | ---- | M] () 64bit-(mfevtp) [Unknown | Running] -> C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe -> [2011/04/14 14:01:38 | 000,149,032 | ---- | M] (McAfee, Inc.) 64bit-(MySQL) [Auto | Running] -> C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe -> [2011/04/11 14:37:20 | 009,632,256 | ---- | M] () 64bit-(McODS) [On_Demand | Running] -> C:\Program Files\mcafee\VirusScan\mcods.exe -> [2010/10/07 20:34:28 | 000,509,416 | ---- | M] (McAfee, Inc.) 64bit-(wlcrasvc) [Disabled | Stopped] -> C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -> [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) 64bit-(MSK80Service) [Auto | Running] -> C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(McProxy) [Auto | Running] -> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(McOobeSv) [Disabled | Stopped] -> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(McNASvc) [Auto | Running] -> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(McNaiAnn) [Auto | Running] -> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(mcmscsvc) [Auto | Running] -> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(McMPFSvc) [Auto | Running] -> C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(McAfee SiteAdvisor Service) [Auto | Running] -> C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) 64bit-(Updater Service) [Auto | Running] -> C:\Program Files\Acer\Acer Updater\UpdaterService.exe -> [2010/01/29 00:27:36 | 000,243,232 | ---- | M] (Acer Group) 64bit-(SandraAgentSrv) [On_Demand | Stopped] -> C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP2a\RpcAgentSrv.exe -> [2009/08/10 01:07:58 | 000,093,848 | ---- | M] (SiSoftware) 64bit-(WinDefend) [On_Demand | Stopped] -> C:\Program Files\Windows Defender\MpSvc.dll -> [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) 64bit-(WDBtnMgrSvc.exe) [Auto | Running] -> C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe -> [2009/06/26 15:56:50 | 000,119,296 | ---- | M] (WDC) (ose32) Office Source Engine [Auto | Running] -> C:\Windows\SysWOW64\KBDCZ232.exe -> [2011/05/26 08:29:28 | 001,412,096 | ---- | M] () (Partner Service) Partner Service [On_Demand | Stopped] -> C:\ProgramData\Partner\Partner.exe -> [2010/05/12 03:34:13 | 000,332,272 | ---- | M] (Google Inc.) (sftvsa) Application Virtualization Service Agent [On_Demand | Running] -> C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -> [2010/04/24 01:10:34 | 000,209,768 | ---- | M] (Microsoft Corporation) (sftlist) Application Virtualization Client [Auto | Running] -> C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -> [2010/04/24 01:10:28 | 000,483,688 | ---- | M] (Microsoft Corporation) (WSWNA1100) WSWNA1100 [Auto | Running] -> C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvc.exe -> [2010/03/22 20:07:22 | 000,268,768 | ---- | M] () (jswpsapi) JumpStart Wi-Fi Protected Setup [On_Demand | Stopped] -> C:\Program Files (x86)\NETGEAR\WNA1100\jswpsapi.exe -> [2010/03/22 20:05:40 | 000,960,992 | ---- | M] (Atheros Communications, Inc.) (clr_optimization_v4.0.30319_32) Microsoft .NET Framework NGEN v4.0.30319_X86 [Auto | Stopped] -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -> [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) (MWLService) MyWinLocker Service [On_Demand | Stopped] -> C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe -> [2010/02/01 19:04:40 | 000,305,520 | ---- | M] (Egis Technology Inc.) (Nero BackItUp Scheduler 4.0) Nero BackItUp Scheduler 4.0 [On_Demand | Stopped] -> C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -> [2010/01/15 22:08:38 | 000,935,208 | ---- | M] (Nero AG) (Greg_Service) GRegService [Auto | Running] -> C:\Program Files (x86)\Acer\Registration\GregHSRW.exe -> [2009/08/28 10:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) (clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Disabled | Stopped] -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) (IAANTMON) Intel(R) Matrix Storage Event Monitor [Auto | Running] -> C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -> [2009/06/05 03:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Driver Services - Safe List] 64bit-(aswMonFlt) aswMonFlt [File_System | Auto | Running] -> C:\Windows\SysNative\drivers\aswMonFlt.sys -> [2011/05/10 12:59:48 | 000,064,344 | ---- | M] (AVAST Software) 64bit-(mfehidk) McAfee Inc. mfehidk [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\mfehidk.sys -> [2011/04/14 14:01:38 | 000,530,304 | ---- | M] (McAfee, Inc.) 64bit-(mfefirek) McAfee Inc. mfefirek [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mfefirek.sys -> [2011/04/14 14:01:38 | 000,441,840 | ---- | M] (McAfee, Inc.) 64bit-(mfewfpk) McAfee Inc. mfewfpk [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\mfewfpk.sys -> [2011/04/14 14:01:38 | 000,283,744 | ---- | M] (McAfee, Inc.) 64bit-(mfeavfk) McAfee Inc. mfeavfk [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mfeavfk.sys -> [2011/04/14 14:01:38 | 000,190,520 | ---- | M] (McAfee, Inc.) 64bit-(mfeapfk) McAfee Inc. mfeapfk [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mfeapfk.sys -> [2011/04/14 14:01:38 | 000,121,376 | ---- | M] (McAfee, Inc.) 64bit-(mferkdet) McAfee Inc. mferkdet [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mferkdet.sys -> [2011/04/14 14:01:38 | 000,094,992 | ---- | M] (McAfee, Inc.) 64bit-(mfenlfk) McAfee NDIS Light Filter [Kernel | System | Running] -> C:\Windows\SysNative\drivers\mfenlfk.sys -> [2011/04/14 14:01:38 | 000,075,160 | ---- | M] (McAfee, Inc.) 64bit-(cfwids) McAfee Inc. cfwids [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\cfwids.sys -> [2011/04/14 14:01:38 | 000,063,056 | ---- | M] (McAfee, Inc.) 64bit-(amdsata) amdsata [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdsata.sys -> [2011/03/11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) 64bit-(amdxata) amdxata [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\amdxata.sys -> [2011/03/11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) 64bit-(fssfltr) fssfltr [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\fssfltr.sys -> [2010/09/23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) 64bit-(Sftvol) Sftvol [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\Sftvollh.sys -> [2010/04/24 01:10:32 | 000,022,376 | ---- | M] (Microsoft Corporation) 64bit-(Sftplay) Sftplay [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\Sftplaylh.sys -> [2010/04/24 01:10:28 | 000,269,672 | ---- | M] (Microsoft Corporation) 64bit-(Sftredir) Sftredir [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\Sftredirlh.sys -> [2010/04/24 01:10:28 | 000,025,960 | ---- | M] (Microsoft Corporation) 64bit-(Sftfs) Sftfs [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\Sftfslh.sys -> [2010/04/24 01:10:20 | 000,721,768 | ---- | M] (Microsoft Corporation) 64bit-(athur) Atheros AR9271 Wireless Network Adapter Service [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\athurx.sys -> [2010/03/09 16:33:10 | 001,849,856 | ---- | M] (Atheros Communications, Inc.) 64bit-(LVUVC64) QuickCam for Notebooks Deluxe(UVC) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\lvuvc64.sys -> [2009/10/07 08:49:28 | 006,379,288 | ---- | M] (Logitech Inc.) 64bit-(SANDRA) SANDRA [Kernel | On_Demand | Stopped] -> C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP2a\WNt500x64\sandra.sys -> [2009/08/07 23:46:56 | 000,023,112 | ---- | M] (SiSoftware) 64bit-(igfx) igfx [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\igdkmd64.sys -> [2009/07/21 08:32:50 | 007,345,344 | ---- | M] (Intel Corporation) 64bit-(amdsbs) amdsbs [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdsbs.sys -> [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) 64bit-(LSI_SAS2) LSI_SAS2 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\lsi_sas2.sys -> [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) 64bit-(HpSAMD) HpSAMD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\HpSAMD.sys -> [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) 64bit-(stexstor) stexstor [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\stexstor.sys -> [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) 64bit-(Ntfs) Ntfs [File_System | On_Demand | Running] -> C:\Windows\SysNative\wbem\ntfs.mof -> [2009/06/10 21:38:56 | 000,000,308 | ---- | M] () 64bit-(e1yexpress) Intel(R) Gigabit Network Connections Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\e1y60x64.sys -> [2009/06/10 21:35:02 | 000,281,088 | ---- | M] (Intel Corporation) 64bit-(ebdrv) Broadcom NetXtreme II 10 GigE VBD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\evbda.sys -> [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) 64bit-(b06bdrv) Broadcom NetXtreme II VBD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\bxvbda.sys -> [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) 64bit-(b57nd60a) Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\b57nd60a.sys -> [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) 64bit-(hcw85cir) Hauppauge Consumer Infrared Receiver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\hcw85cir.sys -> [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) 64bit-(iaStor) Intel AHCI Controller [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\iaStor.sys -> [2009/06/05 02:54:36 | 000,408,600 | ---- | M] (Intel Corporation) 64bit-(mwlPSDVDisk) mwlPSDVDisk [Kernel | System | Running] -> C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -> [2009/06/03 03:15:30 | 000,060,464 | ---- | M] (Egis Technology Inc.) 64bit-(mwlPSDFilter) mwlPSDFilter [File_System | System | Running] -> C:\Windows\SysNative\drivers\mwlPSDFilter.sys -> [2009/06/03 03:15:30 | 000,022,576 | ---- | M] (Egis Technology Inc.) 64bit-(mwlPSDNServ) mwlPSDNServ [Kernel | System | Running] -> C:\Windows\SysNative\drivers\mwlPSDNserv.sys -> [2009/06/03 03:15:30 | 000,020,016 | ---- | M] (Egis Technology Inc.) 64bit-(IntcHdmiAddService) Intel(R) High Definition Audio HDMI [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\IntcHdmi.sys -> [2009/05/25 21:13:10 | 000,138,752 | ---- | M] (Intel(R) Corporation) 64bit-(GEARAspiWDM) GEAR ASPI Filter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\GEARAspiWDM.sys -> [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) 64bit-(JSWPSLWF) JumpStart Wireless Filter Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\jswpslwfx.sys -> [2008/05/15 02:28:00 | 000,026,624 | ---- | M] (Atheros Communications, Inc.) 64bit-(SCMNdisP) General NDIS Protocol Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\SCMNdisP.sys -> [2007/01/19 18:24:24 | 000,025,312 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Registry - Safe List] < 64bit-Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_x3910&r=17360511j507pe488v1l5w5761v683 -> HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_x3910&r=17360511j507pe488v1l5w5761v683 -> < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_x3910&r=17360511j507pe488v1l5w5761v683 -> HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\SysWOW64\blank.htm -> HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_x3910&r=17360511j507pe488v1l5w5761v683 -> < Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> HKEY_CURRENT_USER\: Main\\"Default_Page_URL" -> http://homepage.acer.com/rdr.aspx?b=ACAW&l=0809&m=aspire_x3910&r=17360511j507pe488v1l5w5761v683 -> HKEY_CURRENT_USER\: Main\\"Default_Search_URL" -> http://www.google.com/ie -> HKEY_CURRENT_USER\: Main\\"Search Page" -> http://www.google.com -> HKEY_CURRENT_USER\: Main\\"Start Page" -> http://www.google.ie/ -> HKEY_CURRENT_USER\: Main\\"XMLHTTP_UUID_Default" -> 9D C8 D4 0E 2A 15 16 4D AD 41 0B 5B 94 57 14 39 [binary data] -> HKEY_CURRENT_USER\: Search\\"Default_Search_URL" -> http://www.google.com/ie -> HKEY_CURRENT_USER\: Search\\"SearchAssistant" -> http://www.google.com/ie -> HKEY_CURRENT_USER\: SearchURL\\"" -> http://www.google.com/search?q=%s -> 64bit-HKEY_CURRENT_USER\: URLSearchHooks\\"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2011/04/08 15:37:58 | 000,309,096 | ---- | M] (McAfee, Inc.) HKEY_CURRENT_USER\: URLSearchHooks\\"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2011/04/08 15:37:58 | 000,251,928 | ---- | M] (McAfee, Inc.) HKEY_CURRENT_USER\: "ProxyEnable" -> 0 -> HKEY_CURRENT_USER\: "ProxyOverride" -> *.local -> < FireFox Settings [Prefs.js] > -> C:\Users\MCGA\AppData\Roaming\Mozilla\FireFox\Profiles\7mncn221.default\prefs.js -> browser.startup.homepage -> "www.google.ie" -> < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Firefox\Extensions -> -> HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45} -> C:\Program Files (x86)\McAfee\SiteAdvisor [C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR] -> [2011/05/25 13:04:34 | 000,000,000 | ---D | M] HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com -> C:\Program Files\AVAST Software\Avast\WebRep\FF [C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF] -> [2011/05/19 22:43:05 | 000,000,000 | ---D | M] HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions -> -> HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components -> C:\Program Files (x86)\Mozilla Firefox\components [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS] -> [2011/05/21 07:27:46 | 000,000,000 | ---D | M] HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS -> < FireFox Extensions [User Folders] > -> -> C:\Users\MCGA\AppData\Roaming\Mozilla\Extensions -> [2011/05/10 20:20:44 | 000,000,000 | ---D | M] -> C:\Users\MCGA\AppData\Roaming\Mozilla\Firefox\Profiles\7mncn221.default\extensions -> [2011/05/27 22:09:57 | 000,000,000 | ---D | M] XUL Cache -> C:\Users\MCGA\AppData\Roaming\Mozilla\Firefox\Profiles\7mncn221.default\extensions\{0bb23e34-0308-4b1f-bc65-f16cb8b1656c} -> [2011/05/27 22:09:57 | 000,000,000 | ---D | M] -> C:\Users\MCGA\AppData\Roaming\Mozilla\Firefox\Profiles\7mncn221.default\extensions\en-GB@dictionaries.addons.mozilla.org -> [2011/05/11 20:03:48 | 000,000,000 | ---D | M] < FireFox Extensions [Program Folders] > -> -> C:\Program Files (x86)\Mozilla Firefox\extensions -> [2011/05/23 15:19:41 | 000,000,000 | ---D | M] Java Console -> C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} -> [2011/05/19 22:31:37 | 000,000,000 | ---D | M] -> C:\Program Files (x86)\Mozilla Firefox\extensions\GameTapPlayer@gametap.com -> [2011/05/23 15:19:41 | 000,000,000 | ---D | M] No name found -> -> File not found McAfee SiteAdvisor -> C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR -> [2011/05/25 13:04:34 | 000,000,000 | ---D | M] GameTap -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\EXTENSIONS\GAMETAPPLAYER@GAMETAP.COM -> [2011/05/23 15:19:41 | 000,000,000 | ---D | M] avast! WebRep -> C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF -> [2011/05/19 22:43:05 | 000,000,000 | ---D | M] British English Dictionary -> C:\USERS\MCGA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\7MNCN221.DEFAULT\EXTENSIONS\EN-GB@DICTIONARIES.ADDONS.MOZILLA.ORG -> [2011/05/11 20:03:48 | 000,000,000 | ---D | M] < HOSTS File > ([2009/06/10 22:00:26 | 000,000,824 | ---- | M] - 21 lines) -> C:\Windows\SysNative\Drivers\etc\hosts -> Reset Hosts < 64bit-BHO's [HKEY_LOCAL_MACHINE] > -> 64bit-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} [HKLM] -> c:\Program Files\mcafee\msk\mskapbho64.dll [McAfee Phishing Filter] -> [2011/03/11 15:33:50 | 000,283,352 | ---- | M] () {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [avast! WebRep] -> [2011/05/10 13:10:45 | 000,977,472 | ---- | M] (AVAST Software) {7DB2D5A0-7241-4E79-B68D-6309F01C5231} [HKLM] -> C:\Program Files\Common Files\mcafee\systemcore\ScriptSn.20110512171241.dll [scriptproxy] -> [2011/04/14 14:01:38 | 000,082,576 | ---- | M] (McAfee, Inc.) {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} [HKLM] -> C:\ProgramData\Partner\Partner64.dll [Partner BHO Class] -> [2010/05/12 03:34:13 | 000,750,064 | ---- | M] (Google Inc.) {AA58ED58-01DD-4d91-8333-CF10577473F7} [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [Google Toolbar Helper] -> [2011/05/19 22:13:21 | 000,409,776 | ---- | M] (Google Inc.) {B164E929-A1B6-4A06-B104-2CD0E90A88FF} [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [McAfee SiteAdvisor BHO] -> [2011/04/08 15:37:58 | 000,309,096 | ---- | M] (McAfee, Inc.) < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {0ED4C89D-152A-4D16-AD41-0B5B94571439} [HKLM] -> C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-032.dll [Reg Error: Value error.] -> [2011/05/27 22:09:56 | 000,419,328 | ---- | M] (Borland Software Corporation) {27B4851A-3207-45A2-B947-BE8AFE6163AB} [HKLM] -> c:\Program Files\mcafee\msk\mskapbho.dll [McAfee Phishing Filter] -> [2011/03/11 15:33:50 | 000,238,056 | ---- | M] () {7DB2D5A0-7241-4E79-B68D-6309F01C5231} [HKLM] -> C:\Program Files (x86)\Common Files\mcafee\SystemCore\ScriptSn.20110512171243.dll [scriptproxy] -> [2011/04/14 14:01:38 | 000,075,848 | ---- | M] (McAfee, Inc.) {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} [HKLM] -> C:\ProgramData\Partner\Partner.dll [Partner BHO Class] -> [2010/05/12 03:34:13 | 000,433,648 | ---- | M] (Google Inc.) {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/05/10 13:10:54 | 000,819,840 | ---- | M] (AVAST Software) {B164E929-A1B6-4A06-B104-2CD0E90A88FF} [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [McAfee SiteAdvisor BHO] -> [2011/04/08 15:37:58 | 000,251,928 | ---- | M] (McAfee, Inc.) < 64bit-Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> "{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2011/04/08 15:37:58 | 000,309,096 | ---- | M] (McAfee, Inc.) "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [Google Toolbar] -> [2011/05/19 22:13:21 | 000,409,776 | ---- | M] (Google Inc.) "{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [avast! WebRep] -> [2011/05/10 13:10:45 | 000,977,472 | ---- | M] (AVAST Software) "Locked" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found < Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> "{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2011/04/08 15:37:58 | 000,251,928 | ---- | M] (McAfee, Inc.) "{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}" [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/05/10 13:10:54 | 000,819,840 | ---- | M] (AVAST Software) "Locked" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found < Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> 64bit-WebBrowser\\"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [Google Toolbar] -> [2011/05/19 22:13:21 | 000,409,776 | ---- | M] (Google Inc.) < 64bit-Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "HotKeysCmds" -> C:\Windows\SysNative\hkcmd.exe [C:\Windows\system32\hkcmd.exe] -> [2009/07/24 07:57:04 | 000,387,608 | ---- | M] (Intel Corporation) "IAAnotif" -> C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe] -> [2009/06/05 03:03:32 | 000,186,904 | ---- | M] (Intel Corporation) "IgfxTray" -> C:\Windows\SysNative\igfxtray.exe [C:\Windows\system32\igfxtray.exe] -> [2009/07/24 07:57:16 | 000,165,912 | ---- | M] (Intel Corporation) "mwlDaemon" -> C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe] -> [2010/02/01 19:05:02 | 000,349,552 | ---- | M] (Egis Technology Inc.) "Persistence" -> C:\Windows\SysNative\igfxpers.exe [C:\Windows\system32\igfxpers.exe] -> [2009/07/24 07:57:12 | 000,365,592 | ---- | M] (Intel Corporation) "RtHDVCpl" -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe] -> [2009/07/20 12:23:26 | 007,981,088 | ---- | M] (Realtek Semiconductor) < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "ArcadeMovieService" -> C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe ["C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe"] -> [2010/02/05 12:33:46 | 000,124,136 | ---- | M] (CyberLink Corp.) "avast" -> C:\Program Files\AVAST Software\Avast\avastUI.exe ["C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui] -> [2011/05/10 13:10:58 | 003,459,712 | ---- | M] (AVAST Software) "EgisTecPMMUpdate" -> C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe ["C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"] -> [2009/12/25 02:45:16 | 000,401,192 | ---- | M] (Egis Technology Inc.) "EgisUpdate" -> C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe ["C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d] -> [2009/12/25 02:44:48 | 000,201,512 | ---- | M] (Egis Technology Inc.) "Hotkey Utility" -> C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe] -> [2010/08/04 13:40:12 | 000,611,872 | ---- | M] () "jswtrayutil" -> ["C:\Program Files (x86)\NETGEAR\WNA1100\jswtrayutil.exe"] -> File not found "mcui_exe" -> C:\Program Files\McAfee.com\Agent\mcagent.exe ["C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey] -> [2011/04/05 11:50:44 | 001,486,392 | ---- | M] (McAfee, Inc.) "MDS_Menu" -> C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe ["C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"] -> [2009/05/19 22:16:16 | 000,222,504 | ---- | M] (CyberLink Corp.) "NortonOnlineBackupReminder" -> C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe ["C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED] -> [2009/07/25 00:31:08 | 000,588,648 | ---- | M] (Symantec Corporation) "RTHDBPL" -> C:\Users\MCGA\AppData\Roaming\SysWin\lsass.exe [C:\Users\MCGA\AppData\Roaming\SysWin\lsass.exe] -> [2011/05/27 22:09:57 | 000,200,704 | ---- | M] () "sqlserverspatialwow.exe" -> c:\Windows\SqlServerSpatialwow.exe [c:\windows\sqlserverspatialwow.exe] -> [2011/05/29 08:45:24 | 000,524,288 | -HS- | M] () "SuiteTray" -> C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe ["C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"] -> [2010/02/01 20:08:34 | 000,337,264 | ---- | M] (Egis Technology Inc.) "WD Drive Manager" -> C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe [C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe] -> [2009/06/26 15:56:12 | 000,480,768 | ---- | M] (WDC) < Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "dsdmowow.exe" -> [C:\Windows\dsdmowow.exe] -> File not found < CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoActiveDesktop" -> [1] -> File not found \\"NoActiveDesktopChanges" -> [1] -> File not found < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System \\"ConsentPromptBehaviorAdmin" -> [5] -> File not found \\"ConsentPromptBehaviorUser" -> [3] -> File not found HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats < 64bit-Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> Google Sidewiki... -> C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll [res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html] -> [2011/05/19 22:14:02 | 001,968,304 | ---- | M] (Google Inc.) < Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> Add to Google Photos Screensa&ver -> C:\Windows\SysWow64\GPhotos.scr [res://C:\Windows\system32\GPhotos.scr/200] -> [2011/04/13 23:40:10 | 004,284,416 | ---- | M] (Google Inc.) Google Sidewiki... -> C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll [res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html] -> [2011/05/19 22:14:02 | 001,968,304 | ---- | M] (Google Inc.) < 64bit-Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> < 64bit-Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < 64bit-Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < 64bit-Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < 64bit-Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab [Java Plug-in 1.6.0_25] -> {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab [Java Plug-in 1.6.0_25] -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab [Java Plug-in 1.6.0_25] -> < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} [HKLM] -> Reg Error: Key error. [GameTap Player] -> {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab [Java Plug-in 1.6.0_24] -> {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab [Java Plug-in 1.6.0_24] -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab [Java Plug-in 1.6.0_24] -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> DhcpNameServer -> 192.168.1.254 -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {A38FAAF2-65AD-4F06-A943-3E7B3816B62E}\\DhcpNameServer -> 192.168.1.254 (Intel(R) 82567V-2 Gigabit Network Connection) -> {BF8B1D21-8D27-4E84-BB13-73615F40898D}\\DhcpNameServer -> 192.168.1.254 (NETGEAR WNA1100 Wireless-N 150 USB Adapter) -> < AppInit_DLLs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs -> *AppInit_DLLs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls -> C:\ProgramData\api-ms-win-core-misc-l1-1-032.dll -> C:\ProgramData\api-ms-win-core-misc-l1-1-032.dll -> [2011/05/27 22:09:59 | 000,257,024 | ---- | M] (Borland Software Corporation) *MultiFile Done* -> -> < 64bit-Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 64bit-*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> explorer.exe -> C:\Windows\explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> 64bit-*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> SystemPropertiesPerformance.exe -> C:\Windows\SysNative\SystemPropertiesPerformance.exe -> [2009/07/14 02:39:47 | 000,082,432 | ---- | M] (Microsoft Corporation) /pagefile -> -> File not found *MultiFile Done* -> -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> explorer.exe -> C:\Windows\SysWow64\explorer.exe -> [2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> *VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> /pagefile -> -> File not found *MultiFile Done* -> -> < 64bit-Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> igfxcui -> C:\Windows\SysNative\igfxdev.dll -> [2009/07/21 07:59:54 | 000,258,560 | ---- | M] (Intel Corporation) < 64bit-SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found < SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found < Vista Active Firewall Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules -> {040B6D1B-0020-4CE2-B99A-282F1E590687} -> rport=138 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28531 | app=system | {1585DF63-758B-4FB0-AB44-48092AA24E24} -> rport=2177 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31265 | app=%systemroot%\system32\svchost.exe | svc=qwave | {17D5A055-A54A-48AE-AC13-FE778BE1987E} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system | {1CDA7A99-A5B5-4C8D-A48F-B23777089187} -> lport=1900 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31269 | app=%systemroot%\system32\svchost.exe | svc=ssdpsrv | {25D1ED45-E649-4576-B977-7B00BCDBC977} -> lport=rpc | profile=domain | protocol=6 | dir=in | action=allow | name=sisoftware deployment agent service (tcp-in) | app=c:\program files\sisoftware\sisoftware sandra lite 2011.sp2a\rpcagentsrv.exe | {26A25DF6-5E6F-4754-82E3-435E13A5C9DB} -> lport=2177 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31253 | app=%systemroot%\system32\svchost.exe | svc=qwave | {2EC808AA-B606-4165-9BEC-2F768D1E0D09} -> lport=rpc | profile=domain | protocol=6 | dir=in | action=allow | name=sisoftware sandra agent service (tcp-in) | app=c:\program files\sisoftware\sisoftware sandra lite 2011.sp2a\wnt500x64\rpcsandrasrv.exe | {33A97722-82AE-4D88-977F-8053C565F7DC} -> lport=808 | protocol=6 | dir=in | action=allow | name=@c:\windows\microsoft.net\framework64\v4.0.30319\\servicemodelevents.dll,-2000 | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe | svc=nettcpactivator | {3719173D-9923-416E-AA4D-60D8EB9D0D94} -> lport=137 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28519 | app=system | {46EB4E60-FC10-42DF-B19A-6FB45EF8B7F5} -> lport=445 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28511 | app=system | {4EF3DC91-6208-49E4-97F3-8D4A83E4EE61} -> lport=5355 | profile=public | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28548 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {60FE817F-01EF-49AD-9A3C-CE7AC53B5EF9} -> lport=rpc | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28535 | app=%systemroot%\system32\spoolsv.exe | svc=spooler | {70A4C5A9-E241-4B33-93F1-F1BAB6D1B78E} -> rport=137 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28523 | app=system | {7408A90C-304B-45A0-93EF-B8283F809030} -> rport=139 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-28507 | app=system | {75B9CE19-3A0D-4186-8F72-DA03EF8797AC} -> rport=5355 | profile=public | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28550 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {85DB67F5-905B-4414-9E32-DDE90517211D} -> lport=2869 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31277 | app=system | {886D15E4-B45E-41F4-9657-33E4F0AB9190} -> lport=10243 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31285 | app=system | {9A791A79-1AFC-4742-B0A2-C429B5A83B75} -> lport=139 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28503 | app=system | {9E6B9A50-E37A-4442-9D34-50FB3CE30F92} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live communications platform (upnp) | {A33B19DE-5624-4FDD-B3DD-AFF50ECD0378} -> rport=445 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-28515 | app=system | {B8871300-148C-4363-8B7A-0C2CB80B2DB9} -> lport=rpc-epmap | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28539 | svc=rpcss | {C637D94F-5A0D-4650-A877-1005E824DCF6} -> rport=1900 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31273 | app=%systemroot%\system32\svchost.exe | svc=ssdpsrv | {CB1ABAFD-FF32-4847-A891-61734D1BB04D} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live communications platform (ssdp) | {D5A930B3-B2EA-4BB0-9D39-7BB980712530} -> rport=2177 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31257 | app=%systemroot%\system32\svchost.exe | svc=qwave | {DBC56302-25F1-43C1-8D3F-2D7AD5FBE1AF} -> rport=10243 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31289 | app=system | {DC4DE616-AC4D-434C-B7D6-5B78AAD39834} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv | {EB711027-F55E-4709-8DCC-E971F85D76B0} -> lport=2177 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31261 | app=%systemroot%\system32\svchost.exe | svc=qwave | {ECA70EE2-C01E-4900-A544-9BF00C4DAF21} -> rport=5355 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28550 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {EF2A529A-7F5F-49DB-9659-A5220B00E331} -> lport=5355 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28548 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {FB0225E3-B6F4-4C3A-9E1B-F69816D415D7} -> lport=138 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28527 | app=system | < Vista Active Application Exception Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules -> {0149D99D-06A6-4932-8793-42C7C18B6159} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31309 | app=%programfiles%\windows media player\wmpnetwk.exe | {02E13029-AE7A-4D3F-B400-6416D278460B} -> profile=domain | dir=in | action=allow | name=generic service host | app=c:\windows\dsdmowow.exe | {048A817D-1E26-431B-8EEC-F01C9A1FFDC6} -> profile=private | dir=in | action=allow | name=generic service host | app=c:\windows\sqlserverspatialwow.exe | {06057ECE-2ED8-41DC-9D3B-749DADA0F743} -> profile=public | dir=in | action=allow | name=generic service host | app=c:\windows\sqlserverspatialwow.exe | {0BE8D5D0-DFA1-4F29-9785-8A3C12687270} -> profile=private | protocol=17 | dir=in | action=allow | name=bonjour service | app=c:\program files (x86)\bonjour\mdnsresponder.exe | {0C8B5477-3145-4615-848E-82BDDC63BA56} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31321 | app=%systemroot%\system32\svchost.exe | svc=upnphost | {107F932E-FA7E-4FB8-AABC-7A5A0758C17D} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31305 | app=%programfiles%\windows media player\wmpnetwk.exe | {1D1DEC98-36F6-4906-9BD1-C357DD9C3219} -> dir=in | action=allow | name=windows live communications platform | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | {1F3A43E7-0B06-4D5E-840B-B2C0B68D4228} -> profile=private | dir=in | action=allow | name=generic service host | app=c:\windows\dsdmowow.exe | {2246A10A-9370-4413-BCEB-DB9B8951613E} -> profile=private | protocol=17 | dir=in | action=allow | name=internet explorer | app=c:\program files (x86)\internet explorer\iexplore.exe | {29052119-4A6C-44A3-824E-FF4955E56539} -> dir=in | action=allow | name=touch movie resident program | app=c:\program files (x86)\acer arcade deluxe\arcade movie\touchmovieservice.exe | {29918723-5A04-4150-A310-FA3B5F85EF85} -> profile=private | dir=in | action=allow | name=generic service host | app=c:\windows\sqlserverspatialwow.exe | {2E3112A8-A2F3-44E9-B98C-3B59D50B76D1} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31281 | app=system | {3116ADC5-D49A-4833-9298-4E66D91000F4} -> dir=in | action=allow | name=cyberlink powercinema | app=c:\program files (x86)\acer arcade deluxe\acer arcade deluxe\powercinema.exe | {3240F8B5-9176-4167-9E14-5DEF9CA18E1B} -> profile=private | protocol=17 | dir=in | action=allow | name=mozilla firefox | app=c:\program files (x86)\mozilla firefox\firefox.exe | {32841176-248D-4340-A84B-B3ECBB3A2407} -> dir=in | action=allow | name=skype | app=c:\program files (x86)\skype\phone\skype.exe | {3ADFB4ED-6D32-4E64-80A0-4FE1FDB84346} -> profile=private | protocol=6 | dir=in | action=allow | name=bonjour service | app=c:\program files (x86)\bonjour\mdnsresponder.exe | {3B2ECD9D-D69A-49A4-9776-ABE9487AC289} -> profile=domain | dir=in | action=allow | name=windows update service | app=c:\windows\syswow64\kbdcz232.exe | {3BEA77A3-12FB-4296-A5D4-17253F0455B8} -> profile=private | protocol=17 | dir=in | action=allow | name=internet explorer (64-bit) | app=c:\program files\internet explorer\iexplore.exe | {56F31494-578E-47FB-9423-09528FB932F3} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31003 | app=%programfiles%\windows media player\wmplayer.exe | {573DD39B-14FA-45A8-8C7B-F8C3A9511A31} -> profile=public | dir=in | action=allow | name=generic service host | app=c:\windows\dsdmowow.exe | {5D05B655-4C7A-4214-AE43-569BED593752} -> profile=private | protocol=6 | dir=in | action=allow | name=internet explorer (64-bit) | app=c:\program files\internet explorer\iexplore.exe | {63DFB5DD-97DF-4E05-8BFC-A589E5A0BBB8} -> dir=in | action=allow | name=windows live messenger | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | {65B5C2F4-AE3F-42EB-9740-DEABFF7B726A} -> profile=domain | dir=in | action=allow | name=generic service host | app=c:\windows\dsdmowow.exe | {7B33CE48-CFE3-4E59-9A69-165512F59F6B} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31007 | app=%programfiles%\windows media player\wmplayer.exe | {7FF778EE-EB9B-4DC1-8E13-0EFC07CCF189} -> profile=private | protocol=17 | dir=in | action=allow | name=frostwire | app=c:\program files (x86)\frostwire\frostwire.exe | {80E8D4A1-41E2-4EBD-9D42-0418D87FFC7D} -> profile=private | protocol=1 | dir=out | action=allow | name=@firewallapi.dll,-28544 | {8109CFAD-CBA4-4656-990D-33CB56146956} -> profile=private | protocol=6 | dir=in | action=allow | name=internet explorer | app=c:\program files (x86)\internet explorer\iexplore.exe | {8C9837CC-F66E-471F-9090-488B362D7168} -> profile=private | protocol=17 | dir=in | action=allow | name=mcafee shared service host | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | {90F03784-E5E5-4B59-AA81-A9CCA4B88C58} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31301 | app=%programfiles%\windows media player\wmplayer.exe | {9794185E-2341-4E88-A1AF-D332DDF1AEBE} -> profile=public | dir=in | action=allow | name=windows update service | app=c:\windows\syswow64\kbdcz232.exe | {9978FAF7-55D6-47D9-9808-A6C1DDD49802} -> profile=private | dir=in | action=allow | name=windows update service | app=c:\windows\syswow64\kbdcz232.exe | {9982D018-A3B3-4431-B754-83F50B7EDC32} -> dir=in | action=allow | name=cyberlink powercinema resident program | app=c:\program files (x86)\acer arcade deluxe\acer arcade deluxe\pcmservice.exe | {A0CD3A8C-7B2B-4EFF-BDD3-33CD4E703DDD} -> profile=public | dir=in | action=allow | name=generic service host | app=c:\windows\sqlserverspatialwow.exe | {A2185E15-DC98-4445-90DF-35908CAD3F45} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31025 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {A89EDE18-F3EE-4C69-95D5-83290F2FC2C7} -> profile=private | protocol=6 | dir=in | action=allow | name=mozilla firefox | app=c:\program files (x86)\mozilla firefox\firefox.exe | {A8E0A1FB-3252-4867-BE53-26688656644F} -> dir=in | action=allow | name=acer homemedia | app=c:\program files (x86)\acer arcade deluxe\homemedia\homemedia.exe | {A9E80671-6CC6-4FEA-A028-0FC54F529876} -> protocol=1 | dir=in | action=allow | name=sisoftware deployment agent service (icmp-in) | {AD11549A-7BBA-440A-B57D-F627D7FE91F9} -> dir=in | action=allow | name=cyberlink media server browser engine | app=c:\program files (x86)\acer arcade deluxe\acer arcade deluxe\kernel\dmp\clbrowserengine.exe | {B4B7D5BB-3B42-4DD8-833E-54C90EC3BE8F} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31023 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {B4D08E39-0B46-47E8-A4A8-0AE4AC68152F} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31293 | app=%programfiles%\windows media player\wmplayer.exe | {B59354BD-D20B-4CCA-BF05-758D4A440F2C} -> protocol=1 | dir=in | action=allow | name=sisoftware sandra agent service (icmp-in) | {B9370670-E1D3-4F9A-B31C-5F830B7D9DF3} -> profile=domain | dir=in | action=allow | name=generic service host | app=c:\windows\sqlserverspatialwow.exe | {B9439D13-204A-45D0-A043-AEF44C1C700B} -> profile=private | protocol=58 | dir=out | action=allow | name=@firewallapi.dll,-28546 | {BDAF0D66-DDB9-4656-A38C-5E65450C8514} -> profile=public | protocol=17 | dir=in | action=allow | name=mcafee shared service host | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | {C4A1C0A7-757D-4554-9BB7-91E5E2DC6969} -> profile=private | protocol=6 | dir=in | action=allow | name=mcafee shared service host | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | {C51ED789-0C77-43E7-829A-B98B9881AF27} -> profile=private | protocol=6 | dir=in | action=allow | name=frostwire | app=c:\program files (x86)\frostwire\frostwire.exe | {CDE846AB-DD60-4C35-947F-E0BBD190AD13} -> profile=domain | dir=in | action=allow | name=generic service host | app=c:\windows\sqlserverspatialwow.exe | {CF484592-E89C-4135-BBD8-7BF0FB7EDCB1} -> dir=in | action=allow | name=itunes | app=c:\program files (x86)\itunes\itunes.exe | {D0182B0F-EF0B-49AB-9F7C-EE7CBC631972} -> profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31313 | app=%programfiles%\windows media player\wmpnetwk.exe | {D1895698-8E1C-48F2-B053-8A28A9A0029A} -> dir=in | action=allow | name=cyberlink media server | app=c:\program files (x86)\acer arcade deluxe\acer arcade deluxe\kernel\dms\clmsservice.exe | {D5222A00-CEE4-4651-AF62-8890BEC7C6D9} -> profile=private | dir=in | action=allow | name=generic service host | app=c:\windows\dsdmowow.exe | {D5D3070D-1FC7-45D4-96B3-DB133AA1BB20} -> dir=in | action=allow | name=windows live mesh | app=c:\program files (x86)\windows live\mesh\moe.exe | {D75F62D0-9B53-4042-BE2E-66BB5A5FFD0E} -> profile=private | protocol=17 | dir=in | action=allow | name=microsoft office onenote | app=c:\program files (x86)\microsoft office\office12\onenote.exe | {E0C3A173-EA01-43F3-B250-8C09CD1C70F0} -> profile=public | protocol=6 | dir=in | action=allow | name=mcafee shared service host | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe | {E0F021BF-1F2B-44E4-B3DA-AF4209D6EEB3} -> profile=private | protocol=6 | dir=in | action=allow | name=microsoft office onenote | app=c:\program files (x86)\microsoft office\office12\onenote.exe | {E1612606-7339-463D-B868-F92D2357CFA6} -> dir=in | action=allow | name=touch movie | app=c:\program files (x86)\acer arcade deluxe\arcade movie\touchmovie.exe | {E55A171C-7F07-4393-99D7-C6B096C93253} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31011 | app=%programfiles%\windows media player\wmplayer.exe | {EFAB105C-6550-486B-9FA6-0C16E56A2A97} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31024 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {F084D86C-70E0-4227-A2DE-78B9F2640C72} -> profile=public | dir=in | action=allow | name=generic service host | app=c:\windows\dsdmowow.exe | {F1E25109-2626-414E-95B7-54E7A67D4156} -> profile=private | protocol=58 | dir=in | action=allow | name=@firewallapi.dll,-28545 | {F37D1485-97A8-420A-AD95-32841ECA2A21} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31297 | app=%programfiles%\windows media player\wmplayer.exe | {F8AFFD58-034C-4B94-9DAB-9C15B1D183D3} -> profile=private | protocol=1 | dir=in | action=allow | name=@firewallapi.dll,-28543 | {FE46E9FE-6E4D-420D-9417-CD3F107A16FB} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31317 | app=%programfiles%\windows media player\wmpnetwk.exe | TCP Query User{4E3703BA-6CA1-480C-96F8-5B31C626FBA5}C:\program files (x86)\frostwire\frostwire.exe -> profile=public | protocol=6 | dir=in | action=block | name=frostwire | app=c:\program files (x86)\frostwire\frostwire.exe | UDP Query User{52C739E6-C83F-4E59-AE98-24CF3117C8D9}C:\program files (x86)\frostwire\frostwire.exe -> profile=public | protocol=17 | dir=in | action=block | name=frostwire | app=c:\program files (x86)\frostwire\frostwire.exe | < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> CD-ROM Driver -> "ImagePath" -> C:\Windows\SysNative\drivers\cdrom.sys [system32\DRIVERS\cdrom.sys] -> [2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) < Drives with AutoRun files > -> -> E:\Autorun.exe [MZ | ] -> E:\Autorun.exe [ CDFS ] -> [2008/02/22 01:43:08 | 000,358,248 | R--- | M] (NETGEAR Inc.) E:\autorun.inf [[autorun] | OPEN=autorun.exe | ICON=autorun.exe,0 | ] -> E:\autorun.inf [ CDFS ] -> [2006/05/29 09:27:40 | 000,000,047 | R--- | M] () < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> \H HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H\shell \H\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H\shell\AutoRun\command \H\shell\AutoRun\command\\"" -> [H:\AutoRun.exe] -> File not found \{023decf8-7aef-11e0-b9d9-00262d44bae3} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{023decf8-7aef-11e0-b9d9-00262d44bae3}\shell \{023decf8-7aef-11e0-b9d9-00262d44bae3}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{023decf8-7aef-11e0-b9d9-00262d44bae3}\shell\AutoRun\command \{023decf8-7aef-11e0-b9d9-00262d44bae3}\shell\AutoRun\command\\"" -> [H:\AutoRun.exe] -> File not found \{023decfc-7aef-11e0-b9d9-00262d44bae3} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{023decfc-7aef-11e0-b9d9-00262d44bae3}\shell \{023decfc-7aef-11e0-b9d9-00262d44bae3}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{023decfc-7aef-11e0-b9d9-00262d44bae3}\shell\AutoRun\command \{023decfc-7aef-11e0-b9d9-00262d44bae3}\shell\AutoRun\command\\"" -> [H:\AutoRun.exe] -> File not found \{0a4be64c-78a8-11e0-bd18-806e6f6e6963} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a4be64c-78a8-11e0-bd18-806e6f6e6963}\shell \{0a4be64c-78a8-11e0-bd18-806e6f6e6963}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a4be64c-78a8-11e0-bd18-806e6f6e6963}\shell\AutoRun\command \{0a4be64c-78a8-11e0-bd18-806e6f6e6963}\shell\AutoRun\command\\"" -> E:\Autorun.exe [E:\autorun.exe] -> [2008/02/22 01:43:08 | 000,358,248 | R--- | M] (NETGEAR Inc.) \{2aa78f16-7b38-11e0-bc49-00262d44bae3} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2aa78f16-7b38-11e0-bc49-00262d44bae3}\shell \{2aa78f16-7b38-11e0-bc49-00262d44bae3}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2aa78f16-7b38-11e0-bc49-00262d44bae3}\shell\AutoRun\command \{2aa78f16-7b38-11e0-bc49-00262d44bae3}\shell\AutoRun\command\\"" -> [H:\AutoRun.exe] -> File not found \{2aa78f1a-7b38-11e0-bc49-00262d44bae3} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2aa78f1a-7b38-11e0-bc49-00262d44bae3}\shell \{2aa78f1a-7b38-11e0-bc49-00262d44bae3}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2aa78f1a-7b38-11e0-bc49-00262d44bae3}\shell\AutoRun\command \{2aa78f1a-7b38-11e0-bc49-00262d44bae3}\shell\AutoRun\command\\"" -> [H:\AutoRun.exe] -> File not found \{ca94c086-7a74-11e0-8604-00262d44bae3} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ca94c086-7a74-11e0-8604-00262d44bae3}\shell \{ca94c086-7a74-11e0-8604-00262d44bae3}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ca94c086-7a74-11e0-8604-00262d44bae3}\shell\AutoRun\command \{ca94c086-7a74-11e0-8604-00262d44bae3}\shell\AutoRun\command\\"" -> [H:\AutoRun.exe] -> File not found \{ca94c08b-7a74-11e0-8604-00262d44bae3} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ca94c08b-7a74-11e0-8604-00262d44bae3}\shell \{ca94c08b-7a74-11e0-8604-00262d44bae3}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ca94c08b-7a74-11e0-8604-00262d44bae3}\shell\AutoRun\command \{ca94c08b-7a74-11e0-8604-00262d44bae3}\shell\AutoRun\command\\"" -> [H:\AutoRun.exe] -> File not found < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> 64bit-comfile [open] -> "%1" %* -> File not found 64bit-exefile [open] -> "%1" %* -> File not found comfile [open] -> "%1" %* -> exefile [open] -> "%1" %* -> < 64bit-File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> [Registry - Additional Scans - Safe List] < 64bit-Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 -> "msacm.l3acm" -> C:\Windows\SysNative\l3codeca.acm [C:\Windows\System32\l3codeca.acm] -> [2009/07/14 02:38:53 | 000,081,408 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) "vidc.i420" -> C:\Windows\SysNative\lvcod64.dll [lvcod64.dll] -> [2009/10/07 08:43:32 | 000,398,360 | ---- | M] (Logitech Inc.) < Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 -> "msacm.l3acm" -> C:\Windows\SysWOW64\l3codeca.acm [C:\Windows\SysWOW64\l3codeca.acm] -> [2009/07/14 02:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) "vidc.cvid" -> C:\Windows\SysWow64\iccvid.dll [iccvid.dll] -> [2010/07/29 07:30:34 | 000,082,944 | ---- | M] (Radius Inc.) "vidc.i420" -> C:\Windows\SysWow64\lvcodec2.dll [lvcodec2.dll] -> [2009/10/07 08:43:32 | 000,416,280 | ---- | M] (Logitech Inc.) < 64bit-SafeBoot-Minimal Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ -> {36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers {4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive {4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive {4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller {4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc {4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard {4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse {4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters {4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter {4D36E97D-E325-11CE-BFC1-08002BE10318} -> System {4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive {533C5B84-EC70-11D2-9505-00C04F79DEAF} -> Volume shadow copy {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} -> IEEE 1394 Bus host controllers {71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices {D48179BE-EC20-11D1-B6B8-00C04FA372A7} -> SBP2 IEEE 1394 Devices {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} -> SecurityDevices AppMgmt -> Service Base -> Driver Group Boot Bus Extender -> Driver Group Boot file system -> Driver Group File system -> Driver Group Filter -> Driver Group HelpSvc -> Service mcmscsvc -> C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe -> [2010/03/10 10:14:44 | 000,355,440 | ---- | M] (McAfee, Inc.) MCODS -> C:\Program Files\mcafee\VirusScan\mcods.exe -> [2010/10/07 20:34:28 | 000,509,416 | ---- | M] (McAfee, Inc.) NTDS -> 32bit -> File not found PCI Configuration -> Driver Group PNP Filter -> Driver Group Primary disk -> Driver Group sacsvr -> Service SCSI Class -> Driver Group System Bus Extender -> Driver Group TrustedInstaller -> 32bit -> File not found vmms -> Service WinDefend -> C:\Program Files\Windows Defender\MpSvc.dll -> [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) < SafeBoot-Minimal Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ -> {36FC9E60-C465-11CF-8056-444553540000} -> Universal Serial Bus controllers {4D36E965-E325-11CE-BFC1-08002BE10318} -> CD-ROM Drive {4D36E967-E325-11CE-BFC1-08002BE10318} -> DiskDrive {4D36E969-E325-11CE-BFC1-08002BE10318} -> Standard floppy disk controller {4D36E96A-E325-11CE-BFC1-08002BE10318} -> Hdc {4D36E96B-E325-11CE-BFC1-08002BE10318} -> Keyboard {4D36E96F-E325-11CE-BFC1-08002BE10318} -> Mouse {4D36E977-E325-11CE-BFC1-08002BE10318} -> PCMCIA Adapters {4D36E97B-E325-11CE-BFC1-08002BE10318} -> SCSIAdapter {4D36E97D-E325-11CE-BFC1-08002BE10318} -> System {4D36E980-E325-11CE-BFC1-08002BE10318} -> Floppy disk drive {533C5B84-EC70-11D2-9505-00C04F79DEAF} -> Volume shadow copy {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} -> IEEE 1394 Bus host controllers {71A27CDD-812A-11D0-BEC7-08002BE2092F} -> Volume {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} -> Human Interface Devices {D48179BE-EC20-11D1-B6B8-00C04FA372A7} -> SBP2 IEEE 1394 Devices {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} -> SecurityDevices AppInfo -> 64bit -> File not found AppMgmt -> Service Base -> Driver Group Boot Bus Extender -> Driver Group Boot file system -> Driver Group DcomLaunch -> 64bit -> File not found EFS -> 64bit -> File not found EventLog -> 64bit -> File not found File system -> Driver Group Filter -> Driver Group HelpSvc -> Service KeyIso -> 64bit -> File not found mcmscsvc -> 64bit -> File not found MCODS -> 64bit -> File not found Netlogon -> 64bit -> File not found NTDS -> 64bit -> File not found PCI Configuration -> Driver Group PlugPlay -> 64bit -> File not found PNP Filter -> Driver Group Power -> 64bit -> File not found Primary disk -> Driver Group ProfSvc -> 64bit -> File not found RpcEptMapper -> 64bit -> File not found RpcSs -> 64bit -> File not found sacsvr -> Service SCSI Class -> Driver Group sermouse.sys -> 64bit -> File not found SWPRV -> 64bit -> File not found System Bus Extender -> Driver Group TabletInputService -> 64bit -> File not found TBS -> 64bit -> File not found VDS -> 64bit -> File not found vga.sys -> 64bit -> File not found vgasave.sys -> 64bit -> File not found vmms -> Service volmgr.sys -> 64bit -> File not found volmgrx.sys -> 64bit -> File not found WinDefend -> 64bit -> File not found WinMgmt -> 64bit -> File not found WudfPf -> 64bit -> File not found WudfRd -> 64bit -> File not found WudfSvc -> 64bit -> File not found < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> 64bit-batfile [open] -> "%1" %* -> File not found 64bit-cmdfile [open] -> "%1" %* -> File not found 64bit-comfile [open] -> "%1" %* -> File not found 64bit-exefile [open] -> "%1" %* -> File not found 64bit-inffile [install] -> %SystemRoot%\System32\InfDefaultInstall.exe "%1" -> [2009/07/14 02:39:13 | 000,010,240 | ---- | M] (Microsoft Corporation) 64bit-InternetShortcut [open] -> "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l -> [2009/07/14 02:39:31 | 000,045,568 | ---- | M] (Microsoft Corporation) 64bit-InternetShortcut [print] -> "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" -> [2009/07/14 02:39:31 | 000,045,568 | ---- | M] (Microsoft Corporation) 64bit-piffile [open] -> "%1" %* -> File not found 64bit-scrfile [config] -> "%1" -> File not found 64bit-scrfile [install] -> rundll32.exe desk.cpl,InstallScreenSaver %l -> File not found 64bit-scrfile [open] -> "%1" /S -> File not found 64bit-Unknown [openas] -> %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 -> File not found 64bit-Directory [AddToPlaylistVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" -> [2011/04/12 01:45:30 | 000,107,520 | ---- | M] () 64bit-Directory [cmd] -> cmd.exe /s /k pushd "%V" -> [2009/07/14 02:39:01 | 000,344,576 | ---- | M] (Microsoft Corporation) 64bit-Directory [find] -> %SystemRoot%\Explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) 64bit-Directory [PlayWithVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" -> [2011/04/12 01:45:30 | 000,107,520 | ---- | M] () 64bit-Folder [open] -> %SystemRoot%\Explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) 64bit-Drive [find] -> %SystemRoot%\Explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) batfile [open] -> "%1" %* -> cmdfile [open] -> "%1" %* -> comfile [open] -> "%1" %* -> cplfile [cplopen] -> %SystemRoot%\System32\control.exe "%1",%* -> [2009/07/14 02:14:15 | 000,113,152 | ---- | M] (Microsoft Corporation) exefile [open] -> "%1" %* -> inffile [install] -> %SystemRoot%\System32\InfDefaultInstall.exe "%1" -> [2009/07/14 02:14:21 | 000,009,216 | ---- | M] (Microsoft Corporation) piffile [open] -> "%1" %* -> scrfile [config] -> "%1" -> scrfile [install] -> rundll32.exe desk.cpl,InstallScreenSaver %l -> scrfile [open] -> "%1" /S -> Unknown [openas] -> %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 -> Directory [AddToPlaylistVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" -> [2011/04/12 01:45:30 | 000,107,520 | ---- | M] () Directory [cmd] -> cmd.exe /s /k pushd "%V" -> [2009/07/14 02:14:15 | 000,301,568 | ---- | M] (Microsoft Corporation) Directory [find] -> %SystemRoot%\Explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) Directory [PlayWithVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" -> [2011/04/12 01:45:30 | 000,107,520 | ---- | M] () Folder [open] -> %SystemRoot%\Explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) Drive [find] -> %SystemRoot%\Explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) < EventViewer Logs - Last 10 Errors > -> Event Information -> Description Application [ Error ] 24/05/2011 06:12:36 Computer Name = MCGA-PC | Source = CVHSVC | ID = 100 -> Description = Information only. Error: BITS connection error Type: 150::InternetConnectionFailure. Application [ Error ] 24/05/2011 12:46:17 Computer Name = MCGA-PC | Source = CVHSVC | ID = 100 -> Description = Information only. Error: BITS connection error Type: 150::InternetConnectionFailure. Application [ Error ] 25/05/2011 08:54:07 Computer Name = MCGA-PC | Source = Google Update | ID = 20 -> Description = Application [ Error ] 25/05/2011 14:54:06 Computer Name = MCGA-PC | Source = Google Update | ID = 20 -> Description = Application [ Error ] 25/05/2011 15:02:08 Computer Name = MCGA-PC | Source = CVHSVC | ID = 100 -> Description = Information only. (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: Application [ Error ] 26/05/2011 18:41:08 Computer Name = MCGA-PC | Source = .NET Runtime Optimization Service | ID = 1101 -> Description = Application [ Error ] 26/05/2011 18:43:30 Computer Name = MCGA-PC | Source = .NET Runtime Optimization Service | ID = 1101 -> Description = Application [ Error ] 26/05/2011 18:45:29 Computer Name = MCGA-PC | Source = MsiInstaller | ID = 10005 -> Description = Application [ Error ] 26/05/2011 18:45:50 Computer Name = MCGA-PC | Source = MsiInstaller | ID = 11310 -> Description = Application [ Error ] 26/05/2011 18:46:21 Computer Name = MCGA-PC | Source = MsiInstaller | ID = 10005 -> Description = System [ Error ] 27/05/2011 06:27:45 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:31:12 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:33:32 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:34:02 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:35:02 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:36:18 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:38:34 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:41:37 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:41:57 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 System [ Error ] 27/05/2011 06:43:06 Computer Name = MCGA-PC | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 -> Description = WLAN Extensibility Module has failed to start. Module Path: C:\Windows\system32\athExt.dll Error Code: 126 [Files/Folders - Created Within 30 Days] {EF796EB2-C4DF-4B3C-AC70-5387292C60BE} -> C:\Users\MCGA\AppData\Local\{EF796EB2-C4DF-4B3C-AC70-5387292C60BE} -> [2011/05/28 22:17:09 | 000,000,000 | ---D | C] McAfee -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee -> [2011/05/28 20:07:06 | 000,000,000 | ---D | C] Sandlot Games -> C:\ProgramData\Sandlot Games -> [2011/05/28 19:03:16 | 000,000,000 | ---D | C] {287C020C-A62B-490C-AB35-7AA39E0700D8} -> C:\Users\MCGA\AppData\Local\{287C020C-A62B-490C-AB35-7AA39E0700D8} -> [2011/05/28 09:47:05 | 000,000,000 | ---D | C] 6B302AE0024CFC5016EDA52DAD96BEC7 -> C:\ProgramData\6B302AE0024CFC5016EDA52DAD96BEC7 -> [2011/05/27 22:10:43 | 000,000,000 | -HSD | C] api-ms-win-core-misc-l1-1-032.dll -> C:\ProgramData\api-ms-win-core-misc-l1-1-032.dll -> [2011/05/27 22:09:59 | 000,257,024 | ---- | C] (Borland Software Corporation) SysWin -> C:\Users\MCGA\AppData\Roaming\SysWin -> [2011/05/27 22:09:59 | 000,000,000 | -HSD | C] api-ms-win-core-misc-l1-1-032.dll -> C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-032.dll -> [2011/05/27 22:09:56 | 000,419,328 | ---- | C] (Borland Software Corporation) Alessandra 3rd Birthday -> C:\Users\MCGA\Documents\Alessandra 3rd Birthday -> [2011/05/27 21:54:52 | 000,000,000 | ---D | C] {E91C7B09-E8B9-457C-B653-E6639636BB74} -> C:\Users\MCGA\AppData\Local\{E91C7B09-E8B9-457C-B653-E6639636BB74} -> [2011/05/27 11:28:29 | 000,000,000 | ---D | C] {6DB3D8FC-C6C9-414D-8E76-C8399C23938E} -> C:\Users\MCGA\AppData\Local\{6DB3D8FC-C6C9-414D-8E76-C8399C23938E} -> [2011/05/27 11:19:09 | 000,000,000 | ---D | C] jswpslwfx.sys -> C:\Windows\SysNative\drivers\jswpslwfx.sys -> [2011/05/27 10:56:08 | 000,026,624 | ---- | C] (Atheros Communications, Inc.) SCMNdisP.sys -> C:\Windows\SysNative\drivers\SCMNdisP.sys -> [2011/05/27 10:56:08 | 000,025,312 | ---- | C] (Windows (R) Codename Longhorn DDK provider) NETGEAR WNA1100 Smart Wizard -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA1100 Smart Wizard -> [2011/05/27 10:55:56 | 000,000,000 | ---D | C] NETGEAR -> C:\Program Files (x86)\NETGEAR -> [2011/05/27 10:55:56 | 000,000,000 | ---D | C] temp -> C:\temp -> [2011/05/27 10:54:37 | 000,000,000 | ---D | C] {291762BB-88F1-486E-BE0B-C11D692B01BB} -> C:\Users\MCGA\AppData\Local\{291762BB-88F1-486E-BE0B-C11D692B01BB} -> [2011/05/27 10:52:36 | 000,000,000 | ---D | C] MinGW -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinGW -> [2011/05/27 08:58:16 | 000,000,000 | ---D | C] MinGW -> C:\MinGW -> [2011/05/27 08:58:15 | 000,000,000 | ---D | C] Microsoft Corporation -> C:\Users\MCGA\AppData\Roaming\Microsoft Corporation -> [2011/05/27 07:33:21 | 000,000,000 | ---D | C] Microsoft Sync Framework -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Sync Framework -> [2011/05/26 23:45:35 | 000,000,000 | ---D | C] Microsoft Sync Framework -> C:\Program Files\Microsoft Sync Framework -> [2011/05/26 23:45:23 | 000,000,000 | ---D | C] PreEmptive Solutions -> C:\ProgramData\PreEmptive Solutions -> [2011/05/26 23:42:04 | 000,000,000 | ---D | C] Microsoft Silverlight 3 SDK -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK -> [2011/05/26 23:37:38 | 000,000,000 | ---D | C] Microsoft ASP.NET -> C:\Program Files (x86)\Microsoft ASP.NET -> [2011/05/26 23:32:22 | 000,000,000 | ---D | C] IIS -> C:\Program Files\IIS -> [2011/05/26 23:32:14 | 000,000,000 | ---D | C] IIS -> C:\Program Files (x86)\IIS -> [2011/05/26 23:32:14 | 000,000,000 | ---D | C] Visual Studio 2008 -> C:\Users\MCGA\Documents\Visual Studio 2008 -> [2011/05/26 23:31:21 | 000,000,000 | ---D | C] Microsoft Visual Studio 2010 -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 -> [2011/05/26 23:19:28 | 000,000,000 | ---D | C] Microsoft F# -> C:\Program Files (x86)\Microsoft F# -> [2011/05/26 23:19:28 | 000,000,000 | ---D | C] Merge Modules -> C:\Program Files (x86)\Common Files\Merge Modules -> [2011/05/26 23:19:28 | 000,000,000 | ---D | C] HTML Help Workshop -> C:\Program Files (x86)\HTML Help Workshop -> [2011/05/26 23:19:28 | 000,000,000 | ---D | C] MySQL -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MySQL -> [2011/05/26 19:56:21 | 000,000,000 | ---D | C] MySQL -> C:\Program Files\MySQL -> [2011/05/26 19:56:13 | 000,000,000 | ---D | C] MySQL -> C:\ProgramData\MySQL -> [2011/05/26 19:56:12 | 000,000,000 | ---D | C] NUnit -> C:\Users\MCGA\AppData\Roaming\NUnit -> [2011/05/26 14:23:12 | 000,000,000 | ---D | C] C# -> C:\C# -> [2011/05/26 14:20:49 | 000,000,000 | ---D | C] WinZip -> C:\Users\MCGA\AppData\Local\WinZip -> [2011/05/26 14:20:22 | 000,000,000 | ---D | C] WinZip -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip -> [2011/05/26 09:52:25 | 000,000,000 | ---D | C] WinZip -> C:\ProgramData\WinZip -> [2011/05/26 09:52:09 | 000,000,000 | ---D | C] WinZip -> C:\Program Files (x86)\WinZip -> [2011/05/26 09:51:59 | 000,000,000 | ---D | C] Cygwin -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cygwin -> [2011/05/26 09:41:56 | 000,000,000 | ---D | C] cygwin -> C:\cygwin -> [2011/05/26 09:24:30 | 000,000,000 | ---D | C] Google Chrome -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome -> [2011/05/26 09:20:05 | 000,000,000 | ---D | C] {1FE1B259-DC4B-4EA3-AD40-3723AF065EAB} -> C:\Users\MCGA\AppData\Local\{1FE1B259-DC4B-4EA3-AD40-3723AF065EAB} -> [2011/05/25 19:52:09 | 000,000,000 | ---D | C] Diskdump.sys -> C:\Windows\SysNative\drivers\Diskdump.sys -> [2011/05/25 00:04:54 | 000,027,008 | ---- | C] (Microsoft Corporation) NUnit 2.5.10 -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NUnit 2.5.10 -> [2011/05/24 19:21:36 | 000,000,000 | ---D | C] NUnit 2.5.10 -> C:\Program Files (x86)\NUnit 2.5.10 -> [2011/05/24 19:21:31 | 000,000,000 | ---D | C] .jindent -> C:\Users\MCGA\.jindent -> [2011/05/24 18:03:33 | 000,000,000 | ---D | C] Java -> C:\Java -> [2011/05/24 18:03:27 | 000,000,000 | ---D | C] {78F19E30-016C-482E-9CFF-507295D45566} -> C:\Users\MCGA\AppData\Local\{78F19E30-016C-482E-9CFF-507295D45566} -> [2011/05/24 10:57:08 | 000,000,000 | ---D | C] {0C68B851-B08F-4A41-982C-33BC06C91877} -> C:\Users\MCGA\AppData\Local\{0C68B851-B08F-4A41-982C-33BC06C91877} -> [2011/05/23 21:48:39 | 000,000,000 | ---D | C] GameTap Web Player -> C:\ProgramData\GameTap Web Player -> [2011/05/23 15:19:46 | 000,000,000 | ---D | C] GameTap Web Player -> C:\Program Files (x86)\GameTap Web Player -> [2011/05/23 15:19:46 | 000,000,000 | ---D | C] GameTapWebPlayer_4_4_0_7.ocx -> C:\Windows\SysWow64\GameTapWebPlayer_4_4_0_7.ocx -> [2011/05/23 15:19:42 | 000,819,200 | ---- | C] (Metaboli) Retrogamer_2zEI -> C:\Program Files (x86)\Retrogamer_2zEI -> [2011/05/23 15:17:59 | 000,000,000 | ---D | C] {1FBEA89F-23E4-460D-836B-85526C89A8CE} -> C:\Users\MCGA\AppData\Local\{1FBEA89F-23E4-460D-836B-85526C89A8CE} -> [2011/05/23 09:48:17 | 000,000,000 | ---D | C] {53575E33-DD68-40EB-B116-D25B35552004} -> C:\Users\MCGA\AppData\Local\{53575E33-DD68-40EB-B116-D25B35552004} -> [2011/05/22 21:46:53 | 000,000,000 | ---D | C] Picasa 3 -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 -> [2011/05/22 20:05:41 | 000,000,000 | ---D | C] vlc -> C:\Users\MCGA\AppData\Roaming\vlc -> [2011/05/22 19:55:42 | 000,000,000 | ---D | C] Sun -> C:\Windows\Sun -> [2011/05/22 17:27:49 | 000,000,000 | ---D | C] Adobe -> C:\Windows\SysWow64\Adobe -> [2011/05/21 20:49:41 | 000,000,000 | ---D | C] Apple Computer -> C:\Users\MCGA\AppData\Roaming\Apple Computer -> [2011/05/21 07:31:36 | 000,000,000 | ---D | C] Apple Computer -> C:\Users\MCGA\AppData\Local\Apple Computer -> [2011/05/21 07:31:36 | 000,000,000 | ---D | C] iTunes -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes -> [2011/05/21 07:31:13 | 000,000,000 | ---D | C] GEARAspi64.dll -> C:\Windows\SysNative\GEARAspi64.dll -> [2011/05/21 07:30:39 | 000,126,312 | ---- | C] (GEAR Software Inc.) GEARAspi.dll -> C:\Windows\SysWow64\GEARAspi.dll -> [2011/05/21 07:30:39 | 000,107,368 | ---- | C] (GEAR Software Inc.) GEARAspiWDM.sys -> C:\Windows\SysNative\drivers\GEARAspiWDM.sys -> [2011/05/21 07:30:39 | 000,034,152 | ---- | C] (GEAR Software Inc.) iPod -> C:\Program Files\iPod -> [2011/05/21 07:29:41 | 000,000,000 | ---D | C] iTunes -> C:\Program Files\iTunes -> [2011/05/21 07:29:40 | 000,000,000 | ---D | C] iTunes -> C:\Program Files (x86)\iTunes -> [2011/05/21 07:29:40 | 000,000,000 | ---D | C] {93E26451-CD9A-43A5-A2FA-C42392EA4001} -> C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} -> [2011/05/21 07:29:40 | 000,000,000 | ---D | C] QuickTime -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime -> [2011/05/21 07:27:20 | 000,000,000 | ---D | C] QuickTime -> C:\Program Files (x86)\QuickTime -> [2011/05/21 07:26:38 | 000,000,000 | ---D | C] Apple Computer -> C:\ProgramData\Apple Computer -> [2011/05/21 07:26:38 | 000,000,000 | ---D | C] Apple -> C:\Users\MCGA\AppData\Local\Apple -> [2011/05/21 07:26:27 | 000,000,000 | ---D | C] Apple Software Update -> C:\Program Files (x86)\Apple Software Update -> [2011/05/21 07:26:20 | 000,000,000 | ---D | C] Apple -> C:\Program Files\Common Files\Apple -> [2011/05/21 07:25:49 | 000,000,000 | ---D | C] Bonjour -> C:\Program Files\Bonjour -> [2011/05/21 07:25:21 | 000,000,000 | ---D | C] Bonjour -> C:\Program Files (x86)\Bonjour -> [2011/05/21 07:25:21 | 000,000,000 | ---D | C] Apple -> C:\ProgramData\Apple -> [2011/05/21 07:25:04 | 000,000,000 | ---D | C] Apple -> C:\Program Files (x86)\Common Files\Apple -> [2011/05/21 07:25:04 | 000,000,000 | ---D | C] .m2 -> C:\Users\MCGA\.m2 -> [2011/05/20 19:50:04 | 000,000,000 | ---D | C] .netbeans -> C:\Users\MCGA\.netbeans -> [2011/05/20 19:48:36 | 000,000,000 | ---D | C] NetBeans -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans -> [2011/05/19 23:14:30 | 000,000,000 | ---D | C] NetBeans 7.0 -> C:\Program Files\NetBeans 7.0 -> [2011/05/19 23:11:17 | 000,000,000 | ---D | C] deployJava1.dll -> C:\Windows\SysNative\deployJava1.dll -> [2011/05/19 23:01:03 | 000,521,448 | ---- | C] (Sun Microsystems, Inc.) javaws.exe -> C:\Windows\SysNative\javaws.exe -> [2011/05/19 23:01:03 | 000,189,728 | ---- | C] (Sun Microsystems, Inc.) javaw.exe -> C:\Windows\SysNative\javaw.exe -> [2011/05/19 23:01:03 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) java.exe -> C:\Windows\SysNative\java.exe -> [2011/05/19 23:01:03 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) Java -> C:\Program Files\Java -> [2011/05/19 22:59:28 | 000,000,000 | ---D | C] avast! Free Antivirus -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus -> [2011/05/19 22:43:29 | 000,000,000 | ---D | C] aswSP.sys -> C:\Windows\SysNative\drivers\aswSP.sys -> [2011/05/19 22:43:28 | 000,287,576 | ---- | C] (AVAST Software) aswRdr.sys -> C:\Windows\SysNative\drivers\aswRdr.sys -> [2011/05/19 22:43:28 | 000,031,064 | ---- | C] (AVAST Software) aswFsBlk.sys -> C:\Windows\SysNative\drivers\aswFsBlk.sys -> [2011/05/19 22:43:28 | 000,022,360 | ---- | C] (AVAST Software) aswSnx.sys -> C:\Windows\SysNative\drivers\aswSnx.sys -> [2011/05/19 22:43:27 | 000,600,920 | ---- | C] (AVAST Software) aswTdi.sys -> C:\Windows\SysNative\drivers\aswTdi.sys -> [2011/05/19 22:43:27 | 000,053,592 | ---- | C] (AVAST Software) aswBoot.exe -> C:\Windows\SysNative\aswBoot.exe -> [2011/05/19 22:43:26 | 000,253,888 | ---- | C] (AVAST Software) aswMonFlt.sys -> C:\Windows\SysNative\drivers\aswMonFlt.sys -> [2011/05/19 22:43:26 | 000,064,344 | ---- | C] (AVAST Software) avastSS.scr -> C:\Windows\avastSS.scr -> [2011/05/19 22:43:00 | 000,040,112 | ---- | C] (AVAST Software) aswBoot.exe -> C:\Windows\SysWow64\aswBoot.exe -> [2011/05/19 22:42:59 | 000,199,304 | ---- | C] (AVAST Software) AVAST Software -> C:\ProgramData\AVAST Software -> [2011/05/19 22:42:50 | 000,000,000 | ---D | C] AVAST Software -> C:\Program Files\AVAST Software -> [2011/05/19 22:42:50 | 000,000,000 | ---D | C] SiSoftware -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware -> [2011/05/19 22:42:07 | 000,000,000 | ---D | C] SiSoftware -> C:\Program Files\SiSoftware -> [2011/05/19 22:41:59 | 000,000,000 | ---D | C] VideoLAN -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN -> [2011/05/19 22:39:53 | 000,000,000 | ---D | C] .nbi -> C:\Users\MCGA\.nbi -> [2011/05/19 22:39:33 | 000,000,000 | ---D | C] VideoLAN -> C:\Program Files (x86)\VideoLAN -> [2011/05/19 22:39:18 | 000,000,000 | ---D | C] FrostWire -> C:\Users\MCGA\FrostWire -> [2011/05/19 22:32:38 | 000,000,000 | ---D | C] FrostWire -> C:\Users\MCGA\AppData\Roaming\FrostWire -> [2011/05/19 22:32:31 | 000,000,000 | ---D | C] FrostWire -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire -> [2011/05/19 22:32:19 | 000,000,000 | ---D | C] FrostWire -> C:\Program Files (x86)\FrostWire -> [2011/05/19 22:32:08 | 000,000,000 | ---D | C] Sun -> C:\ProgramData\Sun -> [2011/05/19 22:31:40 | 000,000,000 | ---D | C] Java -> C:\Program Files (x86)\Common Files\Java -> [2011/05/19 22:31:39 | 000,000,000 | ---D | C] deployJava1.dll -> C:\Windows\SysWow64\deployJava1.dll -> [2011/05/19 22:31:35 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) javaws.exe -> C:\Windows\SysWow64\javaws.exe -> [2011/05/19 22:31:35 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) javaw.exe -> C:\Windows\SysWow64\javaw.exe -> [2011/05/19 22:31:35 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) java.exe -> C:\Windows\SysWow64\java.exe -> [2011/05/19 22:31:35 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) Java -> C:\Program Files (x86)\Java -> [2011/05/19 22:31:18 | 000,000,000 | ---D | C] Defraggler -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler -> [2011/05/19 22:19:49 | 000,000,000 | ---D | C] Defraggler -> C:\Program Files\Defraggler -> [2011/05/19 22:19:40 | 000,000,000 | ---D | C] perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll -> C:\Windows\SysNative\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll -> [2011/05/19 07:06:50 | 000,078,872 | ---- | C] (Microsoft Corporation) perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll -> C:\Windows\SysWow64\perf-SQLAgent$SQLEXPRESS-sqlagtctr10.1.2531.0.dll -> [2011/05/19 07:06:50 | 000,050,200 | ---- | C] (Microsoft Corporation) perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll -> C:\Windows\SysNative\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll -> [2011/05/19 07:06:44 | 000,111,640 | ---- | C] (Microsoft Corporation) perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll -> C:\Windows\SysWow64\perf-MSSQL$SQLEXPRESS-sqlctr10.1.2531.0.dll -> [2011/05/19 07:06:44 | 000,079,896 | ---- | C] (Microsoft Corporation) RsFx -> C:\Windows\SysNative\RsFx -> [2011/05/19 07:06:06 | 000,000,000 | ---D | C] Microsoft Visual Studio 9.0 -> C:\Program Files (x86)\Microsoft Visual Studio 9.0 -> [2011/05/19 07:05:28 | 000,000,000 | ---D | C] Microsoft Visual Studio 9.0 -> C:\Program Files\Microsoft Visual Studio 9.0 -> [2011/05/19 07:05:22 | 000,000,000 | ---D | C] 1033 -> C:\Windows\SysWow64\1033 -> [2011/05/19 07:05:11 | 000,000,000 | ---D | C] 1033 -> C:\Windows\SysNative\1033 -> [2011/05/19 07:05:11 | 000,000,000 | ---D | C] Microsoft.NET -> C:\Program Files\Microsoft.NET -> [2011/05/19 07:05:01 | 000,000,000 | ---D | C] Microsoft SQL Server 2008 -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 -> [2011/05/19 07:03:51 | 000,000,000 | ---D | C] Microsoft SQL Server -> C:\Program Files\Microsoft SQL Server -> [2011/05/19 07:03:10 | 000,000,000 | ---D | C] Microsoft SQL Server -> C:\Program Files (x86)\Microsoft SQL Server -> [2011/05/19 07:01:28 | 000,000,000 | ---D | C] Microsoft Synchronization Services -> C:\Program Files\Microsoft Synchronization Services -> [2011/05/19 07:01:22 | 000,000,000 | ---D | C] Microsoft SQL Server Compact Edition -> C:\Program Files\Microsoft SQL Server Compact Edition -> [2011/05/19 07:01:22 | 000,000,000 | ---D | C] Microsoft Synchronization Services -> C:\Program Files (x86)\Microsoft Synchronization Services -> [2011/05/19 07:01:19 | 000,000,000 | ---D | C] Visual Studio 2010 -> C:\Users\MCGA\Documents\Visual Studio 2010 -> [2011/05/19 07:01:02 | 000,000,000 | ---D | C] Microsoft Visual Studio 2010 Express -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express -> [2011/05/19 07:00:55 | 000,000,000 | ---D | C] Microsoft Visual Studio 10.0 -> C:\Program Files (x86)\Microsoft Visual Studio 10.0 -> [2011/05/19 06:59:51 | 000,000,000 | ---D | C] symbols -> C:\Windows\symbols -> [2011/05/19 06:59:12 | 000,000,000 | ---D | C] Microsoft Visual Studio 10.0 -> C:\Program Files\Microsoft Visual Studio 10.0 -> [2011/05/19 06:59:12 | 000,000,000 | ---D | C] Microsoft SDKs -> C:\Program Files (x86)\Microsoft SDKs -> [2011/05/19 06:59:11 | 000,000,000 | ---D | C] Microsoft Help Viewer -> C:\Program Files\Microsoft Help Viewer -> [2011/05/19 06:59:11 | 000,000,000 | ---D | C] {5BFCE112-42E8-468E-8230-0CFB45C2321E} -> C:\Users\MCGA\AppData\Local\{5BFCE112-42E8-468E-8230-0CFB45C2321E} -> [2011/05/18 17:14:57 | 000,000,000 | ---D | C] FlashPlayerCPLApp.cpl -> C:\Windows\SysWow64\FlashPlayerCPLApp.cpl -> [2011/05/17 19:24:40 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) {8011AFE6-E68A-4DEB-8BF0-9A04A1146585} -> C:\Users\MCGA\AppData\Local\{8011AFE6-E68A-4DEB-8BF0-9A04A1146585} -> [2011/05/17 19:23:30 | 000,000,000 | ---D | C] procexp.exe -> C:\Users\MCGA\Desktop\procexp.exe -> [2011/05/17 12:48:50 | 003,412,856 | ---- | C] (Sysinternals - www.sysinternals.com) {9D910AC1-935F-4319-963C-AE41DDE60396} -> C:\Users\MCGA\AppData\Local\{9D910AC1-935F-4319-963C-AE41DDE60396} -> [2011/05/17 05:49:13 | 000,000,000 | ---D | C] {B0E191C1-CD31-4036-B67B-9B86177F5986} -> C:\Users\MCGA\AppData\Local\{B0E191C1-CD31-4036-B67B-9B86177F5986} -> [2011/05/17 05:41:25 | 000,000,000 | ---D | C] PDF Writer -> C:\Users\MCGA\AppData\Roaming\PDF Writer -> [2011/05/16 20:08:13 | 000,000,000 | ---D | C] PDF Writer -> C:\Users\MCGA\AppData\Local\PDF Writer -> [2011/05/16 20:08:13 | 000,000,000 | ---D | C] PDF Writer -> C:\ProgramData\PDF Writer -> [2011/05/16 20:08:13 | 000,000,000 | ---D | C] {8DA6E8AC-7D37-4E38-AAA7-94BB066771CD} -> C:\Users\MCGA\AppData\Local\{8DA6E8AC-7D37-4E38-AAA7-94BB066771CD} -> [2011/05/16 15:26:43 | 000,000,000 | ---D | C] {498FDC2D-BCAA-4CFB-9952-C5503CC57F0B} -> C:\Users\MCGA\AppData\Local\{498FDC2D-BCAA-4CFB-9952-C5503CC57F0B} -> [2011/05/16 15:26:43 | 000,000,000 | ---D | C] {0ED28638-6A68-45E6-90ED-7F0FDF9C0DD6} -> C:\Users\MCGA\AppData\Local\{0ED28638-6A68-45E6-90ED-7F0FDF9C0DD6} -> [2011/05/15 20:59:40 | 000,000,000 | ---D | C] bzFlRdr.dll -> C:\Windows\SysWow64\bzFlRdr.dll -> [2011/05/15 14:38:52 | 000,227,840 | ---- | C] (Bullzip) bzpdfc.dll -> C:\Windows\SysWow64\bzpdfc.dll -> [2011/05/15 14:38:52 | 000,135,168 | ---- | C] (Bullzip) bzDCT.dll -> C:\Windows\SysWow64\bzDCT.dll -> [2011/05/15 14:38:52 | 000,103,424 | ---- | C] (Bullzip) Bullzip -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip -> [2011/05/15 14:38:52 | 000,000,000 | ---D | C] Bullzip -> C:\Program Files\Common Files\Bullzip -> [2011/05/15 14:38:52 | 000,000,000 | ---D | C] bzpdf.dll -> C:\Windows\SysNative\bzpdf.dll -> [2011/05/15 14:38:49 | 000,214,016 | ---- | C] (Bullzip) comdlg32.OCX -> C:\Windows\SysWow64\comdlg32.OCX -> [2011/05/15 14:38:45 | 000,140,288 | ---- | C] (Microsoft Corporation) Bullzip -> C:\Program Files\Bullzip -> [2011/05/15 14:38:45 | 000,000,000 | ---D | C] Microsoft Office -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office -> [2011/05/15 10:19:42 | 000,000,000 | ---D | C] Microsoft Works -> C:\Program Files (x86)\Microsoft Works -> [2011/05/15 10:18:58 | 000,000,000 | ---D | C] Microsoft Help -> C:\Users\MCGA\AppData\Local\Microsoft Help -> [2011/05/15 09:55:15 | 000,000,000 | ---D | C] Microsoft Help -> C:\ProgramData\Microsoft Help -> [2011/05/15 09:55:15 | 000,000,000 | ---D | C] ElevatedDiagnostics -> C:\Users\MCGA\AppData\Local\ElevatedDiagnostics -> [2011/05/15 09:21:51 | 000,000,000 | ---D | C] oxumss.sys -> C:\Windows\SysWow64\drivers\oxumss.sys -> [2011/05/15 09:17:43 | 000,210,968 | ---- | C] (OEM) IBUMSS.sys -> C:\Windows\SysWow64\drivers\IBUMSS.sys -> [2011/05/15 09:17:42 | 000,019,368 | R--- | C] (Prolific Technology Inc.) Western Digital Technologies -> C:\Program Files (x86)\Western Digital Technologies -> [2011/05/15 09:17:42 | 000,000,000 | ---D | C] IOSUBSYS -> C:\Windows\System\IOSUBSYS -> [2011/05/15 09:17:42 | 000,000,000 | ---D | C] Western Digital -> C:\Program Files\Western Digital -> [2011/05/15 09:12:11 | 000,000,000 | ---D | C] FETAC -> C:\Users\MCGA\Documents\FETAC -> [2011/05/15 09:07:00 | 000,000,000 | ---D | C] {10EFBF2B-7BB0-47AF-BDA7-37EF1A8DDD28} -> C:\Users\MCGA\AppData\Local\{10EFBF2B-7BB0-47AF-BDA7-37EF1A8DDD28} -> [2011/05/15 08:59:22 | 000,000,000 | ---D | C] Windows Live Writer -> C:\Users\MCGA\AppData\Roaming\Windows Live Writer -> [2011/05/15 08:59:11 | 000,000,000 | ---D | C] Windows Live Writer -> C:\Users\MCGA\AppData\Local\Windows Live Writer -> [2011/05/15 08:59:11 | 000,000,000 | ---D | C] {1349542C-EDBD-4329-9FB1-2A6353508FDA} -> C:\Users\MCGA\AppData\Local\{1349542C-EDBD-4329-9FB1-2A6353508FDA} -> [2011/05/15 08:57:16 | 000,000,000 | ---D | C] {346BC081-E913-4418-B9DE-5BCCF7C60D76} -> C:\Users\MCGA\AppData\Local\{346BC081-E913-4418-B9DE-5BCCF7C60D76} -> [2011/05/14 16:40:18 | 000,000,000 | ---D | C] Coupon Printer -> C:\Program Files (x86)\Coupon Printer -> [2011/05/13 12:18:40 | 000,000,000 | ---D | C] Coupon Printer -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupon Printer -> [2011/05/13 12:18:21 | 000,000,000 | ---D | C] {C092BE2E-E8FF-49E6-BC82-D43BF25F6380} -> C:\Users\MCGA\AppData\Local\{C092BE2E-E8FF-49E6-BC82-D43BF25F6380} -> [2011/05/13 11:02:08 | 000,000,000 | ---D | C] Pics -> C:\Users\MCGA\Desktop\Pics -> [2011/05/12 20:20:55 | 000,000,000 | ---D | C] VirtualizedApplications -> C:\ProgramData\VirtualizedApplications -> [2011/05/12 18:28:47 | 000,000,000 | ---D | C] Skype -> C:\Users\MCGA\AppData\Roaming\Skype -> [2011/05/12 16:29:40 | 000,000,000 | ---D | C] Skype -> C:\Program Files (x86)\Skype -> [2011/05/12 16:29:33 | 000,000,000 | R--D | C] Skype -> C:\ProgramData\Skype -> [2011/05/12 16:29:31 | 000,000,000 | ---D | C] MSOCache -> C:\MSOCache -> [2011/05/12 16:22:50 | 000,000,000 | RH-D | C] poqexec.exe -> C:\Windows\SysNative\poqexec.exe -> [2011/05/12 15:57:15 | 000,142,336 | ---- | C] (Microsoft Corporation) poqexec.exe -> C:\Windows\SysWow64\poqexec.exe -> [2011/05/12 15:57:15 | 000,123,904 | ---- | C] (Microsoft Corporation) SoftGrid Client -> C:\Users\MCGA\AppData\Roaming\SoftGrid Client -> [2011/05/11 21:48:10 | 000,000,000 | ---D | C] SoftGrid Client -> C:\Users\MCGA\AppData\Local\SoftGrid Client -> [2011/05/11 21:48:10 | 000,000,000 | ---D | C] Microsoft Office Starter (English) -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English) -> [2011/05/11 21:48:01 | 000,000,000 | ---D | C] DESIGNER -> C:\Program Files (x86)\Common Files\DESIGNER -> [2011/05/11 21:47:32 | 000,000,000 | ---D | C] Microsoft Office -> C:\Program Files\Microsoft Office -> [2011/05/11 21:47:31 | 000,000,000 | ---D | C] Microsoft Application Virtualization Client -> C:\Program Files (x86)\Microsoft Application Virtualization Client -> [2011/05/11 21:47:31 | 000,000,000 | ---D | C] TP -> C:\Users\MCGA\AppData\Roaming\TP -> [2011/05/11 21:47:22 | 000,000,000 | ---D | C] Job Specs -> C:\Users\MCGA\Desktop\Job Specs -> [2011/05/11 21:46:37 | 000,000,000 | ---D | C] jscript9.dll -> C:\Windows\SysWow64\jscript9.dll -> [2011/05/11 21:28:12 | 001,797,632 | ---- | C] (Microsoft Corporation) jscript.dll -> C:\Windows\SysWow64\jscript.dll -> [2011/05/11 21:28:12 | 000,716,800 | ---- | C] (Microsoft Corporation) msrating.dll -> C:\Windows\SysWow64\msrating.dll -> [2011/05/11 21:28:12 | 000,162,304 | ---- | C] (Microsoft Corporation) msls31.dll -> C:\Windows\SysWow64\msls31.dll -> [2011/05/11 21:28:12 | 000,161,792 | ---- | C] (Microsoft Corporation) ieakeng.dll -> C:\Windows\SysWow64\ieakeng.dll -> [2011/05/11 21:28:12 | 000,130,560 | ---- | C] (Microsoft Corporation) iepeers.dll -> C:\Windows\SysWow64\iepeers.dll -> [2011/05/11 21:28:12 | 000,118,784 | ---- | C] (Microsoft Corporation) IEAdvpack.dll -> C:\Windows\SysWow64\IEAdvpack.dll -> [2011/05/11 21:28:12 | 000,110,592 | ---- | C] (Microsoft Corporation) RegisterIEPKEYs.exe -> C:\Windows\SysWow64\RegisterIEPKEYs.exe -> [2011/05/11 21:28:12 | 000,074,752 | ---- | C] (Microsoft Corporation) msfeedssync.exe -> C:\Windows\SysWow64\msfeedssync.exe -> [2011/05/11 21:28:12 | 000,010,752 | ---- | C] (Microsoft Corporation) ieapfltr.dat -> C:\Windows\SysWow64\ieapfltr.dat -> [2011/05/11 21:28:11 | 003,695,416 | ---- | C] (Microsoft Corporation) ieapfltr.dat -> C:\Windows\SysNative\ieapfltr.dat -> [2011/05/11 21:28:11 | 003,695,416 | ---- | C] (Microsoft Corporation) jscript9.dll -> C:\Windows\SysNative\jscript9.dll -> [2011/05/11 21:28:11 | 002,303,488 | ---- | C] (Microsoft Corporation) inetcpl.cpl -> C:\Windows\SysNative\inetcpl.cpl -> [2011/05/11 21:28:11 | 001,492,992 | ---- | C] (Microsoft Corporation) inetcpl.cpl -> C:\Windows\SysWow64\inetcpl.cpl -> [2011/05/11 21:28:11 | 001,427,456 | ---- | C] (Microsoft Corporation) jscript.dll -> C:\Windows\SysNative\jscript.dll -> [2011/05/11 21:28:11 | 000,818,176 | ---- | C] (Microsoft Corporation) msfeeds.dll -> C:\Windows\SysNative\msfeeds.dll -> [2011/05/11 21:28:11 | 000,697,344 | ---- | C] (Microsoft Corporation) vbscript.dll -> C:\Windows\SysNative\vbscript.dll -> [2011/05/11 21:28:11 | 000,603,648 | ---- | C] (Microsoft Corporation) msfeeds.dll -> C:\Windows\SysWow64\msfeeds.dll -> [2011/05/11 21:28:11 | 000,580,608 | ---- | C] (Microsoft Corporation) ieapfltr.dll -> C:\Windows\SysNative\ieapfltr.dll -> [2011/05/11 21:28:11 | 000,534,528 | ---- | C] (Microsoft Corporation) dxtmsft.dll -> C:\Windows\SysNative\dxtmsft.dll -> [2011/05/11 21:28:11 | 000,452,608 | ---- | C] (Microsoft Corporation) html.iec -> C:\Windows\SysNative\html.iec -> [2011/05/11 21:28:11 | 000,448,512 | ---- | C] (Microsoft Corporation) ieapfltr.dll -> C:\Windows\SysWow64\ieapfltr.dll -> [2011/05/11 21:28:11 | 000,434,176 | ---- | C] (Microsoft Corporation) html.iec -> C:\Windows\SysWow64\html.iec -> [2011/05/11 21:28:11 | 000,367,104 | ---- | C] (Microsoft Corporation) dxtmsft.dll -> C:\Windows\SysWow64\dxtmsft.dll -> [2011/05/11 21:28:11 | 000,353,792 | ---- | C] (Microsoft Corporation) dxtrans.dll -> C:\Windows\SysNative\dxtrans.dll -> [2011/05/11 21:28:11 | 000,282,112 | ---- | C] (Microsoft Corporation) ieaksie.dll -> C:\Windows\SysNative\ieaksie.dll -> [2011/05/11 21:28:11 | 000,267,776 | ---- | C] (Microsoft Corporation) ieui.dll -> C:\Windows\SysNative\ieui.dll -> [2011/05/11 21:28:11 | 000,248,320 | ---- | C] (Microsoft Corporation) url.dll -> C:\Windows\SysNative\url.dll -> [2011/05/11 21:28:11 | 000,236,544 | ---- | C] (Microsoft Corporation) url.dll -> C:\Windows\SysWow64\url.dll -> [2011/05/11 21:28:11 | 000,231,936 | ---- | C] (Microsoft Corporation) ieaksie.dll -> C:\Windows\SysWow64\ieaksie.dll -> [2011/05/11 21:28:11 | 000,227,840 | ---- | C] (Microsoft Corporation) dxtrans.dll -> C:\Windows\SysWow64\dxtrans.dll -> [2011/05/11 21:28:11 | 000,223,232 | ---- | C] (Microsoft Corporation) msls31.dll -> C:\Windows\SysNative\msls31.dll -> [2011/05/11 21:28:11 | 000,222,208 | ---- | C] (Microsoft Corporation) msrating.dll -> C:\Windows\SysNative\msrating.dll -> [2011/05/11 21:28:11 | 000,197,120 | ---- | C] (Microsoft Corporation) ieui.dll -> C:\Windows\SysWow64\ieui.dll -> [2011/05/11 21:28:11 | 000,176,640 | ---- | C] (Microsoft Corporation) ieUnatt.exe -> C:\Windows\SysNative\ieUnatt.exe -> [2011/05/11 21:28:11 | 000,173,056 | ---- | C] (Microsoft Corporation) iexpress.exe -> C:\Windows\SysNative\iexpress.exe -> [2011/05/11 21:28:11 | 000,165,888 | ---- | C] (Microsoft Corporation) ieakui.dll -> C:\Windows\SysWow64\ieakui.dll -> [2011/05/11 21:28:11 | 000,163,840 | ---- | C] (Microsoft Corporation) ieakui.dll -> C:\Windows\SysNative\ieakui.dll -> [2011/05/11 21:28:11 | 000,163,840 | ---- | C] (Microsoft Corporation) wextract.exe -> C:\Windows\SysNative\wextract.exe -> [2011/05/11 21:28:11 | 000,160,256 | ---- | C] (Microsoft Corporation) ieakeng.dll -> C:\Windows\SysNative\ieakeng.dll -> [2011/05/11 21:28:11 | 000,160,256 | ---- | C] (Microsoft Corporation) wextract.exe -> C:\Windows\SysWow64\wextract.exe -> [2011/05/11 21:28:11 | 000,152,064 | ---- | C] (Microsoft Corporation) iexpress.exe -> C:\Windows\SysWow64\iexpress.exe -> [2011/05/11 21:28:11 | 000,150,528 | ---- | C] (Microsoft Corporation) occache.dll -> C:\Windows\SysNative\occache.dll -> [2011/05/11 21:28:11 | 000,149,504 | ---- | C] (Microsoft Corporation) iepeers.dll -> C:\Windows\SysNative\iepeers.dll -> [2011/05/11 21:28:11 | 000,145,920 | ---- | C] (Microsoft Corporation) ieUnatt.exe -> C:\Windows\SysWow64\ieUnatt.exe -> [2011/05/11 21:28:11 | 000,142,848 | ---- | C] (Microsoft Corporation) IEAdvpack.dll -> C:\Windows\SysNative\IEAdvpack.dll -> [2011/05/11 21:28:11 | 000,135,168 | ---- | C] (Microsoft Corporation) occache.dll -> C:\Windows\SysWow64\occache.dll -> [2011/05/11 21:28:11 | 000,123,392 | ---- | C] (Microsoft Corporation) admparse.dll -> C:\Windows\SysNative\admparse.dll -> [2011/05/11 21:28:11 | 000,114,176 | ---- | C] (Microsoft Corporation) iesysprep.dll -> C:\Windows\SysNative\iesysprep.dll -> [2011/05/11 21:28:11 | 000,111,616 | ---- | C] (Microsoft Corporation) inseng.dll -> C:\Windows\SysNative\inseng.dll -> [2011/05/11 21:28:11 | 000,103,936 | ---- | C] (Microsoft Corporation) admparse.dll -> C:\Windows\SysWow64\admparse.dll -> [2011/05/11 21:28:11 | 000,101,888 | ---- | C] (Microsoft Corporation) mshtmled.dll -> C:\Windows\SysNative\mshtmled.dll -> [2011/05/11 21:28:11 | 000,096,256 | ---- | C] (Microsoft Corporation) SetIEInstalledDate.exe -> C:\Windows\SysNative\SetIEInstalledDate.exe -> [2011/05/11 21:28:11 | 000,091,648 | ---- | C] (Microsoft Corporation) RegisterIEPKEYs.exe -> C:\Windows\SysNative\RegisterIEPKEYs.exe -> [2011/05/11 21:28:11 | 000,089,088 | ---- | C] (Microsoft Corporation) ie4uinit.exe -> C:\Windows\SysNative\ie4uinit.exe -> [2011/05/11 21:28:11 | 000,089,088 | ---- | C] (Microsoft Corporation) iesysprep.dll -> C:\Windows\SysWow64\iesysprep.dll -> [2011/05/11 21:28:11 | 000,086,528 | ---- | C] (Microsoft Corporation) iesetup.dll -> C:\Windows\SysNative\iesetup.dll -> [2011/05/11 21:28:11 | 000,085,504 | ---- | C] (Microsoft Corporation) icardie.dll -> C:\Windows\SysNative\icardie.dll -> [2011/05/11 21:28:11 | 000,082,432 | ---- | C] (Microsoft Corporation) inseng.dll -> C:\Windows\SysWow64\inseng.dll -> [2011/05/11 21:28:11 | 000,078,848 | ---- | C] (Microsoft Corporation) tdc.ocx -> C:\Windows\SysNative\tdc.ocx -> [2011/05/11 21:28:11 | 000,076,800 | ---- | C] (Microsoft Corporation) SetIEInstalledDate.exe -> C:\Windows\SysWow64\SetIEInstalledDate.exe -> [2011/05/11 21:28:11 | 000,076,800 | ---- | C] (Microsoft Corporation) iesetup.dll -> C:\Windows\SysWow64\iesetup.dll -> [2011/05/11 21:28:11 | 000,074,752 | ---- | C] (Microsoft Corporation) ie4uinit.exe -> C:\Windows\SysWow64\ie4uinit.exe -> [2011/05/11 21:28:11 | 000,074,240 | ---- | C] (Microsoft Corporation) mshtmled.dll -> C:\Windows\SysWow64\mshtmled.dll -> [2011/05/11 21:28:11 | 000,072,704 | ---- | C] (Microsoft Corporation) icardie.dll -> C:\Windows\SysWow64\icardie.dll -> [2011/05/11 21:28:11 | 000,066,048 | ---- | C] (Microsoft Corporation) pngfilt.dll -> C:\Windows\SysNative\pngfilt.dll -> [2011/05/11 21:28:11 | 000,065,024 | ---- | C] (Microsoft Corporation) tdc.ocx -> C:\Windows\SysWow64\tdc.ocx -> [2011/05/11 21:28:11 | 000,063,488 | ---- | C] (Microsoft Corporation) pngfilt.dll -> C:\Windows\SysWow64\pngfilt.dll -> [2011/05/11 21:28:11 | 000,054,272 | ---- | C] (Microsoft Corporation) imgutil.dll -> C:\Windows\SysNative\imgutil.dll -> [2011/05/11 21:28:11 | 000,049,664 | ---- | C] (Microsoft Corporation) mshtmler.dll -> C:\Windows\SysWow64\mshtmler.dll -> [2011/05/11 21:28:11 | 000,048,640 | ---- | C] (Microsoft Corporation) mshtmler.dll -> C:\Windows\SysNative\mshtmler.dll -> [2011/05/11 21:28:11 | 000,048,640 | ---- | C] (Microsoft Corporation) iernonce.dll -> C:\Windows\SysNative\iernonce.dll -> [2011/05/11 21:28:11 | 000,039,936 | ---- | C] (Microsoft Corporation) imgutil.dll -> C:\Windows\SysWow64\imgutil.dll -> [2011/05/11 21:28:11 | 000,035,840 | ---- | C] (Microsoft Corporation) iernonce.dll -> C:\Windows\SysWow64\iernonce.dll -> [2011/05/11 21:28:11 | 000,031,744 | ---- | C] (Microsoft Corporation) licmgr10.dll -> C:\Windows\SysNative\licmgr10.dll -> [2011/05/11 21:28:11 | 000,030,720 | ---- | C] (Microsoft Corporation) licmgr10.dll -> C:\Windows\SysWow64\licmgr10.dll -> [2011/05/11 21:28:11 | 000,023,552 | ---- | C] (Microsoft Corporation) mshta.exe -> C:\Windows\SysNative\mshta.exe -> [2011/05/11 21:28:11 | 000,012,288 | ---- | C] (Microsoft Corporation) msfeedssync.exe -> C:\Windows\SysNative\msfeedssync.exe -> [2011/05/11 21:28:11 | 000,010,752 | ---- | C] (Microsoft Corporation) ntoskrnl.exe -> C:\Windows\SysNative\ntoskrnl.exe -> [2011/05/11 20:02:32 | 005,509,504 | ---- | C] (Microsoft Corporation) ntkrnlpa.exe -> C:\Windows\SysWow64\ntkrnlpa.exe -> [2011/05/11 20:02:31 | 003,957,632 | ---- | C] (Microsoft Corporation) ntoskrnl.exe -> C:\Windows\SysWow64\ntoskrnl.exe -> [2011/05/11 20:02:31 | 003,901,824 | ---- | C] (Microsoft Corporation) usbport.sys -> C:\Windows\SysNative\drivers\usbport.sys -> [2011/05/11 20:02:15 | 000,324,608 | ---- | C] (Microsoft Corporation) usbd.sys -> C:\Windows\SysNative\drivers\usbd.sys -> [2011/05/11 20:02:15 | 000,007,936 | ---- | C] (Microsoft Corporation) {CF8400C6-40C1-4961-9531-A71D82D7BAA3} -> C:\Users\MCGA\AppData\Local\{CF8400C6-40C1-4961-9531-A71D82D7BAA3} -> [2011/05/11 19:56:18 | 000,000,000 | ---D | C] Adobe -> C:\Users\MCGA\AppData\Local\Adobe -> [2011/05/10 22:42:40 | 000,000,000 | ---D | C] {E7E62138-9877-4A6E-92DE-4EA5DF20D185} -> C:\Users\MCGA\AppData\Local\{E7E62138-9877-4A6E-92DE-4EA5DF20D185} -> [2011/05/10 22:13:06 | 000,000,000 | ---D | C] Mozilla -> C:\Users\MCGA\AppData\Roaming\Mozilla -> [2011/05/10 20:20:37 | 000,000,000 | ---D | C] Mozilla -> C:\Users\MCGA\AppData\Local\Mozilla -> [2011/05/10 20:20:37 | 000,000,000 | ---D | C] Mozilla Firefox -> C:\Program Files (x86)\Mozilla Firefox -> [2011/05/10 20:11:51 | 000,000,000 | ---D | C] Microsoft.NET -> C:\Program Files (x86)\Microsoft.NET -> [2011/05/10 11:31:46 | 000,000,000 | ---D | C] logishrd -> C:\Program Files\Common Files\logishrd -> [2011/05/10 11:24:59 | 000,000,000 | ---D | C] en -> C:\Windows\en -> [2011/05/09 21:05:27 | 000,000,000 | ---D | C] Microsoft SQL Server Compact Edition -> C:\Program Files (x86)\Microsoft SQL Server Compact Edition -> [2011/05/09 21:04:49 | 000,000,000 | ---D | C] Windows Live -> C:\Program Files\Windows Live -> [2011/05/09 21:03:39 | 000,000,000 | ---D | C] Mobile Partner -> C:\Program Files (x86)\Mobile Partner -> [2011/05/09 20:53:24 | 000,000,000 | ---D | C] Diagnostics -> C:\Users\MCGA\AppData\Local\Diagnostics -> [2011/05/09 20:51:55 | 000,000,000 | ---D | C] MSXML 4.0 -> C:\Program Files (x86)\MSXML 4.0 -> [2011/05/09 09:34:47 | 000,000,000 | ---D | C] Minidump -> C:\Windows\Minidump -> [2011/05/08 17:30:30 | 000,000,000 | ---D | C] Tracing -> C:\Users\MCGA\Tracing -> [2011/05/08 16:49:11 | 000,000,000 | ---D | C] Google -> C:\Users\MCGA\AppData\Roaming\Google -> [2011/05/08 15:12:57 | 000,000,000 | ---D | C] Google -> C:\Users\MCGA\AppData\Local\Google -> [2011/05/08 15:12:57 | 000,000,000 | ---D | C] Adobe -> C:\Users\MCGA\AppData\Roaming\Adobe -> [2011/05/08 03:56:47 | 000,000,000 | ---D | C] DWrite.dll -> C:\Windows\SysNative\DWrite.dll -> [2011/05/08 03:41:06 | 001,540,608 | ---- | C] (Microsoft Corporation) DWrite.dll -> C:\Windows\SysWow64\DWrite.dll -> [2011/05/08 03:41:06 | 001,074,176 | ---- | C] (Microsoft Corporation) d2d1.dll -> C:\Windows\SysNative\d2d1.dll -> [2011/05/08 03:41:06 | 000,902,656 | ---- | C] (Microsoft Corporation) d2d1.dll -> C:\Windows\SysWow64\d2d1.dll -> [2011/05/08 03:41:06 | 000,739,840 | ---- | C] (Microsoft Corporation) Wat -> C:\Windows\SysWow64\Wat -> [2011/05/08 03:32:27 | 000,000,000 | ---D | C] Wat -> C:\Windows\SysNative\Wat -> [2011/05/08 03:32:27 | 000,000,000 | ---D | C] NAPP_Dism_Log -> C:\Windows\NAPP_Dism_Log -> [2011/05/07 22:39:16 | 000,000,000 | ---D | C] fssfltr.sys -> C:\Windows\SysNative\drivers\fssfltr.sys -> [2011/05/07 17:34:50 | 000,048,488 | ---- | C] (Microsoft Corporation) DRVSTORE -> C:\Windows\SysNative\DRVSTORE -> [2011/05/07 17:34:50 | 000,000,000 | ---D | C] d3dx10_42.dll -> C:\Windows\SysNative\d3dx10_42.dll -> [2011/05/07 17:34:10 | 000,523,088 | ---- | C] (Microsoft Corporation) XAudio2_5.dll -> C:\Windows\SysWow64\XAudio2_5.dll -> [2011/05/07 17:34:10 | 000,515,416 | ---- | C] (Microsoft Corporation) d3dx10_42.dll -> C:\Windows\SysWow64\d3dx10_42.dll -> [2011/05/07 17:34:10 | 000,453,456 | ---- | C] (Microsoft Corporation) XAPOFX1_3.dll -> C:\Windows\SysWow64\XAPOFX1_3.dll -> [2011/05/07 17:34:10 | 000,069,464 | ---- | C] (Microsoft Corporation) Microsoft Silverlight -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight -> [2011/05/07 17:34:02 | 000,000,000 | ---D | C] Windows Live -> C:\Users\MCGA\AppData\Local\Windows Live -> [2011/05/07 17:32:21 | 000,000,000 | ---D | C] dfshim.dll -> C:\Windows\SysNative\dfshim.dll -> [2011/05/07 17:29:18 | 001,942,856 | ---- | C] (Microsoft Corporation) dfshim.dll -> C:\Windows\SysWow64\dfshim.dll -> [2011/05/07 17:29:18 | 001,130,824 | ---- | C] (Microsoft Corporation) PresentationHost.exe -> C:\Windows\SysNative\PresentationHost.exe -> [2011/05/07 17:29:18 | 000,320,352 | ---- | C] (Microsoft Corporation) PresentationHost.exe -> C:\Windows\SysWow64\PresentationHost.exe -> [2011/05/07 17:29:18 | 000,295,264 | ---- | C] (Microsoft Corporation) PresentationHostProxy.dll -> C:\Windows\SysNative\PresentationHostProxy.dll -> [2011/05/07 17:29:18 | 000,109,912 | ---- | C] (Microsoft Corporation) PresentationHostProxy.dll -> C:\Windows\SysWow64\PresentationHostProxy.dll -> [2011/05/07 17:29:18 | 000,099,176 | ---- | C] (Microsoft Corporation) netfxperf.dll -> C:\Windows\SysWow64\netfxperf.dll -> [2011/05/07 17:29:18 | 000,049,472 | ---- | C] (Microsoft Corporation) netfxperf.dll -> C:\Windows\SysNative\netfxperf.dll -> [2011/05/07 17:29:18 | 000,048,960 | ---- | C] (Microsoft Corporation) browserchoice.exe -> C:\Windows\SysNative\browserchoice.exe -> [2011/05/07 17:28:59 | 000,294,912 | ---- | C] (Microsoft Corporation) esent.dll -> C:\Windows\SysNative\esent.dll -> [2011/05/07 17:22:40 | 002,566,144 | ---- | C] (Microsoft Corporation) esent.dll -> C:\Windows\SysWow64\esent.dll -> [2011/05/07 17:22:40 | 001,686,016 | ---- | C] (Microsoft Corporation) amdsata.sys -> C:\Windows\SysNative\drivers\amdsata.sys -> [2011/05/07 17:22:40 | 000,107,904 | ---- | C] (Advanced Micro Devices) storport.sys -> C:\Windows\SysNative\drivers\storport.sys -> [2011/05/07 17:22:39 | 000,187,264 | ---- | C] (Microsoft Corporation) fsutil.exe -> C:\Windows\SysNative\fsutil.exe -> [2011/05/07 17:22:39 | 000,096,768 | ---- | C] (Microsoft Corporation) fsutil.exe -> C:\Windows\SysWow64\fsutil.exe -> [2011/05/07 17:22:39 | 000,074,240 | ---- | C] (Microsoft Corporation) amdxata.sys -> C:\Windows\SysNative\drivers\amdxata.sys -> [2011/05/07 17:22:39 | 000,027,008 | ---- | C] (Advanced Micro Devices) explorer.exe -> C:\Windows\explorer.exe -> [2011/05/07 17:22:16 | 002,870,272 | ---- | C] (Microsoft Corporation) explorer.exe -> C:\Windows\SysWow64\explorer.exe -> [2011/05/07 17:22:15 | 002,614,784 | ---- | C] (Microsoft Corporation) XpsGdiConverter.dll -> C:\Windows\SysNative\XpsGdiConverter.dll -> [2011/05/07 17:22:13 | 000,476,160 | ---- | C] (Microsoft Corporation) XpsGdiConverter.dll -> C:\Windows\SysWow64\XpsGdiConverter.dll -> [2011/05/07 17:22:13 | 000,288,256 | ---- | C] (Microsoft Corporation) XpsPrint.dll -> C:\Windows\SysNative\XpsPrint.dll -> [2011/05/07 17:22:11 | 000,662,528 | ---- | C] (Microsoft Corporation) XpsPrint.dll -> C:\Windows\SysWow64\XpsPrint.dll -> [2011/05/07 17:22:11 | 000,442,880 | ---- | C] (Microsoft Corporation) prevhost.exe -> C:\Windows\SysNative\prevhost.exe -> [2011/05/07 17:21:44 | 000,031,232 | ---- | C] (Microsoft Corporation) prevhost.exe -> C:\Windows\SysWow64\prevhost.exe -> [2011/05/07 17:21:43 | 000,031,232 | ---- | C] (Microsoft Corporation) winsrv.dll -> C:\Windows\SysNative\winsrv.dll -> [2011/05/07 17:20:19 | 000,214,016 | ---- | C] (Microsoft Corporation) wmpmde.dll -> C:\Windows\SysNative\wmpmde.dll -> [2011/05/07 17:19:29 | 001,024,512 | ---- | C] (Microsoft Corporation) wmpmde.dll -> C:\Windows\SysWow64\wmpmde.dll -> [2011/05/07 17:19:29 | 000,738,816 | ---- | C] (Microsoft Corporation) atmfd.dll -> C:\Windows\SysNative\atmfd.dll -> [2011/05/07 17:19:17 | 000,367,104 | ---- | C] (Adobe Systems Incorporated) atmfd.dll -> C:\Windows\SysWow64\atmfd.dll -> [2011/05/07 17:19:17 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) atmlib.dll -> C:\Windows\SysNative\atmlib.dll -> [2011/05/07 17:19:17 | 000,046,080 | ---- | C] (Adobe Systems) atmlib.dll -> C:\Windows\SysWow64\atmlib.dll -> [2011/05/07 17:19:17 | 000,034,304 | ---- | C] (Adobe Systems) webio.dll -> C:\Windows\SysNative\webio.dll -> [2011/05/07 17:19:15 | 000,395,776 | ---- | C] (Microsoft Corporation) webio.dll -> C:\Windows\SysWow64\webio.dll -> [2011/05/07 17:19:15 | 000,314,368 | ---- | C] (Microsoft Corporation) d3d10warp.dll -> C:\Windows\SysNative\d3d10warp.dll -> [2011/05/07 17:19:12 | 001,837,568 | ---- | C] (Microsoft Corporation) mf.dll -> C:\Windows\SysNative\mf.dll -> [2011/05/07 17:19:11 | 004,068,864 | ---- | C] (Microsoft Corporation) mf.dll -> C:\Windows\SysWow64\mf.dll -> [2011/05/07 17:19:11 | 003,181,568 | ---- | C] (Microsoft Corporation) WMVDECOD.DLL -> C:\Windows\SysNative\WMVDECOD.DLL -> [2011/05/07 17:19:11 | 001,888,256 | ---- | C] (Microsoft Corporation) d3d10warp.dll -> C:\Windows\SysWow64\d3d10warp.dll -> [2011/05/07 17:19:11 | 001,170,944 | ---- | C] (Microsoft Corporation) ExplorerFrame.dll -> C:\Windows\SysNative\ExplorerFrame.dll -> [2011/05/07 17:19:10 | 001,863,680 | ---- | C] (Microsoft Corporation) WMVDECOD.DLL -> C:\Windows\SysWow64\WMVDECOD.DLL -> [2011/05/07 17:19:10 | 001,619,456 | ---- | C] (Microsoft Corporation) ExplorerFrame.dll -> C:\Windows\SysWow64\ExplorerFrame.dll -> [2011/05/07 17:19:10 | 001,495,040 | ---- | C] (Microsoft Corporation) d3d10_1core.dll -> C:\Windows\SysNative\d3d10_1core.dll -> [2011/05/07 17:19:10 | 000,320,512 | ---- | C] (Microsoft Corporation) dxgmms1.sys -> C:\Windows\SysNative\drivers\dxgmms1.sys -> [2011/05/07 17:19:10 | 000,265,088 | ---- | C] (Microsoft Corporation) mfreadwrite.dll -> C:\Windows\SysNative\mfreadwrite.dll -> [2011/05/07 17:19:10 | 000,257,024 | ---- | C] (Microsoft Corporation) XpsRasterService.dll -> C:\Windows\SysNative\XpsRasterService.dll -> [2011/05/07 17:19:10 | 000,229,888 | ---- | C] (Microsoft Corporation) d3d10_1core.dll -> C:\Windows\SysWow64\d3d10_1core.dll -> [2011/05/07 17:19:10 | 000,218,624 | ---- | C] (Microsoft Corporation) mfps.dll -> C:\Windows\SysNative\mfps.dll -> [2011/05/07 17:19:10 | 000,206,848 | ---- | C] (Microsoft Corporation) d3d10_1.dll -> C:\Windows\SysNative\d3d10_1.dll -> [2011/05/07 17:19:10 | 000,197,120 | ---- | C] (Microsoft Corporation) mfreadwrite.dll -> C:\Windows\SysWow64\mfreadwrite.dll -> [2011/05/07 17:19:10 | 000,196,608 | ---- | C] (Microsoft Corporation) d3d10_1.dll -> C:\Windows\SysWow64\d3d10_1.dll -> [2011/05/07 17:19:10 | 000,161,792 | ---- | C] (Microsoft Corporation) cdd.dll -> C:\Windows\SysNative\cdd.dll -> [2011/05/07 17:19:10 | 000,144,384 | ---- | C] (Microsoft Corporation) XpsRasterService.dll -> C:\Windows\SysWow64\XpsRasterService.dll -> [2011/05/07 17:19:10 | 000,135,168 | ---- | C] (Microsoft Corporation) msdri.dll -> C:\Windows\SysNative\msdri.dll -> [2011/05/07 17:19:02 | 000,552,960 | ---- | C] (Microsoft Corporation) MSNP.ax -> C:\Windows\SysNative\MSNP.ax -> [2011/05/07 17:19:02 | 000,288,256 | ---- | C] (Microsoft Corporation) MSNP.ax -> C:\Windows\SysWow64\MSNP.ax -> [2011/05/07 17:19:02 | 000,204,288 | ---- | C] (Microsoft Corporation) sbe.dll -> C:\Windows\SysNative\sbe.dll -> [2011/05/07 17:18:59 | 001,118,720 | ---- | C] (Microsoft Corporation) CPFilters.dll -> C:\Windows\SysNative\CPFilters.dll -> [2011/05/07 17:18:59 | 000,961,024 | ---- | C] (Microsoft Corporation) sbe.dll -> C:\Windows\SysWow64\sbe.dll -> [2011/05/07 17:18:59 | 000,850,432 | ---- | C] (Microsoft Corporation) EncDec.dll -> C:\Windows\SysNative\EncDec.dll -> [2011/05/07 17:18:59 | 000,723,968 | ---- | C] (Microsoft Corporation) CPFilters.dll -> C:\Windows\SysWow64\CPFilters.dll -> [2011/05/07 17:18:59 | 000,642,048 | ---- | C] (Microsoft Corporation) EncDec.dll -> C:\Windows\SysWow64\EncDec.dll -> [2011/05/07 17:18:59 | 000,534,528 | ---- | C] (Microsoft Corporation) mpg2splt.ax -> C:\Windows\SysNative\mpg2splt.ax -> [2011/05/07 17:18:59 | 000,259,072 | ---- | C] (Microsoft Corporation) mpg2splt.ax -> C:\Windows\SysWow64\mpg2splt.ax -> [2011/05/07 17:18:59 | 000,199,680 | ---- | C] (Microsoft Corporation) taskschd.dll -> C:\Windows\SysNative\taskschd.dll -> [2011/05/07 17:18:50 | 001,169,408 | ---- | C] (Microsoft Corporation) wmicmiplugin.dll -> C:\Windows\SysNative\wmicmiplugin.dll -> [2011/05/07 17:18:50 | 000,524,288 | ---- | C] (Microsoft Corporation) taskeng.exe -> C:\Windows\SysNative\taskeng.exe -> [2011/05/07 17:18:50 | 000,464,384 | ---- | C] (Microsoft Corporation) taskschd.dll -> C:\Windows\SysWow64\taskschd.dll -> [2011/05/07 17:18:49 | 000,496,128 | ---- | C] (Microsoft Corporation) taskcomp.dll -> C:\Windows\SysNative\taskcomp.dll -> [2011/05/07 17:18:49 | 000,473,600 | ---- | C] (Microsoft Corporation) taskcomp.dll -> C:\Windows\SysWow64\taskcomp.dll -> [2011/05/07 17:18:49 | 000,305,152 | ---- | C] (Microsoft Corporation) schtasks.exe -> C:\Windows\SysNative\schtasks.exe -> [2011/05/07 17:18:49 | 000,285,696 | ---- | C] (Microsoft Corporation) schtasks.exe -> C:\Windows\SysWow64\schtasks.exe -> [2011/05/07 17:18:49 | 000,179,712 | ---- | C] (Microsoft Corporation) upnp.dll -> C:\Windows\SysNative\upnp.dll -> [2011/05/07 17:18:42 | 000,264,192 | ---- | C] (Microsoft Corporation) upnp.dll -> C:\Windows\SysWow64\upnp.dll -> [2011/05/07 17:18:42 | 000,204,288 | ---- | C] (Microsoft Corporation) davclnt.dll -> C:\Windows\SysNative\davclnt.dll -> [2011/05/07 17:18:41 | 000,100,864 | ---- | C] (Microsoft Corporation) davclnt.dll -> C:\Windows\SysWow64\davclnt.dll -> [2011/05/07 17:18:41 | 000,080,384 | ---- | C] (Microsoft Corporation) wscapi.dll -> C:\Windows\SysNative\wscapi.dll -> [2011/05/07 17:18:41 | 000,062,976 | ---- | C] (Microsoft Corporation) wscapi.dll -> C:\Windows\SysWow64\wscapi.dll -> [2011/05/07 17:18:41 | 000,051,200 | ---- | C] (Microsoft Corporation) slwga.dll -> C:\Windows\SysNative\slwga.dll -> [2011/05/07 17:18:41 | 000,015,360 | ---- | C] (Microsoft Corporation) slwga.dll -> C:\Windows\SysWow64\slwga.dll -> [2011/05/07 17:18:41 | 000,014,336 | ---- | C] (Microsoft Corporation) t2embed.dll -> C:\Windows\SysNative\t2embed.dll -> [2011/05/07 17:18:38 | 000,148,992 | ---- | C] (Microsoft Corporation) t2embed.dll -> C:\Windows\SysWow64\t2embed.dll -> [2011/05/07 17:18:38 | 000,109,056 | ---- | C] (Microsoft Corporation) mfc42.dll -> C:\Windows\SysNative\mfc42.dll -> [2011/05/07 17:18:36 | 001,395,712 | ---- | C] (Microsoft Corporation) mfc42u.dll -> C:\Windows\SysNative\mfc42u.dll -> [2011/05/07 17:18:36 | 001,359,872 | ---- | C] (Microsoft Corporation) mfc42u.dll -> C:\Windows\SysWow64\mfc42u.dll -> [2011/05/07 17:18:36 | 001,164,288 | ---- | C] (Microsoft Corporation) mfc42.dll -> C:\Windows\SysWow64\mfc42.dll -> [2011/05/07 17:18:36 | 001,137,664 | ---- | C] (Microsoft Corporation) ole32.dll -> C:\Windows\SysNative\ole32.dll -> [2011/05/07 17:18:29 | 002,085,376 | ---- | C] (Microsoft Corporation) dnsapi.dll -> C:\Windows\SysNative\dnsapi.dll -> [2011/05/07 17:18:24 | 000,356,352 | ---- | C] (Microsoft Corporation) dnscacheugc.exe -> C:\Windows\SysNative\dnscacheugc.exe -> [2011/05/07 17:18:24 | 000,030,208 | ---- | C] (Microsoft Corporation) dnscacheugc.exe -> C:\Windows\SysWow64\dnscacheugc.exe -> [2011/05/07 17:18:23 | 000,028,672 | ---- | C] (Microsoft Corporation) oleaut32.dll -> C:\Windows\SysNative\oleaut32.dll -> [2011/05/07 17:18:05 | 000,861,184 | ---- | C] (Microsoft Corporation) comctl32.dll -> C:\Windows\SysNative\comctl32.dll -> [2011/05/07 17:18:03 | 000,633,856 | ---- | C] (Microsoft Corporation) StructuredQuery.dll -> C:\Windows\SysNative\StructuredQuery.dll -> [2011/05/07 17:18:02 | 000,483,840 | ---- | C] (Microsoft Corporation) iccvid.dll -> C:\Windows\SysWow64\iccvid.dll -> [2011/05/07 17:18:00 | 000,082,944 | ---- | C] (Radius Inc.) rtutils.dll -> C:\Windows\SysNative\rtutils.dll -> [2011/05/07 17:17:51 | 000,052,224 | ---- | C] (Microsoft Corporation) rtutils.dll -> C:\Windows\SysWow64\rtutils.dll -> [2011/05/07 17:17:51 | 000,037,376 | ---- | C] (Microsoft Corporation) winload.efi -> C:\Windows\SysNative\winload.efi -> [2011/05/07 17:17:02 | 000,640,896 | ---- | C] (Microsoft Corporation) winload.exe -> C:\Windows\SysNative\winload.exe -> [2011/05/07 17:17:02 | 000,603,976 | ---- | C] (Microsoft Corporation) winresume.efi -> C:\Windows\SysNative\winresume.efi -> [2011/05/07 17:17:02 | 000,556,928 | ---- | C] (Microsoft Corporation) winresume.exe -> C:\Windows\SysNative\winresume.exe -> [2011/05/07 17:17:02 | 000,518,160 | ---- | C] (Microsoft Corporation) kdusb.dll -> C:\Windows\SysNative\kdusb.dll -> [2011/05/07 17:17:02 | 000,020,352 | ---- | C] (Microsoft Corporation) kd1394.dll -> C:\Windows\SysNative\kd1394.dll -> [2011/05/07 17:17:02 | 000,019,328 | ---- | C] (Microsoft Corporation) kdcom.dll -> C:\Windows\SysNative\kdcom.dll -> [2011/05/07 17:17:02 | 000,017,792 | ---- | C] (Microsoft Corporation) lsasrv.dll -> C:\Windows\SysNative\lsasrv.dll -> [2011/05/07 17:16:56 | 001,446,912 | ---- | C] (Microsoft Corporation) ntdll.dll -> C:\Windows\SysNative\ntdll.dll -> [2011/05/07 17:16:53 | 001,739,176 | ---- | C] (Microsoft Corporation) mstscax.dll -> C:\Windows\SysNative\mstscax.dll -> [2011/05/07 17:16:51 | 003,138,048 | ---- | C] (Microsoft Corporation) mstscax.dll -> C:\Windows\SysWow64\mstscax.dll -> [2011/05/07 17:16:51 | 002,690,560 | ---- | C] (Microsoft Corporation) mstsc.exe -> C:\Windows\SysWow64\mstsc.exe -> [2011/05/07 17:16:51 | 001,034,240 | ---- | C] (Microsoft Corporation) mstsc.exe -> C:\Windows\SysNative\mstsc.exe -> [2011/05/07 17:16:50 | 001,097,216 | ---- | C] (Microsoft Corporation) odbc32.dll -> C:\Windows\SysNative\odbc32.dll -> [2011/05/07 17:16:49 | 000,720,896 | ---- | C] (Microsoft Corporation) odbc32.dll -> C:\Windows\SysWow64\odbc32.dll -> [2011/05/07 17:16:49 | 000,573,440 | ---- | C] (Microsoft Corporation) wmp.dll -> C:\Windows\SysNative\wmp.dll -> [2011/05/07 17:16:44 | 014,627,840 | ---- | C] (Microsoft Corporation) wmp.dll -> C:\Windows\SysWow64\wmp.dll -> [2011/05/07 17:16:42 | 011,406,848 | ---- | C] (Microsoft Corporation) wmploc.DLL -> C:\Windows\SysNative\wmploc.DLL -> [2011/05/07 17:16:41 | 012,625,920 | ---- | C] (Microsoft Corporation) wmploc.DLL -> C:\Windows\SysWow64\wmploc.DLL -> [2011/05/07 17:16:41 | 012,625,408 | ---- | C] (Microsoft Corporation) mfc40.dll -> C:\Windows\SysWow64\mfc40.dll -> [2011/05/07 17:16:40 | 000,954,752 | ---- | C] (Microsoft Corporation) mfc40u.dll -> C:\Windows\SysWow64\mfc40u.dll -> [2011/05/07 17:16:40 | 000,954,288 | ---- | C] (Microsoft Corporation) FXSCOVER.exe -> C:\Windows\SysNative\FXSCOVER.exe -> [2011/05/07 17:16:37 | 000,267,776 | ---- | C] (Microsoft Corporation) consent.exe -> C:\Windows\SysNative\consent.exe -> [2011/05/07 17:16:35 | 000,112,000 | ---- | C] (Microsoft Corporation) sscore.dll -> C:\Windows\SysWow64\sscore.dll -> [2011/05/07 17:12:41 | 000,009,728 | ---- | C] (Microsoft Corporation) wintrust.dll -> C:\Windows\SysNative\wintrust.dll -> [2011/05/07 17:10:47 | 000,220,672 | ---- | C] (Microsoft Corporation) wintrust.dll -> C:\Windows\SysWow64\wintrust.dll -> [2011/05/07 17:10:47 | 000,172,032 | ---- | C] (Microsoft Corporation) cabview.dll -> C:\Windows\SysNative\cabview.dll -> [2011/05/07 17:10:46 | 000,139,264 | ---- | C] (Microsoft Corporation) cabview.dll -> C:\Windows\SysWow64\cabview.dll -> [2011/05/07 17:10:46 | 000,132,608 | ---- | C] (Microsoft Corporation) athurx.sys -> C:\Windows\SysNative\drivers\athurx.sys -> [2011/05/07 17:04:05 | 001,849,856 | ---- | C] (Atheros Communications, Inc.) InstallShield -> C:\Users\MCGA\AppData\Roaming\InstallShield -> [2011/05/07 17:03:54 | 000,000,000 | ---D | C] Macromedia -> C:\Users\MCGA\AppData\Roaming\Macromedia -> [2011/05/07 16:24:40 | 000,000,000 | ---D | C] d3dx9_32.dll -> C:\Windows\SysNative\d3dx9_32.dll -> [2011/05/07 16:23:22 | 004,398,360 | ---- | C] (Microsoft Corporation) d3dx9_32.dll -> C:\Windows\SysWow64\d3dx9_32.dll -> [2011/05/07 16:23:22 | 003,426,072 | ---- | C] (Microsoft Corporation) microsoft -> C:\Users\Public\Documents\microsoft -> [2011/05/07 16:22:24 | 000,000,000 | ---D | C] Windows Live -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live -> [2011/05/07 16:22:14 | 000,000,000 | R--D | C] Windows Live -> C:\Program Files (x86)\Windows Live -> [2011/05/07 16:22:04 | 000,000,000 | ---D | C] PCHEALTH -> C:\Windows\PCHEALTH -> [2011/05/07 16:21:55 | 000,000,000 | ---D | C] Windows Live -> C:\Program Files (x86)\Common Files\Windows Live -> [2011/05/07 16:21:22 | 000,000,000 | ---D | C] Microsoft Office -> C:\Program Files (x86)\Microsoft Office -> [2011/05/07 16:20:44 | 000,000,000 | ---D | C] msxml4a.dll -> C:\Windows\SysWow64\msxml4a.dll -> [2011/05/07 16:18:40 | 000,044,544 | ---- | C] (Microsoft Corporation) Acer Arcade Deluxe -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Deluxe -> [2011/05/07 16:18:12 | 000,000,000 | R--D | C] Cyberlink -> C:\Users\MCGA\AppData\Local\Cyberlink -> [2011/05/07 16:16:58 | 000,000,000 | ---D | C] Cyberlink -> C:\Program Files (x86)\Cyberlink -> [2011/05/07 16:16:57 | 000,000,000 | ---D | C] Haali Media Splitter -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter -> [2011/05/07 16:16:12 | 000,000,000 | ---D | C] Haali Media Splitter -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter -> [2011/05/07 16:16:12 | 000,000,000 | ---D | C] Haali -> C:\Program Files (x86)\Haali -> [2011/05/07 16:16:12 | 000,000,000 | ---D | C] Acer Arcade Deluxe -> C:\Program Files (x86)\Acer Arcade Deluxe -> [2011/05/07 16:16:03 | 000,000,000 | ---D | C] CyberLink -> C:\ProgramData\CyberLink -> [2011/05/07 16:16:01 | 000,000,000 | ---D | C] Temp -> C:\ProgramData\Temp -> [2011/05/07 16:16:00 | 000,000,000 | ---D | C] Driver Cache -> C:\Windows\Driver Cache -> [2011/05/07 16:12:55 | 000,000,000 | ---D | C] OEM -> C:\Users\MCGA\AppData\Roaming\OEM -> [2011/05/07 16:12:50 | 000,000,000 | ---D | C] AcerSystem -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem -> [2011/05/07 16:12:42 | 000,000,000 | ---D | C] EgisTec IPS -> C:\Users\MCGA\AppData\Local\EgisTec IPS -> [2011/05/07 16:12:41 | 000,000,000 | ---D | C] book -> C:\book -> [2011/05/07 16:12:41 | 000,000,000 | ---D | C] Startup -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup -> [2011/05/07 16:12:29 | 000,000,000 | R--D | C] Searches -> C:\Users\MCGA\Searches -> [2011/05/07 16:12:29 | 000,000,000 | R--D | C] Administrative Tools -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools -> [2011/05/07 16:12:29 | 000,000,000 | R--D | C] User Pinned -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned -> [2011/05/07 16:12:28 | 000,000,000 | -H-D | C] Identities -> C:\Users\MCGA\AppData\Roaming\Identities -> [2011/05/07 16:12:22 | 000,000,000 | ---D | C] Contacts -> C:\Users\MCGA\Contacts -> [2011/05/07 16:12:19 | 000,000,000 | R--D | C] VirtualStore -> C:\Users\MCGA\AppData\Local\VirtualStore -> [2011/05/07 16:12:18 | 000,000,000 | ---D | C] OEM -> C:\Program Files (x86)\OEM -> [2011/05/07 13:57:27 | 000,000,000 | ---D | C] Acer Accessory Store -> C:\Program Files\Acer Accessory Store -> [2011/05/07 13:57:18 | 000,000,000 | ---D | C] Microsoft -> C:\Users\MCGA\AppData\Roaming\Microsoft -> [2011/05/07 13:56:39 | 000,000,000 | --SD | C] Videos -> C:\Users\MCGA\Videos -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Saved Games -> C:\Users\MCGA\Saved Games -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Pictures -> C:\Users\MCGA\Pictures -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Music -> C:\Users\MCGA\Music -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Maintenance -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Links -> C:\Users\MCGA\Links -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Favorites -> C:\Users\MCGA\Favorites -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Downloads -> C:\Users\MCGA\Downloads -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Documents -> C:\Users\MCGA\My Documents -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Desktop -> C:\Users\MCGA\Desktop -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Accessories -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories -> [2011/05/07 13:56:39 | 000,000,000 | R--D | C] Temporary Internet Files -> C:\Users\MCGA\AppData\Local\Temporary Internet Files -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] Templates -> C:\Users\MCGA\Templates -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] Start Menu -> C:\Users\MCGA\Start Menu -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] SendTo -> C:\Users\MCGA\SendTo -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] Recent -> C:\Users\MCGA\Recent -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] PrintHood -> C:\Users\MCGA\PrintHood -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] NetHood -> C:\Users\MCGA\NetHood -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] My Videos -> C:\Users\MCGA\Documents\My Videos -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] My Pictures -> C:\Users\MCGA\Documents\My Pictures -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] My Music -> C:\Users\MCGA\Documents\My Music -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] My Documents -> C:\Users\MCGA\My Documents -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] Local Settings -> C:\Users\MCGA\Local Settings -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] History -> C:\Users\MCGA\AppData\Local\History -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] Cookies -> C:\Users\MCGA\Cookies -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] Application Data -> C:\Users\MCGA\Application Data -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] Application Data -> C:\Users\MCGA\AppData\Local\Application Data -> [2011/05/07 13:56:39 | 000,000,000 | -HSD | C] AppData -> C:\Users\MCGA\AppData -> [2011/05/07 13:56:39 | 000,000,000 | -H-D | C] Temp -> C:\Users\MCGA\AppData\Local\Temp -> [2011/05/07 13:56:39 | 000,000,000 | ---D | C] Microsoft -> C:\Users\MCGA\AppData\Local\Microsoft -> [2011/05/07 13:56:39 | 000,000,000 | ---D | C] Media Center Programs -> C:\Users\MCGA\AppData\Roaming\Media Center Programs -> [2011/05/07 13:56:39 | 000,000,000 | ---D | C] Recovery -> C:\Recovery -> [2011/05/07 13:56:30 | 000,000,000 | -HSD | C] Templates -> C:\ProgramData\Templates -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] Start Menu -> C:\ProgramData\Start Menu -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] My Videos -> C:\Users\Public\Documents\My Videos -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] My Pictures -> C:\Users\Public\Documents\My Pictures -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] My Music -> C:\Users\Public\Documents\My Music -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] Favorites -> C:\ProgramData\Favorites -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] Documents and Settings -> C:\Documents and Settings -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] Documents -> C:\ProgramData\Documents -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] Desktop -> C:\ProgramData\Desktop -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] Application Data -> C:\ProgramData\Application Data -> [2011/05/07 13:56:29 | 000,000,000 | -HSD | C] SoftwareDistribution -> C:\Windows\SoftwareDistribution -> [2011/05/07 13:49:16 | 000,000,000 | ---D | C] x64 -> C:\Windows\SysWow64\x64 -> [2011/05/07 13:47:52 | 000,000,000 | ---D | C] Lang -> C:\Windows\SysWow64\Lang -> [2011/05/07 13:47:52 | 000,000,000 | ---D | C] igxpun.exe -> C:\Windows\SysWow64\igxpun.exe -> [2011/05/07 13:47:51 | 000,997,912 | ---- | C] (Intel Corporation) System Volume Information -> C:\System Volume Information -> [2011/05/07 13:47:10 | 000,000,000 | -HSD | C] [Files/Folders - Modified Within 30 Days] GoogleUpdateTaskMachineUA.job -> C:\Windows\tasks\GoogleUpdateTaskMachineUA.job -> [2011/05/29 10:54:08 | 000,000,896 | ---- | M] () GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000UA.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000UA.job -> [2011/05/29 10:23:02 | 000,000,902 | ---- | M] () bootstat.dat -> C:\Windows\bootstat.dat -> [2011/05/29 10:10:23 | 000,067,584 | --S- | M] () lvuvc.hs -> C:\Windows\SysNative\drivers\lvuvc.hs -> [2011/05/29 10:10:15 | 000,000,000 | ---- | M] () GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000Core.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000Core.job -> [2011/05/29 09:23:02 | 000,000,850 | ---- | M] () 52992060 -> C:\ProgramData\52992060 -> [2011/05/29 09:09:49 | 000,000,019 | ---- | M] () SqlServerSpatialwow.exe -> C:\Windows\SqlServerSpatialwow.exe -> [2011/05/29 08:45:24 | 000,524,288 | -HS- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> [2011/05/28 20:14:07 | 000,009,920 | -H-- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> [2011/05/28 20:14:07 | 000,009,920 | -H-- | M] () PerfStringBackup.INI -> C:\Windows\SysNative\PerfStringBackup.INI -> [2011/05/28 20:11:39 | 000,865,140 | ---- | M] () perfh009.dat -> C:\Windows\SysNative\perfh009.dat -> [2011/05/28 20:11:39 | 000,726,046 | ---- | M] () perfc009.dat -> C:\Windows\SysNative\perfc009.dat -> [2011/05/28 20:11:39 | 000,147,812 | ---- | M] () McAfee Internet Security Suite.lnk -> C:\Users\Public\Desktop\McAfee Internet Security Suite.lnk -> [2011/05/28 20:07:06 | 000,001,832 | ---- | M] () GoogleUpdateTaskMachineCore.job -> C:\Windows\tasks\GoogleUpdateTaskMachineCore.job -> [2011/05/28 20:06:28 | 000,000,892 | ---- | M] () hiberfil.sys -> C:\hiberfil.sys -> [2011/05/28 20:05:57 | 2388,529,152 | -HS- | M] () api-ms-win-core-misc-l1-1-032.dll -> C:\ProgramData\api-ms-win-core-misc-l1-1-032.dll -> [2011/05/27 22:09:59 | 000,257,024 | ---- | M] (Borland Software Corporation) 2025271312 -> C:\Windows\SysWow64\2025271312 -> [2011/05/27 22:09:59 | 000,000,100 | ---- | M] () icsigd32.exe -> C:\Windows\SysWow64\icsigd32.exe -> [2011/05/27 22:09:57 | 000,200,704 | ---- | M] () api-ms-win-core-misc-l1-1-032.dll -> C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-032.dll -> [2011/05/27 22:09:56 | 000,419,328 | ---- | M] (Borland Software Corporation) NETGEAR WNA1100 Smart Wizard.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Smart Wizard.lnk -> [2011/05/27 10:55:56 | 000,000,908 | ---- | M] () NETGEAR WNA1100 Smart Wizard.lnk -> C:\Users\Public\Desktop\NETGEAR WNA1100 Smart Wizard.lnk -> [2011/05/27 10:55:56 | 000,000,890 | ---- | M] () Network and Sharing Center - Shortcut.lnk -> C:\Users\MCGA\Desktop\Network and Sharing Center - Shortcut.lnk -> [2011/05/26 23:07:46 | 000,000,517 | ---- | M] () cygwin-ug-net.pdf -> C:\Users\MCGA\Desktop\cygwin-ug-net.pdf -> [2011/05/26 09:54:04 | 000,782,012 | ---- | M] () WinZip.lnk -> C:\Users\Public\Desktop\WinZip.lnk -> [2011/05/26 09:52:25 | 000,002,251 | ---- | M] () Cygwin.lnk -> C:\Users\Public\Desktop\Cygwin.lnk -> [2011/05/26 09:41:56 | 000,000,602 | ---- | M] () Google Chrome.lnk -> C:\Users\MCGA\Desktop\Google Chrome.lnk -> [2011/05/26 09:20:07 | 000,002,310 | ---- | M] () KBDCZ232.exe -> C:\Windows\SysWow64\KBDCZ232.exe -> [2011/05/26 08:29:28 | 001,412,096 | ---- | M] () icsigd32.exe -> C:\ProgramData\icsigd32.exe -> [2011/05/26 08:29:28 | 001,412,096 | ---- | M] () FNTCACHE.DAT -> C:\Windows\SysNative\FNTCACHE.DAT -> [2011/05/25 19:51:37 | 000,310,928 | ---- | M] () Picasa 3.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk -> [2011/05/22 20:07:36 | 000,001,134 | ---- | M] () Picasa 3.lnk -> C:\Users\Public\Desktop\Picasa 3.lnk -> [2011/05/22 20:07:36 | 000,001,110 | ---- | M] () FlashPlayerCPLApp.cpl -> C:\Windows\SysWow64\FlashPlayerCPLApp.cpl -> [2011/05/20 19:48:04 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) PerfStringBackup.INI -> C:\Windows\SysWow64\PerfStringBackup.INI -> [2011/05/20 03:02:44 | 000,850,264 | ---- | M] () NetBeans IDE 7.0.lnk -> C:\Users\Public\Desktop\NetBeans IDE 7.0.lnk -> [2011/05/19 23:14:30 | 000,002,011 | ---- | M] () javaws.exe -> C:\Windows\SysNative\javaws.exe -> [2011/05/19 23:00:50 | 000,189,728 | ---- | M] (Sun Microsystems, Inc.) javaw.exe -> C:\Windows\SysNative\javaw.exe -> [2011/05/19 23:00:50 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) java.exe -> C:\Windows\SysNative\java.exe -> [2011/05/19 23:00:50 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) deployJava1.dll -> C:\Windows\SysNative\deployJava1.dll -> [2011/05/19 23:00:49 | 000,521,448 | ---- | M] (Sun Microsystems, Inc.) avast! Free Antivirus.lnk -> C:\Users\Public\Desktop\avast! Free Antivirus.lnk -> [2011/05/19 22:43:29 | 000,001,845 | ---- | M] () Sandra.ldb -> C:\Users\MCGA\AppData\Roaming\Sandra.ldb -> [2011/05/19 22:43:28 | 000,000,064 | ---- | M] () config.nt -> C:\Windows\SysWow64\config.nt -> [2011/05/19 22:43:26 | 000,000,000 | ---- | M] () FrostWire 4.21.7.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\FrostWire 4.21.7.lnk -> [2011/05/19 22:32:19 | 000,001,229 | ---- | M] () FrostWire 4.21.7.lnk -> C:\Users\MCGA\Desktop\FrostWire 4.21.7.lnk -> [2011/05/19 22:32:19 | 000,001,205 | ---- | M] () javaws.exe -> C:\Windows\SysWow64\javaws.exe -> [2011/05/19 22:31:20 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) javaw.exe -> C:\Windows\SysWow64\javaw.exe -> [2011/05/19 22:31:20 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) deployJava1.dll -> C:\Windows\SysWow64\deployJava1.dll -> [2011/05/19 22:31:19 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) java.exe -> C:\Windows\SysWow64\java.exe -> [2011/05/19 22:31:19 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) procexp.exe -> C:\Users\MCGA\Desktop\procexp.exe -> [2011/05/19 22:18:30 | 003,412,856 | ---- | M] (Sysinternals - www.sysinternals.com) Adobe Reader 9.lnk -> C:\Users\Public\Desktop\Adobe Reader 9.lnk -> [2011/05/16 20:31:45 | 000,002,018 | ---- | M] () Sandra.mdb -> C:\Users\MCGA\AppData\Roaming\Sandra.mdb -> [2011/05/16 16:56:54 | 011,010,048 | ---- | M] () Market MicroStructure Models.pdf -> C:\Users\MCGA\Desktop\Market MicroStructure Models.pdf -> [2011/05/15 20:04:06 | 000,503,867 | ---- | M] () UKCpInfo.sys -> C:\Windows\UKCpInfo.sys -> [2011/05/13 12:18:40 | 000,000,031 | -H-- | M] () Skype.lnk -> C:\Users\Public\Desktop\Skype.lnk -> [2011/05/12 16:29:34 | 000,002,515 | ---- | M] () Launch Internet Explorer Browser.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> [2011/05/11 21:36:59 | 000,001,441 | ---- | M] () jscript9.dll -> C:\Windows\SysWow64\jscript9.dll -> [2011/05/11 21:28:12 | 001,797,632 | ---- | M] (Microsoft Corporation) jscript.dll -> C:\Windows\SysWow64\jscript.dll -> [2011/05/11 21:28:12 | 000,716,800 | ---- | M] (Microsoft Corporation) msrating.dll -> C:\Windows\SysWow64\msrating.dll -> [2011/05/11 21:28:12 | 000,162,304 | ---- | M] (Microsoft Corporation) msls31.dll -> C:\Windows\SysWow64\msls31.dll -> [2011/05/11 21:28:12 | 000,161,792 | ---- | M] (Microsoft Corporation) ieakeng.dll -> C:\Windows\SysWow64\ieakeng.dll -> [2011/05/11 21:28:12 | 000,130,560 | ---- | M] (Microsoft Corporation) iepeers.dll -> C:\Windows\SysWow64\iepeers.dll -> [2011/05/11 21:28:12 | 000,118,784 | ---- | M] (Microsoft Corporation) IEAdvpack.dll -> C:\Windows\SysWow64\IEAdvpack.dll -> [2011/05/11 21:28:12 | 000,110,592 | ---- | M] (Microsoft Corporation) RegisterIEPKEYs.exe -> C:\Windows\SysWow64\RegisterIEPKEYs.exe -> [2011/05/11 21:28:12 | 000,074,752 | ---- | M] (Microsoft Corporation) msfeedssync.exe -> C:\Windows\SysWow64\msfeedssync.exe -> [2011/05/11 21:28:12 | 000,010,752 | ---- | M] (Microsoft Corporation) ieapfltr.dat -> C:\Windows\SysWow64\ieapfltr.dat -> [2011/05/11 21:28:11 | 003,695,416 | ---- | M] (Microsoft Corporation) ieapfltr.dat -> C:\Windows\SysNative\ieapfltr.dat -> [2011/05/11 21:28:11 | 003,695,416 | ---- | M] (Microsoft Corporation) jscript9.dll -> C:\Windows\SysNative\jscript9.dll -> [2011/05/11 21:28:11 | 002,303,488 | ---- | M] (Microsoft Corporation) inetcpl.cpl -> C:\Windows\SysNative\inetcpl.cpl -> [2011/05/11 21:28:11 | 001,492,992 | ---- | M] (Microsoft Corporation) inetcpl.cpl -> C:\Windows\SysWow64\inetcpl.cpl -> [2011/05/11 21:28:11 | 001,427,456 | ---- | M] (Microsoft Corporation) jscript.dll -> C:\Windows\SysNative\jscript.dll -> [2011/05/11 21:28:11 | 000,818,176 | ---- | M] (Microsoft Corporation) msfeeds.dll -> C:\Windows\SysNative\msfeeds.dll -> [2011/05/11 21:28:11 | 000,697,344 | ---- | M] (Microsoft Corporation) vbscript.dll -> C:\Windows\SysNative\vbscript.dll -> [2011/05/11 21:28:11 | 000,603,648 | ---- | M] (Microsoft Corporation) msfeeds.dll -> C:\Windows\SysWow64\msfeeds.dll -> [2011/05/11 21:28:11 | 000,580,608 | ---- | M] (Microsoft Corporation) ieapfltr.dll -> C:\Windows\SysNative\ieapfltr.dll -> [2011/05/11 21:28:11 | 000,534,528 | ---- | M] (Microsoft Corporation) dxtmsft.dll -> C:\Windows\SysNative\dxtmsft.dll -> [2011/05/11 21:28:11 | 000,452,608 | ---- | M] (Microsoft Corporation) html.iec -> C:\Windows\SysNative\html.iec -> [2011/05/11 21:28:11 | 000,448,512 | ---- | M] (Microsoft Corporation) ieapfltr.dll -> C:\Windows\SysWow64\ieapfltr.dll -> [2011/05/11 21:28:11 | 000,434,176 | ---- | M] (Microsoft Corporation) html.iec -> C:\Windows\SysWow64\html.iec -> [2011/05/11 21:28:11 | 000,367,104 | ---- | M] (Microsoft Corporation) dxtmsft.dll -> C:\Windows\SysWow64\dxtmsft.dll -> [2011/05/11 21:28:11 | 000,353,792 | ---- | M] (Microsoft Corporation) dxtrans.dll -> C:\Windows\SysNative\dxtrans.dll -> [2011/05/11 21:28:11 | 000,282,112 | ---- | M] (Microsoft Corporation) ieaksie.dll -> C:\Windows\SysNative\ieaksie.dll -> [2011/05/11 21:28:11 | 000,267,776 | ---- | M] (Microsoft Corporation) ieui.dll -> C:\Windows\SysNative\ieui.dll -> [2011/05/11 21:28:11 | 000,248,320 | ---- | M] (Microsoft Corporation) url.dll -> C:\Windows\SysNative\url.dll -> [2011/05/11 21:28:11 | 000,236,544 | ---- | M] (Microsoft Corporation) url.dll -> C:\Windows\SysWow64\url.dll -> [2011/05/11 21:28:11 | 000,231,936 | ---- | M] (Microsoft Corporation) ieaksie.dll -> C:\Windows\SysWow64\ieaksie.dll -> [2011/05/11 21:28:11 | 000,227,840 | ---- | M] (Microsoft Corporation) dxtrans.dll -> C:\Windows\SysWow64\dxtrans.dll -> [2011/05/11 21:28:11 | 000,223,232 | ---- | M] (Microsoft Corporation) msls31.dll -> C:\Windows\SysNative\msls31.dll -> [2011/05/11 21:28:11 | 000,222,208 | ---- | M] (Microsoft Corporation) msrating.dll -> C:\Windows\SysNative\msrating.dll -> [2011/05/11 21:28:11 | 000,197,120 | ---- | M] (Microsoft Corporation) ieui.dll -> C:\Windows\SysWow64\ieui.dll -> [2011/05/11 21:28:11 | 000,176,640 | ---- | M] (Microsoft Corporation) ieUnatt.exe -> C:\Windows\SysNative\ieUnatt.exe -> [2011/05/11 21:28:11 | 000,173,056 | ---- | M] (Microsoft Corporation) iexpress.exe -> C:\Windows\SysNative\iexpress.exe -> [2011/05/11 21:28:11 | 000,165,888 | ---- | M] (Microsoft Corporation) ieakui.dll -> C:\Windows\SysWow64\ieakui.dll -> [2011/05/11 21:28:11 | 000,163,840 | ---- | M] (Microsoft Corporation) ieakui.dll -> C:\Windows\SysNative\ieakui.dll -> [2011/05/11 21:28:11 | 000,163,840 | ---- | M] (Microsoft Corporation) wextract.exe -> C:\Windows\SysNative\wextract.exe -> [2011/05/11 21:28:11 | 000,160,256 | ---- | M] (Microsoft Corporation) ieakeng.dll -> C:\Windows\SysNative\ieakeng.dll -> [2011/05/11 21:28:11 | 000,160,256 | ---- | M] (Microsoft Corporation) wextract.exe -> C:\Windows\SysWow64\wextract.exe -> [2011/05/11 21:28:11 | 000,152,064 | ---- | M] (Microsoft Corporation) iexpress.exe -> C:\Windows\SysWow64\iexpress.exe -> [2011/05/11 21:28:11 | 000,150,528 | ---- | M] (Microsoft Corporation) occache.dll -> C:\Windows\SysNative\occache.dll -> [2011/05/11 21:28:11 | 000,149,504 | ---- | M] (Microsoft Corporation) iepeers.dll -> C:\Windows\SysNative\iepeers.dll -> [2011/05/11 21:28:11 | 000,145,920 | ---- | M] (Microsoft Corporation) ieUnatt.exe -> C:\Windows\SysWow64\ieUnatt.exe -> [2011/05/11 21:28:11 | 000,142,848 | ---- | M] (Microsoft Corporation) IEAdvpack.dll -> C:\Windows\SysNative\IEAdvpack.dll -> [2011/05/11 21:28:11 | 000,135,168 | ---- | M] (Microsoft Corporation) occache.dll -> C:\Windows\SysWow64\occache.dll -> [2011/05/11 21:28:11 | 000,123,392 | ---- | M] (Microsoft Corporation) admparse.dll -> C:\Windows\SysNative\admparse.dll -> [2011/05/11 21:28:11 | 000,114,176 | ---- | M] (Microsoft Corporation) iesysprep.dll -> C:\Windows\SysNative\iesysprep.dll -> [2011/05/11 21:28:11 | 000,111,616 | ---- | M] (Microsoft Corporation) inseng.dll -> C:\Windows\SysNative\inseng.dll -> [2011/05/11 21:28:11 | 000,103,936 | ---- | M] (Microsoft Corporation) admparse.dll -> C:\Windows\SysWow64\admparse.dll -> [2011/05/11 21:28:11 | 000,101,888 | ---- | M] (Microsoft Corporation) mshtmled.dll -> C:\Windows\SysNative\mshtmled.dll -> [2011/05/11 21:28:11 | 000,096,256 | ---- | M] (Microsoft Corporation) SetIEInstalledDate.exe -> C:\Windows\SysNative\SetIEInstalledDate.exe -> [2011/05/11 21:28:11 | 000,091,648 | ---- | M] (Microsoft Corporation) RegisterIEPKEYs.exe -> C:\Windows\SysNative\RegisterIEPKEYs.exe -> [2011/05/11 21:28:11 | 000,089,088 | ---- | M] (Microsoft Corporation) ie4uinit.exe -> C:\Windows\SysNative\ie4uinit.exe -> [2011/05/11 21:28:11 | 000,089,088 | ---- | M] (Microsoft Corporation) iesysprep.dll -> C:\Windows\SysWow64\iesysprep.dll -> [2011/05/11 21:28:11 | 000,086,528 | ---- | M] (Microsoft Corporation) iesetup.dll -> C:\Windows\SysNative\iesetup.dll -> [2011/05/11 21:28:11 | 000,085,504 | ---- | M] (Microsoft Corporation) icardie.dll -> C:\Windows\SysNative\icardie.dll -> [2011/05/11 21:28:11 | 000,082,432 | ---- | M] (Microsoft Corporation) inseng.dll -> C:\Windows\SysWow64\inseng.dll -> [2011/05/11 21:28:11 | 000,078,848 | ---- | M] (Microsoft Corporation) tdc.ocx -> C:\Windows\SysNative\tdc.ocx -> [2011/05/11 21:28:11 | 000,076,800 | ---- | M] (Microsoft Corporation) SetIEInstalledDate.exe -> C:\Windows\SysWow64\SetIEInstalledDate.exe -> [2011/05/11 21:28:11 | 000,076,800 | ---- | M] (Microsoft Corporation) iesetup.dll -> C:\Windows\SysWow64\iesetup.dll -> [2011/05/11 21:28:11 | 000,074,752 | ---- | M] (Microsoft Corporation) ie4uinit.exe -> C:\Windows\SysWow64\ie4uinit.exe -> [2011/05/11 21:28:11 | 000,074,240 | ---- | M] (Microsoft Corporation) ieuinit.inf -> C:\Windows\SysWow64\ieuinit.inf -> [2011/05/11 21:28:11 | 000,072,822 | ---- | M] () ieuinit.inf -> C:\Windows\SysNative\ieuinit.inf -> [2011/05/11 21:28:11 | 000,072,822 | ---- | M] () mshtmled.dll -> C:\Windows\SysWow64\mshtmled.dll -> [2011/05/11 21:28:11 | 000,072,704 | ---- | M] (Microsoft Corporation) icardie.dll -> C:\Windows\SysWow64\icardie.dll -> [2011/05/11 21:28:11 | 000,066,048 | ---- | M] (Microsoft Corporation) pngfilt.dll -> C:\Windows\SysNative\pngfilt.dll -> [2011/05/11 21:28:11 | 000,065,024 | ---- | M] (Microsoft Corporation) tdc.ocx -> C:\Windows\SysWow64\tdc.ocx -> [2011/05/11 21:28:11 | 000,063,488 | ---- | M] (Microsoft Corporation) pngfilt.dll -> C:\Windows\SysWow64\pngfilt.dll -> [2011/05/11 21:28:11 | 000,054,272 | ---- | M] (Microsoft Corporation) imgutil.dll -> C:\Windows\SysNative\imgutil.dll -> [2011/05/11 21:28:11 | 000,049,664 | ---- | M] (Microsoft Corporation) mshtmler.dll -> C:\Windows\SysWow64\mshtmler.dll -> [2011/05/11 21:28:11 | 000,048,640 | ---- | M] (Microsoft Corporation) mshtmler.dll -> C:\Windows\SysNative\mshtmler.dll -> [2011/05/11 21:28:11 | 000,048,640 | ---- | M] (Microsoft Corporation) iernonce.dll -> C:\Windows\SysNative\iernonce.dll -> [2011/05/11 21:28:11 | 000,039,936 | ---- | M] (Microsoft Corporation) imgutil.dll -> C:\Windows\SysWow64\imgutil.dll -> [2011/05/11 21:28:11 | 000,035,840 | ---- | M] (Microsoft Corporation) iernonce.dll -> C:\Windows\SysWow64\iernonce.dll -> [2011/05/11 21:28:11 | 000,031,744 | ---- | M] (Microsoft Corporation) licmgr10.dll -> C:\Windows\SysNative\licmgr10.dll -> [2011/05/11 21:28:11 | 000,030,720 | ---- | M] (Microsoft Corporation) licmgr10.dll -> C:\Windows\SysWow64\licmgr10.dll -> [2011/05/11 21:28:11 | 000,023,552 | ---- | M] (Microsoft Corporation) mshta.exe -> C:\Windows\SysNative\mshta.exe -> [2011/05/11 21:28:11 | 000,012,288 | ---- | M] (Microsoft Corporation) msfeedssync.exe -> C:\Windows\SysNative\msfeedssync.exe -> [2011/05/11 21:28:11 | 000,010,752 | ---- | M] (Microsoft Corporation) nsreg.dat -> C:\Windows\nsreg.dat -> [2011/05/10 20:20:39 | 000,000,000 | ---- | M] () Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2011/05/10 20:11:55 | 000,001,142 | ---- | M] () avastSS.scr -> C:\Windows\avastSS.scr -> [2011/05/10 13:10:59 | 000,040,112 | ---- | M] (AVAST Software) aswBoot.exe -> C:\Windows\SysWow64\aswBoot.exe -> [2011/05/10 13:10:55 | 000,199,304 | ---- | M] (AVAST Software) aswBoot.exe -> C:\Windows\SysNative\aswBoot.exe -> [2011/05/10 13:10:44 | 000,253,888 | ---- | M] (AVAST Software) aswSnx.sys -> C:\Windows\SysNative\drivers\aswSnx.sys -> [2011/05/10 13:04:08 | 000,600,920 | ---- | M] (AVAST Software) aswSP.sys -> C:\Windows\SysNative\drivers\aswSP.sys -> [2011/05/10 13:04:07 | 000,287,576 | ---- | M] (AVAST Software) aswTdi.sys -> C:\Windows\SysNative\drivers\aswTdi.sys -> [2011/05/10 13:02:41 | 000,053,592 | ---- | M] (AVAST Software) aswRdr.sys -> C:\Windows\SysNative\drivers\aswRdr.sys -> [2011/05/10 12:59:59 | 000,031,064 | ---- | M] (AVAST Software) aswMonFlt.sys -> C:\Windows\SysNative\drivers\aswMonFlt.sys -> [2011/05/10 12:59:48 | 000,064,344 | ---- | M] (AVAST Software) aswFsBlk.sys -> C:\Windows\SysNative\drivers\aswFsBlk.sys -> [2011/05/10 12:59:37 | 000,022,360 | ---- | M] (AVAST Software) MEMORY.DMP -> C:\Windows\MEMORY.DMP -> [2011/05/08 17:30:25 | 325,058,122 | ---- | M] () Browser Choice.lnk -> C:\Users\Public\Desktop\Browser Choice.lnk -> [2011/05/08 03:34:30 | 000,001,754 | ---- | M] () ChangeLang_Done.tag -> C:\Windows\ChangeLang_Done.tag -> [2011/05/07 22:39:16 | 000,011,453 | ---- | M] () Äõ4 -> C:\Windows\Äõ4 -> [2011/05/07 17:50:04 | 000,000,020 | ---- | M] () pó“ -> C:\Windows\pó“ -> [2011/05/07 16:23:10 | 000,000,020 | ---- | M] () eBay.lnk -> C:\Users\Public\Desktop\eBay.lnk -> [2011/05/07 13:57:27 | 000,002,609 | ---- | M] () Acer Accessory Store.lnk -> C:\Users\Public\Desktop\Acer Accessory Store.lnk -> [2011/05/07 13:57:19 | 000,001,972 | ---- | M] () results.xml -> C:\Windows\SysNative\results.xml -> [2011/05/07 13:56:59 | 000,015,052 | ---- | M] () license.rtf -> C:\Windows\SysWow64\license.rtf -> [2011/05/07 13:56:16 | 000,039,252 | ---- | M] () license.rtf -> C:\Windows\SysNative\license.rtf -> [2011/05/07 13:56:16 | 000,039,252 | ---- | M] () PLD_Framework.cmd -> C:\Windows\SysNative\PLD_Framework.cmd -> [2011/05/07 13:52:20 | 000,000,003 | ---- | M] () 259 C:\Users\MCGA\AppData\Local\Temp\*.tmp files -> C:\Users\MCGA\AppData\Local\Temp\*.tmp -> 259 C:\Users\MCGA\AppData\Local\Temp\*.tmp files -> C:\Users\MCGA\AppData\Local\Temp\*.tmp -> 1 C:\ProgramData\Microsoft\Application Virtualization Client\SoftGrid Client\Icon Cache\*.tmp files -> C:\ProgramData\Microsoft\Application Virtualization Client\SoftGrid Client\Icon Cache\*.tmp -> [Files - No Company Name] SqlServerSpatialwow.exe -> C:\Windows\SqlServerSpatialwow.exe -> [2011/05/29 08:45:27 | 000,524,288 | -HS- | C] () 52992060 -> C:\ProgramData\52992060 -> [2011/05/28 09:48:13 | 000,000,019 | ---- | C] () icsigd32.exe -> C:\ProgramData\icsigd32.exe -> [2011/05/27 22:09:59 | 001,412,096 | ---- | C] () KBDCZ232.exe -> C:\Windows\SysWow64\KBDCZ232.exe -> [2011/05/27 22:09:57 | 001,412,096 | ---- | C] () icsigd32.exe -> C:\Windows\SysWow64\icsigd32.exe -> [2011/05/27 22:09:57 | 000,200,704 | ---- | C] () 2025271312 -> C:\Windows\SysWow64\2025271312 -> [2011/05/27 22:09:57 | 000,000,100 | ---- | C] () NETGEAR WNA1100 Smart Wizard.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Smart Wizard.lnk -> [2011/05/27 10:55:56 | 000,000,908 | ---- | C] () NETGEAR WNA1100 Smart Wizard.lnk -> C:\Users\Public\Desktop\NETGEAR WNA1100 Smart Wizard.lnk -> [2011/05/27 10:55:56 | 000,000,890 | ---- | C] () Network and Sharing Center - Shortcut.lnk -> C:\Users\MCGA\Desktop\Network and Sharing Center - Shortcut.lnk -> [2011/05/26 23:07:46 | 000,000,517 | ---- | C] () cygwin-ug-net.pdf -> C:\Users\MCGA\Desktop\cygwin-ug-net.pdf -> [2011/05/26 09:54:04 | 000,782,012 | ---- | C] () WinZip.lnk -> C:\Users\Public\Desktop\WinZip.lnk -> [2011/05/26 09:52:25 | 000,002,251 | ---- | C] () Cygwin.lnk -> C:\Users\Public\Desktop\Cygwin.lnk -> [2011/05/26 09:41:56 | 000,000,602 | ---- | C] () Google Chrome.lnk -> C:\Users\MCGA\Desktop\Google Chrome.lnk -> [2011/05/26 09:20:07 | 000,002,310 | ---- | C] () GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000UA.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000UA.job -> [2011/05/26 09:18:07 | 000,000,902 | ---- | C] () GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000Core.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1338636049-637988064-1605932195-1000Core.job -> [2011/05/26 09:18:07 | 000,000,850 | ---- | C] () GameTapWebPlayer_4_4_0_7.inf -> C:\Windows\SysWow64\GameTapWebPlayer_4_4_0_7.inf -> [2011/05/23 15:19:42 | 000,000,297 | ---- | C] () Picasa 3.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk -> [2011/05/22 20:07:36 | 000,001,134 | ---- | C] () Picasa 3.lnk -> C:\Users\Public\Desktop\Picasa 3.lnk -> [2011/05/22 20:07:36 | 000,001,110 | ---- | C] () Apple Software Update.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> [2011/05/21 07:26:22 | 000,002,519 | ---- | C] () NetBeans IDE 7.0.lnk -> C:\Users\Public\Desktop\NetBeans IDE 7.0.lnk -> [2011/05/19 23:14:30 | 000,002,011 | ---- | C] () avast! Free Antivirus.lnk -> C:\Users\Public\Desktop\avast! Free Antivirus.lnk -> [2011/05/19 22:43:29 | 000,001,845 | ---- | C] () config.nt -> C:\Windows\SysWow64\config.nt -> [2011/05/19 22:43:26 | 000,000,000 | ---- | C] () Sandra.mdb -> C:\Users\MCGA\AppData\Roaming\Sandra.mdb -> [2011/05/19 22:43:20 | 011,010,048 | ---- | C] () Sandra.ldb -> C:\Users\MCGA\AppData\Roaming\Sandra.ldb -> [2011/05/19 22:43:20 | 000,000,064 | ---- | C] () FrostWire 4.21.7.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\FrostWire 4.21.7.lnk -> [2011/05/19 22:32:19 | 000,001,229 | ---- | C] () FrostWire 4.21.7.lnk -> C:\Users\MCGA\Desktop\FrostWire 4.21.7.lnk -> [2011/05/19 22:32:19 | 000,001,205 | ---- | C] () Market MicroStructure Models.pdf -> C:\Users\MCGA\Desktop\Market MicroStructure Models.pdf -> [2011/05/15 20:04:06 | 000,503,867 | ---- | C] () OXUMSS.PDR -> C:\Windows\SysWow64\OXUMSS.PDR -> [2011/05/15 09:17:43 | 000,018,913 | ---- | C] () OXUMSS.PDR -> C:\Windows\System\OXUMSS.PDR -> [2011/05/15 09:17:43 | 000,018,913 | ---- | C] () IBUMSPDR.pdr -> C:\Windows\System\IBUMSPDR.pdr -> [2011/05/15 09:17:43 | 000,009,634 | R--- | C] () IBUMSPDR.pdr -> C:\Windows\SysWow64\IBUMSPDR.pdr -> [2011/05/15 09:17:42 | 000,009,634 | R--- | C] () UKCpInfo.sys -> C:\Windows\UKCpInfo.sys -> [2011/05/13 12:18:40 | 000,000,031 | -H-- | C] () Skype.lnk -> C:\Users\Public\Desktop\Skype.lnk -> [2011/05/12 16:29:34 | 000,002,515 | ---- | C] () PerfStringBackup.INI -> C:\Windows\SysWow64\PerfStringBackup.INI -> [2011/05/11 21:47:37 | 000,850,264 | ---- | C] () ieuinit.inf -> C:\Windows\SysWow64\ieuinit.inf -> [2011/05/11 21:28:11 | 000,072,822 | ---- | C] () ieuinit.inf -> C:\Windows\SysNative\ieuinit.inf -> [2011/05/11 21:28:11 | 000,072,822 | ---- | C] () Adobe Reader 9.lnk -> C:\Users\Public\Desktop\Adobe Reader 9.lnk -> [2011/05/10 23:51:02 | 000,002,018 | ---- | C] () nsreg.dat -> C:\Windows\nsreg.dat -> [2011/05/10 20:20:39 | 000,000,000 | ---- | C] () Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2011/05/10 20:11:55 | 000,001,142 | ---- | C] () Mozilla Firefox.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> [2011/05/10 20:11:54 | 000,001,154 | ---- | C] () lvuvc.hs -> C:\Windows\SysNative\drivers\lvuvc.hs -> [2011/05/10 11:25:03 | 000,000,000 | ---- | C] () Windows Live Movie Maker.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk -> [2011/05/09 21:05:11 | 000,001,309 | ---- | C] () Windows Live Photo Gallery.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk -> [2011/05/09 21:04:58 | 000,001,378 | ---- | C] () Windows Live Mail.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk -> [2011/05/09 21:04:42 | 000,001,462 | ---- | C] () Windows Live Messenger.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk -> [2011/05/09 21:04:18 | 000,002,490 | ---- | C] () MEMORY.DMP -> C:\Windows\MEMORY.DMP -> [2011/05/08 17:30:25 | 325,058,122 | ---- | C] () GoogleUpdateTaskMachineUA.job -> C:\Windows\tasks\GoogleUpdateTaskMachineUA.job -> [2011/05/08 16:49:18 | 000,000,896 | ---- | C] () GoogleUpdateTaskMachineCore.job -> C:\Windows\tasks\GoogleUpdateTaskMachineCore.job -> [2011/05/08 16:49:18 | 000,000,892 | ---- | C] () Launch Internet Explorer Browser.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> [2011/05/08 15:12:53 | 000,001,441 | ---- | C] () Browser Choice.lnk -> C:\Users\Public\Desktop\Browser Choice.lnk -> [2011/05/08 03:34:30 | 000,001,754 | ---- | C] () ChangeLang_Done.tag -> C:\Windows\ChangeLang_Done.tag -> [2011/05/07 22:40:20 | 000,011,453 | ---- | C] () Äõ4 -> C:\Windows\Äõ4 -> [2011/05/07 17:50:04 | 000,000,020 | ---- | C] () pó“ -> C:\Windows\pó“ -> [2011/05/07 16:23:09 | 000,000,020 | ---- | C] () Microsoft Office 2010.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk -> [2011/05/07 16:20:45 | 000,002,435 | ---- | C] () Internet Explorer (64-bit).lnk -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk -> [2011/05/07 16:12:35 | 000,001,413 | ---- | C] () Internet Explorer.lnk -> C:\Users\MCGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> [2011/05/07 16:12:30 | 000,001,447 | ---- | C] () eBay.lnk -> C:\Users\Public\Desktop\eBay.lnk -> [2011/05/07 13:57:27 | 000,002,609 | ---- | C] () Acer Accessory Store.lnk -> C:\Users\Public\Desktop\Acer Accessory Store.lnk -> [2011/05/07 13:57:19 | 000,001,972 | ---- | C] () results.xml -> C:\Windows\SysNative\results.xml -> [2011/05/07 13:56:59 | 000,015,052 | ---- | C] () Shows Desktop.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> [2011/05/07 13:56:39 | 000,000,290 | ---- | C] () Window Switcher.lnk -> C:\Users\MCGA\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> [2011/05/07 13:56:39 | 000,000,272 | ---- | C] () PLD_Framework.cmd -> C:\Windows\SysNative\PLD_Framework.cmd -> [2011/05/07 13:52:20 | 000,000,003 | ---- | C] () hiberfil.sys -> C:\hiberfil.sys -> [2011/05/07 13:46:38 | 2388,529,152 | -HS- | C] () igkrng500.bin -> C:\Windows\SysWow64\igkrng500.bin -> [2010/05/12 03:53:02 | 000,982,220 | ---- | C] () igfcg500m.bin -> C:\Windows\SysWow64\igfcg500m.bin -> [2010/05/12 03:53:02 | 000,092,216 | ---- | C] () igcompkrng500.bin -> C:\Windows\SysWow64\igcompkrng500.bin -> [2010/05/12 03:53:01 | 000,439,300 | ---- | C] () igfcg500.bin -> C:\Windows\SysWow64\igfcg500.bin -> [2010/05/12 03:53:01 | 000,134,592 | ---- | C] () FullRemove.exe -> C:\ProgramData\FullRemove.exe -> [2010/05/12 03:21:09 | 000,131,472 | ---- | C] () bootstat.dat -> C:\Windows\bootstat.dat -> [2009/07/14 06:38:36 | 000,067,584 | --S- | C] () NOISE.DAT -> C:\Windows\SysWow64\NOISE.DAT -> [2009/07/14 03:35:51 | 000,000,741 | ---- | C] () dssec.dat -> C:\Windows\SysWow64\dssec.dat -> [2009/07/14 03:34:42 | 000,215,943 | ---- | C] () mib.bin -> C:\Windows\mib.bin -> [2009/07/14 01:10:29 | 000,043,131 | ---- | C] () BWContextHandler.dll -> C:\Windows\SysWow64\BWContextHandler.dll -> [2009/07/14 00:42:10 | 000,064,000 | ---- | C] () msjetoledb40.dll -> C:\Windows\SysWow64\msjetoledb40.dll -> [2009/07/13 22:03:59 | 000,364,544 | ---- | C] () mlang.dat -> C:\Windows\SysWow64\mlang.dat -> [2009/06/10 22:26:10 | 000,673,088 | ---- | C] () [File - Lop Check] FrostWire -> C:\Users\MCGA\AppData\Roaming\FrostWire -> [2011/05/28 19:59:52 | 000,000,000 | ---D | M] NUnit -> C:\Users\MCGA\AppData\Roaming\NUnit -> [2011/05/26 14:23:12 | 000,000,000 | ---D | M] OEM -> C:\Users\MCGA\AppData\Roaming\OEM -> [2011/05/07 16:12:50 | 000,000,000 | ---D | M] PDF Writer -> C:\Users\MCGA\AppData\Roaming\PDF Writer -> [2011/05/16 20:08:13 | 000,000,000 | ---D | M] SoftGrid Client -> C:\Users\MCGA\AppData\Roaming\SoftGrid Client -> [2011/05/16 21:12:32 | 000,000,000 | ---D | M] SysWin -> C:\Users\MCGA\AppData\Roaming\SysWin -> [2011/05/27 22:09:59 | 000,000,000 | -HSD | M] TP -> C:\Users\MCGA\AppData\Roaming\TP -> [2011/05/11 21:48:18 | 000,000,000 | ---D | M] Windows Live Writer -> C:\Users\MCGA\AppData\Roaming\Windows Live Writer -> [2011/05/15 08:59:11 | 000,000,000 | ---D | M] SCHEDLGU.TXT -> C:\Windows\Tasks\SCHEDLGU.TXT -> [2009/07/14 06:08:49 | 000,013,532 | ---- | M] () [Custom Scans] < netsvcs > < %SYSTEMDRIVE%\*.exe > < MD5 Scans Start> < %systemdrive%\EXPLORER.EXE /md5 /s > explorer.exe : MD5=00B0358734CAA32C39D181FE6916B178 -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_b8b0208ee0ce1889\explorer.exe -> [2009/10/06 07:06:36 | 002,613,248 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=0862495E0C825893DB75EF44FAEA8E93 -> C:\Windows\explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=0862495E0C825893DB75EF44FAEA8E93 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe -> [2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=0FB9C74046656D1579A64660AD67B746 -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe -> [2011/02/26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=15BC38A7492BEFE831966ADB477CF76F -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe -> [2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=255CF508D7CFB10E0794D6AC93280BD8 -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe -> [2011/02/26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=2626FC9755BE22F805D3CFA0CE3EE727 -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe -> [2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -> C:\Windows\SysWOW64\explorer.exe -> [2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe -> [2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=332FEAB1435662FC6C672E25BEB37BE3 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe -> [2011/02/25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=3B69712041F3D63605529BD66DC00C48 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe -> [2011/02/26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=6D4F9E4B640B413C6F73414327484C80 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_addea9f19345cd81\explorer.exe -> [2009/10/06 07:35:29 | 002,868,736 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=700073016DAC1C3D2E7E2CE4223334B6 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe -> [2010/02/04 11:49:48 | 002,868,224 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=8B88EBBB05A0E56B7DCC708498C02B3E -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe -> [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=9AAAEC8DAC27AA17B053E6352AD233AE -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe -> [2009/10/31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=9FF6C4C91A3711C0A3B18F87B08B518D -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe -> [2010/02/04 11:49:48 | 002,613,248 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=B8EC4BD49CE8F6FC457721BFC210B67F -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe -> [2009/10/31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe -> [2010/02/04 11:49:48 | 002,613,248 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe -> [2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=C76153C7ECA00FA852BB0C193378F917 -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe -> [2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=CA17F8620815267DC838E30B68CB5052 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_ae5b763cac6d568e\explorer.exe -> [2009/10/06 07:31:09 | 002,868,736 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=E38899074D4951D31B4040E994DD7C8D -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe -> [2011/02/26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=F170B4A061C9E026437B193B4D571799 -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe -> [2010/02/04 11:49:48 | 002,868,224 | ---- | M] (Microsoft Corporation) explorer.exe : MD5=FC89FACA0473641CB625EDA9277D0885 -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_b8335443c7a68f7c\explorer.exe -> [2009/10/06 06:53:03 | 002,613,248 | ---- | M] (Microsoft Corporation) < %systemdrive%\SVCHOST.EXE /md5 /s > svchost.exe : MD5=54A47F6B5E09A77E61649109C6A08866 -> C:\Windows\SysWOW64\svchost.exe -> [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) svchost.exe : MD5=54A47F6B5E09A77E61649109C6A08866 -> C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe -> [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) svchost.exe : MD5=C78655BC80301D76ED4FEF1C1EA40A7D -> C:\Windows\SysNative\svchost.exe -> [2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) svchost.exe : MD5=C78655BC80301D76ED4FEF1C1EA40A7D -> C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe -> [2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) < %systemdrive%\USERINIT.EXE /md5 /s > userinit.exe : MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -> C:\Windows\SysWOW64\userinit.exe -> [2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) userinit.exe : MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -> C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe -> [2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) userinit.exe : MD5=6F8F1376A13114CC10C0E69274F5A4DE -> C:\Windows\SysNative\userinit.exe -> [2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) userinit.exe : MD5=6F8F1376A13114CC10C0E69274F5A4DE -> C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe -> [2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) < %systemdrive%\WINLOGON.EXE /md5 /s > winlogon.exe : MD5=132328DF455B0028F13BF0ABEE51A63A -> C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe -> [2009/07/14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) winlogon.exe : MD5=A93D41A4D4B0D91C072D11DD8AF266DE -> C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe -> [2009/10/28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) winlogon.exe : MD5=DA3E2A6FA9660CC75B471530CE88453A -> C:\Windows\SysNative\winlogon.exe -> [2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) winlogon.exe : MD5=DA3E2A6FA9660CC75B471530CE88453A -> C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe -> [2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) < MD5 Scans End> < %systemroot%\*. /mp /s > < hklm\software\clients\startmenuinternet|command /rs > HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS] -> [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS] -> [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL] -> [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\ -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE] -> [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\ -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES] -> [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\ -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE] -> [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand -> C:\Windows\SysWow64\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW] -> [2011/05/11 21:28:11 | 000,074,240 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand -> C:\Windows\SysWow64\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL] -> [2011/05/11 21:28:11 | 000,074,240 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand -> C:\Windows\SysWow64\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE] -> [2011/05/11 21:28:11 | 000,074,240 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\ -> C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE ["C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF] -> [2011/05/11 21:28:12 | 000,748,336 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\ -> C:\Program Files (x86)\Internet Explorer\iexplore.exe [C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE] -> [2011/05/11 21:28:12 | 000,748,336 | ---- | M] (Microsoft Corporation) < hklm\software\clients\startmenuinternet|command /64 /rs > 64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS] -> [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS] -> [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL] -> [2011/04/14 17:26:03 | 000,711,672 | ---- | M] (Mozilla Corporation) 64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\ -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE] -> [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) 64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\ -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES] -> [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) 64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\ -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE ["C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE] -> [2011/04/14 17:25:41 | 000,924,632 | ---- | M] (Mozilla Corporation) 64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand -> C:\Windows\SysNative\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW] -> [2011/05/11 21:28:11 | 000,089,088 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand -> C:\Windows\SysNative\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL] -> [2011/05/11 21:28:11 | 000,089,088 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand -> C:\Windows\SysNative\IE4UINIT.EXE ["C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE] -> [2011/05/11 21:28:11 | 000,089,088 | ---- | M] (Microsoft Corporation) 64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\ -> C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE ["C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF] -> [2011/05/11 21:28:12 | 000,748,336 | ---- | M] (Microsoft Corporation) 64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command -> -> HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\ -> C:\Program Files (x86)\Internet Explorer\iexplore.exe [C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE] -> [2011/05/11 21:28:12 | 000,748,336 | ---- | M] (Microsoft Corporation) CREATERESTOREPOINT Restore point Set: OTS Restore Point [Alternate Data Streams] @Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:93DE1838 @Alternate Data Stream - 151 bytes -> C:\ProgramData\Temp:AB689DEA < End of report > [/code]