[code] OTS logfile created on: 30/07/2013 6:47:05 PM - Run 1 OTS by OldTimer - Version 3.1.47.2 Folder = C:\Users\July\Desktop 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16635) Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy 6.00 Gb Total Physical Memory | 5.00 Gb Available Physical Memory | 85.00% Memory free 12.00 Gb Paging File | 10.00 Gb Available in Paging File | 88.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 914.66 Gb Total Space | 835.00 Gb Free Space | 91.29% Space Free | Partition Type: NTFS Drive D: | 16.75 Gb Total Space | 1.98 Gb Free Space | 11.81% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 931.51 Gb Total Space | 596.78 Gb Free Space | 64.07% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: JULY-HP Current User Name: July Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days [Processes - Safe List] ots.exe -> C:\Users\July\Desktop\OTS.exe -> [2013/07/30 18:41:38 | 000,646,656 | ---- | M] (OldTimer Tools) googlecrashhandler.exe -> C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe -> [2013/07/22 13:41:25 | 000,217,992 | ---- | M] (Google Inc.) asctray.exe -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe -> [2013/01/15 18:47:12 | 000,491,840 | ---- | M] (IObit) ascservice.exe -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe -> [2013/01/15 18:47:10 | 000,465,216 | ---- | M] (IObit) hydradm.exe -> C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe -> [2012/02/11 17:19:42 | 000,393,216 | ---- | M] (AMD) [Modules - No Company Name] madexcept_.bpl -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl -> [2013/01/15 18:48:26 | 000,348,992 | ---- | M] () maddisasm_.bpl -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl -> [2013/01/15 18:48:26 | 000,051,008 | ---- | M] () madbasic_.bpl -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl -> [2013/01/15 18:48:24 | 000,183,616 | ---- | M] () [Win32 Services - Safe List] 64bit-(NisSrv) [Unknown | Running] -> c:\Program Files\Microsoft Security Client\NisSrv.exe -> [2013/06/20 20:33:08 | 000,366,600 | ---- | M] (Microsoft Corporation) 64bit-(MsMpSvc) [Unknown | Running] -> c:\Program Files\Microsoft Security Client\MsMpEng.exe -> [2013/06/20 20:33:08 | 000,023,808 | ---- | M] (Microsoft Corporation) 64bit-(WinDefend) [On_Demand | Stopped] -> C:\Program Files\Windows Defender\MpSvc.dll -> [2013/05/27 15:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) 64bit-(AMD External Events Utility) [Disabled | Stopped] -> C:\Windows\SysNative\atiesrxx.exe -> [2012/04/26 04:50:18 | 000,237,056 | ---- | M] (AMD) 64bit-(Intel(R) Capability Licensing Service Interface) [Disabled | Stopped] -> c:\Program Files\Intel\iCLS Client\HeciServer.exe -> [2011/12/09 09:38:24 | 000,607,456 | ---- | M] (Intel(R) Corporation) 64bit-(HPAuto) [Disabled | Stopped] -> C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe -> [2011/02/17 15:47:28 | 000,682,040 | ---- | M] (Hewlett-Packard) 64bit-(HPClientSvc) [Disabled | Stopped] -> C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe -> [2010/10/11 19:48:14 | 000,346,168 | ---- | M] (Hewlett-Packard Company) 64bit-(wlcrasvc) [Disabled | Stopped] -> C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -> [2010/09/23 11:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) 64bit-(MSCamSvc) [Auto | Running] -> C:\Program Files\Microsoft LifeCam\MSCamS64.exe -> [2010/05/20 15:26:28 | 000,199,536 | ---- | M] (Microsoft Corporation) 64bit-(TlntSvr) [Disabled | Stopped] -> C:\Windows\SysNative\tlntsvr.exe -> [2009/07/14 11:39:47 | 000,081,920 | ---- | M] (Microsoft Corporation) (MozillaMaintenance) Mozilla Maintenance Service [On_Demand | Stopped] -> C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -> [2013/07/24 18:23:13 | 000,117,144 | ---- | M] (Mozilla Foundation) (AdobeFlashPlayerUpdateSvc) Adobe Flash Player Update Service [Disabled | Stopped] -> C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -> [2013/07/22 20:03:23 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) (SkypeUpdate) Skype Updater [Auto | Stopped] -> C:\Program Files (x86)\Skype\Updater\Updater.exe -> [2013/06/03 16:21:54 | 000,162,408 | R--- | M] (Skype Technologies) (AdvancedSystemCareService6) Advanced SystemCare Service 6 [Auto | Running] -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe -> [2013/01/15 18:47:10 | 000,465,216 | ---- | M] (IObit) (AdobeARMservice) Adobe Acrobat Update Service [Disabled | Stopped] -> C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -> [2012/12/19 05:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) (HP Support Assistant Service) HP Support Assistant Service [Auto | Running] -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe -> [2012/09/27 11:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) (Te.Service) Te.Service [On_Demand | Stopped] -> C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe -> [2012/07/25 18:58:26 | 000,126,976 | ---- | M] (Microsoft Corporation) (fussvc) Windows App Certification Kit Fast User Switching Utility Service [On_Demand | Stopped] -> C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe -> [2012/07/25 18:13:16 | 000,139,776 | ---- | M] (Microsoft Corporation) (clr_optimization_v4.0.30319_32) Microsoft .NET Framework NGEN v4.0.30319_X86 [Auto | Stopped] -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -> [2012/07/09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) (UNS) Intel(R) Management and Security Application User Notification Service [Disabled | Stopped] -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -> [2011/12/17 06:37:30 | 000,363,800 | ---- | M] (Intel Corporation) (LMS) Intel(R) Management and Security Application Local Management Service [Disabled | Stopped] -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -> [2011/12/17 06:37:26 | 000,277,784 | ---- | M] (Intel Corporation) (Intel(R) ME Service) Intel(R) ME Service [Disabled | Stopped] -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -> [2011/12/17 06:37:18 | 000,128,280 | ---- | M] () (jhi_service) Intel(R) Dynamic Application Loader Host Interface Service [Disabled | Stopped] -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -> [2011/12/17 06:37:10 | 000,161,560 | ---- | M] (Intel Corporation) (SwitchBoard) Adobe SwitchBoard [Disabled | Stopped] -> C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -> [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) (clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Disabled | Stopped] -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2009/06/11 07:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Driver Services - All] 64bit-(MpFilter) Microsoft Malware Protection Driver [File_System | Unknown | Running] -> C:\Windows\SysNative\drivers\MpFilter.sys -> [2013/06/18 21:50:08 | 000,247,216 | ---- | M] (Microsoft Corporation) 64bit-(NisDrv) Microsoft Network Inspection System [Kernel | Unknown | Running] -> C:\Windows\SysNative\drivers\NisDrvWFP.sys -> [2013/06/18 21:50:08 | 000,139,616 | ---- | M] (Microsoft Corporation) 64bit-(TCPIP6) Microsoft IPv6 Protocol Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\tcpip.sys -> [2013/05/08 16:39:01 | 001,910,632 | ---- | M] (Microsoft Corporation) 64bit-(Tcpip) TCP/IP Protocol Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\tcpip.sys -> [2013/05/08 16:39:01 | 001,910,632 | ---- | M] (Microsoft Corporation) 64bit-(Ntfs) Ntfs [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\ntfs.sys -> [2013/04/13 00:45:08 | 001,656,680 | ---- | M] (Microsoft Corporation) 64bit-(DXGKrnl) LDDM Graphics Subsystem [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\dxgkrnl.sys -> [2013/04/10 16:01:53 | 000,983,400 | ---- | M] (Microsoft Corporation) 64bit-(pwdrvio) pwdrvio [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\pwdrvio.sys -> [2013/03/07 13:37:54 | 000,019,032 | ---- | M] () 64bit-(pwdspio) pwdspio [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\pwdspio.sys -> [2013/03/07 13:37:32 | 000,009,584 | ---- | M] () 64bit-(fvevol) Bitlocker Drive Encryption Filter Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\fvevol.sys -> [2013/01/24 16:01:01 | 000,223,752 | ---- | M] (Microsoft Corporation) 64bit-(Point64) Microsoft Mouse and Keyboard Center Filter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\point64.sys -> [2013/01/05 11:22:08 | 000,050,800 | ---- | M] (Microsoft Corporation) 64bit-(netr28x) Ralink 802.11n Extensible Wireless Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\netr28x.sys -> [2012/12/06 09:42:12 | 002,350,176 | ---- | M] (Ralink Technology, Corp.) 64bit-(tcpipreg) TCP/IP Registry Compatibility [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\tcpipreg.sys -> [2012/10/04 02:07:26 | 000,045,568 | ---- | M] (Microsoft Corporation) 64bit-(KSecPkg) KSecPkg [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\ksecpkg.sys -> [2012/08/25 04:13:17 | 000,154,480 | ---- | M] (Microsoft Corporation) 64bit-(CNG) CNG [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\cng.sys -> [2012/08/25 04:09:34 | 000,458,712 | ---- | M] (Microsoft Corporation) 64bit-(RdpVideoMiniport) Remote Desktop Video Miniport Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\rdpvideominiport.sys -> [2012/08/24 00:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) 64bit-(TsUsbGD) Remote Desktop Generic USB Device [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\TsUsbGD.sys -> [2012/08/24 00:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) 64bit-(TsUsbFlt) TsUsbFlt [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\TsUsbFlt.sys -> [2012/08/24 00:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) 64bit-(NDIS) NDIS System Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\ndis.sys -> [2012/08/23 04:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) 64bit-(Wdf01000) Kernel Mode Driver Frameworks service [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\Wdf01000.sys -> [2012/07/26 14:55:47 | 000,785,512 | ---- | M] (Microsoft Corporation) 64bit-(WudfPf) User Mode Driver Frameworks Platform Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\WUDFPf.sys -> [2012/07/26 12:26:45 | 000,087,040 | ---- | M] (Microsoft Corporation) 64bit-(WUDFRd) WUDFRd [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\WUDFRd.sys -> [2012/07/26 12:26:06 | 000,198,656 | ---- | M] (Microsoft Corporation) 64bit-(KSecDD) KSecDD [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\ksecdd.sys -> [2012/06/02 15:48:16 | 000,095,600 | ---- | M] (Microsoft Corporation) 64bit-(volsnap) Storage volumes [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\volsnap.sys -> [2012/05/22 13:26:41 | 000,296,320 | ---- | M] (Microsoft Corporation) 64bit-(iaStorV) iaStorV [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\iaStorV.sys -> [2012/05/22 13:26:11 | 000,410,496 | ---- | M] (Intel Corporation) 64bit-(nvstor) nvstor [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\nvstor.sys -> [2012/05/22 13:26:11 | 000,166,272 | ---- | M] (NVIDIA Corporation) 64bit-(nvraid) nvraid [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\nvraid.sys -> [2012/05/22 13:26:11 | 000,148,352 | ---- | M] (NVIDIA Corporation) 64bit-(amdsata) amdsata [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdsata.sys -> [2012/05/22 13:26:11 | 000,107,904 | ---- | M] (Advanced Micro Devices) 64bit-(USBSTOR) USB Mass Storage Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\USBSTOR.SYS -> [2012/05/22 13:26:11 | 000,091,648 | ---- | M] (Microsoft Corporation) 64bit-(amdxata) amdxata [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\amdxata.sys -> [2012/05/22 13:26:11 | 000,027,008 | ---- | M] (Advanced Micro Devices) 64bit-(AFD) Ancillary Function Driver for Winsock [Kernel | System | Running] -> C:\Windows\SysNative\drivers\afd.sys -> [2012/05/22 13:25:26 | 000,498,688 | ---- | M] (Microsoft Corporation) 64bit-(TDTCP) TDTCP [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\tdtcp.sys -> [2012/05/22 13:24:31 | 000,023,552 | ---- | M] (Microsoft Corporation) 64bit-(mrxsmb10) SMB 1.x MiniRedirector [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\mrxsmb10.sys -> [2012/05/22 13:22:50 | 000,288,768 | ---- | M] (Microsoft Corporation) 64bit-(mrxsmb) SMB MiniRedirector Wrapper and Engine [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\mrxsmb.sys -> [2012/05/22 13:22:50 | 000,158,208 | ---- | M] (Microsoft Corporation) 64bit-(mrxsmb20) SMB 2.0 MiniRedirector [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\mrxsmb20.sys -> [2012/05/22 13:22:50 | 000,128,000 | ---- | M] (Microsoft Corporation) 64bit-(srv) Server SMB 1.xxx Driver [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\srv.sys -> [2012/05/22 13:22:47 | 000,467,456 | ---- | M] (Microsoft Corporation) 64bit-(srv2) Server SMB 2.xxx Driver [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\srv2.sys -> [2012/05/22 13:22:47 | 000,410,112 | ---- | M] (Microsoft Corporation) 64bit-(srvnet) srvnet [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\srvnet.sys -> [2012/05/22 13:22:47 | 000,168,448 | ---- | M] (Microsoft Corporation) 64bit-(usbhub) Microsoft USB Standard Hub Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\usbhub.sys -> [2012/05/22 13:22:38 | 000,343,040 | ---- | M] (Microsoft Corporation) 64bit-(usbccgp) Microsoft USB Generic Parent Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\usbccgp.sys -> [2012/05/22 13:22:38 | 000,098,816 | ---- | M] (Microsoft Corporation) 64bit-(usbehci) Microsoft USB 2.0 Enhanced Host Controller Miniport Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\usbehci.sys -> [2012/05/22 13:22:38 | 000,052,736 | ---- | M] (Microsoft Corporation) 64bit-(usbuhci) Microsoft USB Universal Host Controller Miniport Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\usbuhci.sys -> [2012/05/22 13:22:38 | 000,030,720 | ---- | M] (Microsoft Corporation) 64bit-(usbohci) Microsoft USB Open Host Controller Miniport Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\usbohci.sys -> [2012/05/22 13:22:38 | 000,025,600 | ---- | M] (Microsoft Corporation) 64bit-(RDPWD) RDP Winstation Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\rdpwd.sys -> [2012/04/28 13:55:21 | 000,210,944 | ---- | M] (Microsoft Corporation) 64bit-(amdkmdag) amdkmdag [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\atikmdag.sys -> [2012/04/26 06:47:20 | 011,172,864 | ---- | M] (Advanced Micro Devices, Inc.) 64bit-(amdkmdap) amdkmdap [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\atikmpag.sys -> [2012/04/26 03:32:46 | 000,339,456 | ---- | M] (Advanced Micro Devices, Inc.) 64bit-(partmgr) Partition Manager [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\partmgr.sys -> [2012/03/17 17:58:57 | 000,075,120 | ---- | M] (Microsoft Corporation) 64bit-(RTL8167) Realtek 8167 NT Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\Rt64win7.sys -> [2012/02/16 05:42:00 | 000,676,968 | ---- | M] (Realtek ) 64bit-(tixhci) TI XHCI Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\tixhci.sys -> [2012/01/03 18:48:10 | 000,410,944 | ---- | M] (Texas Instruments Incorporated) 64bit-(tihub3) TI USB3 Hub Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\tihub3.sys -> [2012/01/03 18:48:08 | 000,136,000 | ---- | M] (Texas Instruments Incorporated) 64bit-(STHDA) IDT High Definition Audio CODEC [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\stwrt64.sys -> [2011/12/23 21:10:49 | 000,535,040 | ---- | M] (IDT, Inc.) 64bit-(AtiHDAudioService) AMD Function Driver for HD Audio Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\AtihdW76.sys -> [2011/12/06 21:47:30 | 000,095,248 | ---- | M] (Advanced Micro Devices) 64bit-(iaStor) Intel RAID Controller [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\iaStor.sys -> [2011/11/30 13:40:32 | 000,568,600 | ---- | M] (Intel Corporation) 64bit-(pneteth) PdaNet Broadband [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\pneteth.sys -> [2011/11/25 00:25:52 | 000,015,360 | ---- | M] (June Fabrics Technology Inc.) 64bit-(MEIx64) Intel(R) Management Engine Interface [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\HECIx64.sys -> [2011/11/10 19:04:14 | 000,060,184 | ---- | M] (Intel Corporation) 64bit-(dc3d) MS Hardware Device Detection Driver (USB) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\dc3d.sys -> [2011/05/18 08:08:32 | 000,047,616 | ---- | M] (Microsoft Corporation) 64bit-(bowser) Browser Support Driver [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\bowser.sys -> [2011/02/23 14:55:04 | 000,090,624 | ---- | M] (Microsoft Corporation) 64bit-(MRxDAV) WebDav Client Redirector Driver [File_System | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mrxdav.sys -> [2010/11/21 13:24:36 | 000,140,800 | ---- | M] (Microsoft Corporation) 64bit-(rdyboost) ReadyBoost [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\rdyboost.sys -> [2010/11/21 13:24:33 | 000,213,888 | ---- | M] (Microsoft Corporation) 64bit-(Rasl2tp) WAN Miniport (L2TP) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\rasl2tp.sys -> [2010/11/21 13:24:33 | 000,129,536 | ---- | M] (Microsoft Corporation) 64bit-(PptpMiniport) WAN Miniport (PPTP) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\raspptp.sys -> [2010/11/21 13:24:33 | 000,111,104 | ---- | M] (Microsoft Corporation) 64bit-(tdx) NetIO Legacy TDI Support Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\tdx.sys -> [2010/11/21 13:24:32 | 000,119,296 | ---- | M] (Microsoft Corporation) 64bit-(DfsC) DFS Namespace Client Driver [File_System | System | Running] -> C:\Windows\SysNative\drivers\dfsc.sys -> [2010/11/21 13:24:32 | 000,102,400 | ---- | M] (Microsoft Corporation) 64bit-(Ndisuio) NDIS Usermode I/O Protocol [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\ndisuio.sys -> [2010/11/21 13:24:32 | 000,056,832 | ---- | M] (Microsoft Corporation) 64bit-(IpFilterDriver) IP Traffic Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ipfltdrv.sys -> [2010/11/21 13:24:27 | 000,082,944 | ---- | M] (Microsoft Corporation) 64bit-(AppID) AppID Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\appid.sys -> [2010/11/21 13:24:25 | 000,061,440 | ---- | M] (Microsoft Corporation) 64bit-(hwpolicy) Hardware Policy Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\hwpolicy.sys -> [2010/11/21 13:24:24 | 000,014,720 | ---- | M] (Microsoft Corporation) 64bit-(MsRPC) MsRPC [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\msrpc.sys -> [2010/11/21 13:24:15 | 000,366,976 | ---- | M] (Microsoft Corporation) 64bit-(volmgrx) Dynamic Volume Manager [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\volmgrx.sys -> [2010/11/21 13:24:15 | 000,363,392 | ---- | M] (Microsoft Corporation) 64bit-(tunnel) Microsoft Tunnel Miniport Adapter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\tunnel.sys -> [2010/11/21 13:24:15 | 000,125,440 | ---- | M] (Microsoft Corporation) 64bit-(NDProxy) NDIS Proxy [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\ndproxy.sys -> [2010/11/21 13:24:14 | 000,057,856 | ---- | M] (Microsoft Corporation) 64bit-(Wanarpv6) Remote Access IPv6 ARP Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\wanarp.sys -> [2010/11/21 13:24:11 | 000,088,576 | ---- | M] (Microsoft Corporation) 64bit-(WANARP) Remote Access IP ARP Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\wanarp.sys -> [2010/11/21 13:24:11 | 000,088,576 | ---- | M] (Microsoft Corporation) 64bit-(scfilter) Smart card PnP Class Filter Driver [Kernel | Unknown | Stopped] -> C:\Windows\SysNative\drivers\scfilter.sys -> [2010/11/21 13:24:09 | 000,029,696 | ---- | M] (Microsoft Corporation) 64bit-(rdbss) Redirected Buffering Sub Sysytem [File_System | System | Running] -> C:\Windows\SysNative\drivers\rdbss.sys -> [2010/11/21 13:24:08 | 000,309,248 | ---- | M] (Microsoft Corporation) 64bit-(NdisWan) Remote Access NDIS WAN Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\ndiswan.sys -> [2010/11/21 13:24:08 | 000,164,352 | ---- | M] (Microsoft Corporation) 64bit-(Psched) QoS Packet Scheduler [Kernel | System | Running] -> C:\Windows\SysNative\drivers\pacer.sys -> [2010/11/21 13:24:08 | 000,131,584 | ---- | M] (Microsoft Corporation) 64bit-(FltMgr) FltMgr [File_System | Boot | Running] -> C:\Windows\SysNative\drivers\fltMgr.sys -> [2010/11/21 13:24:00 | 000,289,664 | ---- | M] (Microsoft Corporation) 64bit-(HTTP) HTTP [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\http.sys -> [2010/11/21 13:23:55 | 000,753,664 | ---- | M] (Microsoft Corporation) 64bit-(udfs) udfs [File_System | Disabled | Stopped] -> C:\Windows\SysNative\drivers\udfs.sys -> [2010/11/21 13:23:55 | 000,328,192 | ---- | M] (Microsoft Corporation) 64bit-(mountmgr) Mount Point Manager [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\mountmgr.sys -> [2010/11/21 13:23:53 | 000,094,592 | ---- | M] (Microsoft Corporation) 64bit-(NetBT) NetBT [Kernel | System | Running] -> C:\Windows\SysNative\drivers\netbt.sys -> [2010/11/21 13:23:51 | 000,261,632 | ---- | M] (Microsoft Corporation) 64bit-(tssecsrv) Remote Desktop Services Security Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\tssecsrv.sys -> [2010/11/21 13:23:51 | 000,039,424 | ---- | M] (Microsoft Corporation) 64bit-(iScsiPrt) iScsiPort Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\msiscsi.sys -> [2010/11/21 13:23:48 | 000,273,792 | ---- | M] (Microsoft Corporation) 64bit-(IPMIDRV) IPMIDRV [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\IPMIDrv.sys -> [2010/11/21 13:23:48 | 000,078,848 | ---- | M] (Microsoft Corporation) 64bit-(HdAudAddService) Microsoft 1.1 UAA Function Driver for High Definition Audio Service [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\HdAudio.sys -> [2010/11/21 13:23:47 | 000,350,208 | ---- | M] (Microsoft Corporation) 64bit-(ACPI) Microsoft ACPI Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\acpi.sys -> [2010/11/21 13:23:47 | 000,334,208 | ---- | M] (Microsoft Corporation) 64bit-(1394ohci) 1394 OHCI Compliant Host Controller [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\1394ohci.sys -> [2010/11/21 13:23:47 | 000,229,888 | ---- | M] (Microsoft Corporation) 64bit-(vhdmp) vhdmp [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\vhdmp.sys -> [2010/11/21 13:23:47 | 000,215,936 | ---- | M] (Microsoft Corporation) 64bit-(usbvideo) USB Video Device (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\usbvideo.sys -> [2010/11/21 13:23:47 | 000,184,960 | ---- | M] (Microsoft Corporation) 64bit-(pci) PCI Bus Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\pci.sys -> [2010/11/21 13:23:47 | 000,184,704 | ---- | M] (Microsoft Corporation) 64bit-(mpio) mpio [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mpio.sys -> [2010/11/21 13:23:47 | 000,155,008 | ---- | M] (Microsoft Corporation) 64bit-(cdrom) CD-ROM Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\cdrom.sys -> [2010/11/21 13:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) 64bit-(msdsm) msdsm [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\msdsm.sys -> [2010/11/21 13:23:47 | 000,140,672 | ---- | M] (Microsoft Corporation) 64bit-(HDAudBus) Microsoft UAA Bus Driver for High Definition Audio [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\hdaudbus.sys -> [2010/11/21 13:23:47 | 000,122,368 | ---- | M] (Microsoft Corporation) 64bit-(usbaudio) USB Audio Driver (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\USBAUDIO.sys -> [2010/11/21 13:23:47 | 000,109,696 | ---- | M] (Microsoft Corporation) 64bit-(sbp2port) sbp2port [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sbp2port.sys -> [2010/11/21 13:23:47 | 000,103,808 | ---- | M] (Microsoft Corporation) 64bit-(HpSAMD) HpSAMD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\HpSAMD.sys -> [2010/11/21 13:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) 64bit-(volmgr) Volume Manager Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\volmgr.sys -> [2010/11/21 13:23:47 | 000,071,552 | ---- | M] (Microsoft Corporation) 64bit-(TermDD) Terminal Device Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\termdd.sys -> [2010/11/21 13:23:47 | 000,063,360 | ---- | M] (Microsoft Corporation) 64bit-(umbus) UMBus Enumerator Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\umbus.sys -> [2010/11/21 13:23:47 | 000,048,640 | ---- | M] (Microsoft Corporation) 64bit-(WinUSB) Android USB Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\winusb.sys -> [2010/11/21 13:23:47 | 000,041,984 | ---- | M] (Microsoft Corporation) 64bit-(CompositeBus) Composite Bus Enumerator Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\CompositeBus.sys -> [2010/11/21 13:23:47 | 000,038,912 | ---- | M] (Microsoft Corporation) 64bit-(kbdhid) Keyboard HID Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\kbdhid.sys -> [2010/11/21 13:23:47 | 000,033,280 | ---- | M] (Microsoft Corporation) 64bit-(msahci) msahci [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\msahci.sys -> [2010/11/21 13:23:47 | 000,031,104 | ---- | M] (Microsoft Corporation) 64bit-(HidUsb) Microsoft HID Class Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\hidusb.sys -> [2010/11/21 13:23:47 | 000,030,208 | ---- | M] (Microsoft Corporation) 64bit-(sffp_sd) SFF Storage Protocol Driver for SDBus [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sffp_sd.sys -> [2010/11/21 13:23:47 | 000,014,336 | ---- | M] (Microsoft Corporation) 64bit-(AcpiPmi) ACPI Power Meter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\acpipmi.sys -> [2010/11/21 13:23:47 | 000,012,800 | ---- | M] (Microsoft Corporation) 64bit-(ivusb) Initio Driver for USB Default Controller [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ivusb.sys -> [2010/07/29 00:25:10 | 000,029,720 | ---- | M] (Initio Corporation) 64bit-(MSHUSBVideo) NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\nx6000.sys -> [2010/05/20 15:26:28 | 000,036,720 | ---- | M] (Microsoft Corporation) 64bit-(HTCAND64) HTC Device Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ANDROIDUSB.sys -> [2009/11/02 18:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) 64bit-(CLFS) Common Log (CLFS) [Kernel | Unknown | Running] -> C:\Windows\SysNative\clfs.sys -> [2009/07/14 11:52:31 | 000,367,696 | ---- | M] (Microsoft Corporation) 64bit-(Compbatt) Compbatt [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\compbatt.sys -> [2009/07/14 11:52:31 | 000,021,584 | ---- | M] (Microsoft Corporation) 64bit-(cmdide) cmdide [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\cmdide.sys -> [2009/07/14 11:52:31 | 000,017,488 | ---- | M] (CMD Technology, Inc.) 64bit-(adp94xx) adp94xx [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\adp94xx.sys -> [2009/07/14 11:52:21 | 000,491,088 | ---- | M] (Adaptec, Inc.) 64bit-(adpahci) adpahci [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\adpahci.sys -> [2009/07/14 11:52:21 | 000,339,536 | ---- | M] (Adaptec, Inc.) 64bit-(adpu320) adpu320 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\adpu320.sys -> [2009/07/14 11:52:21 | 000,182,864 | ---- | M] (Adaptec, Inc.) 64bit-(arcsas) arcsas [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\arcsas.sys -> [2009/07/14 11:52:21 | 000,097,856 | ---- | M] (Adaptec, Inc.) 64bit-(arc) arc [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\arc.sys -> [2009/07/14 11:52:21 | 000,087,632 | ---- | M] (Adaptec, Inc.) 64bit-(agp440) Intel AGP Bus Filter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\AGP440.sys -> [2009/07/14 11:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) 64bit-(atapi) atapi [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\atapi.sys -> [2009/07/14 11:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) 64bit-(amdide) amdide [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdide.sys -> [2009/07/14 11:52:21 | 000,015,440 | ---- | M] (Microsoft Corporation) 64bit-(aliide) aliide [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\aliide.sys -> [2009/07/14 11:52:21 | 000,015,440 | ---- | M] (Acer Laboratories Inc.) 64bit-(amdsbs) amdsbs [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdsbs.sys -> [2009/07/14 11:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) 64bit-(Mup) Mup [File_System | Boot | Running] -> C:\Windows\SysNative\drivers\mup.sys -> [2009/07/14 11:48:27 | 000,060,496 | ---- | M] (Microsoft Corporation) 64bit-(mouclass) Mouse Class Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mouclass.sys -> [2009/07/14 11:48:27 | 000,049,216 | ---- | M] (Microsoft Corporation) 64bit-(mssmbios) Microsoft System Management BIOS Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\mssmbios.sys -> [2009/07/14 11:48:27 | 000,032,320 | ---- | M] (Microsoft Corporation) 64bit-(msisadrv) msisadrv [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\msisadrv.sys -> [2009/07/14 11:48:27 | 000,015,424 | ---- | M] (Microsoft Corporation) 64bit-(nv_agp) NVIDIA nForce AGP Bus Filter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\NV_AGP.SYS -> [2009/07/14 11:48:26 | 000,122,960 | ---- | M] (Microsoft Corporation) 64bit-(nfrd960) nfrd960 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\nfrd960.sys -> [2009/07/14 11:48:26 | 000,051,264 | ---- | M] (IBM Corporation) 64bit-(MegaSR) MegaSR [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\MegaSR.sys -> [2009/07/14 11:48:04 | 000,284,736 | ---- | M] (LSI Corporation, Inc.) 64bit-(LSI_SCSI) LSI_SCSI [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\lsi_scsi.sys -> [2009/07/14 11:48:04 | 000,115,776 | ---- | M] (LSI Corporation) 64bit-(LSI_FC) LSI_FC [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\lsi_fc.sys -> [2009/07/14 11:48:04 | 000,114,752 | ---- | M] (LSI Corporation) 64bit-(LSI_SAS) LSI_SAS [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\lsi_sas.sys -> [2009/07/14 11:48:04 | 000,106,560 | ---- | M] (LSI Corporation) 64bit-(LSI_SAS2) LSI_SAS2 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\lsi_sas2.sys -> [2009/07/14 11:48:04 | 000,065,600 | ---- | M] (LSI Corporation) 64bit-(kbdclass) Keyboard Class Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\kbdclass.sys -> [2009/07/14 11:48:04 | 000,050,768 | ---- | M] (Microsoft Corporation) 64bit-(iirsp) iirsp [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\iirsp.sys -> [2009/07/14 11:48:04 | 000,044,112 | ---- | M] (Intel Corp./ICP vortex GmbH) 64bit-(megasas) megasas [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\megasas.sys -> [2009/07/14 11:48:04 | 000,035,392 | ---- | M] (LSI Corporation) 64bit-(isapnp) isapnp [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\isapnp.sys -> [2009/07/14 11:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) 64bit-(intelide) intelide [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\intelide.sys -> [2009/07/14 11:48:04 | 000,016,960 | ---- | M] (Microsoft Corporation) 64bit-(FsDepends) File System Dependency Minifilter [File_System | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\fsdepends.sys -> [2009/07/14 11:47:49 | 000,055,376 | ---- | M] (Microsoft Corporation) 64bit-(elxstor) elxstor [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\elxstor.sys -> [2009/07/14 11:47:48 | 000,530,496 | ---- | M] (Emulex) 64bit-(Disk) Disk Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\disk.sys -> [2009/07/14 11:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) 64bit-(FileInfo) File Information FS MiniFilter [File_System | Boot | Running] -> C:\Windows\SysNative\drivers\fileinfo.sys -> [2009/07/14 11:47:48 | 000,070,224 | ---- | M] (Microsoft Corporation) 64bit-(gagp30kx) Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\GAGP30KX.SYS -> [2009/07/14 11:47:48 | 000,065,088 | ---- | M] (Microsoft Corporation) 64bit-(crcdisk) Crcdisk Filter Driver [Kernel | Disabled | Stopped] -> C:\Windows\SysNative\drivers\crcdisk.sys -> [2009/07/14 11:47:48 | 000,024,144 | ---- | M] (Microsoft Corporation) 64bit-(WIMMount) WIMMount [File_System | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\wimmount.sys -> [2009/07/14 11:45:56 | 000,022,096 | ---- | M] (Microsoft Corporation) 64bit-(vsmraid) vsmraid [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\vsmraid.sys -> [2009/07/14 11:45:55 | 000,161,872 | ---- | M] (VIA Technologies Inc.,Ltd) 64bit-(uliagpkx) Uli AGP Bus Filter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ULIAGPKX.SYS -> [2009/07/14 11:45:55 | 000,064,592 | ---- | M] (Microsoft Corporation) 64bit-(uagp35) Microsoft AGPv3.5 Filter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\UAGP35.SYS -> [2009/07/14 11:45:55 | 000,064,080 | ---- | M] (Microsoft Corporation) 64bit-(vdrvroot) Microsoft Virtual Drive Enumerator Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\vdrvroot.sys -> [2009/07/14 11:45:55 | 000,036,432 | ---- | M] (Microsoft Corporation) 64bit-(stexstor) stexstor [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\stexstor.sys -> [2009/07/14 11:45:55 | 000,024,656 | ---- | M] (Promise Technology) 64bit-(Wd) Wd [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\wd.sys -> [2009/07/14 11:45:55 | 000,021,056 | ---- | M] (Microsoft Corporation) 64bit-(spldr) Security Processor Loader Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\spldr.sys -> [2009/07/14 11:45:55 | 000,019,008 | ---- | M] (Microsoft Corporation) 64bit-(viaide) viaide [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\viaide.sys -> [2009/07/14 11:45:55 | 000,017,488 | ---- | M] (VIA Technologies, Inc.) 64bit-(swenum) Software Bus Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\swenum.sys -> [2009/07/14 11:45:55 | 000,012,496 | ---- | M] (Microsoft Corporation) 64bit-(ql2300) ql2300 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ql2300.sys -> [2009/07/14 11:45:46 | 001,524,816 | ---- | M] (QLogic Corporation) 64bit-(SiSRaid4) SiSRaid4 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sisraid4.sys -> [2009/07/14 11:45:46 | 000,080,464 | ---- | M] (Silicon Integrated Systems) 64bit-(pcmcia) pcmcia [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\pcmcia.sys -> [2009/07/14 11:45:45 | 000,220,752 | ---- | M] (Microsoft Corporation) 64bit-(ql40xx) ql40xx [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ql40xx.sys -> [2009/07/14 11:45:45 | 000,128,592 | ---- | M] (QLogic Corporation) 64bit-(pcw) Performance Counters for Windows Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\pcw.sys -> [2009/07/14 11:45:45 | 000,050,768 | ---- | M] (Microsoft Corporation) 64bit-(SiSRaid2) SiSRaid2 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sisraid2.sys -> [2009/07/14 11:45:45 | 000,043,584 | ---- | M] (Silicon Integrated Systems Corp.) 64bit-(pciide) pciide [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\pciide.sys -> [2009/07/14 11:45:45 | 000,012,352 | ---- | M] (Microsoft Corporation) 64bit-(Brserid) Brother MFC Serial Port Interface Driver (WDM) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\BrSerId.sys -> [2009/07/14 11:19:07 | 000,286,720 | ---- | M] (Brother Industries Ltd.) 64bit-(PEAUTH) PEAUTH [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\PEAuth.sys -> [2009/07/14 11:01:19 | 000,651,264 | ---- | M] (Microsoft Corporation) 64bit-(usbprint) Microsoft USB PRINTER Class [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\usbprint.sys -> [2009/07/14 10:38:18 | 000,025,088 | ---- | M] (Microsoft Corporation) 64bit-(usbscan) USB Scanner Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\usbscan.sys -> [2009/07/14 10:35:32 | 000,041,984 | ---- | M] (Microsoft Corporation) 64bit-(rdpbus) Remote Desktop Device Redirector Bus Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\rdpbus.sys -> [2009/07/14 10:17:46 | 000,024,064 | ---- | M] (Microsoft Corporation) 64bit-(RDPREFMP) Reflector Display Driver used to gain access to graphics data [Kernel | System | Running] -> C:\Windows\SysNative\drivers\RDPREFMP.sys -> [2009/07/14 10:16:35 | 000,008,192 | ---- | M] (Microsoft Corporation) 64bit-(RDPENCDD) RDP Encoder Mirror Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\RDPENCDD.sys -> [2009/07/14 10:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) 64bit-(RDPCDD) RDPCDD [Kernel | System | Running] -> C:\Windows\SysNative\drivers\RDPCDD.sys -> [2009/07/14 10:16:34 | 000,007,680 | ---- | M] (Microsoft Corporation) 64bit-(TDPIPE) TDPIPE [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\tdpipe.sys -> [2009/07/14 10:16:32 | 000,015,872 | ---- | M] (Microsoft Corporation) 64bit-(Modem) Modem [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\modem.sys -> [2009/07/14 10:10:48 | 000,040,448 | ---- | M] (Microsoft Corporation) 64bit-(ws2ifsl) Winsock IFS Driver [Kernel | Disabled | Stopped] -> C:\Windows\SysNative\drivers\ws2ifsl.sys -> [2009/07/14 10:10:33 | 000,021,504 | ---- | M] (Microsoft Corporation) 64bit-(RasSstp) WAN Miniport (SSTP) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\rassstp.sys -> [2009/07/14 10:10:25 | 000,083,968 | ---- | M] (Microsoft Corporation) 64bit-(RasAgileVpn) WAN Miniport (IKEv2) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\agilevpn.sys -> [2009/07/14 10:10:24 | 000,060,416 | ---- | M] (Microsoft Corporation) 64bit-(RasPppoe) Remote Access PPPOE Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\raspppoe.sys -> [2009/07/14 10:10:17 | 000,092,672 | ---- | M] (Microsoft Corporation) 64bit-(AsyncMac) RAS Asynchronous Media Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\asyncmac.sys -> [2009/07/14 10:10:13 | 000,023,040 | ---- | M] (Microsoft Corporation) 64bit-(RasAcd) Remote Access Auto Connection Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\rasacd.sys -> [2009/07/14 10:10:09 | 000,014,848 | ---- | M] (Microsoft Corporation) 64bit-(IPNAT) IP Network Address Translator [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ipnat.sys -> [2009/07/14 10:10:03 | 000,116,224 | ---- | M] (Microsoft Corporation) 64bit-(NdisTapi) Remote Access NDIS TAPI Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\ndistapi.sys -> [2009/07/14 10:10:00 | 000,024,064 | ---- | M] (Microsoft Corporation) 64bit-(QWAVEdrv) QWAVE driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\qwavedrv.sys -> [2009/07/14 10:09:48 | 000,046,592 | ---- | M] (Microsoft Corporation) 64bit-(NetBIOS) NetBIOS Interface [File_System | System | Running] -> C:\Windows\SysNative\drivers\netbios.sys -> [2009/07/14 10:09:26 | 000,044,544 | ---- | M] (Microsoft Corporation) 64bit-(WfpLwf) WFP Lightweight Filter [Kernel | System | Running] -> C:\Windows\SysNative\drivers\wfplwf.sys -> [2009/07/14 10:09:26 | 000,012,800 | ---- | M] (Microsoft Corporation) 64bit-(Smb) Message-oriented TCP/IP and TCP/IPv6 Protocol (SMB session) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\smb.sys -> [2009/07/14 10:09:09 | 000,093,184 | ---- | M] (Microsoft Corporation) 64bit-(IRENUM) IR Bus Enumerator [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\irenum.sys -> [2009/07/14 10:08:59 | 000,017,920 | ---- | M] (Microsoft Corporation) 64bit-(rspndr) Link-Layer Topology Discovery Responder [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\rspndr.sys -> [2009/07/14 10:08:51 | 000,076,800 | ---- | M] (Microsoft Corporation) 64bit-(lltdio) Link-Layer Topology Discovery Mapper I/O Driver [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\lltdio.sys -> [2009/07/14 10:08:51 | 000,060,928 | ---- | M] (Microsoft Corporation) 64bit-(mpsdrv) Windows Firewall Authorization Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mpsdrv.sys -> [2009/07/14 10:08:25 | 000,077,312 | ---- | M] (Microsoft Corporation) 64bit-(NdisCap) NDIS Capture LightWeight Filter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ndiscap.sys -> [2009/07/14 10:08:13 | 000,035,328 | ---- | M] (Microsoft Corporation) 64bit-(vwifimp) Microsoft Virtual WiFi Miniport Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\vwifimp.sys -> [2009/07/14 10:07:28 | 000,017,920 | ---- | M] (Microsoft Corporation) 64bit-(NativeWifiP) NativeWiFi Filter [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\nwifi.sys -> [2009/07/14 10:07:23 | 000,318,976 | ---- | M] (Microsoft Corporation) 64bit-(vwififlt) Virtual WiFi Filter Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\vwififlt.sys -> [2009/07/14 10:07:22 | 000,059,904 | ---- | M] (Microsoft Corporation) 64bit-(vwifibus) Virtual WiFi Bus Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\vwifibus.sys -> [2009/07/14 10:07:21 | 000,024,576 | ---- | M] (Microsoft Corporation) 64bit-(HidBth) Microsoft Bluetooth HID Miniport [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\hidbth.sys -> [2009/07/14 10:06:52 | 000,100,864 | ---- | M] (Microsoft Corporation) 64bit-(BTHMODEM) Bluetooth Serial Communications Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\bthmodem.sys -> [2009/07/14 10:06:52 | 000,072,192 | ---- | M] (Microsoft Corporation) 64bit-(UmPass) Microsoft UMPass Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\umpass.sys -> [2009/07/14 10:06:52 | 000,009,728 | ---- | M] (Microsoft Corporation) 64bit-(ohci1394) 1394 OHCI Compliant Host Controller (Legacy) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ohci1394.sys -> [2009/07/14 10:06:45 | 000,072,832 | ---- | M] (Microsoft Corporation) 64bit-(usbcir) eHome Infrared Receiver (USBCIR) [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\usbcir.sys -> [2009/07/14 10:06:37 | 000,100,352 | ---- | M] (Microsoft Corporation) 64bit-(circlass) Consumer IR Devices [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\circlass.sys -> [2009/07/14 10:06:34 | 000,045,568 | ---- | M] (Microsoft Corporation) 64bit-(mshidkmdf) Pass-through HID to KMDF Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mshidkmdf.sys -> [2009/07/14 10:06:24 | 000,008,192 | ---- | M] (Microsoft Corporation) 64bit-(HidIr) Microsoft Infrared HID Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\hidir.sys -> [2009/07/14 10:06:23 | 000,046,592 | ---- | M] (Microsoft Corporation) 64bit-(drmkaud) Microsoft Trusted Audio Drivers [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\drmkaud.sys -> [2009/07/14 10:06:16 | 000,005,632 | ---- | M] (Microsoft Corporation) 64bit-(MTConfig) Microsoft Input Configuration Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\MTConfig.sys -> [2009/07/14 10:02:08 | 000,015,360 | ---- | M] (Microsoft Corporation) 64bit-(WacomPen) Wacom Serial Pen HID Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\wacompen.sys -> [2009/07/14 10:02:07 | 000,027,776 | ---- | M] (Microsoft Corporation) 64bit-(sffp_mmc) SFF Storage Protocol Driver for MMC [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sffp_mmc.sys -> [2009/07/14 10:01:03 | 000,013,824 | ---- | M] (Microsoft Corporation) 64bit-(sfloppy) High-Capacity Floppy Disk Drive [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sfloppy.sys -> [2009/07/14 10:01:02 | 000,016,896 | ---- | M] (Microsoft Corporation) 64bit-(sffdisk) SFF Storage Class Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sffdisk.sys -> [2009/07/14 10:01:01 | 000,014,336 | ---- | M] (Microsoft Corporation) 64bit-(fdc) Floppy Disk Controller Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\fdc.sys -> [2009/07/14 10:00:54 | 000,029,696 | ---- | M] (Microsoft Corporation) 64bit-(flpydisk) Floppy Disk Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\flpydisk.sys -> [2009/07/14 10:00:54 | 000,024,576 | ---- | M] (Microsoft Corporation) 64bit-(Parport) Parallel port driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\parport.sys -> [2009/07/14 10:00:41 | 000,097,280 | ---- | M] (Microsoft Corporation) 64bit-(Serial) Serial [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\serial.sys -> [2009/07/14 10:00:40 | 000,094,208 | ---- | M] (Microsoft Corporation) 64bit-(Serenum) Serenum Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\serenum.sys -> [2009/07/14 10:00:33 | 000,023,552 | ---- | M] (Microsoft Corporation) 64bit-(mouhid) Mouse HID Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mouhid.sys -> [2009/07/14 10:00:20 | 000,031,232 | ---- | M] (Microsoft Corporation) 64bit-(sermouse) Serial Mouse Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\sermouse.sys -> [2009/07/14 10:00:20 | 000,026,624 | ---- | M] (Microsoft Corporation) 64bit-(ksthunk) Kernel Streaming Thunks [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\ksthunk.sys -> [2009/07/14 10:00:19 | 000,020,992 | ---- | M] (Microsoft Corporation) 64bit-(MSKSSRV) Microsoft Streaming Service Proxy [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mskssrv.sys -> [2009/07/14 10:00:18 | 000,011,136 | ---- | M] (Microsoft Corporation) 64bit-(MSTEE) Microsoft Streaming Tee/Sink-to-Sink Converter [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mstee.sys -> [2009/07/14 10:00:17 | 000,008,064 | ---- | M] (Microsoft Corporation) 64bit-(MSPCLOCK) Microsoft Streaming Clock Proxy [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mspclock.sys -> [2009/07/14 10:00:17 | 000,007,168 | ---- | M] (Microsoft Corporation) 64bit-(MSPQM) Microsoft Streaming Quality Manager Proxy [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mspqm.sys -> [2009/07/14 10:00:17 | 000,006,784 | ---- | M] (Microsoft Corporation) 64bit-(Beep) Beep [Kernel | System | Running] -> C:\Windows\SysNative\drivers\beep.sys -> [2009/07/14 10:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) 64bit-(monitor) Microsoft Monitor Class Function Driver Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\monitor.sys -> [2009/07/14 09:38:52 | 000,030,208 | ---- | M] (Microsoft Corporation) 64bit-(VgaSave) VgaSave [Kernel | System | Running] -> C:\Windows\SysNative\drivers\vga.sys -> [2009/07/14 09:38:47 | 000,029,184 | ---- | M] (Microsoft Corporation) 64bit-(vga) vga [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\vgapnp.sys -> [2009/07/14 09:38:47 | 000,029,184 | ---- | M] (Microsoft Corporation) 64bit-(discache) System Attribute Cache [Kernel | System | Running] -> C:\Windows\SysNative\drivers\discache.sys -> [2009/07/14 09:37:18 | 000,040,448 | ---- | M] (Microsoft Corporation) 64bit-(blbdrive) blbdrive [Kernel | System | Running] -> C:\Windows\SysNative\drivers\blbdrive.sys -> [2009/07/14 09:35:59 | 000,045,056 | ---- | M] (Microsoft Corporation) 64bit-(HidBatt) HID UPS Battery Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\hidbatt.sys -> [2009/07/14 09:31:06 | 000,026,624 | ---- | M] (Microsoft Corporation) 64bit-(ErrDev) Microsoft Hardware Error Device Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\errdev.sys -> [2009/07/14 09:31:04 | 000,009,728 | ---- | M] (Microsoft Corporation) 64bit-(CmBatt) Microsoft ACPI Control Method Battery Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\CmBatt.sys -> [2009/07/14 09:31:03 | 000,017,664 | ---- | M] (Microsoft Corporation) 64bit-(WmiAcpi) Microsoft Windows Management Interface for ACPI [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\wmiacpi.sys -> [2009/07/14 09:31:02 | 000,014,336 | ---- | M] (Microsoft Corporation) 64bit-(luafv) UAC File Virtualization [File_System | Auto | Running] -> C:\Windows\SysNative\drivers\luafv.sys -> [2009/07/14 09:26:13 | 000,113,152 | ---- | M] (Microsoft Corporation) 64bit-(Filetrace) Filetrace [File_System | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\filetrace.sys -> [2009/07/14 09:25:40 | 000,034,304 | ---- | M] (Microsoft Corporation) 64bit-(fastfat) FAT12/16/32 File System Driver [File_System | On_Demand | Running] -> C:\Windows\SysNative\drivers\fastfat.sys -> [2009/07/14 09:23:29 | 000,204,800 | ---- | M] (Microsoft Corporation) 64bit-(exfat) exFAT File System Driver [File_System | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\exfat.sys -> [2009/07/14 09:23:29 | 000,195,072 | ---- | M] (Microsoft Corporation) 64bit-(nsiproxy) NSI proxy service driver. [Kernel | System | Running] -> C:\Windows\SysNative\drivers\nsiproxy.sys -> [2009/07/14 09:21:02 | 000,024,576 | ---- | M] (Microsoft Corporation) 64bit-(i8042prt) i8042 Keyboard and PS/2 Mouse Port Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\i8042prt.sys -> [2009/07/14 09:19:57 | 000,105,472 | ---- | M] (Microsoft Corporation) 64bit-(Npfs) Npfs [File_System | System | Running] -> C:\Windows\SysNative\drivers\npfs.sys -> [2009/07/14 09:19:48 | 000,044,032 | ---- | M] (Microsoft Corporation) 64bit-(cdfs) CD/DVD File System Reader [File_System | Disabled | Stopped] -> C:\Windows\SysNative\drivers\cdfs.sys -> [2009/07/14 09:19:47 | 000,092,160 | ---- | M] (Microsoft Corporation) 64bit-(Msfs) Msfs [File_System | System | Running] -> C:\Windows\SysNative\drivers\msfs.sys -> [2009/07/14 09:19:47 | 000,026,112 | ---- | M] (Microsoft Corporation) 64bit-(Null) Null [Kernel | System | Running] -> C:\Windows\SysNative\drivers\null.sys -> [2009/07/14 09:19:38 | 000,006,144 | ---- | M] (Microsoft Corporation) 64bit-(AmdK8) AMD K8 Processor Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdk8.sys -> [2009/07/14 09:19:25 | 000,064,512 | ---- | M] (Microsoft Corporation) 64bit-(intelppm) Intel Processor Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\intelppm.sys -> [2009/07/14 09:19:25 | 000,062,464 | ---- | M] (Microsoft Corporation) 64bit-(AmdPPM) AMD Processor Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\amdppm.sys -> [2009/07/14 09:19:25 | 000,060,928 | ---- | M] (Microsoft Corporation) 64bit-(Processor) Processor Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\processr.sys -> [2009/07/14 09:19:25 | 000,060,416 | ---- | M] (Microsoft Corporation) 64bit-(BrSerWdm) Brother WDM Serial driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\BrSerWdm.sys -> [2009/06/11 06:41:10 | 000,047,104 | ---- | M] (Brother Industries Ltd.) 64bit-(BrUsbMdm) Brother MFC USB Fax Only Modem [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\BrUsbMdm.sys -> [2009/06/11 06:41:10 | 000,014,976 | ---- | M] (Brother Industries Ltd.) 64bit-(BrUsbSer) Brother MFC USB Serial WDM Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\BrUsbSer.sys -> [2009/06/11 06:41:10 | 000,014,720 | ---- | M] (Brother Industries Ltd.) 64bit-(BrFiltLo) Brother USB Mass-Storage Lower Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\BrFiltLo.sys -> [2009/06/11 06:41:06 | 000,018,432 | ---- | M] (Brother Industries, Ltd.) 64bit-(BrFiltUp) Brother USB Mass-Storage Upper Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\BrFiltUp.sys -> [2009/06/11 06:41:06 | 000,008,704 | ---- | M] (Brother Industries, Ltd.) 64bit-(secdrv) Security Driver [Kernel | Auto | Running] -> C:\Windows\SysNative\drivers\secdrv.sys -> [2009/06/11 06:37:19 | 000,023,040 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) 64bit-(igfx) igfx [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\igdkmd64.sys -> [2009/06/11 06:37:05 | 006,108,416 | ---- | M] (Intel Corporation) 64bit-(ebdrv) Broadcom NetXtreme II 10 GigE VBD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\evbda.sys -> [2009/06/11 06:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) 64bit-(b06bdrv) Broadcom NetXtreme II VBD [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\bxvbda.sys -> [2009/06/11 06:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) 64bit-(b57nd60a) Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\b57nd60a.sys -> [2009/06/11 06:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) 64bit-(hcw85cir) Hauppauge Consumer Infrared Receiver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\hcw85cir.sys -> [2009/06/11 06:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) (VSPerfDrv110) Performance Tools Driver 11.0 [Kernel | On_Demand | Stopped] -> C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys -> [2012/07/13 16:13:14 | 000,070,264 | ---- | M] (Microsoft Corporation) (WIMMount) WIMMount [File_System | On_Demand | Stopped] -> C:\Windows\SysWOW64\drivers\wimmount.sys -> [2009/07/14 11:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [Registry - All] < 64bit-Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://go.microsoft.com/fwlink/p/?LinkId=255141 -> HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" -> [binary data] -> HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons -> HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\System32\blank.htm -> HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk -> HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://go.microsoft.com/fwlink/p/?LinkId=255141 -> < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://go.microsoft.com/fwlink/p/?LinkId=255141 -> HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" -> [binary data] -> HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons -> HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\SysWOW64\blank.htm -> HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk -> HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://go.microsoft.com/fwlink/p/?LinkId=255141 -> < Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> HKEY_CURRENT_USER\: Main\\"Default Download Directory" -> C:\Users\July\Desktop -> HKEY_CURRENT_USER\: Main\\"Default_Page_URL" -> http://g.jp.msn.com/HPALL/51 -> HKEY_CURRENT_USER\: Main\\"Local Page" -> C:\Windows\system32\blank.htm -> HKEY_CURRENT_USER\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_CURRENT_USER\: Main\\"Start Page" -> http://au.search.yahoo.com?type=902615&fr=spigot-yhp-ie -> 64bit-HKEY_CURRENT_USER\: URLSearchHooks\\"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" [HKLM] -> C:\Windows\SysNative\ieframe.dll [Microsoft Url Search Hook] -> [2013/06/12 09:25:13 | 015,404,032 | ---- | M] (Microsoft Corporation) HKEY_CURRENT_USER\: URLSearchHooks\\"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" [HKLM] -> C:\Windows\SysWOW64\ieframe.dll [Microsoft Url Search Hook] -> [2013/06/12 09:42:58 | 013,760,512 | ---- | M] (Microsoft Corporation) HKEY_CURRENT_USER\: "ProxyEnable" -> 0 -> HKEY_CURRENT_USER\: "ProxyOverride" -> -> < FireFox Settings [Prefs.js] > -> C:\Users\July\AppData\Roaming\Mozilla\FireFox\Profiles\pte6fuu7.default\prefs.js -> < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Firefox\Extensions -> -> HKLM\software\mozilla\Mozilla Firefox 22.0\extensions -> -> HKLM\software\mozilla\Mozilla Firefox 22.0\extensions\\Components -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS -> HKLM\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins -> C:\Program Files (x86)\Mozilla Firefox\plugins [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS] -> [2013/07/26 02:12:44 | 000,000,000 | ---D | M] < FireFox Extensions [User Folders] > -> -> C:\Users\July\AppData\Roaming\Mozilla\Extensions -> [2013/04/14 18:26:46 | 000,000,000 | ---D | M] -> C:\Users\July\AppData\Roaming\Mozilla\Firefox\Profiles\pte6fuu7.default\extensions -> [2013/07/30 06:53:18 | 000,000,000 | ---D | M] -> C:\Users\July\AppData\Roaming\Mozilla\Firefox\Profiles\pte6fuu7.default\extensions\facefont@mc.com -> [2013/07/30 06:53:18 | 000,000,000 | ---D | M] < FireFox Extensions [Program Folders] > -> -> C:\Program Files (x86)\Mozilla Firefox\browser\extensions -> [2013/07/24 18:23:10 | 000,000,000 | ---D | M] Default -> C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} -> [2013/07/24 18:23:13 | 000,000,000 | ---D | M] No name found -> C:\USERS\JULY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PTE6FUU7.DEFAULT\EXTENSIONS\{4DC70064-89E2-4A55-8FC6-E8CDEAE3618C}.XPI -> () FaceFont -> C:\USERS\JULY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PTE6FUU7.DEFAULT\EXTENSIONS\FACEFONT@MC.COM -> [2013/07/30 06:53:18 | 000,000,000 | ---D | M] < FireFox Components [Program Folders] > -> < HOSTS File > ([2013/05/28 10:09:37 | 000,000,926 | ---- | M] - 23 lines) -> C:\Windows\SysNative\Drivers\etc\hosts -> Reset Hosts 127.0.0.1 65.52.240.48 127.0.0.1 activation.cloud.techsmith.com < 64bit-BHO's [HKEY_LOCAL_MACHINE] > -> 64bit-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} [HKLM] -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [Groove GFS Browser Helper] -> [2013/03/09 00:13:16 | 006,669,000 | ---- | M] (Microsoft Corporation) {9030D464-4C02-4ABF-8ECC-5164760863C6} [HKLM] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [Windows Live ID Sign-in Helper] -> [2011/03/29 14:14:36 | 000,529,280 | ---- | M] (Microsoft Corp.) {B4F3A835-0E21-4959-BA22-42B3008E02FF} [HKLM] -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [Office Document Cache Handler] -> [2013/03/06 07:39:00 | 000,690,392 | ---- | M] (Microsoft Corporation) {BA3E58F7-60C6-485E-A775-0C1FD9C0E55E} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} [HKLM] -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe PDF Link Helper] -> [2012/09/23 20:43:36 | 000,060,568 | ---- | M] (Adobe Systems Incorporated) {72853161-30C5-4D22-B7F9-0BBC1D38A37E} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [Groove GFS Browser Helper] -> [2013/03/09 00:10:30 | 004,171,464 | ---- | M] (Microsoft Corporation) {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [Java(tm) Plug-In SSV Helper] -> [2013/06/27 21:39:37 | 000,463,272 | ---- | M] (Oracle Corporation) {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} [HKLM] -> C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [Microsoft Web Test Recorder 10.0 Helper] -> [2012/07/26 19:08:06 | 000,074,888 | ---- | M] (Microsoft Corporation) {9030D464-4C02-4ABF-8ECC-5164760863C6} [HKLM] -> C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll [Windows Live ID Sign-in Helper] -> [2011/03/29 13:35:06 | 000,441,216 | ---- | M] (Microsoft Corp.) {B4F3A835-0E21-4959-BA22-42B3008E02FF} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [Office Document Cache Handler] -> [2013/03/06 07:37:48 | 000,562,904 | ---- | M] (Microsoft Corporation) {DBC80044-A445-435b-BC74-9C25C1C588A9} [HKLM] -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [Java(tm) Plug-In 2 SSV Helper] -> [2013/06/27 21:39:36 | 000,171,944 | ---- | M] (Oracle Corporation) {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} [HKLM] -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [HP Network Check Helper] -> [2012/07/09 17:46:12 | 000,351,136 | ---- | M] (Hewlett-Packard) < 64bit-Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "MSC" -> c:\Program Files\Microsoft Security Client\msseces.exe ["c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey] -> [2013/06/20 20:27:08 | 001,356,240 | ---- | M] (Microsoft Corporation) < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "BCSSync" -> C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe ["C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices] -> [2012/11/05 15:27:46 | 000,089,184 | ---- | M] (Microsoft Corporation) "QuickTime Task" -> C:\Program Files (x86)\QuickTime\QTTask.exe ["C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime] -> [2013/05/01 03:59:04 | 000,421,888 | ---- | M] (Apple Inc.) < Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "AdobeBridge" -> [] -> File not found "Advanced SystemCare 6" -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe ["C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart] -> [2013/01/15 18:47:12 | 000,491,840 | ---- | M] (IObit) "Google Update" -> C:\Users\July\AppData\Local\Google\Update\GoogleUpdate.exe ["C:\Users\July\AppData\Local\Google\Update\GoogleUpdate.exe" /c] -> [2013/02/13 18:22:32 | 000,116,648 | ---- | M] (Google Inc.) "HydraVisionDesktopManager" -> C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe ["C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"] -> [2012/02/11 17:19:42 | 000,393,216 | ---- | M] (AMD) < CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoActiveDesktop" -> [1] -> File not found \\"NoActiveDesktopChanges" -> [1] -> File not found \\"ForceActiveDesktopOn" -> [0] -> File not found < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System \\"ConsentPromptBehaviorAdmin" -> [0] -> File not found \\"ConsentPromptBehaviorUser" -> [3] -> File not found \\"EnableInstallerDetection" -> [1] -> File not found \\"EnableLUA" -> [0] -> File not found \\"EnableSecureUIAPaths" -> [1] -> File not found \\"EnableUIADesktopToggle" -> [0] -> File not found \\"EnableVirtualization" -> [1] -> File not found \\"PromptOnSecureDesktop" -> [0] -> File not found \\"ValidateAdminCodeSignatures" -> [0] -> File not found \\"dontdisplaylastusername" -> [0] -> File not found \\"legalnoticecaption" -> [] -> File not found \\"legalnoticetext" -> [] -> File not found \\"scforceoption" -> [0] -> File not found \\"shutdownwithoutlogon" -> [1] -> File not found \\"undockwithoutlogon" -> [1] -> File not found \\"FilterAdministratorToken" -> [0] -> File not found HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats \UIPI\Clipboard\ExceptionFormats\\"CF_TEXT" -> [1] -> File not found \UIPI\Clipboard\ExceptionFormats\\"CF_BITMAP" -> [2] -> File not found \UIPI\Clipboard\ExceptionFormats\\"CF_OEMTEXT" -> [7] -> File not found \UIPI\Clipboard\ExceptionFormats\\"CF_DIB" -> [8] -> File not found \UIPI\Clipboard\ExceptionFormats\\"CF_PALETTE" -> [9] -> File not found \UIPI\Clipboard\ExceptionFormats\\"CF_UNICODETEXT" -> [13] -> File not found \UIPI\Clipboard\ExceptionFormats\\"CF_DIBV5" -> [17] -> File not found < CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [145] -> File not found < CurrentVersion Policy Settings - System [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System \\"DisableRegistryTools" -> [0] -> File not found \\"DisableTaskMgr" -> [0] -> File not found < Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> E&xport to Microsoft Excel -> [res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000] -> File not found Free YouTube Download -> [C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm] -> File not found Se&nd to OneNote -> [res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105] -> File not found < 64bit-Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll [Button: Send to OneNote] -> [2013/03/09 00:04:10 | 000,806,088 | ---- | M] (Microsoft Corporation) {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll [Menu: Se&nd to OneNote] -> [2013/03/09 00:04:10 | 000,806,088 | ---- | M] (Microsoft Corporation) {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}:{FFFDC614-B694-4AE6-AB38-5D6374584B52} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll [Button: OneNote Lin&ked Notes] -> [2013/03/09 00:04:10 | 000,596,680 | ---- | M] (Microsoft Corporation) {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}:{FFFDC614-B694-4AE6-AB38-5D6374584B52} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll [Menu: OneNote Lin&ked Notes] -> [2013/03/09 00:04:10 | 000,596,680 | ---- | M] (Microsoft Corporation) {EE932B49-D5C0-4D19-A3DA-CE0849258DE6}:{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} [HKLM] -> Reg Error: Key error. [Button: Free YouTube Download] -> File not found {EE932B49-D5C0-4D19-A3DA-CE0849258DE6}:{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} [HKLM] -> Reg Error: Key error. [Menu: Free YouTube Download] -> File not found < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}:{5F7B1267-94A9-47F5-98DB-E99415F33AEC} [HKLM] -> C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll [Button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004] -> [2011/05/14 08:37:08 | 000,188,256 | ---- | M] (Microsoft Corporation) {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}:{5F7B1267-94A9-47F5-98DB-E99415F33AEC} [HKLM] -> C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll [Menu: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003] -> [2011/05/14 08:37:08 | 000,188,256 | ---- | M] (Microsoft Corporation) {25510184-5A38-4A99-B273-DCA8EEF6CD08}:Exec [HKLM] -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe [Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103] -> [2012/07/09 17:46:12 | 000,023,456 | ---- | M] (Hewlett-Packard) {25510184-5A38-4A99-B273-DCA8EEF6CD08}:Exec [HKLM] -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe [Menu: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102] -> [2012/07/09 17:46:12 | 000,023,456 | ---- | M] (Hewlett-Packard) {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll [Button: Send to OneNote] -> [2013/03/09 00:04:08 | 000,645,320 | ---- | M] (Microsoft Corporation) {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll [Menu: Se&nd to OneNote] -> [2013/03/09 00:04:08 | 000,645,320 | ---- | M] (Microsoft Corporation) {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}:{FFFDC614-B694-4AE6-AB38-5D6374584B52} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll [Button: OneNote Lin&ked Notes] -> [2013/03/09 00:04:08 | 000,498,376 | ---- | M] (Microsoft Corporation) {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}:{FFFDC614-B694-4AE6-AB38-5D6374584B52} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll [Menu: OneNote Lin&ked Notes] -> [2013/03/09 00:04:08 | 000,498,376 | ---- | M] (Microsoft Corporation) < 64bit-Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> < 64bit-Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < 64bit-Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < 64bit-Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 4807 domain(s) found. -> < Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> DhcpNameServer -> 192.168.2.1 -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {11D4337D-E21D-4B2C-AED4-FC02243FB198}\\DhcpNameServer -> 192.168.2.1 (Dual Stream 802.11n Wireless LAN Card) -> {70364ED3-0B44-4B35-B50C-7A8ED9949D69}\\DhcpNameServer -> 192.168.2.1 (Realtek PCIe GBE Family Controller) -> IE Styles -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Styles "Use My Stylesheet" -> Reg Error: Invalid data type. "User Stylesheet" -> < 64bit-Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 64bit-*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> explorer.exe -> C:\Windows\explorer.exe -> [2012/05/22 13:22:34 | 002,871,808 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> 64bit-*UserInit* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit -> C:\Windows\system32\userinit.exe -> C:\Windows\SysNative\userinit.exe -> [2010/11/21 13:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> 64bit-*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> SystemPropertiesPerformance.exe -> C:\Windows\SysNative\SystemPropertiesPerformance.exe -> [2009/07/14 11:39:47 | 000,082,432 | ---- | M] (Microsoft Corporation) /pagefile -> -> File not found *MultiFile Done* -> -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> explorer.exe -> C:\Windows\SysWow64\explorer.exe -> [2012/05/22 13:22:34 | 002,616,320 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> *UserInit* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit -> userinit.exe -> C:\Windows\SysWow64\userinit.exe -> [2010/11/21 13:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> *VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> SystemPropertiesPerformance.exe -> C:\Windows\SysWow64\SystemPropertiesPerformance.exe -> [2009/07/14 11:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation) /pagefile -> -> File not found *MultiFile Done* -> -> < 64bit-SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found < SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found < 64bit-ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks -> "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" [HKLM] -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [Groove GFS Stub Execution Hook] -> [2013/03/09 00:13:16 | 006,669,000 | ---- | M] (Microsoft Corporation) < ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks -> "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [Groove GFS Stub Execution Hook] -> [2013/03/09 00:10:30 | 004,171,464 | ---- | M] (Microsoft Corporation) < SecurityProviders [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> 64bit-*SecurityProviders* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> credssp.dll -> C:\Windows\SysNative\credssp.dll -> [2010/11/21 13:24:20 | 000,022,016 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> *SecurityProviders* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> credssp.dll -> C:\Windows\SysWow64\credssp.dll -> [2010/11/21 13:24:33 | 000,017,408 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> < LSA Authentication Packages [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Authentication Packages -> 64bit-*LSA Authentication Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Authentication Packages -> msv1_0 -> C:\Windows\SysNative\msv1_0.dll -> [2010/11/21 13:24:08 | 000,312,320 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> *LSA Authentication Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Authentication Packages -> msv1_0 -> C:\Windows\SysWow64\msv1_0.dll -> [2010/11/21 13:24:16 | 000,257,024 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> < LSA Security Packages [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages -> 64bit-*LSA Security Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages -> kerberos -> C:\Windows\SysNative\kerberos.dll -> [2012/08/11 10:56:03 | 000,715,776 | ---- | M] (Microsoft Corporation) msv1_0 -> C:\Windows\SysNative\msv1_0.dll -> [2010/11/21 13:24:08 | 000,312,320 | ---- | M] (Microsoft Corporation) schannel -> C:\Windows\SysNative\schannel.dll -> [2012/08/25 04:05:03 | 000,340,992 | ---- | M] (Microsoft Corporation) wdigest -> C:\Windows\SysNative\wdigest.dll -> [2009/07/14 11:41:56 | 000,210,432 | ---- | M] (Microsoft Corporation) tspkg -> C:\Windows\SysNative\tspkg.dll -> [2010/11/21 13:24:20 | 000,086,016 | ---- | M] (Microsoft Corporation) pku2u -> C:\Windows\SysNative\pku2u.dll -> [2009/07/14 11:41:53 | 000,240,640 | ---- | M] (Microsoft Corporation) livessp -> C:\Windows\SysNative\livessp.dll -> [2011/03/29 14:11:06 | 000,252,800 | ---- | M] (Microsoft Corp.) *MultiFile Done* -> -> *LSA Security Packages* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\Security Packages -> kerberos -> C:\Windows\SysWow64\kerberos.dll -> [2012/08/11 09:56:14 | 000,542,208 | ---- | M] (Microsoft Corporation) msv1_0 -> C:\Windows\SysWow64\msv1_0.dll -> [2010/11/21 13:24:16 | 000,257,024 | ---- | M] (Microsoft Corporation) schannel -> C:\Windows\SysWow64\schannel.dll -> [2012/08/25 02:57:40 | 000,247,808 | ---- | M] (Microsoft Corporation) wdigest -> C:\Windows\SysWow64\wdigest.dll -> [2009/07/14 11:16:18 | 000,171,520 | ---- | M] (Microsoft Corporation) tspkg -> C:\Windows\SysWow64\tspkg.dll -> [2010/11/21 13:24:33 | 000,065,024 | ---- | M] (Microsoft Corporation) pku2u -> C:\Windows\SysWow64\pku2u.dll -> [2009/07/14 11:16:12 | 000,186,880 | ---- | M] (Microsoft Corporation) livessp -> C:\Windows\SysWow64\livessp.dll -> [2011/03/29 13:31:14 | 000,209,280 | ---- | M] (Microsoft Corp.) *MultiFile Done* -> -> < Vista Public Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications -> < Vista Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications -> < Vista Active Firewall Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules -> {07FE8D20-6DC2-42CC-9721-54C36C2EC95E} -> lport=rpc | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28535 | app=%systemroot%\system32\spoolsv.exe | svc=spooler | {16BB48EF-30F5-4EE0-AED5-52F6A3CADA49} -> rport=2177 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31265 | app=%systemroot%\system32\svchost.exe | svc=qwave | {1B427DD2-BB8E-4C1F-85B0-81264075DD65} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live communications platform (ssdp) | {1D9ABAA6-FF4A-4F49-BE1E-9734ECCBD361} -> lport=5355 | profile=public | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28548 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {1E86067F-1269-429B-9346-FB98ECEBB9C1} -> lport=6915 | protocol=6 | dir=in | action=allow | name=visual studio 11 beta controller listener ports (devenv.exe)(6915) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {2650B544-F5F4-47C0-B03C-8D305E35F9A8} -> lport=445 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28511 | app=system | {2D2A7502-1F35-49C6-BE98-DEA77FDE1F1F} -> lport=138 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28527 | app=system | {333C7BEC-7BA0-45CC-9F62-8BE15D793723} -> lport=2177 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31253 | app=%systemroot%\system32\svchost.exe | svc=qwave | {38C26EB0-5E1A-4E39-9C91-2ECF3D10500F} -> lport=2177 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31261 | app=%systemroot%\system32\svchost.exe | svc=qwave | {3F774B5C-10B0-40FF-BC60-0AED52960BF4} -> rport=5355 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28550 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {42B3518A-98AD-46CA-98A7-0933B45BA6BE} -> lport=6918 | protocol=6 | dir=in | action=allow | name=visual studio 2012 controller listener ports (devenv.exe)(6918) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {42E4DF80-169F-4AAA-ADFE-5571B0B079F1} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live communications platform (upnp) | {53C6FA59-1561-4C7C-946E-C3484C363968} -> rport=139 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-28507 | app=system | {64D0C0C3-B441-409A-A32F-032E214FAF93} -> lport=rpc-epmap | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28539 | svc=rpcss | {67F83542-8A40-4711-B452-6A83B6E4C268} -> lport=137 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28519 | app=system | {723E0E59-BBCC-48BB-9A03-F4C0696B005E} -> rport=137 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28523 | app=system | {8153D54C-0C3C-454B-BD98-4DF05D3D302E} -> lport=6917 | protocol=6 | dir=in | action=allow | name=visual studio 11 beta controller listener ports (devenv.exe)(6917) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {86FFD801-921F-48D4-B5D7-FF2F8585B752} -> lport=5355 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-28548 | app=%systemroot%\system32\svchost.exe | svc=dnscache | {88BF0532-88CD-4D0B-99E5-01B96CC6F17E} -> lport=6919 | protocol=6 | dir=in | action=allow | name=visual studio 2012 controller listener ports (devenv.exe)(6919) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {8FF5E3DF-904B-4AC2-8EC9-4C2C504CF7B8} -> lport=6917 | protocol=6 | dir=in | action=allow | name=visual studio 2012 controller listener ports (devenv.exe)(6917) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {9239F2D1-0753-4DDC-92D0-F35BA9942B92} -> lport=1900 | profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31269 | app=%systemroot%\system32\svchost.exe | svc=ssdpsrv | {97681FFE-6332-42CB-BD08-6DA0A2905CDA} -> lport=6918 | protocol=6 | dir=in | action=allow | name=visual studio 11 beta controller listener ports (devenv.exe)(6918) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {9EF55C17-D74A-4E75-AE39-1F893A4EEDDF} -> lport=139 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-28503 | app=system | {A8B82CF1-3D58-4A91-8122-AACADB9DE56A} -> lport=6915 | protocol=6 | dir=in | action=allow | name=visual studio 2012 controller listener ports (devenv.exe)(6915) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {ABA91E99-0489-4CF1-8D1C-027A1AD5D377} -> rport=10243 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31289 | app=system | {B40F7DFF-6E93-448D-B0A3-4EB0DC34EAE0} -> lport=2869 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31277 | app=system | {B8239540-E79A-4772-B679-BC2988340348} -> rport=1900 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31273 | app=%systemroot%\system32\svchost.exe | svc=ssdpsrv | {BBAAD8C3-5C48-4340-AB38-ACF9BCC5B903} -> lport=6920 | protocol=6 | dir=in | action=allow | name=visual studio 2012 controller listener ports (devenv.exe)(6920) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {BED5B844-8ADD-4DB1-8444-77A57E197C7E} -> rport=138 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28531 | app=system | {BFEA5C3B-39A3-4A6D-8E02-7676EF2D1C5E} -> rport=2177 | profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31257 | app=%systemroot%\system32\svchost.exe | svc=qwave | {C0ED826B-0DB5-4454-8FC7-FC1023798A03} -> lport=6004 | profile=private | protocol=17 | dir=in | action=allow | name=microsoft office outlook | app=c:\program files (x86)\microsoft office\office14\outlook.exe | {C1631560-7976-422E-898A-57EF0EDA413D} -> lport=6919 | protocol=6 | dir=in | action=allow | name=visual studio 11 beta controller listener ports (devenv.exe)(6919) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {C6079739-52E4-48A0-BED0-AE34DF0CAA18} -> lport=6916 | protocol=6 | dir=in | action=allow | name=visual studio 2012 controller listener ports (devenv.exe)(6916) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {C8B7CBD8-1077-4D1C-B81A-B512BCB7F4D1} -> lport=10243 | profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31285 | app=system | {D210787F-92B2-4D29-B3E3-21E92AB86D56} -> lport=6920 | protocol=6 | dir=in | action=allow | name=visual studio 11 beta controller listener ports (devenv.exe)(6920) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {DCEAB954-1D2F-46BF-85E1-C2B2114F05AF} -> lport=3702 | protocol=17 | dir=in | action=allow | name=visual studio 2012 remote debugger discovery (devenv.exe) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {DF9B0315-23AD-403F-B9B1-B9FCED30398D} -> rport=445 | profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-28515 | app=system | {EBA25998-C5BA-400A-BEDB-B5E973D496B3} -> lport=6916 | protocol=6 | dir=in | action=allow | name=visual studio 11 beta controller listener ports (devenv.exe)(6916) | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe | {F0F6D5FC-9412-4A85-8581-4A7321036BBE} -> rport=5355 | profile=public | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-28550 | app=%systemroot%\system32\svchost.exe | svc=dnscache | < Vista Active Application Exception Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules -> {045AB1AA-47DD-49A2-AC76-D802DFF1C28E} -> profile=private | protocol=17 | dir=in | action=allow | name=google talk plugin | app=c:\users\july\appdata\local\google\google talk plugin\googletalkplugin.exe | {070EBEA4-DDF1-4864-9A2E-EBCCDDA62059} -> profile=private | protocol=6 | dir=in | action=allow | name=microsoft sharepoint workspace | app=c:\program files (x86)\microsoft office\office14\groove.exe | {08E5599C-5887-48CC-ABAA-F90A94781011} -> profile=private | protocol=58 | dir=out | action=allow | name=@firewallapi.dll,-28546 | {0A6CFA64-21B8-4E8B-85EE-9B7C369E187D} -> profile=private | protocol=6 | dir=in | action=allow | name=lifeexp.exe | app=c:\program files (x86)\microsoft lifecam\lifeexp.exe | {0AB068D4-4B77-490F-AA96-0326755E57FC} -> profile=private | protocol=1 | dir=in | action=allow | name=@firewallapi.dll,-28543 | {0F16C735-9A95-4E55-86B5-C66BF466F14E} -> profile=public | protocol=17 | dir=in | action=allow | name=google talk plugin | app=c:\users\july\appdata\local\google\google talk plugin\googletalkplugin.exe | {106DC364-EF00-47D5-B9BB-FED1EE047018} -> profile=private | protocol=17 | dir=in | action=allow | name=microsoft onenote | app=c:\program files (x86)\microsoft office\office14\onenote.exe | {109B2F8A-0C9F-4709-917E-AD7772AAE1B2} -> dir=in | action=block | name=camtasia_studio | app=%programfiles% (x86)\techsmith\camtasia studio 8\camtasiastudio.exe | {1DE2E007-B444-4EC6-AD3F-44927E8E52DA} -> dir=in | action=allow | name=facebook video calling plugin | app=c:\users\july\appdata\local\facebook\video\skype\facebookvideocalling.exe | {21F1B418-4FA8-45E6-8229-81AC1ED3E40E} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31309 | app=%programfiles%\windows media player\wmpnetwk.exe | {2241B9A1-C239-4D8B-91F9-39FD4C207555} -> profile=private | protocol=6 | dir=in | action=allow | name=lifetray.exe | app=c:\program files (x86)\microsoft lifecam\lifetray.exe | {22795FCE-AE15-4A65-AB16-1F6B67BCB7F9} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31003 | app=%programfiles%\windows media player\wmplayer.exe | {27EE2AE9-D709-49D0-8141-B34210DAFCD9} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31007 | app=%programfiles%\windows media player\wmplayer.exe | {2867E9E1-9B6D-48E1-A651-8B442BE6E75F} -> profile=private | protocol=17 | dir=in | action=allow | name=microsoft sharepoint workspace | app=c:\program files (x86)\microsoft office\office14\groove.exe | {29708FEB-1C3D-477E-B2AB-F035578DEC9E} -> profile=private | protocol=58 | dir=in | action=allow | name=@firewallapi.dll,-28545 | {2DCB0EA0-8E8D-41A9-B43F-3EEF89F1807E} -> profile=private | protocol=6 | dir=in | action=allow | name=google talk plugin | app=c:\users\july\appdata\local\google\google talk plugin\googletalkplugin.exe | {34277131-9952-4DB3-A914-ADC4F87D8DB8} -> profile=private | protocol=6 | dir=in | action=allow | name=@firewallapi.dll,-31313 | app=%programfiles%\windows media player\wmpnetwk.exe | {3813794F-3C42-43B1-B9AD-59DE1894100C} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31024 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {38C0D301-4E11-424F-92FA-DE020467AFE6} -> profile=private | protocol=6 | dir=in | action=allow | name=lifeenc2.exe | app=c:\program files (x86)\microsoft lifecam\lifeenc2.exe | {3919439A-D568-492C-92BB-711B34D98153} -> profile=private | protocol=1 | dir=out | action=allow | name=@firewallapi.dll,-28544 | {4083FA0C-C158-4C5A-AA7C-6477EBDD46C8} -> profile=private | protocol=17 | dir=in | action=allow | name=lifeenc2.exe | app=c:\program files (x86)\microsoft lifecam\lifeenc2.exe | {4122E95D-9940-4CFE-8822-BF7CC59AA729} -> dir=in | action=allow | name=windows live communications platform | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | {5285C0E1-1A26-4117-8D3F-3AF18E9B39FB} -> profile=private | protocol=17 | dir=in | action=allow | name=dropbox | app=c:\users\july\appdata\roaming\dropbox\bin\dropbox.exe | {52B136C4-B651-4426-847E-31234F189853} -> dir=in | action=allow | name=skype | app=c:\program files (x86)\skype\phone\skype.exe | {59BDCEB5-60B5-4292-92C2-01C01F8ACEDF} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31011 | app=%programfiles%\windows media player\wmplayer.exe | {5D1A5F7F-E81F-408A-9838-56DAF5018C23} -> profile=private | protocol=6 | dir=in | action=allow | name=microsoft onenote | app=c:\program files (x86)\microsoft office\office14\onenote.exe | {5F6F1802-8034-4DB0-88EA-815962D25EB8} -> dir=in | action=allow | name=windows live messenger | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe | {69268579-CB3D-4B49-9E37-E72BBAF97E0C} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31025 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {7A7CADD3-EB17-4E1B-9EB1-1E6C48114AEF} -> dir=in | action=allow | name=starcraft | app=c:\users\july\desktop\game\starcraft\bwrip116\starcraft.exe | {7BC8455F-9816-4BB2-A094-F0ACE8EC78C8} -> dir=out | action=block | name=camtasia_studio | app=%programfiles% (x86)\techsmith\camtasia studio 8\camtasiastudio.exe | {83A60A61-CB7C-48CB-9E0E-F58FB1A4C4B7} -> profile=private | protocol=17 | dir=in | action=allow | name=lifeexp.exe | app=c:\program files (x86)\microsoft lifecam\lifeexp.exe | {9119913A-A8C9-4D7A-9664-140287A441EA} -> dir=out | action=block | name=minkyu | app=%programfiles% (x86)\techsmith\camtasia studio 8\camtasiastudio.exe | {96224612-5551-4679-9096-B591A1F37797} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31023 | app=%programfiles(x86)%\windows media player\wmplayer.exe | {9C068388-B96E-4DB0-9BE5-2A1D41441826} -> profile=public | protocol=6 | dir=in | action=allow | name=google talk plugin | app=c:\users\july\appdata\local\google\google talk plugin\googletalkplugin.exe | {9EC96880-E846-48AB-BB10-A1AAA564FEAE} -> profile=private | protocol=17 | dir=in | action=allow | name=lifetray.exe | app=c:\program files (x86)\microsoft lifecam\lifetray.exe | {A1134B2F-8238-4027-BBBC-5CA342112E74} -> profile=public | protocol=17 | dir=in | action=allow | name=microsoft onenote | app=c:\program files (x86)\microsoft office\office14\onenote.exe | {AAA72CAC-954B-4EDB-9442-760B5640C3E5} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31301 | app=%programfiles%\windows media player\wmplayer.exe | {AB09C1AB-BD26-4B82-9698-14199AFCE403} -> profile=public | protocol=17 | dir=in | action=allow | name=microsoft sharepoint workspace | app=c:\program files (x86)\microsoft office\office14\groove.exe | {B7216DD6-80C6-48A9-80B4-C8FA3E659BBB} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31305 | app=%programfiles%\windows media player\wmpnetwk.exe | {C0D99BCA-3218-4678-B14B-538ABC505CC7} -> profile=public | protocol=6 | dir=in | action=allow | name=microsoft onenote | app=c:\program files (x86)\microsoft office\office14\onenote.exe | {C221B47D-59A1-4813-9DDD-17767FBE0A9F} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31317 | app=%programfiles%\windows media player\wmpnetwk.exe | {C4D3274E-FC4F-4C6E-B26D-F49E6ECC8B3C} -> profile=private | protocol=17 | dir=in | action=allow | name=@firewallapi.dll,-31293 | app=%programfiles%\windows media player\wmplayer.exe | {CF564CBA-0A10-4A92-8C87-AE5F8B1CC065} -> profile=public | protocol=6 | dir=in | action=allow | name=microsoft sharepoint workspace | app=c:\program files (x86)\microsoft office\office14\groove.exe | {D09D4E96-F474-40DB-BC43-A41A60A28206} -> profile=private | protocol=6 | dir=in | action=allow | name=dropbox | app=c:\users\july\appdata\roaming\dropbox\bin\dropbox.exe | {DEF4EE70-2905-4D10-AAFF-C31F9EF09DBB} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31321 | app=%systemroot%\system32\svchost.exe | svc=upnphost | {E24CCFA8-C408-4F82-9851-684F33DC144C} -> profile=private | protocol=17 | dir=out | action=allow | name=@firewallapi.dll,-31297 | app=%programfiles%\windows media player\wmplayer.exe | {E92D06BD-E382-45A1-8933-C56D5FF3532B} -> dir=in | action=allow | name=webkit | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | {ED68154B-BBE5-4EC2-8EA2-31B4DD86A1A1} -> profile=private | protocol=6 | dir=out | action=allow | name=@firewallapi.dll,-31281 | app=system | {EF3F3B24-17E4-45EA-9203-8B9E94EB15DC} -> profile=private | protocol=6 | dir=in | action=allow | name=lifecam.exe | app=c:\program files (x86)\microsoft lifecam\lifecam.exe | {F31C3CFC-49A2-47CC-A27D-D6AED59D7F60} -> profile=private | protocol=17 | dir=in | action=allow | name=lifecam.exe | app=c:\program files (x86)\microsoft lifecam\lifecam.exe | {F7008880-F43C-4597-8DCD-3D3E03198B15} -> protocol=17 | dir=in | action=allow | name=μtorrent (udp-in) | app=c:\program files (x86)\utorrent\utorrent.exe | {FD7379FC-EEA1-4693-880F-2485C598CEFD} -> dir=in | action=allow | name=windows live mesh | app=c:\program files (x86)\windows live\mesh\moe.exe | {FE5D64F3-529A-414F-A360-909C57060918} -> protocol=6 | dir=in | action=allow | name=μtorrent (tcp-in) | app=c:\program files (x86)\utorrent\utorrent.exe | TCP Query User{0EBD8A09-3AC9-440C-B0A2-52C65AC5B8B7}C:\program files (x86)\namo\webeditor 6\bin\webeditor.exe -> profile=private | protocol=6 | dir=in | action=allow | name=namo webeditor 6.0 | app=c:\program files (x86)\namo\webeditor 6\bin\webeditor.exe | TCP Query User{57872064-8183-4D3A-A302-2C79A0EFA5B3}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe -> profile=private | protocol=6 | dir=in | action=allow | name=visual basic command line compiler | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe | TCP Query User{5B22934B-A6B7-4685-97CC-25AE63C8AE3B}C:\program files (x86)\mirc\mirc.exe -> profile=private | protocol=6 | dir=in | action=allow | name=mirc | app=c:\program files (x86)\mirc\mirc.exe | TCP Query User{6C1C66A8-1388-4498-948B-FD1AD532774D}G:\game\warcraft iii\war3.exe -> profile=public | protocol=6 | dir=in | action=allow | name=warcraft iii | app=g:\game\warcraft iii\war3.exe | TCP Query User{ABB3E9F6-7484-422F-B3A2-C41BBA98C536}C:\users\july\appdata\roaming\dropbox\bin\dropbox.exe -> profile=public | protocol=6 | dir=in | action=allow | name=dropbox.exe | app=c:\users\july\appdata\roaming\dropbox\bin\dropbox.exe | TCP Query User{D7660061-730D-43CD-8C7C-AF407302F8CC}C:\program files (x86)\mirc\mirc.exe -> profile=public | protocol=6 | dir=in | action=allow | name=mirc | app=c:\program files (x86)\mirc\mirc.exe | TCP Query User{F46A015F-B94E-4877-BFA7-0ADEDEBA4931}G:\game\warcraft iii\war3.exe -> profile=private | protocol=6 | dir=in | action=allow | name=warcraft iii | app=g:\game\warcraft iii\war3.exe | UDP Query User{0A30B515-136D-4048-9AE3-179849977D8D}G:\game\warcraft iii\war3.exe -> profile=private | protocol=17 | dir=in | action=allow | name=warcraft iii | app=g:\game\warcraft iii\war3.exe | UDP Query User{227BC693-B519-4E75-AD98-774A0F94EFEC}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe -> profile=private | protocol=17 | dir=in | action=allow | name=visual basic command line compiler | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe | UDP Query User{4EDB9B22-FDA1-4D43-A104-C696C7BEB2AD}G:\game\warcraft iii\war3.exe -> profile=public | protocol=17 | dir=in | action=allow | name=warcraft iii | app=g:\game\warcraft iii\war3.exe | UDP Query User{8101BB1C-9FB4-4E1F-8AE0-62658A79CAC5}C:\users\july\appdata\roaming\dropbox\bin\dropbox.exe -> profile=public | protocol=17 | dir=in | action=allow | name=dropbox.exe | app=c:\users\july\appdata\roaming\dropbox\bin\dropbox.exe | UDP Query User{A041B1F0-3D95-46F4-986C-8E59364F298E}C:\program files (x86)\namo\webeditor 6\bin\webeditor.exe -> profile=private | protocol=17 | dir=in | action=allow | name=namo webeditor 6.0 | app=c:\program files (x86)\namo\webeditor 6\bin\webeditor.exe | UDP Query User{C3297973-638E-4C02-BC30-1699F4D36125}C:\program files (x86)\mirc\mirc.exe -> profile=public | protocol=17 | dir=in | action=allow | name=mirc | app=c:\program files (x86)\mirc\mirc.exe | UDP Query User{D56E4221-8C0F-45F9-A3D1-F06FA187F70B}C:\program files (x86)\mirc\mirc.exe -> profile=private | protocol=17 | dir=in | action=allow | name=mirc | app=c:\program files (x86)\mirc\mirc.exe | < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> "AlternateShell" -> cmd.exe -> < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> CD-ROM Driver -> "ImagePath" -> C:\Windows\SysNative\drivers\cdrom.sys [system32\DRIVERS\cdrom.sys] -> [2010/11/21 13:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> \{c4b225e0-69a7-11e2-a814-24be05019b40} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c4b225e0-69a7-11e2-a814-24be05019b40}\shell \{c4b225e0-69a7-11e2-a814-24be05019b40}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c4b225e0-69a7-11e2-a814-24be05019b40}\shell\AutoRun\command \{c4b225e0-69a7-11e2-a814-24be05019b40}\shell\AutoRun\command\\"" -> [H:\vs_ultimate.exe] -> File not found \{e365f8c5-6a43-11e2-a0c4-24be05019b40} HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e365f8c5-6a43-11e2-a0c4-24be05019b40}\shell \{e365f8c5-6a43-11e2-a0c4-24be05019b40}\shell\\"" -> [AutoRun] -> File not found HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e365f8c5-6a43-11e2-a0c4-24be05019b40}\shell\AutoRun\command \{e365f8c5-6a43-11e2-a0c4-24be05019b40}\shell\AutoRun\command\\"" -> [H:\vs_ultimate.exe] -> File not found < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> 64bit-comfile [open] -> "%1" %* 64bit-exefile [open] -> "%1" %* comfile [open] -> "%1" %* -> exefile [open] -> "%1" %* -> < 64bit-File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> [Registry - Additional Scans - Safe List] < 64bit-File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .bat [@ = batfile] -> "%1" %* -> .cmd [@ = cmdfile] -> "%1" %* -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> .html [@ = htmlfile] -> C:\Program Files\Internet Explorer\iexplore.exe -> [2013/06/12 12:28:00 | 000,775,256 | ---- | M] (Microsoft Corporation) .ini [@ = Notepad++_file] -> C:\Program Files (x86)\Notepad++\notepad++.exe -> [2013/04/03 09:21:56 | 001,712,128 | ---- | M] (Don HO don.h@free.fr) .url [@ = InternetShortcut] -> C:\Windows\SysNative\rundll32.exe -> [2009/07/14 11:39:31 | 000,045,568 | ---- | M] (Microsoft Corporation) .pif [@ = piffile] -> "%1" %* -> .scr [@ = scrfile] -> "%1" /S -> .txt [@ = Notepad++_file] -> C:\Program Files (x86)\Notepad++\notepad++.exe -> [2013/04/03 09:21:56 | 001,712,128 | ---- | M] (Don HO don.h@free.fr) < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .bat [@ = batfile] -> "%1" %* -> .cmd [@ = cmdfile] -> "%1" %* -> .com [@ = comfile] -> "%1" %* -> .cpl [@ = cplfile] -> C:\Windows\SysWow64\control.exe -> [2009/07/14 11:14:15 | 000,113,152 | ---- | M] (Microsoft Corporation) .exe [@ = exefile] -> "%1" %* -> .html [@ = htmlfile] -> C:\Program Files\Internet Explorer\iexplore.exe -> [2013/06/12 12:28:00 | 000,775,256 | ---- | M] (Microsoft Corporation) .ini [@ = Notepad++_file] -> C:\Program Files (x86)\Notepad++\notepad++.exe -> [2013/04/03 09:21:56 | 001,712,128 | ---- | M] (Don HO don.h@free.fr) .pif [@ = piffile] -> "%1" %* -> .scr [@ = scrfile] -> "%1" /S -> .txt [@ = Notepad++_file] -> C:\Program Files (x86)\Notepad++\notepad++.exe -> [2013/04/03 09:21:56 | 001,712,128 | ---- | M] (Don HO don.h@free.fr) < File Associations - Select to Repair > -> HKEY_CURRENT_USER\SOFTWARE\Classes\\ -> .html [@ = ChromeHTML] -> Reg Error: Key error. -> File not found < 64bit-Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> livecall:{828030A1-22C1-4009-854F-8E305202313F} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found ms-help:{314111c7-a502-11d2-bbca-00c04f8ec294} [HKLM] -> Reg Error: Key error.[Reg Error: Value error.] -> File not found msnim:{828030A1-22C1-4009-854F-8E305202313F} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found wlmailhtml:{03C514A3-1EFB-4856-9F99-10D7BE1653C0} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found wlpg:{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} [HKLM] -> Reg Error: Key error.[Reg Error: Key error.] -> File not found < Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> skype4com:{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} [HKLM] -> C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll[IEProtocolHandler Class] -> [2013/02/26 15:38:30 | 001,996,392 | R--- | M] (Skype Technologies) < 64bit-Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center -> 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center \\"cval" -> [1] -> File not found 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> -> 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> -> 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc \Svc\\"VistaSp1" -> [28 4D B2 76 41 04 CA 01 [binary data]] -> File not found \Svc\\"AntiVirusOverride" -> [0] -> File not found \Svc\\"AntiSpywareOverride" -> [0] -> File not found \Svc\\"FirewallOverride" -> [0] -> File not found 64bit-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> -> < Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> -> < Windows DomainProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile \\"EnableFirewall" -> [1] -> File not found \\"DisableNotifications" -> [0] -> File not found HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging\ -> -> < Windows StandardProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile \\"EnableFirewall" -> [1] -> File not found \\"DisableNotifications" -> [0] -> File not found HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> -> < Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> knownfolder -> 0 = Computer (Not a Default Protocol) -> ldap -> 4 = Restricted sites (Not a Default Protocol) -> news -> 4 = Restricted sites (Not a Default Protocol) -> nntp -> 4 = Restricted sites (Not a Default Protocol) -> oecmd -> 4 = Restricted sites (Not a Default Protocol) -> snews -> 4 = Restricted sites (Not a Default Protocol) -> < Default Protocols [HKEY_CURRENT_USER\] - Select to Repair > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults -> knownfolder -> 0 = Computer (Not a Default Protocol) -> < 64bit-Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {071c9b48-7c32-4621-a0ac-3f809523288f} -> Microsoft Visual C++ 2005 Redistributable (x64) {078B9199-C2A4-4468-BD5F-C060C51EC895} -> Microsoft Visual Studio 2012 IntelliTrace Core amd64 {0B497B28-5243-3329-9F10-DBB18E0963E6} -> Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.51106 {0E8670B8-3965-4930-ADA6-570348B67153} -> Microsoft SQL Server 2012 Transact-SQL ScriptDom {13417784-A359-3CDD-8DE1-B7108707D647} -> Visual Studio 2012 Prerequisites - ENU Language Pack {13D558FE-A863-402C-B115-160007277033} -> Microsoft SQL Server 2012 Express LocalDB {180C8888-50F1-426B-A9DC-AB83A1989C65} -> Windows Live Language Selector {1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698} -> Windows Live ID Sign-in Assistant {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} -> Microsoft .NET Framework 4.5 {1D8E6291-B0D5-35EC-8441-6616F567A0F7} -> Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 {27726449-83B8-428D-92DE-101346C1E15C} -> Microsoft Security Client {27EF252D-800C-ED42-9904-459FE0046225} -> Windows Software Development Kit for Windows Store Apps DirectX x64 Remote {2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2} -> HP Client Services {28D85F24-B685-3364-BB7C-284C88C2FFE5} -> Microsoft Visual Studio Team Foundation Server 2012 Storyboarding {2EC3A3E2-E1EA-383D-BE76-D651C7852A05} -> Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU {301DAC0A-285C-4BB1-A68E-7393673E9E69} -> Microsoft SQL Server 2012 Data-Tier App Framework {33540558-5647-4ED7-8682-62CE971CEE62} -> Windows Azure Libraries for .NET – v2.0 {33C19CDE-E935-11E0-A0DA-F04DA23A5C58} -> MSVCRT Redists {3C28BFD4-90C7-3138-87EF-418DC16E9598} -> Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 {3FA063D7-EDC1-AFA8-54AF-0563C7DEE070} -> Windows App Certification Kit Native Components {41208EF0-FA40-3824-B330-5D59B666C720} -> Microsoft Visual Studio Team Foundation Server 2012 Object Model {458707CD-9D7A-477F-B925-02242A29673B} -> Microsoft Web Platform Installer 4.5 {4701DEDE-1888-49E0-BAE5-857875924CA2} -> Microsoft SQL Server System CLR Types (x64) {49D665A2-4C2A-476E-9AB8-FCC425F526FC} -> Microsoft SQL Server 2012 Native Client {4B6C7001-C7D6-3710-913E-5BC23FCE91E6} -> Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 {503F672D-6C84-448A-8F8F-4BC35AC83441} -> AMD APP SDK Runtime {55EFD1A6-ED8E-3A4C-9581-5E1A1FF244CD} -> Microsoft Visual Studio Team Foundation Server 2012 Storyboarding Language Pack - ENU {572E796D-C52B-3797-A685-2FB6F895D4BE} -> Microsoft Visual Studio 2010 Office Developer Tools (x64) {5AF4E09F-5C9B-3AAF-B731-544D3DC821DD} -> Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 {5FB4C443-6BD6-1514-2717-3827D65AE6FB} -> Windows Software Development Kit DirectX x64 Remote {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4} -> Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 {61862D7C-CDBC-48D5-8AE1-3B8BD1E23BC5} -> Visual Studio 2012 Prerequisites {6199B534-A1B6-46ED-873B-97B0ECF8F81E} -> Intel® Trusted Connect Service Client {62B64BEE-182F-4B1D-8D92-905FA8737AFE} -> Windows Azure Authoring Tools - v2.0 {633AB014-DDE6-403E-A302-8920CC32C543} -> Microsoft Visual Studio 2012 Performance Collection Tools {656DEEDE-F6AC-47CA-A568-A1B4E34B5760} -> Windows Live Remote Service Resources {6965A8D2-465D-4F98-9FAA-0E9E2348F329} -> Microsoft LifeCam {73468C65-BC53-4D88-9246-75A5BB014DA2} -> JavaScript Tooling {78909610-D229-459C-A936-25D92283D3FD} -> Microsoft SQL Server Compact 4.0 SP1 x64 ENU {789579C8-FDDE-4FE6-8A84-366F9152B63E} -> Windows Azure Emulator - v2.0 {7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7} -> IIS 8.0 Express {8220EEFE-38CD-377E-8595-13398D740ACE} -> Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 {847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5} -> Windows Live Remote Client Resources {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} -> Microsoft Silverlight {90140000-002A-0000-1000-0000000FF1CE} -> Microsoft Office Office 64-bit Components 2010 {90140000-002A-0409-1000-0000000FF1CE} -> Microsoft Office Shared 64-bit MUI (English) 2010 {90140000-0116-0409-1000-0000000FF1CE} -> Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033 -> Microsoft .NET Framework 4.5 {95120000-00B9-0409-1000-0000000FF1CE} -> Microsoft Application Error Reporting {98BFCD73-57CD-2818-2739-61DFACC52A2C} -> AMD Accelerated Video Transcoding {993F6DDC-63F8-4BCD-9B28-D941971A9CAC} -> Windows XP Targeting with C++ {9C5A08BF-BB99-4998-81BD-F6CC32483B34} -> Microsoft Corporation {9D573E71-1077-4C7E-B4DB-4E22A5D2B48B} -> Microsoft SQL Server 2012 Command Line Utilities {9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb -> IIS Express Application Compatibility Database for x64 {A7500970-FE98-11E1-B560-F04DA23A5C58} -> Vegas Pro 12.0 (64-bit) {A7DCA38B-E296-767D-6701-7D3ABB977152} -> AMD Catalyst Install Manager {AA72C306-30BE-4BB1-9E42-59552BAD2CDF} -> Microsoft Web Deploy 3.0 {AB085680-FE98-11E1-A232-F04DA23A5C58} -> MSVCRT Redists {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028} -> Microsoft Visual C++ 2005 Redistributable (x64) {B143BE44-8723-315E-9413-011C55873C0E} -> Microsoft Visual Studio 2010 Tools for Office Runtime (x64) {B85E9D2C-7152-FF52-3A64-C897E1B0F03E} -> ccc-utility64 {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04} -> PlayReady PC Runtime amd64 {BEB0F91E-F2EA-48A1-B938-7857ABF2A93D} -> Microsoft SQL Server 2012 Transact-SQL Compiler Service {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1} -> HP Auto {D79A02E9-6713-4335-9668-AAC7474C0C0E} -> HP Vision Hardware Diagnostics {D9F3D00D-E946-3B3D-A4A6-93D5020DB9F7} -> Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727 {DA54F80E-261C-41A2-A855-549A144F2F59} -> Windows Live MIME IFilter {DF6D988A-EEA0-4277-AAB8-158E086E439B} -> Windows Live Remote Client {E02A6548-6FDE-40E2-8ED9-119D7D7E641F} -> Windows Live Remote Service {F1949145-EB64-4DE7-9D81-E6D27937146C} -> Microsoft System CLR Types for SQL Server 2012 (x64) {FA0A244E-F3C2-4589-B42A-3D522DE79A42} -> Microsoft SQL Server 2012 Management Objects (x64) {fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb -> IIS Express Application Compatibility Database for x86 {FE74AC04-F248-4641-B3A9-89C6AA4339CD} -> Microsoft Visual Studio 2012 Performance Collection Tools - ENU AutoHotkey -> AutoHotkey 1.1.09.04 CCleaner -> CCleaner Microsoft Security Client -> Microsoft Security Essentials Microsoft Visual Studio 2010 Tools for Office Runtime (x64) -> Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Windows Azure Emulator - v2.0 -> Windows Azure Emulator - v2.0 < Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> {00EC8ABC-3C5A-40F8-A8CB-E7DCD5ABFA05} -> Microsoft NuGet - Visual Studio 2012 {02213A81-CB13-7262-5ABE-1FFA2C75559F} -> Windows App Certification Kit x64 {046806D1-0A38-3FCA-AF84-F71C50A0C363} -> Microsoft Visual Studio Premium 2012 {047B92D7-29D1-FB5A-4EF7-62A594D0E559} -> CCC Help Greek {05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1 -> MiniTool Partition Wizard Home Edition 7.8 {0659E943-DDF4-44FC-9FEE-A13B09F8BB08} -> Adobe Flash Media Live Encoder 3.2 {07FA4960-B038-49EB-891B-9F95930AA544} -> HP Customer Experience Enhancements {08D2E121-7F6A-43EB-97FD-629B44903403} -> Microsoft_VC90_CRT_x86 {0B0F231F-CE6A-483D-AA23-77B364F75917} -> Windows Live Installer {0BCC836F-0B28-4090-B58A-64883BAA3B2F} -> WCF Data Services 5.0 (for OData v3) Primary Components {0C03A66F-1FF0-45F9-8D67-0D806EBFFBA1} -> Blend for Visual Studio SDK for Silverlight 5 {1172AC15-080E-30E3-85B0-FF59AD2E6315} -> Microsoft Visual Studio Ultimate 2012 - ENU {1228E4A3-8371-4F9B-BA6F-3D34113811B9} -> Visual Studio Extensions for Windows Library for JavaScript {148878BD-A2A5-4CF1-A103-2BA632F41953} -> WCF Data Services Tools for Microsoft Visual Studio 2012 {1690CE56-2231-4E59-9006-A0876D949EA8} -> Tools for .Net 3.5 {189AEA94-DAFB-487A-8CEE-F9D3DDE0A748} -> Microsoft Silverlight 4 SDK {18D606E9-9650-48DF-8D6E-5AC61C5AD1A9} -> Microsoft Visual Studio 2012 IntelliTrace Front End x86 {1948E039-EC79-4591-951D-9867A8C14C90} -> Microsoft .NET Framework 4.5 SDK {196467F1-C11F-4F76-858B-5812ADC83B94} -> MSXML 4.0 SP3 Parser {19BA08F7-C728-469C-8A35-BFBD3633BE08} -> Windows Live Movie Maker {1A7CB653-7A96-47CA-8234-2FD88E3ED103} -> Windows Azure Tools for Microsoft Visual Studio 2012 Core {1A876188-C2E8-C87C-A3A8-149E5384DC70} -> Catalyst Control Center InstallProxy {1B9BBB23-65CB-3AEE-BFC6-633E7CA299FD} -> Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU {1BD4DF60-D805-4890-BD90-928C0466D124} -> Windows Azure Tools for LightSwitch for Visual Studio 2012 {1C997E1C-5CE9-4AF3-AAA9-DC65E6090827} -> Microsoft Expression Blend SDK for Silverlight 4 {1DB43E5A-2F24-4F51-92B0-A2C0EBF5C742} -> Microsoft Report Viewer Add-On for Visual Studio 2012 {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} -> Junk Mail filter update {200FEC62-3C34-4D60-9CE8-EC372E01C08F} -> Windows Live SOXE Definitions {223D48F4-F505-C905-8721-153BB74BCEF1} -> CCC Help Norwegian {23176E97-26CB-C72A-19EB-BFB21AC1D15A} -> Windows Software Development Kit DirectX x86 Remote {23A3E3F8-91B4-4C5A-9E69-6747CF6D426B} -> Microsoft SQL Server Data Tools - enu (11.1.20905.0) {246B0F46-F84E-4857-8C47-F2A86B598BC5} -> Microsoft Visual Studio 2012 Preparation {26A24AE4-039D-4CA4-87B4-2F83217025FF} -> Java 7 Update 25 {2902F983-B4C1-44BA-B85D-5C6D52E2C441} -> Windows Live Mesh ActiveX Control for Remote Connections {2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24} -> Windows Live Messenger {2C0CC01A-DDBC-3AED-AF18-E741242FD727} -> Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources {2C76E3DA-BA76-4FAD-B1B1-72B46D639028} -> PreEmptive Analytics Visual Studio Components {2CD60B9D-EEA2-C36C-62EC-EE14145BCAFE} -> CCC Help Korean {2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3} -> HP Update {2F6CE32A-018D-4656-895B-9E5E20D7740A} -> Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update {2F8F489A-0476-3129-857B-A553F38B192D} -> Microsoft Visual C++ 2012 Core Libraries {30C27CAE-9266-3B47-837D-193C16EDB811} -> Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.51106 {31641F51-67B3-4E7C-BC54-21069712CF0D} -> Microsoft Visual C++ 2012 Compilers - ENU Resources {32A3A4F4-B792-11D6-A78A-00B0D0170130} -> Java SE Development Kit 7 Update 13 {330E5D98-20D2-4CA4-AE51-FCB8AA80F634} -> Microsoft Visual Studio 2012 Devenv {3336F667-9049-4D46-98B6-4C743EEBC5B1} -> Windows Live Photo Gallery {3408497D-8666-5FAD-A234-97BD7EACEAC9} -> HydraVision {34F4D9A4-42C2-4348-BEF4-E553C84549E7} -> Windows Live Photo Gallery {355FBD67-5A4F-44DA-86A1-56EEC4C20EC0} -> TI USB3 Host Driver {3677D4D8-E5E0-49FC-B86E-06541CF00BBE} -> opensource {372D17F6-A54E-4A01-B264-1314890FFE61} -> Dotfuscator and Analytics Community Edition {37E53780-3944-4A6A-842F-727128E8616E} -> Blend for Visual Studio SDK for .NET 4.5 {38FC6E9A-F719-431A-A83D-4C86D5FD6555} -> Microsoft Visual Studio 2012 Shell (Minimum) Resources {39919F5F-02AB-0CB4-8CDC-9414D732A9C0} -> CCC Help Russian {3A523AF9-D32F-4C85-8388-0335731F3405} -> WCF RIA Services V1.0 SP2 {42F61556-29ED-8122-F39E-6F04EA5FF279} -> Windows Software Development Kit for Windows Store Apps DirectX x86 Remote {43B6C189-B2D5-13C6-EF7E-A8853459C703} -> CCC Help Spanish {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5} -> Recovery Manager {451526FA-52D1-41F2-B7E2-96343EC95853} -> Windows Azure Tools for LightSwitch HTML Client for Visual Studio 2012 {4A03706F-666A-4037-7777-5F2748764D10} -> Java Auto Updater {4D090F70-6F08-4B60-9357-A1DFD4458F09} -> Microsoft Mathematics {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} -> Skype™ 6.5 {532DBCC8-9468-435C-AEF6-30B7F50735A2} -> Blend for Visual Studio 2012 ENU resources {579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4} -> Windows Live UX Platform Language Pack {57F20F04-014D-453F-B6A3-AE9485C4DFAB} -> Blend for Visual Studio 2012 {58E440C4-74D4-445C-B9C1-2984D1BC1971} -> Microsoft LightSwitch for Visual Studio 2012 v3.0 Core {5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D} -> Microsoft .NET Framework 4.5 Multi-Targeting Pack {5DF26630-9CB0-99C9-27F0-537C031B280B} -> Catalyst Control Center Profiles Desktop {5FF5933C-61A3-4E7C-8029-DC9661DF5DEE} -> Microsoft Visual Studio 2012 IntelliTrace Core x86 {60D5EF2A-4E0C-2C30-38F6-59C26E134F4A} -> Windows Software Development Kit {631471BE-DEAB-454B-A9AC-CE3EB42C28B3} -> Microsoft ASP.NET Web Pages {65153EA5-8B6E-43B6-857B-C6E4FC25798A} -> Intel(R) Management Engine Components {6537F93A-0DAB-1376-51E1-F05436059E9C} -> CCC Help Portuguese {660C7390-F3A7-2658-55F3-992683AABCFF} -> CCC Help Danish {6616FD18-8560-96F8-D8F0-09CE4243FE4C} -> CCC Help French {67ED4F6B-BE85-410B-A60E-793CEB7D7DAD} -> Microsoft SQL Server 2012 Data-Tier App Framework {682B3E4F-696A-42DE-A41C-4C07EA1678B4} -> Windows Live SOXE {6A6F1B4D-1BCE-3703-93D8-4494FB7F1280} -> Microsoft Portable Library Multi-Targeting Pack {6C772996-BFF3-3C8C-860B-B3D48FF05D65} -> Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 {6D6D43E5-218C-4B05-92D3-2240810F4760} -> Microsoft SQL Server 2012 T-SQL Language Service {6DAB46E3-D017-3E2B-85D8-F57A230384C0} -> Microsoft Visual Studio Team Foundation Server 2012 Team Explorer {6F066545-40A2-4C38-A8F7-78581CC5C442} -> Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools {6F340107-F9AA-47C6-B54C-C3A19F11553F} -> Hewlett-Packard ACLM.NET v1.2.1.1 {6FC3B79F-47C6-38AF-B9A9-67DE3C639598} -> Microsoft Visual Studio Premium 2012 - ENU {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} -> Microsoft Visual C++ 2005 Redistributable {714F43AB-052E-457D-9C8E-1DF58564DA50} -> Microsoft Web Developer Tools 2012.2.1 - Visual Studio 2012 {71a40c60-27c2-443a-b7c7-6e4f3aad1d5a} -> Microsoft ASP.NET and Web Frameworks 2012.2 {71F19318-423A-E8BD-4FE5-F345E920D0B5} -> CCC Help Chinese Traditional {7204BDEE-1A48-4D95-A964-44A9250B439E} -> Facebook Messenger 2.1.4814.0 {7437A4B9-314F-3B8F-827B-22909146E471} -> Microsoft LightSwitch for Visual Studio 2012 Core {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6} -> Adobe Photoshop CS6 {76423e2f-1a2d-4859-ba02-fcfe8405e929} -> Windows Azure Tools for Microsoft LightSwitch for Visual Studio 2012 - v2.0 {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} -> Apple Software Update {7999FC66-7239-FE9D-2A29-FB14A06CB174} -> CCC Help Finnish {800F484E-9D69-492D-B656-7BAA32586142} -> Microsoft Visual Studio 2012 Shell (Minimum) {808118B1-60D6-4DCF-8077-73A4D3D8BB54} -> Microsoft Visual C++ 2012 x86-x64 Compilers {820C677A-41B2-48C3-8136-FEE35A052E73} -> Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies {834B6E00-F509-40F2-A677-E86261184576} -> Blend for Visual Studio Add-in for Adobe FXG Import {83C292B7-38A5-440B-A731-07070E81A64F} -> Windows Live PIMT Platform {852C518C-F585-B36E-8964-5A06B5C14B10} -> CCC Help Turkish {8BFD0FDE-E4D1-4F53-83DE-361799433A4D} -> Ustream Producer {8C6D6116-B724-4810-8F2D-D047E6B7D68E} -> Mesh Runtime {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} -> MSVCRT {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF} -> 802.11n Wireless LAN Card {90140000-0011-0000-0000-0000000FF1CE} -> Microsoft Office Professional Plus 2010 {90140000-0015-0409-0000-0000000FF1CE} -> Microsoft Office Access MUI (English) 2010 {90140000-0016-0409-0000-0000000FF1CE} -> Microsoft Office Excel MUI (English) 2010 {90140000-0018-0409-0000-0000000FF1CE} -> Microsoft Office PowerPoint MUI (English) 2010 {90140000-0019-0409-0000-0000000FF1CE} -> Microsoft Office Publisher MUI (English) 2010 {90140000-001A-0409-0000-0000000FF1CE} -> Microsoft Office Outlook MUI (English) 2010 {90140000-001B-0409-0000-0000000FF1CE} -> Microsoft Office Word MUI (English) 2010 {90140000-001F-0409-0000-0000000FF1CE} -> Microsoft Office Proof (English) 2010 {90140000-001F-040C-0000-0000000FF1CE} -> Microsoft Office Proof (French) 2010 {90140000-001F-0C0A-0000-0000000FF1CE} -> Microsoft Office Proof (Spanish) 2010 {90140000-002C-0409-0000-0000000FF1CE} -> Microsoft Office Proofing (English) 2010 {90140000-0044-0409-0000-0000000FF1CE} -> Microsoft Office InfoPath MUI (English) 2010 {90140000-006E-0409-0000-0000000FF1CE} -> Microsoft Office Shared MUI (English) 2010 {90140000-00A1-0409-0000-0000000FF1CE} -> Microsoft Office OneNote MUI (English) 2010 {90140000-00BA-0409-0000-0000000FF1CE} -> Microsoft Office Groove MUI (English) 2010 {90140000-0115-0409-0000-0000000FF1CE} -> Microsoft Office Shared Setup Metadata MUI (English) 2010 {90140000-0117-0409-0000-0000000FF1CE} -> Microsoft Office Access Setup Metadata MUI (English) 2010 {9169C939-ED01-446A-BD0C-29873BAF4E48} -> Prerequisites for SSDT {926206BF-6A34-A9B2-55FB-D97AC31AD426} -> CCC Help English {92D58719-BBC1-4CC3-A08B-56C9E884CC2C} -> Microsoft_VC80_CRT_x86 {92EA4134-10D1-418A-91E1-5A0453131A38} -> Windows Live Movie Maker {933B4015-4618-4716-A828-5289FC03165F} -> VC80CRTRedist - 8.0.50727.6195 {93489CA8-6656-33A0-A5AC-E0EDEDB17C3E} -> Microsoft Visual Studio Professional 2012 {942CC691-5B98-42A3-8BC5-A246BA69D983} -> Microsoft ASP.NET MVC 4 Runtime {95540FD3-4E2E-40E2-B315-120BB373DC23} -> Microsoft LightSwitch for Visual Studio 2012 v3.0 CoreRes - ENU {9600393b-6ede-469b-a522-689fce1461d1} -> Microsoft Visual Studio Ultimate 2012 {96F50F87-0F15-4F93-9FE6-387DD9CFB077} -> Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools - ENU {989FB5FD-9B00-4B32-8663-849CB1370DD1} -> Google Drive {9A25302D-30C0-39D9-BD6F-21E6EC160475} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 {9A456DFB-5404-471D-8C7B-0E2A155E999B} -> Microsoft ASP.NET Visual Studio 2012 Uninstall Finalizer {9B3A1C97-A361-463E-8817-444F9F88CDFE} -> Microsoft Expression Blend SDK for .NET 4 {9BE518E6-ECC6-35A9-88E4-87755C07200F} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 {9D56775A-93F3-44A3-8092-840E3826DE30} -> Windows Live Mail {9F9B7984-3D01-4808-873F-E6138C3C46F6} -> SqlFire {9FD65D07-3B63-BFB6-C34A-84006879F362} -> CCC Help Italian {A0087DDE-69D0-11E2-AD57-43CA6188709B} -> Adobe AIR {A0C91188-C88F-4E86-93E6-CD7C9A266649} -> Windows Live Mesh {A127C3C0-055E-38CF-B38F-1E85F8BBBFFE} -> Adobe Community Help {A3A6D5EA-B6B5-3C05-BDA8-EAB99C09CDDC} -> Microsoft Visual Studio 2012 SharePoint Developer Tools {A3D98759-AD01-D575-A9D3-9ED08D892F90} -> Catalyst Control Center {A453EF2D-13C0-3BB8-833F-C0CF45F604C1} -> Microsoft Visual C++ 2012 Extended Libraries {A47FD1BF-A815-4A76-BE65-53A15BD5D25D} -> Microsoft SQL Server System CLR Types {A6AC699F-8315-40CA-8F70-E917494978AB} -> VirtualDJ Home FREE {A726AE06-AAA3-43D1-87E3-70F510314F04} -> Windows Live Writer {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} -> Google Update Helper {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} -> Windows Live Photo Common {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} -> Windows Live Writer {AAF454FC-82CA-4F29-AB31-6A109485E76E} -> Windows Live Writer {AC76BA86-7AD7-1042-7B44-AB0000000001} -> Adobe Reader XI (11.0.01) - Korean {AE856388-AFAD-4753-81DF-D96B19D0A17C} -> HP Setup Manager {AFA4B0BF-3289-495A-B949-BA91F39B1A44} -> Entity Framework Designer for Visual Studio 2012 - enu {AFE71070-5C47-9829-5A33-B300D422CADE} -> CCC Help Polish {B1465D1D-6427-4CA1-AE29-8B699209E663} -> Microsoft Visual Studio 2012 Devenv Resources {B1BDEB2F-DF17-9212-DABE-7562C91B0810} -> CCC Help Japanese {B2B7B1C8-7C8B-476C-BE2C-049731C55992} -> HP Support Information {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800} -> Microsoft Corporation {B40E950B-300A-41B5-A6C1-2FEBEEA1BEEA} -> Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools - ENU {B585A11C-4F6E-3532-97D4-3670FE94600D} -> Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries {B5DA9D49-9BD8-0F2F-52FC-C7E66BC8D944} -> LocalESPCui for en-us {B67BAFBA-4C9F-48FA-9496-933E3B255044} -> QuickTime {B849F1E9-6DCD-5F5B-A2B4-98CBAA13C750} -> CCC Help Swedish {B8AC1A89-FFD1-4F97-8051-E505A160F562} -> HP Odometer {B92C5909-1D37-4C51-8397-A28BB28E5DC3} -> Facebook Video Calling 1.2.0.287 {B9F35D86-242E-3FA4-B9F8-A982E0DF918D} -> Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack {BAD0254F-9BDB-3D14-A5AC-9C0EF51F3D09} -> Microsoft Portable Library Multi-Targeting Pack Language Pack - enu {BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6} -> LocalESPC {BE4F3A79-8954-499C-AEF9-E8A3BC235677} -> JavaScript Tooling {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} -> PDF Settings CS6 {C0770F76-6923-4EC4-A062-E688B99DCE40} -> Microsoft ASP.NET Visual Studio 2012 Finalizer {C1BE4600-7D15-3D1E-8AA2-B3241DB1D063} -> Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core {C2B4A0FD-14FF-46DF-86DA-2ECF051B1861} -> Windows Azure Tools for Microsoft Visual Studio 2012 - v2.0 {C3592426-531E-4110-911D-BFECE2CE284B} -> puush {C66824E4-CBB3-4851-BB3F-E8CFD6350923} -> Windows Live Mail {C743D413-363E-DD06-C311-F62A4AB7E69D} -> CCC Help Czech {C81452EB-CBCF-B8EB-3124-48C5B3D506B0} -> Windows Runtime Intellisense Content - en-us {CAECB044-DE5B-B3F9-0B2C-60CDE258FB3B} -> CCC Help German {CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61} -> PlayReady PC Runtime x86 {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} -> Windows Live UX Platform {CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE} -> Microsoft .NET Framework 4 Multi-Targeting Pack {CFFDC0EC-6924-3347-B047-13339EDBEC28} -> Microsoft Visual Studio Professional 2012 - ENU {D0B44725-3666-492D-BEF6-587A14BD9BD9} -> MSVCRT_amd64 {D11F66FF-82B3-DDB8-1146-525370552BE1} -> Windows Software Development Kit for Windows Store Apps {D2964C0D-477B-4914-B791-1D80E61E85E6} -> Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20905.0) {D436F577-1695-4D2F-8B44-AC76C99E0002} -> Windows Live Photo Common {D45240D3-B6B3-4FF9-B243-54ECE3E10066} -> Windows Live Communications Platform {D6871655-3187-6650-EE59-B39D583FAF76} -> CCC Help Hungarian {D770E850-A80C-68FE-8FAC-1FFAEC4612F8} -> CCC Help Dutch {D8EC110F-F88D-4DBA-B84C-C305A550B3D6} -> Microsoft Visual C++ 2012 32bit Compilers - ENU Resources {DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A} -> Microsoft SQL Server 2012 Management Objects {DAA18A0D-A57C-4611-B135-46EA06990E7D} -> XSplit {DB93E2C2-851F-44B2-B09C-351D2C624AE1} -> Camtasia Studio 8 {DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA} -> Microsoft ASP.NET MVC 3 {DD0761E5-75C8-4B18-B504-02C4AC366EF8} -> Catalyst Control Center - Branding {DDC8BDEE-DCAC-404D-8257-3E8D4B782467} -> Windows Live Writer Resources {DECDCB7C-58CC-4865-91AF-627F9798FE48} -> Windows Live Mesh {DFB0224E-2D19-FCC9-BB6D-0CE3E7220A3D} -> Catalyst Control Center Graphics Previews Common {E09C4DB7-630C-4F06-A631-8EA7239923AF} -> D3DX10 {E0C1FBC8-4C22-3671-AE2C-0D2A67E0AAA9} -> Google Talk Plugin {E1FBB3D4-ADB0-4949-B101-855DA061C735} -> Microsoft Silverlight 5 SDK {E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB} -> Microsoft System CLR Types for SQL Server 2012 {E4983C33-F26D-823E-0E93-EA61DC086FD9} -> Catalyst Control Center Localization All {E4ADE757-7FE9-322D-9CAE-C77D77A2D2BF} -> Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU {E4C33F5B-1B2F-466E-957E-B274F08151A0} -> Microsoft Web Deploy dbSqlPackage Provider - enu {E52C5468-A8E7-4DE5-8F99-057FF2C9BFE8} -> Microsoft Visual C++ 2012 Compilers {E5B21F11-6933-4E0B-A25C-7963E3C07D11} -> Windows Live Messenger {E818AE7C-244B-4A50-9C86-C0E4A8B69159} -> Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU {E824E81C-80A4-3DFF-B5F9-4842A9FF5F7F} -> Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 {E9E34215-82EF-4909-BE2F-F581F0DC9062} -> DirectX for Managed Code Update (Summer 2004) {EA63C5C1-EBBC-477C-9CC7-41454DDFAFF2} -> Microsoft ASP.NET Web Pages 2 Runtime {EB15F7FD-7BE8-6BA4-187E-8D700B7905EE} -> CCC Help Thai {EE202411-2C26-49E8-9784-1BC1DBF7DE96} -> HP Support Assistant {EF3FA287-2622-4340-AAF6-0AD29F21A691} -> Namo WebEditor 6 {EFA87714-E75A-3BFC-A698-A3AABA5A8A0C} -> Microsoft Visual Studio Ultimate 2012 {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} -> Microsoft SQL Server 2005 Compact Edition [ENU] {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} -> Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 {F361FE04-789E-42F3-BBAB-E7B380AA5E06} -> Windows XP Targeting with C++ {f41037c2-b163-40b7-8aeb-95997a5b87b8} -> Windows Azure Tools for Microsoft Visual Studio 2012 - v2.0 {F5266D28-E0B2-4130-BFC5-EE155AD514DC} -> Apple Application Support {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} -> HP Setup {F89BADB0-D319-470E-8024-443EE3A3402B} -> TSHostedAppLauncher {FAD92247-48AC-91B2-9942-459ABCC6F4E9} -> CCC Help Chinese Standard {FE044230-9CA5-43F7-9B58-5AC5A28A1F33} -> Windows Live Essentials {FEB375AB-6EEC-3929-8FAF-188ED81DD8B5} -> Microsoft Help Viewer 2.0 {FFC6E93A-B9AD-3F20-9B06-EE20E24AAEAF} -> Microsoft Visual C++ 2012 Core Libraries Adobe AIR -> Adobe AIR Adobe Flash Player ActiveX -> Adobe Flash Player 11 ActiveX Adobe Flash Player Plugin -> Adobe Flash Player 11 Plugin Advanced SystemCare 6_is1 -> Advanced SystemCare 6 ALUpdate_is1 -> 알툴즈 업데이트 ALZip_is1 -> 알집 8.61 Avidemux 2.6 (64-bit) -> Avidemux 2.6 chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 -> Adobe Community Help DivX Setup -> DivX Setup DtsFilter -> DTS+AC3 Filter ERUNT_is1 -> ERUNT 1.1j Free YouTube Download_is1 -> Free YouTube Download version 3.2.0.128 Free YouTube to MP3 Converter_is1 -> Free YouTube to MP3 Converter version 3.12.5.628 GOM Player -> GOM Player GomTV Launcher Plugin -> GOMTV Plug-in Google Chrome -> Google Chrome InstallShield_{355FBD67-5A4F-44DA-86A1-56EEC4C20EC0} -> TI USB 3.0 Host Controller Driver KakaoTalk -> KakaoTalk Microsoft Help Viewer 2.0 -> Microsoft Help Viewer 2.0 mIRC -> mIRC Mozilla Firefox 22.0 (x86 en-US) -> Mozilla Firefox 22.0 (x86 en-US) MozillaMaintenanceService -> Mozilla Maintenance Service MPEG2코덱(libmpeg2/mad) -> MPEG2코덱(libmpeg2/mad) Notepad++ -> Notepad++ Office14.PROPLUS -> Microsoft Office Professional Plus 2010 PdaNet_is1 -> PdaNet+ for Android 4.01 Smart Defrag 2 Pro_is1 -> Smart Defrag 2 uTorrent -> µTorrent VB Runtimes Pack, release 7_is1 -> VB Runtimes Pack, release 7 WinLiveSuite -> Windows Live Essentials wLauncher -> wLauncher Xvid_is1 -> Xvid 1.2.2 final uninstall 폰테마샵 -> 폰테마샵 1.0 < Uninstall List [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ -> Dropbox -> Dropbox MusicManager -> Music Manager UnityWebPlayer -> Unity Web Player < EventViewer Logs - Last 10 Errors > -> Event Information -> Description Application [ Error ] 28/07/2013 5:00:01 AM Computer Name = July-HP | Source = Windows Backup | ID = 4103 -> Description = Application [ Error ] 28/07/2013 10:10:05 AM Computer Name = July-HP | Source = Google Update | ID = 20 -> Description = Application [ Error ] 28/07/2013 1:10:05 PM Computer Name = July-HP | Source = Google Update | ID = 20 -> Description = Application [ Error ] 28/07/2013 4:10:08 PM Computer Name = July-HP | Source = Google Update | ID = 20 -> Description = Application [ Error ] 28/07/2013 7:10:05 PM Computer Name = July-HP | Source = Google Update | ID = 20 -> Description = Application [ Error ] 29/07/2013 9:06:08 AM Computer Name = July-HP | Source = Application Error | ID = 1000 -> Description = Faulting application name: AcroRd32.exe, version: 11.0.1.36, time stamp: 0x50d0b932 Faulting module name: AcroRd32.dll, version: 11.0.1.36, time stamp: 0x50d0b924 Exception code: 0xc0000006 Fault offset: 0x0085ed13 Faulting process id: 0x720 Faulting application start time: 0x01ce8c58249f9d0b Faulting application path: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe Faulting module path: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.dll Report Id: a1f3e8f8-f84f-11e2-9aac-24be05019b40 Application [ Error ] 29/07/2013 9:06:08 AM Computer Name = July-HP | Source = Application Error | ID = 1005 -> Description = Windows cannot access the file C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.dll for one of the following reasons: there is a problem with the network connection, the disk that the file is stored on, or the storage drivers installed on this computer; or the disk is missing. Windows closed the program Adobe Reader because of this error. Program: Adobe Reader File: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.dll The error value is listed in the Additional Data section. User Action 1. Open the file again. This situation might be a temporary problem that corrects itself when the program runs again. 2. If the file still cannot be accessed and - It is on the network, your network administrator should verify that there is not a problem with the network and that the server can be contacted. - It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer. 3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER. 4. If the problem persists, restore the file from a backup copy. 5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for further assistance. Additional Data Error value: C00000B5 Disk type: 3 Application [ Error ] 29/07/2013 9:12:57 AM Computer Name = July-HP | Source = Chrome | ID = 1 -> Description = Application [ Error ] 29/07/2013 12:04:08 PM Computer Name = July-HP | Source = System Restore | ID = 8193 -> Description = Application [ Error ] 29/07/2013 12:04:08 PM Computer Name = July-HP | Source = System Restore | ID = 8211 -> Description = Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt! [Files/Folders - Created Within 30 Days] OTS.exe -> C:\Users\July\Desktop\OTS.exe -> [2013/07/30 18:41:31 | 000,646,656 | ---- | C] (OldTimer Tools) SharePoint -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint -> [2013/07/27 04:47:17 | 000,000,000 | ---D | C] Microsoft Office -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office -> [2013/07/27 04:47:17 | 000,000,000 | ---D | C] Microsoft Synchronization Services -> C:\Program Files (x86)\Microsoft Synchronization Services -> [2013/07/27 04:28:32 | 000,000,000 | ---D | C] PCHEALTH -> C:\Windows\PCHEALTH -> [2013/07/27 04:26:13 | 000,000,000 | ---D | C] Microsoft Sync Framework -> C:\Program Files (x86)\Microsoft Sync Framework -> [2013/07/27 04:26:13 | 000,000,000 | ---D | C] Microsoft Visual Studio 8 -> C:\Program Files (x86)\Microsoft Visual Studio 8 -> [2013/07/27 04:00:35 | 000,000,000 | ---D | C] Microsoft Analysis Services -> C:\Program Files (x86)\Microsoft Analysis Services -> [2013/07/27 03:44:52 | 000,000,000 | ---D | C] Microsoft Office -> C:\Program Files (x86)\Microsoft Office -> [2013/07/27 03:43:01 | 000,000,000 | ---D | C] MSOCache -> C:\MSOCache -> [2013/07/27 03:42:10 | 000,000,000 | RH-D | C] DESIGNER -> C:\Program Files (x86)\Common Files\DESIGNER -> [2013/07/26 06:01:04 | 000,000,000 | ---D | C] SwvUpdater -> C:\Users\July\AppData\Local\SwvUpdater -> [2013/07/26 02:42:30 | 000,000,000 | ---D | C] AutoKMS -> C:\Windows\AutoKMS -> [2013/07/26 01:13:29 | 000,000,000 | ---D | C] Config.Msi -> C:\Config.Msi -> [2013/07/25 14:45:11 | 000,000,000 | -HSD | C] Microsoft Office -> C:\Program Files\Microsoft Office -> [2013/07/25 12:39:04 | 000,000,000 | ---D | C] Microsoft Toolkit -> C:\ProgramData\Microsoft Toolkit -> [2013/07/25 12:12:19 | 000,000,000 | ---D | C] MRT -> C:\Windows\SysNative\MRT -> [2013/07/25 11:38:32 | 000,000,000 | ---D | C] ERDNT -> C:\Windows\ERDNT -> [2013/07/24 19:02:31 | 000,000,000 | ---D | C] ERUNT -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ERUNT -> [2013/07/24 19:01:57 | 000,000,000 | ---D | C] ERUNT -> C:\Program Files (x86)\ERUNT -> [2013/07/24 19:01:57 | 000,000,000 | ---D | C] Mozilla Firefox -> C:\Program Files (x86)\Mozilla Firefox -> [2013/07/24 18:23:10 | 000,000,000 | ---D | C] mirc -> C:\Users\July\Documents\mirc -> [2013/07/24 00:04:46 | 000,000,000 | ---D | C] mIRC -> C:\Users\July\AppData\Roaming\mIRC -> [2013/07/24 00:01:59 | 000,000,000 | ---D | C] mIRC -> C:\Program Files (x86)\mIRC -> [2013/07/24 00:01:59 | 000,000,000 | ---D | C] SqlFire -> C:\Users\July\Documents\SqlFire -> [2013/07/22 22:55:02 | 000,000,000 | ---D | C] SqlFire -> C:\Users\July\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SqlFire -> [2013/07/22 22:54:33 | 000,000,000 | ---D | C] QUT -> C:\Program Files (x86)\QUT -> [2013/07/22 22:54:31 | 000,000,000 | ---D | C] Malwarebytes -> C:\Users\July\AppData\Roaming\Malwarebytes -> [2013/07/22 20:46:09 | 000,000,000 | ---D | C] Malwarebytes -> C:\ProgramData\Malwarebytes -> [2013/07/22 20:45:44 | 000,000,000 | ---D | C] ERUNT -> C:\Windows\ERUNT -> [2013/07/22 19:58:59 | 000,000,000 | ---D | C] ieui.dll -> C:\Windows\SysNative\ieui.dll -> [2013/07/22 14:52:33 | 000,526,336 | ---- | C] (Microsoft Corporation) ieui.dll -> C:\Windows\SysWow64\ieui.dll -> [2013/07/22 14:52:33 | 000,391,168 | ---- | C] (Microsoft Corporation) iesysprep.dll -> C:\Windows\SysWow64\iesysprep.dll -> [2013/07/22 14:52:32 | 000,109,056 | ---- | C] (Microsoft Corporation) RegisterIEPKEYs.exe -> C:\Windows\SysWow64\RegisterIEPKEYs.exe -> [2013/07/22 14:52:32 | 000,071,680 | ---- | C] (Microsoft Corporation) iesetup.dll -> C:\Windows\SysNative\iesetup.dll -> [2013/07/22 14:52:32 | 000,067,072 | ---- | C] (Microsoft Corporation) iesetup.dll -> C:\Windows\SysWow64\iesetup.dll -> [2013/07/22 14:52:32 | 000,061,440 | ---- | C] (Microsoft Corporation) ie4uinit.exe -> C:\Windows\SysNative\ie4uinit.exe -> [2013/07/22 14:52:32 | 000,051,712 | ---- | C] (Microsoft Corporation) iernonce.dll -> C:\Windows\SysNative\iernonce.dll -> [2013/07/22 14:52:32 | 000,039,936 | ---- | C] (Microsoft Corporation) iernonce.dll -> C:\Windows\SysWow64\iernonce.dll -> [2013/07/22 14:52:32 | 000,033,280 | ---- | C] (Microsoft Corporation) iesysprep.dll -> C:\Windows\SysNative\iesysprep.dll -> [2013/07/22 14:52:31 | 000,136,704 | ---- | C] (Microsoft Corporation) RegisterIEPKEYs.exe -> C:\Windows\SysNative\RegisterIEPKEYs.exe -> [2013/07/22 14:52:31 | 000,089,600 | ---- | C] (Microsoft Corporation) msfeeds.dll -> C:\Windows\SysNative\msfeeds.dll -> [2013/07/22 14:52:29 | 000,603,136 | ---- | C] (Microsoft Corporation) jscript9.dll -> C:\Windows\SysNative\jscript9.dll -> [2013/07/22 14:52:28 | 003,958,784 | ---- | C] (Microsoft Corporation) jscript.dll -> C:\Windows\SysNative\jscript.dll -> [2013/07/22 14:52:28 | 000,855,552 | ---- | C] (Microsoft Corporation) jscript.dll -> C:\Windows\SysWow64\jscript.dll -> [2013/07/22 14:52:28 | 000,690,688 | ---- | C] (Microsoft Corporation) qedit.dll -> C:\Windows\SysNative\qedit.dll -> [2013/07/22 14:06:01 | 000,624,128 | ---- | C] (Microsoft Corporation) qedit.dll -> C:\Windows\SysWow64\qedit.dll -> [2013/07/22 14:06:01 | 000,509,440 | ---- | C] (Microsoft Corporation) WMVDECOD.DLL -> C:\Windows\SysNative\WMVDECOD.DLL -> [2013/07/22 14:06:00 | 001,887,744 | ---- | C] (Microsoft Corporation) WMVDECOD.DLL -> C:\Windows\SysWow64\WMVDECOD.DLL -> [2013/07/22 14:06:00 | 001,620,480 | ---- | C] (Microsoft Corporation) DWrite.dll -> C:\Windows\SysNative\DWrite.dll -> [2013/07/22 14:03:50 | 001,643,520 | ---- | C] (Microsoft Corporation) windowviewcone -> C:\Users\July\AppData\Local\windowviewcone -> [2013/07/05 23:53:48 | 000,000,000 | ---D | C] windowviewcon -> C:\Users\July\AppData\Local\windowviewcon -> [2013/07/05 23:53:44 | 000,000,000 | ---D | C] mrrcjogu -> C:\Program Files (x86)\mrrcjogu -> [2013/07/05 23:53:27 | 000,000,000 | ---D | C] DVDVideoSoft -> C:\Program Files (x86)\Common Files\DVDVideoSoft -> [2013/07/05 10:55:38 | 000,000,000 | ---D | C] DVDVideoSoft -> C:\Program Files (x86)\DVDVideoSoft -> [2013/07/05 10:55:37 | 000,000,000 | ---D | C] 1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> [Files/Folders - Modified Within 30 Days] GoogleUpdateTaskMachineUA.job -> C:\Windows\tasks\GoogleUpdateTaskMachineUA.job -> [2013/07/30 18:49:00 | 000,000,894 | ---- | M] () GoogleUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000Core.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000Core.job -> [2013/07/30 18:46:33 | 000,000,852 | ---- | M] () OTS.exe -> C:\Users\July\Desktop\OTS.exe -> [2013/07/30 18:41:38 | 000,646,656 | ---- | M] (OldTimer Tools) GoogleUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000UA.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000UA.job -> [2013/07/30 18:41:16 | 000,000,904 | ---- | M] () FacebookUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000UA.job -> C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000UA.job -> [2013/07/30 18:39:30 | 000,000,924 | ---- | M] () Adobe Flash Player Updater.job -> C:\Windows\tasks\Adobe Flash Player Updater.job -> [2013/07/30 18:39:28 | 000,000,830 | ---- | M] () GoogleUpdateTaskMachineCore.job -> C:\Windows\tasks\GoogleUpdateTaskMachineCore.job -> [2013/07/30 18:39:23 | 000,000,890 | ---- | M] () FacebookUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000Core.job -> C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1141071901-3882197347-125836576-1000Core.job -> [2013/07/30 06:50:40 | 000,000,902 | ---- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> [2013/07/29 19:56:14 | 000,024,608 | -H-- | M] () 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> [2013/07/29 19:56:14 | 000,024,608 | -H-- | M] () AutoKMSDaily.job -> C:\Windows\tasks\AutoKMSDaily.job -> [2013/07/29 19:41:07 | 000,000,218 | ---- | M] () KMSEmulator.exe -> C:\Windows\KMSEmulator.exe -> [2013/07/29 19:41:00 | 000,151,552 | ---- | M] () PerfStringBackup.INI -> C:\Windows\SysNative\PerfStringBackup.INI -> [2013/07/29 10:25:02 | 000,782,470 | ---- | M] () perfh009.dat -> C:\Windows\SysNative\perfh009.dat -> [2013/07/29 10:25:02 | 000,654,254 | ---- | M] () perfc009.dat -> C:\Windows\SysNative\perfc009.dat -> [2013/07/29 10:25:02 | 000,122,126 | ---- | M] () AutoKMS.job -> C:\Windows\tasks\AutoKMS.job -> [2013/07/28 16:17:55 | 000,000,214 | ---- | M] () bootstat.dat -> C:\Windows\bootstat.dat -> [2013/07/28 15:57:45 | 000,067,584 | --S- | M] () hiberfil.sys -> C:\hiberfil.sys -> [2013/07/28 15:54:32 | 502,267,903 | -HS- | M] () asc_rdflag -> C:\asc_rdflag -> [2013/07/28 15:47:30 | 000,000,000 | ---- | M] () talk_user_pref.ini -> C:\talk_user_pref.ini -> [2013/07/27 19:18:21 | 000,000,093 | ---- | M] () FNTCACHE.DAT -> C:\Windows\SysNative\FNTCACHE.DAT -> [2013/07/27 12:27:04 | 004,931,984 | ---- | M] () mlfcache.dat -> C:\Windows\SysWow64\mlfcache.dat -> [2013/07/26 01:59:20 | 000,198,784 | -H-- | M] () HPCeeScheduleForJuly.job -> C:\Windows\tasks\HPCeeScheduleForJuly.job -> [2013/07/24 22:46:01 | 000,000,328 | ---- | M] () NTUSER.bak -> C:\Users\July\NTUSER.bak -> [2013/07/24 22:21:21 | 009,650,176 | ---- | M] () ERUNT AutoBackup.lnk -> C:\Users\July\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk -> [2013/07/24 19:02:01 | 000,001,066 | ---- | M] () FlashPlayerApp.exe -> C:\Windows\SysWow64\FlashPlayerApp.exe -> [2013/07/22 20:03:23 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) FlashPlayerCPLApp.cpl -> C:\Windows\SysWow64\FlashPlayerCPLApp.cpl -> [2013/07/22 20:03:23 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) epplauncher.mif -> C:\Windows\epplauncher.mif -> [2013/07/22 19:45:52 | 000,001,945 | ---- | M] () 옥션.lnk -> C:\Users\July\Application Data\Microsoft\Internet Explorer\Quick Launch\옥션.lnk -> [2013/07/05 23:54:14 | 000,002,016 | ---- | M] () G마켓.lnk -> C:\Users\July\Application Data\Microsoft\Internet Explorer\Quick Launch\G마켓.lnk -> [2013/07/05 23:54:13 | 000,002,018 | ---- | M] () 11번가.lnk -> C:\Users\July\Application Data\Microsoft\Internet Explorer\Quick Launch\11번가.lnk -> [2013/07/05 23:54:12 | 000,002,016 | ---- | M] () Adobe PNG Format CS6 Prefs -> C:\Users\July\AppData\Roaming\Adobe PNG Format CS6 Prefs -> [2013/07/01 14:09:08 | 000,000,132 | ---- | M] () termcap -> C:\Windows\SysNative\termcap -> [2013/07/01 10:03:39 | 000,000,862 | ---- | M] () 1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> [Files - No Company Name] asc_rdflag -> C:\asc_rdflag -> [2013/07/28 15:47:30 | 000,000,000 | ---- | C] () talk_user_pref.ini -> C:\talk_user_pref.ini -> [2013/07/27 19:18:21 | 000,000,093 | ---- | C] () AutoKMS.job -> C:\Windows\tasks\AutoKMS.job -> [2013/07/27 18:09:59 | 000,000,214 | ---- | C] () AutoKMSDaily.job -> C:\Windows\tasks\AutoKMSDaily.job -> [2013/07/27 18:09:57 | 000,000,218 | ---- | C] () KMSEmulator.exe -> C:\Windows\KMSEmulator.exe -> [2013/07/27 18:09:45 | 000,151,552 | ---- | C] () mlfcache.dat -> C:\Windows\SysWow64\mlfcache.dat -> [2013/07/26 00:53:31 | 000,198,784 | -H-- | C] () ERUNT AutoBackup.lnk -> C:\Users\July\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk -> [2013/07/24 19:02:01 | 000,001,066 | ---- | C] () 옥션.lnk -> C:\Users\July\Application Data\Microsoft\Internet Explorer\Quick Launch\옥션.lnk -> [2013/07/05 23:54:14 | 000,002,016 | ---- | C] () G마켓.lnk -> C:\Users\July\Application Data\Microsoft\Internet Explorer\Quick Launch\G마켓.lnk -> [2013/07/05 23:54:13 | 000,002,018 | ---- | C] () 11번가.lnk -> C:\Users\July\Application Data\Microsoft\Internet Explorer\Quick Launch\11번가.lnk -> [2013/07/05 23:54:12 | 000,002,016 | ---- | C] () termcap -> C:\Windows\SysNative\termcap -> [2013/07/01 10:03:43 | 000,000,862 | ---- | C] () miniShot.dll -> C:\Windows\SysWow64\miniShot.dll -> [2013/06/11 01:32:16 | 000,655,360 | ---- | C] () unins000.exe -> C:\Windows\SysWow64\unins000.exe -> [2013/06/11 01:23:43 | 000,635,337 | ---- | C] () unins000.dat -> C:\Windows\SysWow64\unins000.dat -> [2013/06/11 01:23:43 | 000,002,152 | ---- | C] () net.telestream.producer.xml -> C:\Users\July\AppData\Roaming\net.telestream.producer.xml -> [2013/03/08 02:50:25 | 000,002,272 | ---- | C] () resmon.resmoncfg -> C:\Users\July\AppData\Local\resmon.resmoncfg -> [2013/03/03 22:24:14 | 000,000,017 | ---- | C] () DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Users\July\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2013/02/23 14:12:38 | 000,003,584 | ---- | C] () Adobe Save for Web 13.0 Prefs -> C:\Users\July\AppData\Local\Adobe Save for Web 13.0 Prefs -> [2013/02/21 22:52:10 | 000,001,456 | ---- | C] () camcodec100.ini -> C:\Windows\camcodec100.ini -> [2013/02/15 11:29:31 | 000,000,038 | ---- | C] () CamStudio.cfg -> C:\Users\July\AppData\Roaming\CamStudio.cfg -> [2013/02/14 19:05:11 | 000,004,563 | ---- | C] () CamShapes.ini -> C:\Users\July\AppData\Roaming\CamShapes.ini -> [2013/02/14 19:05:11 | 000,000,408 | ---- | C] () CamLayout.ini -> C:\Users\July\AppData\Roaming\CamLayout.ini -> [2013/02/14 19:05:11 | 000,000,408 | ---- | C] () Camdata.ini -> C:\Users\July\AppData\Roaming\Camdata.ini -> [2013/02/14 19:05:11 | 000,000,137 | ---- | C] () Adobe PNG Format CS6 Prefs -> C:\Users\July\AppData\Roaming\Adobe PNG Format CS6 Prefs -> [2013/02/05 15:24:35 | 000,000,132 | ---- | C] () xvidcore.dll -> C:\Windows\SysWow64\xvidcore.dll -> [2013/02/02 20:25:14 | 000,819,200 | ---- | C] () xvidvfw.dll -> C:\Windows\SysWow64\xvidvfw.dll -> [2013/02/02 20:25:14 | 000,180,224 | ---- | C] () ativpsrm.bin -> C:\Windows\ativpsrm.bin -> [2012/05/22 13:30:24 | 000,000,000 | ---- | C] () atipblag.dat -> C:\Windows\SysWow64\atipblag.dat -> [2012/05/22 13:27:09 | 000,003,917 | ---- | C] () ativvsvl.dat -> C:\Windows\SysWow64\ativvsvl.dat -> [2012/04/26 03:52:40 | 000,204,952 | ---- | C] () ativvsva.dat -> C:\Windows\SysWow64\ativvsva.dat -> [2012/04/26 03:52:40 | 000,157,144 | ---- | C] () OVDecode.dll -> C:\Windows\SysWow64\OVDecode.dll -> [2012/02/11 18:18:52 | 000,054,784 | ---- | C] () kdbsdk32.dll -> C:\Windows\SysWow64\kdbsdk32.dll -> [2011/12/14 14:44:10 | 000,023,040 | ---- | C] () IusEventLog.dll -> C:\Windows\SysWow64\IusEventLog.dll -> [2011/12/09 09:14:58 | 000,001,536 | ---- | C] () hpDSTRES.DLL -> C:\Windows\hpDSTRES.DLL -> [2011/10/13 08:33:22 | 000,007,736 | ---- | C] () [Alternate Data Streams] @Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:05E9FFE5 < End of report > [/code]