[code] OTS logfile created on: 05/08/2011 17:46:00 - Run 1 OTS by OldTimer - Version 3.1.44.0 Folder = C:\Daniel\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000809 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy 4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 59.00% Memory free 8.00 Gb Paging File | 6.00 Gb Available in Paging File | 73.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 454.61 Gb Total Space | 176.68 Gb Free Space | 38.86% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: DANIEL-VAIO Current User Name: Daniel Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days [Processes - Safe List] ots.exe -> C:\Daniel\Downloads\OTS.exe -> [2011/08/05 17:43:57 | 000,645,120 | ---- | M] (OldTimer Tools) steamservice.exe -> C:\Program Files (x86)\Common Files\Steam\SteamService.exe -> [2011/08/02 17:54:58 | 000,411,432 | ---- | M] (Valve Corporation) steam.exe -> C:\Program Files (x86)\Steam\Steam.exe -> [2011/08/02 12:43:42 | 001,242,448 | ---- | M] (Valve Corporation) avastui.exe -> C:\Program Files\AVAST Software\Avast\AvastUI.exe -> [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) avastsvc.exe -> C:\Program Files\AVAST Software\Avast\AvastSvc.exe -> [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) daemonu.exe -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -> [2011/05/21 08:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) nvscpapisvr.exe -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -> [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) vcservice.exe -> C:\Program Files\Sony\VAIO Care\VCService.exe -> [2011/02/14 13:23:50 | 000,044,736 | ---- | M] (Sony Corporation) listener.exe -> C:\Program Files\Sony\VAIO Care\listener.exe -> [2011/01/29 05:36:18 | 000,081,016 | ---- | M] (Sony of America Corporation) lastfm.exe -> C:\Program Files (x86)\Last.fm\LastFM.exe -> [2010/10/27 21:21:54 | 001,155,072 | ---- | M] (Last.fm) vesmgr.exe -> C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe -> [2010/05/14 14:29:50 | 000,217,968 | ---- | M] (Sony Corporation) vesmgrsub.exe -> C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe -> [2010/03/02 17:22:44 | 000,120,176 | ---- | M] (Sony Corporation) shttray.exe -> C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe -> [2010/02/24 15:59:08 | 000,099,696 | ---- | M] (Sony Corporation) isbmgr.exe -> C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe -> [2010/01/15 14:40:22 | 000,316,784 | ---- | M] (Sony Corporation) iastordatamgrsvc.exe -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -> [2009/11/21 00:25:24 | 000,013,336 | ---- | M] (Intel Corporation) iastoricon.exe -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe -> [2009/11/21 00:25:22 | 000,284,696 | ---- | M] (Intel Corporation) psiservice_2.exe -> C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -> [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) iviregmgr.exe -> C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -> [2007/01/04 20:48:50 | 000,112,152 | ---- | M] (InterVideo) [Modules - Safe List] ots.exe -> C:\Daniel\Downloads\OTS.exe -> [2011/08/05 17:43:57 | 000,645,120 | ---- | M] (OldTimer Tools) snxhk.dll -> C:\Program Files\AVAST Software\Avast\snxhk.dll -> [2011/07/04 13:43:51 | 000,199,792 | ---- | M] (AVAST Software) comctl32.dll -> C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll -> [2010/11/20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) normaliz.dll -> C:\Windows\SysWOW64\normaliz.dll -> [2009/07/14 03:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) [Win32 Services - Safe List] 64bit-(avast! Antivirus) [Auto | Running] -> C:\Program Files\AVAST Software\Avast\AvastSvc.exe -> [2011/07/04 13:43:51 | 000,042,184 | ---- | M] (AVAST Software) 64bit-(VUAgent) [On_Demand | Stopped] -> C:\Program Files\Sony\VAIO Update 5\VUAgent.exe -> [2011/04/20 10:50:52 | 001,021,840 | ---- | M] (Sony Corporation) 64bit-(PuranDefrag) [Disabled | Stopped] -> C:\Windows\SysNative\PuranDefragS.exe -> [2011/04/08 16:09:28 | 000,290,816 | ---- | M] (Puran Software) 64bit-(VCService) [On_Demand | Running] -> C:\Program Files\Sony\VAIO Care\VCService.exe -> [2011/02/14 13:23:50 | 000,044,736 | ---- | M] (Sony Corporation) 64bit-(SampleCollector) [Auto | Running] -> C:\Program Files\Sony\VAIO Care\VCPerfService.exe -> [2011/01/29 05:36:18 | 000,259,192 | ---- | M] (Sony Corporation) 64bit-(EvtEng) [Auto | Running] -> C:\Program Files\Intel\WiFi\bin\EvtEng.exe -> [2011/01/12 15:57:54 | 001,430,800 | ---- | M] (Intel(R) Corporation) 64bit-(RegSrvc) [Auto | Running] -> C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -> [2011/01/12 15:36:22 | 000,840,976 | ---- | M] (Intel(R) Corporation) 64bit-(TurboBoost) [On_Demand | Stopped] -> C:\Program Files\Intel\TurboBoost\TurboBoost.exe -> [2010/11/29 15:00:56 | 000,149,504 | ---- | M] (Intel(R) Corporation) 64bit-(wlcrasvc) [Disabled | Stopped] -> C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -> [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) 64bit-(VSNService) [Auto | Running] -> C:\Program Files\Sony\VAIO Smart Network\VSNService.exe -> [2010/08/11 08:46:06 | 000,845,312 | ---- | M] (Sony Corporation) 64bit-(btwdins) [Auto | Running] -> C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -> [2010/03/12 18:15:40 | 000,920,352 | ---- | M] (Broadcom Corporation.) 64bit-(VAIO Power Management) [On_Demand | Running] -> C:\Program Files\Sony\VAIO Power Management\SPMService.exe -> [2010/01/20 16:10:10 | 000,574,320 | ---- | M] (Sony Corporation) 64bit-(LBTServ) [On_Demand | Stopped] -> C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -> [2009/07/20 12:36:14 | 000,160,784 | ---- | M] (Logitech, Inc.) 64bit-(WinDefend) [Auto | Running] -> C:\Program Files\Windows Defender\mpsvc.dll -> [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) (Steam Client Service) Steam Client Service [On_Demand | Running] -> C:\Program Files (x86)\Common Files\Steam\SteamService.exe -> [2011/08/02 17:54:58 | 000,411,432 | ---- | M] (Valve Corporation) (PnkBstrA) PnkBstrA [Disabled | Stopped] -> C:\Windows\SysWOW64\PnkBstrA.exe -> [2011/07/04 13:47:38 | 000,075,136 | ---- | M] () (nvUpdatusService) NVIDIA Update Service Daemon [Auto | Running] -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -> [2011/05/21 08:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) (Stereo Service) NVIDIA Stereoscopic 3D Driver Service [Auto | Running] -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -> [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) (VAIO Event Service) VAIO Event Service [Auto | Running] -> C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe -> [2010/05/14 14:29:50 | 000,217,968 | ---- | M] (Sony Corporation) (clr_optimization_v4.0.30319_32) Microsoft .NET Framework NGEN v4.0.30319_X86 [Auto | Stopped] -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -> [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) (ACDaemon) ArcSoft Connect Daemon [On_Demand | Stopped] -> C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -> [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) (SOHDms) VAIO Media plus Digital Media Server [Disabled | Stopped] -> C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe -> [2010/02/24 15:59:08 | 000,422,768 | ---- | M] (Sony Corporation) (SOHCImp) VAIO Media plus Content Importer [Disabled | Stopped] -> C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe -> [2010/02/24 15:59:08 | 000,108,400 | ---- | M] (Sony Corporation) (SOHDs) VAIO Media plus Device Searcher [Disabled | Stopped] -> C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe -> [2010/02/24 15:59:08 | 000,067,952 | ---- | M] (Sony Corporation) (IAStorDataMgrSvc) Intel(R) Rapid Storage Technology [Auto | Running] -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -> [2009/11/21 00:25:24 | 000,013,336 | ---- | M] (Intel Corporation) (clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Disabled | Stopped] -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) (PSI_SVC_2) Protexis Licensing V2 [Auto | Running] -> C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -> [2007/07/24 12:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) (IviRegMgr) IviRegMgr [Auto | Running] -> C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -> [2007/01/04 20:48:50 | 000,112,152 | ---- | M] (InterVideo) [Driver Services - Safe List] 64bit-(aswMonFlt) aswMonFlt [File_System | Auto | Running] -> C:\Windows\SysNative\drivers\aswMonFlt.sys -> [2011/07/04 13:32:24 | 000,064,856 | ---- | M] (AVAST Software) 64bit-(NVHDA) Service for NVIDIA High Definition Audio Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\nvhda64v.sys -> [2011/05/10 11:41:27 | 000,174,184 | ---- | M] (NVIDIA Corporation) 64bit-(USBAAPL64) Apple Mobile USB Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\usbaapl64.sys -> [2011/05/10 08:06:08 | 000,051,712 | ---- | M] (Apple, Inc.) 64bit-(amdsata) amdsata [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdsata.sys -> [2011/03/11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) 64bit-(amdxata) amdxata [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\amdxata.sys -> [2011/03/11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) 64bit-(NETwNs64) ___ Intel(R) Wireless WiFi Link 5000-serien adapter driver til Windows 7 64 Bit [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\NETwNs64.sys -> [2011/01/19 02:28:56 | 008,080,384 | ---- | M] (Intel Corporation) 64bit-(TurboB) Turbo Boost UI Monitor driver [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\TurboB.sys -> [2010/11/29 15:00:04 | 000,016,120 | ---- | M] (Intel(R) Corporation) 64bit-(HpSAMD) HpSAMD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\HpSAMD.sys -> [2010/11/20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) 64bit-(TsUsbFlt) TsUsbFlt [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\TsUsbFlt.sys -> [2010/11/20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) 64bit-(sdbus) sdbus [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\sdbus.sys -> [2010/11/20 11:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) 64bit-(atksgt) atksgt [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\atksgt.sys -> [2010/10/22 20:37:50 | 000,314,016 | ---- | M] () 64bit-(lirsgt) lirsgt [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\lirsgt.sys -> [2010/10/22 20:37:50 | 000,043,680 | ---- | M] () 64bit-(TVICHW32) TVICHW32 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\TVicHW32.sys -> [2010/09/30 23:19:31 | 000,021,200 | ---- | M] (EnTech Taiwan) 64bit-(fssfltr) fssfltr [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\fssfltr.sys -> [2010/09/23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) 64bit-(athr) Atheros Extensible Wireless LAN device driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\athrx.sys -> [2010/03/20 12:06:18 | 002,203,136 | ---- | M] (Atheros Communications, Inc.) 64bit-(rimspci) rimspci [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\rimssne64.sys -> [2010/03/19 12:03:49 | 000,093,184 | ---- | M] (REDC) 64bit-(risdsnpe) risdsnpe [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\risdsne64.sys -> [2010/03/19 12:03:46 | 000,077,312 | ---- | M] (REDC) 64bit-(btwrchid) btwrchid [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\btwrchid.sys -> [2010/03/18 22:47:39 | 000,021,544 | ---- | M] (Broadcom Corporation.) 64bit-(btwavdt) Bluetooth AVDT Service [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\btwavdt.sys -> [2010/03/18 22:47:38 | 000,135,720 | ---- | M] (Broadcom Corporation.) 64bit-(btwaudio) Bluetooth Audio Device Service [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\btwaudio.sys -> [2010/03/18 22:47:38 | 000,102,440 | ---- | M] (Broadcom Corporation.) 64bit-(btwampfl) Bluetooth AMP USB Filter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\btwampfl.sys -> [2010/03/18 22:47:37 | 000,334,888 | ---- | M] (Broadcom Corporation.) 64bit-(btwl2cap) Bluetooth L2CAP Service [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\btwl2cap.sys -> [2010/03/18 22:47:03 | 000,039,464 | ---- | M] (Broadcom Corporation.) 64bit-(ApfiltrService) Alps Pointing-device Filter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\Apfiltr.sys -> [2010/03/17 22:02:57 | 000,299,568 | ---- | M] (Alps Electric Co., Ltd.) 64bit-(Impcd) Impcd [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\Impcd.sys -> [2010/03/04 00:56:59 | 000,158,720 | ---- | M] (Intel Corporation) 64bit-(SFEP) Sony Firmware Extension Parser [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\SFEP.sys -> [2010/02/11 21:19:26 | 000,012,032 | ---- | M] (Sony Corporation) 64bit-(iaStor) Intel AHCI Controller [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\iaStor.sys -> [2009/11/21 00:09:48 | 000,537,112 | ---- | M] (Intel Corporation) 64bit-(yukonw7) NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\yk62x64.sys -> [2009/10/20 17:02:25 | 000,393,216 | ---- | M] (Marvell) 64bit-(NETw5s64) Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\NETw5s64.sys -> [2009/09/15 13:40:42 | 006,952,960 | ---- | M] (Intel Corporation) 64bit-(xusb21) Xbox 360 Wireless Receiver Driver Service 21 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\xusb21.sys -> [2009/08/13 22:10:18 | 000,073,984 | ---- | M] (Microsoft Corporation) 64bit-(amdsbs) amdsbs [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdsbs.sys -> [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) 64bit-(LSI_SAS2) LSI_SAS2 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\lsi_sas2.sys -> [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) 64bit-(stexstor) stexstor [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\stexstor.sys -> [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) 64bit-(LMouFilt) Logitech SetPoint KMDF Mouse Filter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\LMouFilt.Sys -> [2009/06/17 18:54:30 | 000,057,872 | ---- | M] (Logitech, Inc.) 64bit-(LHidFilt) Logitech SetPoint KMDF HID Filter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\LHidFilt.Sys -> [2009/06/17 18:54:22 | 000,055,312 | ---- | M] (Logitech, Inc.) 64bit-(LHidEqd) Logitech SetPoint Unifying KMDF HID Filter [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\LHidEqd.sys -> [2009/06/17 18:54:14 | 000,013,328 | ---- | M] (Logitech, Inc.) 64bit-(LEqdUsb) Logitech SetPoint Unifying KMDF USB Filter [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\LEqdUsb.sys -> [2009/06/17 18:54:06 | 000,074,256 | ---- | M] (Logitech, Inc.) 64bit-(Ntfs) Ntfs [File_System | On_Demand | Running] -> C:\Windows\SysNative\wbem\ntfs.mof -> [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () 64bit-(ebdrv) Broadcom NetXtreme II 10 GigE VBD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\evbda.sys -> [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) 64bit-(b06bdrv) Broadcom NetXtreme II VBD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\bxvbda.sys -> [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) 64bit-(b57nd60a) Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\b57nd60a.sys -> [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) 64bit-(hcw85cir) Hauppauge Consumer Infrared Receiver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\hcw85cir.sys -> [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) 64bit-(s1029unic) Sony Ericsson Device 1029 USB Ethernet Emulation (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\s1029unic.sys -> [2009/05/25 14:34:54 | 000,151,592 | ---- | M] (MCCI Corporation) 64bit-(s1029mgmt) Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\s1029mgmt.sys -> [2009/05/25 14:34:54 | 000,139,304 | ---- | M] (MCCI Corporation) 64bit-(s1029obex) Sony Ericsson Device 1029 USB WMC OBEX Interface [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\s1029obex.sys -> [2009/05/25 14:34:54 | 000,135,208 | ---- | M] (MCCI Corporation) 64bit-(s1029mdm) Sony Ericsson Device 1029 USB WMC Modem Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\s1029mdm.sys -> [2009/05/25 14:34:52 | 000,158,760 | ---- | M] (MCCI Corporation) 64bit-(s1029nd5) Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\s1029nd5.sys -> [2009/05/25 14:34:52 | 000,034,856 | ---- | M] (MCCI Corporation) 64bit-(s1029mdfl) Sony Ericsson Device 1029 USB WMC Modem Filter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\s1029mdfl.sys -> [2009/05/25 14:34:50 | 000,019,496 | ---- | M] (MCCI Corporation) 64bit-(s1029bus) Sony Ericsson Device 1029 driver (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\s1029bus.sys -> [2009/05/25 14:34:48 | 000,116,264 | ---- | M] (MCCI Corporation) 64bit-(GEARAspiWDM) GEAR ASPI Filter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\GEARAspiWDM.sys -> [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) 64bit-(regi) regi [Kernel | Auto | Stopped] -> C:\Windows\SysNative\drivers\regi.sys -> [2007/04/17 12:51:50 | 000,014,112 | ---- | M] (InterVideo) 64bit-(6077757b) 6077757b [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\regi.sys -> [2007/04/17 12:51:50 | 000,014,112 | ---- | M] (InterVideo) 64bit-(MarvinBus) Pinnacle Marvin Bus 64 [Kernel | Disabled | Stopped] -> C:\Windows\SysNative\drivers\MarvinBus64.sys -> [2005/09/23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) (TVICHW32) TVICHW32 [Kernel | On_Demand | Stopped] -> C:\Windows\SysWOW64\drivers\TVicHW32.sys -> [2010/09/30 23:19:31 | 000,029,536 | ---- | M] (EnTech Taiwan) [Registry - Safe List] < 64bit-Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\SysWOW64\blank.htm -> < Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> -> HKEY_USERS\.DEFAULT\: "ProxyEnable" -> 0 -> < Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> -> HKEY_USERS\S-1-5-18\: "ProxyEnable" -> 0 -> < Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> -> < Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> -> < Internet Explorer Settings [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\: Main\\"Default_Page_URL" -> http://www.google.com/ig/redirectdomain?brand=SVED&bmod=EU01 -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\: Main\\"Start Page" -> http://www.google.dk/ -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\: "ProxyEnable" -> 0 -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\: "ProxyOverride" -> *.local -> < Internet Explorer Settings [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\] > -> -> < FireFox Settings [Prefs.js] > -> C:\Users\Daniel\AppData\Roaming\Mozilla\FireFox\Profiles\izz4kcwm.default\prefs.js -> < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Firefox\Extensions -> -> HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com -> C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF [C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF] -> [2011/07/10 05:04:14 | 000,000,000 | ---D | M] HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions -> -> HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS] -> [2011/07/13 21:57:52 | 000,000,000 | ---D | M] HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS] -> [2011/07/13 21:57:52 | 000,000,000 | ---D | M] < FireFox Extensions [User Folders] > -> -> C:\Users\Daniel\AppData\Roaming\mozilla\Extensions -> [2011/03/23 01:46:26 | 000,000,000 | ---D | M] -> C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\izz4kcwm.default\extensions -> [2011/07/07 10:17:19 | 000,000,000 | ---D | M] DownloadHelper -> C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\izz4kcwm.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} -> [2011/07/07 10:17:19 | 000,000,000 | ---D | M] < FireFox Extensions [Program Folders] > -> -> C:\Program Files (x86)\mozilla firefox\extensions -> [2011/05/02 17:19:13 | 000,000,000 | ---D | M] Java Console -> C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} -> [2011/01/10 14:59:19 | 000,000,000 | ---D | M] Java Console -> C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} -> [2011/03/11 17:14:37 | 000,000,000 | ---D | M] Java Console -> C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} -> [2011/05/02 17:19:13 | 000,000,000 | ---D | M] No name found -> -> File not found avast! WebRep -> C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF -> [2011/07/10 05:04:14 | 000,000,000 | ---D | M] < HOSTS File > ([2011/05/02 17:00:33 | 000,000,098 | ---- | M] - 2 lines) -> C:\Windows\SysNative\Drivers\etc\hosts -> Reset Hosts 127.0.0.1 localhost ::1 localhost < 64bit-BHO's [HKEY_LOCAL_MACHINE] > -> 64bit-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [avast! WebRep] -> [2011/07/04 13:43:43 | 000,978,496 | ---- | M] (AVAST Software) < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/07/04 13:43:50 | 000,820,864 | ---- | M] (AVAST Software) < 64bit-Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> "{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [avast! WebRep] -> [2011/07/04 13:43:43 | 000,978,496 | ---- | M] (AVAST Software) < Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> "{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}" [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/07/04 13:43:50 | 000,820,864 | ---- | M] (AVAST Software) < 64bit-Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "Apoint" -> C:\Program Files\Apoint\Apoint.exe [%ProgramFiles%\Apoint\Apoint.exe] -> [2010/03/17 22:02:57 | 000,212,480 | ---- | M] (Alps Electric Co., Ltd.) "Kernel and Hardware Abstraction Layer" -> C:\Windows\KHALMNPR.Exe [KHALMNPR.EXE] -> [2009/06/17 18:53:26 | 000,130,576 | ---- | M] (Logitech, Inc.) "Logitech Download Assistant" -> C:\Windows\SysNative\LogiLDA.dll [C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch] -> [2010/11/03 22:50:28 | 001,580,368 | ---- | M] (Logitech, Inc.) "RtHDVCpl" -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s] -> [2010/02/25 22:26:00 | 010,060,320 | ---- | M] (Realtek Semiconductor) < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "avast" -> C:\Program Files\AVAST Software\Avast\avastUI.exe ["C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui] -> [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) "IAStorIcon" -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe] -> [2009/11/21 00:25:22 | 000,284,696 | ---- | M] (Intel Corporation) "ISBMgr.exe" -> C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe ["C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"] -> [2010/01/15 14:40:22 | 000,316,784 | ---- | M] (Sony Corporation) "SHTtray.exe" -> C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe [C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe] -> [2010/02/24 15:59:08 | 000,099,696 | ---- | M] (Sony Corporation) < Run [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "Sidebar" -> C:\Program Files (x86)\Windows Sidebar\Sidebar.exe [%ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun] -> [2010/11/20 14:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) < RunOnce [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "mctadmin" -> [C:\Windows\System32\mctadmin.exe] -> File not found < Run [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "Sidebar" -> C:\Program Files (x86)\Windows Sidebar\Sidebar.exe [%ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun] -> [2010/11/20 14:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) < RunOnce [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "mctadmin" -> [C:\Windows\System32\mctadmin.exe] -> File not found < Run [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "Steam" -> C:\Program Files (x86)\Steam\steam.exe ["C:\Program Files (x86)\Steam\steam.exe" -silent] -> [2011/08/02 12:43:42 | 001,242,448 | ---- | M] (Valve Corporation) < Run [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "Sidebar" -> C:\Program Files (x86)\Windows Sidebar\Sidebar.exe [%ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun] -> [2010/11/20 14:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) < RunOnce [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> "mctadmin" -> [C:\Windows\System32\mctadmin.exe] -> File not found < CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoActiveDesktop" -> [1] -> File not found \\"NoActiveDesktopChanges" -> [1] -> File not found < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System \\"ConsentPromptBehaviorAdmin" -> [5] -> File not found \\"ConsentPromptBehaviorUser" -> [3] -> File not found HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats < Internet Explorer Menu Extensions [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\MenuExt\ -> E&ksporter til Microsoft Excel -> [res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000] -> File not found < Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\MenuExt\ -> E&ksporter til Microsoft Excel -> [res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000] -> File not found < 64bit-Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\Software\Microsoft\Internet Explorer\MenuExt\ -> Send billede til &Bluetooth-enhed... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm] -> [2008/12/10 11:36:32 | 000,001,430 | ---- | M] () Send siden til &Bluetooth-enhed... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm] -> [2009/08/24 23:43:00 | 000,004,037 | ---- | M] () < Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\Software\Microsoft\Internet Explorer\MenuExt\ -> E&ksporter til Microsoft Excel -> [res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000] -> File not found Google Sidewiki ... -> [res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html] -> File not found Send billede til &Bluetooth-enhed... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm] -> [2008/12/10 11:36:32 | 000,001,430 | ---- | M] () Send siden til &Bluetooth-enhed... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm] -> [2009/08/24 23:43:00 | 000,004,037 | ---- | M] () < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {92780B25-18CC-41C8-B9BE-3C9C571A8263}:{FF059E31-CC5A-4E2E-BF3B-96E929D65503} [HKLM] -> C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL [Button: Opslag] -> [2007/04/19 14:10:18 | 000,063,840 | ---- | M] (Microsoft Corporation) < Internet Explorer Extensions [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\Software\Microsoft\Internet Explorer\Extensions\ -> 64bit-CmdMapping\\"{CCA281CA-C863-46ef-9331-5C8D4460577F}" [HKLM] -> [Reg Error: Key error.] -> File not found CmdMapping\\"{CCA281CA-C863-46ef-9331-5C8D4460577F}" [HKLM] -> [Reg Error: Key error.] -> File not found < 64bit-Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> < 64bit-Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < 64bit-Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < 64bit-Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < 64bit-Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab [Java Plug-in 1.6.0_26] -> {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab [Java Plug-in 1.6.0_26] -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab [Java Plug-in 1.6.0_26] -> < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {01025D1C-BB03-4369-8344-732CD0DCCCF0} [HKLM] -> http://www.geforce.com/services_toolkit/ShimGen/1.1.28.1/GPU_Reader.cab [NVIDIA GPU Reader Class] -> {02CF1781-EA91-4FA5-A200-646E8241987C} [HKLM] -> http://esupport.sony.com/VaioInfo.CAB [VaioInfo.CMClass] -> {0E5F0222-96B9-11D3-8997-00104BD12D94} [HKLM] -> http://www.pcpitstop.com/betapit/PCPitStop.CAB [PCPitstop Utility] -> {74DBCB52-F298-4110-951D-AD2FF67BC8AB} [HKLM] -> http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab [NVIDIA Smart Scan] -> {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab [Java Plug-in 1.6.0_25] -> {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab [Java Plug-in 1.6.0_25] -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab [Java Plug-in 1.6.0_25] -> {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} [HKLM] -> http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab [SysInfo Class] -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> DhcpNameServer -> 192.168.1.1 212.242.40.3 212.242.40.51 -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {04E002B9-AEDB-48D8-82B3-25B3788AD09A}\\DhcpNameServer -> 192.168.1.1 212.242.40.3 212.242.40.51 (Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller) -> {F84492F2-514A-43FA-82A8-65A270F572BA}\\DhcpNameServer -> 192.168.1.1 212.242.40.3 212.242.40.51 (Intel(R) Centrino(R) Advanced-N 6200 AGN) -> < 64bit-Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 64bit-*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> explorer.exe -> C:\Windows\explorer.exe -> [2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> 64bit-*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> SystemPropertiesPerformance.exe -> C:\Windows\SysNative\SystemPropertiesPerformance.exe -> [2009/07/14 03:39:47 | 000,082,432 | ---- | M] (Microsoft Corporation) /pagefile -> -> File not found *MultiFile Done* -> -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> explorer.exe -> C:\Windows\SysWow64\explorer.exe -> [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> *VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> /pagefile -> -> File not found *MultiFile Done* -> -> < 64bit-Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> LBTWlgn -> c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll -> [2009/07/20 12:36:46 | 000,076,816 | ---- | M] (Logitech, Inc.) < 64bit-SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found < SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found < Vista Active Firewall Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules -> {040EBAC6-3436-4E56-ACEA-D782ACF3862D} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live communications platform (ssdp) | {13C03B8C-AFE5-425B-B769-BFFA69DF6230} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live communications platform (upnp) | {2AC015DA-8DEC-472D-856E-A4A7D4463886} -> rport=445 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-28515 | app=system | {3E860438-97BA-4413-9BC1-7BE270F8F5C4} -> lport=445 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28511 | app=system | {456519E4-82FB-4FD0-A451-6A33A62547A0} -> rport=138 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28531 | app=system | {4D25843C-E8C2-436F-BF3C-41500DE1C369} -> lport=1900 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31269 | app=%systemroot%\system32\svchost.exe | svc=ssdpsrv | {4EEE45A8-80D7-4764-B32D-DDFE31AA3E1A} -> rport=1900 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31273 | app=%systemroot%\system32\svchost.exe | svc=ssdpsrv | {5A4524B1-1781-4078-BAA3-09D030393B0E} -> lport=rpc | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28535 | app=%systemroot%\system32\spoolsv.exe | svc=spooler | {60F79BC8-7501-481E-8391-56308F86FB3D} -> lport=137 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28519 | app=system | {65FA4222-88E4-4046-A995-90FAE701F75D} -> rport=10243 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31289 | app=system | {6742FA26-08FC-4E62-B34A-E2FFC376FDD6} -> rport=2177 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31257 | app=%systemroot%\system32\svchost.exe | svc=qwave | {6B239F52-DCA4-4B0C-9A75-875775A41AF8} -> lport=139 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28503 | app=system | {6FEA2FE6-C919-469D-A499-59D7A6C7E1B4} -> lport=2177 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31261 | app=%systemroot%\system32\svchost.exe | svc=qwave | {7A1E0D89-2723-4E2B-AA7A-38BA361BD90B} -> lport=rpc-epmap | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28539 | svc=rpcss | {7BEFC75C-6E58-42D4-8747-2CD3B45C87ED} -> rport=5355 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28550 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {8041E96C-433A-4472-85B7-B905A6373401} -> lport=138 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28527 | app=system | {91EC6FB4-D928-48DB-9381-A5E9B92FC9B9} -> lport=2177 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31253 | app=%systemroot%\system32\svchost.exe | svc=qwave | {A10B5C19-3263-4139-9C68-9222718FB0DB} -> rport=137 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28523 | app=system | {A83C6C91-7304-45FC-B2E2-732C6E644E0F} -> rport=2177 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31265 | app=%systemroot%\system32\svchost.exe | svc=qwave | {ABE609E7-2819-477F-AF25-6FD885D96D74} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv | {AC19E646-8BAA-425A-ABE0-CD2DCFD020F9} -> lport=2869 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31277 | app=system | {C3C9C8EF-EB76-4AA7-BBAF-4C0074B7D561} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system | {D0805000-CD22-41C5-AA02-FBEEA5F741BD} -> rport=139 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-28507 | app=system | {D108A66B-43EC-4035-B287-D1145A13192A} -> lport=10243 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31285 | app=system | {FC7AC1D3-4407-4383-AFD5-A3E31F9323A9} -> lport=5355 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28548 | app=%systemroot%\system32\svchost.exe | svc=dnscache | < Vista Active Application Exception Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules -> {04CDE6EA-B1CF-4A27-A2B2-F27615D6D9C8} -> profile=private | protocol=17 | dir=in | action=allow | name=shadowgrounds | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds\shadowgroundslauncher.exe | {067FCC9C-72CE-4219-8B40-CCB0B7493E51} -> profile=private | protocol=17 | dir=in | action=allow | name=medal of honor beta | app=c:\program files (x86)\steam\steamapps\common\medal of honor beta\support\ea help\electronic_arts_technical_support.htm | {09928A1C-DC99-45E3-9A87-CFFC97993F4F} -> profile=private | protocol=17 | dir=in | action=allow | name=revenge of the titans | app=c:\program files (x86)\steam\steamapps\common\revenge of the titans\revengeofthetitans.exe | {09C718FE-6803-4B98-A6B5-02348F04F606} -> profile=private | protocol=6 | dir=in | action=allow | name=revenge of the titans | app=c:\program files (x86)\steam\steamapps\common\revenge of the titans\revengeofthetitans.exe | {0C611D79-D0B0-4BCF-8821-3CD7059720BD} -> profile=private | protocol=17 | dir=in | action=allow | name=the whispered world | app=c:\program files (x86)\steam\steamapps\common\whispered world\twwloader.exe | {0C77A184-9D81-475B-8185-83FBD968C3A7} -> profile=private | protocol=17 | dir=in | action=allow | name=nightsky | app=c:\program files (x86)\steam\steamapps\common\nightsky\nightsky.exe | {0D87D529-17EF-4FB2-A7DE-3F161523A411} -> profile=private | protocol=6 | dir=in | action=allow | name=hitman: blood money | app=c:\program files (x86)\steam\steamapps\common\hitman blood money\hitmanbloodmoney.exe | {0E7AF0BE-4330-4353-A310-B75E1B2BB9DB} -> profile=private | protocol=6 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\fc2serverlauncher.exe | {0EA2808A-110A-4907-B84C-F83C96B854E8} -> profile=private | protocol=17 | dir=in | action=allow | name=batman: arkham asylum goty edition | app=c:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\bmlauncher.exe | {0EE1A531-9D5C-4267-BEA2-E0C5F22DDE25} -> profile=private | protocol=6 | dir=in | action=allow | name=mafia ii | app=c:\program files (x86)\steam\steamapps\common\mafia ii\pc\mafia2.exe | {14A3C7B0-D1BE-4BBD-9EE1-ACE530208DE2} -> profile=private | protocol=17 | dir=in | action=allow | name=monkey island 2: special edition | app=c:\program files (x86)\steam\steamapps\common\monkey2\monkey2.exe | {161BA7DA-D897-4A0D-99FE-01EC42B96CEE} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31317 | app=%programfiles%\windows media player\wmpnetwk.exe | {17627AAD-83EB-44E4-B761-BCD8E11AC20F} -> profile=private | protocol=6 | dir=in | action=allow | name=nightsky | app=c:\program files (x86)\steam\steamapps\common\nightsky\nightsky.exe | {189ADA33-5DB5-46A8-959D-954EC6C53E20} -> profile=private | protocol=17 | dir=in | action=allow | name=battlefield: bad company 2 | app=c:\program files (x86)\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm | {1C8D44A7-F5CD-4962-A928-228AAB89D32E} -> profile=private | protocol=6 | dir=in | action=allow | name=medal of honor(tm) single player | app=c:\program files (x86)\steam\steamapps\common\medal of honor\binaries\moh.exe | {23ABE916-5A0C-4795-ADBE-D3444997D663} -> dir=in | action=allow | name=windows live sync | app=c:\program files (x86)\windows live\sync\windowslivesync.exe | {28524178-6F9C-411C-94F7-847C83E6E12D} -> profile=private | protocol=17 | dir=in | action=allow | name=hitman: blood money | app=c:\program files (x86)\steam\steamapps\common\hitman blood money\configure.exe | {306322F0-FE47-4565-8A2E-43E5B15C6A30} -> profile=private | protocol=6 | dir=in | action=allow | name=ben there, dan that! | app=c:\program files (x86)\steam\steamapps\common\ben there, dan that!\btdt.exe | {30651E5C-6D03-4CA7-86A3-A82E4F4FA13F} -> profile=private | protocol=17 | dir=in | action=allow | name=left 4 dead 2 | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | {312C77A7-DE57-4AE0-984B-5AE16391B206} -> profile=private | protocol=17 | dir=in | action=allow | name=amnesia: the dark descent | app=c:\program files (x86)\steam\steamapps\common\amnesia the dark descent\launcher.exe | {32427A66-4B71-4FC7-8B48-EE6C7177AD1C} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31023 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {35938C47-F493-41D8-8D4E-50BAC327F90B} -> profile=private | protocol=6 | dir=in | action=allow | name=battlefield: bad company 2 | app=c:\program files (x86)\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe | {3CD85E38-0245-47E6-BC6C-F2AC43FA634C} -> profile=private | protocol=17 | dir=in | action=allow | name=vampire: the masquerade - bloodlines | app=c:\program files (x86)\steam\steamapps\common\vampire the masquerade - bloodlines\vampire.exe | {3D3188D6-8429-441B-ADB7-7680319C2B9C} -> profile=private | protocol=6 | dir=in | action=allow | name=osmos | app=c:\program files (x86)\steam\steamapps\common\osmos\osmos.exe | {40D6A269-20C6-4D2F-A9CF-9320D72D7466} -> profile=private | protocol=17 | dir=in | action=allow | name=cogs | app=c:\program files (x86)\steam\steamapps\common\cogs\cogs.exe | {443F6719-2AB2-4B12-9F34-11A9C1E97F71} -> profile=private | protocol=17 | dir=in | action=allow | name=shadowgrounds: survivor | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds survivor\survivor.exe | {483C90C2-51D4-4CF7-A3C7-F462D2A53FFF} -> profile=private | protocol=17 | dir=in | action=allow | name=bonjour tjeneste | app=c:\program files (x86)\bonjour\mdnsresponder.exe | {484E4C35-7F42-4142-86AE-FBA9376845FC} -> profile=private | protocol=17 | dir=in | action=allow | name=machinarium | app=c:\program files (x86)\steam\steamapps\common\machinarium\machinarium.exe | {4A01E0A3-A9E5-44D1-BB98-EF58A262ABC0} -> profile=private | protocol=6 | dir=in | action=allow | name=monkey island 2: special edition | app=c:\program files (x86)\steam\steamapps\common\monkey2\monkey2.exe | {4FB46753-7E73-44F4-8E79-58A3CC19FE96} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31321 | app=%systemroot%\system32\svchost.exe | svc=upnphost | {50C279DE-F78E-46FD-95BB-2133C4ED749E} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31305 | app=%programfiles%\windows media player\wmpnetwk.exe | {51A9C4B2-48FF-4C0D-969B-DDD120365245} -> profile=private | protocol=6 | dir=in | action=allow | name=bonjour tjeneste | app=c:\program files (x86)\bonjour\mdnsresponder.exe | {51BC7E62-8718-4460-8E02-3B276EE6AC2F} -> dir=in | action=allow | name=vaio media plus digital media server | app=c:\program files (x86)\common files\sony shared\sohlib\sohdms.exe | {5306B03F-2FA3-4281-AFF4-B2AACB12F5A4} -> profile=private | protocol=17 | dir=in | action=allow | name=shadowgrounds | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds\shadowgrounds.exe | {5454F9D1-06C2-4C05-B715-7F12B7215719} -> profile=private | protocol=17 | dir=in | action=allow | name=alpha protocol | app=c:\program files (x86)\sega\alpha protocol\binaries\apgame.exe | {551D36DA-7D76-49E2-9264-A4FA43EAAD6E} -> profile=private | protocol=17 | dir=in | action=allow | name=trine | app=c:\program files (x86)\steam\steamapps\common\trine\trine_launcher.exe | {580CADEE-1DC0-42D7-B9FC-A05F71E48EBC} -> profile=private | protocol=17 | dir=in | action=allow | name=left 4 dead | app=c:\program files (x86)\steam\steamapps\common\left 4 dead\left4dead.exe | {582181A1-331F-400D-8BDF-C7F16CE028FF} -> profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31313 | app=%programfiles%\windows media player\wmpnetwk.exe | {59D1A52F-2389-4690-8BBE-1264F4FBE1DA} -> profile=private | protocol=6 | dir=in | action=allow | name=shadowgrounds: survivor | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds survivor\survivor.exe | {5A66FCEE-429F-4CFF-8203-50E106A62DFB} -> profile=private | protocol=6 | dir=in | action=allow | name=pnkbstrb | app=c:\windows\syswow64\pnkbstrb.exe | {5E097282-524E-480C-8952-C5A4C885FE43} -> profile=private | protocol=6 | dir=in | action=allow | name=trine | app=c:\program files (x86)\steam\steamapps\common\trine\trine_launcher.exe | {5F773FA9-5B1B-4325-8D3D-AF7EE880BE46} -> profile=public | protocol=6 | dir=in | action=allow | name=cogs | app=c:\program files (x86)\steam\steamapps\common\cogs\cogs.exe | {6403ADC6-E12A-4263-AE76-DBBA1BE97130} -> profile=private | protocol=17 | dir=in | action=allow | name=medal of honor(tm) single player | app=c:\program files (x86)\steam\steamapps\common\medal of honor\support\ea help\electronic_arts_technical_support.htm | {683B06A2-9BBA-45AC-A1C2-85F222E166B7} -> profile=private | protocol=6 | dir=in | action=allow | name=counter-strike | app=c:\program files (x86)\steam\steamapps\bergstrom1994\counter-strike\hl.exe | {683CCE6D-F8CB-4DDE-822F-B5A1FD50F6BE} -> profile=private | protocol=6 | dir=in | action=allow | name=alpha protocol | app=c:\program files (x86)\sega\alpha protocol\binaries\apgame.exe | {6992D70D-07EA-4D60-BF3B-58BED63652DF} -> profile=private | protocol=6 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\fc2benchmarktool.exe | {6ABF6421-A4D8-43C9-9BC0-1857B1377D0B} -> profile=private | protocol=17 | dir=in | action=allow | name=medal of honor(tm) single player | app=c:\program files (x86)\steam\steamapps\common\medal of honor\binaries\moh.exe | {6B2C5F71-0350-44C1-A58B-A1ADCE2E135D} -> profile=private | protocol=17 | dir=in | action=allow | name=darksiders | app=c:\program files (x86)\steam\steamapps\common\darksiders\darksiderspc.exe | {6BBC96B8-AA00-43F7-A623-FDBAD676B0E8} -> dir=in | action=allow | name=windows live messenger | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | {6E58CC6D-C0C2-4351-B193-E3AC232A213F} -> profile=private | protocol=6 | dir=in | action=allow | name=shadowgrounds: survivor | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds survivor\shadowgrounds survivor launcher.exe | {6EE4E942-91F6-445B-8201-3E3FC0A229A9} -> profile=private | protocol=6 | dir=in | action=allow | name=steam | app=c:\program files (x86)\steam\steam.exe | {6F6711C8-A9F0-4B36-974D-E5D00FA6E3BC} -> profile=private | protocol=6 | dir=in | action=allow | name=hitman: blood money | app=c:\program files (x86)\steam\steamapps\common\hitman blood money\configure.exe | {718121B4-B19F-481B-A269-E4C43387116B} -> dir=in | action=allow | name=vaio media plus device searcher | app=c:\program files (x86)\common files\sony shared\sohlib\sohds.exe | {752F0887-A86D-44E4-9CEE-94E24AA93343} -> profile=private | protocol=17 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\fc2benchmarktool.exe | {75AFCCF4-0027-45D7-8E62-79AD81807CF7} -> profile=private | protocol=6 | dir=in | action=allow | name=batman: arkham asylum goty edition | app=c:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\bmlauncher.exe | {76DC37A3-4CF3-48C8-8B92-AD983BDC56C9} -> profile=private | protocol=6 | dir=in | action=allow | name=medal of honor beta | app=c:\program files (x86)\steam\steamapps\common\medal of honor beta\support\ea help\electronic_arts_technical_support.htm | {79DF0ED1-DD53-48D6-B540-6487E221A79D} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31025 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {7AA1A62C-3FFB-4B7B-B44C-0F4DCAF1EE72} -> dir=in | action=allow | name=skype | app=c:\program files (x86)\skype\phone\skype.exe | {7DB36A0E-2838-49D5-BAA6-507A13A9CA53} -> profile=private | protocol=17 | dir=in | action=allow | name=mafia ii | app=c:\program files (x86)\steam\steamapps\common\mafia ii\pc\mafia2.exe | {801BECBC-100C-4255-BDC8-2542EE9F4D64} -> profile=private | protocol=6 | dir=in | action=allow | name=darksiders | app=c:\program files (x86)\steam\steamapps\common\darksiders\darksiderspc.exe | {823637F8-0788-466E-B80C-DDD93807CA36} -> profile=private | protocol=17 | dir=in | action=allow | name=counter-strike | app=c:\program files (x86)\steam\steamapps\bergstrom1994\counter-strike\hl.exe | {841A3FE1-BC42-421E-96A9-270612117476} -> profile=private | protocol=6 | dir=in | action=allow | name=ben there, dan that! | app=c:\program files (x86)\steam\steamapps\common\ben there, dan that!\winsetup.exe | {858CC42B-6217-4C4F-A97A-F1CC19B6A9FD} -> profile=private | protocol=6 | dir=in | action=allow | name=left 4 dead | app=c:\program files (x86)\steam\steamapps\common\left 4 dead\left4dead.exe | {8605869F-129C-4424-A71B-EFE5060810B3} -> profile=private | protocol=17 | dir=in | action=allow | name=darkplaces game engine | app=c:\program files (x86)\steelstorm\steelstorm.exe | {86480BAA-C232-407D-BA1D-3B89843FC56D} -> profile=private | protocol=6 | dir=in | action=allow | name=pnkbstra | app=c:\windows\syswow64\pnkbstra.exe | {8AC77757-49C4-48C3-9181-F8C259055AB1} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31281 | app=system | {8B727631-0725-4CDB-9FC7-C953C240F28A} -> profile=private | protocol=6 | dir=in | action=allow | name=shadowgrounds | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds\shadowgroundslauncher.exe | {8B74DD64-58D0-4449-8C50-CF7ADC687FD2} -> profile=private | protocol=17 | dir=in | action=allow | name=tom clancy's ghost recon: advanced warfighter 2 | app=c:\program files (x86)\steam\steamapps\common\ghost recon advanced warfighter 2\graw2.exe | {8D1A5420-899D-4885-80AF-0A62E31C851B} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31024 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {8E998844-46CD-4AD0-976F-C53A9BB7C2AF} -> profile=private | protocol=6 | dir=in | action=allow | name=world of goo | app=c:\program files (x86)\steam\steamapps\common\world of goo\worldofgoo.exe | {8FD88DD0-D839-422A-A977-A174296A109E} -> profile=private | protocol=17 | dir=in | action=allow | name=bully: scholarship edition | app=c:\program files (x86)\steam\steamapps\common\bully scholarship edition\bully.exe | {8FE74564-FAD5-4308-A76C-002D31121D05} -> profile=private | protocol=17 | dir=in | action=allow | name=time gentlemen, please! | app=c:\program files (x86)\steam\steamapps\common\time gentlemen, please!\tgp.exe | {93CBC8F4-D4D5-4EF3-9810-8D899DC428DF} -> profile=private | protocol=6 | dir=in | action=allow | name=vampire: the masquerade - bloodlines | app=c:\program files (x86)\steam\steamapps\common\vampire the masquerade - bloodlines\vampire.exe | {9465384D-49B0-44CB-8D15-0B2F171FE085} -> profile=private | protocol=6 | dir=in | action=allow | name=grand theft auto: san andreas | app=c:\program files (x86)\steam\steamapps\common\grand theft auto san andreas\gta-sa.exe | {9505662F-56D4-430D-9CA4-A9D358ACFA3B} -> profile=private | protocol=6 | dir=in | action=allow | name=red faction: guerrilla | app=c:\program files (x86)\steam\steamapps\common\red faction guerrilla\rfg_launcher.exe | {95412ED0-8673-4D0A-B7F0-25FB5CBEFDED} -> profile=public | protocol=17 | dir=in | action=allow | name=cogs | app=c:\program files (x86)\steam\steamapps\common\cogs\cogs.exe | {95DF0F05-3B9F-40DA-B259-26B821EAA996} -> profile=private | protocol=17 | dir=in | action=allow | name=osmos | app=c:\program files (x86)\steam\steamapps\common\osmos\osmos.exe | {9723E48E-D81F-4C2C-9604-B45B13C5BD0E} -> profile=private | protocol=58 | dir=in | action=allow | name=@firewallapi.dll,-28545 | {98C3E5BF-1BD3-419A-9009-9089CEE27833} -> profile=private | protocol=6 | dir=in | action=allow | name=darkplaces game engine | app=c:\program files (x86)\steelstorm\steelstorm-dedicated.exe | {997D1CDC-DDB0-4415-802B-C18F470EB958} -> profile=private | protocol=6 | dir=in | action=allow | name=the whispered world | app=c:\program files (x86)\steam\steamapps\common\whispered world\twwloader.exe | {9A4CF43B-79CB-41C0-BDF6-1748DA720AB3} -> profile=private | protocol=6 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\fc2editor.exe | {9C241FA8-5983-42C3-A0D4-1C8B212DB7FB} -> profile=private | protocol=17 | dir=in | action=allow | name=darkplaces game engine | app=c:\program files (x86)\steelstorm\steelstorm-dedicated.exe | {9EC8294B-E4BB-4F17-A811-C23E65F6E502} -> profile=private | protocol=1 | dir=in | action=allow | name=@firewallapi.dll,-28543 | {9EEF789B-17B9-4F2D-92F6-D498814797C0} -> profile=private | protocol=17 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\fc2editor.exe | {A01B2291-E8E2-4B37-9890-01E8D19F92B8} -> profile=private | protocol=6 | dir=in | action=allow | name=tom clancy's ghost recon: advanced warfighter 2 | app=c:\program files (x86)\steam\steamapps\common\ghost recon advanced warfighter 2\graw2.exe | {A2481993-249F-4DEB-BE31-CD3C737DA2AE} -> profile=private | protocol=17 | dir=in | action=allow | name=pnkbstra | app=c:\windows\syswow64\pnkbstra.exe | {A27E34B9-251E-4836-AAD0-96B4B78B741C} -> dir=in | action=allow | name=vaio media plus content importer | app=c:\program files (x86)\common files\sony shared\sohlib\sohcimp.exe | {A38B71CF-653D-4BF6-AC56-B7A3467E87A9} -> profile=private | protocol=6 | dir=in | action=allow | name=left 4 dead 2 | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe | {A3D6068B-7C23-4976-9DA4-5699373FE604} -> profile=private | protocol=6 | dir=in | action=allow | name=portal 2 | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe | {A4C94654-C0FD-4858-B2B9-6A113ED3E8F4} -> profile=private | protocol=6 | dir=in | action=allow | name=darkplaces game engine | app=c:\program files (x86)\steelstorm\steelstorm.exe | {A5A2774A-AE83-42D4-B5D1-F9904ADCA167} -> profile=private | protocol=6 | dir=in | action=allow | name=time gentlemen, please! | app=c:\program files (x86)\steam\steamapps\common\time gentlemen, please!\winsetup.exe | {A81B13C2-8679-4982-A4B3-5C1412DBE785} -> dir=in | action=allow | name=windows live communications platform | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | {A8FFCD98-3CCF-45AE-B4BB-766AB5D0D0F5} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31011 | app=%programfiles%\windows media player\wmplayer.exe | {AB44999A-229F-4522-B9A6-E62890BF36D6} -> profile=private | protocol=17 | dir=in | action=allow | name=grand theft auto: san andreas | app=c:\program files (x86)\steam\steamapps\common\grand theft auto san andreas\gta-sa.exe | {AB6EF1DA-6F3F-4865-A43D-1B4DF5ACF005} -> profile=private | protocol=17 | dir=in | action=allow | name=alien breed 2: assault | app=c:\program files (x86)\steam\steamapps\common\alien breed 2 assault\binaries\alienbreed2assault.exe | {AC02ED85-5ED2-468F-B96E-4CB4D9B65349} -> profile=private | protocol=6 | dir=in | action=allow | name=alien breed 2: assault | app=c:\program files (x86)\steam\steamapps\common\alien breed 2 assault\binaries\alienbreed2assault.exe | {AD5C56D5-6915-4D8B-9B43-1B8B6C732201} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31309 | app=%programfiles%\windows media player\wmpnetwk.exe | {B0B10AD2-714F-4D6F-867B-17B5E6A3729D} -> profile=private | protocol=17 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\fc2serverlauncher.exe | {B1D030C1-6A97-490E-B658-551C88735EDE} -> profile=private | protocol=6 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\farcry2.exe | {B38B9165-DF1C-4285-9528-C7C72207FE61} -> profile=private | protocol=17 | dir=in | action=allow | name=ben there, dan that! | app=c:\program files (x86)\steam\steamapps\common\ben there, dan that!\winsetup.exe | {B57B2101-3355-461E-8D98-1BBBDB2B6058} -> profile=private | protocol=6 | dir=in | action=allow | name=bully: scholarship edition | app=c:\program files (x86)\steam\steamapps\common\bully scholarship edition\bully.exe | {BA591A93-94AC-4D09-A3F5-10CA6C243FA5} -> profile=private | protocol=58 | dir=out | action=allow | name=@firewallapi.dll,-28546 | {BBCC161C-5B1F-413B-AC9E-955A64D62407} -> profile=private | protocol=17 | dir=in | action=allow | name=shadowgrounds: survivor | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds survivor\shadowgrounds survivor launcher.exe | {BFD3A596-D582-4C9E-AEC2-0FDFCB47C463} -> profile=private | protocol=17 | dir=in | action=allow | name=time gentlemen, please! | app=c:\program files (x86)\steam\steamapps\common\time gentlemen, please!\winsetup.exe | {C0DED29E-D904-42CF-8671-86067E8F9FD0} -> profile=private | protocol=6 | dir=in | action=allow | name=crayon physics deluxe | app=c:\program files (x86)\steam\steamapps\common\crayon physics deluxe\launcher.exe | {C4C36C02-9318-4C43-B123-71649E72E186} -> profile=private | protocol=17 | dir=in | action=allow | name=far cry 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\farcry2.exe | {C6A8D3E4-4EA2-440E-A099-119A09612749} -> profile=private | protocol=6 | dir=in | action=allow | name=medal of honor beta | app=c:\program files (x86)\steam\steamapps\common\medal of honor beta\mohmpgame.exe | {C70DE28C-9AAD-4F72-A40B-4D15B9C36D05} -> profile=private | protocol=6 | dir=in | action=allow | name=tom clancy's rainbow six: vegas 2 | app=c:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe | {C83F17D9-8A2C-45E6-B2AB-9D3B6F1D285C} -> dir=in | action=allow | name=windows live mesh | app=c:\program files (x86)\windows live\mesh\moe.exe | {CA0D1548-8965-4928-A331-BB16B1EED1FA} -> profile=private | protocol=17 | dir=in | action=allow | name=crayon physics deluxe | app=c:\program files (x86)\steam\steamapps\common\crayon physics deluxe\launcher.exe | {CE423C9C-FC78-4F05-9958-679FCD591B1D} -> profile=private | protocol=17 | dir=in | action=allow | name=medal of honor beta | app=c:\program files (x86)\steam\steamapps\common\medal of honor beta\mohmpgame.exe | {CF47A930-7C28-487F-BDDF-B3F7D1B211C8} -> profile=private | protocol=17 | dir=in | action=allow | name=hitman: blood money | app=c:\program files (x86)\steam\steamapps\common\hitman blood money\hitmanbloodmoney.exe | {CFDF0F20-7BE3-4344-B9E8-D97F636D8EF1} -> profile=private | protocol=6 | dir=in | action=allow | name=amnesia: the dark descent | app=c:\program files (x86)\steam\steamapps\common\amnesia the dark descent\launcher.exe | {D02A7F06-1D72-4652-A182-146F107BB202} -> profile=private | protocol=6 | dir=in | action=allow | name=medal of honor(tm) single player | app=c:\program files (x86)\steam\steamapps\common\medal of honor\support\ea help\electronic_arts_technical_support.htm | {D50E8BE9-1915-41D0-B328-2C6654A7C7EC} -> profile=private | protocol=17 | dir=in | action=allow | name=steam | app=c:\program files (x86)\steam\steam.exe | {D58C377A-EF3A-4841-94C2-CC7FB2F283C5} -> profile=private | protocol=17 | dir=in | action=allow | name=tom clancy's rainbow six: vegas 2 | app=c:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe | {DA445468-269C-400A-AD79-41A4E07E3BA9} -> profile=private | protocol=17 | dir=in | action=allow | name=portal 2 | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe | {DB27A70F-1865-403D-8F16-61A7F44DC7DA} -> profile=private | protocol=17 | dir=in | action=allow | name=ben there, dan that! | app=c:\program files (x86)\steam\steamapps\common\ben there, dan that!\btdt.exe | {DC06A14E-9D42-4E2F-93D6-8A11B6973DA1} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31293 | app=%programfiles%\windows media player\wmplayer.exe | {E0448927-9786-43CE-9CBA-A61163F3B044} -> profile=private | protocol=6 | dir=in | action=allow | name=time gentlemen, please! | app=c:\program files (x86)\steam\steamapps\common\time gentlemen, please!\tgp.exe | {E31BC2DB-5F8F-4478-A828-2BCF8B6CD6C3} -> profile=private | protocol=6 | dir=in | action=allow | name=shadowgrounds | app=c:\program files (x86)\steam\steamapps\common\shadowgrounds\shadowgrounds.exe | {E44125FA-1F3E-4B91-8C47-44FC4ABD9F9D} -> dir=in | action=allow | name=itunes | app=c:\program files (x86)\itunes\itunes.exe | {E5BBBC46-C7C6-44B2-9F13-EE5227877220} -> profile=private | protocol=17 | dir=in | action=allow | name=world of goo | app=c:\program files (x86)\steam\steamapps\common\world of goo\worldofgoo.exe | {E61DE047-3017-4104-A192-46C1F8DA4B4E} -> profile=private | protocol=6 | dir=in | action=allow | name=machinarium | app=c:\program files (x86)\steam\steamapps\common\machinarium\machinarium.exe | {E754A73D-E51B-4391-909E-D8C3693E9F73} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31301 | app=%programfiles%\windows media player\wmplayer.exe | {EA5EEF3C-01BC-4B62-B939-57F58A6964D1} -> profile=private | protocol=17 | dir=in | action=allow | name=battlefield: bad company 2 | app=c:\program files (x86)\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe | {ECE0B2C0-88D0-4EAA-94A7-861A896690CE} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31007 | app=%programfiles%\windows media player\wmplayer.exe | {EFD60A36-377F-4F84-B9F7-C0D5CBB2F17D} -> profile=private | protocol=1 | dir=out | action=allow | name=@firewallapi.dll,-28544 | {F2E668EA-30EE-4AF8-BDF9-2505D8A5AFFB} -> profile=private | protocol=17 | dir=in | action=allow | name=red faction: guerrilla | app=c:\program files (x86)\steam\steamapps\common\red faction guerrilla\rfg_launcher.exe | {F3CE69B5-238C-40AF-85DF-903EBB773956} -> profile=private | protocol=17 | dir=in | action=allow | name=pnkbstrb | app=c:\windows\syswow64\pnkbstrb.exe | {F6007319-3714-4716-8AF3-6CA0E62DB29E} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31003 | app=%programfiles%\windows media player\wmplayer.exe | {F9A52552-53CA-4640-AC9D-3055BB834083} -> profile=private | protocol=6 | dir=in | action=allow | name=battlefield: bad company 2 | app=c:\program files (x86)\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm | {FE916ED3-8DE3-412A-B888-0B5781EE8609} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31297 | app=%programfiles%\windows media player\wmplayer.exe | {FF6A1A87-5B83-47AF-9AA4-237D78EA8DAE} -> profile=private | protocol=6 | dir=in | action=allow | name=cogs | app=c:\program files (x86)\steam\steamapps\common\cogs\cogs.exe | TCP Query User{174B1AE0-D4A9-4129-BD17-DFF85DDC86DC}C:\program files (x86)\steam\steamapps\common\far cry 2\bin\farcry2.exe -> profile=public | protocol=6 | dir=in | action=allow | name=far cry® 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\farcry2.exe | TCP Query User{2F71B52D-1D3D-4C13-920F-F25CB03EA170}C:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe -> profile=private | protocol=6 | dir=in | action=allow | name=bmgame | app=c:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe | TCP Query User{33C9B00A-5417-42D7-8932-06A19A4D3473}C:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe -> profile=public | protocol=6 | dir=in | action=allow | name=r6vegas2_game | app=c:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe | TCP Query User{3548A9D8-7312-4F52-A8F1-8888E7BEBC7B}C:\program files (x86)\steam\steamapps\common\left 4 dead\left4dead.exe -> profile=public | protocol=6 | dir=in | action=allow | name=left4dead | app=c:\program files (x86)\steam\steamapps\common\left 4 dead\left4dead.exe | TCP Query User{8781663F-5781-4DF1-8738-A3741DC1376D}C:\program files (x86)\steam\steamapps\common\red faction guerrilla\rfg.exe -> profile=private | protocol=6 | dir=in | action=allow | name=red faction: guerrilla | app=c:\program files (x86)\steam\steamapps\common\red faction guerrilla\rfg.exe | TCP Query User{8ABDB0AD-29A9-4D4C-96E9-43FB6777BDCD}C:\program files (x86)\steam\steamapps\bergstrom1994\team fortress 2\hl2.exe -> profile=private | protocol=6 | dir=in | action=allow | name=hl2 | app=c:\program files (x86)\steam\steamapps\bergstrom1994\team fortress 2\hl2.exe | TCP Query User{932B0905-939C-4B36-8E50-921F7A28D2A9}C:\program files (x86)\java\jre6\bin\java.exe -> profile=private | protocol=6 | dir=in | action=allow | name=java(tm) platform se binary | app=c:\program files (x86)\java\jre6\bin\java.exe | TCP Query User{A6114A6F-62BF-4578-9454-B06FAAC59579}C:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe -> profile=public | protocol=6 | dir=in | action=allow | name=portal2 | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe | TCP Query User{B4FF79E0-5E74-4293-AC18-E834958DCB4A}C:\program files (x86)\steam\steamapps\bergstrom1994\counter-strike\hl.exe -> profile=public | protocol=6 | dir=in | action=allow | name=half-life launcher | app=c:\program files (x86)\steam\steamapps\bergstrom1994\counter-strike\hl.exe | TCP Query User{DF9BE42C-A915-4BBA-A0C5-359D32FE2E81}C:\program files (x86)\steam\steamapps\common\altitude\altitude.exe -> profile=private | protocol=6 | dir=in | action=allow | name=altitude | app=c:\program files (x86)\steam\steamapps\common\altitude\altitude.exe | TCP Query User{F8DED5CC-CA39-42D0-8745-F625F9D1825B}C:\program files (x86)\proun\proun.exe -> profile=private | protocol=6 | dir=in | action=allow | name=proun | app=c:\program files (x86)\proun\proun.exe | UDP Query User{0CAEB7F5-ACD6-4AE4-8B60-C76CFDFDD058}C:\program files (x86)\java\jre6\bin\java.exe -> profile=private | protocol=17 | dir=in | action=allow | name=java(tm) platform se binary | app=c:\program files (x86)\java\jre6\bin\java.exe | UDP Query User{27F2E3C9-3F16-46C3-9B27-8B0605CE229C}C:\program files (x86)\steam\steamapps\common\left 4 dead\left4dead.exe -> profile=public | protocol=17 | dir=in | action=allow | name=left4dead | app=c:\program files (x86)\steam\steamapps\common\left 4 dead\left4dead.exe | UDP Query User{347E5D73-CACB-4108-810B-9AB91ADCE936}C:\program files (x86)\steam\steamapps\bergstrom1994\counter-strike\hl.exe -> profile=public | protocol=17 | dir=in | action=allow | name=half-life launcher | app=c:\program files (x86)\steam\steamapps\bergstrom1994\counter-strike\hl.exe | UDP Query User{4F7DA2D2-92A2-44D9-BA04-AFA902589FB3}C:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe -> profile=public | protocol=17 | dir=in | action=allow | name=r6vegas2_game | app=c:\program files (x86)\steam\steamapps\common\rainbow six vegas 2\binaries\r6vegas2_game.exe | UDP Query User{63630ACF-D60F-4A0D-8EF8-71C51A7B2BD6}C:\program files (x86)\steam\steamapps\common\red faction guerrilla\rfg.exe -> profile=private | protocol=17 | dir=in | action=allow | name=red faction: guerrilla | app=c:\program files (x86)\steam\steamapps\common\red faction guerrilla\rfg.exe | UDP Query User{747117F4-1CC4-479F-8E4B-3AE96200FDB2}C:\program files (x86)\proun\proun.exe -> profile=private | protocol=17 | dir=in | action=allow | name=proun | app=c:\program files (x86)\proun\proun.exe | UDP Query User{8A4F4A10-8403-4EB4-98CB-3AA6D137A6EE}C:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe -> profile=public | protocol=17 | dir=in | action=allow | name=portal2 | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe | UDP Query User{8CF615D9-3F6F-4AEB-882D-21D6F2AC0A89}C:\program files (x86)\steam\steamapps\bergstrom1994\team fortress 2\hl2.exe -> profile=private | protocol=17 | dir=in | action=allow | name=hl2 | app=c:\program files (x86)\steam\steamapps\bergstrom1994\team fortress 2\hl2.exe | UDP Query User{917443FA-7D03-406D-BA0F-C6797FF1513D}C:\program files (x86)\steam\steamapps\common\altitude\altitude.exe -> profile=private | protocol=17 | dir=in | action=allow | name=altitude | app=c:\program files (x86)\steam\steamapps\common\altitude\altitude.exe | UDP Query User{AD580BA0-7C3C-479D-989E-A9C67E168FB7}C:\program files (x86)\steam\steamapps\common\far cry 2\bin\farcry2.exe -> profile=public | protocol=17 | dir=in | action=allow | name=far cry® 2 | app=c:\program files (x86)\steam\steamapps\common\far cry 2\bin\farcry2.exe | UDP Query User{AF4155C8-006B-4F1D-8481-8FFFCFE5340C}C:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe -> profile=private | protocol=17 | dir=in | action=allow | name=bmgame | app=c:\program files (x86)\steam\steamapps\common\batman arkham asylum goty\binaries\shippingpc-bmgame.exe | < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> Cd-rom-driver -> "ImagePath" -> [\SystemRoot\system32\drivers\cdrom.sys] -> File not found < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> \{4169a6dc-cfe8-11df-8557-f07bcbd8e0ad} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4169a6dc-cfe8-11df-8557-f07bcbd8e0ad}\shell \{4169a6dc-cfe8-11df-8557-f07bcbd8e0ad}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4169a6dc-cfe8-11df-8557-f07bcbd8e0ad}\shell\AutoRun\command \{4169a6dc-cfe8-11df-8557-f07bcbd8e0ad}\shell\AutoRun\command\\"" -> [E:\Startme.exe] -> File not found < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> 64bit-comfile [open] -> "%1" %* -> File not found 64bit-exefile [open] -> "%1" %* -> File not found comfile [open] -> "%1" %* -> exefile [open] -> "%1" %* -> < 64bit-File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> [Registry - Additional Scans - Safe List] < 64bit-ActiveX StubPath [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {08B0E5C0-4FCB-11CF-AAA5-00401C608500} [KeyFileName] -> Reg Error: Value error. [(default): Java (Sun); IsInstalled: 1] -> File not found {22d6f312-b0f6-11d0-94ab-0080c74c7e95} [HKLM] -> C:\Windows\SysNative\wmpdxm.dll [(default): Microsoft Windows Media Player 12.0; IsInstalled: 1] -> [2010/11/20 15:27:28 | 000,358,400 | ---- | M] (Microsoft Corporation) {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [StubPath] -> %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [(default): Themes Setup; IsInstalled: 1] -> {3af36230-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Offline Browsing Pack; IsInstalled: 1] -> File not found {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [StubPath] -> "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE [(default): Microsoft Windows; IsInstalled: 1] -> {44BBA855-CC51-11CF-AAFA-00AA00B6015F} [HKLM] -> Reg Error: Key error. [(default): DirectDrawEx; IsInstalled: 1] -> File not found {45ea75a0-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Help; IsInstalled: 1] -> File not found {4f645220-306d-11d2-995d-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Microsoft Windows Script 5.6; IsInstalled: 1] -> File not found {5fd399c0-a70a-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Setup Tools; IsInstalled: 1] -> File not found {630b1da0-b465-11d1-9948-00c04f98bbc9} [KeyFileName] -> Reg Error: Value error. [(default): Browsing Enhancements; IsInstalled: 1] -> File not found {6BF52A52-394A-11d3-B153-00C04F79FAA6} [StubPath] -> %SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI [(default): Microsoft Windows Media Player; IsInstalled: 1] -> {6fab99d0-bab8-11d1-994a-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): MSN Site Access; IsInstalled: 1] -> File not found {7790769C-0471-11d2-AF11-00C04FA35D02} [HKLM] -> Reg Error: Key error. [(default): Address Book 7; IsInstalled: 1] -> File not found {89820200-ECBD-11cf-8B85-00AA005B4340} [StubPath] -> regsvr32.exe /s /n /i:U shell32.dll [(default): Windows Desktop Update; IsInstalled: 1] -> {89820200-ECBD-11cf-8B85-00AA005B4383} [StubPath] -> C:\Windows\System32\ie4uinit.exe -BaseSettings [(default): Web Platform Customizations; IsInstalled: 1] -> {89B4C1CD-B018-4511-B0A1-5476DBF70820} [StubPath] -> C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install [ComponentID: DOTNETFRAMEWORKS; IsInstalled: 1] -> {9381D8F2-0288-11D0-9501-00AA00B911A5} [HKLM] -> Reg Error: Key error. [(default): Dynamic HTML Data Binding; IsInstalled: 1] -> File not found {C9E9A340-D1F1-11D0-821E-444553540600} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Core Fonts; IsInstalled: 1] -> File not found {de5aed00-a4bf-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): HTML Help; IsInstalled: 1] -> File not found {E92B03AB-B707-11d2-9CBD-0000F87A369E} [HKLM] -> Reg Error: Key error. [(default): Active Directory Service Interface; IsInstalled: 1] -> File not found {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found {FEBEF00C-046D-438D-8A88-BF94A6C9E703} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} [StubPath] -> %SystemRoot%\system32\unregmp2.exe /ShowWMP [(default): Microsoft Windows Media Player; IsInstalled: 0] -> >{26923b43-4d38-484f-9b9e-de460746276c} [StubPath] -> C:\Windows\System32\ie4uinit.exe -UserIconConfig [(default): Internet Explorer; IsInstalled: 0] -> >{60B49E34-C7CC-11D0-8953-00A0C90347FF} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found >{E3FEB3C8-7561-400D-870C-BA3374D1D5A7} [StubPath] -> RunDLL32 IEDKCS32.DLL,BrandIE4 CUSTOM [(default): Browsertilpasninger; IsInstalled: 1] -> < ActiveX StubPath [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {22d6f312-b0f6-11d0-94ab-0080c74c7e95} [HKLM] -> C:\Windows\SysWOW64\wmpdxm.dll [(default): Microsoft Windows Media Player 12.0; IsInstalled: 1] -> [2010/11/20 14:21:37 | 000,299,520 | ---- | M] (Microsoft Corporation) {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [StubPath] -> %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [(default): Themes Setup; IsInstalled: 1] -> {3af36230-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Offline Browsing Pack; IsInstalled: 1] -> File not found {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [StubPath] -> "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE [(default): Microsoft Windows; IsInstalled: 1] -> {44BBA855-CC51-11CF-AAFA-00AA00B6015F} [HKLM] -> Reg Error: Key error. [(default): DirectDrawEx; IsInstalled: 1] -> File not found {45ea75a0-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Help; IsInstalled: 1] -> File not found {4f645220-306d-11d2-995d-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Microsoft Windows Script 5.6; IsInstalled: 1] -> File not found {5fd399c0-a70a-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Setup Tools; IsInstalled: 1] -> File not found {630b1da0-b465-11d1-9948-00c04f98bbc9} [KeyFileName] -> C:\Windows\SysWOW64\msieftp.dll [(default): Browsing Enhancements; IsInstalled: 1] -> [2010/11/20 14:19:48 | 000,301,568 | ---- | M] (Microsoft Corporation) {6BF52A52-394A-11d3-B153-00C04F79FAA6} [StubPath] -> %SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI [(default): Microsoft Windows Media Player; IsInstalled: 1] -> {6fab99d0-bab8-11d1-994a-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): MSN Site Access; IsInstalled: 1] -> File not found {73FA19D0-2D75-11D2-995D-00C04F98BBC9} [StubPath] -> [(default): Webmapper; IsInstalled: 1] -> {7790769C-0471-11d2-AF11-00C04FA35D02} [HKLM] -> Reg Error: Key error. [(default): Address Book 7; IsInstalled: 1] -> File not found {7C028AF8-F614-47B3-82DA-BA94E41B1089} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found {89820200-ECBD-11cf-8B85-00AA005B4340} [StubPath] -> regsvr32.exe /s /n /i:U shell32.dll [(default): Windows Desktop Update; IsInstalled: 1] -> {89820200-ECBD-11cf-8B85-00AA005B4383} [StubPath] -> C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings [(default): Web Platform Customizations; IsInstalled: 1] -> {89B4C1CD-B018-4511-B0A1-5476DBF70820} [StubPath] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install [ComponentID: DOTNETFRAMEWORKS; IsInstalled: 1] -> {9381D8F2-0288-11D0-9501-00AA00B911A5} [HKLM] -> Reg Error: Key error. [(default): Dynamic HTML Data Binding; IsInstalled: 1] -> File not found {C9E9A340-D1F1-11D0-821E-444553540600} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Core Fonts; IsInstalled: 1] -> File not found {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> Reg Error: Key error. [(default): Adobe Flash Player; IsInstalled: 01 00 00 00 [binary data]] -> File not found {de5aed00-a4bf-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): HTML Help; IsInstalled: 1] -> File not found {E92B03AB-B707-11d2-9CBD-0000F87A369E} [HKLM] -> Reg Error: Key error. [(default): Active Directory Service Interface; IsInstalled: 1] -> File not found {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} [StubPath] -> %SystemRoot%\system32\unregmp2.exe /ShowWMP [(default): Microsoft Windows Media Player; IsInstalled: 0] -> >{26923b43-4d38-484f-9b9e-de460746276c} [StubPath] -> C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig [(default): Internet Explorer; IsInstalled: 1] -> >{60B49E34-C7CC-11D0-8953-00A0C90347FF} [StubPath] -> "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP [(default): Browser Customizations; IsInstalled: 1] -> < ActiveX StubPath [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\SOFTWARE\Microsoft\Active Setup\Installed Components\ -> {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {6BF52A52-394A-11d3-B153-00C04F79FAA6} [HKLM] -> C:\Windows\SysWOW64\wmp.dll [HKLM: Windows Media Player] -> [2010/11/20 14:21:37 | 011,410,432 | ---- | M] (Microsoft Corporation) {89820200-ECBD-11cf-8B85-00AA005B4340} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {89820200-ECBD-11cf-8B85-00AA005B4383} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found {89B4C1CD-B018-4511-B0A1-5476DBF70820} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found >{E3FEB3C8-7561-400D-870C-BA3374D1D5A7} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found < 64bit-App Paths [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ -> AcroRd32.exe -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe [C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe] -> [2011/06/08 06:02:34 | 000,357,808 | ---- | M] (Adobe Systems Incorporated) AvastUI.exe -> C:\Program Files\AVAST Software\Avast\AvastUI.exe [C:\Program Files\AVAST Software\Avast\AvastUI.exe] -> [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) ccleaner.exe -> C:\Program Files (x86)\CCleaner\CCleaner64.exe [C:\Program Files (x86)\CCleaner\CCleaner64.exe] -> [2011/06/24 21:53:18 | 003,994,424 | ---- | M] (Piriform Ltd) cmmgr32.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found DJCUHost.exe -> C:\Program Files\Common Files\LogiShrd\Unifying\DJCUHost.exe [C:\Program Files\Common Files\LogiShrd\Unifying\DJCUHost.exe] -> [2009/05/11 21:09:42 | 000,390,672 | ---- | M] (Logitech, Inc.) dvdmaker.exe -> C:\Program Files\DVD Maker\dvdmaker.exe [%ProgramFiles%\DVD Maker\dvdmaker.exe] -> [2009/07/14 03:39:08 | 002,258,432 | ---- | M] (Microsoft Corporation) excel.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE] -> [2011/04/20 16:31:18 | 010,357,072 | ---- | M] (Microsoft Corporation) firefox.exe -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] -> [2011/06/16 06:04:20 | 000,924,632 | ---- | M] (Mozilla Corporation) fsquirt.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found game.exe -> C:\Program Files (x86)\GOG.com\The Longest Journey\Game.exe [C:\Program Files (x86)\GOG.com\The Longest Journey\Game.exe] -> [2007/04/20 12:21:48 | 000,278,528 | ---- | M] (Funcom) IEDIAGCMD.EXE -> C:\Program Files (x86)\Internet Explorer\IEDIAGCMD.EXE [C:\Program Files (x86)\Internet Explorer\IEDIAGCMD.EXE] -> [2011/03/15 21:27:05 | 000,307,200 | ---- | M] () install.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found javaws.exe -> C:\Windows\SysNative\javaws.exe [C:\Windows\system32\javaws.exe] -> [2011/07/19 17:27:54 | 000,190,752 | ---- | M] (Sun Microsystems, Inc.) Journal.exe -> C:\Program Files\Windows Journal\Journal.exe [%ProgramFiles%\Windows Journal\Journal.exe] -> [2010/11/20 15:24:51 | 002,164,224 | ---- | M] (Microsoft Corporation) LBTWiz.exe -> C:\Program Files\Logitech\SetPoint\LBTWiz.exe [C:\Program Files\Logitech\SetPoint\LBTWiz.exe] -> [2009/07/20 12:36:30 | 000,047,632 | ---- | M] (Logitech Inc.) LogiLDA.dll -> Reg Error: Value error. [Reg Error: Value error.] -> File not found mbam.exe -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe] -> [2011/05/29 09:11:22 | 001,047,656 | ---- | M] (Malwarebytes Corporation) mplayer2.exe -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe [%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe] -> [2010/11/20 14:17:56 | 000,164,864 | ---- | M] (Microsoft Corporation) MsoHtmEd.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found mspview.exe -> C:\PROGRA~2\COMMON~1\MICROS~1\MODI\11.0\MSPVIEW.EXE [C:\PROGRA~2\COMMON~1\MICROS~1\MODI\11.0\MSPVIEW.EXE] -> [2007/04/09 13:24:00 | 000,367,496 | ---- | M] (Microsoft Corporation) notepad++.exe -> C:\Program Files (x86)\Notepad++\notepad++.exe [C:\Program Files (x86)\Notepad++\notepad++.exe] -> [2010/11/24 00:51:22 | 001,519,616 | ---- | M] (Don HO don.h@free.fr) ois.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\OIS.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\OIS.EXE] -> [2007/03/22 19:06:22 | 000,287,576 | ---- | M] (Microsoft Corporation) pbrush.exe -> C:\Windows\SysNative\mspaint.exe [%SystemRoot%\System32\mspaint.exe] -> [2009/07/14 03:39:24 | 006,676,480 | ---- | M] (Microsoft Corporation) PCCompanion.exe -> C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe] -> [2009/12/08 08:51:50 | 000,774,144 | ---- | M] (Sony Ericsson Mobile Communications AB) PictureViewer.exe -> C:\Program Files (x86)\QuickTime\PictureViewer.exe [C:\Program Files (x86)\QuickTime\PictureViewer.exe] -> [2010/11/29 17:38:06 | 000,561,152 | ---- | M] (Apple Inc.) powerpnt.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\POWERPNT.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\POWERPNT.EXE] -> [2011/04/20 16:22:46 | 006,421,848 | ---- | M] (Microsoft Corporation) PowerShell.exe -> C:\Windows\SysNative\WindowsPowerShell\v1.0\powershell.exe [%SystemRoot%\system32\WindowsPowerShell\v1.0\PowerShell.exe] -> [2009/07/14 03:39:20 | 000,473,600 | ---- | M] (Microsoft Corporation) QuickTimePlayer.exe -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe [C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe] -> [2010/11/29 18:19:36 | 001,234,224 | ---- | M] (Apple Inc.) Restore.exe -> C:\Program Files (x86)\Sony\VAIO Data Restore Tool\Restore.exe [C:\Program Files (x86)\Sony\VAIO Data Restore Tool\Restore.exe] -> [2010/01/15 19:56:12 | 000,467,376 | ---- | M] (Sony Corporation) SetPoint.exe -> C:\Program Files\Logitech\SetPoint\SetPoint.exe [C:\Program Files\Logitech\SetPoint\SetPoint.exe] -> [2009/07/20 12:38:54 | 001,207,312 | ---- | M] (Logitech, Inc.) setup.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found SnippingTool.exe -> C:\Windows\SysNative\SnippingTool.exe [%SystemRoot%\system32\SnippingTool.exe] -> [2009/07/14 03:39:41 | 000,431,104 | ---- | M] (Microsoft Corporation) table30.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found VAIO Media plus Extension -> [] -> File not found VESMgr.exe -> C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe [C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe] -> [2010/05/14 14:29:50 | 000,217,968 | ---- | M] (Sony Corporation) wab.exe -> C:\Program Files\Windows Mail\wab.exe [%ProgramFiles%\Windows Mail\wab.exe] -> [2010/11/20 15:25:27 | 000,516,096 | ---- | M] (Microsoft Corporation) wabmig.exe -> C:\Program Files\Windows Mail\wabmig.exe [%ProgramFiles%\Windows Mail\wabmig.exe] -> [2009/07/14 03:39:50 | 000,067,584 | ---- | M] (Microsoft Corporation) WinRAR.exe -> C:\Program Files\WinRAR\WinRAR.exe [C:\Program Files\WinRAR\WinRAR.exe] -> [2011/05/28 22:03:20 | 001,163,264 | ---- | M] () Winword.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\WINWORD.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\WINWORD.EXE] -> [2010/08/22 14:49:10 | 012,317,016 | ---- | M] (Microsoft Corporation) wmplayer.exe -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe [%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe] -> [2010/11/20 14:17:56 | 000,164,864 | ---- | M] (Microsoft Corporation) WORDPAD.EXE -> C:\Program Files\Windows NT\Accessories\WORDPAD.EXE ["%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"] -> [2010/11/20 15:25:35 | 004,583,424 | ---- | M] (Microsoft Corporation) WRITE.EXE -> C:\Program Files\Windows NT\Accessories\WORDPAD.EXE ["%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"] -> [2010/11/20 15:25:35 | 004,583,424 | ---- | M] (Microsoft Corporation) YourApp.exe -> [] -> File not found < App Paths [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ -> AcroRd32.exe -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe [C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe] -> [2011/06/08 06:02:34 | 000,357,808 | ---- | M] (Adobe Systems Incorporated) AvastUI.exe -> C:\Program Files\AVAST Software\Avast\AvastUI.exe [C:\Program Files\AVAST Software\Avast\AvastUI.exe] -> [2011/07/04 13:43:54 | 003,493,720 | ---- | M] (AVAST Software) ccleaner.exe -> C:\Program Files (x86)\CCleaner\CCleaner64.exe [C:\Program Files (x86)\CCleaner\CCleaner64.exe] -> [2011/06/24 21:53:18 | 003,994,424 | ---- | M] (Piriform Ltd) cmmgr32.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found DJCUHost.exe -> C:\Program Files\Common Files\LogiShrd\Unifying\DJCUHost.exe [C:\Program Files\Common Files\LogiShrd\Unifying\DJCUHost.exe] -> [2009/05/11 21:09:42 | 000,390,672 | ---- | M] (Logitech, Inc.) dvdmaker.exe -> [%ProgramFiles%\DVD Maker\dvdmaker.exe] -> File not found excel.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE] -> [2011/04/20 16:31:18 | 010,357,072 | ---- | M] (Microsoft Corporation) firefox.exe -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe [C:\Program Files (x86)\Mozilla Firefox\firefox.exe] -> [2011/06/16 06:04:20 | 000,924,632 | ---- | M] (Mozilla Corporation) fsquirt.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found game.exe -> C:\Program Files (x86)\GOG.com\The Longest Journey\Game.exe [C:\Program Files (x86)\GOG.com\The Longest Journey\Game.exe] -> [2007/04/20 12:21:48 | 000,278,528 | ---- | M] (Funcom) IEDIAGCMD.EXE -> C:\Program Files (x86)\Internet Explorer\IEDIAGCMD.EXE [C:\Program Files (x86)\Internet Explorer\IEDIAGCMD.EXE] -> [2011/03/15 21:27:05 | 000,307,200 | ---- | M] () install.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found javaws.exe -> C:\Windows\SysWOW64\javaws.exe [C:\Windows\system32\javaws.exe] -> [2011/04/14 05:08:11 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) Journal.exe -> [%ProgramFiles%\Windows Journal\Journal.exe] -> File not found LBTWiz.exe -> C:\Program Files\Logitech\SetPoint\LBTWiz.exe [C:\Program Files\Logitech\SetPoint\LBTWiz.exe] -> [2009/07/20 12:36:30 | 000,047,632 | ---- | M] (Logitech Inc.) LogiLDA.dll -> Reg Error: Value error. [Reg Error: Value error.] -> File not found mbam.exe -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe] -> [2011/05/29 09:11:22 | 001,047,656 | ---- | M] (Malwarebytes Corporation) mplayer2.exe -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe [%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe] -> [2010/11/20 14:17:56 | 000,164,864 | ---- | M] (Microsoft Corporation) MsoHtmEd.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found mspview.exe -> C:\PROGRA~2\COMMON~1\MICROS~1\MODI\11.0\MSPVIEW.EXE [C:\PROGRA~2\COMMON~1\MICROS~1\MODI\11.0\MSPVIEW.EXE] -> [2007/04/09 13:24:00 | 000,367,496 | ---- | M] (Microsoft Corporation) notepad++.exe -> C:\Program Files (x86)\Notepad++\notepad++.exe [C:\Program Files (x86)\Notepad++\notepad++.exe] -> [2010/11/24 00:51:22 | 001,519,616 | ---- | M] (Don HO don.h@free.fr) ois.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\OIS.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\OIS.EXE] -> [2007/03/22 19:06:22 | 000,287,576 | ---- | M] (Microsoft Corporation) pbrush.exe -> C:\Windows\SysWOW64\mspaint.exe [%SystemRoot%\System32\mspaint.exe] -> [2009/07/14 03:14:26 | 006,376,960 | ---- | M] (Microsoft Corporation) PCCompanion.exe -> C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe] -> [2009/12/08 08:51:50 | 000,774,144 | ---- | M] (Sony Ericsson Mobile Communications AB) PictureViewer.exe -> C:\Program Files (x86)\QuickTime\PictureViewer.exe [C:\Program Files (x86)\QuickTime\PictureViewer.exe] -> [2010/11/29 17:38:06 | 000,561,152 | ---- | M] (Apple Inc.) powerpnt.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\POWERPNT.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\POWERPNT.EXE] -> [2011/04/20 16:22:46 | 006,421,848 | ---- | M] (Microsoft Corporation) PowerShell.exe -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe [%SystemRoot%\system32\WindowsPowerShell\v1.0\PowerShell.exe] -> [2009/07/14 03:14:24 | 000,452,608 | ---- | M] (Microsoft Corporation) QuickTimePlayer.exe -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe [C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe] -> [2010/11/29 18:19:36 | 001,234,224 | ---- | M] (Apple Inc.) Restore.exe -> C:\Program Files (x86)\Sony\VAIO Data Restore Tool\Restore.exe [C:\Program Files (x86)\Sony\VAIO Data Restore Tool\Restore.exe] -> [2010/01/15 19:56:12 | 000,467,376 | ---- | M] (Sony Corporation) SetPoint.exe -> C:\Program Files\Logitech\SetPoint\SetPoint.exe [C:\Program Files\Logitech\SetPoint\SetPoint.exe] -> [2009/07/20 12:38:54 | 001,207,312 | ---- | M] (Logitech, Inc.) setup.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found sidebar.exe -> C:\Program Files (x86)\Windows Sidebar\sidebar.exe ["%ProgramFiles%\Windows Sidebar\sidebar.exe"] -> [2010/11/20 14:17:41 | 001,174,016 | ---- | M] (Microsoft Corporation) SnippingTool.exe -> [%SystemRoot%\system32\SnippingTool.exe] -> File not found table30.exe -> Reg Error: Value error. [Reg Error: Value error.] -> File not found TabTip.exe -> [%CommonProgramFiles%\microsoft shared\ink\TabTip.exe] -> File not found VAIO Media plus Extension -> [] -> File not found VESMgr.exe -> C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe [C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe] -> [2010/05/14 14:29:50 | 000,217,968 | ---- | M] (Sony Corporation) wab.exe -> C:\Program Files (x86)\Windows Mail\wab.exe [%ProgramFiles%\Windows Mail\wab.exe] -> [2010/11/20 14:17:51 | 000,516,096 | ---- | M] (Microsoft Corporation) wabmig.exe -> C:\Program Files (x86)\Windows Mail\wabmig.exe [%ProgramFiles%\Windows Mail\wabmig.exe] -> [2009/07/14 03:14:44 | 000,065,536 | ---- | M] (Microsoft Corporation) WinRAR.exe -> C:\Program Files\WinRAR\WinRAR.exe [C:\Program Files\WinRAR\WinRAR.exe] -> [2011/05/28 22:03:20 | 001,163,264 | ---- | M] () Winword.exe -> C:\PROGRA~2\MICROS~1\OFFICE11\WINWORD.EXE [C:\PROGRA~2\MICROS~1\OFFICE11\WINWORD.EXE] -> [2010/08/22 14:49:10 | 012,317,016 | ---- | M] (Microsoft Corporation) wmplayer.exe -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe [%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe] -> [2010/11/20 14:17:56 | 000,164,864 | ---- | M] (Microsoft Corporation) WORDPAD.EXE -> C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE ["%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"] -> [2010/11/20 14:17:57 | 004,247,040 | ---- | M] (Microsoft Corporation) WRITE.EXE -> C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE ["%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"] -> [2010/11/20 14:17:57 | 004,247,040 | ---- | M] (Microsoft Corporation) YourApp.exe -> [] -> File not found < 64bit-Approved Shell Extensions [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved -> "{00C6D95F-329C-409a-81D7-C46C66EA7F33}" [HKLM] -> C:\Windows\SysNative\shdocvw.dll [] -> [2010/11/20 15:27:25 | 000,196,608 | ---- | M] (Microsoft Corporation) "{3D1975AF-48C6-4f8e-A182-BE0E08FA86A9}" [HKLM] -> C:\Windows\SysNative\nvshext.dll [NVIDIA Play On My TV Context Menu Extension] -> [2011/05/21 08:01:00 | 000,061,544 | ---- | M] (NVIDIA Corporation) "{472083B0-C522-11CF-8763-00608CC02F24}" [HKLM] -> C:\Program Files\AVAST Software\Avast\ashShA64.dll [avast] -> [2011/07/04 13:43:42 | 000,134,384 | ---- | M] (AVAST Software) "{7842554E-6BED-11D2-8CDB-B05550C10000}" [HKLM] -> C:\Program Files\WIDCOMM\Bluetooth Software\btncopy.dll [Monitor] -> [2010/03/12 18:15:44 | 000,558,368 | ---- | M] (Broadcom Corporation.) "{80009818-f38f-4af1-87b5-eadab9433e58}" [HKLM] -> C:\Windows\SysNative\mf.dll [MF ADTS Property Handler] -> [2010/11/20 15:26:51 | 004,120,064 | ---- | M] (Microsoft Corporation) "{A70C977A-BF00-412C-90B7-034C51DA2439}" [HKLM] -> C:\Program Files\NVIDIA Corporation\Display\nvui.dll [NvCpl DesktopContext Class] -> [2011/05/21 08:01:00 | 002,046,568 | ---- | M] (NVIDIA Corporation) "{B41DB860-64E4-11D2-9906-E49FADC173CA}" [HKLM] -> C:\Program Files\WinRAR\rarext.dll [WinRAR shell extension] -> [2011/05/28 22:05:00 | 000,164,864 | ---- | M] () "{B41DB860-8EE4-11D2-9906-E49FADC173CA}" [HKLM] -> Reg Error: Key error. [WinRAR shell extension] -> File not found "{B9B9F083-2B04-452A-8691-83694AC1037B}" [HKLM] -> C:\Program Files\Logitech\SetPoint\mcplext.dll [Logitech Setpoint Extension] -> [2009/07/20 12:37:50 | 000,118,800 | ---- | M] (Logitech, Inc.) "{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF}" [HKLM] -> C:\Program Files\iTunes\iTunesMiniPlayer.dll [iTunes] -> [2011/07/19 18:29:08 | 000,141,672 | ---- | M] (Apple Inc.) "{DC70C4A5-2044-4c59-B806-DEFB9AE0DF7C}" [HKLM] -> C:\Program Files\Logitech\SetPoint\kbcplext.dll [Logitech Setpoint Extension] -> [2009/07/20 12:34:06 | 000,118,800 | ---- | M] (Logitech, Inc.) "{E23C9C4A-0F55-40e2-A47F-93DCB54DF04D}" [HKLM] -> C:\Windows\SysNative\PuranDefrag.dll [PuranDefrag] -> [2010/01/27 13:58:16 | 000,270,336 | ---- | M] (Puran Software) "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found "{ED58A35B-B554-42AF-A26C-6F3D424200D3}" [HKLM] -> C:\Program Files\Sony\VAIO Power Management\SPMPanel.dll [Sony Power Management Extensiond] -> [2010/01/20 16:10:10 | 000,848,896 | ---- | M] (Sony Corporation) < Approved Shell Extensions [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved -> "{0563DB41-F538-4B37-A92D-4659049B7766}" [HKLM] -> Reg Error: Key error. [WLMD Message Handler] -> File not found "{472083B0-C522-11CF-8763-00608CC02F24}" [HKLM] -> C:\Program Files\AVAST Software\Avast\ashShell.dll [avast] -> [2011/07/04 13:43:46 | 000,122,512 | ---- | M] (AVAST Software) "{79BC0345-1015-11D2-A299-006008312725}" [HKLM] -> Reg Error: Key error. [blue.shell] -> File not found "{80009818-f38f-4af1-87b5-eadab9433e58}" [HKLM] -> C:\Windows\SysWOW64\mf.dll [MF ADTS Property Handler] -> [2010/11/20 14:19:33 | 003,207,680 | ---- | M] (Microsoft Corporation) "{BDEADF00-C265-11D0-BCED-00A0C90AB50F}" [HKLM] -> C:\PROGRA~2\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL [Webmapper] -> [2005/09/20 12:33:08 | 001,293,008 | ---- | M] (Microsoft Corporation) "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found < 64bit-Disabled MSConfig Folder Items [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\ -> C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe -> [2009/07/20 12:38:54 | 001,207,312 | ---- | M] (Logitech, Inc.) C:^Users^Daniel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Intel® Turbo Boost Teknologi Monitor 2.0.lnk -> C:\PROGRA~1\Intel\TURBOB~1\SIGNAL~1.EXE -> [2010/11/29 15:01:00 | 000,204,288 | ---- | M] (Intel® Corporation) C:^Users^Daniel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registration Assassin's Creed.LNK -> -> File not found < 64bit-Disabled MSConfig Registry Items [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ -> Adobe ARM hkey=HKLM key=SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe -> [2011/03/30 06:59:06 | 000,937,920 | R--- | M] (Adobe Systems Incorporated) Adobe Reader Speed Launcher hkey=HKLM key=SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe -> [2011/06/08 06:02:26 | 000,037,296 | ---- | M] (Adobe Systems Incorporated) DivXUpdate hkey=HKLM key=SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run -> -> File not found iTunesHelper hkey=HKLM key=SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files (x86)\iTunes\iTunesHelper.exe -> [2011/07/19 18:29:00 | 000,421,736 | ---- | M] (Apple Inc.) msnmsgr hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe -> [2010/11/10 02:54:18 | 004,240,760 | ---- | M] (Microsoft Corporation) QuickTime Task hkey=HKLM key=SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files (x86)\QuickTime\QTTask.exe -> [2010/11/29 17:38:18 | 000,421,888 | ---- | M] (Apple Inc.) SunJavaUpdateSched hkey=HKLM key=SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run -> C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe -> [2011/01/07 13:12:22 | 000,253,672 | ---- | M] (Sun Microsystems, Inc.) < 64bit-Disabled MSConfig State [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state -> "startup" -> 2 -> < 64bit-Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 -> "msacm.l3acm" -> C:\Windows\SysNative\l3codeca.acm [C:\Windows\System32\l3codeca.acm] -> [2009/07/14 03:38:53 | 000,081,408 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) < Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 -> "msacm.ac3filter" -> C:\Windows\SysWow64\ac3filter.acm [ac3filter.acm] -> [2009/08/11 22:18:28 | 000,497,664 | ---- | M] () "msacm.l3acm" -> C:\Windows\SysWOW64\l3codeca.acm [C:\Windows\SysWOW64\l3codeca.acm] -> [2009/07/14 03:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) "vidc.cvid" -> C:\Windows\SysWow64\iccvid.dll [iccvid.dll] -> [2010/11/20 14:19:17 | 000,082,944 | ---- | M] (Radius Inc.) < 64bit-Ext (PreApproved) - [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ -> {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {19916E01-B44E-4E31-94A4-4696DF46157B} [HKLM] -> C:\Windows\SysNative\icardie.dll [InformationCardSigninHelper Class] -> [2011/03/15 21:27:05 | 000,082,432 | ---- | M] (Microsoft Corporation) {233C1507-6A77-46A4-9443-F871F945D258} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {3050F819-98B5-11CF-BB82-00AA00BDCE0B} [HKLM] -> C:\Windows\SysNative\mshtmled.dll [HtmlDlgSafeHelper Class] -> [2011/04/23 03:19:29 | 000,096,256 | ---- | M] (Microsoft Corporation) {333C7BC4-460F-11D0-BC04-0080C7055A83} [HKLM] -> C:\Windows\SysNative\tdc.ocx [Tabular Data Control] -> [2011/03/15 21:27:05 | 000,076,800 | ---- | M] (Microsoft Corporation) {3E4D4F1C-2AEE-11D1-9D3D-00C04FC30DF6} [HKLM] -> C:\Windows\SysNative\oleprn.dll [oleprn Class] -> [2009/07/14 03:41:53 | 000,129,536 | ---- | M] (Microsoft Corporation) {4063BE15-3B08-470D-A0D5-B37161CFFD69} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {435899C9-44AB-11D1-AF00-080036234103} [HKLM] -> C:\Windows\SysNative\oleprn.dll [DSPrintQueue Class] -> [2009/07/14 03:41:53 | 000,129,536 | ---- | M] (Microsoft Corporation) {4F664F91-FF01-11D0-8AED-00C04FD7B597} [HKLM] -> C:\Windows\SysNative\oleprn.dll [OleSNMP Class] -> [2009/07/14 03:41:53 | 000,129,536 | ---- | M] (Microsoft Corporation) {57B83450-FD6E-4A1E-8B53-1320576F8054} [HKLM] -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreamingIePlugin64.dll [Nv3DVStreamingPluginBHO Class] -> [2011/05/20 22:35:06 | 000,311,400 | ---- | M] (NVIDIA Corporation) {5852F5ED-8BF4-11D4-A245-0080C6F74284} [HKLM] -> C:\Program Files\Java\jre6\bin\wsdetect.dll [isInstalled Class] -> [2011/07/19 17:27:56 | 000,126,240 | ---- | M] (Sun Microsystems, Inc.) {65303443-AD66-11D1-9D65-00C04FC30DF6} [HKLM] -> C:\Windows\SysNative\oleprn.dll [OleCvt Class] -> [2009/07/14 03:41:53 | 000,129,536 | ---- | M] (Microsoft Corporation) {6BF52A52-394A-11d3-B153-00C04F79FAA6} [HKLM] -> C:\Windows\SysNative\wmp.dll [Windows Media Player] -> [2010/11/20 15:27:28 | 014,633,472 | ---- | M] (Microsoft Corporation) {760C4B83-E211-11D2-BF3E-00805FBE84A6} [HKLM] -> C:\Windows\SysNative\msnetobj.dll [Windows Media Services DRM Storage object] -> [2010/11/20 15:27:04 | 000,325,632 | ---- | M] (Microsoft Corporation) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {870B678D-913A-4ABC-81FC-9F380BB4B24D} [HKLM] -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVisionIePlugin64.dll [Nv3DVisionControl Class] -> [2011/05/20 22:34:58 | 000,401,512 | ---- | M] (NVIDIA Corporation) {884e2049-217d-11da-b2a4-000e7bbb2b09} [HKLM] -> C:\Windows\SysNative\CertEnrollCtrl.exe [X509 Enrollment WebClassFactory] -> [2009/07/14 03:38:58 | 000,070,144 | ---- | M] (Microsoft Corporation) {884e2051-217d-11da-b2a4-000e7bbb2b09} [HKLM] -> C:\Windows\SysNative\CertEnroll.dll [X509 Machine Enrollment Factory] -> [2010/11/20 15:25:48 | 001,975,296 | ---- | M] (Microsoft Corporation) {88d969c0-f192-11d4-a65f-0040963251e5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {88d969c1-f192-11d4-a65f-0040963251e5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {88d969c2-f192-11d4-a65f-0040963251e5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {88d969c3-f192-11d4-a65f-0040963251e5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {88d969c4-f192-11d4-a65f-0040963251e5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {88d969c5-f192-11d4-a65f-0040963251e5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_26] -> [2011/07/19 17:27:55 | 000,118,560 | ---- | M] () {8E4062D9-FE1B-4b9e-AA16-5E8EEF68F48E} [HKLM] -> C:\Windows\SysNative\RegCtrl.dll [Registration Control] -> [2009/07/14 03:41:53 | 000,049,152 | ---- | M] (Microsoft Corporation) {92337A8C-E11D-11D0-BE48-00C04FC30DF6} [HKLM] -> C:\Windows\SysNative\oleprn.dll [prturl Class] -> [2009/07/14 03:41:53 | 000,129,536 | ---- | M] (Microsoft Corporation) {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} [HKLM] -> C:\Windows\SysNative\msnetobj.dll [RMGetLicense Class] -> [2010/11/20 15:27:04 | 000,325,632 | ---- | M] (Microsoft Corporation) {BB10673B-4628-44A9-BFE6-56416E5A54F6} [HKLM] -> C:\Program Files\Sony\VAIO Update 5\VUAC64.dll [VUAX Control] -> [2011/04/20 10:50:52 | 002,536,336 | ---- | M] (Sony Corporation) {C3701884-B39B-11D1-9D68-00C04FC30DF6} [HKLM] -> C:\Windows\SysNative\oleprn.dll [OleInstall Class] -> [2009/07/14 03:41:53 | 000,129,536 | ---- | M] (Microsoft Corporation) {C6E31427-FD7E-4C53-B568-124B191E5DC4} [HKLM] -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [DivX VOD Helper Plug-in] -> [2011/05/06 17:51:00 | 000,496,960 | ---- | M] (DivX, LLC.) {CA8A9780-280D-11CF-A24D-444553540000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_26] -> [2011/07/19 17:27:55 | 000,118,560 | ---- | M] () {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_26] -> [2011/07/19 17:27:55 | 000,118,560 | ---- | M] () {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC} [HKLM] -> C:\Program Files\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_26] -> [2011/07/19 17:27:55 | 000,118,560 | ---- | M] () {CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} [HKLM] -> C:\Windows\SysNative\deployJava1.dll [Deployment Toolkit] -> [2011/07/19 17:27:53 | 000,525,544 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} [HKLM] -> C:\Windows\SysNative\deployJava1.dll [Deployment Toolkit] -> [2011/07/19 17:27:53 | 000,525,544 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBC} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {D27CDB6E-AE6D-11cf-96B8-444553540000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {EE09B103-97E0-11CF-978F-00A02463E06F} [HKLM] -> C:\Windows\SysNative\scrrun.dll [Scripting.Dictionary] -> [2009/07/14 03:41:53 | 000,202,752 | ---- | M] (Microsoft Corporation) < Ext (PreApproved) - [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ -> {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} [HKLM] -> C:\Program Files (x86)\QuickTime\QTPlugin.ocx [QuickTime Object] -> [2010/11/29 18:19:36 | 000,800,048 | ---- | M] (Apple Inc.) {166B1BCA-3F9C-11CF-8075-444553540000} [HKLM] -> C:\Windows\SysWOW64\Adobe\Director\SwDir.dll [Shockwave ActiveX Control] -> [2011/06/13 10:50:28 | 000,279,480 | ---- | M] (Adobe Systems, Inc.) {19916E01-B44E-4E31-94A4-4696DF46157B} [HKLM] -> C:\Windows\SysWOW64\icardie.dll [InformationCardSigninHelper Class] -> [2011/03/15 21:27:05 | 000,066,048 | ---- | M] (Microsoft Corporation) {233C1507-6A77-46A4-9443-F871F945D258} [HKLM] -> C:\Windows\SysWOW64\Adobe\Director\SwDir.dll [Shockwave ActiveX Control] -> [2011/06/13 10:50:28 | 000,279,480 | ---- | M] (Adobe Systems, Inc.) {3050F819-98B5-11CF-BB82-00AA00BDCE0B} [HKLM] -> C:\Windows\SysWOW64\mshtmled.dll [HtmlDlgSafeHelper Class] -> [2011/04/23 01:26:01 | 000,072,704 | ---- | M] (Microsoft Corporation) {333C7BC4-460F-11D0-BC04-0080C7055A83} [HKLM] -> C:\Windows\SysWOW64\tdc.ocx [Tabular Data Control] -> [2011/03/15 21:27:05 | 000,063,488 | ---- | M] (Microsoft Corporation) {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {3E4D4F1C-2AEE-11D1-9D3D-00C04FC30DF6} [HKLM] -> C:\Windows\SysWOW64\oleprn.dll [oleprn Class] -> [2009/07/14 03:16:12 | 000,107,008 | ---- | M] (Microsoft Corporation) {4063BE15-3B08-470D-A0D5-B37161CFFD69} [HKLM] -> C:\Program Files (x86)\QuickTime\QTPlugin.ocx [QuickTime Object] -> [2010/11/29 18:19:36 | 000,800,048 | ---- | M] (Apple Inc.) {435899C9-44AB-11D1-AF00-080036234103} [HKLM] -> C:\Windows\SysWOW64\oleprn.dll [DSPrintQueue Class] -> [2009/07/14 03:16:12 | 000,107,008 | ---- | M] (Microsoft Corporation) {4F664F91-FF01-11D0-8AED-00C04FD7B597} [HKLM] -> C:\Windows\SysWOW64\oleprn.dll [OleSNMP Class] -> [2009/07/14 03:16:12 | 000,107,008 | ---- | M] (Microsoft Corporation) {57B83450-FD6E-4A1E-8B53-1320576F8054} [HKLM] -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreamingIePlugin.dll [Nv3DVStreamingPluginBHO Class] -> [2011/05/20 22:35:04 | 000,278,120 | ---- | M] (NVIDIA Corporation) {5852F5ED-8BF4-11D4-A245-0080C6F74284} [HKLM] -> C:\Program Files (x86)\Java\jre6\bin\wsdetect.dll [isInstalled Class] -> [2011/04/14 05:08:02 | 000,108,320 | ---- | M] (Sun Microsystems, Inc.) {65303443-AD66-11D1-9D65-00C04FC30DF6} [HKLM] -> C:\Windows\SysWOW64\oleprn.dll [OleCvt Class] -> [2009/07/14 03:16:12 | 000,107,008 | ---- | M] (Microsoft Corporation) {67DABFBF-D0AB-41FA-9C46-CC0F21721616} [HKLM] -> [DivXBrowserPlugin Object] -> File not found {6BF52A52-394A-11d3-B153-00C04F79FAA6} [HKLM] -> C:\Windows\SysWOW64\wmp.dll [Windows Media Player] -> [2010/11/20 14:21:37 | 011,410,432 | ---- | M] (Microsoft Corporation) {760C4B83-E211-11D2-BF3E-00805FBE84A6} [HKLM] -> C:\Windows\SysWOW64\msnetobj.dll [Windows Media Services DRM Storage object] -> [2010/11/20 14:19:51 | 000,265,216 | ---- | M] (Microsoft Corporation) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {870B678D-913A-4ABC-81FC-9F380BB4B24D} [HKLM] -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVisionIePlugin.dll [Nv3DVisionControl Class] -> [2011/05/20 22:34:56 | 000,353,384 | ---- | M] (NVIDIA Corporation) {884e2049-217d-11da-b2a4-000e7bbb2b09} [HKLM] -> C:\Windows\SysWOW64\CertEnrollCtrl.exe [X509 Enrollment WebClassFactory] -> [2009/07/14 03:14:13 | 000,067,072 | ---- | M] (Microsoft Corporation) {884e2051-217d-11da-b2a4-000e7bbb2b09} [HKLM] -> C:\Windows\SysWOW64\CertEnroll.dll [X509 Machine Enrollment Factory] -> [2010/11/20 14:18:11 | 001,334,272 | ---- | M] (Microsoft Corporation) {88d969c0-f192-11d4-a65f-0040963251e5} [HKLM] -> c:\Windows\SysWOW64\msxml4.dll [XML DOM Document 4.0] -> [2009/07/21 00:05:40 | 001,348,432 | ---- | M] (Microsoft Corporation) {88d969c1-f192-11d4-a65f-0040963251e5} [HKLM] -> c:\Windows\SysWOW64\msxml4.dll [Free Threaded XML DOM Document 4.0] -> [2009/07/21 00:05:40 | 001,348,432 | ---- | M] (Microsoft Corporation) {88d969c2-f192-11d4-a65f-0040963251e5} [HKLM] -> c:\Windows\SysWOW64\msxml4.dll [XML Schema Cache 4.0] -> [2009/07/21 00:05:40 | 001,348,432 | ---- | M] (Microsoft Corporation) {88d969c3-f192-11d4-a65f-0040963251e5} [HKLM] -> c:\Windows\SysWOW64\msxml4.dll [XSL Template 4.0] -> [2009/07/21 00:05:40 | 001,348,432 | ---- | M] (Microsoft Corporation) {88d969c4-f192-11d4-a65f-0040963251e5} [HKLM] -> c:\Windows\SysWOW64\msxml4.dll [XML Data Source Object 4.0] -> [2009/07/21 00:05:40 | 001,348,432 | ---- | M] (Microsoft Corporation) {88d969c5-f192-11d4-a65f-0040963251e5} [HKLM] -> c:\Windows\SysWOW64\msxml4.dll [XML HTTP 4.0] -> [2009/07/21 00:05:40 | 001,348,432 | ---- | M] (Microsoft Corporation) {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_25] -> [2011/04/14 05:08:02 | 000,112,416 | ---- | M] () {8E4062D9-FE1B-4b9e-AA16-5E8EEF68F48E} [HKLM] -> C:\Windows\SysWOW64\RegCtrl.dll [Registration Control] -> [2009/07/14 03:16:13 | 000,041,472 | ---- | M] (Microsoft Corporation) {92337A8C-E11D-11D0-BE48-00C04FC30DF6} [HKLM] -> C:\Windows\SysWOW64\oleprn.dll [prturl Class] -> [2009/07/14 03:16:12 | 000,107,008 | ---- | M] (Microsoft Corporation) {93A19665-CB06-44B4-A578-620454EB7BD8} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} [HKLM] -> C:\Windows\SysWOW64\msnetobj.dll [RMGetLicense Class] -> [2010/11/20 14:19:51 | 000,265,216 | ---- | M] (Microsoft Corporation) {BB10673B-4628-44A9-BFE6-56416E5A54F6} [HKLM] -> C:\Program Files\Sony\VAIO Update 5\VUAC.dll [VUAX Control] -> [2011/04/20 10:50:50 | 001,855,376 | ---- | M] (Sony Corporation) {C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} [HKLM] -> C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll [Google Update Plugin] -> [2011/08/05 14:08:19 | 000,236,696 | ---- | M] (Google Inc.) {C3701884-B39B-11D1-9D68-00C04FC30DF6} [HKLM] -> C:\Windows\SysWOW64\oleprn.dll [OleInstall Class] -> [2009/07/14 03:16:12 | 000,107,008 | ---- | M] (Microsoft Corporation) {C442AC41-9200-4770-8CC0-7CDB4F245C55} [HKLM] -> C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll [Google Update Plugin] -> [2011/08/05 14:08:19 | 000,236,696 | ---- | M] (Google Inc.) {C6E31427-FD7E-4C53-B568-124B191E5DC4} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {CA8A9780-280D-11CF-A24D-444553540000} [HKLM] -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll [Adobe PDF Reader] -> [2011/06/07 21:30:47 | 000,660,912 | ---- | M] (Adobe Systems, Inc.) {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} [HKLM] -> C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_25] -> [2011/04/14 05:08:02 | 000,112,416 | ---- | M] () {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB} [HKLM] -> C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_25] -> [2011/04/14 05:08:02 | 000,112,416 | ---- | M] () {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC} [HKLM] -> C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll [Java Plug-in 1.6.0_25] -> [2011/04/14 05:08:02 | 000,112,416 | ---- | M] () {CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} [HKLM] -> C:\Windows\SysWOW64\deployJava1.dll [Deployment Toolkit] -> [2011/04/14 05:07:59 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} [HKLM] -> C:\Windows\SysWOW64\deployJava1.dll [Deployment Toolkit] -> [2011/04/14 05:07:59 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBC} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {CB927D12-4FF7-4A9E-A169-56E4B8A75598} [HKLM] -> C:\Program Files (x86)\QuickTime\QTPlugin.ocx [Behavior Object] -> [2010/11/29 18:19:36 | 000,800,048 | ---- | M] (Apple Inc.) {CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {D27CDB6E-AE6D-11cf-96B8-444553540000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} [HKLM] -> C:\Program Files (x86)\iTunes\ITDetector.ocx [iTunesDetector Class] -> [2011/07/14 01:42:16 | 000,111,904 | ---- | M] (Apple Inc.) {DFEAF541-F3E1-4c24-ACAC-99C30715084A} [HKLM] -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll [Microsoft Silverlight] -> [2011/05/30 23:32:12 | 001,025,864 | ---- | M] ( Microsoft Corporation) {EE09B103-97E0-11CF-978F-00A02463E06F} [HKLM] -> C:\Windows\SysWOW64\scrrun.dll [Scripting.Dictionary] -> [2009/07/14 03:16:13 | 000,163,840 | ---- | M] (Microsoft Corporation) < Ext (Settings) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\ -> {01025D1C-BB03-4369-8344-732CD0DCCCF0} [HKLM] -> C:\Windows\Downloaded Program Files\GPU_Reader.dll [NVIDIA GPU Reader Class] -> [2010/11/02 12:51:04 | 001,370,112 | ---- | M] (NVIDIA Corporation) {02CF1781-EA91-4FA5-A200-646E8241987C} [HKLM] -> C:\Windows\Downloaded Program Files\VaioInfo.dll [VaioInfo.CMClass] -> [2004/10/27 13:06:30 | 000,049,152 | ---- | M] (Sony Electronics, Inc.) {0E5F0222-96B9-11D3-8997-00104BD12D94} [HKLM] -> C:\Windows\Downloaded Program Files\PCPitstop.dll [PCPitstop Utility] -> [2009/11/16 13:54:18 | 000,459,480 | ---- | M] (PC Pitstop) {1E54D648-B804-468D-BC78-4AFFED8E262F} [HKLM] -> C:\Program Files (x86)\SystemRequirementsLab\sysreqlab_nvd.dll [System Requirements Lab Class] -> [2009/04/03 19:25:56 | 000,349,184 | ---- | M] (Husdawg, LLC) 64bit-{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [avast! WebRep] -> [2011/07/04 13:43:43 | 000,978,496 | ---- | M] (AVAST Software) {318A227B-5E9F-45BD-8999-7F8F10CA4CF5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {74DBCB52-F298-4110-951D-AD2FF67BC8AB} [HKLM] -> C:\Windows\Downloaded Program Files\NvidiaSmartScan.ocx [NVIDIA Smart Scan] -> [2009/06/15 11:33:02 | 000,401,408 | ---- | M] (NVIDIA) {8E5E2654-AD2D-48BF-AC2D-D17F00898D06} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/07/04 13:43:50 | 000,820,864 | ---- | M] (AVAST Software) {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} [HKLM] -> C:\Program Files (x86)\SystemRequirementsLab\srldetect_intel_4.4.24.0.dll [SysInfo Class] -> [2011/03/29 13:10:40 | 000,594,744 | ---- | M] (Husdawg, LLC) {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {FF059E31-CC5A-4E2E-BF3B-96E929D65503} [HKLM] -> C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL [&Opslag] -> [2007/04/19 14:10:18 | 000,063,840 | ---- | M] (Microsoft Corporation) < Ext (Stats) - [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\ -> {00000000-0000-0000-0000-000000000000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {01025D1C-BB03-4369-8344-732CD0DCCCF0} [HKLM] -> C:\Windows\Downloaded Program Files\GPU_Reader.dll [NVIDIA GPU Reader Class] -> [2010/11/02 12:51:04 | 001,370,112 | ---- | M] (NVIDIA Corporation) {02CF1781-EA91-4FA5-A200-646E8241987C} [HKLM] -> C:\Windows\Downloaded Program Files\VaioInfo.dll [VaioInfo.CMClass] -> [2004/10/27 13:06:30 | 000,049,152 | ---- | M] (Sony Electronics, Inc.) {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> Reg Error: Key error. [Reg Error: Value error.] -> File not found {0E5F0222-96B9-11D3-8997-00104BD12D94} [HKLM] -> C:\Windows\Downloaded Program Files\PCPitstop.dll [PCPitstop Utility] -> [2009/11/16 13:54:18 | 000,459,480 | ---- | M] (PC Pitstop) {1E54D648-B804-468D-BC78-4AFFED8E262F} [HKLM] -> C:\Program Files (x86)\SystemRequirementsLab\sysreqlab_nvd.dll [System Requirements Lab Class] -> [2009/04/03 19:25:56 | 000,349,184 | ---- | M] (Husdawg, LLC) 64bit-{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [avast! WebRep] -> [2011/07/04 13:43:43 | 000,978,496 | ---- | M] (AVAST Software) {318A227B-5E9F-45BD-8999-7F8F10CA4CF5} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {444785F1-DE89-4295-863A-D46C3A781394} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {694FAF81-2A8F-4E88-B111-347B4A48F677} [HKLM] -> C:\Windows\Downloaded Program Files\PCPitstop3D.dll [Perf Class] -> [2009/11/16 13:53:56 | 003,081,400 | ---- | M] (PC Pitstop LLC) 64bit-{6BF52A52-394A-11D3-B153-00C04F79FAA6} [HKLM] -> C:\Windows\SysNative\wmp.dll [Windows Media Player] -> [2010/11/20 15:27:28 | 014,633,472 | ---- | M] (Microsoft Corporation) {6BF52A52-394A-11D3-B153-00C04F79FAA6} [HKLM] -> C:\Windows\SysWOW64\wmp.dll [Windows Media Player] -> [2010/11/20 14:21:37 | 011,410,432 | ---- | M] (Microsoft Corporation) {74DBCB52-F298-4110-951D-AD2FF67BC8AB} [HKLM] -> C:\Windows\Downloaded Program Files\NvidiaSmartScan.ocx [NVIDIA Smart Scan] -> [2009/06/15 11:33:02 | 000,401,408 | ---- | M] (NVIDIA) {8E5E2654-AD2D-48BF-AC2D-D17F00898D06} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/07/04 13:43:50 | 000,820,864 | ---- | M] (AVAST Software) {C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} [HKLM] -> C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll [Google Update Plugin] -> [2011/08/05 14:08:19 | 000,236,696 | ---- | M] (Google Inc.) {C442AC41-9200-4770-8CC0-7CDB4F245C55} [HKLM] -> C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll [Google Update Plugin] -> [2011/08/05 14:08:19 | 000,236,696 | ---- | M] (Google Inc.) 64bit-{CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} [HKLM] -> C:\Windows\SysNative\deployJava1.dll [Deployment Toolkit] -> [2011/07/19 17:27:53 | 000,525,544 | ---- | M] (Sun Microsystems, Inc.) {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} [HKLM] -> C:\Windows\SysWOW64\deployJava1.dll [Deployment Toolkit] -> [2011/04/14 05:07:59 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} [HKLM] -> C:\Program Files (x86)\SystemRequirementsLab\srldetect_intel_4.4.24.0.dll [SysInfo Class] -> [2011/03/29 13:10:40 | 000,594,744 | ---- | M] (Husdawg, LLC) {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found {DFEAF541-F3E1-4C24-ACAC-99C30715084A} [HKLM] -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll [Microsoft Silverlight] -> [2011/05/30 23:32:12 | 001,025,864 | ---- | M] ( Microsoft Corporation) {E6F480FC-BD44-4CBA-B74A-89AF7842937D} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found < 64bit-File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .bat [@ = batfile] -> "%1" %* -> .cmd [@ = cmdfile] -> "%1" %* -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> .url [@ = InternetShortcut] -> C:\Windows\SysNative\rundll32.exe -> [2009/07/14 03:39:31 | 000,045,568 | ---- | M] (Microsoft Corporation) .pif [@ = piffile] -> "%1" %* -> .scr [@ = scrfile] -> "%1" /S -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .bat [@ = batfile] -> "%1" %* -> .cmd [@ = cmdfile] -> "%1" %* -> .com [@ = comfile] -> "%1" %* -> .cpl [@ = cplfile] -> C:\Windows\SysWow64\control.exe -> [2009/07/14 03:14:15 | 000,113,152 | ---- | M] (Microsoft Corporation) .exe [@ = exefile] -> "%1" %* -> .pif [@ = piffile] -> "%1" %* -> .scr [@ = scrfile] -> "%1" /S -> < 64bit-Protocol Filters [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ -> text/xml:{807553E5-5146-11D5-A672-00B0D022E945} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found < 64bit-Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> livecall:{828030A1-22C1-4009-854F-8E305202313F} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found msdaipp: [HKLM] -> No CLSID value msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found msnim:{828030A1-22C1-4009-854F-8E305202313F} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found mso-offdap11:{32505114-5902-49B2-880A-1F7738E5A384} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found wlmailhtml:{03C514A3-1EFB-4856-9F99-10D7BE1653C0} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found wlpg:{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found < Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} [HKLM] -> C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll[MSDAMON.BINDER] -> [2005/09/20 12:33:58 | 000,843,984 | ---- | M] (Microsoft Corporation) msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} [HKLM] -> C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll[MSDAIPP.BINDER] -> [2005/09/20 12:33:58 | 000,843,984 | ---- | M] (Microsoft Corporation) mso-offdap11:{32505114-5902-49B2-880A-1F7738E5A384} [HKLM] -> C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL[Data Page Plugable Protocal mso-offdap11 Handler] -> [2009/03/24 17:47:14 | 008,058,192 | ---- | M] (Microsoft Corporation) < 64bit-Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center -> 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center \\"cval" -> [1] -> File not found 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> -> 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> -> 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc \Svc\\"VistaSp1" -> [28 4D B2 76 41 04 CA 01 [binary data]] -> File not found \Svc\\"AntiVirusOverride" -> [0] -> File not found \Svc\\"AntiSpywareOverride" -> [0] -> File not found \Svc\\"FirewallOverride" -> [0] -> File not found 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> -> < Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> -> < Windows DomainProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile \\"DisableNotifications" -> [0] -> File not found \\"EnableFirewall" -> [1] -> File not found HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging\ -> -> < Windows StandardProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile \\"DisableNotifications" -> [0] -> File not found \\"EnableFirewall" -> [1] -> File not found HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> -> < Session Manager Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager -> *BootExecute* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\\BootExecute -> autocheck autochk * -> -> File not found *MultiFile Done* -> -> "ExcludeFromKnownDlls" -> [binary data] -> 64bit-*ObjectDirectories* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\\ObjectDirectories -> \Windows -> \Windows -> [2011/07/31 03:34:26 | 000,000,000 | ---D | M] \RPC Control -> -> File not found *MultiFile Done* -> -> *ObjectDirectories* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\\ObjectDirectories -> \Windows -> \Windows -> [2011/07/31 03:34:26 | 000,000,000 | ---D | M] \RPC Control -> -> File not found *MultiFile Done* -> -> 64bit-*PendingFileRenameOperations* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\\PendingFileRenameOperations -> \??\C:\Program Files (x86)\Google\Update\1.3.21.57 [\??\C:\Program Files (x86)\Google\Update\1.3.21.57] -> C:\Program Files (x86)\Google\Update\1.3.21.57 [C:\Program Files (x86)\Google\Update\1.3.21.57] -> [2011/08/05 14:08:28 | 000,000,000 | ---D | M] *MultiFile Done* -> -> *PendingFileRenameOperations* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\\PendingFileRenameOperations -> \??\C:\Program Files (x86)\Google\Update\1.3.21.57 [\??\C:\Program Files (x86)\Google\Update\1.3.21.57] -> C:\Program Files (x86)\Google\Update\1.3.21.57 [C:\Program Files (x86)\Google\Update\1.3.21.57] -> [2011/08/05 14:08:28 | 000,000,000 | ---D | M] *MultiFile Done* -> -> < Session Manager Environment Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment -> 64bit-"ComSpec" -> C:\Windows\SysNative\cmd.exe -> [2010/11/20 15:24:33 | 000,345,088 | ---- | M] (Microsoft Corporation) "ComSpec" -> C:\Windows\SysWOW64\cmd.exe -> [2010/11/20 14:17:00 | 000,302,592 | ---- | M] (Microsoft Corporation) "TEMP" -> C:\Windows\Temp -> [2011/08/05 17:45:00 | 000,000,000 | ---D | M] "TMP" -> C:\Windows\Temp -> [2011/08/05 17:45:00 | 000,000,000 | ---D | M] "windir" -> C:\Windows -> [2011/07/31 03:34:26 | 000,000,000 | ---D | M] 64bit-*Path* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common -> [2011/06/07 14:57:43 | 000,000,000 | ---D | M] C:\Program Files\Common Files\Microsoft Shared\Windows Live -> C:\Program Files\Common Files\Microsoft Shared\Windows Live -> [2010/10/21 17:49:17 | 000,000,000 | ---D | M] C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live -> [2010/10/21 17:49:16 | 000,000,000 | ---D | M] %SystemRoot%\system32 -> C:\Windows\SysNative -> File not found %SystemRoot% -> C:\Windows -> [2011/07/31 03:34:26 | 000,000,000 | ---D | M] %SystemRoot%\System32\Wbem -> C:\Windows\SysNative\wbem -> [2011/07/25 15:17:26 | 000,000,000 | ---D | M] %SYSTEMROOT%\System32\WindowsPowerShell\v1.0\ -> C:\Windows\SysNative\WindowsPowerShell\v1.0\ -> [2011/02/24 22:41:49 | 000,000,000 | ---D | M] C:\Program Files\WIDCOMM\Bluetooth Software\ -> C:\Program Files\WIDCOMM\Bluetooth Software\ -> [2010/05/18 10:21:08 | 000,000,000 | ---D | M] C:\Program Files\WIDCOMM\Bluetooth Software\syswow64 -> C:\Program Files\WIDCOMM\Bluetooth Software\syswow64 -> [2010/05/18 10:20:45 | 000,000,000 | ---D | M] C:\Program Files (x86)\Common Files\Roxio Shared\10.0\DLLShared\ -> -> File not found C:\Program Files (x86)\Windows Live\Shared -> C:\Program Files (x86)\Windows Live\Shared -> [2011/03/30 08:20:49 | 000,000,000 | ---D | M] C:\Program Files\Intel\WiFi\bin\ -> C:\Program Files\Intel\WiFi\bin\ -> [2011/06/28 01:46:40 | 000,000,000 | ---D | M] C:\Program Files\Common Files\Intel\WirelessCommon\ -> C:\Program Files\Common Files\Intel\WirelessCommon\ -> [2011/06/28 01:46:39 | 000,000,000 | ---D | M] C:\Program Files (x86)\QuickTime\QTSystem\ -> C:\Program Files (x86)\QuickTime\QTSystem\ -> [2011/07/13 21:57:42 | 000,000,000 | ---D | M] *MultiFile Done* -> -> *Path* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common -> [2011/06/07 14:57:43 | 000,000,000 | ---D | M] C:\Program Files\Common Files\Microsoft Shared\Windows Live -> C:\Program Files\Common Files\Microsoft Shared\Windows Live -> [2010/10/21 17:49:17 | 000,000,000 | ---D | M] C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live -> [2010/10/21 17:49:16 | 000,000,000 | ---D | M] %SystemRoot%\system32 -> C:\Windows\SysWOW64 -> [2011/07/25 16:01:29 | 000,000,000 | ---D | M] %SystemRoot% -> C:\Windows -> [2011/07/31 03:34:26 | 000,000,000 | ---D | M] %SystemRoot%\System32\Wbem -> C:\Windows\SysWOW64\wbem -> [2011/02/24 22:42:05 | 000,000,000 | ---D | M] %SYSTEMROOT%\System32\WindowsPowerShell\v1.0\ -> C:\Windows\SysWow64\WindowsPowerShell\v1.0\ -> [2011/02/24 22:42:05 | 000,000,000 | ---D | M] C:\Program Files\WIDCOMM\Bluetooth Software\ -> C:\Program Files\WIDCOMM\Bluetooth Software\ -> [2010/05/18 10:21:08 | 000,000,000 | ---D | M] C:\Program Files\WIDCOMM\Bluetooth Software\syswow64 -> C:\Program Files\WIDCOMM\Bluetooth Software\syswow64 -> [2010/05/18 10:20:45 | 000,000,000 | ---D | M] C:\Program Files (x86)\Common Files\Roxio Shared\10.0\DLLShared\ -> -> File not found C:\Program Files (x86)\Windows Live\Shared -> C:\Program Files (x86)\Windows Live\Shared -> [2011/03/30 08:20:49 | 000,000,000 | ---D | M] C:\Program Files\Intel\WiFi\bin\ -> C:\Program Files\Intel\WiFi\bin\ -> [2011/06/28 01:46:40 | 000,000,000 | ---D | M] C:\Program Files\Common Files\Intel\WirelessCommon\ -> C:\Program Files\Common Files\Intel\WirelessCommon\ -> [2011/06/28 01:46:39 | 000,000,000 | ---D | M] C:\Program Files (x86)\QuickTime\QTSystem\ -> C:\Program Files (x86)\QuickTime\QTSystem\ -> [2011/07/13 21:57:42 | 000,000,000 | ---D | M] *MultiFile Done* -> -> *PATHEXT* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Environment\\PATHEXT -> .COM -> -> File not found .EXE -> -> File not found .BAT -> -> File not found .CMD -> -> File not found .VBS -> -> File not found .VBE -> -> File not found .JS -> -> File not found .JSE -> -> File not found .WSF -> -> File not found .WSH -> -> File not found .MSC -> -> File not found *MultiFile Done* -> -> < Session Manager FileRenameOperations Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\FileRenameOperations -> < Session Manager KnownDlls Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDlls -> 64bit-"advapi32" -> C:\Windows\SysNative\advapi32.dll -> [2009/07/14 03:40:01 | 000,877,056 | ---- | M] (Microsoft Corporation) 64bit-"clbcatq" -> C:\Windows\SysNative\clbcatq.dll -> [2009/07/14 03:40:15 | 000,607,744 | ---- | M] (Microsoft Corporation) 64bit-"COMDLG32" -> C:\Windows\SysNative\comdlg32.dll -> [2010/11/20 15:25:58 | 000,594,432 | ---- | M] (Microsoft Corporation) 64bit-"DifxApi" -> C:\Windows\SysNative\difxapi.dll -> [2009/07/14 03:40:30 | 000,504,320 | ---- | M] (Microsoft Corporation) 64bit-"DllDirectory" -> C:\Windows\SysNative -> File not found 64bit-"DllDirectory32" -> C:\Windows\SysWOW64 -> [2011/07/25 16:01:29 | 000,000,000 | ---D | M] 64bit-"gdi32" -> C:\Windows\SysNative\gdi32.dll -> [2010/11/20 15:26:25 | 000,403,968 | ---- | M] (Microsoft Corporation) 64bit-"IERTUTIL" -> C:\Windows\SysNative\iertutil.dll -> [2011/04/23 03:19:35 | 002,136,064 | ---- | M] (Microsoft Corporation) 64bit-"IMAGEHLP" -> C:\Windows\SysNative\imagehlp.dll -> [2010/11/20 15:26:36 | 000,076,800 | ---- | M] (Microsoft Corporation) 64bit-"IMM32" -> C:\Windows\SysNative\imm32.dll -> [2009/07/14 03:41:09 | 000,167,424 | ---- | M] (Microsoft Corporation) 64bit-"kernel32" -> C:\Windows\SysNative\kernel32.dll -> [2011/05/14 09:20:00 | 001,162,752 | ---- | M] (Microsoft Corporation) 64bit-"LPK" -> C:\Windows\SysNative\lpk.dll -> [2009/07/14 03:41:19 | 000,041,984 | ---- | M] (Microsoft Corporation) 64bit-"MSCTF" -> C:\Windows\SysNative\msctf.dll -> [2009/07/14 03:41:28 | 001,067,008 | ---- | M] (Microsoft Corporation) 64bit-"MSVCRT" -> C:\Windows\SysNative\msvcrt.dll -> [2009/07/14 03:41:32 | 000,634,880 | ---- | M] (Microsoft Corporation) 64bit-"NORMALIZ" -> C:\Windows\SysNative\normaliz.dll -> [2009/07/14 03:31:40 | 000,002,560 | ---- | M] (Microsoft Corporation) 64bit-"NSI" -> C:\Windows\SysNative\nsi.dll -> [2009/07/14 03:41:53 | 000,013,824 | ---- | M] (Microsoft Corporation) 64bit-"ole32" -> C:\Windows\SysNative\ole32.dll -> [2010/11/20 15:27:23 | 002,086,912 | ---- | M] (Microsoft Corporation) 64bit-"OLEAUT32" -> C:\Windows\SysNative\oleaut32.dll -> [2011/02/25 08:22:22 | 000,861,696 | ---- | M] (Microsoft Corporation) 64bit-"PSAPI" -> C:\Windows\SysNative\psapi.dll -> [2009/07/14 03:41:53 | 000,009,216 | ---- | M] (Microsoft Corporation) 64bit-"rpcrt4" -> C:\Windows\SysNative\rpcrt4.dll -> [2010/11/20 15:27:24 | 001,219,584 | ---- | M] (Microsoft Corporation) 64bit-"sechost" -> C:\Windows\SysNative\sechost.dll -> [2009/07/14 03:41:53 | 000,113,664 | ---- | M] (Microsoft Corporation) 64bit-"Setupapi" -> C:\Windows\SysNative\setupapi.dll -> [2010/11/20 15:27:25 | 001,900,544 | ---- | M] (Microsoft Corporation) 64bit-"SHELL32" -> C:\Windows\SysNative\shell32.dll -> [2010/11/20 15:27:25 | 014,174,208 | ---- | M] (Microsoft Corporation) 64bit-"SHLWAPI" -> C:\Windows\SysNative\shlwapi.dll -> [2010/11/20 15:27:25 | 000,448,512 | ---- | M] (Microsoft Corporation) 64bit-"URLMON" -> C:\Windows\SysNative\urlmon.dll -> [2011/04/23 03:23:54 | 001,344,000 | ---- | M] (Microsoft Corporation) 64bit-"user32" -> C:\Windows\SysNative\user32.dll -> [2010/11/20 15:27:27 | 001,008,128 | ---- | M] (Microsoft Corporation) 64bit-"USP10" -> C:\Windows\SysNative\usp10.dll -> [2010/11/20 15:27:27 | 000,800,256 | ---- | M] (Microsoft Corporation) 64bit-"WININET" -> C:\Windows\SysNative\wininet.dll -> [2011/03/15 21:27:05 | 001,389,056 | ---- | M] (Microsoft Corporation) 64bit-"WLDAP32" -> C:\Windows\SysNative\Wldap32.dll -> [2010/11/20 15:27:28 | 000,312,832 | ---- | M] (Microsoft Corporation) 64bit-"WS2_32" -> C:\Windows\SysNative\ws2_32.dll -> [2010/11/20 15:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) "advapi32" -> C:\Windows\SysWow64\advapi32.dll -> [2010/11/20 14:18:02 | 000,640,512 | ---- | M] (Microsoft Corporation) "clbcatq" -> C:\Windows\SysWow64\clbcatq.dll -> [2009/07/14 03:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) "COMDLG32" -> C:\Windows\SysWow64\comdlg32.dll -> [2010/11/20 14:18:23 | 000,485,888 | ---- | M] (Microsoft Corporation) "DifxApi" -> C:\Windows\SysWow64\difxapi.dll -> [2009/07/14 03:15:11 | 000,315,904 | ---- | M] (Microsoft Corporation) "DllDirectory" -> C:\Windows\SysWOW64 -> [2011/07/25 16:01:29 | 000,000,000 | ---D | M] "DllDirectory32" -> C:\Windows\SysWOW64 -> [2011/07/25 16:01:29 | 000,000,000 | ---D | M] "gdi32" -> C:\Windows\SysWow64\gdi32.dll -> [2010/11/20 14:08:51 | 000,311,296 | ---- | M] (Microsoft Corporation) "IERTUTIL" -> C:\Windows\SysWow64\iertutil.dll -> [2011/04/23 01:26:21 | 001,785,344 | ---- | M] (Microsoft Corporation) "IMAGEHLP" -> C:\Windows\SysWow64\imagehlp.dll -> [2010/11/20 14:19:21 | 000,155,136 | ---- | M] (Microsoft Corporation) "IMM32" -> C:\Windows\SysWow64\imm32.dll -> [2010/11/20 14:08:51 | 000,119,808 | ---- | M] (Microsoft Corporation) "kernel32" -> C:\Windows\SysWow64\kernel32.dll -> [2011/05/14 08:22:22 | 000,837,632 | ---- | M] (Microsoft Corporation) "LPK" -> C:\Windows\SysWow64\lpk.dll -> [2009/07/14 03:11:23 | 000,025,600 | ---- | M] (Microsoft Corporation) "MSCTF" -> C:\Windows\SysWow64\msctf.dll -> [2009/07/14 03:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) "MSVCRT" -> C:\Windows\SysWow64\msvcrt.dll -> [2009/07/14 03:15:50 | 000,690,688 | ---- | M] (Microsoft Corporation) "NORMALIZ" -> C:\Windows\SysWow64\normaliz.dll -> [2009/07/14 03:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) "NSI" -> C:\Windows\SysWow64\nsi.dll -> [2009/07/14 03:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) "ole32" -> C:\Windows\SysWow64\ole32.dll -> [2010/11/20 14:20:49 | 001,414,144 | ---- | M] (Microsoft Corporation) "OLEAUT32" -> C:\Windows\SysWow64\oleaut32.dll -> [2011/02/25 07:34:36 | 000,571,904 | ---- | M] (Microsoft Corporation) "PSAPI" -> C:\Windows\SysWow64\psapi.dll -> [2009/07/14 03:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) "rpcrt4" -> C:\Windows\SysWow64\rpcrt4.dll -> [2010/11/20 14:08:57 | 000,663,040 | ---- | M] (Microsoft Corporation) "sechost" -> C:\Windows\SysWow64\sechost.dll -> [2009/07/14 03:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) "Setupapi" -> C:\Windows\SysWow64\setupapi.dll -> [2010/11/20 14:21:14 | 001,667,584 | ---- | M] (Microsoft Corporation) "SHELL32" -> C:\Windows\SysWow64\shell32.dll -> [2010/11/20 14:21:19 | 012,872,192 | ---- | M] (Microsoft Corporation) "SHLWAPI" -> C:\Windows\SysWow64\shlwapi.dll -> [2010/11/20 14:21:19 | 000,350,208 | ---- | M] (Microsoft Corporation) "URLMON" -> C:\Windows\SysWow64\urlmon.dll -> [2011/04/23 01:30:18 | 001,102,336 | ---- | M] (Microsoft Corporation) "user32" -> C:\Windows\SysWow64\user32.dll -> [2010/11/20 14:08:57 | 000,833,024 | ---- | M] (Microsoft Corporation) "USP10" -> C:\Windows\SysWow64\usp10.dll -> [2010/11/20 14:21:33 | 000,626,176 | ---- | M] (Microsoft Corporation) "WININET" -> C:\Windows\SysWow64\wininet.dll -> [2011/03/15 21:27:05 | 001,126,912 | ---- | M] (Microsoft Corporation) "WLDAP32" -> C:\Windows\SysWow64\Wldap32.dll -> [2010/11/20 14:21:36 | 000,269,824 | ---- | M] (Microsoft Corporation) "WS2_32" -> C:\Windows\SysWow64\ws2_32.dll -> [2010/11/20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> 64bit-batfile [open] -> "%1" %* -> File not found 64bit-cmdfile [open] -> "%1" %* -> File not found 64bit-comfile [open] -> "%1" %* -> File not found 64bit-exefile [open] -> "%1" %* -> File not found 64bit-inffile [install] -> %SystemRoot%\System32\InfDefaultInstall.exe "%1" -> [2009/07/14 03:39:13 | 000,010,240 | ---- | M] (Microsoft Corporation) 64bit-InternetShortcut [open] -> "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l -> [2009/07/14 03:39:31 | 000,045,568 | ---- | M] (Microsoft Corporation) 64bit-InternetShortcut [print] -> "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" -> [2009/07/14 03:39:31 | 000,045,568 | ---- | M] (Microsoft Corporation) 64bit-piffile [open] -> "%1" %* -> File not found 64bit-scrfile [config] -> "%1" -> File not found 64bit-scrfile [install] -> rundll32.exe desk.cpl,InstallScreenSaver %l -> File not found 64bit-scrfile [open] -> "%1" /S -> File not found 64bit-Unknown [openas] -> %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 -> File not found 64bit-Directory [AddToPlaylistVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" -> [2011/07/14 14:21:10 | 000,108,032 | ---- | M] () 64bit-Directory [cmd] -> cmd.exe /s /k pushd "%V" -> [2010/11/20 15:24:33 | 000,345,088 | ---- | M] (Microsoft Corporation) 64bit-Directory [find] -> %SystemRoot%\Explorer.exe -> [2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) 64bit-Directory [PlayWithVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" -> [2011/07/14 14:21:10 | 000,108,032 | ---- | M] () 64bit-Folder [open] -> %SystemRoot%\Explorer.exe -> [2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) 64bit-Drive [find] -> %SystemRoot%\Explorer.exe -> [2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) batfile [open] -> "%1" %* -> cmdfile [open] -> "%1" %* -> comfile [open] -> "%1" %* -> cplfile [cplopen] -> %SystemRoot%\System32\control.exe "%1",%* -> [2009/07/14 03:14:15 | 000,113,152 | ---- | M] (Microsoft Corporation) exefile [open] -> "%1" %* -> inffile [install] -> %SystemRoot%\System32\InfDefaultInstall.exe "%1" -> [2009/07/14 03:14:21 | 000,009,216 | ---- | M] (Microsoft Corporation) piffile [open] -> "%1" %* -> scrfile [config] -> "%1" -> scrfile [install] -> rundll32.exe desk.cpl,InstallScreenSaver %l -> scrfile [open] -> "%1" /S -> Unknown [openas] -> %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 -> Directory [AddToPlaylistVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" -> [2011/07/14 14:21:10 | 000,108,032 | ---- | M] () Directory [cmd] -> cmd.exe /s /k pushd "%V" -> [2010/11/20 14:17:00 | 000,302,592 | ---- | M] (Microsoft Corporation) Directory [find] -> %SystemRoot%\Explorer.exe -> [2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) Directory [PlayWithVLC] -> "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" -> [2011/07/14 14:21:10 | 000,108,032 | ---- | M] () Folder [open] -> %SystemRoot%\Explorer.exe -> [2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) Drive [find] -> %SystemRoot%\Explorer.exe -> [2011/02/25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) < Winsock2 Catalogs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\ -> 64bit-NameSpace_Catalog5\Catalog_Entries\000000000010 [mdnsNSP] -> C:\Program Files (x86)\Bonjour\mdnsNSP.dll -> [2011/07/12 11:20:50 | 000,121,704 | ---- | M] (Apple Inc.) NameSpace_Catalog5\Catalog_Entries\000000000010 [mdnsNSP] -> C:\Program Files (x86)\Bonjour\mdnsNSP.dll -> [2011/07/12 11:20:50 | 000,121,704 | ---- | M] (Apple Inc.) < Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> ldap -> 4 = Restricted sites (Not a Default Protocol) -> news -> 4 = Restricted sites (Not a Default Protocol) -> nntp -> 4 = Restricted sites (Not a Default Protocol) -> oecmd -> 4 = Restricted sites (Not a Default Protocol) -> snews -> 4 = Restricted sites (Not a Default Protocol) -> < Default Protocols [HKEY_USERS\S-1-5-19\] - Select to Repair > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> @ivt -> @ivt protocol not assigned -> file -> file protocol not assigned -> ftp -> ftp protocol not assigned -> http -> http protocol not assigned -> https -> https protocol not assigned -> shell -> shell protocol not assigned -> < Default Protocols [HKEY_USERS\S-1-5-20\] - Select to Repair > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> @ivt -> @ivt protocol not assigned -> file -> file protocol not assigned -> ftp -> ftp protocol not assigned -> http -> http protocol not assigned -> https -> https protocol not assigned -> shell -> shell protocol not assigned -> < Default Protocols [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\] - Select to Repair > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> @ivt -> @ivt protocol not assigned -> file -> file protocol not assigned -> ftp -> ftp protocol not assigned -> http -> http protocol not assigned -> https -> https protocol not assigned -> shell -> shell protocol not assigned -> < 64bit-Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {071c9b48-7c32-4621-a0ac-3f809523288f} -> Microsoft Visual C++ 2005 Redistributable (x64) {0C826C5B-B131-423A-A229-C71B3CACCD6A} -> CDDRV_Installer {1B8ABA62-74F0-47ED-B18C-A43128E591B8} -> Windows Live ID Sign-in Assistant {1D8E6291-B0D5-35EC-8441-6616F567A0F7} -> Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 {26A24AE4-039D-4CA4-87B4-2F86416026FF} -> Java(TM) 6 Update 26 (64-bit) {350AA351-21FA-3270-8B7A-835434E766AD} -> Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5} -> WIDCOMM Bluetooth Software {439760BC-7737-4386-9B1D-A90A3E8A22EA} -> Apple Mobile Device Support {46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A} -> Windows Live Family Safety {4B6C7001-C7D6-3710-913E-5BC23FCE91E6} -> Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0} -> Windows Live Language Selector {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4} -> Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 {64A3A4F4-B792-11D6-A78A-00B0D0160260} -> Java(TM) SE Development Kit 6 Update 26 (64-bit) {8220EEFE-38CD-377E-8595-13398D740ACE} -> Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 {8338783A-0968-3B85-AFC7-BAAE0A63DC50} -> Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 {850B8072-2EA7-4EDC-B930-7FE569495E76} -> Windows Live Remote Client Resources {95120000-00B9-0409-1000-0000000FF1CE} -> Microsoft Application Error Reporting {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} -> Alps Pointing-device for VAIO {aac9fcc4-dd9e-4add-901c-b5496a07ab2e} -> Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 {AB67B5F9-B19A-42F4-A57D-46114D71060E} -> Intel(R) PROSet/Wireless WiFi software {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028} -> Microsoft Visual C++ 2005 Redistributable (x64) {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision -> NVIDIA 3D Vision-driver 275.33 {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel -> NVIDIA Kontrolpanel 275.33 {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver -> NVIDIA Grafikdriver 275.33 {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB -> NVIDIA 3D Vision Controllerdriver 275.33 {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX -> NVIDIA PhysX-systemsoftware 9.10.0514 {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update -> NVIDIA Opdateringer 1.3.5 {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver -> NVIDIA HD-lyddriver 1.2.23.3 {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer -> NVIDIA Install Application {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update -> NVIDIA Update Components {B613A9BB-2B34-4824-A4BE-2427653D59D6} -> iTunes {B6E3757B-5E77-3915-866A-CCFC4B8D194C} -> Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 {B77EFA0B-9BD3-4122-9F9A-15A963B5EA24} -> Intel® Turbo Boost Teknologi Monitor 2.0 {CA0D2F09-F811-48D4-843E-C87696C6A9D9} -> Bonjour {D0F8B50E-0D86-4E49-9540-DF785CCAC5A5} -> Windows Live Family Safety {DA54F80E-261C-41A2-A855-549A144F2F59} -> Windows Live MIME IFilter {DF6D988A-EEA0-4277-AAB8-158E086E439B} -> Windows Live Remote Client {E02A6548-6FDE-40E2-8ED9-119D7D7E641F} -> Windows Live Remote Service {EE936C7A-EA40-31D5-9B65-8E3E089C3828} -> Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 {F3F18612-7B5D-4C05-86C9-AB50F6F71727} -> KhalInstallWrapper {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} -> Microsoft .NET Framework 4 Client Profile {F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F} -> Windows Live Remote Service Resources {F83E9BF0-B8D8-3D68-9E07-7505290C2202} -> Microsoft .NET Framework 4 Client Profile DAN Language Pack 3366905E6EFF86120E12E2DB3F8F2EDC3B7F5003 -> Windows Driver Package - Broadcom HIDClass (09/11/2009 6.3.0.1500) C3D0C7A1290AAA6A45D0D0422262CE3370E27BE5 -> Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth (02/12/2010 6.3.0.3820) CCleaner -> CCleaner D9022850BCF278EAFBF9EDC8741DC09A1AE20B6B -> Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth (02/28/2010 6.3.0.3850) Microsoft .NET Framework 4 Client Profile -> Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile DAN Language Pack -> Microsoft .NET Framework 4 Client Profile DAN sprogpakke ProInst -> Intel PROSet Wireless Puran Defrag Free Edition_is1 -> Puran Defrag Free Edition 7.3 WhoCrashed_is1 -> WhoCrashed 3.01 WinRAR archiver -> WinRAR 4.01 (64-bit) < Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} -> Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 {00884F14-05BD-4D8E-90E5-1ABF78948CA4} -> Windows Live Mesh {048298C9-A4D3-490B-9FF9-AB023A9238F3} -> Steam {0899D75A-C2FC-42EA-A702-5B9A5F24EAD5} -> VAIO Smart Network {0B0F231F-CE6A-483D-AA23-77B364F75917} -> Windows Live Installer {10186F1A-6A14-43DF-A404-F0105D09BB07} -> Windows Live Mail {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20} -> Microsoft XNA Framework Redistributable 3.1 {1E87F5D4-3502-4F8E-86A5-61DE5AAD1060} -> Windows Live UX Platform Language Pack {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} -> Junk Mail filter update {200FEC62-3C34-4D60-9CE8-EC372E01C08F} -> Windows Live SOXE Definitions {26A24AE4-039D-4CA4-87B4-2F83216018FF} -> Java(TM) 6 Update 25 {2BDD5DFD-9F1F-4754-8BEB-A780D49E8C73} -> Sony Home Network Library {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} -> Microsoft XNA Framework Redistributable 4.0 {3336F667-9049-4D46-98B6-4C743EEBC5B1} -> Windows Live Photo Gallery {36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5} -> VAIO Care {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} -> Intel(R) Rapid Storage Technology {429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA} -> Windows Live Photo Gallery {46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB} -> Adobe AIR {4A03706F-666A-4037-7777-5F2748764D10} -> Java Auto Updater {4CB0307C-565E-4441-86BE-0DF2E4FB828C} -> Microsoft Games for Windows Marketplace {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A} -> Windows Live PIMT Platform {57220148-3B2B-412A-A2E0-82B9DF423696} -> Windows Live Mesh ActiveX-objekt til fjernforbindelser {57752979-A1C9-4C02-856B-FBB27AC4E02C} -> QuickTime {57B955CE-B5D3-495D-AF1B-FAEE0540BFEF} -> VAIO Data Restore Tool {596BED91-A1D8-4DF1-8CD1-1C777F7588AC} -> VAIO DVD Menu Data {5BEE8F1F-BD32-4553-8107-500439E43BD7} -> VAIO Update {5C1F18D2-F6B7-4242-B803-B5A78648185D} -> Corel WinDVD {5DA8F6CD-C70E-39D8-8430-3D9808D6BD17} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 {5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF} -> VAIO Transfer Support {5EE7D259-D137-4438-9A5F-42F432EC0421} -> VC80CRTRedist - 8.0.50727.4053 {641DD10E-47E0-4A1D-B858-EF507F948C50} -> VAIO Hardware Diagnostics {6530FDAA-5B1F-4830-95BB-650E9804D239} -> UE3Redist {682B3E4F-696A-42DE-A41C-4C07EA1678B4} -> Windows Live SOXE {6D320CE8-79EB-4D45-8C6D-DEF74D84B49A} -> VAIO Window Organizer {6D423AE8-0E7D-4703-8EF7-500C5D36FD7F} -> Sony Home Network Library {6FA8BA2C-052B-4072-B8E2-2302C268BE9E} -> VAIO Movie Story Template Data {70991E0A-1108-437E-BA7D-085702C670C0} -> {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} -> Microsoft Visual C++ 2005 Redistributable {72042FA6-5609-489F-A8EA-3C2DD650F667} -> VAIO Control Center {7299052b-02a4-4627-81f2-1818da5d550d} -> Microsoft Visual C++ 2005 Redistributable {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} -> Apple Software Update {7F6021AE-E688-4D03-843A-C2260482BA0D} -> Windows Live Messenger {803E4FA5-A940-4420-B89D-A8BC2E160247} -> VAIO Power Management {827D3E4A-0186-48B7-9801-7D1E9DD40C07} -> Windows Live Essentials {837b34e3-7c30-493c-8f6a-2b0f04e2912c} -> Microsoft Visual C++ 2005 Redistributable {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} -> Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} -> Microsoft Silverlight {8C6D6116-B724-4810-8F2D-D047E6B7D68E} -> Mesh Runtime {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} -> MSVCRT {90120000-0020-0409-0000-0000000FF1CE} -> Compatibility Pack for the 2007 Office system {90140000-2005-0000-0000-0000000FF1CE} -> Microsoft Office File Validation Add-In {91120406-6000-11D3-8CFE-0150048383C9} -> Microsoft Office Standard Edition 2003 {92EA4134-10D1-418A-91E1-5A0453131A38} -> Windows Live Movie Maker {96D0B6C6-5A72-4B47-8583-A87E55F5FE81} -> {98F2FA0E-923A-48C2-8EC7-62BD97E38FC0} -> VAIO Data Restore Tool {9A25302D-30C0-39D9-BD6F-21E6EC160475} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 {9BE518E6-ECC6-35A9-88E4-87755C07200F} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 {9D56775A-93F3-44A3-8092-840E3826DE30} -> Windows Live Mail {A498D9EB-927B-459B-85D6-DD6EF8C2C564} -> erLT {A49F249F-0C91-497F-86DF-B2585E8E76B7} -> Microsoft Visual C++ 2005 Redistributable {A726AE06-AAA3-43D1-87E3-70F510314F04} -> Windows Live Writer {A7DA438C-2E43-4C20-BFDA-C1F4A6208558} -> Setting Utility Series {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} -> Google Update Helper {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} -> Windows Live Photo Common {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} -> Windows Live Writer {AC76BA86-7AD7-1030-7B44-A94000000001} -> Adobe Reader 9.4.5 - Dansk {B10914FD-8812-47A4-85A1-50FCDE7F1F33} -> Windows Live Sync {B3575D00-27EF-49C2-B9E0-14B3D954E992} -> Apple Application Support {B93EEE50-9C8F-45DF-95E4-3D85A6E242F3} -> DarksidersInstaller {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF} -> NVIDIA PhysX {C7477742-DDB4-43E5-AC8D-0259E1E661B1} -> VAIO Event Service {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} -> Microsoft .NET Framework 1.1 {CD41B576-4787-4D5C-95EE-24A4ABD89CD3} -> System Requirements Lab for Intel {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} -> Windows Live UX Platform {CF671BFE-6BA3-44E7-98C1-500D9C51D947} -> Windows Live Photo Gallery {D03D02D8-AB64-4785-A48E-5AA8B0FB8C14} -> Sony Home Network Library {D0B44725-3666-492D-BEF6-587A14BD9BD9} -> MSVCRT_amd64 {D37FE0E3-B1A9-4E41-AB5D-DA62E04D2C42} -> Alpha Protocol {D45240D3-B6B3-4FF9-B243-54ECE3E10066} -> Windows Live Communications Platform {D531F5A4-18F6-4130-B9A4-9179D6E349FC} -> VAIO Care {D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3} -> VAIO Wallpaper Contents {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E} -> Intel(R) Turbo Boost Technology Driver {D6F879CC-59D6-4D4B-AE9B-D761E48D25ED} -> Skype™ 5.3 {DB1208F4-B2FE-44E9-BFE6-8824DBD7891B} -> Windows Live Movie Maker {DE8AAC73-6D8D-483E-96EA-CAEDDADB9079} -> ArcSoft WebCam Companion 3 {DECDCB7C-58CC-4865-91AF-627F9798FE48} -> Windows Live Mesh {E09C4DB7-630C-4F06-A631-8EA7239923AF} -> D3DX10 {E3E71D07-CD27-46CB-8448-16D4FB29AA13} -> Microsoft WSE 3.0 Runtime {E8524B28-3BBB-4763-AC83-0E83FE31C350} -> Windows Live Writer {E9D98402-21AB-4E9F-BF6B-47AF36EF7E97} -> Windows Live Writer Resources {EB4DF488-AAEF-406F-A341-CB2AAA315B90} -> Windows Live Messenger {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} -> Sony Ericsson PC Companion 1.60.13 {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} -> Microsoft SQL Server 2005 Compact Edition [ENU] {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} -> Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} -> Realtek High Definition Audio Driver {F2508213-9989-4E85-A078-72BE483917EF} -> Microsoft Games for Windows - LIVE Redistributable {F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E} -> Logitech SetPoint {F8A9085D-4C7A-41a9-8A77-C8998A96C421} -> Intel(R) Control Center {FB77DB0C-6951-47B6-9D80-A0FDBEE0334C} -> {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Adobe AIR -> Adobe AIR Adobe Flash Player Plugin -> Adobe Flash Player 10 Plugin Adobe Shockwave Player -> Adobe Shockwave Player 11.6 avast -> avast! Free Antivirus Beyond the Alley of the Dolls -> Sam and Max - The Devil's Playhouse - Beyond the Alley of the Dolls Episode 1 -> Back to the Future The Game - Episode 1 InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E} -> VAIO Movie Story Template Data LastFM_is1 -> Last.fm 1.5.4.27091 Malwarebytes' Anti-Malware_is1 -> Malwarebytes' Anti-Malware version 1.51.0.1200 Mozilla Firefox 4.0.1 (x86 da) -> Mozilla Firefox 4.0.1 (x86 da) Notepad++ -> Notepad++ NVIDIA StereoUSB Driver -> NVIDIA 3D Vision Controller Driver NVIDIAStereo -> NVIDIA Stereoscopic 3D Driver OpenAL -> OpenAL Origin -> Origin PunkBusterSvc -> PunkBuster Services Puzzle Agent 2 -> Puzzle Agent 2 Sanitarium_is1 -> Sanitarium Steam App 10 -> Counter-Strike Steam App 11200 -> Shadowgrounds: Survivor Steam App 12120 -> Grand Theft Auto: San Andreas Steam App 12200 -> Bully: Scholarship Edition Steam App 13510 -> Tom Clancy's Ghost Recon: Advanced Warfighter 2 Steam App 15120 -> Tom Clancy's Rainbow Six: Vegas 2 Steam App 18490 -> The Whispered World Steam App 18700 -> And Yet It Moves Steam App 19900 -> Far Cry 2 Steam App 20500 -> Red Faction: Guerrilla Steam App 220 -> Half-Life 2 Steam App 22000 -> World of Goo Steam App 22650 -> Alien Breed 2: Assault Steam App 24960 -> Battlefield: Bad Company 2 Steam App 2500 -> Shadowgrounds Steam App 2600 -> Vampire: The Masquerade - Bloodlines Steam App 26500 -> Cogs Steam App 26800 -> Braid Steam App 26900 -> Crayon Physics Deluxe Steam App 29180 -> Osmos Steam App 32460 -> Monkey Island 2: Special Edition Steam App 35140 -> Batman: Arkham Asylum GOTY Edition Steam App 35700 -> Trine Steam App 37400 -> Time Gentlemen, Please! Steam App 37420 -> Ben There, Dan That! Steam App 380 -> Half-Life 2: Episode One Steam App 400 -> Portal Steam App 40700 -> Machinarium Steam App 40800 -> Super Meat Boy Steam App 40930 -> The Misadventures of P.B. Winterbottom Steam App 420 -> Half-Life 2: Episode Two Steam App 440 -> Team Fortress 2 Steam App 47790 -> Medal of Honor(TM) Single Player Steam App 48010 -> LIMBO Demo Steam App 500 -> Left 4 Dead Steam App 50130 -> Mafia II Steam App 50620 -> Darksiders Steam App 550 -> Left 4 Dead 2 Steam App 57300 -> Amnesia: The Dark Descent Steam App 620 -> Portal 2 Steam App 6860 -> Hitman: Blood Money Steam App 70300 -> VVVVVV Steam App 93200 -> Revenge of the Titans Steam App 99700 -> Nightsky Steel Storm -> Steel Storm - Burning Retribution (remove only) SystemRequirementsLab -> System Requirements Lab The City That Dares Not Sleep -> Sam and Max - The Devil's Playhouse - The City That Dares Not Sleep The Longest Journey_is1 -> The Longest Journey The Mystery of Scoggins -> Puzzle Agent - The Mystery of Scoggins The Penal Zone -> Sam and Max - The Devil's Playhouse - The Penal Zone The Tomb of Sammun-Mak -> Sam and Max - The Devil's Playhouse - The Tomb of Sammun-Mak The Witcher Enhanced Edition Director's Cut_is1 -> The Witcher Enhanced Edition Director's Cut They Stole Max's Brain! -> Sam and Max - The Devil's Playhouse - They Stole Max's Brain! VAIO Help and Support -> VAIO Premium Partners -> VAIO Premium Partners VAIO screensaver -> VAIO screensaver VLC media player -> VLC media player 1.1.11 WinLiveSuite -> Windows Live Essentials < Uninstall List [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> < Uninstall List [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> < Uninstall List [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> < Uninstall List [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> < Uninstall List [HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\] > -> HKEY_USERS\S-1-5-21-1655881950-1038240506-2968297349-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> Episode 2 -> Back to the Future The Game - Episode 2 Episode 3 -> Back to the Future The Game - Episode 3 Episode 4 -> Back to the Future The Game - Episode 4 Episode 5 -> Back to the Future The Game - Episode 5 Google Chrome -> Google Chrome InstallShield_{6530FDAA-5B1F-4830-95BB-650E9804D239} -> UE3Redist < EventViewer Logs - Last 10 Errors > -> Event Information -> Description Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt! [Files/Folders - Created Within 30 Days] {B055A07F-CC20-4DE8-B490-26320816D48F} -> C:\Users\Daniel\AppData\Local\{B055A07F-CC20-4DE8-B490-26320816D48F} -> [2011/08/05 13:56:57 | 000,000,000 | ---D | C] {6E8DCD28-A290-4C72-B38A-A8D3248A6100} -> C:\Users\Daniel\AppData\Local\{6E8DCD28-A290-4C72-B38A-A8D3248A6100} -> [2011/08/05 13:56:25 | 000,000,000 | ---D | C] {D178E912-222B-4BB7-8CBF-0E68D8A9A333} -> C:\Users\Daniel\AppData\Local\{D178E912-222B-4BB7-8CBF-0E68D8A9A333} -> [2011/08/04 13:39:57 | 000,000,000 | ---D | C] {C0861DC9-73E1-4F63-ACD6-4FDCED180774} -> C:\Users\Daniel\AppData\Local\{C0861DC9-73E1-4F63-ACD6-4FDCED180774} -> [2011/08/04 01:31:34 | 000,000,000 | ---D | C] {D843C86B-8D64-4123-8F7D-07988A298FA0} -> C:\Users\Daniel\AppData\Local\{D843C86B-8D64-4123-8F7D-07988A298FA0} -> [2011/08/03 10:48:31 | 000,000,000 | ---D | C] {EA109741-DB5E-47C4-8214-E481414F0DC8} -> C:\Users\Daniel\AppData\Local\{EA109741-DB5E-47C4-8214-E481414F0DC8} -> [2011/08/02 18:02:48 | 000,000,000 | ---D | C] {F02ECF42-6A56-4733-9372-AE294E76C1EC} -> C:\Users\Daniel\AppData\Local\{F02ECF42-6A56-4733-9372-AE294E76C1EC} -> [2011/08/02 17:54:19 | 000,000,000 | ---D | C] {9D4DD4E9-5CBA-4A15-9263-3FB259C26F10} -> C:\Users\Daniel\AppData\Local\{9D4DD4E9-5CBA-4A15-9263-3FB259C26F10} -> [2011/08/02 12:44:54 | 000,000,000 | ---D | C] {1BE2FC71-6601-4E07-9570-9AD76DA589BF} -> C:\Users\Daniel\AppData\Local\{1BE2FC71-6601-4E07-9570-9AD76DA589BF} -> [2011/08/02 12:44:31 | 000,000,000 | ---D | C] SteelStorm -> C:\Program Files (x86)\SteelStorm -> [2011/08/02 03:16:58 | 000,000,000 | ---D | C] {736302DC-C7AE-451F-99FA-EE0DE03AB835} -> C:\Users\Daniel\AppData\Local\{736302DC-C7AE-451F-99FA-EE0DE03AB835} -> [2011/08/01 15:24:03 | 000,000,000 | ---D | C] {B9D9077C-DAC0-4506-967C-DCF3C1A08FDE} -> C:\Users\Daniel\AppData\Local\{B9D9077C-DAC0-4506-967C-DCF3C1A08FDE} -> [2011/08/01 02:10:09 | 000,000,000 | ---D | C] {CE570B0D-BC30-4955-92D3-7258B2FEB0C3} -> C:\Users\Daniel\AppData\Local\{CE570B0D-BC30-4955-92D3-7258B2FEB0C3} -> [2011/07/31 13:47:11 | 000,000,000 | ---D | C] InstallShield Installation Information -> C:\Users\Daniel\AppData\Roaming\InstallShield Installation Information -> [2011/07/31 03:34:38 | 000,000,000 | ---D | C] {34A594FA-4A92-40DE-817F-A89A2B32152A} -> C:\Users\Daniel\AppData\Local\{34A594FA-4A92-40DE-817F-A89A2B32152A} -> [2011/07/30 23:22:49 | 000,000,000 | ---D | C] {AA15B3B6-B737-43A2-808F-F0189586E662} -> C:\Users\Daniel\AppData\Local\{AA15B3B6-B737-43A2-808F-F0189586E662} -> [2011/07/29 14:27:51 | 000,000,000 | ---D | C] ApplicationHistory -> C:\Users\Daniel\AppData\Local\ApplicationHistory -> [2011/07/29 05:19:37 | 000,000,000 | ---D | C] WinRAR -> C:\Program Files\WinRAR -> [2011/07/29 02:37:19 | 000,000,000 | ---D | C] VVVVVV -> C:\Users\Daniel\Documents\VVVVVV -> [2011/07/28 15:23:47 | 000,000,000 | ---D | C] {DBA1124D-A637-450B-87C3-9AD5B4D6BC30} -> C:\Users\Daniel\AppData\Local\{DBA1124D-A637-450B-87C3-9AD5B4D6BC30} -> [2011/07/28 15:17:36 | 000,000,000 | ---D | C] {91DA85FF-4373-4BAB-8C6A-4D945209B826} -> C:\Users\Daniel\AppData\Local\{91DA85FF-4373-4BAB-8C6A-4D945209B826} -> [2011/07/27 14:47:47 | 000,000,000 | ---D | C] Crayon Physics Deluxe -> C:\Users\Daniel\Documents\Crayon Physics Deluxe -> [2011/07/27 01:43:02 | 000,000,000 | ---D | C] {00FC7E5B-124F-4F12-86C3-23CF4C0E2FC1} -> C:\Users\Daniel\AppData\Local\{00FC7E5B-124F-4F12-86C3-23CF4C0E2FC1} -> [2011/07/26 15:20:39 | 000,000,000 | ---D | C] {EEC0E824-2F39-4BB1-B1DF-AE7159FC84DC} -> C:\Users\Daniel\AppData\Local\{EEC0E824-2F39-4BB1-B1DF-AE7159FC84DC} -> [2011/07/26 01:48:25 | 000,000,000 | ---D | C] DrvAgent64.SYS -> C:\Windows\SysWow64\drivers\DrvAgent64.SYS -> [2011/07/25 16:10:35 | 000,021,712 | ---- | C] (Phoenix Technologies) eSupport.com -> C:\Users\Daniel\AppData\Local\eSupport.com -> [2011/07/25 16:10:35 | 000,000,000 | ---D | C] QuickTime -> C:\Windows\SysWow64\QuickTime -> [2011/07/25 15:57:43 | 000,000,000 | ---D | C] Windows Genuine Advantage -> C:\ProgramData\Windows Genuine Advantage -> [2011/07/25 15:25:32 | 000,000,000 | ---D | C] Malwarebytes' Anti-Malware -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware -> [2011/07/25 15:05:32 | 000,000,000 | ---D | C] {3A3DE59E-F455-430A-BCB7-86668DBBF293} -> C:\Users\Daniel\AppData\Local\{3A3DE59E-F455-430A-BCB7-86668DBBF293} -> [2011/07/25 12:37:03 | 000,000,000 | ---D | C] iTunes -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes -> [2011/07/25 00:04:59 | 000,000,000 | ---D | C] iTunes -> C:\Program Files\iTunes -> [2011/07/25 00:04:37 | 000,000,000 | ---D | C] iPod -> C:\Program Files\iPod -> [2011/07/25 00:04:37 | 000,000,000 | ---D | C] Bonjour -> C:\Program Files\Bonjour -> [2011/07/25 00:02:48 | 000,000,000 | ---D | C] Bonjour -> C:\Program Files (x86)\Bonjour -> [2011/07/25 00:02:48 | 000,000,000 | ---D | C] {BD413EF6-549B-4597-8F76-732F76483207} -> C:\Users\Daniel\AppData\Local\{BD413EF6-549B-4597-8F76-732F76483207} -> [2011/07/24 16:35:18 | 000,000,000 | ---D | C] {FEE034AC-A74A-4335-ABE7-CDD9CECE97DB} -> C:\Users\Daniel\AppData\Local\{FEE034AC-A74A-4335-ABE7-CDD9CECE97DB} -> [2011/07/24 15:39:34 | 000,000,000 | ---D | C] {7DE2EB77-F41A-4430-88B2-C851CEF11EE0} -> C:\Users\Daniel\AppData\Local\{7DE2EB77-F41A-4430-88B2-C851CEF11EE0} -> [2011/07/23 14:27:09 | 000,000,000 | ---D | C] {B835BFC2-5545-4758-AEBF-4405CFBE6F6A} -> C:\Users\Daniel\AppData\Local\{B835BFC2-5545-4758-AEBF-4405CFBE6F6A} -> [2011/07/22 12:07:37 | 000,000,000 | ---D | C] vlc -> C:\Users\Daniel\AppData\Roaming\vlc -> [2011/07/21 17:41:59 | 000,000,000 | ---D | C] {F85FEF7B-D9E9-431D-83CD-391A3C136202} -> C:\Users\Daniel\AppData\Local\{F85FEF7B-D9E9-431D-83CD-391A3C136202} -> [2011/07/21 17:38:51 | 000,000,000 | ---D | C] {5220D781-EB8F-4CCA-988C-3817B584AB6A} -> C:\Users\Daniel\AppData\Local\{5220D781-EB8F-4CCA-988C-3817B584AB6A} -> [2011/07/20 02:40:27 | 000,000,000 | ---D | C] VideoLAN -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN -> [2011/07/19 19:12:00 | 000,000,000 | ---D | C] deployJava1.dll -> C:\Windows\SysNative\deployJava1.dll -> [2011/07/19 17:28:02 | 000,525,544 | ---- | C] (Sun Microsystems, Inc.) javaws.exe -> C:\Windows\SysNative\javaws.exe -> [2011/07/19 17:28:02 | 000,190,752 | ---- | C] (Sun Microsystems, Inc.) javaw.exe -> C:\Windows\SysNative\javaw.exe -> [2011/07/19 17:28:02 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) java.exe -> C:\Windows\SysNative\java.exe -> [2011/07/19 17:28:02 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) {3EA48A0D-BC5D-43A4-902D-9974397F8D0F} -> C:\Users\Daniel\AppData\Local\{3EA48A0D-BC5D-43A4-902D-9974397F8D0F} -> [2011/07/19 13:38:13 | 000,000,000 | ---D | C] {C9F3C26C-B173-4BE6-BF9B-49BC5E147AF3} -> C:\Users\Daniel\AppData\Local\{C9F3C26C-B173-4BE6-BF9B-49BC5E147AF3} -> [2011/07/18 15:39:52 | 000,000,000 | ---D | C] {3887ECEF-543F-4BFA-98BB-CD422B535B0A} -> C:\Users\Daniel\AppData\Local\{3887ECEF-543F-4BFA-98BB-CD422B535B0A} -> [2011/07/18 02:02:49 | 000,000,000 | ---D | C] {86FD2036-E67D-48F6-928C-6C803AF1799B} -> C:\Users\Daniel\AppData\Local\{86FD2036-E67D-48F6-928C-6C803AF1799B} -> [2011/07/17 12:47:57 | 000,000,000 | ---D | C] {CFBC5A3B-97EB-4C0C-B2D6-7426A7C9C5E2} -> C:\Users\Daniel\AppData\Local\{CFBC5A3B-97EB-4C0C-B2D6-7426A7C9C5E2} -> [2011/07/16 18:07:04 | 000,000,000 | ---D | C] {4FFF6866-5CC3-47DB-BB24-9A38C6E84C38} -> C:\Users\Daniel\AppData\Local\{4FFF6866-5CC3-47DB-BB24-9A38C6E84C38} -> [2011/07/15 16:32:03 | 000,000,000 | ---D | C] {1D0A9930-C855-4951-9ECC-55EAE34CB0E0} -> C:\Users\Daniel\AppData\Local\{1D0A9930-C855-4951-9ECC-55EAE34CB0E0} -> [2011/07/14 15:31:38 | 000,000,000 | ---D | C] {6B1F22B0-674E-48E3-BF38-BB81B8CCF352} -> C:\Users\Daniel\AppData\Local\{6B1F22B0-674E-48E3-BF38-BB81B8CCF352} -> [2011/07/14 03:22:43 | 000,000,000 | ---D | C] Apple Software Update -> C:\Program Files (x86)\Apple Software Update -> [2011/07/13 21:58:11 | 000,000,000 | ---D | C] QuickTime -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime -> [2011/07/13 21:57:43 | 000,000,000 | ---D | C] QuickTime -> C:\Program Files (x86)\QuickTime -> [2011/07/13 21:57:36 | 000,000,000 | ---D | C] WhoCrashed -> C:\Program Files\WhoCrashed -> [2011/07/13 15:33:19 | 000,000,000 | ---D | C] {658DFE1B-932E-403B-B45D-460D23939585} -> C:\Users\Daniel\AppData\Local\{658DFE1B-932E-403B-B45D-460D23939585} -> [2011/07/13 13:45:19 | 000,000,000 | ---D | C] KernelBase.dll -> C:\Windows\SysNative\KernelBase.dll -> [2011/07/13 03:23:20 | 000,421,888 | ---- | C] (Microsoft Corporation) api-ms-win-security-base-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,006,144 | -H-- | C] (Microsoft Corporation) api-ms-win-core-file-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,005,120 | -H-- | C] (Microsoft Corporation) api-ms-win-core-threadpool-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,004,608 | -H-- | C] (Microsoft Corporation) api-ms-win-core-processthreads-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,004,608 | -H-- | C] (Microsoft Corporation) api-ms-win-core-sysinfo-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-sysinfo-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-synch-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-synch-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-localregistry-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-libraryloader-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-libraryloader-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-interlocked-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-heap-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-heap-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-string-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-delayload-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-delayload-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll -> [2011/07/13 03:23:20 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-security-base-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,006,144 | -H-- | C] (Microsoft Corporation) api-ms-win-core-file-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,005,120 | -H-- | C] (Microsoft Corporation) api-ms-win-core-threadpool-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,004,608 | -H-- | C] (Microsoft Corporation) api-ms-win-core-processthreads-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,004,608 | -H-- | C] (Microsoft Corporation) api-ms-win-core-misc-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-localregistry-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-localization-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-localization-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,004,096 | -H-- | C] (Microsoft Corporation) api-ms-win-core-xstate-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-rtlsupport-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-processenvironment-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-processenvironment-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-namedpipe-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-namedpipe-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-misc-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-memory-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-memory-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,584 | -H-- | C] (Microsoft Corporation) api-ms-win-core-xstate-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-util-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-util-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-string-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-rtlsupport-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-profile-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-profile-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-io-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-io-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-interlocked-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-handle-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-handle-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-fibers-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-fibers-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-errorhandling-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-errorhandling-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-debug-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-debug-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-datetime-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-datetime-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-console-l1-1-0.dll -> C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) api-ms-win-core-console-l1-1-0.dll -> C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll -> [2011/07/13 03:23:19 | 000,003,072 | -H-- | C] (Microsoft Corporation) kernel32.dll -> C:\Windows\SysNative\kernel32.dll -> [2011/07/13 03:23:14 | 001,162,752 | ---- | C] (Microsoft Corporation) wow64win.dll -> C:\Windows\SysNative\wow64win.dll -> [2011/07/13 03:23:14 | 000,362,496 | ---- | C] (Microsoft Corporation) conhost.exe -> C:\Windows\SysNative\conhost.exe -> [2011/07/13 03:23:14 | 000,338,944 | ---- | C] (Microsoft Corporation) wow64.dll -> C:\Windows\SysNative\wow64.dll -> [2011/07/13 03:23:14 | 000,243,200 | ---- | C] (Microsoft Corporation) winsrv.dll -> C:\Windows\SysNative\winsrv.dll -> [2011/07/13 03:23:14 | 000,214,528 | ---- | C] (Microsoft Corporation) setup16.exe -> C:\Windows\SysWow64\setup16.exe -> [2011/07/13 03:23:14 | 000,025,600 | ---- | C] (Microsoft Corporation) ntvdm64.dll -> C:\Windows\SysNative\ntvdm64.dll -> [2011/07/13 03:23:14 | 000,016,384 | ---- | C] (Microsoft Corporation) ntvdm64.dll -> C:\Windows\SysWow64\ntvdm64.dll -> [2011/07/13 03:23:14 | 000,014,336 | ---- | C] (Microsoft Corporation) wow64cpu.dll -> C:\Windows\SysNative\wow64cpu.dll -> [2011/07/13 03:23:14 | 000,013,312 | ---- | C] (Microsoft Corporation) instnm.exe -> C:\Windows\SysWow64\instnm.exe -> [2011/07/13 03:23:14 | 000,007,680 | ---- | C] (Microsoft Corporation) wow32.dll -> C:\Windows\SysWow64\wow32.dll -> [2011/07/13 03:23:14 | 000,005,120 | ---- | C] (Microsoft Corporation) user.exe -> C:\Windows\SysWow64\user.exe -> [2011/07/13 03:23:13 | 000,002,048 | ---- | C] (Microsoft Corporation) {76091090-4259-49BD-B595-BFF3A04160A8} -> C:\Users\Daniel\AppData\Local\{76091090-4259-49BD-B595-BFF3A04160A8} -> [2011/07/12 16:08:01 | 000,000,000 | ---D | C] dnssdX.dll -> C:\Windows\SysNative\dnssdX.dll -> [2011/07/12 11:34:00 | 000,212,840 | ---- | C] (Apple Inc.) dns-sd.exe -> C:\Windows\SysNative\dns-sd.exe -> [2011/07/12 11:34:00 | 000,096,104 | ---- | C] (Apple Inc.) dnssd.dll -> C:\Windows\SysNative\dnssd.dll -> [2011/07/12 11:34:00 | 000,085,864 | ---- | C] (Apple Inc.) jdns_sd.dll -> C:\Windows\SysNative\jdns_sd.dll -> [2011/07/12 11:34:00 | 000,061,288 | ---- | C] (Apple Inc.) dnssdX.dll -> C:\Windows\SysWow64\dnssdX.dll -> [2011/07/12 11:20:54 | 000,178,536 | ---- | C] (Apple Inc.) dns-sd.exe -> C:\Windows\SysWow64\dns-sd.exe -> [2011/07/12 11:20:54 | 000,083,816 | ---- | C] (Apple Inc.) dnssd.dll -> C:\Windows\SysWow64\dnssd.dll -> [2011/07/12 11:20:54 | 000,073,064 | ---- | C] (Apple Inc.) jdns_sd.dll -> C:\Windows\SysWow64\jdns_sd.dll -> [2011/07/12 11:20:54 | 000,050,536 | ---- | C] (Apple Inc.) {2A7C7DB3-20E6-49B6-8671-BDE319F6DBD2} -> C:\Users\Daniel\AppData\Local\{2A7C7DB3-20E6-49B6-8671-BDE319F6DBD2} -> [2011/07/11 17:21:37 | 000,000,000 | ---D | C] Nifflas -> C:\Users\Daniel\AppData\Roaming\Nifflas -> [2011/07/10 22:00:45 | 000,000,000 | ---D | C] Nifflas -> C:\ProgramData\Nifflas -> [2011/07/10 22:00:45 | 000,000,000 | ---D | C] {36AA84D6-B6CE-43B5-A810-39AB091E4917} -> C:\Users\Daniel\AppData\Local\{36AA84D6-B6CE-43B5-A810-39AB091E4917} -> [2011/07/10 20:17:03 | 000,000,000 | ---D | C] {99941F53-591A-477A-BCD7-A584177F71B6} -> C:\Users\Daniel\AppData\Local\{99941F53-591A-477A-BCD7-A584177F71B6} -> [2011/07/06 22:07:01 | 000,000,000 | ---D | C] 4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> [Files/Folders - Modified Within 30 Days] GoogleUpdateTaskUserS-1-5-21-1655881950-1038240506-2968297349-1001UA.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1655881950-1038240506-2968297349-1001UA.job -> [2011/08/05 17:45:00 | 000,000,946 | ---- | M] () GoogleUpdateTaskMachineUA.job -> C:\Windows\tasks\GoogleUpdateTaskMachineUA.job -> [2011/08/05 17:13:00 | 000,000,932 | ---- | M] () GoogleUpdateTaskMachineCore.job -> C:\Windows\tasks\GoogleUpdateTaskMachineCore.job -> [2011/08/05 14:13:00 | 000,000,928 | ---- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> [2011/08/05 14:03:33 | 000,009,920 | -H-- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> [2011/08/05 14:03:33 | 000,009,920 | -H-- | M] () bootstat.dat -> C:\Windows\bootstat.dat -> [2011/08/05 13:55:33 | 000,067,584 | --S- | M] () hiberfil.sys -> C:\hiberfil.sys -> [2011/08/05 13:55:25 | 3156,799,488 | -HS- | M] () PerfStringBackup.INI -> C:\Windows\SysNative\PerfStringBackup.INI -> [2011/08/03 16:52:03 | 001,292,364 | ---- | M] () perfh009.dat -> C:\Windows\SysNative\perfh009.dat -> [2011/08/03 16:52:03 | 000,624,776 | ---- | M] () perfh006.dat -> C:\Windows\SysNative\perfh006.dat -> [2011/08/03 16:52:03 | 000,479,040 | ---- | M] () perfc009.dat -> C:\Windows\SysNative\perfc009.dat -> [2011/08/03 16:52:03 | 000,110,414 | ---- | M] () perfc006.dat -> C:\Windows\SysNative\perfc006.dat -> [2011/08/03 16:52:03 | 000,084,898 | ---- | M] () GoogleUpdateTaskUserS-1-5-21-1655881950-1038240506-2968297349-1001Core.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1655881950-1038240506-2968297349-1001Core.job -> [2011/08/03 11:45:00 | 000,000,894 | ---- | M] () Steel Storm - Burning Retribution.lnk -> C:\Users\Public\Desktop\Steel Storm - Burning Retribution.lnk -> [2011/08/02 03:20:05 | 000,001,035 | ---- | M] () Minecraft.exe -> C:\Users\Daniel\Desktop\Minecraft.exe -> [2011/08/01 02:12:12 | 000,270,142 | ---- | M] () fusioncache.dat -> C:\Users\Daniel\AppData\Local\fusioncache.dat -> [2011/07/29 05:19:37 | 000,000,094 | ---- | M] () WinRAR.lnk -> C:\Users\Public\Desktop\WinRAR.lnk -> [2011/07/29 02:38:13 | 000,000,971 | ---- | M] () DrvAgent64.SYS -> C:\Windows\SysWow64\drivers\DrvAgent64.SYS -> [2011/07/25 16:10:35 | 000,021,712 | ---- | M] (Phoenix Technologies) KGyGaAvL.sys -> C:\ProgramData\KGyGaAvL.sys -> [2011/07/25 15:48:06 | 000,000,952 | -HS- | M] () test.xml -> C:\test.xml -> [2011/07/25 14:36:36 | 000,521,166 | ---- | M] () VLC media player.lnk -> C:\Users\Public\Desktop\VLC media player.lnk -> [2011/07/19 19:12:01 | 000,001,070 | ---- | M] () javaws.exe -> C:\Windows\SysNative\javaws.exe -> [2011/07/19 17:27:54 | 000,190,752 | ---- | M] (Sun Microsystems, Inc.) javaw.exe -> C:\Windows\SysNative\javaw.exe -> [2011/07/19 17:27:54 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) java.exe -> C:\Windows\SysNative\java.exe -> [2011/07/19 17:27:54 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) deployJava1.dll -> C:\Windows\SysNative\deployJava1.dll -> [2011/07/19 17:27:53 | 000,525,544 | ---- | M] (Sun Microsystems, Inc.) PnkBstrB.xtr -> C:\Windows\SysWow64\PnkBstrB.xtr -> [2011/07/17 15:29:56 | 000,280,768 | ---- | M] () PnkBstrB.exe -> C:\Windows\SysWow64\PnkBstrB.exe -> [2011/07/17 15:29:56 | 000,280,768 | ---- | M] () PnkBstrB.ex0 -> C:\Windows\SysWow64\PnkBstrB.ex0 -> [2011/07/17 15:28:41 | 000,215,128 | ---- | M] () Temp17.html -> C:\Users\Daniel\AppData\Local\Temp17.html -> [2011/07/13 15:35:19 | 000,005,388 | ---- | M] () Temp1.html -> C:\Users\Daniel\AppData\Local\Temp1.html -> [2011/07/13 15:33:21 | 000,001,667 | ---- | M] () WhoCrashed.lnk -> C:\Users\Daniel\Desktop\WhoCrashed.lnk -> [2011/07/13 15:33:19 | 000,000,836 | ---- | M] () FNTCACHE.DAT -> C:\Windows\SysNative\FNTCACHE.DAT -> [2011/07/13 13:44:01 | 000,390,384 | ---- | M] () autoruns.exe -> C:\Users\Daniel\Desktop\autoruns.exe -> [2011/07/12 16:35:29 | 000,731,000 | ---- | M] (Sysinternals - www.sysinternals.com) autorunsc.exe -> C:\Users\Daniel\Desktop\autorunsc.exe -> [2011/07/12 16:35:27 | 000,595,320 | ---- | M] (Sysinternals - www.sysinternals.com) _rgpl -> C:\Users\Public\Documents\_rgpl -> [2011/07/12 16:27:21 | 000,000,040 | ---- | M] () dnssdX.dll -> C:\Windows\SysNative\dnssdX.dll -> [2011/07/12 11:34:00 | 000,212,840 | ---- | M] (Apple Inc.) dns-sd.exe -> C:\Windows\SysNative\dns-sd.exe -> [2011/07/12 11:34:00 | 000,096,104 | ---- | M] (Apple Inc.) dnssd.dll -> C:\Windows\SysNative\dnssd.dll -> [2011/07/12 11:34:00 | 000,085,864 | ---- | M] (Apple Inc.) jdns_sd.dll -> C:\Windows\SysNative\jdns_sd.dll -> [2011/07/12 11:34:00 | 000,061,288 | ---- | M] (Apple Inc.) dnssdX.dll -> C:\Windows\SysWow64\dnssdX.dll -> [2011/07/12 11:20:54 | 000,178,536 | ---- | M] (Apple Inc.) dns-sd.exe -> C:\Windows\SysWow64\dns-sd.exe -> [2011/07/12 11:20:54 | 000,083,816 | ---- | M] (Apple Inc.) dnssd.dll -> C:\Windows\SysWow64\dnssd.dll -> [2011/07/12 11:20:54 | 000,073,064 | ---- | M] (Apple Inc.) jdns_sd.dll -> C:\Windows\SysWow64\jdns_sd.dll -> [2011/07/12 11:20:54 | 000,050,536 | ---- | M] (Apple Inc.) config.nt -> C:\Windows\SysWow64\config.nt -> [2011/07/10 05:04:15 | 000,000,000 | ---- | M] () 4 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> [Files - No Company Name] Steel Storm - Burning Retribution.lnk -> C:\Users\Public\Desktop\Steel Storm - Burning Retribution.lnk -> [2011/08/02 03:20:05 | 000,001,035 | ---- | C] () Minecraft.exe -> C:\Users\Daniel\Desktop\Minecraft.exe -> [2011/08/01 02:12:11 | 000,270,142 | ---- | C] () fusioncache.dat -> C:\Users\Daniel\AppData\Local\fusioncache.dat -> [2011/07/29 05:19:37 | 000,000,094 | ---- | C] () engine.dll -> C:\Users\Daniel\Desktop\engine.dll -> [2011/07/29 05:19:23 | 001,986,620 | ---- | C] () WinRAR.lnk -> C:\Users\Public\Desktop\WinRAR.lnk -> [2011/07/29 02:38:13 | 000,000,971 | ---- | C] () hiberfil.sys -> C:\hiberfil.sys -> [2011/07/25 15:38:20 | 3156,799,488 | -HS- | C] () VLC media player.lnk -> C:\Users\Public\Desktop\VLC media player.lnk -> [2011/07/19 19:12:01 | 000,001,070 | ---- | C] () Temp17.html -> C:\Users\Daniel\AppData\Local\Temp17.html -> [2011/07/13 15:35:19 | 000,005,388 | ---- | C] () Temp1.html -> C:\Users\Daniel\AppData\Local\Temp1.html -> [2011/07/13 15:33:21 | 000,001,667 | ---- | C] () WhoCrashed.lnk -> C:\Users\Daniel\Desktop\WhoCrashed.lnk -> [2011/07/13 15:33:19 | 000,000,836 | ---- | C] () _rgpl -> C:\Users\Public\Documents\_rgpl -> [2011/07/12 16:27:21 | 000,000,040 | ---- | C] () pbsvc_bc2.exe -> C:\Windows\SysWow64\pbsvc_bc2.exe -> [2011/07/04 03:10:54 | 002,434,856 | ---- | C] () hash.dat -> C:\ProgramData\hash.dat -> [2011/06/16 04:53:20 | 000,000,032 | R--- | C] () nvStreaming.exe -> C:\Windows\SysWow64\nvStreaming.exe -> [2011/05/20 22:35:28 | 000,304,744 | ---- | C] () DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2011/04/25 15:49:46 | 000,008,192 | ---- | C] () xlive.dll.cat -> C:\Windows\SysWow64\xlive.dll.cat -> [2011/04/09 18:55:28 | 000,179,261 | ---- | C] () TheHunterSettings_live.cfg -> C:\Users\Daniel\AppData\Roaming\TheHunterSettings_live.cfg -> [2011/01/13 20:38:48 | 000,000,043 | ---- | C] () PnkBstrB.exe -> C:\Windows\SysWow64\PnkBstrB.exe -> [2010/12/30 18:13:32 | 000,280,768 | ---- | C] () PnkBstrA.exe -> C:\Windows\SysWow64\PnkBstrA.exe -> [2010/12/30 18:13:32 | 000,075,136 | ---- | C] () pbsvc.exe -> C:\Windows\SysWow64\pbsvc.exe -> [2010/11/29 21:29:22 | 002,337,865 | ---- | C] () ezsidmv.dat -> C:\ProgramData\ezsidmv.dat -> [2010/11/22 22:14:10 | 000,000,056 | -H-- | C] () ODBC.INI -> C:\Windows\ODBC.INI -> [2010/10/12 22:16:59 | 000,000,376 | ---- | C] () resmon.resmoncfg -> C:\Users\Daniel\AppData\Local\resmon.resmoncfg -> [2010/10/10 21:58:25 | 000,000,017 | ---- | C] () shortcut_ex.dat -> C:\Windows\SysWow64\shortcut_ex.dat -> [2010/09/28 23:49:57 | 000,000,017 | ---- | C] () KGyGaAvL.sys -> C:\ProgramData\KGyGaAvL.sys -> [2010/09/28 23:26:03 | 000,000,952 | -HS- | C] () PerfStringBackup.INI -> C:\Windows\SysWow64\PerfStringBackup.INI -> [2010/09/28 22:30:22 | 001,316,492 | ---- | C] () SonyVideoProcessor.dll -> C:\Windows\SysWow64\SonyVideoProcessor.dll -> [2010/05/18 10:41:21 | 000,098,304 | ---- | C] () ffmpegmt.dll -> C:\Windows\SysWow64\ffmpegmt.dll -> [2009/10/16 21:04:28 | 001,632,375 | ---- | C] () bootstat.dat -> C:\Windows\bootstat.dat -> [2009/07/14 07:38:36 | 000,067,584 | --S- | C] () NOISE.DAT -> C:\Windows\SysWow64\NOISE.DAT -> [2009/07/14 04:35:51 | 000,000,741 | ---- | C] () dssec.dat -> C:\Windows\SysWow64\dssec.dat -> [2009/07/14 04:34:42 | 000,215,943 | ---- | C] () mib.bin -> C:\Windows\mib.bin -> [2009/07/14 02:10:29 | 000,043,131 | ---- | C] () BWContextHandler.dll -> C:\Windows\SysWow64\BWContextHandler.dll -> [2009/07/14 01:42:10 | 000,064,000 | ---- | C] () msjetoledb40.dll -> C:\Windows\SysWow64\msjetoledb40.dll -> [2009/07/13 23:03:59 | 000,364,544 | ---- | C] () mlang.dat -> C:\Windows\SysWow64\mlang.dat -> [2009/06/10 23:26:10 | 000,673,088 | ---- | C] () [File - Lop Check] .minecraft -> C:\Users\Daniel\AppData\Roaming\.minecraft -> [2011/08/01 16:25:40 | 000,000,000 | ---D | M] Atari -> C:\Users\Daniel\AppData\Roaming\Atari -> [2010/10/22 21:05:56 | 000,000,000 | ---D | M] Audacity -> C:\Users\Daniel\AppData\Roaming\Audacity -> [2011/04/25 15:20:02 | 000,000,000 | ---D | M] Auslogics -> C:\Users\Daniel\AppData\Roaming\Auslogics -> [2010/10/10 23:48:52 | 000,000,000 | ---D | M] Braid -> C:\Users\Daniel\AppData\Roaming\Braid -> [2011/06/15 16:19:34 | 000,000,000 | ---D | M] com.gog.downloader.87F90EC6C28C7E479115BE2E026DB87A08BC420D.1 -> C:\Users\Daniel\AppData\Roaming\com.gog.downloader.87F90EC6C28C7E479115BE2E026DB87A08BC420D.1 -> [2010/12/14 23:00:30 | 000,000,000 | ---D | M] Crayon Physics Deluxe -> C:\Users\Daniel\AppData\Roaming\Crayon Physics Deluxe -> [2011/07/27 02:01:48 | 000,000,000 | ---D | M] DAEMON Tools Lite -> C:\Users\Daniel\AppData\Roaming\DAEMON Tools Lite -> [2011/07/12 16:34:32 | 000,000,000 | ---D | M] Dropbox -> C:\Users\Daniel\AppData\Roaming\Dropbox -> [2010/09/29 10:41:55 | 000,000,000 | ---D | M] fltk.org -> C:\Users\Daniel\AppData\Roaming\fltk.org -> [2011/06/13 17:32:33 | 000,000,000 | ---D | M] Gearbox Software -> C:\Users\Daniel\AppData\Roaming\Gearbox Software -> [2010/10/31 18:34:41 | 000,000,000 | ---D | M] gtk-2.0 -> C:\Users\Daniel\AppData\Roaming\gtk-2.0 -> [2011/02/16 17:14:08 | 000,000,000 | ---D | M] Lazy 8 Studios -> C:\Users\Daniel\AppData\Roaming\Lazy 8 Studios -> [2011/04/15 19:25:43 | 000,000,000 | ---D | M] Leadertech -> C:\Users\Daniel\AppData\Roaming\Leadertech -> [2010/10/06 18:32:33 | 000,000,000 | ---D | M] Local -> C:\Users\Daniel\AppData\Roaming\Local -> [2011/02/01 21:57:24 | 000,000,000 | ---D | M] LucasArts -> C:\Users\Daniel\AppData\Roaming\LucasArts -> [2010/11/30 21:00:13 | 000,000,000 | ---D | M] Need for Speed World -> C:\Users\Daniel\AppData\Roaming\Need for Speed World -> [2011/06/18 16:54:51 | 000,000,000 | ---D | M] Nicalis -> C:\Users\Daniel\AppData\Roaming\Nicalis -> [2011/03/20 15:55:40 | 000,000,000 | ---D | M] Nifflas -> C:\Users\Daniel\AppData\Roaming\Nifflas -> [2011/07/10 22:00:45 | 000,000,000 | ---D | M] Notepad++ -> C:\Users\Daniel\AppData\Roaming\Notepad++ -> [2010/12/12 13:09:01 | 000,000,000 | ---D | M] OnLive App -> C:\Users\Daniel\AppData\Roaming\OnLive App -> [2010/12/05 18:25:19 | 000,000,000 | ---D | M] Participatory Culture Foundation -> C:\Users\Daniel\AppData\Roaming\Participatory Culture Foundation -> [2011/02/15 02:28:09 | 000,000,000 | ---D | M] PCF-VLC -> C:\Users\Daniel\AppData\Roaming\PCF-VLC -> [2011/04/11 18:47:32 | 000,000,000 | ---D | M] RenPy -> C:\Users\Daniel\AppData\Roaming\RenPy -> [2011/01/04 10:22:19 | 000,000,000 | ---D | M] runic games -> C:\Users\Daniel\AppData\Roaming\runic games -> [2010/09/29 16:42:55 | 000,000,000 | ---D | M] ScummVM -> C:\Users\Daniel\AppData\Roaming\ScummVM -> [2010/12/07 14:54:37 | 000,000,000 | ---D | M] SoftGrid Client -> C:\Users\Daniel\AppData\Roaming\SoftGrid Client -> [2010/10/11 07:51:55 | 000,000,000 | ---D | M] Sports Interactive -> C:\Users\Daniel\AppData\Roaming\Sports Interactive -> [2010/11/12 17:57:26 | 000,000,000 | ---D | M] SystemRequirementsLab -> C:\Users\Daniel\AppData\Roaming\SystemRequirementsLab -> [2011/06/28 01:39:31 | 000,000,000 | ---D | M] The Creative Assembly -> C:\Users\Daniel\AppData\Roaming\The Creative Assembly -> [2011/07/01 15:41:02 | 000,000,000 | ---D | M] The Longest Journey -> C:\Users\Daniel\AppData\Roaming\The Longest Journey -> [2010/12/19 21:18:52 | 000,000,000 | ---D | M] The Path -> C:\Users\Daniel\AppData\Roaming\The Path -> [2010/12/23 23:30:12 | 000,000,000 | ---D | M] TP -> C:\Users\Daniel\AppData\Roaming\TP -> [2010/09/28 22:31:21 | 000,000,000 | ---D | M] Unity -> C:\Users\Daniel\AppData\Roaming\Unity -> [2011/04/13 14:48:15 | 000,000,000 | ---D | M] Windows Live Writer -> C:\Users\Daniel\AppData\Roaming\Windows Live Writer -> [2010/11/24 19:04:37 | 000,000,000 | ---D | M] SCHEDLGU.TXT -> C:\Windows\Tasks\SCHEDLGU.TXT -> [2011/07/24 01:49:00 | 000,032,550 | ---- | M] () [File - Purity Scan] < End of report >