Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

I downloaded a problem


  • Please log in to reply

#1
WilliamP

WilliamP

    Member

  • Member
  • PipPipPip
  • 185 posts
I have downloaded a program from a site that was obviously infested. I have run several scans to attempt a cleanup . Please look at the OTL log OTL logfile created on: 9/24/2013 7:36:27 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bill's\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.98 Gb Total Physical Memory | 6.16 Gb Available Physical Memory | 77.11% Memory free
9.93 Gb Paging File | 7.77 Gb Available in Paging File | 78.24% Paging File free
Paging file location(s): c:\pagefile.sys 2000 2500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 238.37 Gb Total Space | 160.59 Gb Free Space | 67.37% Space Free | Partition Type: NTFS
Drive D: | 149.05 Gb Total Space | 131.34 Gb Free Space | 88.12% Space Free | Partition Type: NTFS
Drive E: | 149.04 Gb Total Space | 103.84 Gb Free Space | 69.67% Space Free | Partition Type: NTFS

Computer Name: LOU | User Name: Bill's | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2013/09/24 19:29:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bill's\Desktop\OTL.exe
PRC - [2013/09/21 16:50:23 | 000,295,512 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2013/09/03 08:43:17 | 000,084,024 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2013/09/03 08:42:30 | 000,815,160 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe
PRC - [2013/09/03 08:42:15 | 000,622,648 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
PRC - [2013/09/03 08:42:11 | 000,108,088 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2013/09/03 08:42:10 | 000,347,192 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2013/08/14 15:19:24 | 000,039,056 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/05/11 06:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/07/17 11:51:14 | 004,942,336 | ---- | M] (FNet Co., Ltd.) -- C:\Program Files (x86)\XFastUsb\XFastUsb.exe
PRC - [2012/05/30 02:08:28 | 001,842,384 | ---- | M] (Gadwin Systems, Inc) -- C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
PRC - [2012/04/03 13:33:00 | 000,940,168 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
PRC - [2012/04/03 13:27:16 | 001,087,608 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
PRC - [2012/04/03 13:26:14 | 001,273,448 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
PRC - [2012/03/27 23:49:11 | 000,140,456 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
PRC - [2012/02/20 15:54:08 | 001,666,560 | ---- | M] (AimerSoft) -- C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
PRC - [2011/09/14 22:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2011/05/20 10:10:26 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011/05/20 10:10:12 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/09/30 03:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2007/02/04 12:02:14 | 000,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe


========== Modules (No Company Name) ==========

MOD - [2013/09/10 15:54:59 | 011,914,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\6ebbfafc5521934f7e1c154937a2788b\System.Web.ni.dll
MOD - [2013/09/10 15:54:56 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d473c19e69818875b9c739cad8f386a5\System.Runtime.Remoting.ni.dll
MOD - [2013/08/14 11:43:19 | 000,018,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\d187afdee972b70222b76bd6aed1f742\PresentationFramework-SystemXml.ni.dll
MOD - [2013/08/14 11:42:07 | 000,492,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\97ce162bb354fcf9c8d9eae8252ee216\IAStorUtil.ni.dll
MOD - [2013/08/14 10:42:23 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
MOD - [2013/08/14 10:42:20 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013/08/14 10:42:18 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
MOD - [2013/08/14 10:42:16 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll
MOD - [2013/08/14 10:42:12 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1f6f220f9efe936d1158c79b9d4b451f\WindowsBase.ni.dll
MOD - [2013/08/14 10:42:10 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013/08/14 10:40:16 | 018,545,152 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\775d60de39c6f0b49f1640c4e6c8de09\PresentationFramework.ni.dll
MOD - [2013/08/14 10:40:10 | 010,926,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\8e3d6080e8eaaaf28389f3742ff9acdd\PresentationCore.ni.dll
MOD - [2013/08/14 10:40:09 | 012,698,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\5f27b142c87d877c73ac245ab951a773\System.Windows.Forms.ni.dll
MOD - [2013/08/14 10:40:07 | 006,998,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\a35e871c52b7a7aee64c969c02acfaa0\System.Core.ni.dll
MOD - [2013/08/14 10:40:06 | 007,566,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\82d58d49946f82eb56bae40f3b097784\System.Xml.ni.dll
MOD - [2013/08/14 10:40:06 | 000,786,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\639cec73538f6ad7130372259464cc57\System.Runtime.Remoting.ni.dll
MOD - [2013/08/14 10:40:05 | 003,910,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\782db4c31adf3046c62e43b8f11453c1\WindowsBase.ni.dll
MOD - [2013/08/14 10:40:05 | 000,964,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\2fd755147672c80dd4b13978933f8a3d\System.Configuration.ni.dll
MOD - [2013/08/14 10:40:04 | 001,880,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\f4fff5d6e716c439b944025d3994170d\System.Xaml.ni.dll
MOD - [2013/08/14 10:40:04 | 001,631,744 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\cceaf9d7891fc325a90473aa9a661661\System.Drawing.ni.dll
MOD - [2013/08/14 10:40:04 | 000,462,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\7dd4cd3e4768d2aa55af60c838790088\PresentationFramework.Aero.ni.dll
MOD - [2013/08/14 10:40:03 | 009,937,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ac79b74f022d9a096de2b884f4249543\System.ni.dll
MOD - [2013/07/10 12:46:50 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\22d36f517c7545fdb65ccddae680a3eb\IAStorCommon.ni.dll
MOD - [2013/07/10 12:39:24 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013/07/10 12:36:49 | 000,189,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\f16e993b7058b005bbf273007fadf95b\UIAutomationTypes.ni.dll
MOD - [2013/07/10 12:29:04 | 016,547,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\bf2ecabcd96ec8238dc385b0a3ffa084\mscorlib.ni.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/05/27 01:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012/12/19 15:56:00 | 000,240,640 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012/07/11 14:54:58 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2011/07/04 15:19:30 | 000,395,136 | ---- | M] (cFos Software GmbH) [Auto | Running] -- C:\Program Files\ASRock\XFast LAN\spd.exe -- (cFosSpeedS)
SRV - [2013/09/21 17:45:08 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/09/19 18:25:31 | 000,296,448 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe -- (SystemStoreService)
SRV - [2013/09/17 15:05:35 | 000,118,680 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/09/03 08:43:17 | 000,084,024 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2013/09/03 08:42:30 | 000,815,160 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe -- (AntiVirWebService)
SRV - [2013/09/03 08:42:15 | 000,622,648 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe -- (AntiVirMailService)
SRV - [2013/09/03 08:42:11 | 000,108,088 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2013/08/14 15:19:24 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/05/11 06:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/09 01:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012/03/27 23:49:11 | 000,140,456 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2011/09/14 22:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2011/05/20 10:10:26 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/11/20 23:24:51 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/11/20 23:24:51 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010/11/20 23:24:51 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010/09/30 03:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/09/03 08:43:34 | 000,132,088 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2013/09/03 08:43:34 | 000,105,344 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2013/03/25 08:17:37 | 000,028,600 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2013/01/08 00:08:54 | 000,374,472 | ---- | M] (TeraByte, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TBIMount.sys -- (TBIMount)
DRV:64bit: - [2012/12/19 16:48:48 | 011,278,336 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012/12/19 15:32:54 | 000,552,960 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/11/06 07:11:52 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012/10/30 23:20:58 | 000,034,424 | ---- | M] (TeraByte, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\phylock.sys -- (phylock)
DRV:64bit: - [2012/09/28 22:52:10 | 000,075,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d)
DRV:64bit: - [2012/08/23 10:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 10:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/23 10:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/15 20:11:32 | 000,031,808 | ---- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FNETTBOH_305.SYS -- (FNETTBOH_305)
DRV:64bit: - [2012/07/17 11:51:14 | 000,015,936 | ---- | M] (FNet Co., Ltd.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\FNETURPX.SYS -- (FNETURPX)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/08/01 15:59:06 | 000,045,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2011/08/01 15:59:06 | 000,023,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nuidfltr.sys -- (NuidFltr)
DRV:64bit: - [2011/07/22 12:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 17:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/07/04 15:19:34 | 001,632,128 | ---- | M] (cFos Software GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cfosspeed6.sys -- (cFosSpeed)
DRV:64bit: - [2011/06/10 07:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/05/20 09:53:44 | 000,557,848 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011/03/30 03:15:00 | 001,254,464 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AE2500w764.sys -- (Linksys_adapter_H)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/02/08 01:30:52 | 000,064,512 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2011/02/08 01:30:52 | 000,039,936 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronHub3.sys -- (EtronHub3)
DRV:64bit: - [2010/11/20 23:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/10/19 23:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/09/30 23:35:06 | 000,302,120 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv91xx.sys -- (mv91xx)
DRV:64bit: - [2010/06/11 14:37:14 | 000,015,368 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AsrAppCharger.sys -- (AsrAppCharger)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/11/17 19:12:00 | 000,032,344 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/08/14 09:45:24 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2009/08/14 09:45:24 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = http://search.tb.ask...r={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0D F2 5A 06 A7 C9 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = http://search.tb.ask...r={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.selectedEngine: "Bing"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledAddons: %7B7b13ec3e-999a-4b70-b9cb-2617b8323822%7D:3.20.0.4
FF - prefs.js..extensions.enabledAddons: %7Be001c731-5e37-4538-a5cb-8168736a2360%7D:0.9.9.119
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@DailyBibleGuide.com/Plugin: C:\Program Files (x86)\DailyBibleGuide\bar\1.bin\NP2vStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files (x86)\Common Files\Motive\npMotive.dll (Motive, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\DailyBibleGuide\bar\1.bin [2013/02/08 22:31:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/09/21 16:50:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/09/21 16:50:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/07/03 16:06:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bill's\AppData\Roaming\mozilla\Extensions
[2013/09/21 21:31:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bill's\AppData\Roaming\mozilla\Firefox\Profiles\4cndd157.default\extensions
[2013/09/10 08:57:32 | 000,000,000 | ---D | M] (Zynga Community Toolbar) -- C:\Users\Bill's\AppData\Roaming\mozilla\Firefox\Profiles\4cndd157.default\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
[2013/09/21 21:03:06 | 000,000,000 | ---D | M] (Bitdefender QuickScan) -- C:\Users\Bill's\AppData\Roaming\mozilla\Firefox\Profiles\4cndd157.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2013/09/19 18:25:18 | 000,000,000 | ---D | M] (Web Check) -- C:\Users\Bill's\AppData\Roaming\mozilla\Firefox\Profiles\4cndd157.default\extensions\WebCheck
[2012/12/29 19:36:33 | 000,009,614 | ---- | M] () -- C:\Users\Bill's\AppData\Roaming\mozilla\firefox\profiles\4cndd157.default\searchplugins\my-web-search.xml
[2013/09/19 18:24:37 | 000,001,292 | ---- | M] () -- C:\Users\Bill's\AppData\Roaming\mozilla\firefox\profiles\4cndd157.default\searchplugins\visualbee.xml
[2013/09/19 18:24:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\Extensions
[2013/09/17 15:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/09/17 15:05:35 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - homepage: http://www.google.com
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee\0.1\
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [WrtMon.exe] C:\Windows\SysNative\spool\drivers\x64\3\WrtMon.exe ()
O4 - HKLM..\Run: [Aimersoft Helper Compact.exe] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe (AimerSoft)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [ReminderApp] C:\Program Files (x86)\Nova Development\Scrapbook Factory Deluxe 5.0\ReminderApp.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [XFastUsb] C:\Program Files (x86)\XFastUsb\XFastUsb.exe (FNet Co., Ltd.)
O4 - HKCU..\Run: [ASRockXTU] File not found
O4 - HKCU..\Run: [Gadwin PrintScreen] C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Gadwin Systems, Inc)
O4 - HKCU..\Run: [PhotoshopElements8SyncAgent] C:\Program Files (x86)\Adobe\Elements 10 Organizer\ElementsOrganizerSyncAgent.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [zASRockInstantBoot] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000019 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O12 - Plugin for: .spop - C:\Program Files (x86)\Internet Explorer\Plugins\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0F993D91-102B-47A1-A7B7-72983BAFE6F5}: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{27189063-7D8A-4B13-B2AF-186D36120BC2}: DhcpNameServer = 10.0.0.1
O18:64bit: - Protocol\Handler\belarc - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
O20 - AppInit_DLLs: (c:\progra~3\bitguard\261673~1.238\{c16c1~1\bitguard.dll) - File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{a8778776-c554-11e1-8459-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{a8778776-c554-11e1-8459-806e6f6e6963}\Shell\AutoRun\command - "" = D:\ASRSetup.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell\install\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell\readfile\command - "" = hh.exe readme.htm
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/09/24 19:29:55 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Bill's\Desktop\OTL.exe
[2013/09/24 16:41:20 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{1662E5DD-3CA3-4C91-94B3-42FB6B6ACA8B}
[2013/09/23 11:10:03 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{2DF07E39-DB84-4EC4-B20E-93390C4626F9}
[2013/09/22 15:57:26 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{90A30672-1F7D-450F-9BE2-32935E4DD87E}
[2013/09/21 21:20:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2013/09/21 16:53:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab
[2013/09/21 16:53:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ClipGrab
[2013/09/21 16:50:42 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Roaming\RealNetworks
[2013/09/21 16:50:31 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2013/09/21 16:50:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RealNetworks
[2013/09/21 16:50:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2013/09/21 16:50:26 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013/09/21 16:50:24 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013/09/21 16:50:24 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013/09/21 16:50:23 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/09/21 16:50:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2013/09/21 09:17:56 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{B6307EE3-B38E-40AD-A7D4-714BEC7FC1D5}
[2013/09/19 19:27:19 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\TubeBox
[2013/09/19 18:31:12 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\Freetec
[2013/09/19 18:31:12 | 000,000,000 | ---D | C] -- C:\Users\Bill's\Documents\Free YouTube Download Manager
[2013/09/19 18:25:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SoftwareUpdater
[2013/09/19 18:25:17 | 000,020,312 | ---- | C] (Systweak Inc., (www.systweak.com)) -- C:\Windows\SysNative\roboot64.exe
[2013/09/19 18:25:17 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Roaming\Systweak
[2013/09/19 18:25:16 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013/09/19 18:25:07 | 000,000,000 | -HSD | C] -- C:\AI_RecycleBin
[2013/09/19 18:25:06 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Roaming\Strongvault
[2013/09/19 18:25:02 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\avgchrome
[2013/09/19 18:24:49 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\VisualBeeExe
[2013/09/19 18:24:15 | 000,000,000 | ---D | C] -- C:\ProgramData\VisualBee
[2013/09/19 18:24:13 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\emaze
[2013/09/19 18:22:20 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\DownloadGuide
[2013/09/19 13:59:29 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{1BF81A77-1F98-47C1-9839-5615BD56158A}
[2013/09/18 14:41:36 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{B28E47B5-CA51-4270-B587-A06287F70D55}
[2013/09/17 15:05:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/09/15 15:47:33 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{9EF22693-CDE4-4E18-8851-723C09A00133}
[2013/09/14 12:50:30 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{03132BBC-CBA8-4F78-8ADA-D200D17FEBFE}
[2013/09/13 10:39:24 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{0F695C80-140D-4C84-B481-2C3544D90B49}
[2013/09/12 09:35:05 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{89CA3B56-F9E2-4EF6-BD5E-C87378646FFA}
[2013/09/11 11:19:22 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{427AB37F-C8CA-4719-B712-31B1ACD63D64}
[2013/09/10 21:01:04 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{9EDAAA6C-2D18-4E89-B274-50467E069A73}
[2013/09/10 17:13:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aimersoft
[2013/09/10 17:13:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Aimersoft
[2013/09/10 16:57:37 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\Aimersoft
[2013/09/10 16:57:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Aimersoft
[2013/09/10 16:57:31 | 000,000,000 | ---D | C] -- C:\Users\Bill's\Documents\Aimersoft DVD Creator
[2013/09/10 15:57:36 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/09/10 15:57:36 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/09/10 15:57:35 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/09/10 15:57:35 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/09/10 15:57:35 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/09/10 15:57:35 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/09/10 15:57:35 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/09/10 15:57:35 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/09/10 15:57:35 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/09/10 15:57:35 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/09/10 15:57:35 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/09/10 15:57:35 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/09/10 15:57:35 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/09/10 15:57:35 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/09/10 15:57:34 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/09/10 15:51:29 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013/09/10 15:51:26 | 005,550,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/09/10 15:51:26 | 003,968,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013/09/10 15:51:26 | 003,913,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013/09/10 15:51:26 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013/09/10 15:51:25 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013/09/10 15:51:25 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/09/10 15:51:25 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013/09/10 15:51:25 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013/09/10 15:51:25 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/09/10 15:51:25 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/09/10 15:51:25 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013/09/10 15:51:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013/09/10 15:51:25 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/09/10 15:51:25 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013/09/10 15:51:25 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/09/10 15:51:25 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013/09/10 15:51:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/09/10 15:51:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2013/09/10 15:51:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2013/09/10 15:51:25 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013/09/10 15:51:25 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013/09/10 15:51:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013/09/10 15:51:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013/09/10 15:51:25 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013/09/10 15:51:25 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/09/10 15:51:17 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2013/09/10 07:40:14 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{735D6658-4CA1-47C4-BFDE-8CF44A6BD8F5}
[2013/09/09 10:56:47 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{DD4BD231-FB36-411F-BC21-3778E5666A84}
[2013/09/06 15:27:41 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{AEE5EE19-4754-4E62-BF49-5C7094F4DDF0}
[2013/09/05 10:53:23 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{93172C2B-A810-41AB-871B-2634980B5B34}
[2013/09/04 10:00:18 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{6E84FD33-B0B9-4D57-8B3D-CDB250C85AEB}
[2013/09/03 20:50:03 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{0ADA3967-607F-4BB2-ADC9-CCBCB098A39E}
[2013/09/03 08:37:16 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{EDB07D75-133D-4CF0-82F7-8493582AD1B4}
[2013/09/02 12:31:30 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{670301E4-940F-4DB9-A104-4CDB88A34E68}
[2013/09/01 15:34:02 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{C501B2E3-CC21-4A75-8B3F-3A6FC456B91D}
[2013/08/31 17:10:21 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{ADA51B53-E180-4CFC-A4AB-9D5C9739CD34}
[2013/08/29 10:17:31 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{BAB2F4F4-FD0E-4721-B488-BB4F9C4749F6}
[2013/08/28 10:03:23 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{26D2AC33-29A9-47B9-B119-3FF05ECD70C1}
[2013/08/27 09:59:07 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{42A70DF8-174F-4320-A6C1-F68FDF155353}
[2013/08/26 12:20:35 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\{959CD325-7700-476B-80A7-6E1398E20D8C}
[2012/08/04 23:37:52 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\Users\Bill's\cleanup_tool.exe

========== Files - Modified Within 30 Days ==========

[2013/09/24 19:30:33 | 000,001,813 | ---- | M] () -- C:\Users\Bill's\Documents\OTL - Shortcut.lnk
[2013/09/24 19:29:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bill's\Desktop\OTL.exe
[2013/09/24 19:25:08 | 000,029,120 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/24 19:25:08 | 000,029,120 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/24 19:22:06 | 000,878,532 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/09/24 19:22:06 | 000,730,836 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/09/24 19:22:06 | 000,147,318 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/09/24 19:17:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/24 17:45:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/09/24 17:36:22 | 000,024,576 | ---- | M] () -- C:\Users\Bill's\Documents\1ST GRADE SUNDAY SCHOOL.AB2
[2013/09/24 17:36:03 | 000,000,081 | ---- | M] () -- C:\Windows\PARSONS.INI
[2013/09/23 18:04:21 | 000,257,015 | ---- | M] () -- C:\Users\Bill's\Documents\jeannie.eml
[2013/09/23 16:21:07 | 001,050,112 | ---- | M] () -- C:\Users\Bill's\Documents\POSTCARD HIGH ATTEND DAY.pcr
[2013/09/23 14:34:57 | 034,774,114 | ---- | M] () -- C:\Users\Bill's\Documents\Kenny Rogers & Dolly Parton - You Cant Make Old Friends (Official Music Video).flv
[2013/09/22 19:28:12 | 024,255,796 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Pictures.sft
[2013/09/22 19:19:17 | 025,522,598 | ---- | M] () -- C:\Users\Bill's\Documents\First Grade SS small pictures with names.sft
[2013/09/22 19:12:35 | 025,524,750 | ---- | M] () -- C:\Users\Bill's\Documents\1st grade kids with names.sft
[2013/09/22 15:51:13 | 018,398,932 | ---- | M] () -- C:\Users\Bill's\Documents\SS in service 878.sbk
[2013/09/21 21:23:26 | 000,000,085 | ---- | M] () -- C:\Windows\wininit.ini
[2013/09/21 17:45:07 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/09/21 17:45:07 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/09/21 16:54:54 | 011,555,314 | ---- | M] () -- C:\Users\Bill's\Documents\Who Am I --Elvis Presley with lyrics.flv
[2013/09/21 16:53:58 | 000,001,011 | ---- | M] () -- C:\Users\Public\Desktop\ClipGrab.lnk
[2013/09/21 16:50:26 | 000,201,872 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013/09/21 16:50:24 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013/09/21 16:50:24 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013/09/21 16:50:23 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/09/19 18:40:55 | 000,000,822 | ---- | M] () -- C:\Windows\SysNative\.crusader
[2013/09/19 14:22:21 | 000,014,336 | ---- | M] () -- C:\Users\Bill's\Documents\SS ABSENT PEOPLE.AB2
[2013/09/19 14:22:19 | 000,023,552 | ---- | M] () -- C:\Users\Bill's\Documents\SUNDAY SCHOOL Inreach.AB2
[2013/09/19 14:22:18 | 000,020,480 | ---- | M] () -- C:\Users\Bill's\Documents\SUNDAY SCHOOL.AB2
[2013/09/18 15:38:52 | 000,148,480 | ---- | M] () -- C:\Users\Bill's\Documents\Lou Chuch tag.lbl
[2013/09/17 13:57:31 | 017,990,466 | ---- | M] () -- C:\Users\Bill's\Documents\1st grade small pictures.sft
[2013/09/17 12:19:02 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/09/16 22:46:54 | 016,514,254 | ---- | M] () -- C:\Users\Bill's\Documents\SS kids cross.sbk
[2013/09/16 16:50:10 | 017,709,202 | ---- | M] () -- C:\Users\Bill's\Documents\in service SS page 5 Norma.sbk
[2013/09/15 14:20:33 | 016,267,784 | ---- | M] () -- C:\Users\Bill's\Documents\in-service 77.sbk
[2013/09/13 15:33:48 | 001,806,336 | ---- | M] () -- C:\Users\Bill's\Desktop\Bill's's Quicken Data.QDF-backup
[2013/09/12 17:21:41 | 000,198,656 | ---- | M] () -- C:\Users\Bill's\Documents\angle tags.sig
[2013/09/11 16:58:19 | 000,018,432 | ---- | M] () -- C:\Users\Bill's\Documents\names on front of folder.lbl
[2013/09/11 12:14:00 | 000,316,778 | ---- | M] () -- C:\Users\Bill's\Documents\Old & New Testament Header.sbk
[2013/09/11 10:58:33 | 000,353,156 | ---- | M] () -- C:\Users\Bill's\Documents\Books of the bible.sbk
[2013/09/10 17:13:31 | 000,001,180 | ---- | M] () -- C:\Users\Bill's\Desktop\Aimersoft DVD Creator.lnk
[2013/09/10 16:25:08 | 000,001,945 | ---- | M] () -- C:\Users\Public\Desktop\CDBurnerXP.lnk
[2013/09/10 16:24:14 | 001,679,112 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/09/09 19:29:16 | 000,225,280 | ---- | M] () -- C:\Users\Bill's\Documents\half envelope 2.env
[2013/09/09 18:01:33 | 000,848,896 | ---- | M] () -- C:\Users\Bill's\Documents\teacher.env
[2013/09/08 18:08:07 | 015,170,832 | ---- | M] () -- C:\Users\Bill's\Documents\in-service SS 6.sbk
[2013/09/06 16:51:39 | 000,087,552 | ---- | M] () -- C:\Users\Bill's\Documents\SS name tags.lbl
[2013/09/03 08:43:34 | 000,132,088 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys
[2013/09/03 08:43:34 | 000,105,344 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2013/09/03 08:43:34 | 000,081,112 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avnetflt.sys
[2013/09/01 21:08:13 | 001,029,284 | -H-- | M] () -- C:\Windows\SysWow64\mlfcache.dat
[2013/09/01 20:47:36 | 000,848,896 | ---- | M] () -- C:\Users\Bill's\Documents\half card envelope.env
[2013/09/01 16:14:20 | 000,104,960 | ---- | M] () -- C:\Users\Bill's\Documents\Elsa Baker.env
[2013/09/01 15:42:47 | 018,455,570 | ---- | M] () -- C:\Users\Bill's\Documents\SS pictures In Service.sbk
[2013/09/01 14:48:11 | 014,297,484 | ---- | M] () -- C:\Users\Bill's\Documents\in-service SS 5.sbk
[2013/09/01 14:28:57 | 015,324,336 | ---- | M] () -- C:\Users\Bill's\Documents\in-service SS 4.sbk
[2013/09/01 14:03:21 | 015,310,536 | ---- | M] () -- C:\Users\Bill's\Documents\SS in-service 3.sbk
[2013/09/01 13:27:02 | 017,121,156 | ---- | M] () -- C:\Users\Bill's\Documents\SS In-service 2.sbk
[2013/08/31 08:40:30 | 000,034,304 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Thanksgiving.lbl
[2013/08/30 16:55:28 | 000,025,088 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept - Oct 2013.lbl
[2013/08/28 22:32:30 | 000,323,072 | ---- | M] () -- C:\Users\Bill's\Documents\half envelope example.env
[2013/08/28 21:26:17 | 000,019,456 | ---- | M] () -- C:\Users\Bill's\Documents\LIVE VERSES (COVER).lbl
[2013/08/28 21:01:32 | 000,027,648 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept 2013.lbl
[2013/08/28 20:59:19 | 000,029,184 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov. 2013.lbl
[2013/08/28 20:55:55 | 000,034,304 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov 2nd one.lbl
[2013/08/28 20:27:27 | 000,019,968 | ---- | M] () -- C:\Users\Bill's\Documents\ss verse 0001.lbl
[2013/08/28 19:17:49 | 000,019,456 | ---- | M] () -- C:\Users\Bill's\Documents\SS Leap of Faith - Frog.lbl

========== Files Created - No Company Name ==========

[2013/09/24 19:30:33 | 000,001,813 | ---- | C] () -- C:\Users\Bill's\Documents\OTL - Shortcut.lnk
[2013/09/23 17:53:41 | 000,257,015 | ---- | C] () -- C:\Users\Bill's\Documents\jeannie.eml
[2013/09/23 16:28:19 | 000,024,576 | ---- | C] () -- C:\Users\Bill's\Documents\1ST GRADE SUNDAY SCHOOL.AB2
[2013/09/23 16:16:07 | 001,050,112 | ---- | C] () -- C:\Users\Bill's\Documents\POSTCARD HIGH ATTEND DAY.pcr
[2013/09/23 14:35:47 | 034,774,114 | ---- | C] () -- C:\Users\Bill's\Documents\Kenny Rogers & Dolly Parton - You Cant Make Old Friends (Official Music Video).flv
[2013/09/22 19:19:10 | 025,522,598 | ---- | C] () -- C:\Users\Bill's\Documents\First Grade SS small pictures with names.sft
[2013/09/22 15:51:12 | 018,398,932 | ---- | C] () -- C:\Users\Bill's\Documents\SS in service 878.sbk
[2013/09/21 21:23:25 | 000,000,085 | ---- | C] () -- C:\Windows\wininit.ini
[2013/09/21 16:55:19 | 011,555,314 | ---- | C] () -- C:\Users\Bill's\Documents\Who Am I --Elvis Presley with lyrics.flv
[2013/09/21 16:53:58 | 000,001,011 | ---- | C] () -- C:\Users\Public\Desktop\ClipGrab.lnk
[2013/09/19 18:40:55 | 000,000,822 | ---- | C] () -- C:\Windows\SysNative\.crusader
[2013/09/19 18:24:13 | 000,001,230 | ---- | C] () -- C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
[2013/09/18 16:27:50 | 025,524,750 | ---- | C] () -- C:\Users\Bill's\Documents\1st grade kids with names.sft
[2013/09/17 13:42:10 | 017,990,466 | ---- | C] () -- C:\Users\Bill's\Documents\1st grade small pictures.sft
[2013/09/17 09:33:47 | 024,255,796 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Pictures.sft
[2013/09/16 21:38:51 | 016,514,254 | ---- | C] () -- C:\Users\Bill's\Documents\SS kids cross.sbk
[2013/09/15 14:09:50 | 016,267,784 | ---- | C] () -- C:\Users\Bill's\Documents\in-service 77.sbk
[2013/09/12 17:21:41 | 000,198,656 | ---- | C] () -- C:\Users\Bill's\Documents\angle tags.sig
[2013/09/11 16:58:19 | 000,018,432 | ---- | C] () -- C:\Users\Bill's\Documents\names on front of folder.lbl
[2013/09/11 12:13:37 | 000,316,778 | ---- | C] () -- C:\Users\Bill's\Documents\Old & New Testament Header.sbk
[2013/09/10 17:13:31 | 000,001,180 | ---- | C] () -- C:\Users\Bill's\Desktop\Aimersoft DVD Creator.lnk
[2013/09/09 17:20:08 | 000,225,280 | ---- | C] () -- C:\Users\Bill's\Documents\half envelope 2.env
[2013/09/08 17:57:22 | 015,170,832 | ---- | C] () -- C:\Users\Bill's\Documents\in-service SS 6.sbk
[2013/09/01 21:17:36 | 017,709,202 | ---- | C] () -- C:\Users\Bill's\Documents\in service SS page 5 Norma.sbk
[2013/09/01 21:08:13 | 001,029,284 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2013/09/01 14:29:17 | 014,297,484 | ---- | C] () -- C:\Users\Bill's\Documents\in-service SS 5.sbk
[2013/09/01 14:04:31 | 015,324,336 | ---- | C] () -- C:\Users\Bill's\Documents\in-service SS 4.sbk
[2013/09/01 13:35:40 | 015,310,536 | ---- | C] () -- C:\Users\Bill's\Documents\SS in-service 3.sbk
[2013/08/31 19:03:22 | 017,121,156 | ---- | C] () -- C:\Users\Bill's\Documents\SS In-service 2.sbk
[2013/08/31 08:33:40 | 000,034,304 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Thanksgiving.lbl
[2013/08/29 16:21:35 | 000,353,156 | ---- | C] () -- C:\Users\Bill's\Documents\Books of the bible.sbk
[2013/08/28 21:26:17 | 000,019,456 | ---- | C] () -- C:\Users\Bill's\Documents\LIVE VERSES (COVER).lbl
[2013/08/28 20:51:09 | 000,034,304 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov 2nd one.lbl
[2013/08/28 20:48:25 | 000,029,184 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov. 2013.lbl
[2013/08/28 20:36:00 | 000,025,088 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept - Oct 2013.lbl
[2013/08/28 20:33:23 | 000,027,648 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept 2013.lbl
[2013/08/28 20:27:27 | 000,019,968 | ---- | C] () -- C:\Users\Bill's\Documents\ss verse 0001.lbl
[2013/08/28 19:17:49 | 000,019,456 | ---- | C] () -- C:\Users\Bill's\Documents\SS Leap of Faith - Frog.lbl
[2013/08/07 09:52:10 | 000,002,708 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp2.html
[2013/05/21 10:19:25 | 000,113,224 | ---- | C] () -- C:\Users\Bill's\g2ax_customer_downloadhelper_win32_x86.exe
[2013/03/01 19:55:33 | 000,000,081 | ---- | C] () -- C:\Windows\PARSONS.INI
[2013/02/13 18:38:44 | 000,090,784 | ---- | C] () -- C:\Windows\tbicd2hd.exe
[2012/11/06 12:24:33 | 000,005,670 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp5.html
[2012/07/17 11:51:19 | 000,000,003 | ---- | C] () -- C:\Users\Bill's\AppData\Local\user_data.ini
[2012/07/14 10:59:21 | 000,007,073 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp7.html
[2012/07/13 09:16:05 | 000,009,407 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp8.html
[2012/07/05 11:38:08 | 000,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll
[2012/07/05 11:37:23 | 000,000,424 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2012/07/04 19:47:10 | 000,000,432 | ---- | C] () -- C:\Windows\hpbj1100.ini
[2012/07/04 13:49:06 | 000,870,654 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/07/04 13:23:24 | 000,000,126 | ---- | C] () -- C:\Windows\QUICKEN.INI
[2012/07/04 10:10:59 | 000,001,955 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp1.html
[2012/07/03 15:47:26 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/07/03 15:26:13 | 000,053,299 | R--- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2012/06/11 12:50:16 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/06/11 12:50:16 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/05/02 14:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/25 22:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 21:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Files - Unicode (All) ==========
[2013/09/21 14:18:06 | 098,547,399 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\෭頗蹬‰
[2013/09/21 08:18:15 | 098,547,399 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\෭頗蹬‰

========== Alternate Data Streams ==========

@Alternate Data Stream - 690 bytes -> C:\Users\Bill's\Documents\jeannie.eml:OECustomProperty
@Alternate Data Stream - 192 bytes -> C:\ProgramData\TEMP:CF08C48A

< End of report >
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
Download : ADWCleaner to your desktop.

NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs, pause your anti-virus and run AdwCleaner (Vista or Win 7 => right click and Run As Administrator).

Posted Image

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder.



Junkware-Removal-Tool

Please download Junkware Removal Tool to your desktop.
  • Pause your anti-virus. Close all browsers.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


Download aswMBR.exe to your desktop.
Run aswMBR.exe (Vista or Win 7 => right click and Run As Administrator)

uncheck trace disk IO calls
Click the "Scan" button to start scan (Accept the Avast Engine)
On completion of the scan if the Fix button is enabled (not the FixMBR button) press it and then run a new scan and click save log, save it to your desktop and post in your next reply
If the Fix button is not enabled then just click save log, save it to your desktop and post in your next reply


Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Attach the file to your next post.

(If you do not already have OTL then: Download OTL from
http://www.geekstogo...timers-list-it/
and Save it to your desktop.)

Copy the text in the code box:

DRIVES
nnetsvcs
%SYSTEMDRIVE%\*.exe
%systemroot%\assembly\GAC_32\*.ini
%systemroot%\assembly\GAC_64\*.ini
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.exe
%APPDATA%\*.
/md5start
rsvpsp.dll
pnrpnsp.dll 
nwprovau.dll
nlaapi.dll
napinsp.dll
mswsock.dll
winrnr.dll
wshelper.dll
services.exe
atapi.sys
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
csrss.exe
PrintIsolationHost.exe
consrv.dll
user32.dll
/md5stop
dir C:\ /S /A:L /C
C:\Windows\assembly\tmp\U\*.* /s
%systemroot%\*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%ProgramFiles%\WINDOWS NT\*.* /s
%systemroot%\system32\drivers\*.sys /lockedfiles
CREATERESTOREPOINT

Run OTL (Vista or Win 7 => right click and Run As Administrator)

Paste (Ctrl + v) the copied text in the box where it says Custom Scan/Fixes

Select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.

Ron
  • 0

#3
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
My ADWCleaner log.# AdwCleaner v3.005 - Report created 25/09/2013 at 11:29:03
# Updated 22/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Bill's - LOU
# Running from : C:\Users\Bill's\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : SystemStoreService

***** [ Files / Folders ] *****

File Found : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\\invalidprefs.js
File Found : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\searchplugins\my-web-search.xml
File Found : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\user.js
File Found : C:\Windows\System32\roboot64.exe
File Found : C:\Windows\System32\Tasks\BitGuard
File Found : C:\Windows\System32\Tasks\EPUpdater
File Found : C:\Windows\System32\Tasks\Software Updater
File Found : C:\Windows\System32\Tasks\Software Updater Ui
Folder Found : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\Extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
Folder Found C:\Program Files (x86)\SoftwareUpdater
Folder Found C:\ProgramData\visualbee
Folder Found C:\Users\Bill's\AppData\Local\DownloadGuide
Folder Found C:\Users\Bill's\AppData\Local\iac
Folder Found C:\Users\Bill's\AppData\Local\PackageAware
Folder Found C:\Users\Bill's\AppData\Local\visualbeeexe
Folder Found C:\Users\Bill's\AppData\LocalLow\visualbee
Folder Found C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\ConduitCommon
Folder Found C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\CT2438727
Folder Found C:\Users\Bill's\AppData\Roaming\Systweak

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\e6ddd8e66fe444
Key Found : [x64] HKCU\Software\Conduit
Key Found : HKLM\SOFTWARE\e6ddd8e66fe444
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6C1B9042-3D32-49A1-916B-0AA3A9CDDFD6}
Key Found : HKLM\Software\systweak

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\prefs.js ]

Line Found : user_pref("CT2438727..clientLogIsEnabled", false);
Line Found : user_pref("CT2438727..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Found : user_pref("CT2438727..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Found : user_pref("CT2438727.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Found : user_pref("CT2438727.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Found : user_pref("CT2438727.BrowserCompStateIsOpen_1000515", true);
Line Found : user_pref("CT2438727.CT2438727", "CT2438727");
Line Found : user_pref("CT2438727.CT2438727.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2438727&octid=CT2438727&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_[...]
Line Found : user_pref("CT2438727.ConfigurationLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.CurrentServerDate", "25-9-2013");
Line Found : user_pref("CT2438727.DSInstall", false);
Line Found : user_pref("CT2438727.DialogsAlignMode", "LTR");
Line Found : user_pref("CT2438727.DialogsGetterLastCheckTime", "Thu Sep 19 2013 19:18:00 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.DownloadReferralCookieData", "");
Line Found : user_pref("CT2438727.FirstServerDate", "20-9-2013");
Line Found : user_pref("CT2438727.FirstTime", true);
Line Found : user_pref("CT2438727.FirstTimeFF3", true);
Line Found : user_pref("CT2438727.FirstTimeHiddenVer", true);
Line Found : user_pref("CT2438727.FixPageNotFoundErrors", true);
Line Found : user_pref("CT2438727.GroupingServerCheckInterval", 1440);
Line Found : user_pref("CT2438727.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Found : user_pref("CT2438727.HPInstall", false);
Line Found : user_pref("CT2438727.HasUserGlobalKeys", true);
Line Found : user_pref("CT2438727.Initialize", true);
Line Found : user_pref("CT2438727.InitializeCommonPrefs", true);
Line Found : user_pref("CT2438727.InstallationAndCookieDataSentCount", 3);
Line Found : user_pref("CT2438727.InstallationType", "Unknown");
Line Found : user_pref("CT2438727.InstalledDate", "Thu Sep 19 2013 19:18:13 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.IsGrouping", false);
Line Found : user_pref("CT2438727.IsInitSetupIni", true);
Line Found : user_pref("CT2438727.IsMulticommunity", false);
Line Found : user_pref("CT2438727.IsOpenThankYouPage", true);
Line Found : user_pref("CT2438727.IsOpenUninstallPage", true);
Line Found : user_pref("CT2438727.LanguagePackLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.LanguagePackReloadIntervalMM", 1440);
Line Found : user_pref("CT2438727.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Found : user_pref("CT2438727.LastLogin_3.20.0.4", "Wed Sep 25 2013 11:22:50 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.LatestVersion", "3.20.0.4");
Line Found : user_pref("CT2438727.Locale", "en");
Line Found : user_pref("CT2438727.MCDetectTooltipHeight", "83");
Line Found : user_pref("CT2438727.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Found : user_pref("CT2438727.MCDetectTooltipWidth", "295");
Line Found : user_pref("CT2438727.MyStuffEnabledAtInstallation", false);
Line Found : user_pref("CT2438727.OriginalFirstVersion", "3.20.0.4");
Line Found : user_pref("CT2438727.SearchAPILastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.SearchCaption", "Zynga Customized Web Search");
Line Found : user_pref("CT2438727.SearchFromAddressBarIsInit", true);
Line Found : user_pref("CT2438727.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2438727&SearchSource=2&CUI=SB_CUI&UM=UM_ID&q=");
Line Found : user_pref("CT2438727.SearchInNewTabEnabled", true);
Line Found : user_pref("CT2438727.SearchInNewTabIntervalMM", 1440);
Line Found : user_pref("CT2438727.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Found : user_pref("CT2438727.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2438727&octid=CT2438727&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Found : user_pref("CT2438727.SearchInNewTabUserEnabled", false);
Line Found : user_pref("CT2438727.SendProtectorDataViaLogin", true);
Line Found : user_pref("CT2438727.ServiceMapLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.SettingsLastCheckTime", "Wed Sep 25 2013 11:22:49 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CT2438727.SettingsLastUpdate", "1380096675");
Line Found : user_pref("CT2438727.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2438727&SearchSource=13");
Line Found : user_pref("CT2438727.ToolbarShrinkedFromSetup", false);
Line Found : user_pref("CT2438727.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2438727");
Line Found : user_pref("CT2438727.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Found : user_pref("CT2438727.UserID", "UN31173046010789845");
Line Found : user_pref("CT2438727.alertChannelId", "832836");
Line Found : user_pref("CT2438727.components.1000515", true);
Line Found : user_pref("CT2438727.countryCode", "US");
Line Found : user_pref("CT2438727.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Found : user_pref("CT2438727.homepageProtectorEnableByLogin", true);
Line Found : user_pref("CT2438727.initDone", true);
Line Found : user_pref("CT2438727.myStuffEnabled", true);
Line Found : user_pref("CT2438727.myStuffPublihserMinWidth", 400);
Line Found : user_pref("CT2438727.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Found : user_pref("CT2438727.myStuffServiceIntervalMM", 1440);
Line Found : user_pref("CT2438727.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Found : user_pref("CT2438727.navigateToUrlOnSearch", false);
Line Found : user_pref("CT2438727.revertSettingsEnabled", true);
Line Found : user_pref("CT2438727.searchProtectorDialogDelayInSec", 10);
Line Found : user_pref("CT2438727.searchProtectorEnableByLogin", true);
Line Found : user_pref("CT2438727.testingCtid", "");
Line Found : user_pref("CT2438727.toolbarAppMetaDataLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2438727/CT2438727", "\"d36112ad29ae77a77d99b33d4ea25bd43\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2438727", "\"0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"23c5489aa686ce1:0\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2438727", "\"9971ee9815a5fc569766cf6ddcaaca8e\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"570022812a2886069d9aec5f179dd5a2\"");
Line Found : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"f2982e793f1ad490a79e05219fde8c7e\"");
Line Found : user_pref("CommunityToolbar.ToolbarsList", "CT2438727");
Line Found : user_pref("CommunityToolbar.ToolbarsList2", "CT2438727");
Line Found : user_pref("CommunityToolbar.ToolbarsList4", "CT2438727");
Line Found : user_pref("CommunityToolbar.globalUserId", "933409a4-0b32-404e-9649-76b87807c624");
Line Found : user_pref("CommunityToolbar.originalHomepage", "hxxp://visualbee.delta-search.com/?babsrc=HP_ss&mntrId=E031002522FA9961&affID=121376&tsp=5010");
Line Found : user_pref("CommunityToolbar.originalSearchEngine", "Bing");
Line Found : user_pref("extensions.crossrider.bic", "1413884038dc4fa394b214871db83de9");

-\\ Google Chrome v

[ File : C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [11186 octets] - [25/09/2013 11:29:03]

########## EOF - C:\AdwCleane
  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
After running adwcleaner's Scan you have to hit the Clean button to have it remove the adware.
  • 0

#5
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
My AdwCleaner SO log# AdwCleaner v3.005 - Report created 25/09/2013 at 11:35:02
# Updated 22/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Bill's - LOU
# Running from : C:\Users\Bill's\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : SystemStoreService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\visualbee
Folder Deleted : C:\Program Files (x86)\SoftwareUpdater
Folder Deleted : C:\Users\Bill's\AppData\Local\DownloadGuide
Folder Deleted : C:\Users\Bill's\AppData\Local\iac
Folder Deleted : C:\Users\Bill's\AppData\Local\PackageAware
Folder Deleted : C:\Users\Bill's\AppData\Local\visualbeeexe
Folder Deleted : C:\Users\Bill's\AppData\LocalLow\visualbee
Folder Deleted : C:\Users\Bill's\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\ConduitCommon
Folder Deleted : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\CT2438727
Folder Deleted : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\Extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\\invalidprefs.js
File Deleted : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\searchplugins\my-web-search.xml
File Deleted : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\user.js
File Deleted : C:\Windows\System32\Tasks\BitGuard
File Deleted : C:\Windows\System32\Tasks\EPUpdater
File Deleted : C:\Windows\System32\Tasks\Software Updater Ui
File Deleted : C:\Windows\System32\Tasks\Software Updater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKCU\Software\e6ddd8e66fe444
Key Deleted : HKLM\SOFTWARE\e6ddd8e66fe444
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6C1B9042-3D32-49A1-916B-0AA3A9CDDFD6}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\systweak

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Bill's\AppData\Roaming\Mozilla\Firefox\Profiles\4cndd157.default\prefs.js ]

Line Deleted : user_pref("CT2438727..clientLogIsEnabled", false);
Line Deleted : user_pref("CT2438727..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Line Deleted : user_pref("CT2438727..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Line Deleted : user_pref("CT2438727.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Line Deleted : user_pref("CT2438727.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Line Deleted : user_pref("CT2438727.BrowserCompStateIsOpen_1000515", true);
Line Deleted : user_pref("CT2438727.CT2438727", "CT2438727");
Line Deleted : user_pref("CT2438727.CT2438727.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT2438727&octid=CT2438727&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_[...]
Line Deleted : user_pref("CT2438727.ConfigurationLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.CurrentServerDate", "25-9-2013");
Line Deleted : user_pref("CT2438727.DSInstall", false);
Line Deleted : user_pref("CT2438727.DialogsAlignMode", "LTR");
Line Deleted : user_pref("CT2438727.DialogsGetterLastCheckTime", "Thu Sep 19 2013 19:18:00 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.DownloadReferralCookieData", "");
Line Deleted : user_pref("CT2438727.FirstServerDate", "20-9-2013");
Line Deleted : user_pref("CT2438727.FirstTime", true);
Line Deleted : user_pref("CT2438727.FirstTimeFF3", true);
Line Deleted : user_pref("CT2438727.FirstTimeHiddenVer", true);
Line Deleted : user_pref("CT2438727.FixPageNotFoundErrors", true);
Line Deleted : user_pref("CT2438727.GroupingServerCheckInterval", 1440);
Line Deleted : user_pref("CT2438727.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Line Deleted : user_pref("CT2438727.HPInstall", false);
Line Deleted : user_pref("CT2438727.HasUserGlobalKeys", true);
Line Deleted : user_pref("CT2438727.Initialize", true);
Line Deleted : user_pref("CT2438727.InitializeCommonPrefs", true);
Line Deleted : user_pref("CT2438727.InstallationAndCookieDataSentCount", 3);
Line Deleted : user_pref("CT2438727.InstallationType", "Unknown");
Line Deleted : user_pref("CT2438727.InstalledDate", "Thu Sep 19 2013 19:18:13 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.IsGrouping", false);
Line Deleted : user_pref("CT2438727.IsInitSetupIni", true);
Line Deleted : user_pref("CT2438727.IsMulticommunity", false);
Line Deleted : user_pref("CT2438727.IsOpenThankYouPage", true);
Line Deleted : user_pref("CT2438727.IsOpenUninstallPage", true);
Line Deleted : user_pref("CT2438727.LanguagePackLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.LanguagePackReloadIntervalMM", 1440);
Line Deleted : user_pref("CT2438727.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Line Deleted : user_pref("CT2438727.LastLogin_3.20.0.4", "Wed Sep 25 2013 11:22:50 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.LatestVersion", "3.20.0.4");
Line Deleted : user_pref("CT2438727.Locale", "en");
Line Deleted : user_pref("CT2438727.MCDetectTooltipHeight", "83");
Line Deleted : user_pref("CT2438727.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Line Deleted : user_pref("CT2438727.MCDetectTooltipWidth", "295");
Line Deleted : user_pref("CT2438727.MyStuffEnabledAtInstallation", false);
Line Deleted : user_pref("CT2438727.OriginalFirstVersion", "3.20.0.4");
Line Deleted : user_pref("CT2438727.SearchAPILastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.SearchCaption", "Zynga Customized Web Search");
Line Deleted : user_pref("CT2438727.SearchFromAddressBarIsInit", true);
Line Deleted : user_pref("CT2438727.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2438727&SearchSource=2&CUI=SB_CUI&UM=UM_ID&q=");
Line Deleted : user_pref("CT2438727.SearchInNewTabEnabled", true);
Line Deleted : user_pref("CT2438727.SearchInNewTabIntervalMM", 1440);
Line Deleted : user_pref("CT2438727.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID&UM=UM_ID");
Line Deleted : user_pref("CT2438727.SearchInNewTabURLFromSearchAPI", "hxxp://search.conduit.com/?ctid=CT2438727&octid=CT2438727&SearchSource=15&CUI=SB_CUI&SSPV=EB_SSPV&Lay=1&UM=UM_ID");
Line Deleted : user_pref("CT2438727.SearchInNewTabUserEnabled", false);
Line Deleted : user_pref("CT2438727.SendProtectorDataViaLogin", true);
Line Deleted : user_pref("CT2438727.ServiceMapLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.SettingsLastCheckTime", "Wed Sep 25 2013 11:22:49 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CT2438727.SettingsLastUpdate", "1380096675");
Line Deleted : user_pref("CT2438727.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2438727&SearchSource=13");
Line Deleted : user_pref("CT2438727.ToolbarShrinkedFromSetup", false);
Line Deleted : user_pref("CT2438727.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2438727");
Line Deleted : user_pref("CT2438727.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]
Line Deleted : user_pref("CT2438727.UserID", "UN31173046010789845");
Line Deleted : user_pref("CT2438727.alertChannelId", "832836");
Line Deleted : user_pref("CT2438727.components.1000515", true);
Line Deleted : user_pref("CT2438727.countryCode", "US");
Line Deleted : user_pref("CT2438727.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]
Line Deleted : user_pref("CT2438727.homepageProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2438727.initDone", true);
Line Deleted : user_pref("CT2438727.myStuffEnabled", true);
Line Deleted : user_pref("CT2438727.myStuffPublihserMinWidth", 400);
Line Deleted : user_pref("CT2438727.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Line Deleted : user_pref("CT2438727.myStuffServiceIntervalMM", 1440);
Line Deleted : user_pref("CT2438727.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Line Deleted : user_pref("CT2438727.navigateToUrlOnSearch", false);
Line Deleted : user_pref("CT2438727.revertSettingsEnabled", true);
Line Deleted : user_pref("CT2438727.searchProtectorDialogDelayInSec", 10);
Line Deleted : user_pref("CT2438727.searchProtectorEnableByLogin", true);
Line Deleted : user_pref("CT2438727.testingCtid", "");
Line Deleted : user_pref("CT2438727.toolbarAppMetaDataLastCheckTime", "Tue Sep 24 2013 19:28:47 GMT-0400 (Eastern Standard Time)");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2438727/CT2438727", "\"d36112ad29ae77a77d99b33d4ea25bd43\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2438727", "\"0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"23c5489aa686ce1:0\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2438727", "\"9971ee9815a5fc569766cf6ddcaaca8e\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE", "\"570022812a2886069d9aec5f179dd5a2\"");
Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"f2982e793f1ad490a79e05219fde8c7e\"");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2438727");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2438727");
Line Deleted : user_pref("CommunityToolbar.ToolbarsList4", "CT2438727");
Line Deleted : user_pref("CommunityToolbar.globalUserId", "933409a4-0b32-404e-9649-76b87807c624");
Line Deleted : user_pref("CommunityToolbar.originalHomepage", "hxxp://visualbee.delta-search.com/?babsrc=HP_ss&mntrId=E031002522FA9961&affID=121376&tsp=5010");
Line Deleted : user_pref("CommunityToolbar.originalSearchEngine", "Bing");
Line Deleted : user_pref("extensions.crossrider.bic", "1413884038dc4fa394b214871db83de9");

-\\ Google Chrome v

[ File : C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************
  • 0

#6
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
My Junkware-Removal-Tool LogJunkware Removal Tool (JRT) by Thisisu
Version: 6.0.2 (09.22.2013:1)
OS: Windows 7 Home Premium x64
Ran by Bill's on Wed 09/25/2013 at 11:48:41.76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1511813459-1651382884-3492082021-1000\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Bill's\AppData\Roaming\strongvault"
Successfully deleted: [Folder] "C:\Users\Bill's\appdata\local\dailybibleguide"
Successfully deleted: [Folder] "C:\Users\Bill's\appdata\locallow\dailybibleguide"
Successfully deleted: [Folder] "C:\Program Files (x86)\dailybibleguide"
Successfully deleted: [Folder] "C:\ai_recyclebin"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0041DDD3-09ED-4470-BFDF-1F4494B88660}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{004BFB9D-1A94-408C-BE52-48A09B4C0F02}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{006F3D21-8838-48C1-B2B9-A5927914A3A1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{011FFC54-19B8-4395-B797-6C2517446469}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{03132BBC-CBA8-4F78-8ADA-D200D17FEBFE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{037583F0-E36A-496D-AC78-56A7EFC3451B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{03AB64F6-C0E8-4BA0-AD02-390FE8196B64}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{041BFCFE-1DE3-422D-95C3-6837C4B97098}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{042D3FDD-F32E-47ED-8760-EF2E24CF2639}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{043C6FD7-4F55-4DFD-A6D7-B3D47C758003}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{047A5B69-8E3B-450A-9DBC-B5CA9AF4E7AA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{054668F8-6A71-4B02-9EC9-0315280B3E8D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{05547674-0E7C-421E-B876-A75A3A1B2240}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{067D2D85-5FE2-47E3-B57C-01C57FAFC300}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{06BB23AF-1F6D-457D-8D31-7E6D75848C1E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0720D210-4F6B-4786-BD82-7ABB6DC8C46A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0918A044-D005-4A7F-89FB-40E4E34ADF4C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{098A8943-B1DC-48FB-9582-408AF60E5955}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{09C2D8FB-A873-4CAB-8B39-E305575D660D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0A22680E-A74F-4D5D-BE56-BF1844A04A5F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0ADA3967-607F-4BB2-ADC9-CCBCB098A39E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0AF305C3-C226-412C-9EE6-DB2167FD41C4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0AF4FEDF-BC52-479B-9F89-6EF1721F9608}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0B25CCB1-0E1B-46F8-9C8C-8D856A4062C9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0BACC07D-B69F-4E8B-BFE8-1B80AC9210A0}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0BC1BB07-1995-4DA9-994D-851119E8D7FE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0D38382A-50BA-4FA3-91D8-4DF7A702B025}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0D8C0C57-3529-48C2-822C-448BDE87B6B2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0E4986E0-690D-4784-A418-0D5364D99047}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0E67FAE9-489A-439D-A3C4-7B44CF7EF454}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0ECD01BC-8531-44DE-9B01-3E4F143C5A63}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0EFA7EED-8C67-4937-A8D2-CD86E0E5CA48}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{0F695C80-140D-4C84-B481-2C3544D90B49}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{12436785-8633-4188-A26D-581ED10D9F0C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{125DB5A8-64C9-4C92-B9D9-B6125437A275}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{133ADA33-0A44-4AF1-A1A7-E9799AC57965}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{13B3BFB8-C7F5-4F47-9A1F-FB5E5CE404B9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{147B4EFE-B67C-474B-9FB1-15F1A73C487B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{14D2B9F8-6796-40A3-8BCC-7A60E9C83AD5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1662E5DD-3CA3-4C91-94B3-42FB6B6ACA8B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{16D284A3-5EC1-4753-9398-EF7BF74A691D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1712C993-64EC-4BB7-B0C5-DE91CA9EB1DB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1742C90F-B16D-4A44-9243-39997415443A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{17D53DF8-FA27-42BD-B187-0432CA421B42}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{18EC4A00-E1EA-4776-854C-A866E0DE7C88}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{18F19CFC-1CB7-4191-B9D9-881358F47E4B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1A248822-64B0-4AAC-A33A-A18246BE58B6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1A3BA255-BC40-4EC1-9CD4-D115A669C163}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1A410483-83C4-4F0A-8F68-4945DA4CA14E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1B0FCB0E-B86B-4875-9350-8624C7D57CA7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1B6EEF02-178F-45A7-B4B9-35B5D4929087}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1B83D3AE-CC78-4896-9142-16647E998F48}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1BF7A2B9-EAB5-4B70-BF2C-BACDF3BEA34E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1BF81A77-1F98-47C1-9839-5615BD56158A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1C1571AD-C9D3-4D75-A0E1-4CB44AE83355}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1C956D18-7C5B-46D2-A29E-6552BFEFC89E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1CF76423-437A-44B0-B966-29786D02B530}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1CFEA2E5-DD7B-4402-970E-7EC82B53BBEE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1DCAE2AC-B75D-42AB-B4F9-EC33547BCD61}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1E6EB138-9483-4D85-8A12-F4D38D3D82F3}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1F5BB834-C7B6-40BA-87F0-80CB2083F9D0}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{1FDA82B4-D343-406B-A65D-5AC35BDB2D15}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2135E439-CA12-40E9-8303-94C061FAF4BA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{213A4907-A5C6-40AD-9691-D84A87264B0A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{21C6D8FB-A161-42ED-806E-BF1F450FB108}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{226088D9-9A4C-4388-BEBA-B3335F83F25B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{23201CB0-F08E-4155-B5AD-7DCE52A5C287}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{23245453-082B-45A9-9A2A-6C28E2172036}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{236A80BB-4336-4A15-A56B-4E8A254C2232}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{239E4A1E-774C-4D56-A1F3-C82ABC139DAE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{244FFB24-C992-44D5-9A1B-6D8AD9674545}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2499C5A3-846B-441A-826B-04E21AEBB585}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{24A553AE-8CD8-4DF4-9F0A-78F338043197}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{253D3BCE-6A30-45C8-AA99-0B2ACF336EEB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{25CC416C-98A4-453A-A1A7-C6BD5318299D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{260FA4A4-6DD9-4717-94A0-6EE88C89BADF}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{26D2AC33-29A9-47B9-B119-3FF05ECD70C1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{27213F9D-0DD7-489B-899C-CEBE35999276}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{27837D90-B226-47F2-A868-7EF80BDA65D3}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2838772D-3A07-46C4-987A-322B247280E9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{28DCFBCF-4992-43C8-AA51-C2D9FE2CBE32}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{29179343-49CB-4D59-A632-49B7FFC7F16A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2937F97E-84B4-4C20-8A14-931CF2A08251}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2A5B490C-44C4-48BA-9C83-A80A06AC7551}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2AC7967A-D2D5-46E2-999C-350B5D431D57}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2ADAA3FC-BD57-4CB0-86E5-8CD4CCBDBD39}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2C0C1B90-BC9F-4A43-A45F-D54150C112C7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2CA11546-17AB-4955-8E2F-AFC4761A6792}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2CD6869F-37EB-4D0D-8381-FF5477AD4570}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2CD8B518-AD3E-4891-A2EB-2AD5F4110D87}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2CF1030B-3399-482E-95E1-64FF9FE77E50}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2D0B8B2A-C592-4D2A-9C0B-8FDE549705BB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2DA39404-1DF5-4D56-96AE-F8724506B67B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2DF07E39-DB84-4EC4-B20E-93390C4626F9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2E227077-9DE6-41E2-BA08-C05B62C9F1D7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2E9738AC-4D9B-4491-B554-9DC5BFD7580D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2F3E1428-89F1-43CE-84D5-71D392C6B8D8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2F893EEF-F8D0-42F2-A834-6FACF9F29119}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{2FD6E9DD-0907-492C-9AC5-405305009B41}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{313D6896-6438-4638-93F2-EF2166E78E8E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{32263D3F-27AA-47C4-A355-77793B60A923}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{35B92E13-23BB-426A-BA01-FA540A9FC57E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{36D80E18-84D5-4597-A295-CBFF4ED7E40A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{36EC9087-019E-4E94-87AA-BA3600DA5B15}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{387B69AE-C694-43F8-8E3F-596198FF95B5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3A30C319-5B8B-4AF9-9DAA-1FEF72F1C169}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3BAA6C63-7FB8-474F-BC73-9DD891AA418B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3D77ED20-BA4B-4ABC-B033-1C8F6C09FE31}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3D9F89FC-0C3B-4102-84A7-F5B5C7876D25}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3E6D677A-935A-4540-ADDB-1136CFAF4252}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3E72C8C6-F7E7-4524-8419-5F3960F682D6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3EE62FF1-4AC6-489D-AFA6-1406D564D141}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3EFE7015-6A4B-4208-B74F-3A5638F8F47B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3F6EE515-E11B-4E6B-82A7-9AB317121B34}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{3F99948E-2851-4984-924F-3FAAF4938C3E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{407C27C0-1DB2-4267-85AA-A61573176A6D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{413A8DEB-6EEA-429E-989C-195520EAF893}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{426EDAF1-815F-4065-8895-826DB216C81C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{427AB37F-C8CA-4719-B712-31B1ACD63D64}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4295D32C-D7C0-4C2E-9831-E33E70876FC5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{42A70DF8-174F-4320-A6C1-F68FDF155353}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{43323C8F-55B6-4271-BD5C-7F1A03C12ABA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{43988CF7-8EEC-4E64-B6A2-BF20A473CBA5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{444C4AE4-8492-4D84-8421-09AE8696AB71}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{447EFA0E-A8E7-4771-A917-0015B53D3322}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4554BBD1-991B-43D0-A26B-D49BC40666A7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{46EEFFB7-F6F2-4D1C-B691-AF9A930A0B81}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{475DF90F-9E5E-4639-88A1-015AC405952F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{47A92F8D-A26C-4B69-BD0A-4F7A29E6CF47}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{47AED1F6-EAF3-4A95-A0C7-704DF8D43320}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{48223501-1711-404B-97A5-4CAB28429639}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{48873362-73B4-44BD-AC4D-39F2C99111BB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{49903E6B-1392-4308-8C0A-E726C918DA91}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{49B93894-7AB5-48B9-A485-0510E395A552}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{49BE2799-2DA8-4F2A-84DF-B97944CA7754}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4A7F6ABF-35E4-4FC9-A680-10DA8898BF5E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4CCAA9CD-F911-4B99-9089-895FECC26F91}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4D7C0855-E325-4320-A959-F715244F0134}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4DD5A314-DFFC-4A51-B9D1-F36E3F2A9A67}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4DDB7A57-7438-4A07-9A4F-C4BC874C0A07}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4E5BA45B-9629-4BD5-B71B-B85DE72B1BCB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{4F773A33-5A0C-4F6E-B21E-2F2E2C81AE1D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{50D6CB41-37D0-4F77-B0D9-8BDD23BE4220}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{51344B4E-E445-465B-95B6-25958071530E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{51B1D6A4-2AD6-4ADD-B72F-3CEB50DF5DBD}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{52BF7791-002A-4065-99F1-7BD4B61E5C8F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{538589EE-C109-4181-86C9-95B74E192792}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{53C7A9A5-77B2-41D9-8114-34CBEA500B2D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{53FD2510-312F-40AA-820E-A6C74A91CFD0}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5464C8D5-1E89-4DF3-9B23-EAAF87BD96BD}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5545640B-33D5-4086-B807-AB8A04BD7633}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5562FC7F-DC81-4803-9185-486B5237A4F9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{556B23E8-97FC-477F-BFD7-DCBEB2033D5E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{55BF5515-148A-4417-9C5A-6BB65D701580}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{55EE333D-F25A-4D1A-AAFB-B8842DB6867A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{561E1DA9-5B19-4154-8341-3825302CB0BA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{567A3771-8BF7-485B-8181-741156DD8F20}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{56CE3C74-9537-43C4-B2AF-B4482203B6AB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{57493376-2393-4E26-80D6-432F3C3ED797}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{580200B0-7A3D-4687-86B0-4D453539CD54}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{599508DA-7C66-4AE6-8C2A-251E606B49D6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5AAFEA51-A6BE-4630-AB07-062FA464DFA1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5B6CBF92-DFAB-4C6F-90EE-1FDFE3F15AE5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5BF29055-0D4A-4898-B33D-1F7945F0F61C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5D8BD3D2-4FF8-4B19-87A8-D416032085D4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5E11206B-C787-4F09-9ADB-8A01D0C55828}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5E85EA83-8EDF-4E6D-BBD1-A2FF17AB43F5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{5F9D1BE9-A50A-4F7F-B4EC-B6A7A82AF175}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{60B3C040-A678-419F-850B-9CF38A554E4E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{616E1A34-B677-4495-B54C-9384C1E055F9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{61778B7D-6327-4A12-B9D3-80E4B006641B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{619046F8-1632-491E-A8D6-83B94B5C0887}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{61F5D793-2A6F-4A84-9B13-486D29C65B82}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{62ADE121-EDF6-4C7B-9E39-B346652193BD}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{63ABB57A-4192-4216-A70B-699830EA0F08}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{63F9EDAA-6129-4108-930D-8AFCD25D77F1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6407093A-F65C-4334-9F83-DEC68AC9593B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{661A6328-6514-4BA3-B77F-88880311CF31}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{662153E8-688A-47CC-9105-3496D4E64095}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{670301E4-940F-4DB9-A104-4CDB88A34E68}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{673B4C44-5185-480B-B7C2-8C76B42B216E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{67544A27-D1C0-4076-8858-271477BB8664}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{67744333-C0BC-42A2-9904-AE36E4A06FFA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6796C0C9-1CFC-4966-91C4-53344C2B3329}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{68329053-EC7C-4A51-8B1D-94BCF612643A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{690925C5-66BF-45F0-9E9E-94AC3A81CC4E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{698761B3-AB3D-40AA-B582-7EFFA2491F23}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6988079E-8402-4997-AD8C-FB58CC736286}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6A0F6FA0-66AD-4119-9677-A5E2E5E00386}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6A7F349E-FFEF-40AF-BBA0-C7208A875633}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6B70A098-69B2-41CA-83E5-AED2DC138C58}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6BEA38A1-78A7-464C-B061-314395065A92}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6C17F2C3-3777-428D-9780-718A1BE05D67}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6D2B5A3C-A15B-480D-88ED-A5BBC5C4378C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6D9A8A6A-87D2-48A8-929C-0B0038931FD3}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6DBD571A-2A28-4AA9-951E-8AEA1A086950}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6DF5C588-62D6-4972-8177-A5D1216E40BB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6E41DA67-D72A-4279-BC77-C698B5B58E35}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6E84FD33-B0B9-4D57-8B3D-CDB250C85AEB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6E8862B4-46B1-4D97-B146-2F64298A1A71}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6F1B52B8-3DB2-4F35-8CC4-F9F0849CFBB8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6F2E4F47-9319-4121-BFE2-CEB03AA17C4C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6F495B32-0F9C-4858-B09F-C21F87DEE0B5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{6FC526EB-1B2B-4CAF-B12C-504C8D0571A0}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{701EFBA3-EA6F-44CF-A90F-24A41DE3D338}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7058C7DF-8A8C-40D5-8DC0-D336CD6DFBB1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7126A26A-2B2E-4664-B124-B6917C70BD9D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{725BA96E-7E85-40A2-9119-69D95D9A8911}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{72AE7504-1B8D-414E-B378-988E64C429F1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{732C683C-7536-428F-9BFB-68DF785C9FEA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{734C2F03-386F-4566-BCD2-BD2DBEBB00D9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{734D08D7-40F5-4373-BF07-BA25C74CF16D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{73510C98-6599-454B-A4BA-BE17E43D9852}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{735D6658-4CA1-47C4-BFDE-8CF44A6BD8F5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{73921929-CCE5-474D-8022-A3795574E1CC}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{74EC59DA-D06D-471F-B245-F0BCA11B0643}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{75349ACD-B8A2-4538-93CA-0D66616F5735}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{762A684A-F439-41F7-AC5F-7FB8BFB999F5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{762F11E1-C8B8-43C9-801E-BB15ABCA31A9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{76A1DCBC-323C-4789-A117-6E9C38AFB209}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{76D9F8E6-F60A-4375-99C2-3C02B0ECF687}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{76F2B299-3EE3-43E7-9BBE-E8E8D2DA5CF8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7780D656-3DBC-4561-B1CC-16453242AD62}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{793BD70A-425C-4215-A23D-F89A52492549}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7957830B-5282-4F86-89FB-CD4B31B6C43C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7A04B02F-C6E1-4BBB-BEC3-E537C11BB756}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7A20D513-370A-4A05-8F60-D7816A1322A3}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7A3B7965-57DE-46BD-9028-564227BD06A2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7A52AE09-20F4-4C2F-9433-C86F7820C9F5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7AB9D85D-8B15-4800-94F9-42517CD831CE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7BEEAF02-63C0-4F47-B939-1B840B562464}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7DE17AF3-600C-4C8E-8F0F-F8A491A241CE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7E4C6BA8-4428-4859-857E-5B5269A393FE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7E51B98D-25FA-4800-9E37-4EDDAC49FC65}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7EBF324B-A0A5-41A7-9EE7-BD433B8ED533}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{7F542FBA-CF48-42F2-A399-82E3600A1F75}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{80FE7A4A-66FC-42FE-AF80-AFFC9B00B61B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8171B98B-36B3-469C-B380-4B6AFE574423}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{81E26005-03CB-4609-A6AA-43081A0A630A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{82254D11-F811-446D-8851-F7B57BB49325}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{83473C40-2727-4B94-B6C3-4DE275796FD4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{83D43D29-BC76-4609-BBB8-A0E165C023DE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{83DDE8D1-1E23-4CBF-AA58-550CB62A60B4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{85D5FC3C-286C-4446-AAD1-CBA5F9C318E5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{865B7836-0229-4434-A7B1-B6ACD8BE9497}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{86D59E43-6CD6-468C-B7F2-C6CDFC531067}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{86D62E83-403D-49BA-8E29-417788E7A755}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8707D825-A9BD-422B-ACB5-C84E340CB727}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{87BF65D5-BB5B-4334-8E86-BF620CFAD808}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8848F65E-51B8-42A1-9F7D-8CEE5C692351}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{898E9E95-44CA-4B79-BF06-BB101FF256B2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{89C17C77-1C3C-450C-AA19-42E593FA062A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{89CA3B56-F9E2-4EF6-BD5E-C87378646FFA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8A296C79-1057-4062-942A-2C85496270D2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8A549A8E-8E97-4E59-8367-C78555A62C52}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8C39AB5E-D047-4FA8-B7EF-F66D84D752F2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8C9911F9-FEE8-4F2E-8DA3-461AD431B95F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8D11492C-413C-44FA-97E9-05FAF6037545}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8D2E56D2-7B4F-4095-8299-0BC3FF7AC840}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8E08DD7D-053D-4672-8C72-FA44AF8FD5AC}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{8EF10A9B-61A3-41EA-90B3-3924A1768713}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{90860461-A86A-44FC-AACB-50F6B877297C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{909CF34F-DAE7-4768-897A-0330D6C9CB39}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{90A30672-1F7D-450F-9BE2-32935E4DD87E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{90FA3AA5-B3A8-46D7-AD95-6FE6899DD4D1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{917F31D3-8DBA-40AA-84D5-4FC774FC4EC9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{91CE9D8D-DEC7-4A6B-9C3C-220C26FB02B4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{923D08EB-1877-4E44-9435-1C16CE934033}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{92B17C9F-A9EF-4800-B876-595EDCA3797B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{93172C2B-A810-41AB-871B-2634980B5B34}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{93C82E25-42C7-485F-BA7A-5F5B88386997}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9472752F-01AA-44A2-B2A1-1D852D86CB3F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{94FC1500-F1AF-41B9-95C8-E7CF8DD8FEA8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9504DEEE-6F15-4092-B775-E30EBD5C6E1D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{959CD325-7700-476B-80A7-6E1398E20D8C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{96B79CF6-B1A1-4D71-8186-31DBC473E94F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{98F9070F-4A7D-444F-BCA1-AF75FC152F42}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9974AB64-DCBE-4D22-B206-F8867EFBC8F8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9994D064-B101-473C-8C4A-F78DF7F6C9A7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9A6ECF6A-57F6-4D09-B901-50C8A8CA87E6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9AD5AB1D-25B5-4E07-9EA4-F41AAD9F142A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9AE158F8-C3C9-456E-9D08-1FE0A8B7FE74}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9B141CE9-AE3D-4C48-9103-FE135F6B01ED}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9C4C82BE-5046-4D9D-8E67-3C083DCF2C87}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9C96353F-A066-4B13-AFD0-E579E77FDFC8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9CEBC8D8-8B43-4DA7-82E4-10C46B0108E6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9EA21FFF-7C17-47F0-9931-19844E7D5DD2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9EDAAA6C-2D18-4E89-B274-50467E069A73}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9EDBDBEF-625A-48E3-A4D8-1CC4835CB199}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{9EF22693-CDE4-4E18-8851-723C09A00133}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A14389B9-E142-4386-9BC4-C3B70D9AA1C2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A1B47AB7-F93A-42C3-A49D-3DAD09DE7B3F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A1C2F5F0-400E-4252-831E-1F6DE8E96F13}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A2ACD489-F6E8-4A6F-AF5D-CF05DB16ACC9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A3E46003-E400-4A9C-8B95-2D8DBA13C44D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A3FEBE06-1AAD-437D-9255-B6B3CE86F54E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A4DBDD30-BDA8-4299-B544-38393D6FC623}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A702CF2F-C08C-4CBD-BF26-F286982A498D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A7814E99-0207-4F79-9092-AFC6A36A3504}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A8CF010F-234E-47F7-B3B7-365281A789D8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{A9458248-6C3C-47E7-81F0-D92EFF3DD590}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AA34EF7A-4C7B-4477-A303-D880400A88BC}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AA4F1880-55F6-4719-AEDB-E73CC2EB1F29}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AAEFFDD9-AF3F-4A4F-BFD3-1E85FCB8EDBE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AC08172D-0CDE-4FB3-B1EE-0C9C2DDFFE3A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AD3C3163-CFAE-42F5-A06B-186BB2C124E9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{ADA51B53-E180-4CFC-A4AB-9D5C9739CD34}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{ADC167F6-1FAD-4A2D-822E-993851E5B1D7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AE10153A-7A6B-4FB3-BCA4-1781E3361657}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AE2E20C2-61B8-4B65-8347-3742783CE3CE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AE7A5FCF-F6E6-44A2-8F82-C2CC0703BAF7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{AEE5EE19-4754-4E62-BF49-5C7094F4DDF0}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B0098C0B-E4BC-456E-ABA1-869621B3C393}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B00BADB4-A85E-45B4-87A0-8B9B5A5A0273}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B02B983B-0C21-418A-A015-F24DDADA58B5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B03866E4-99C5-49A2-8BBC-C645138F81FA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B06000D5-86E3-48D9-9538-F2FB3E4B131E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B0F43582-CD68-41AE-9A39-33B9B59F0856}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B1C83C29-F097-4210-830D-40A87E17F0CE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B25229C4-BCD1-451D-B2B9-A9369DD4E788}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B28E47B5-CA51-4270-B587-A06287F70D55}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B5DABFF4-B6AE-46E2-8E57-7D5EFD5DE6EC}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B6307EE3-B38E-40AD-A7D4-714BEC7FC1D5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B638320D-AC16-4666-816E-ED7125F467D8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B72B59FF-8684-4FB7-A56E-B1C5AC0AF4EE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B7860EF4-73E8-404A-8478-6C2C819E2B66}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B7EAEAEF-A4AC-435F-A2F1-FD94DD233111}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B890FE1D-5DEB-4F50-9392-AA2191E6E734}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{B8DBA83A-3077-448D-8E40-FC7C43D20C9C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BAB2F4F4-FD0E-4721-B488-BB4F9C4749F6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BAB7ED8D-12C2-4001-9354-105D24E3EAC7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BB53096B-A75C-4F01-B84A-2E4B22B4BB9A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BBE906E0-854E-497E-B759-9449280E5A94}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BC62BCEB-7F75-4DB3-91C8-7616857CDBFB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BCDD5329-E0E8-4C61-B4D7-60CDA2A4B039}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BF029C1E-D498-4990-98B8-36C8DFB69A67}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BF3B3297-81CF-424B-9F08-EFA06F85F3AB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{BFCEB8DE-0709-4A29-8399-7BA8D3831A12}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C23AA729-2C2A-4A96-ABC4-83EF392CA2C7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C261CF64-D1E8-4776-BC43-E567F2077308}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C2D224A5-D92B-4399-875E-D470E0031892}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C2E89961-5282-4A47-ABE8-D3835A590734}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C394F7DD-F3EA-4701-8012-B78147DD6879}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C39A18B6-47BD-4C70-B5A5-08C69C80C436}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C3C69256-C428-4B52-9F5E-B3C48CA5B0B5}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C41059CA-04DF-49E0-817B-8A30D9EE995E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C44DE57A-C772-4647-8BF3-9E3199444692}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C501B2E3-CC21-4A75-8B3F-3A6FC456B91D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C59558BE-F6CA-468B-ACB8-A37654BE13F1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C60D45C6-67CE-4352-98B4-590614E345A9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C610711F-3F29-46C3-8FC4-B7CE7AD8BECA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C7647EA7-C37E-4415-9291-6B6A9103E33E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C7B3DBE3-FDEE-46C3-BF7D-87A668327ADB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C7CB3DF9-86C8-4CE0-B1CD-B56897B434E4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C7E99B8E-DDB3-4E0B-8CCB-BC6B5B603817}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C82C32AD-690C-4BCE-84DD-94E39FF3BD07}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{C9B09FF6-91FF-41C8-9E6D-099AB26135BE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CA72B993-DCA5-4262-B738-83C91475CE9C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CC144FC2-56A7-4A7C-AC7F-3F057E596E8B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CC70A772-8900-40FF-9FA2-27ABCB0A1AE6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CE816A8E-7437-408B-A1DD-EDFC1E132E68}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CE9CB852-D515-45BE-8C3E-ECBB78BAAD25}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CEC6ED99-BD76-458D-9F11-F8B41EC273C2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CF0D0FA3-7633-4E0D-A1A2-3C6D3ECAB62C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CF8AC4FF-5E96-433B-8D21-96FE3A150B69}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{CFCF613D-7228-4753-A302-56663DF6788F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D097D467-2710-4A56-9EDC-01F6D4B74757}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D0B7DF1E-5BC3-420C-9DD0-7A5D882D8ABB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D0BE71EC-1D8D-4478-9D7C-BE4236C4E539}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D16F1B9F-0276-4A0B-BB7E-E462E9D7F704}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D1BC7C93-3167-4E80-9C59-3A32F3D91F69}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D3864E1D-9C16-4812-803C-0FEDFD9D5AB2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D410C81C-C8D8-49D8-B8ED-8F144E6637CB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D42D4D7D-9C06-481D-AB30-F4E40F4C1F9E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D4D6F28E-821F-45B4-8F8C-C878FE2F40C3}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D4E82FEF-64BF-44ED-8F99-80A9F3B00C3E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D557A3E6-D0E7-4668-95F7-41952CEDDFC8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D571DE8C-1749-4AE9-9299-99DBF8C19368}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D6DEA275-1051-4042-8E05-440B3B1A5552}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D6FD77ED-95C2-4D2C-A760-B499FC5847B0}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D8CD73B1-7489-453D-819C-7311998A9AE2}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D8E51F58-FB8E-4D98-BAFE-2F60210C7EBE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{D9FE4994-C08B-4901-B797-AF029A9FE0FE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DA6355B1-B1B8-40E5-9439-775EF230BB7E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DA6FC738-78AA-47F8-8D92-71B8763231FA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DA904B26-8E7D-4C8D-9304-9EE65857DE45}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DACC62BA-72EC-474D-A9A5-DE69EFD28E8D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DADF5611-7CDE-4D39-B52F-CA76B56C3747}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DB1AF306-5370-4B41-A0F4-3FE3D91E8C86}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DB4142B4-8834-4CA4-A022-844C2269204E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DC200043-B260-48C5-BF7D-00BC3275C45A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DC30DD61-3A0A-4009-BB24-3DE4EE2E8560}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DD06B742-70B9-40BD-8E72-18620ECDCD1F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DD4BD231-FB36-411F-BC21-3778E5666A84}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DD742082-769A-4E6D-ABE8-471377A77EBF}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DDCE2646-79BC-49D8-8419-3BF4BA755FEA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{DE83AE62-5858-4D21-9108-AD4F357D7E65}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E076D122-A73D-41AF-8167-177F6FE0A05D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E3B7A127-8750-4065-B7F9-4739A44AD59A}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E3BCA98C-1858-4669-A9BC-7200CE8A5A43}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E4597D3B-2DD7-485B-9CFD-77C490F29BBA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E4969AEC-79E1-4735-B6E2-AB4D58B0E82D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E54C7B88-B817-43AB-BFF9-91C00027912D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E5681C7D-0D6A-48AB-BEDC-75A48C4BF401}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E5D4340F-7AA1-4A86-8864-ABC534D0CCA6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E60F863A-906F-44A4-86A6-9EA445A84AD3}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E620583B-BD86-4142-A839-B07C8228969B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E6E410A2-AFC0-4F7D-8A4B-B8CA182D7357}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E79C9790-35B2-4D45-BB20-CF17EFD58E3C}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E7AEFC0E-0E1B-4063-B86A-B0DACFCE3F09}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E827D2A7-FC1A-4C1B-A76B-D74385DB1310}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E8810F2E-1A78-45C4-8D23-7B6DBAC91F4B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E9A0740E-4D64-4F3A-8851-E7334FBE1786}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{E9E86944-86BB-413B-AE83-4A86B19F06B4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EA171B60-0A96-45B3-92DA-46AF0EE81260}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EA90C0DB-E7F8-49F7-BC53-8383165CC352}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EB26EAE1-1078-4232-8309-2EF3834EC6D9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EB5CC1EA-7BA8-4362-A72C-2A21CB5B2CB3}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EBBCAF46-C57E-4480-AA7C-3988237D8A05}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EBBD7D4B-D457-4BE6-8CC0-B232584B80DD}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EBC52664-40B2-4EB8-8888-B7D00EEACC64}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EC2BD735-C17B-4790-B98A-D9438A67D419}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EDB07D75-133D-4CF0-82F7-8493582AD1B4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EDC89006-1FCE-4A50-8EF0-9DD287A792D1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EDE98D2E-54F5-4E7C-BBE7-E4731280D1EB}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EDF3CF84-4B5E-47C6-A17B-CE0E61817D81}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EF16BB19-427C-4222-AEDA-82AE859B6DD6}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{EFDEFCF0-2BCD-44C0-9C2C-F01987186182}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F0912FE3-3584-4210-AECA-581B2B3B9ECD}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F1971C61-4B13-4043-A71F-157766F9093F}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F1C96890-3CF3-4B0A-B442-6CB945091199}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F3ADE011-B52A-4C53-A0A2-D2BD15E302C4}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F48B8247-1AEA-4438-B0DF-8085615E11D0}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F5B96869-0CC9-4DB0-A309-510127F6B98B}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F6D1D22B-3035-4F87-833C-FE970F8DB3BD}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F78620C7-0359-4F2F-B1B6-86B5CB276AB7}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F801E612-0E72-4D14-B2A1-6FFAAEB4EE3D}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F821A0FC-0343-4326-87D9-7389C2438771}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F84746A3-DE37-4928-A7F5-FEA4EF1141A1}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F847D486-C79D-46B2-AC90-2895AAE6A7B8}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{F9CB3134-51B7-491E-A283-7FE56E5D6466}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FA304955-5D1A-44AD-A634-ED2FF29C03EA}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FA6946E6-3158-419E-A912-2117EB447848}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FA8615BF-C076-4EB0-9FD5-03273ADC6E67}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FA9E0284-59DE-4927-A34F-7878BA3CEDB9}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FB1D4020-FDF8-44DC-BAE4-352798CA27EE}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FB1E1623-5BDD-4128-8512-0407B319F27E}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FBE02EE1-DC3C-48C4-81DF-1A9F984B13DD}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FCEFB1B9-391B-41D1-BE94-96E55CB23B51}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FD241423-6E69-42F3-B029-A2365652A328}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FD826F3F-7B5B-4EC7-B2A6-7DDA742CC858}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FE0B4657-79A3-47C9-9FEE-22C9FCE8AC39}
Successfully deleted: [Empty Folder] C:\Users\Bill's\appdata\local\{FFC02645-2E16-4911-8DEC-3363801216F4}



~~~ FireFox

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\[email protected]
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@DailyBibleGuide.com/Plugin
Emptied folder: C:\Users\Bill's\AppData\Roaming\mozilla\firefox\profiles\4cndd157.default\minidumps [2244 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 09/25/2013 at 11:51:21.84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#7
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
My MBR LogaswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-09-25 12:16:10
-----------------------------
12:16:10.602 OS Version: Windows x64 6.1.7601 Service Pack 1
12:16:10.602 Number of processors: 8 586 0x2A07
12:16:10.602 ComputerName: LOU UserName:
12:16:10.817 Initialize success
12:18:42.654 AVAST engine defs: 13092500
12:18:48.231 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
12:18:48.233 Disk 0 Vendor: M4-CT256 000F Size: 244198MB BusType: 3
12:18:48.236 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
12:18:48.238 Disk 1 Vendor: ST316031 CC38 Size: 152626MB BusType: 3
12:18:48.241 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IAAStorageDevice-3
12:18:48.244 Disk 2 Vendor: ST316081 CC2J Size: 152626MB BusType: 3
12:18:48.254 Disk 0 MBR read successfully
12:18:48.257 Disk 0 MBR scan
12:18:48.263 Disk 0 Windows 7 default MBR code
12:18:48.267 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
12:18:48.274 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 244096 MB offset 206848
12:18:48.292 Disk 0 scanning C:\Windows\system32\drivers
12:18:52.857 Service scanning
12:19:00.012 Modules scanning
12:19:00.751 AVAST engine scan C:\Windows
12:19:01.454 AVAST engine scan C:\Windows\system32
12:20:38.077 AVAST engine scan C:\Windows\system32\drivers
12:20:41.548 AVAST engine scan C:\Users\Bill's
12:21:37.293 Disk 0 MBR has been saved successfully to "C:\Users\Bill's\Documents\MBR.dat"
12:21:37.296 The log file has been saved successfully to "C:\Users\Bill's\Documents\aswMBR.txt"
  • 0

#8
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
My Speccy Log Operating System
Windows 7 Home Premium 64-bit SP1
CPU
Intel Core i7 2700K @ 3.50GHz 34 °C
Sandy Bridge 32nm Technology
RAM
8.00GB Dual-Channel DDR3 @ 800MHz (9-9-9-24)
Motherboard
ASRock P67 Extreme4 Gen3 (CPUSocket) 39 °C
Graphics
SMP1980ER (1280x1024@60Hz)
1024MB ATI Radeon HD 5700 Series (XFX Pine Group) 47 °C
Hard Drives
238GB M4-CT256M4SSD2 (SSD)
149GB Seagate ST3160318AS (SATA) 29 °C
149GB Seagate ST3160813AS (SATA) 30 °C
Optical Drives
ASUS DRW-24B1ST a
Audio
Realtek High Definition Audio
Operating System
Windows 7 Home Premium 64-bit SP1
Computer type: Desktop
Installation Date: 7/3/2012 2:25:07 PM
Serial Number:
Windows Security Center
User Account Control (UAC) Disabled
Firewall Enabled
Windows Update
AutoUpdate Notify prior to download
Windows Defender
Windows Defender Enabled
Antivirus
Antivirus Disabled
Display Name Avira Desktop
Virus Signature Database Up to date
.NET Frameworks installed
v4.5 Full
v4.5 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 10.0.9200.16686
PowerShell
Version 2.0
Java
Java Runtime Environment
Path C:\Program Files (x86)\Java\jre7\bin\java.exe
Version 7.0
Update 25
Build 16
Environment Variables
USERPROFILE C:\Users\Bill's
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Bill's\AppData\Local\Temp
TMP C:\Users\Bill's\AppData\Local\Temp
Machine Variables
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
OS Windows_NT
Path C:\Program Files (x86)\AMD APP\bin\x86_64
C:\Program Files (x86)\AMD APP\bin\x86
C:\Program Files\Common Files\Microsoft Shared\Windows Live
C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live
C:\Windows\system32
C:\Windows
C:\Windows\System32\Wbem
%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
C:\Program Files (x86)\Windows Live\Shared
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE AMD64
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
NUMBER_OF_PROCESSORS 8
PROCESSOR_LEVEL 6
PROCESSOR_IDENTIFIER Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
PROCESSOR_REVISION 2a07
windows_tracing_logfile C:\BVTBin\Tests\installpackage\csilogfile.log
windows_tracing_flags 3
AMDAPPSDKROOT C:\Program Files (x86)\AMD APP\
Battery
AC Line Online
Battery Charge % 100 %
Battery State High
Remaining Battery Time Unknown
Power Profile
Active power scheme Balanced
Hibernation Disabled
Turn Off Monitor after: (On AC Power) 10 min
Turn Off Monitor after: (On Battery Power) 10 min
Turn Off Hard Disk after: (On AC Power) 20 min
Turn Off Hard Disk after: (On Battery Power) 10 min
Suspend after: (On AC Power) Never
Suspend after: (On Battery Power) Never
Screen saver Enabled
Uptime
Current Session
Current Time 9/25/2013 12:45:01 PM
Current Uptime 303 sec (0 d, 00 h, 05 m, 03 s)
Last Boot Time 9/25/2013 12:39:58 PM
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Process List
armsvc.exe
Process ID 1244
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 3.96 MB
Peak Memory Usage 3.98 MB
ASHelper.exe
Process ID 2928
User Bill's
Domain LOU
Path C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
atieclxx.exe
Process ID 1324
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\atieclxx.exe
Memory Usage 7.54 MB
Peak Memory Usage 7.55 MB
atiesrxx.exe
Process ID 1000
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\atiesrxx.exe
Memory Usage 5.07 MB
Peak Memory Usage 5.10 MB
audiodg.exe
Process ID 1092
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 19 MB
Peak Memory Usage 26 MB
avgnt.exe
Process ID 2716
User Bill's
Domain LOU
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
Memory Usage 7.92 MB
Peak Memory Usage 236 MB
avguard.exe
Process ID 2080
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
Memory Usage 45 MB
Peak Memory Usage 329 MB
avmailc.exe
Process ID 4468
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
Memory Usage 1.25 MB
Peak Memory Usage 8.64 MB
avshadow.exe
Process ID 4448
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
Memory Usage 4.63 MB
Peak Memory Usage 4.68 MB
avwebgrd.exe
Process ID 4488
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
Memory Usage 12 MB
Peak Memory Usage 12 MB
CCC.exe
Process ID 3736
User Bill's
Domain LOU
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Memory Usage 5.89 MB
Peak Memory Usage 107 MB
CNQMMAIN.EXE
Process ID 2856
User Bill's
Domain LOU
Path C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
Memory Usage 25 MB
Peak Memory Usage 67 MB
CNQMSWCS.EXE
Process ID 2500
User Bill's
Domain LOU
Path C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
Memory Usage 69 MB
Peak Memory Usage 69 MB
CNQMUPDT.EXE
Process ID 3372
User Bill's
Domain LOU
Path C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
Memory Usage 22 MB
Peak Memory Usage 22 MB
Core Temp.exe
Process ID 1880
User Bill's
Domain LOU
Path C:\Users\Bill's\Documents\CoreTemp64\Core Temp.exe
Memory Usage 4.75 MB
Peak Memory Usage 12 MB
csrss.exe
Process ID 516
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 5.04 MB
Peak Memory Usage 5.05 MB
csrss.exe
Process ID 612
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 6.95 MB
Peak Memory Usage 13 MB
dwm.exe
Process ID 1640
User Bill's
Domain LOU
Path C:\Windows\system32\Dwm.exe
Memory Usage 33 MB
Peak Memory Usage 34 MB
explorer.exe
Process ID 1712
User Bill's
Domain LOU
Path C:\Windows\Explorer.EXE
Memory Usage 61 MB
Peak Memory Usage 69 MB
IAStorDataMgrSvc.exe
Process ID 1560
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Intel\Intel Rapid Storage Technology\IAStorDataMgrSvc.exe
Memory Usage 21 MB
Peak Memory Usage 21 MB
IAStorIcon.exe
Process ID 2700
User Bill's
Domain LOU
Path C:\Program Files (x86)\Intel\Intel Rapid Storage Technology\IAStorIcon.exe
Memory Usage 24 MB
Peak Memory Usage 24 MB
ijplmsvc.exe
Process ID 2224
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
Memory Usage 3.66 MB
Peak Memory Usage 3.66 MB
jusched.exe
Process ID 2876
User Bill's
Domain LOU
Path C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Memory Usage 4.52 MB
Peak Memory Usage 4.52 MB
lsass.exe
Process ID 684
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
lsm.exe
Process ID 692
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 4.79 MB
Peak Memory Usage 4.80 MB
McciCMService.exe
Process ID 2396
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Motive\McciCMService.exe
Memory Usage 7.10 MB
Peak Memory Usage 7.17 MB
McciCMService.exe
Process ID 2284
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
Memory Usage 6.50 MB
Peak Memory Usage 6.61 MB
MOM.exe
Process ID 2984
User Bill's
Domain LOU
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
Memory Usage 3.90 MB
Peak Memory Usage 28 MB
OpWareSE4.exe
Process ID 2684
User Bill's
Domain LOU
Path C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe
Memory Usage 3.94 MB
Peak Memory Usage 3.94 MB
PhotoshopElementsFileAgent.exe
Process ID 1932
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
Memory Usage 1.00 MB
Peak Memory Usage 6.55 MB
PhotoshopElementsFileAgent.exe
Process ID 2020
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
Memory Usage 1.01 MB
Peak Memory Usage 6.54 MB
PrintIsolationHost.exe
Process ID 1476
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\PrintIsolationHost.exe
Memory Usage 5.26 MB
Peak Memory Usage 5.30 MB
PrintScreen.exe
Process ID 2508
User Bill's
Domain LOU
Path C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
Memory Usage 8.37 MB
Peak Memory Usage 8.45 MB
RAVCpl64.exe
Process ID 2480
User Bill's
Domain LOU
Path C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
Memory Usage 12 MB
Peak Memory Usage 13 MB
realsched.exe
Process ID 2976
User Bill's
Domain LOU
Path C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
Memory Usage 412 KB
Peak Memory Usage 6.67 MB
rndlresolversvc.exe
Process ID 2564
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
Memory Usage 3.98 MB
Peak Memory Usage 3.98 MB
SASCore64.exe
Process ID 1980
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
Memory Usage 4.45 MB
Peak Memory Usage 4.47 MB
sched.exe
Process ID 1492
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
Memory Usage 2.38 MB
Peak Memory Usage 6.71 MB
services.exe
Process ID 660
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 12 MB
Peak Memory Usage 15 MB
smss.exe
Process ID 348
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 1.35 MB
Peak Memory Usage 1.39 MB
SMSvcHost.exe
Process ID 2448
User LOCAL SERVICE
Domain NT AUTHORITY
Path c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
Memory Usage 23 MB
Peak Memory Usage 23 MB
spd.exe
Process ID 2180
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\ASRock\XFast LAN\spd.exe
Memory Usage 9.73 MB
Peak Memory Usage 9.83 MB
Speccy64.exe
Process ID 476
User Bill's
Domain LOU
Path C:\Program Files\Speccy\Speccy64.exe
Memory Usage 32 MB
Peak Memory Usage 32 MB
splwow64.exe
Process ID 2592
User Bill's
Domain LOU
Path C:\Windows\splwow64.exe
Memory Usage 10 MB
Peak Memory Usage 11 MB
spoolsv.exe
Process ID 1464
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
sppsvc.exe
Process ID 3912
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\sppsvc.exe
Memory Usage 9.08 MB
Peak Memory Usage 9.08 MB
svchost.exe
Process ID 2728
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
svchost.exe
Process ID 3116
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
svchost.exe
Process ID 1120
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.63 MB
Peak Memory Usage 5.63 MB
svchost.exe
Process ID 1220
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
svchost.exe
Process ID 1700
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 16 MB
Peak Memory Usage 98 MB
svchost.exe
Process ID 2160
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 9.72 MB
Peak Memory Usage 9.86 MB
svchost.exe
Process ID 848
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
svchost.exe
Process ID 932
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
svchost.exe
Process ID 4832
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 6.99 MB
Peak Memory Usage 7.02 MB
svchost.exe
Process ID 144
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 20 MB
Peak Memory Usage 20 MB
svchost.exe
Process ID 2732
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 7.12 MB
Peak Memory Usage 7.30 MB
svchost.exe
Process ID 1160
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 452
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 152 MB
Peak Memory Usage 175 MB
svchost.exe
Process ID 512
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 17 MB
Peak Memory Usage 19 MB
svchost.exe
Process ID 492
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 45 MB
Peak Memory Usage 45 MB
svchost.exe
Process ID 3000
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 31 MB
Peak Memory Usage 44 MB
System
Process ID 4
Memory Usage 304 KB
Peak Memory Usage 11 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 4744
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\taskeng.exe
Memory Usage 5.45 MB
Peak Memory Usage 5.51 MB
taskeng.exe
Process ID 1660
User Bill's
Domain LOU
Path C:\Windows\system32\taskeng.exe
Memory Usage 7.33 MB
Peak Memory Usage 7.36 MB
taskhost.exe
Process ID 1588
User Bill's
Domain LOU
Path C:\Windows\system32\taskhost.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
wininit.exe
Process ID 596
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage 5.41 MB
Peak Memory Usage 5.50 MB
winlogon.exe
Process ID 720
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 8.37 MB
Peak Memory Usage 9.33 MB
WLIDSVC.EXE
Process ID 3140
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Memory Usage 16 MB
Peak Memory Usage 16 MB
WLIDSVCM.EXE
Process ID 3416
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
Memory Usage 3.98 MB
Peak Memory Usage 4.01 MB
WmiApSrv.exe
Process ID 4596
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\WmiApSrv.exe
Memory Usage 6.85 MB
Peak Memory Usage 6.85 MB
WmiPrvSE.exe
Process ID 2780
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 17 MB
Peak Memory Usage 17 MB
WmiPrvSE.exe
Process ID 1836
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 32 MB
Peak Memory Usage 32 MB
WmiPrvSE.exe
Process ID 5524
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 9.80 MB
Peak Memory Usage 10 MB
wmpnetwk.exe
Process ID 5192
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Program Files\Windows Media Player\wmpnetwk.exe
Memory Usage 30 MB
Peak Memory Usage 30 MB
WrtMon.exe
Process ID 2468
User Bill's
Domain LOU
Path C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
Memory Usage 5.89 MB
Peak Memory Usage 5.89 MB
WrtProc.exe
Process ID 2572
User Bill's
Domain LOU
Path C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
Memory Usage 5.33 MB
Peak Memory Usage 5.33 MB
WUDFHost.exe
Process ID 4880
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\WUDFHost.exe
Memory Usage 6.72 MB
Peak Memory Usage 6.73 MB
XFastUsb.exe
Process ID 2708
User Bill's
Domain LOU
Path C:\Program Files (x86)\XFastUsb\XFastUsb.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
Scheduler
9/25/2013 12:45 PM; Adobe Flash Player Updater
9/26/2013 2:00 AM; AdobeAAMUpdater-1.0-LOU-Bill's
10/2/2013 11:36 AM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-1511813459-1651382884-3492082021-1000
Asrsetup
CCleanerSkipUAC
Core Temp Autostart Bill's
RealPlayerRealUpgradeLogonTaskS-1-5-21-1511813459-1651382884-3492082021-1000
Hotfixes
9/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.159.552.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/20/2013 Definition Update for Windows Defender - KB915597 (Definition 1.159.314.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/17/2013 Definition Update for Windows Defender - KB915597 (Definition 1.159.53.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/14/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1846.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/10/2013 Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Microsoft has released an update for Microsoft PowerPoint 2010
32-Bit Edition. This update provides the latest fixes to Microsoft
PowerPoint 2010 32-Bit Edition. Additionally, this update contains
stability and performance improvements.
9/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2870699)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/10/2013 Windows Malicious Software Removal Tool x64 - September 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
9/10/2013 Update for Windows 7 for x64-based Systems (KB2853952)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/10/2013 Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Microsoft has released an update for Microsoft PowerPoint 2010
32-Bit Edition. This update provides the latest fixes to Microsoft
PowerPoint 2010 32-Bit Edition. Additionally, this update contains
stability and performance improvements.
9/10/2013 Security Update for Windows 7 for x64-based Systems (KB2872339)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/10/2013 Security Update for Windows 7 for x64-based Systems (KB2876315)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/10/2013 Update for Windows 7 for x64-based Systems (KB2868116)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/10/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1576.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1306.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/4/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
9/4/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1012.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/31/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.758.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.478.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.2595.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/17/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.2386.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2862966)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2862772)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Update for Windows 7 for x64-based Systems (KB2863058)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
8/14/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2840642)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2849470)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Windows Malicious Software Removal Tool x64 - August 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2859537)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2861855)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2868623)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/13/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.2116.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/9/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/9/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/9/2013 Hotfix for Windows (KB947821)
Fix for KB947821
8/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.1859.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/7/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/7/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/7/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/7/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/7/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.1598.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/24/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
7/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.565.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/21/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.311.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.29.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/12/2013 Windows Malicious Software Removal Tool x64 - July 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
7/12/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1833.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2840631)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Windows Malicious Software Removal Tool x64 - July 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2847927)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2833957)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2845187)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2846071)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2833946)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2850851)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2840642)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2835364)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2832414)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2834886)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2835361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1573.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1309.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/4/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1042.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/29/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.790.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/28/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.562.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.318.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.22.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/14/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.2213.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/14/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836942)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/14/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2845690)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Windows Malicious Software Removal Tool x64 - June 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
6/13/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 (KB2838727)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2839894)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2859903)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2808679)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2836502)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2813430)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2834140)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/11/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1977.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1542.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/1/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1320.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.798.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/21/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.543.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/18/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.280.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/16/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2805221)
This update addresses reliability, stability, compatibility and
performance issues in Microsoft .NET Framework 4.5. After you
install this item, you may have to restart your computer.
5/16/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2805226)
This update addresses reliability, stability, compatibility and
performance issues in Microsoft .NET Framework 4.5. After you
install this item, you may have to restart your computer.
5/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.173.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2830290)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2820331)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2798162)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2813956)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Server 2008, and Server 2008 R2 for x64 (KB2804582)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2829361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Windows Malicious Software Removal Tool x64 - May 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
5/16/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2804579)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2829530)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Cumulative Security Update for ActiveX Killbits for Windows 7 for x64-based Systems (KB2820197)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.1652.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/8/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.1380.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/30/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.884.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/26/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.649.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/24/2013 Security Update for Windows 7 for x64-based Systems (KB2840149)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.350.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/13/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1685.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813347)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Windows Malicious Software Removal Tool x64 - April 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2808735)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2823324)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2817183)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Update for Windows 7 for x64-based Systems (KB2799926)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813170)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1392.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1105.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/2/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.868.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/29/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.700.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/26/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.471.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.212.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/21/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.2105.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1873.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/14/2013 Internet Explorer 10 for Windows 7 for x64-based Systems
Internet Explorer 10 is fast and fluid, and lets your websites
shine and perform just like native apps on your PC.
Internet
Explorer 10. Fast and fluid for Windows 7.
• Fast. Internet
Explorer 10 harnesses the untapped power of your PC, delivering
pages full of vivid graphics, smoother video, and interactive
content.
• Easy. Experience the web the way you want to with
pinned sites, built-in Spellcheck, and seamless integration with
your PC running Windows 7.
• Safer. Improved features like SmartScreen
Filter and Tracking Protection let you be more aware of threats
to your PC and your privacy.
3/14/2013 Security Update for Windows 7 for x64-based Systems (KB2807986)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
3/14/2013 Windows Malicious Software Removal Tool x64 - March 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
3/14/2013 Update for Windows 7 for x64-based Systems (KB2791765)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
3/14/2013 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2809289)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
3/14/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1584.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1381.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/7/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1035.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/2/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.817.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/27/2013 Platform Update for Windows 7 x64-Edition (KB2670838)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
2/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.509.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.236.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2586.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/15/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2336.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2719033)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain access to information.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2799494)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2789645)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2778344)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Windows Malicious Software Removal Tool x64 - February 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
2/13/2013 Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2797052)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2790113)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2790655)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
2/13/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2789648)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2792100)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
2/12/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2086.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1848.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/5/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1556.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/1/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1318.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/31/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1033.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.765.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.502.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.193.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/15/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3926.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/11/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3676.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/10/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
1/10/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2750147)
This update addresses compatibility, stability, reliability,
and performance issues in Microsoft .NET Framework 4.5. After
you install this item, you may have to restart your computer.
1/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2742613)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Server 2008, and Server 2008 R2 for x64 (KB2737083)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/10/2013 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2468871)
Install this update to resolve issues in Microsoft .NET Framework
4. For a complete listing of the issues that are included in
this update, see the associated Microsoft Knowledge Base article
for more information. After you install this item, you may have
to restart your computer.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2742595)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2468871)
Install this update to resolve issues in Microsoft .NET Framework
4. For a complete listing of the issues that are included in
this update, see the associated Microsoft Knowledge Base article
for more information. After you install this item, you may have
to restart your computer.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2737019)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2729449)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2604121)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2656351)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2736428)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected application to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
1/9/2013 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2533523)
This update addresses stability, reliability, and performance
issues in Microsoft .NET Framework 4. After you install this
item, you may have to restart your computer.
1/9/2013 Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2600217)
This update addresses stability, reliability, and performance
issues in Microsoft .NET Framework 4. After you install this
item, you may have to restart your computer.
1/9/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
System Folders
Path for burning CD C:\Users\Bill's\AppData\Local\Microsoft\Windows\Burn\Burn1
Application Data C:\ProgramData
Public Desktop C:\Users\Public\Desktop
Documents C:\Users\Public\Documents
Global Favorites C:\Users\Bill's\Favorites
Music C:\Users\Public\Music
Pictures C:\Users\Public\Pictures
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Videos C:\Users\Public\Videos
Cookies C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Bill's\Desktop
Physical Desktop C:\Users\Bill's\Desktop
User Favorites C:\Users\Bill's\Favorites
Fonts C:\Windows\Fonts
Internet History C:\Users\Bill's\AppData\Local\Microsoft\Windows\History
Temporary Internet Files C:\Users\Bill's\AppData\Local\Microsoft\Windows\Temporary Internet Files
Local Application Data C:\Users\Bill's\AppData\Local
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Program Files C:\Program Files
Services
Running Adobe Acrobat Update Service
Running Adobe Active File Monitor V10
Running Adobe Active File Monitor V9
Running AMD External Events Utility
Running Application Experience
Running Application Host Helper Service
Running Avira Mail Protection
Running Avira Real-Time Protection
Running Avira Scheduler
Running Avira Web Protection
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Running cFosSpeed System Service
Running CNG Key Isolation
Running COM+ Event System
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic Service Host
Running Diagnostic System Host
Running Distributed Link Tracking Client
Running DNS Client
Running Extensible Authentication Protocol
Running Group Policy Client
Running Human Interface Device Access
Running IKE and AuthIP IPsec Keying Modules
Running Intel Rapid Storage Technology
Running IP Helper
Running IPsec Policy Agent
Running McciCMService
Running McciCMService64
Running Multimedia Class Scheduler
Running Net.Pipe Listener Adapter
Running Net.Tcp Listener Adapter
Running Net.Tcp Port Sharing Service
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running Peer Networking Identity Manager
Running Plug and Play
Running Portable Device Enumerator Service
Running Power
Running Print Spooler
Running Program Compatibility Assistant Service
Running RealNetworks Downloader Resolver Service
Running Remote Procedure Call (RPC)
Running RPC Endpoint Mapper
Running SAS Core Service
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Software Protection
Running SSDP Discovery
Running Superfetch
Running System Event Notification Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Themes
Running UPnP Device Host
Running User Profile Service
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Defender
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Image Acquisition (WIA)
Running Windows Live ID Sign-in Assistant
Running Windows Management Instrumentation
Running Windows Media Player Network Sharing Service
Running Windows Process Activation Service
Running Windows Update
Running WinHTTP Web Proxy Auto-Discovery Service
Running WLAN AutoConfig
Running WMI Performance Adapter
Running Workstation
Running World Wide Web Publishing Service
Stopped ActiveX Installer (AxInstSV)
Stopped Adaptive Brightness
Stopped Adobe Flash Player Update Service
Stopped Application Identity
Stopped Application Information
Stopped Application Layer Gateway Service
Stopped ASP.NET State Service
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped Computer Browser
Stopped Credential Manager
Stopped Disk Defragmenter
Stopped Distributed Transaction Coordinator
Stopped Encrypting File System (EFS)
Stopped Fax
Stopped Function Discovery Provider Host
Stopped Function Discovery Resource Publication
Stopped Health Key and Certificate Management
Stopped HomeGroup Listener
Stopped HomeGroup Provider
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped Media Center Extender Service
Stopped Microsoft .NET Framework NGEN v2.0.50727_X64
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X64
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Mozilla Maintenance Service
Stopped Net.Msmq Listener Adapter
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office Source Engine
Stopped Office Software Protection Platform
Stopped Parental Controls
Stopped Peer Name Resolution Protocol
Stopped Peer Networking Grouping
Stopped Performance Counter DLL Host
Stopped Performance Logs & Alerts
Stopped PnP-X IP Bus Enumerator
Stopped PNRP Machine Name Publication Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Access Connection Manager
Stopped Remote Desktop Configuration
Stopped Remote Desktop Services
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Secondary Logon
Stopped Secure Socket Tunneling Protocol Service
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped SPP Notification Service
Stopped Tablet PC Input Service
Stopped Telephony
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Activation Technologies Service
Stopped Windows Backup
Stopped Windows Biometric Service
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Connect Now - Config Registrar
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Installer
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Modules Installer
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Windows Search
Stopped Windows Time
Stopped Wired AutoConfig
Stopped WWAN AutoConfig
Security Options
Accounts: Administrator account status Disabled
Accounts: Guest account status Disabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network Security: Allow PKU2U authentication requests to this computer to use online identities Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Elevate without prompting
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Disabled
User Account Control: Switch to the secure desktop when prompting for elevation Disabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x64-based PC
Microsoft ACPI-Compliant System
ACPI Power Button
Motherboard resources
System board
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
ACPI Fixed Feature Button
PCI bus
2nd generation Intel Core processor family DRAM Controller - 0100
Intel Management Engine Interface
Intel 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
Intel 6 Series/C200 Series Chipset Family SMBus Controller - 1C22
System board
System board
Motherboard resources
High precision event timer
Microsoft Windows Management Interface for ACPI
2nd generation Intel® Core™ processor family PCI Express Controller - 0101
ATI Radeon HD 5700 Series
Generic PnP Monitor
High Definition Audio Controller
AMD High Definition Audio Device
Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
USB Root Hub
Generic USB Hub
USB Mass Storage Device
Generic- Compact Flash USB Device
Generic- SM/xD-Picture USB Device
Generic- SD/MMC USB Device
Generic- MS/MS-Pro USB Device
High Definition Audio Controller
Realtek High Definition Audio
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 5 - 1C18
Marvell 91xx SATA 6G Controller
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 6 - 1C1A
Etron USB 3.0 Extensible Host Controller
Etron USB 3.0 Extensible Root Hub
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 7 - 1C1C
Etron USB 3.0 Extensible Host Controller
Etron USB 3.0 Extensible Root Hub
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 8 - 1C1E
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
Realtek PCI GBE Family Controller
NEC PCI to USB Open Host Controller
USB Root Hub
Microsoft Hardware USB Wireless Mouse
HID Non-User Input Data Filter (KB 911895)
HID-compliant mouse
USB Composite Device
USB Input Device (Logitech Download Assistant)
HID Keyboard Device
USB Input Device
HID-compliant mouse
HID-compliant consumer control device
HID-compliant device
HID-compliant device
USB Input Device
HID-compliant device
HID-compliant device
HID-compliant device
NEC PCI to USB Open Host Controller
USB Root Hub
USB Input Device
HID UPS Battery
Standard Enhanced PCI to USB Host Controller
USB Root Hub
USB Printing Support
Canon iP4800 series
PCI standard PCI-to-PCI bridge
VIA 1394 OHCI Compliant Host Controller
PCI standard PCI-to-PCI bridge
Realtek PCIe GBE Family Controller
Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
USB Root Hub
Generic USB Hub
CanoScan 8800F
Intel® P67 Express Chipset Family LPC Interface Controller - 1C46
Motherboard resources
Standard floppy disk controller
Programmable interrupt controller
Direct memory access controller
System timer
System CMOS/real time clock
System speaker
Motherboard resources
Numeric data processor
Communications Port (COM1)
Intel® Desktop/Workstation/Server Express Chipset SATA AHCI Controller
M4-CT256M4SSD2
ST3160318AS
ASUS DRW-24B1ST a
ST3160813AS
CPU
Intel Core i7 2700K
Cores 4
Threads 8
Name Intel Core i7 2700K
Code Name Sandy Bridge
Package Socket 1155 LGA
Technology 32nm
Specification Intel Core i7-2700K CPU @ 3.50GHz
Family 6
Extended Family 6
Model A
Extended Model 2A
Stepping 7
Revision D2
Instructions MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, Intel 64, VMX, AES, AVX
Virtualization Supported, Enabled
Hyperthreading Supported, Enabled
Fan Speed 1976 RPM
Bus Speed 100.0 MHz
Stock Core Speed 3500 MHz
Stock Bus Speed 100 MHz
Average Temperature 34 °C
Caches
L1 Data Cache Size 4 x 32 KBytes
L1 Instructions Cache Size 4 x 32 KBytes
L2 Unified Cache Size 4 x 256 KBytes
L3 Unified Cache Size 8192 KBytes
Core 0
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 32 °C
Thread 1
APIC ID 0
Thread 2
APIC ID 1
Core 1
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 34 °C
Thread 1
APIC ID 2
Thread 2
APIC ID 3
Core 2
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 37 °C
Thread 1
APIC ID 4
Thread 2
APIC ID 5
Core 3
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 31 °C
Thread 1
APIC ID 6
Thread 2
APIC ID 7
RAM
Memory slots
Total memory slots 4
Used memory slots 2
Free memory slots 2
Memory
Type DDR3
Size 8192 MBytes
Channels # Dual
DRAM Frequency 800.0 MHz
CAS# Latency (CL) 9 clocks
RAS# to CAS# Delay (tRCD) 9 clocks
RAS# Precharge (tRP) 9 clocks
Cycle Time (tRAS) 24 clocks
Command Rate (CR) 1T
Physical Memory
Memory Usage 23 %
Total Physical 7.98 GB
Available Physical 6.08 GB
Total Virtual 9.93 GB
Available Virtual 7.75 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR3
Size 4096 MBytes
Manufacturer G.Skill
Max Bandwidth PC3-12800 (800 MHz)
Part Number F3-12800CL9-4GBRL
SPD Ext. EPP
XMP--2
Frequency
JEDEC #6
Frequency 838.1 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 30
tRC 41
Voltage 1.500 V
JEDEC #5
Frequency 761.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 27
tRC 37
Voltage 1.500 V
JEDEC #4
Frequency 685.7 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 24
tRC 33
Voltage 1.500 V
JEDEC #3
Frequency 609.5 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 22
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 19
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 457.1 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 22
Voltage 1.500 V
Slot #2
Type DDR3
Size 4096 MBytes
Manufacturer G.Skill
Max Bandwidth PC3-12800 (800 MHz)
Part Number F3-12800CL9-4GBRL
SPD Ext. EPP
XMP--2
Frequency
JEDEC #6
Frequency 838.1 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 30
tRC 41
Voltage 1.500 V
JEDEC #5
Frequency 761.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 27
tRC 37
Voltage 1.500 V
JEDEC #4
Frequency 685.7 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 24
tRC 33
Voltage 1.500 V
JEDEC #3
Frequency 609.5 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 22
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 19
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 457.1 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 22
Voltage 1.500 V
Motherboard
Manufacturer ASRock
Model P67 Extreme4 Gen3 (CPUSocket)
Version To Be Filled By O.E.M.
Chipset Vendor Intel
Chipset Model Sandy Bridge
Chipset Revision 09
Southbridge Vendor Intel
Southbridge Model P67
Southbridge Revision B3
System Temperature 39 °C
BIOS
Brand American Megatrends Inc.
Version P1.10
Date 8/30/2011
Voltage
CPU CORE 0.976 V
MEMORY CONTROLLER 1.848 V
AVCC 3.328 V
3VCC 3.328 V
VIN4 1.016 V
VIN5 1.696 V
VIN6 1.112 V
PCI Data
Slot PCI
Slot Type PCI
Slot Usage In Use
Bus Width 32 bit
Slot Designation PCI1
Characteristics 3.3V, Shared, PME
Slot Number 0
Slot PCI
Slot Type PCI
Slot Usage In Use
Bus Width 32 bit
Slot Designation PCI2
Characteristics 3.3V, Shared, PME
Slot Number 1
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation PCIE1
Characteristics 3.3V, Shared, PME
Slot Number 2
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation PCIE2
Characteristics 3.3V, Shared, PME
Slot Number 3
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation PCIE3
Characteristics 3.3V, Shared, PME
Slot Number 4
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation PCIE4
Characteristics 3.3V, Shared, PME
Slot Number 5
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation PCIE5
Characteristics 3.3V, Shared, PME
Slot Number 6
Graphics
Monitor
Name SMP1980ER on ATI Radeon HD 5700 Series
Current Resolution 1280x1024 pixels
Work Resolution 1280x984 pixels
State Enabled, Primary, Output devices support
Monitor Width 1280
Monitor Height 1024
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
ATI Radeon HD 5700 Series
Manufacturer ATI
Model Radeon HD 5700 Series
GPU Juniper
Device ID 1002-68B8
Subvendor XFX Pine Group (1682)
Current Performance Level Level 0
Voltage 0.950 V
Technology 40 nm
Die Size 166 mm²
Release Date Oct 13, 2009
DirectX Support 11.0
DirectX Shader Model 5.0
OpenGL Support 4.1
GPU Clock 850.0 MHz
Temperature 47 °C
Core Voltage 0.950 V
Bios Core Clock 850.00
Bios Mem Clock 1200.00
Driver version 9.12.0.0
BIOS Version 113-HD577AZNFA6-113-AC35000-100-XF
ROPs 16
Shaders 800 unified
Memory Type GDDR5
Memory 1024 MB
Bus Width 64x2 (128 bit)
Pixel Fillrate 13.6 GPixels/s
Bandwidth 76.8 GB/s
Noise Level Moderate
Max Power Draw 108 Watts
Count of performance levels : 3
Level 1
GPU Clock 400 MHz
Memory Clock 1200 MHz
Level 2
GPU Clock 600 MHz
Memory Clock 1200 MHz
Level 3
GPU Clock 850 MHz
Memory Clock 1200 MHz
Hard Drives
M4-CT256M4SSD2
Manufacturer Unknown manufacturer
Heads 16
Cylinders 16,383
SATA type SATA-III 6.0Gb/s
Device type Fixed
ATA Standard ACS2
Serial Number 00000000111603062C93
LBA Size 48-bit LBA
Power On Count 692 times
Power On Time 230.2 days
Speed Not used (SSD Drive)
Features S.M.A.R.T., APM, NCQ, TRIM, SSD
Transfer Mode SATA III
Interface SATA
Capacity 238 GB
Real size 256,060,514,304 bytes
RAID Type None
S.M.A.R.T
Status Good
01 Read Error Rate 100 (100) Data 0000000000
05 Reallocated Sectors Count 100 (100) Data 0000000000
09 Power-On Hours (POH) 100 (100) Data 0000001594
0C Device Power Cycle Count 100 (100) Data 00000002B4
AA New Failing Block Count 100 (100) Data 0000000000
AB Program Fail Count 100 (100) Data 0000000000
AC Erase Fail Count 100 (100) Data 0000000000
AD Average Block Erase Count 100 (100) Data 0000000010
AE Unexpected Power Loss Count 100 (100) Data 000000000E
B5 Non-4K Aligned Access Count 100 (100) Data 00017B0266
B7 SATA Downshift Error Count 100 (100) Data 0000000000
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000000
BD Factory Bad Block Count 100 (100) Data 0000000080
C2 Temperature 100 (100) Data 0000000000
C3 Hardware ECC Recovered 100 (100) Data 0000000000
C4 Reallocation Event Count 100 (100) Data 0000000000
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 SMART Off-Line Scan Uncorrectable Error Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 100 (100) Data 0000000000
CA Percentage Lifetime Used 100 (100) Data 0000000000
CE Write Error Rate 100 (100) Data 0000000000
Partition 0
Partition ID Disk #0, Partition #0
Size 100 MB
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number E031BC85
Size 238 GB
Used Space 78 GB (33%)
Free Space 160 GB (67%)
ST3160318AS
Manufacturer Seagate
Form Factor 3.5"
Heads 16
Cylinders 16,383
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number 9VY49BMT
LBA Size 48-bit LBA
Power On Count 1677 times
Power On Time 255.1 days
Speed 7200 RPM
Features S.M.A.R.T., AAM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 149 GB
Real size 160,040,803,840 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 29 °C
Temperature Range OK (less than 50 °C)
01 Read Error Rate 117 (100) Data 0007B80390
03 Spin-Up Time 097 (097) Data 0000000000
04 Start/Stop Count 098 (098) Data 0000000B8A
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 100 (253) Data 000005A4BD
09 Power-On Hours (POH) 094 (094) Data 00000017EB
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 099 (099) Data 000000068D
B7 SATA Downshift Error Count 100 (100) Data 0000000000
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000000
BD High Fly Writes (WDC) 100 (100) Data 0000000000
BE Temperature Difference from 100 071 (067) Data 001D1C001D
C2 Temperature 029 (040) Data 000000001D
C3 Hardware ECC Recovered 026 (018) Data 0007B80390
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
F0 Head Flying Hours 100 (253) Data 0000000BF4
F1 Total LBAs Written 100 (253) Data 000C9600AD
F2 Total LBAs Read 100 (253) Data 00EA0BEFCE
Partition 0
Partition ID Disk #1, Partition #0
Disk Letter D:
File System NTFS
Volume Serial Number 2C0D68C2
Size 149 GB
Used Space 17.7 GB (12%)
Free Space 131 GB (88%)
ST3160813AS
Manufacturer Seagate
Form Factor 3.5"
Heads 16
Cylinders 16,383
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number 9YP01TVA
LBA Size 48-bit LBA
Power On Count 1062 times
Power On Time 288.2 days
Speed 7200 RPM
Features S.M.A.R.T., AAM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 149 GB
Real size 160,040,803,840 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 30 °C
Temperature Range OK (less than 50 °C)
01 Read Error Rate 118 (099) Data 000BC03C64
03 Spin-Up Time 099 (097) Data 0000000000
04 Start/Stop Count 098 (098) Data 000000085F
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 072 (060) Data 0001075858
09 Power-On Hours (POH) 093 (093) Data 0000001B04
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 099 (099) Data 0000000426
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000001
BD High Fly Writes (WDC) 095 (095) Data 0000000005
BE Temperature Difference from 100 071 (068) Data 001D1C001D
C2 Temperature 029 (040) Data 000000001D
C3 Hardware ECC Recovered 037 (037) Data 000BC03C64
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
F0 Head Flying Hours 100 (253) Data 0000000FAF
F1 Total LBAs Written 100 (253) Data 00337CCDF3
F2 Total LBAs Read 100 (253) Data 0065A63691
Partition 0
Partition ID Disk #2, Partition #0
Disk Letter E:
File System NTFS
Volume Serial Number C8D5F400
Size 149 GB
Used Space 45 GB (31%)
Free Space 104 GB (69%)
Optical Drives
ASUS DRW-24B1ST a
Media Type DVD Writer
Name ASUS DRW-24B1ST a
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive F:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 2
Status OK
Audio
Sound Cards
AMD High Definition Audio Device
Realtek High Definition Audio
Playback Devices
Realtek Digital Output (Realtek High Definition Audio)
Speakers (Realtek High Definition Audio) (default)
Speaker Configuration
Speaker type Stereo
Peripherals
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Logitech
Location USB Input Device (Logitech Download Assistant)
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Microsoft
Location Microsoft Hardware USB Wireless Mouse
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Logitech
Location USB Input Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Canon iP4800 series
Device Kind Printer
Device Name Canon iP4800 series
Vendor Canon
Location USB Printing Support
Driver
Date 5-22-2012
Version 2.56.2.10
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMCBAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMICAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMDRAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMDCAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMD5AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMUIAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMINAF.INI
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSMAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMHOAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSSAF.SMR
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSDAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSQAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMEIAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF.CHM
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF.CHM
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMCPAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMUBAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMOPAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSBAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF.CHM
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNB_3750.TBL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMP0AF.DAT
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMP1AF.DAT
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMP2AF.DAT
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMFUAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLHAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNML2AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNML3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMPVAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSEAF.EXE
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBU3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBU6AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBM3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBM6AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBS3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBS6AF.DLL
File C:\Windows\system32\CNMLMAF.DLL
File C:\Windows\system32\spool\drivers\color\CNBAFDB0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFMB0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFMC0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFNA0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFNB0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFNC0.ICM
File C:\Windows\system32\spool\drivers\color\CNBJPRN3.ICM
File C:\Windows\system32\spool\PRTPROCS\x64\1\CNMPDAF.DLL
File C:\Windows\system32\spool\PRTPROCS\x64\1\CNMPPAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMVSAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMVSAF.EXE
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMW3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMW6AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.421
File C:\Windows\system32\CNMIUAF.DLL
CanoScan 8800F
Device Kind Camera/scanner
Device Name CanoScan 8800F
Vendor Canon
Location Port_#0004.Hub_#0007
Driver
Date 5-7-2009
Version 13.0.5.56
File C:\Windows\system32\CNQ4805C.DLL
File C:\Windows\system32\CNQ4805I.DLL
File C:\Windows\system32\CNQ4805L.DLL
File C:\Windows\twain_32\CNQ4805\CISDS.DS
File C:\Windows\twain_32\CNQ4805\SGUI.DLL
File C:\Windows\twain_32\CNQ4805\IOP.DLL
File C:\Windows\twain_32\CNQ4805\ITLIB32.DLL
File C:\Windows\twain_32\CNQ4805\SCANINTF.DLL
File C:\Windows\twain_32\CNQ4805\SCRPRMV.DLL
File C:\Windows\twain_32\CNQ4805\softfare.dll
File C:\Windows\twain_32\CNQ4805\TPM.DLL
File C:\Windows\twain_32\CNQ4805\IPM.DLL
File C:\Windows\twain_32\CNQ4805\IPM.DAT
File C:\Windows\twain_32\CNQ4805\RSTCOL.DLL
File C:\Windows\twain_32\CNQ4805\BaLCo.dll
File C:\Windows\twain_32\CNQ4805\CFine2.dll
File C:\Windows\twain_32\CNQ4805\libBLC.dll
File C:\Windows\twain_32\CNQ4805\MC2.DLL
File C:\Windows\twain_32\CNQ4805\CAPS.DLL
File C:\Windows\twain_32\CNQ4805\CUBS.DLL
File C:\Windows\twain_32\CNQ4805\HSL.DLL
File C:\Windows\twain_32\CNQ4805\AG.DLL
File C:\Windows\twain_32\CNQ4805\USIP.DLL
File C:\Windows\twain_32\CNQ4805\SGCFLTR.DLL
File C:\Windows\twain_32\CNQ4805\IJFSHLIB.DLL
File C:\Windows\twain_32\CNQ4805\IJFSHx64.DLL
File C:\Windows\twain_32\CNQ4805\CNQ4805.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805M.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805S.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805A.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805P.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805N.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805W.DAT
File C:\Windows\twain_32\CNQ4805\SGRES_US.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_JP.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_CZ.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_DE.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_ES.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_FR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_HU.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_IT.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_KR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_NL.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_PL.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_PT.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_RU.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_CN.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_TW.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_DK.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_NO.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_SE.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_FI.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_GR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_TR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_AR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_TH.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_ID.DLL
File C:\Windows\twain_32\CNQ4805\USDRESUS.DLL
File C:\Windows\twain_32\CNQ4805\USDRESJP.DLL
File C:\Windows\twain_32\CNQ4805\USDRESCZ.DLL
File C:\Windows\twain_32\CNQ4805\USDRESDE.DLL
File C:\Windows\twain_32\CNQ4805\USDRESES.DLL
File C:\Windows\twain_32\CNQ4805\USDRESFR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESHU.DLL
File C:\Windows\twain_32\CNQ4805\USDRESIT.DLL
File C:\Windows\twain_32\CNQ4805\USDRESKR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESNL.DLL
File C:\Windows\twain_32\CNQ4805\USDRESPL.DLL
File C:\Windows\twain_32\CNQ4805\USDRESPT.DLL
File C:\Windows\twain_32\CNQ4805\USDRESRU.DLL
File C:\Windows\twain_32\CNQ4805\USDRESCN.DLL
File C:\Windows\twain_32\CNQ4805\USDRESTW.DLL
File C:\Windows\twain_32\CNQ4805\USDRESDK.DLL
File C:\Windows\twain_32\CNQ4805\USDRESNO.DLL
File C:\Windows\twain_32\CNQ4805\USDRESSE.DLL
File C:\Windows\twain_32\CNQ4805\USDRESFI.DLL
File C:\Windows\twain_32\CNQ4805\USDRESGR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESTR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESAR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESTH.DLL
File C:\Windows\twain_32\CNQ4805\USDRESID.DLL
File C:\Windows\system32\spool\drivers\Color\CNZ005.ICC
File C:\Windows\system32\spool\drivers\Color\CNSR05.ICC
File C:\Windows\system32\spool\drivers\Color\CNSP05.ICC
File C:\Windows\system32\spool\drivers\Color\CNSN05.ICC
File C:\Windows\media\CSSAMP1.MID
File C:\Windows\system32\drivers\usbscan.sys
File C:\Windows\system32\CNQ4805O.DLL
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- Compact Flash USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- MS/MS-Pro USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- SD/MMC USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- SM/xD-Picture USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
SD/MMC
Device Kind Portable Device
Device Name SD/MMC
Vendor GENERIC-
Comment H:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
SM/xD-Picture
Device Kind Portable Device
Device Name SM/xD-Picture
Vendor GENERIC-
Comment G:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Compact Flash
Device Kind Portable Device
Device Name Compact Flash
Vendor GENERIC-
Comment I:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
MS/MS-Pro
Device Kind Portable Device
Device Name MS/MS-Pro
Vendor GENERIC-
Comment J:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Printers
Broderbund PDF Creator
Printer Port LPT1:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 300 dpi Color
Status Unknown
Driver
Driver Name Amyuni Document Converter 3.00 (v0.64)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\acpdf300.dll
Canon Inkjet PIXMA iP8500
Printer Port USB002
Print Processor BJ Print Processor3
Availability Always
Priority 1
Duplex None
Print Quality 4294967292 * 4294967292 dpi Color
Status The printer is being deleted
Driver
Driver Name Canon Inkjet PIXMA iP8500 (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\UNIDRV.DLL
Canon iP4800 series (Default Printer)
Printer Port USB004
Print Processor Canon iP4800 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon iP4800 series (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\CNMDRAF.DLL
Canon PRO-100 series
Printer Port USB001
Print Processor Canon PRO-100 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon PRO-100 series (v12.09)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\CNMDRBD.DLL
Canon PRO-100 series XPS
Printer Port USB001
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon PRO-100 series XPS (v12.09)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
Fax
Printer Port SHRFAX:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\FXSDRV.DLL
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
PageManager PDF Writer
Printer Port NEWSOFT
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 150 * 150 dpi Color
Status Unknown
Driver
Driver Name PageManager PDF Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\UNIDRV.dll
Quicken PDF Printer
Printer Port NUL:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name Amyuni Document Converter 400 (v0.64)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\acpdf400.dll
Send To OneNote 2010
Printer Port NUL:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Send To Microsoft OneNote 2010 Driver (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
Network
You are connected to the internet
Connected through Realtek PCI GBE Family Controller
IP Address 10.0.0.3
Subnet mask 255.255.255.0
Gateway server 10.0.0.1
Preferred DNS server 10.0.0.1
DHCP Enabled
DHCP server 10.0.0.1
External IP Address 74.232.95.168
Adapter Type Ethernet
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 0 Bps
Computer Name
NetBIOS Name LOU
DNS Name Lou
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain LOU
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Wi-Fi not enabled
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Disabled
File and Printer Sharing Disabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Realtek PCIe GBE Family Controller
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Gateway server 0.0.0.0
MAC Address 00-25-22-FA-99-61
Realtek PCI GBE Family Controller
IP Address 10.0.0.3
Subnet mask 255.255.255.0
Gateway server 10.0.0.1
MAC Address 00-27-19-D9-F2-00
Network Shares
Users C:\Users
Current TCP Connections
avguard.exe (2080)
Local 10.0.0.3:49158 CLOSE-WAIT Remote 54.229.34.151:443 (Querying... ) (HTTPS)
avmailc.exe (4468)
Local 0.0.0.0:44110 LISTEN
avwebgrd.exe (4488)
Local 0.0.0.0:44080 LISTEN
Local 0.0.0.0:44081 LISTEN
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (4924)
Local 127.0.0.1:49167 ESTABLISHED Remote 127.0.0.1:49168 (Querying... )
Local 127.0.0.1:49168 ESTABLISHED Remote 127.0.0.1:49167 (Querying... )
lsass.exe (684)
Local 0.0.0.0:49157 LISTEN
services.exe (660)
Local 0.0.0.0:49159 LISTEN
svchost.exe (144)
Local 0.0.0.0:49153 LISTEN
svchost.exe (492)
Local 0.0.0.0:49154 LISTEN
svchost.exe (932)
Local 0.0.0.0:135 (DCE) LISTEN
System Process
Local 10.0.0.3:49163 TIME-WAIT Remote 8.37.238.3:80 (Querying... ) (HTTP)
Local 10.0.0.3:49166 TIME-WAIT Remote 108.171.164.205:80 (Querying... ) (HTTP)
Local 127.0.0.1:49162 TIME-WAIT Remote 127.0.0.1:44080 (Querying... )
System Process
Local 0.0.0.0:80 (HTTP) LISTEN
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 10.0.0.3:139 (NetBIOS session service) LISTEN
wininit.exe (596)
Local 0.0.0.0:49152 LISTEN
Generated with Speccy v1.23.569
  • 0

#9
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
My Speccy :Log Operating System
Windows 7 Home Premium 64-bit SP1
CPU
Intel Core i7 2700K @ 3.50GHz 34 °C
Sandy Bridge 32nm Technology
RAM
8.00GB Dual-Channel DDR3 @ 800MHz (9-9-9-24)
Motherboard
ASRock P67 Extreme4 Gen3 (CPUSocket) 39 °C
Graphics
SMP1980ER (1280x1024@60Hz)
1024MB ATI Radeon HD 5700 Series (XFX Pine Group) 47 °C
Hard Drives
238GB M4-CT256M4SSD2 (SSD)
149GB Seagate ST3160318AS (SATA) 29 °C
149GB Seagate ST3160813AS (SATA) 30 °C
Optical Drives
ASUS DRW-24B1ST a
Audio
Realtek High Definition Audio
Operating System
Windows 7 Home Premium 64-bit SP1
Computer type: Desktop
Installation Date: 7/3/2012 2:25:07 PM
Serial Number:
Windows Security Center
User Account Control (UAC) Disabled
Firewall Enabled
Windows Update
AutoUpdate Notify prior to download
Windows Defender
Windows Defender Enabled
Antivirus
Antivirus Disabled
Display Name Avira Desktop
Virus Signature Database Up to date
.NET Frameworks installed
v4.5 Full
v4.5 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 10.0.9200.16686
PowerShell
Version 2.0
Java
Java Runtime Environment
Path C:\Program Files (x86)\Java\jre7\bin\java.exe
Version 7.0
Update 25
Build 16
Environment Variables
USERPROFILE C:\Users\Bill's
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Bill's\AppData\Local\Temp
TMP C:\Users\Bill's\AppData\Local\Temp
Machine Variables
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
OS Windows_NT
Path C:\Program Files (x86)\AMD APP\bin\x86_64
C:\Program Files (x86)\AMD APP\bin\x86
C:\Program Files\Common Files\Microsoft Shared\Windows Live
C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live
C:\Windows\system32
C:\Windows
C:\Windows\System32\Wbem
%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
C:\Program Files (x86)\Windows Live\Shared
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE AMD64
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
NUMBER_OF_PROCESSORS 8
PROCESSOR_LEVEL 6
PROCESSOR_IDENTIFIER Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
PROCESSOR_REVISION 2a07
windows_tracing_logfile C:\BVTBin\Tests\installpackage\csilogfile.log
windows_tracing_flags 3
AMDAPPSDKROOT C:\Program Files (x86)\AMD APP\
Battery
AC Line Online
Battery Charge % 100 %
Battery State High
Remaining Battery Time Unknown
Power Profile
Active power scheme Balanced
Hibernation Disabled
Turn Off Monitor after: (On AC Power) 10 min
Turn Off Monitor after: (On Battery Power) 10 min
Turn Off Hard Disk after: (On AC Power) 20 min
Turn Off Hard Disk after: (On Battery Power) 10 min
Suspend after: (On AC Power) Never
Suspend after: (On Battery Power) Never
Screen saver Enabled
Uptime
Current Session
Current Time 9/25/2013 12:45:01 PM
Current Uptime 303 sec (0 d, 00 h, 05 m, 03 s)
Last Boot Time 9/25/2013 12:39:58 PM
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Process List
armsvc.exe
Process ID 1244
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 3.96 MB
Peak Memory Usage 3.98 MB
ASHelper.exe
Process ID 2928
User Bill's
Domain LOU
Path C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
atieclxx.exe
Process ID 1324
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\atieclxx.exe
Memory Usage 7.54 MB
Peak Memory Usage 7.55 MB
atiesrxx.exe
Process ID 1000
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\atiesrxx.exe
Memory Usage 5.07 MB
Peak Memory Usage 5.10 MB
audiodg.exe
Process ID 1092
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 19 MB
Peak Memory Usage 26 MB
avgnt.exe
Process ID 2716
User Bill's
Domain LOU
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
Memory Usage 7.92 MB
Peak Memory Usage 236 MB
avguard.exe
Process ID 2080
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
Memory Usage 45 MB
Peak Memory Usage 329 MB
avmailc.exe
Process ID 4468
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
Memory Usage 1.25 MB
Peak Memory Usage 8.64 MB
avshadow.exe
Process ID 4448
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
Memory Usage 4.63 MB
Peak Memory Usage 4.68 MB
avwebgrd.exe
Process ID 4488
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
Memory Usage 12 MB
Peak Memory Usage 12 MB
CCC.exe
Process ID 3736
User Bill's
Domain LOU
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Memory Usage 5.89 MB
Peak Memory Usage 107 MB
CNQMMAIN.EXE
Process ID 2856
User Bill's
Domain LOU
Path C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
Memory Usage 25 MB
Peak Memory Usage 67 MB
CNQMSWCS.EXE
Process ID 2500
User Bill's
Domain LOU
Path C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
Memory Usage 69 MB
Peak Memory Usage 69 MB
CNQMUPDT.EXE
Process ID 3372
User Bill's
Domain LOU
Path C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
Memory Usage 22 MB
Peak Memory Usage 22 MB
Core Temp.exe
Process ID 1880
User Bill's
Domain LOU
Path C:\Users\Bill's\Documents\CoreTemp64\Core Temp.exe
Memory Usage 4.75 MB
Peak Memory Usage 12 MB
csrss.exe
Process ID 516
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 5.04 MB
Peak Memory Usage 5.05 MB
csrss.exe
Process ID 612
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 6.95 MB
Peak Memory Usage 13 MB
dwm.exe
Process ID 1640
User Bill's
Domain LOU
Path C:\Windows\system32\Dwm.exe
Memory Usage 33 MB
Peak Memory Usage 34 MB
explorer.exe
Process ID 1712
User Bill's
Domain LOU
Path C:\Windows\Explorer.EXE
Memory Usage 61 MB
Peak Memory Usage 69 MB
IAStorDataMgrSvc.exe
Process ID 1560
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Intel\Intel Rapid Storage Technology\IAStorDataMgrSvc.exe
Memory Usage 21 MB
Peak Memory Usage 21 MB
IAStorIcon.exe
Process ID 2700
User Bill's
Domain LOU
Path C:\Program Files (x86)\Intel\Intel Rapid Storage Technology\IAStorIcon.exe
Memory Usage 24 MB
Peak Memory Usage 24 MB
ijplmsvc.exe
Process ID 2224
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
Memory Usage 3.66 MB
Peak Memory Usage 3.66 MB
jusched.exe
Process ID 2876
User Bill's
Domain LOU
Path C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Memory Usage 4.52 MB
Peak Memory Usage 4.52 MB
lsass.exe
Process ID 684
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
lsm.exe
Process ID 692
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 4.79 MB
Peak Memory Usage 4.80 MB
McciCMService.exe
Process ID 2396
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Motive\McciCMService.exe
Memory Usage 7.10 MB
Peak Memory Usage 7.17 MB
McciCMService.exe
Process ID 2284
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
Memory Usage 6.50 MB
Peak Memory Usage 6.61 MB
MOM.exe
Process ID 2984
User Bill's
Domain LOU
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
Memory Usage 3.90 MB
Peak Memory Usage 28 MB
OpWareSE4.exe
Process ID 2684
User Bill's
Domain LOU
Path C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe
Memory Usage 3.94 MB
Peak Memory Usage 3.94 MB
PhotoshopElementsFileAgent.exe
Process ID 1932
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
Memory Usage 1.00 MB
Peak Memory Usage 6.55 MB
PhotoshopElementsFileAgent.exe
Process ID 2020
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
Memory Usage 1.01 MB
Peak Memory Usage 6.54 MB
PrintIsolationHost.exe
Process ID 1476
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\PrintIsolationHost.exe
Memory Usage 5.26 MB
Peak Memory Usage 5.30 MB
PrintScreen.exe
Process ID 2508
User Bill's
Domain LOU
Path C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
Memory Usage 8.37 MB
Peak Memory Usage 8.45 MB
RAVCpl64.exe
Process ID 2480
User Bill's
Domain LOU
Path C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
Memory Usage 12 MB
Peak Memory Usage 13 MB
realsched.exe
Process ID 2976
User Bill's
Domain LOU
Path C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
Memory Usage 412 KB
Peak Memory Usage 6.67 MB
rndlresolversvc.exe
Process ID 2564
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
Memory Usage 3.98 MB
Peak Memory Usage 3.98 MB
SASCore64.exe
Process ID 1980
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
Memory Usage 4.45 MB
Peak Memory Usage 4.47 MB
sched.exe
Process ID 1492
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
Memory Usage 2.38 MB
Peak Memory Usage 6.71 MB
services.exe
Process ID 660
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 12 MB
Peak Memory Usage 15 MB
smss.exe
Process ID 348
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 1.35 MB
Peak Memory Usage 1.39 MB
SMSvcHost.exe
Process ID 2448
User LOCAL SERVICE
Domain NT AUTHORITY
Path c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
Memory Usage 23 MB
Peak Memory Usage 23 MB
spd.exe
Process ID 2180
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\ASRock\XFast LAN\spd.exe
Memory Usage 9.73 MB
Peak Memory Usage 9.83 MB
Speccy64.exe
Process ID 476
User Bill's
Domain LOU
Path C:\Program Files\Speccy\Speccy64.exe
Memory Usage 32 MB
Peak Memory Usage 32 MB
splwow64.exe
Process ID 2592
User Bill's
Domain LOU
Path C:\Windows\splwow64.exe
Memory Usage 10 MB
Peak Memory Usage 11 MB
spoolsv.exe
Process ID 1464
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
sppsvc.exe
Process ID 3912
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\sppsvc.exe
Memory Usage 9.08 MB
Peak Memory Usage 9.08 MB
svchost.exe
Process ID 2728
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
svchost.exe
Process ID 3116
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
svchost.exe
Process ID 1120
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.63 MB
Peak Memory Usage 5.63 MB
svchost.exe
Process ID 1220
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
svchost.exe
Process ID 1700
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 16 MB
Peak Memory Usage 98 MB
svchost.exe
Process ID 2160
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 9.72 MB
Peak Memory Usage 9.86 MB
svchost.exe
Process ID 848
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
svchost.exe
Process ID 932
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
svchost.exe
Process ID 4832
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 6.99 MB
Peak Memory Usage 7.02 MB
svchost.exe
Process ID 144
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 20 MB
Peak Memory Usage 20 MB
svchost.exe
Process ID 2732
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 7.12 MB
Peak Memory Usage 7.30 MB
svchost.exe
Process ID 1160
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 452
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 152 MB
Peak Memory Usage 175 MB
svchost.exe
Process ID 512
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 17 MB
Peak Memory Usage 19 MB
svchost.exe
Process ID 492
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 45 MB
Peak Memory Usage 45 MB
svchost.exe
Process ID 3000
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 31 MB
Peak Memory Usage 44 MB
System
Process ID 4
Memory Usage 304 KB
Peak Memory Usage 11 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 4744
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\taskeng.exe
Memory Usage 5.45 MB
Peak Memory Usage 5.51 MB
taskeng.exe
Process ID 1660
User Bill's
Domain LOU
Path C:\Windows\system32\taskeng.exe
Memory Usage 7.33 MB
Peak Memory Usage 7.36 MB
taskhost.exe
Process ID 1588
User Bill's
Domain LOU
Path C:\Windows\system32\taskhost.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
wininit.exe
Process ID 596
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage 5.41 MB
Peak Memory Usage 5.50 MB
winlogon.exe
Process ID 720
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 8.37 MB
Peak Memory Usage 9.33 MB
WLIDSVC.EXE
Process ID 3140
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Memory Usage 16 MB
Peak Memory Usage 16 MB
WLIDSVCM.EXE
Process ID 3416
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
Memory Usage 3.98 MB
Peak Memory Usage 4.01 MB
WmiApSrv.exe
Process ID 4596
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\WmiApSrv.exe
Memory Usage 6.85 MB
Peak Memory Usage 6.85 MB
WmiPrvSE.exe
Process ID 2780
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 17 MB
Peak Memory Usage 17 MB
WmiPrvSE.exe
Process ID 1836
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 32 MB
Peak Memory Usage 32 MB
WmiPrvSE.exe
Process ID 5524
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 9.80 MB
Peak Memory Usage 10 MB
wmpnetwk.exe
Process ID 5192
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Program Files\Windows Media Player\wmpnetwk.exe
Memory Usage 30 MB
Peak Memory Usage 30 MB
WrtMon.exe
Process ID 2468
User Bill's
Domain LOU
Path C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
Memory Usage 5.89 MB
Peak Memory Usage 5.89 MB
WrtProc.exe
Process ID 2572
User Bill's
Domain LOU
Path C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
Memory Usage 5.33 MB
Peak Memory Usage 5.33 MB
WUDFHost.exe
Process ID 4880
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\WUDFHost.exe
Memory Usage 6.72 MB
Peak Memory Usage 6.73 MB
XFastUsb.exe
Process ID 2708
User Bill's
Domain LOU
Path C:\Program Files (x86)\XFastUsb\XFastUsb.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
Scheduler
9/25/2013 12:45 PM; Adobe Flash Player Updater
9/26/2013 2:00 AM; AdobeAAMUpdater-1.0-LOU-Bill's
10/2/2013 11:36 AM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-1511813459-1651382884-3492082021-1000
Asrsetup
CCleanerSkipUAC
Core Temp Autostart Bill's
RealPlayerRealUpgradeLogonTaskS-1-5-21-1511813459-1651382884-3492082021-1000
Hotfixes
9/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.159.552.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/20/2013 Definition Update for Windows Defender - KB915597 (Definition 1.159.314.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/17/2013 Definition Update for Windows Defender - KB915597 (Definition 1.159.53.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/14/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1846.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/10/2013 Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Microsoft has released an update for Microsoft PowerPoint 2010
32-Bit Edition. This update provides the latest fixes to Microsoft
PowerPoint 2010 32-Bit Edition. Additionally, this update contains
stability and performance improvements.
9/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2870699)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/10/2013 Windows Malicious Software Removal Tool x64 - September 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
9/10/2013 Update for Windows 7 for x64-based Systems (KB2853952)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/10/2013 Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Microsoft has released an update for Microsoft PowerPoint 2010
32-Bit Edition. This update provides the latest fixes to Microsoft
PowerPoint 2010 32-Bit Edition. Additionally, this update contains
stability and performance improvements.
9/10/2013 Security Update for Windows 7 for x64-based Systems (KB2872339)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/10/2013 Security Update for Windows 7 for x64-based Systems (KB2876315)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/10/2013 Update for Windows 7 for x64-based Systems (KB2868116)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/10/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1576.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1306.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
9/4/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
9/4/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.1012.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/31/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.758.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.157.478.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.2595.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/17/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.2386.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2862966)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2862772)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Update for Windows 7 for x64-based Systems (KB2863058)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
8/14/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2840642)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2849470)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Windows Malicious Software Removal Tool x64 - August 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2859537)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2861855)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/14/2013 Security Update for Windows 7 for x64-based Systems (KB2868623)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/13/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.2116.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/9/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/9/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/9/2013 Hotfix for Windows (KB947821)
Fix for KB947821
8/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.1859.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
8/7/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/7/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/7/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/7/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
8/7/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.1598.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/24/2013 Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Service Pack 2 (SP2) for Microsoft Office 2010 32-Bit Edition
contains new updates which improve security, performance, and
stability. Additionally, the SP is a roll-up of all previously
released updates.
7/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.565.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/21/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.311.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.155.29.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/12/2013 Windows Malicious Software Removal Tool x64 - July 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
7/12/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1833.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2840631)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Windows Malicious Software Removal Tool x64 - July 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2847927)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2833957)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2845187)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2846071)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2833946)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2850851)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2840642)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2835364)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2832414)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2834886)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2835361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1573.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1309.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
7/4/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.1042.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/29/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.790.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/28/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.562.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.318.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.22.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/14/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.2213.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/14/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836942)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/14/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2845690)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Windows Malicious Software Removal Tool x64 - June 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
6/13/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 (KB2838727)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2839894)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2859903)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2808679)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2836502)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/13/2013 Security Update for Windows 7 for x64-based Systems (KB2813430)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/13/2013 Update for Windows 7 for x64-based Systems (KB2834140)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/11/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1977.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1542.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/1/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.1320.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.798.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/21/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.543.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/18/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.280.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/16/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2805221)
This update addresses reliability, stability, compatibility and
performance issues in Microsoft .NET Framework 4.5. After you
install this item, you may have to restart your computer.
5/16/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2805226)
This update addresses reliability, stability, compatibility and
performance issues in Microsoft .NET Framework 4.5. After you
install this item, you may have to restart your computer.
5/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.151.173.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2830290)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2820331)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2798162)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2813956)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Server 2008, and Server 2008 R2 for x64 (KB2804582)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2829361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Windows Malicious Software Removal Tool x64 - May 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
5/16/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2804579)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2829530)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Cumulative Security Update for ActiveX Killbits for Windows 7 for x64-based Systems (KB2820197)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/10/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.1652.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
5/8/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.1380.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/30/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.884.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/26/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.649.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/24/2013 Security Update for Windows 7 for x64-based Systems (KB2840149)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.350.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/13/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1685.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813347)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Windows Malicious Software Removal Tool x64 - April 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2808735)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2823324)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2817183)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Update for Windows 7 for x64-based Systems (KB2799926)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813170)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1392.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/6/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1105.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/2/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.868.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/29/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.700.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/26/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.471.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/22/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.212.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/21/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.2105.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1873.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/14/2013 Internet Explorer 10 for Windows 7 for x64-based Systems
Internet Explorer 10 is fast and fluid, and lets your websites
shine and perform just like native apps on your PC.
Internet
Explorer 10. Fast and fluid for Windows 7.
• Fast. Internet
Explorer 10 harnesses the untapped power of your PC, delivering
pages full of vivid graphics, smoother video, and interactive
content.
• Easy. Experience the web the way you want to with
pinned sites, built-in Spellcheck, and seamless integration with
your PC running Windows 7.
• Safer. Improved features like SmartScreen
Filter and Tracking Protection let you be more aware of threats
to your PC and your privacy.
3/14/2013 Security Update for Windows 7 for x64-based Systems (KB2807986)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
3/14/2013 Windows Malicious Software Removal Tool x64 - March 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
3/14/2013 Update for Windows 7 for x64-based Systems (KB2791765)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
3/14/2013 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2809289)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
3/14/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1584.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1381.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/7/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.1035.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/2/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.817.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/27/2013 Platform Update for Windows 7 x64-Edition (KB2670838)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
2/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.509.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.236.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2586.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/15/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2336.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2719033)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain access to information.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2799494)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2789645)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2778344)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Windows Malicious Software Removal Tool x64 - February 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
2/13/2013 Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2797052)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2790113)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Security Update for Windows 7 for x64-based Systems (KB2790655)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected system to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
2/13/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2789648)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
2/13/2013 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2792100)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
2/12/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.2086.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1848.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/5/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1556.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
2/1/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1318.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/31/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.1033.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/27/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.765.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.502.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.143.193.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/15/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3926.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/11/2013 Definition Update for Windows Defender - KB915597 (Definition 1.141.3676.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
1/10/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
1/10/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2750147)
This update addresses compatibility, stability, reliability,
and performance issues in Microsoft .NET Framework 4.5. After
you install this item, you may have to restart your computer.
1/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2742613)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Server 2008, and Server 2008 R2 for x64 (KB2737083)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/10/2013 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2468871)
Install this update to resolve issues in Microsoft .NET Framework
4. For a complete listing of the issues that are included in
this update, see the associated Microsoft Knowledge Base article
for more information. After you install this item, you may have
to restart your computer.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2742595)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2468871)
Install this update to resolve issues in Microsoft .NET Framework
4. For a complete listing of the issues that are included in
this update, see the associated Microsoft Knowledge Base article
for more information. After you install this item, you may have
to restart your computer.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2737019)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2729449)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2604121)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2656351)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2736428)
A security issue has been identified that could allow an unauthenticated
remote attacker to cause the affected application to stop responding.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
1/9/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
1/9/2013 Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2533523)
This update addresses stability, reliability, and performance
issues in Microsoft .NET Framework 4. After you install this
item, you may have to restart your computer.
1/9/2013 Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2600217)
This update addresses stability, reliability, and performance
issues in Microsoft .NET Framework 4. After you install this
item, you may have to restart your computer.
1/9/2013 Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Microsoft has released an update for Microsoft Outlook 2010 32-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2010 32-Bit Edition. Additionally, this update contains stability
and performance improvements.
System Folders
Path for burning CD C:\Users\Bill's\AppData\Local\Microsoft\Windows\Burn\Burn1
Application Data C:\ProgramData
Public Desktop C:\Users\Public\Desktop
Documents C:\Users\Public\Documents
Global Favorites C:\Users\Bill's\Favorites
Music C:\Users\Public\Music
Pictures C:\Users\Public\Pictures
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Videos C:\Users\Public\Videos
Cookies C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Bill's\Desktop
Physical Desktop C:\Users\Bill's\Desktop
User Favorites C:\Users\Bill's\Favorites
Fonts C:\Windows\Fonts
Internet History C:\Users\Bill's\AppData\Local\Microsoft\Windows\History
Temporary Internet Files C:\Users\Bill's\AppData\Local\Microsoft\Windows\Temporary Internet Files
Local Application Data C:\Users\Bill's\AppData\Local
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Program Files C:\Program Files
Services
Running Adobe Acrobat Update Service
Running Adobe Active File Monitor V10
Running Adobe Active File Monitor V9
Running AMD External Events Utility
Running Application Experience
Running Application Host Helper Service
Running Avira Mail Protection
Running Avira Real-Time Protection
Running Avira Scheduler
Running Avira Web Protection
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Running cFosSpeed System Service
Running CNG Key Isolation
Running COM+ Event System
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic Service Host
Running Diagnostic System Host
Running Distributed Link Tracking Client
Running DNS Client
Running Extensible Authentication Protocol
Running Group Policy Client
Running Human Interface Device Access
Running IKE and AuthIP IPsec Keying Modules
Running Intel Rapid Storage Technology
Running IP Helper
Running IPsec Policy Agent
Running McciCMService
Running McciCMService64
Running Multimedia Class Scheduler
Running Net.Pipe Listener Adapter
Running Net.Tcp Listener Adapter
Running Net.Tcp Port Sharing Service
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running Peer Networking Identity Manager
Running Plug and Play
Running Portable Device Enumerator Service
Running Power
Running Print Spooler
Running Program Compatibility Assistant Service
Running RealNetworks Downloader Resolver Service
Running Remote Procedure Call (RPC)
Running RPC Endpoint Mapper
Running SAS Core Service
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Software Protection
Running SSDP Discovery
Running Superfetch
Running System Event Notification Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Themes
Running UPnP Device Host
Running User Profile Service
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Defender
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Image Acquisition (WIA)
Running Windows Live ID Sign-in Assistant
Running Windows Management Instrumentation
Running Windows Media Player Network Sharing Service
Running Windows Process Activation Service
Running Windows Update
Running WinHTTP Web Proxy Auto-Discovery Service
Running WLAN AutoConfig
Running WMI Performance Adapter
Running Workstation
Running World Wide Web Publishing Service
Stopped ActiveX Installer (AxInstSV)
Stopped Adaptive Brightness
Stopped Adobe Flash Player Update Service
Stopped Application Identity
Stopped Application Information
Stopped Application Layer Gateway Service
Stopped ASP.NET State Service
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped Computer Browser
Stopped Credential Manager
Stopped Disk Defragmenter
Stopped Distributed Transaction Coordinator
Stopped Encrypting File System (EFS)
Stopped Fax
Stopped Function Discovery Provider Host
Stopped Function Discovery Resource Publication
Stopped Health Key and Certificate Management
Stopped HomeGroup Listener
Stopped HomeGroup Provider
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped Media Center Extender Service
Stopped Microsoft .NET Framework NGEN v2.0.50727_X64
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X64
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Mozilla Maintenance Service
Stopped Net.Msmq Listener Adapter
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office Source Engine
Stopped Office Software Protection Platform
Stopped Parental Controls
Stopped Peer Name Resolution Protocol
Stopped Peer Networking Grouping
Stopped Performance Counter DLL Host
Stopped Performance Logs & Alerts
Stopped PnP-X IP Bus Enumerator
Stopped PNRP Machine Name Publication Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Access Connection Manager
Stopped Remote Desktop Configuration
Stopped Remote Desktop Services
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Secondary Logon
Stopped Secure Socket Tunneling Protocol Service
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped SPP Notification Service
Stopped Tablet PC Input Service
Stopped Telephony
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Activation Technologies Service
Stopped Windows Backup
Stopped Windows Biometric Service
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Connect Now - Config Registrar
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Installer
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Modules Installer
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Windows Search
Stopped Windows Time
Stopped Wired AutoConfig
Stopped WWAN AutoConfig
Security Options
Accounts: Administrator account status Disabled
Accounts: Guest account status Disabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network Security: Allow PKU2U authentication requests to this computer to use online identities Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Elevate without prompting
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Disabled
User Account Control: Switch to the secure desktop when prompting for elevation Disabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x64-based PC
Microsoft ACPI-Compliant System
ACPI Power Button
Motherboard resources
System board
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
Intel Core i7-2700K CPU @ 3.50GHz
ACPI Fixed Feature Button
PCI bus
2nd generation Intel Core processor family DRAM Controller - 0100
Intel Management Engine Interface
Intel 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
Intel 6 Series/C200 Series Chipset Family SMBus Controller - 1C22
System board
System board
Motherboard resources
High precision event timer
Microsoft Windows Management Interface for ACPI
2nd generation Intel® Core™ processor family PCI Express Controller - 0101
ATI Radeon HD 5700 Series
Generic PnP Monitor
High Definition Audio Controller
AMD High Definition Audio Device
Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
USB Root Hub
Generic USB Hub
USB Mass Storage Device
Generic- Compact Flash USB Device
Generic- SM/xD-Picture USB Device
Generic- SD/MMC USB Device
Generic- MS/MS-Pro USB Device
High Definition Audio Controller
Realtek High Definition Audio
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 5 - 1C18
Marvell 91xx SATA 6G Controller
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 6 - 1C1A
Etron USB 3.0 Extensible Host Controller
Etron USB 3.0 Extensible Root Hub
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 7 - 1C1C
Etron USB 3.0 Extensible Host Controller
Etron USB 3.0 Extensible Root Hub
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 8 - 1C1E
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
PCI standard PCI-to-PCI bridge
Realtek PCI GBE Family Controller
NEC PCI to USB Open Host Controller
USB Root Hub
Microsoft Hardware USB Wireless Mouse
HID Non-User Input Data Filter (KB 911895)
HID-compliant mouse
USB Composite Device
USB Input Device (Logitech Download Assistant)
HID Keyboard Device
USB Input Device
HID-compliant mouse
HID-compliant consumer control device
HID-compliant device
HID-compliant device
USB Input Device
HID-compliant device
HID-compliant device
HID-compliant device
NEC PCI to USB Open Host Controller
USB Root Hub
USB Input Device
HID UPS Battery
Standard Enhanced PCI to USB Host Controller
USB Root Hub
USB Printing Support
Canon iP4800 series
PCI standard PCI-to-PCI bridge
VIA 1394 OHCI Compliant Host Controller
PCI standard PCI-to-PCI bridge
Realtek PCIe GBE Family Controller
Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
USB Root Hub
Generic USB Hub
CanoScan 8800F
Intel® P67 Express Chipset Family LPC Interface Controller - 1C46
Motherboard resources
Standard floppy disk controller
Programmable interrupt controller
Direct memory access controller
System timer
System CMOS/real time clock
System speaker
Motherboard resources
Numeric data processor
Communications Port (COM1)
Intel® Desktop/Workstation/Server Express Chipset SATA AHCI Controller
M4-CT256M4SSD2
ST3160318AS
ASUS DRW-24B1ST a
ST3160813AS
CPU
Intel Core i7 2700K
Cores 4
Threads 8
Name Intel Core i7 2700K
Code Name Sandy Bridge
Package Socket 1155 LGA
Technology 32nm
Specification Intel Core i7-2700K CPU @ 3.50GHz
Family 6
Extended Family 6
Model A
Extended Model 2A
Stepping 7
Revision D2
Instructions MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, Intel 64, VMX, AES, AVX
Virtualization Supported, Enabled
Hyperthreading Supported, Enabled
Fan Speed 1976 RPM
Bus Speed 100.0 MHz
Stock Core Speed 3500 MHz
Stock Bus Speed 100 MHz
Average Temperature 34 °C
Caches
L1 Data Cache Size 4 x 32 KBytes
L1 Instructions Cache Size 4 x 32 KBytes
L2 Unified Cache Size 4 x 256 KBytes
L3 Unified Cache Size 8192 KBytes
Core 0
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 32 °C
Thread 1
APIC ID 0
Thread 2
APIC ID 1
Core 1
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 34 °C
Thread 1
APIC ID 2
Thread 2
APIC ID 3
Core 2
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 37 °C
Thread 1
APIC ID 4
Thread 2
APIC ID 5
Core 3
Core Speed 1600.0 MHz
Multiplier x 16.0
Bus Speed 100.0 MHz
Temperature 31 °C
Thread 1
APIC ID 6
Thread 2
APIC ID 7
RAM
Memory slots
Total memory slots 4
Used memory slots 2
Free memory slots 2
Memory
Type DDR3
Size 8192 MBytes
Channels # Dual
DRAM Frequency 800.0 MHz
CAS# Latency (CL) 9 clocks
RAS# to CAS# Delay (tRCD) 9 clocks
RAS# Precharge (tRP) 9 clocks
Cycle Time (tRAS) 24 clocks
Command Rate (CR) 1T
Physical Memory
Memory Usage 23 %
Total Physical 7.98 GB
Available Physical 6.08 GB
Total Virtual 9.93 GB
Available Virtual 7.75 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR3
Size 4096 MBytes
Manufacturer G.Skill
Max Bandwidth PC3-12800 (800 MHz)
Part Number F3-12800CL9-4GBRL
SPD Ext. EPP
XMP--2
Frequency
JEDEC #6
Frequency 838.1 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 30
tRC 41
Voltage 1.500 V
JEDEC #5
Frequency 761.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 27
tRC 37
Voltage 1.500 V
JEDEC #4
Frequency 685.7 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 24
tRC 33
Voltage 1.500 V
JEDEC #3
Frequency 609.5 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 22
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 19
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 457.1 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 22
Voltage 1.500 V
Slot #2
Type DDR3
Size 4096 MBytes
Manufacturer G.Skill
Max Bandwidth PC3-12800 (800 MHz)
Part Number F3-12800CL9-4GBRL
SPD Ext. EPP
XMP--2
Frequency
JEDEC #6
Frequency 838.1 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 30
tRC 41
Voltage 1.500 V
JEDEC #5
Frequency 761.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 27
tRC 37
Voltage 1.500 V
JEDEC #4
Frequency 685.7 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 24
tRC 33
Voltage 1.500 V
JEDEC #3
Frequency 609.5 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 22
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 19
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 457.1 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 22
Voltage 1.500 V
Motherboard
Manufacturer ASRock
Model P67 Extreme4 Gen3 (CPUSocket)
Version To Be Filled By O.E.M.
Chipset Vendor Intel
Chipset Model Sandy Bridge
Chipset Revision 09
Southbridge Vendor Intel
Southbridge Model P67
Southbridge Revision B3
System Temperature 39 °C
BIOS
Brand American Megatrends Inc.
Version P1.10
Date 8/30/2011
Voltage
CPU CORE 0.976 V
MEMORY CONTROLLER 1.848 V
AVCC 3.328 V
3VCC 3.328 V
VIN4 1.016 V
VIN5 1.696 V
VIN6 1.112 V
PCI Data
Slot PCI
Slot Type PCI
Slot Usage In Use
Bus Width 32 bit
Slot Designation PCI1
Characteristics 3.3V, Shared, PME
Slot Number 0
Slot PCI
Slot Type PCI
Slot Usage In Use
Bus Width 32 bit
Slot Designation PCI2
Characteristics 3.3V, Shared, PME
Slot Number 1
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation PCIE1
Characteristics 3.3V, Shared, PME
Slot Number 2
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation PCIE2
Characteristics 3.3V, Shared, PME
Slot Number 3
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation PCIE3
Characteristics 3.3V, Shared, PME
Slot Number 4
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation PCIE4
Characteristics 3.3V, Shared, PME
Slot Number 5
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation PCIE5
Characteristics 3.3V, Shared, PME
Slot Number 6
Graphics
Monitor
Name SMP1980ER on ATI Radeon HD 5700 Series
Current Resolution 1280x1024 pixels
Work Resolution 1280x984 pixels
State Enabled, Primary, Output devices support
Monitor Width 1280
Monitor Height 1024
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
ATI Radeon HD 5700 Series
Manufacturer ATI
Model Radeon HD 5700 Series
GPU Juniper
Device ID 1002-68B8
Subvendor XFX Pine Group (1682)
Current Performance Level Level 0
Voltage 0.950 V
Technology 40 nm
Die Size 166 mm²
Release Date Oct 13, 2009
DirectX Support 11.0
DirectX Shader Model 5.0
OpenGL Support 4.1
GPU Clock 850.0 MHz
Temperature 47 °C
Core Voltage 0.950 V
Bios Core Clock 850.00
Bios Mem Clock 1200.00
Driver version 9.12.0.0
BIOS Version 113-HD577AZNFA6-113-AC35000-100-XF
ROPs 16
Shaders 800 unified
Memory Type GDDR5
Memory 1024 MB
Bus Width 64x2 (128 bit)
Pixel Fillrate 13.6 GPixels/s
Bandwidth 76.8 GB/s
Noise Level Moderate
Max Power Draw 108 Watts
Count of performance levels : 3
Level 1
GPU Clock 400 MHz
Memory Clock 1200 MHz
Level 2
GPU Clock 600 MHz
Memory Clock 1200 MHz
Level 3
GPU Clock 850 MHz
Memory Clock 1200 MHz
Hard Drives
M4-CT256M4SSD2
Manufacturer Unknown manufacturer
Heads 16
Cylinders 16,383
SATA type SATA-III 6.0Gb/s
Device type Fixed
ATA Standard ACS2
Serial Number 00000000111603062C93
LBA Size 48-bit LBA
Power On Count 692 times
Power On Time 230.2 days
Speed Not used (SSD Drive)
Features S.M.A.R.T., APM, NCQ, TRIM, SSD
Transfer Mode SATA III
Interface SATA
Capacity 238 GB
Real size 256,060,514,304 bytes
RAID Type None
S.M.A.R.T
Status Good
01 Read Error Rate 100 (100) Data 0000000000
05 Reallocated Sectors Count 100 (100) Data 0000000000
09 Power-On Hours (POH) 100 (100) Data 0000001594
0C Device Power Cycle Count 100 (100) Data 00000002B4
AA New Failing Block Count 100 (100) Data 0000000000
AB Program Fail Count 100 (100) Data 0000000000
AC Erase Fail Count 100 (100) Data 0000000000
AD Average Block Erase Count 100 (100) Data 0000000010
AE Unexpected Power Loss Count 100 (100) Data 000000000E
B5 Non-4K Aligned Access Count 100 (100) Data 00017B0266
B7 SATA Downshift Error Count 100 (100) Data 0000000000
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000000
BD Factory Bad Block Count 100 (100) Data 0000000080
C2 Temperature 100 (100) Data 0000000000
C3 Hardware ECC Recovered 100 (100) Data 0000000000
C4 Reallocation Event Count 100 (100) Data 0000000000
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 SMART Off-Line Scan Uncorrectable Error Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 100 (100) Data 0000000000
CA Percentage Lifetime Used 100 (100) Data 0000000000
CE Write Error Rate 100 (100) Data 0000000000
Partition 0
Partition ID Disk #0, Partition #0
Size 100 MB
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number E031BC85
Size 238 GB
Used Space 78 GB (33%)
Free Space 160 GB (67%)
ST3160318AS
Manufacturer Seagate
Form Factor 3.5"
Heads 16
Cylinders 16,383
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number 9VY49BMT
LBA Size 48-bit LBA
Power On Count 1677 times
Power On Time 255.1 days
Speed 7200 RPM
Features S.M.A.R.T., AAM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 149 GB
Real size 160,040,803,840 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 29 °C
Temperature Range OK (less than 50 °C)
01 Read Error Rate 117 (100) Data 0007B80390
03 Spin-Up Time 097 (097) Data 0000000000
04 Start/Stop Count 098 (098) Data 0000000B8A
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 100 (253) Data 000005A4BD
09 Power-On Hours (POH) 094 (094) Data 00000017EB
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 099 (099) Data 000000068D
B7 SATA Downshift Error Count 100 (100) Data 0000000000
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000000
BD High Fly Writes (WDC) 100 (100) Data 0000000000
BE Temperature Difference from 100 071 (067) Data 001D1C001D
C2 Temperature 029 (040) Data 000000001D
C3 Hardware ECC Recovered 026 (018) Data 0007B80390
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
F0 Head Flying Hours 100 (253) Data 0000000BF4
F1 Total LBAs Written 100 (253) Data 000C9600AD
F2 Total LBAs Read 100 (253) Data 00EA0BEFCE
Partition 0
Partition ID Disk #1, Partition #0
Disk Letter D:
File System NTFS
Volume Serial Number 2C0D68C2
Size 149 GB
Used Space 17.7 GB (12%)
Free Space 131 GB (88%)
ST3160813AS
Manufacturer Seagate
Form Factor 3.5"
Heads 16
Cylinders 16,383
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number 9YP01TVA
LBA Size 48-bit LBA
Power On Count 1062 times
Power On Time 288.2 days
Speed 7200 RPM
Features S.M.A.R.T., AAM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 149 GB
Real size 160,040,803,840 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 30 °C
Temperature Range OK (less than 50 °C)
01 Read Error Rate 118 (099) Data 000BC03C64
03 Spin-Up Time 099 (097) Data 0000000000
04 Start/Stop Count 098 (098) Data 000000085F
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 072 (060) Data 0001075858
09 Power-On Hours (POH) 093 (093) Data 0000001B04
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 099 (099) Data 0000000426
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000001
BD High Fly Writes (WDC) 095 (095) Data 0000000005
BE Temperature Difference from 100 071 (068) Data 001D1C001D
C2 Temperature 029 (040) Data 000000001D
C3 Hardware ECC Recovered 037 (037) Data 000BC03C64
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
F0 Head Flying Hours 100 (253) Data 0000000FAF
F1 Total LBAs Written 100 (253) Data 00337CCDF3
F2 Total LBAs Read 100 (253) Data 0065A63691
Partition 0
Partition ID Disk #2, Partition #0
Disk Letter E:
File System NTFS
Volume Serial Number C8D5F400
Size 149 GB
Used Space 45 GB (31%)
Free Space 104 GB (69%)
Optical Drives
ASUS DRW-24B1ST a
Media Type DVD Writer
Name ASUS DRW-24B1ST a
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive F:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 2
Status OK
Audio
Sound Cards
AMD High Definition Audio Device
Realtek High Definition Audio
Playback Devices
Realtek Digital Output (Realtek High Definition Audio)
Speakers (Realtek High Definition Audio) (default)
Speaker Configuration
Speaker type Stereo
Peripherals
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Logitech
Location USB Input Device (Logitech Download Assistant)
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Microsoft
Location Microsoft Hardware USB Wireless Mouse
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Logitech
Location USB Input Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Canon iP4800 series
Device Kind Printer
Device Name Canon iP4800 series
Vendor Canon
Location USB Printing Support
Driver
Date 5-22-2012
Version 2.56.2.10
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMCBAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMICAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMDRAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMDCAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMD5AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMUIAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMINAF.INI
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSMAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMHOAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSSAF.SMR
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSDAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSQAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMEIAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF.CHM
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF.CHM
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMCPAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMUBAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMOPAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSBAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF.CHM
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNB_3750.TBL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMP0AF.DAT
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMP1AF.DAT
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMP2AF.DAT
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMFUAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLHAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNML2AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNML3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMPVAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSEAF.EXE
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBU3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBU6AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBM3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBM6AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBS3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMBS6AF.DLL
File C:\Windows\system32\CNMLMAF.DLL
File C:\Windows\system32\spool\drivers\color\CNBAFDB0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFMB0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFMC0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFNA0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFNB0.ICM
File C:\Windows\system32\spool\drivers\color\CNBAFNC0.ICM
File C:\Windows\system32\spool\drivers\color\CNBJPRN3.ICM
File C:\Windows\system32\spool\PRTPROCS\x64\1\CNMPDAF.DLL
File C:\Windows\system32\spool\PRTPROCS\x64\1\CNMPPAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMVSAF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMVSAF.EXE
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMW3AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMW6AF.DLL
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.411
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.c0a
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.40c
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.407
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.410
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.416
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.406
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.414
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.41D
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.40b
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.408
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.415
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.405
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.419
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.40e
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.413
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.41F
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.401
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.804
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.404
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.412
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.41E
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMLRAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMURAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSRAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMMHAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMSHAF0.421
File C:\Windows\system32\spool\DRIVERS\x64\{16AE587C-AE17-43BA-B8C5-E9DAAAD115E9}\CNMIHAF0.421
File C:\Windows\system32\CNMIUAF.DLL
CanoScan 8800F
Device Kind Camera/scanner
Device Name CanoScan 8800F
Vendor Canon
Location Port_#0004.Hub_#0007
Driver
Date 5-7-2009
Version 13.0.5.56
File C:\Windows\system32\CNQ4805C.DLL
File C:\Windows\system32\CNQ4805I.DLL
File C:\Windows\system32\CNQ4805L.DLL
File C:\Windows\twain_32\CNQ4805\CISDS.DS
File C:\Windows\twain_32\CNQ4805\SGUI.DLL
File C:\Windows\twain_32\CNQ4805\IOP.DLL
File C:\Windows\twain_32\CNQ4805\ITLIB32.DLL
File C:\Windows\twain_32\CNQ4805\SCANINTF.DLL
File C:\Windows\twain_32\CNQ4805\SCRPRMV.DLL
File C:\Windows\twain_32\CNQ4805\softfare.dll
File C:\Windows\twain_32\CNQ4805\TPM.DLL
File C:\Windows\twain_32\CNQ4805\IPM.DLL
File C:\Windows\twain_32\CNQ4805\IPM.DAT
File C:\Windows\twain_32\CNQ4805\RSTCOL.DLL
File C:\Windows\twain_32\CNQ4805\BaLCo.dll
File C:\Windows\twain_32\CNQ4805\CFine2.dll
File C:\Windows\twain_32\CNQ4805\libBLC.dll
File C:\Windows\twain_32\CNQ4805\MC2.DLL
File C:\Windows\twain_32\CNQ4805\CAPS.DLL
File C:\Windows\twain_32\CNQ4805\CUBS.DLL
File C:\Windows\twain_32\CNQ4805\HSL.DLL
File C:\Windows\twain_32\CNQ4805\AG.DLL
File C:\Windows\twain_32\CNQ4805\USIP.DLL
File C:\Windows\twain_32\CNQ4805\SGCFLTR.DLL
File C:\Windows\twain_32\CNQ4805\IJFSHLIB.DLL
File C:\Windows\twain_32\CNQ4805\IJFSHx64.DLL
File C:\Windows\twain_32\CNQ4805\CNQ4805.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805M.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805S.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805A.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805P.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805N.DAT
File C:\Windows\twain_32\CNQ4805\CNQ4805W.DAT
File C:\Windows\twain_32\CNQ4805\SGRES_US.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_JP.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_CZ.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_DE.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_ES.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_FR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_HU.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_IT.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_KR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_NL.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_PL.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_PT.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_RU.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_CN.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_TW.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_DK.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_NO.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_SE.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_FI.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_GR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_TR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_AR.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_TH.DLL
File C:\Windows\twain_32\CNQ4805\SGRES_ID.DLL
File C:\Windows\twain_32\CNQ4805\USDRESUS.DLL
File C:\Windows\twain_32\CNQ4805\USDRESJP.DLL
File C:\Windows\twain_32\CNQ4805\USDRESCZ.DLL
File C:\Windows\twain_32\CNQ4805\USDRESDE.DLL
File C:\Windows\twain_32\CNQ4805\USDRESES.DLL
File C:\Windows\twain_32\CNQ4805\USDRESFR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESHU.DLL
File C:\Windows\twain_32\CNQ4805\USDRESIT.DLL
File C:\Windows\twain_32\CNQ4805\USDRESKR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESNL.DLL
File C:\Windows\twain_32\CNQ4805\USDRESPL.DLL
File C:\Windows\twain_32\CNQ4805\USDRESPT.DLL
File C:\Windows\twain_32\CNQ4805\USDRESRU.DLL
File C:\Windows\twain_32\CNQ4805\USDRESCN.DLL
File C:\Windows\twain_32\CNQ4805\USDRESTW.DLL
File C:\Windows\twain_32\CNQ4805\USDRESDK.DLL
File C:\Windows\twain_32\CNQ4805\USDRESNO.DLL
File C:\Windows\twain_32\CNQ4805\USDRESSE.DLL
File C:\Windows\twain_32\CNQ4805\USDRESFI.DLL
File C:\Windows\twain_32\CNQ4805\USDRESGR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESTR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESAR.DLL
File C:\Windows\twain_32\CNQ4805\USDRESTH.DLL
File C:\Windows\twain_32\CNQ4805\USDRESID.DLL
File C:\Windows\system32\spool\drivers\Color\CNZ005.ICC
File C:\Windows\system32\spool\drivers\Color\CNSR05.ICC
File C:\Windows\system32\spool\drivers\Color\CNSP05.ICC
File C:\Windows\system32\spool\drivers\Color\CNSN05.ICC
File C:\Windows\media\CSSAMP1.MID
File C:\Windows\system32\drivers\usbscan.sys
File C:\Windows\system32\CNQ4805O.DLL
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- Compact Flash USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- MS/MS-Pro USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- SD/MMC USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC-
Comment Generic- SM/xD-Picture USB Device
Location USB Mass Storage Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\disk.sys
SD/MMC
Device Kind Portable Device
Device Name SD/MMC
Vendor GENERIC-
Comment H:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
SM/xD-Picture
Device Kind Portable Device
Device Name SM/xD-Picture
Vendor GENERIC-
Comment G:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Compact Flash
Device Kind Portable Device
Device Name Compact Flash
Vendor GENERIC-
Comment I:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
MS/MS-Pro
Device Kind Portable Device
Device Name MS/MS-Pro
Vendor GENERIC-
Comment J:\
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Printers
Broderbund PDF Creator
Printer Port LPT1:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 300 dpi Color
Status Unknown
Driver
Driver Name Amyuni Document Converter 3.00 (v0.64)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\acpdf300.dll
Canon Inkjet PIXMA iP8500
Printer Port USB002
Print Processor BJ Print Processor3
Availability Always
Priority 1
Duplex None
Print Quality 4294967292 * 4294967292 dpi Color
Status The printer is being deleted
Driver
Driver Name Canon Inkjet PIXMA iP8500 (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\UNIDRV.DLL
Canon iP4800 series (Default Printer)
Printer Port USB004
Print Processor Canon iP4800 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon iP4800 series (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\CNMDRAF.DLL
Canon PRO-100 series
Printer Port USB001
Print Processor Canon PRO-100 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon PRO-100 series (v12.09)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\CNMDRBD.DLL
Canon PRO-100 series XPS
Printer Port USB001
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon PRO-100 series XPS (v12.09)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
Fax
Printer Port SHRFAX:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\FXSDRV.DLL
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
PageManager PDF Writer
Printer Port NEWSOFT
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 150 * 150 dpi Color
Status Unknown
Driver
Driver Name PageManager PDF Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\UNIDRV.dll
Quicken PDF Printer
Printer Port NUL:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name Amyuni Document Converter 400 (v0.64)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\acpdf400.dll
Send To OneNote 2010
Printer Port NUL:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Send To Microsoft OneNote 2010 Driver (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
Network
You are connected to the internet
Connected through Realtek PCI GBE Family Controller
IP Address 10.0.0.3
Subnet mask 255.255.255.0
Gateway server 10.0.0.1
Preferred DNS server 10.0.0.1
DHCP Enabled
DHCP server 10.0.0.1
External IP Address 74.232.95.168
Adapter Type Ethernet
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 0 Bps
Computer Name
NetBIOS Name LOU
DNS Name Lou
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain LOU
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Wi-Fi not enabled
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Disabled
File and Printer Sharing Disabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Realtek PCIe GBE Family Controller
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Gateway server 0.0.0.0
MAC Address 00-25-22-FA-99-61
Realtek PCI GBE Family Controller
IP Address 10.0.0.3
Subnet mask 255.255.255.0
Gateway server 10.0.0.1
MAC Address 00-27-19-D9-F2-00
Network Shares
Users C:\Users
Current TCP Connections
avguard.exe (2080)
Local 10.0.0.3:49158 CLOSE-WAIT Remote 54.229.34.151:443 (Querying... ) (HTTPS)
avmailc.exe (4468)
Local 0.0.0.0:44110 LISTEN
avwebgrd.exe (4488)
Local 0.0.0.0:44080 LISTEN
Local 0.0.0.0:44081 LISTEN
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (4924)
Local 127.0.0.1:49167 ESTABLISHED Remote 127.0.0.1:49168 (Querying... )
Local 127.0.0.1:49168 ESTABLISHED Remote 127.0.0.1:49167 (Querying... )
lsass.exe (684)
Local 0.0.0.0:49157 LISTEN
services.exe (660)
Local 0.0.0.0:49159 LISTEN
svchost.exe (144)
Local 0.0.0.0:49153 LISTEN
svchost.exe (492)
Local 0.0.0.0:49154 LISTEN
svchost.exe (932)
Local 0.0.0.0:135 (DCE) LISTEN
System Process
Local 10.0.0.3:49163 TIME-WAIT Remote 8.37.238.3:80 (Querying... ) (HTTP)
Local 10.0.0.3:49166 TIME-WAIT Remote 108.171.164.205:80 (Querying... ) (HTTP)
Local 127.0.0.1:49162 TIME-WAIT Remote 127.0.0.1:44080 (Querying... )
System Process
Local 0.0.0.0:80 (HTTP) LISTEN
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 10.0.0.3:139 (NetBIOS session service) LISTEN
wininit.exe (596)
Local 0.0.0.0:49152 LISTEN
Generated with Speccy v1.23.569
  • 0

#10
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
OTL LogOTL Extras logfile created on: 9/25/2013 12:57:07 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bill's\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.98 Gb Total Physical Memory | 6.15 Gb Available Physical Memory | 77.04% Memory free
9.93 Gb Paging File | 7.78 Gb Available in Paging File | 78.30% Paging File free
Paging file location(s): c:\pagefile.sys 2000 2500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 238.37 Gb Total Space | 159.97 Gb Free Space | 67.11% Space Free | Partition Type: NTFS
Drive D: | 149.05 Gb Total Space | 131.34 Gb Free Space | 88.12% Space Free | Partition Type: NTFS
Drive E: | 149.04 Gb Total Space | 103.84 Gb Free Space | 69.67% Space Free | Partition Type: NTFS

Computer Name: LOU | User Name: Bill's | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (All) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm[@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl[@ = cplfile] -- C:\Windows\SysNative\control.exe (Microsoft Corporation)
.hlp[@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta[@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf[@ = inffile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.reg[@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = comfile] -- "%1" %*
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf [@ = inffile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\SysWow64\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\Windows\SysWow64\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11A19D52-82FD-443D-932A-1D93CC3E63D3}" = lport=139 | protocol=6 | dir=in | app=system |
"{2477E965-5673-497E-A698-323C5525EA3B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{2AFD38EA-DCDD-4D3C-9ABB-17D11629F3FC}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{34E94FD9-D416-4206-B5AF-0C2872B73B42}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{36904B17-4DEC-4BD1-9AD1-740138D51C74}" = rport=139 | protocol=6 | dir=out | app=system |
"{39F1EE22-2C12-46B5-A042-4928D27AF2E9}" = lport=137 | protocol=17 | dir=in | app=system |
"{445F75A1-4559-4E92-ABA0-043FC665A968}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5C783827-BE7F-4408-82CF-64E267488C5C}" = rport=137 | protocol=17 | dir=out | app=system |
"{608E7ECF-0FC6-4EEE-82D1-D0145D521888}" = lport=445 | protocol=6 | dir=in | app=system |
"{6FA60815-3509-4D2D-B8DF-918EC45CE975}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{715A503E-03AE-4ECD-956F-3B6109C72170}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7EA43EB6-565E-409D-A84E-7B47E2760B8C}" = lport=10243 | protocol=6 | dir=in | app=system |
"{88851199-13F1-4A78-A800-11A1484FC1C8}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{8981512B-E768-4C4C-A214-541795F4CE89}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{98F52392-6BF6-4546-AE25-E62F71AA11A3}" = lport=138 | protocol=17 | dir=in | app=system |
"{9B5046EC-39FC-4577-8BD2-54A997E0DF5E}" = rport=445 | protocol=6 | dir=out | app=system |
"{C509AEBA-60DB-4B24-BF80-65F078AD33D6}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C5EC21D2-B2AA-4BD8-9A95-0A8ADB5FCC9B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D0BC7940-92CA-4515-A6D6-86D5C39D2258}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D5BEF2BB-5EAF-4497-9EAC-72C57CB8D5B6}" = rport=138 | protocol=17 | dir=out | app=system |
"{DDB7FD52-72B2-40BF-B2B5-E88C72BEC070}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{EB5720AF-37F5-4CC1-9306-610A687BC302}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FB25B7C6-3A04-4CB7-AC8B-38816B067C74}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{FBD18BDA-47D3-4AE5-8E03-97F97B9509BC}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{057EA97C-03D0-4937-9E30-3BE3D6C1C914}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0E5EE20C-6F6D-41CA-A9BF-A0EBD5EC648D}" = protocol=6 | dir=out | app=system |
"{1C1A3F01-1F0F-48A8-B0B5-89A49C8F9278}" = protocol=1 | dir=out | [email protected],-28544 |
"{1CC6D9A8-C92B-4BF8-8CCC-4E15637D320B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2D9AF09A-DF4D-4EE2-9788-E653E30D45D6}" = protocol=58 | dir=in | [email protected],-28545 |
"{2E8CBFC8-1498-4404-977D-6DCF55E3D326}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{49EC7492-B6A1-4633-939F-D173610CDAC1}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{4BD99E52-E4B9-4D80-BD4A-0E30CF9BF821}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5DFA7BD1-FE34-4321-A05A-4210CDC1334D}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{6209C543-6565-4633-86DB-ADDCF5464C45}" = protocol=1 | dir=in | [email protected],-28543 |
"{6755F278-7E33-4176-8BC5-224521344F32}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6A1FC67F-58E5-4A31-BAB5-1F5DFF4A35E1}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{6A5FA32F-5D49-49D4-9439-26F0F828A509}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{76F41225-B8DC-4EE3-B0FF-5593A7E244B8}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{842BD52F-3991-483E-B549-0AC27AFF02DF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8E46A4BF-C765-4E42-B535-EC998D081B2E}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A057E884-B78E-4A1B-B94C-A49122BD2969}" = protocol=58 | dir=out | [email protected],-28546 |
"{AF32AB80-AC0F-445D-93E7-87CD3EA82E5C}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C1860724-4330-4887-B793-285298D67D79}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{CA342248-99A9-4CE3-98D2-D5A83C6B47DD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{EECEAE5F-9EB7-4FA4-A81C-645AAFD1C727}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F25DB3C0-91DA-4572-9480-96D878BE218C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4800_series" = Canon iP4800 series Printer Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_PRO-100_series" = Canon PRO-100 series Printer Driver
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{20384EBF-4F10-13F0-07C6-7A6C87FD83DF}" = AMD Catalyst Install Manager
"{477D05CA-C151-9CF5-22A1-9DF6DF543CD4}" = AMD Media Foundation Decoders
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{82EE86D9-60B9-1025-9960-97E9B7C7B4B4}" = AMD Drag and Drop Transcoding
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{C1ACBDBF-6F86-185A-E158-AB07893968FC}" = AMD Accelerated Video Transcoding
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{D61EB116-6878-9676-F28F-54F6B647023C}" = ccc-utility64
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"ASRock App Charger_is1" = ASRock App Charger v1.0.4
"CANONIJINBOXADDON100" = Canon Inkjet Printer Driver Add-On Module
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.61
"HitmanPro37" = HitmanPro 3.7
"Speccy" = Speccy
"WhoCrashed_is1" = WhoCrashed 4.02
"XFast LAN" = XFast LAN v6.61

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{007F778D-F15C-4EAB-AE92-071D21FAF632}" = Adobe Photoshop Elements 9
"{009B1E9D-38AB-8B9E-DB07-8318DAAE1941}" = CCC Help Greek
"{022BC727-ACB7-4C1D-109C-177515714A32}" = Catalyst Control Center
"{07E46A4A-F2BA-FE48-9464-E11250502C6A}" = CCC Help Swedish
"{07E5C16F-9194-E31B-BB6C-C3E8FBD79C30}" = CCC Help English
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A1E0BDA-5E8F-436d-8BE5-7E97C5CB899D}" = Quicken 2012
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C8C6F56-41FA-44F6-8107-DCFAA7EFD601}" = The Print Shop 23.1
"{0F2CF890-D101-6CFA-8D99-0CFBF7EF4AD0}" = CCC Help Chinese Standard
"{10CFB5DF-985A-8320-B4D8-461CC1F83CBF}" = CCC Help Japanese
"{11D08055-939C-432b-98C3-E072478A0CD7}" = PSE10 STI Installer
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1F9AEE42-E1C1-49A7-A134-D497EED28580}" = BE Limited
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{22D071EF-A06A-6341-DFDA-FE448659A63C}" = CCC Help Portuguese
"{22D3A614-482C-444A-932C-9DA1B8ECDFD2}" = Elements 10 Organizer
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{2862B87C-677C-46A0-AEB2-42724EEF7DF7}" = Access Manager 2
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2BB2BAFA-A689-4D7A-98F6-F09D52C19A7F}" = PrintMaster Platinum 18.1
"{30909F74-4B46-2842-DECF-1C66F355338C}" = CCC Help Turkish
"{365E16A2-FE3B-EA13-4EE0-88D570F82497}" = CCC Help Korean
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3D8AB6C1-3932-F551-2AF0-ED0612AD4B26}" = CCC Help Dutch
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{40AD5E62-A31A-C414-01BA-310100577C7E}" = CCC Help Chinese Traditional
"{433EACD8-4747-4A6A-826A-FFA9F39B0D40}" = Elements 9 Organizer
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4F9E0D27-5525-E8C8-43D0-BA15C1A22E03}" = CCC Help Czech
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{601BE80D-247B-4084-94C7-7A54369DB7A2}" = Hallmark Card Studio 2010 Deluxe
"{647E62F0-F1BC-E0C3-EDF5-67716EE75014}" = CCC Help Hungarian
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{667DB2C0-AF52-021A-7CF6-DA8DD27AC215}" = CCC Help Italian
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A4C6C0F-8791-B753-742E-06C40A6E023C}" = CCC Help Polish
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7568CBAC-FC7F-4EE9-8CAC-B4274FC93B4E}" = Print Artist Platinum 24
"{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}" = Avanquest update
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{79C61902-F44E-4190-A2B9-9B467B0380CE}" = CCC Help French
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{83FA601A-241A-4956-8A21-F7D525C4422F}_is1" = SSD Tweaker version 2.1.1
"{85309D89-7BE9-4094-BB17-24999C6118FC}" = ArcSoft PhotoStudio 5.5
"{8777089A-4CF4-44BA-910B-9A4580669DED}" = Hallmark Card Studio 2012 Deluxe
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1" = ClipGrab 3.2.1.2
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0409-1000-0000000FF1CE}_Office14.SingleImage_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.SingleImage_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.SingleImage_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.SingleImage_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0116-0409-1000-0000000FF1CE}_Office14.SingleImage_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}_Office14.SingleImage_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91A3CEFE-A2C1-3E83-3789-F2BF8EC82106}" = CCC Help Thai
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{96CAEB1D-7BFB-2A98-EBB2-414C894F694F}" = CCC Help Danish
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A127C3C0-055E-38CF-B38F-1E85F8BBBFFE}" = Adobe Community Help
"{A664A708-E454-4416-7D19-D0F10879522C}" = CCC Help German
"{A6E08FBC-FC99-4CEE-B645-83A42107BE89}" = Hallmark Card Studio 2013
"{A7431D5F-57EE-40C8-B9BE-3DEC4FD744C9}" = Access Manager 2
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.04)
"{B2F3DBD9-A9D2-4838-B45D-C917DAB32BC3}" = ScanSoft OmniPage SE 4
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C6A8CB97-FC39-4B9A-9FEA-8AAD6D12E66A}" = Scrapbook Factory Deluxe 5.0
"{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}" = RealDownloader
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D2D6B9EB-C6DC-4DAA-B4DE-BB7D9735E7DA}" = Presto! PageManager 7.15.16
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6F46E2D-4FE2-5FAB-5C30-230E99563DEE}" = Catalyst Control Center InstallProxy
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{D9DA23F5-CE0B-EE04-B498-7EC8AFC9F232}" = CCC Help Finnish
"{DD78A3E4-4C62-4CE4-8CF5-136F29BBA0B4}" = MyMailList & AddressBook
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DF5182CB-192B-A6C8-9707-D7214557691C}" = CCC Help Norwegian
"{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2AE009D-37E5-4724-A6B8-0ED6A6BA4F68}" = Elements STI Installer
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E6757654-CE6A-0D0B-BBE6-F6247F05B7CD}" = Catalyst Control Center Localization All
"{E8759AD8-3A58-77F1-D16D-F3C8F9E98722}" = Catalyst Control Center Graphics Previews Common
"{EA5F34F3-3911-B4DB-63CA-1E44B2AB13A1}" = Adobe Download Assistant
"{EC8282AB-48DD-91D2-7387-01CD6E100A5D}" = Adobe Photoshop.com Inspiration Browser
"{EE549AF9-8FAA-4584-83B2-ECF1BC9DC1FF}" = Adobe Photoshop Elements 10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1C39CBE-4521-BEC8-5238-4A8B55FEB6B7}" = CCC Help Russian
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{FBFA39D2-C55A-56DC-7EBB-767FC31B04A3}" = CCC Help Spanish
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Photoshop Elements 10" = Adobe Photoshop Elements 10
"Adobe Photoshop Elements 9" = Adobe Photoshop Elements 9
"Aimersoft DVD Creator_is1" = Aimersoft DVD Creator(Build 2.6.5)
"ASRock eXtreme Tuner_is1" = ASRock eXtreme Tuner v0.1.98
"ASRock InstantBoot_is1" = ASRock InstantBoot v1.26
"ATT-PRT22" = ATT-PRT22
"Avira AntiVir Desktop" = Avira Antivirus Premium
"BE Limited" = BE Limited
"Belarc Advisor" = Belarc Advisor 8.3
"Canon CanoScan 8800F User Registration" = Canon CanoScan 8800F User Registration
"Canon iP4800 series User Registration" = Canon iP4800 series User Registration
"Canon My Image Garden" = Canon My Image Garden
"Canon My Image Garden Design Files" = Canon My Image Garden Design Files
"Canon PRO-100 series On-screen Manual" = Canon PRO-100 series On-screen Manual
"Canon PRO-100 series User Registration" = Canon PRO-100 series User Registration
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonQuickMenu" = Canon Quick Menu
"CanonSolutionMenu" = Canon Utilities Solution Menu
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Gadwin PrintScreen" = Gadwin PrintScreen
"IJWCS - Common Profile Extention Data" = Canon IJWCS - Common Profile Extention Data
"IJWCS - PRO-1 series Extention Data" = Canon IJWCS - PRO-1 series Extention Data
"IJWCS - PRO-10 series Extention Data" = Canon IJWCS - PRO-10 series Extention Data
"IJWCS - PRO-100 series Extention Data" = Canon IJWCS - PRO-100 series Extention Data
"Image for Windows (V2)_is1" = Image for Windows 2.79 Trial
"InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"MagniDriver" = marvell 91xx driver
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox 24.0 (x86 en-US)" = Mozilla Firefox 24.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"Office14.SingleImage" = Microsoft Office Home and Student 2010
"PhotoshopdotcomInspirationBrowser.4C35C4D325D350FE0114230CBADCA2DDD0AC8D25.1" = Adobe Photoshop.com Inspiration Browser
"Print Studio Pro" = Canon Print Studio Pro
"RealPlayer 16.0" = RealPlayer
"TBIView_is1" = TBIView 4.31 - TBIMount 1.10
"WebPost" = Microsoft Web Publishing Wizard 1.52
"WinLiveSuite" = Windows Live Essentials
"XFastUsb" = XFastUsb

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 9/25/2013 12:27:28 PM | Computer Name = Lou | Source = SideBySide | ID = 16842811
Description = Activation context generation failed for "C:\Users\Bill's\Downloads\Setup.exe".Error
in manifest or policy file "C:\Users\Bill's\Downloads\Setup.exe" on line 2. Invalid
Xml syntax.

Error - 9/25/2013 12:36:05 PM | Computer Name = Lou | Source = WinMgmt | ID = 10
Description =

Error - 9/25/2013 12:41:58 PM | Computer Name = Lou | Source = WinMgmt | ID = 10
Description =

Error - 9/25/2013 1:07:47 PM | Computer Name = Lou | Source = System Restore | ID = 8193
Description =

[ System Events ]
Error - 9/25/2013 12:34:12 PM | Computer Name = Lou | Source = EventLog | ID = 6008
Description = The previous system shutdown at 12:31:55 PM on ?9/?25/?2013 was unexpected.

Error - 9/25/2013 12:34:12 PM | Computer Name = LOU | Source = BugCheck | ID = 1001
Description =

Error - 9/25/2013 12:40:05 PM | Computer Name = Lou | Source = EventLog | ID = 6008
Description = The previous system shutdown at 12:38:08 PM on ?9/?25/?2013 was unexpected.

Error - 9/25/2013 12:40:05 PM | Computer Name = Lou | Source = BugCheck | ID = 1001
Description =

Error - 9/25/2013 12:42:23 PM | Computer Name = Lou | Source = PNRPSvc | ID = 102
Description =

Error - 9/25/2013 12:42:23 PM | Computer Name = Lou | Source = Service Control Manager | ID = 7023
Description = The Peer Name Resolution Protocol service terminated with the following
error: %%-2140993535


< End of report >
  • 0

Advertisements


#11
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
I am sorry about the double posting of the Speccy log. When I posted the first time ,it said there was a problem and to wait and post again. I was unaware that it had posted.
  • 0

#12
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
OTL log? (Just see the Extras log)

Let's also run Process Explorer:

Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header to sort things by CPU usage with the big hitters at the top.

Wait a full minute then:

File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.
  • 0

#13
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
OTL LogOTL logfile created on: 9/25/2013 12:57:07 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bill's\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.98 Gb Total Physical Memory | 6.15 Gb Available Physical Memory | 77.04% Memory free
9.93 Gb Paging File | 7.78 Gb Available in Paging File | 78.30% Paging File free
Paging file location(s): c:\pagefile.sys 2000 2500 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 238.37 Gb Total Space | 159.97 Gb Free Space | 67.11% Space Free | Partition Type: NTFS
Drive D: | 149.05 Gb Total Space | 131.34 Gb Free Space | 88.12% Space Free | Partition Type: NTFS
Drive E: | 149.04 Gb Total Space | 103.84 Gb Free Space | 69.67% Space Free | Partition Type: NTFS

Computer Name: LOU | User Name: Bill's | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2013/09/24 19:29:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bill's\Desktop\OTL.exe
PRC - [2013/09/21 16:50:23 | 000,295,512 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2013/09/03 08:43:17 | 000,084,024 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2013/09/03 08:42:30 | 000,815,160 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe
PRC - [2013/09/03 08:42:15 | 000,622,648 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
PRC - [2013/09/03 08:42:11 | 000,108,088 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2013/09/03 08:42:10 | 000,347,192 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2013/08/14 15:19:24 | 000,039,056 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/05/11 06:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/07/17 11:51:14 | 004,942,336 | ---- | M] (FNet Co., Ltd.) -- C:\Program Files (x86)\XFastUsb\XFastUsb.exe
PRC - [2012/05/30 02:08:28 | 001,842,384 | ---- | M] (Gadwin Systems, Inc) -- C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe
PRC - [2012/04/03 13:33:00 | 000,940,168 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
PRC - [2012/04/03 13:27:16 | 001,087,608 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
PRC - [2012/04/03 13:26:14 | 001,273,448 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
PRC - [2012/03/27 23:49:11 | 000,140,456 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
PRC - [2012/02/20 15:54:08 | 001,666,560 | ---- | M] (AimerSoft) -- C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
PRC - [2011/09/14 22:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2011/05/20 10:10:26 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011/05/20 10:10:12 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/09/30 03:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2007/02/04 12:02:14 | 000,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe


========== Modules (No Company Name) ==========

MOD - [2013/09/10 15:54:56 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d473c19e69818875b9c739cad8f386a5\System.Runtime.Remoting.ni.dll
MOD - [2013/08/14 11:43:19 | 000,018,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\d187afdee972b70222b76bd6aed1f742\PresentationFramework-SystemXml.ni.dll
MOD - [2013/08/14 11:42:07 | 000,492,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\97ce162bb354fcf9c8d9eae8252ee216\IAStorUtil.ni.dll
MOD - [2013/08/14 10:42:23 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
MOD - [2013/08/14 10:42:20 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013/08/14 10:42:18 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
MOD - [2013/08/14 10:42:16 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\8f7d83126a3cf283e5ac97f2d6d99f12\System.Configuration.ni.dll
MOD - [2013/08/14 10:42:12 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1f6f220f9efe936d1158c79b9d4b451f\WindowsBase.ni.dll
MOD - [2013/08/14 10:42:10 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013/08/14 10:40:16 | 018,545,152 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\775d60de39c6f0b49f1640c4e6c8de09\PresentationFramework.ni.dll
MOD - [2013/08/14 10:40:10 | 010,926,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\8e3d6080e8eaaaf28389f3742ff9acdd\PresentationCore.ni.dll
MOD - [2013/08/14 10:40:09 | 012,698,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\5f27b142c87d877c73ac245ab951a773\System.Windows.Forms.ni.dll
MOD - [2013/08/14 10:40:07 | 006,998,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\a35e871c52b7a7aee64c969c02acfaa0\System.Core.ni.dll
MOD - [2013/08/14 10:40:06 | 007,566,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\82d58d49946f82eb56bae40f3b097784\System.Xml.ni.dll
MOD - [2013/08/14 10:40:06 | 000,786,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\639cec73538f6ad7130372259464cc57\System.Runtime.Remoting.ni.dll
MOD - [2013/08/14 10:40:05 | 003,910,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\782db4c31adf3046c62e43b8f11453c1\WindowsBase.ni.dll
MOD - [2013/08/14 10:40:05 | 000,964,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\2fd755147672c80dd4b13978933f8a3d\System.Configuration.ni.dll
MOD - [2013/08/14 10:40:04 | 001,880,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\f4fff5d6e716c439b944025d3994170d\System.Xaml.ni.dll
MOD - [2013/08/14 10:40:04 | 001,631,744 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\cceaf9d7891fc325a90473aa9a661661\System.Drawing.ni.dll
MOD - [2013/08/14 10:40:04 | 000,462,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\7dd4cd3e4768d2aa55af60c838790088\PresentationFramework.Aero.ni.dll
MOD - [2013/08/14 10:40:03 | 009,937,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ac79b74f022d9a096de2b884f4249543\System.ni.dll
MOD - [2013/07/10 12:46:50 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\22d36f517c7545fdb65ccddae680a3eb\IAStorCommon.ni.dll
MOD - [2013/07/10 12:39:24 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013/07/10 12:36:49 | 000,189,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\f16e993b7058b005bbf273007fadf95b\UIAutomationTypes.ni.dll
MOD - [2013/07/10 12:29:04 | 016,547,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\bf2ecabcd96ec8238dc385b0a3ffa084\mscorlib.ni.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/05/27 01:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012/12/19 15:56:00 | 000,240,640 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012/07/11 14:54:58 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2011/07/04 15:19:30 | 000,395,136 | ---- | M] (cFos Software GmbH) [Auto | Running] -- C:\Program Files\ASRock\XFast LAN\spd.exe -- (cFosSpeedS)
SRV - [2013/09/21 17:45:08 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/09/17 15:05:35 | 000,118,680 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/09/03 08:43:17 | 000,084,024 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2013/09/03 08:42:30 | 000,815,160 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe -- (AntiVirWebService)
SRV - [2013/09/03 08:42:15 | 000,622,648 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe -- (AntiVirMailService)
SRV - [2013/09/03 08:42:11 | 000,108,088 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2013/08/14 15:19:24 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/05/11 06:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/09 01:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012/03/27 23:49:11 | 000,140,456 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2011/09/14 22:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2011/05/20 10:10:26 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/11/20 23:24:51 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/11/20 23:24:51 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010/11/20 23:24:51 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010/09/30 03:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/09/03 08:43:34 | 000,132,088 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:64bit: - [2013/09/03 08:43:34 | 000,105,344 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2013/03/25 08:17:37 | 000,028,600 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2013/01/08 00:08:54 | 000,374,472 | ---- | M] (TeraByte, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TBIMount.sys -- (TBIMount)
DRV:64bit: - [2012/12/19 16:48:48 | 011,278,336 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012/12/19 15:32:54 | 000,552,960 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/11/06 07:11:52 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012/10/30 23:20:58 | 000,034,424 | ---- | M] (TeraByte, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\phylock.sys -- (phylock)
DRV:64bit: - [2012/09/28 22:52:10 | 000,075,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d)
DRV:64bit: - [2012/08/23 10:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 10:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/23 10:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/15 20:11:32 | 000,031,808 | ---- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FNETTBOH_305.SYS -- (FNETTBOH_305)
DRV:64bit: - [2012/07/17 11:51:14 | 000,015,936 | ---- | M] (FNet Co., Ltd.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\FNETURPX.SYS -- (FNETURPX)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/08/01 15:59:06 | 000,045,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2011/08/01 15:59:06 | 000,023,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nuidfltr.sys -- (NuidFltr)
DRV:64bit: - [2011/07/22 12:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 17:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/07/04 15:19:34 | 001,632,128 | ---- | M] (cFos Software GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cfosspeed6.sys -- (cFosSpeed)
DRV:64bit: - [2011/06/10 07:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/05/20 09:53:44 | 000,557,848 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011/03/30 03:15:00 | 001,254,464 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AE2500w764.sys -- (Linksys_adapter_H)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/02/08 01:30:52 | 000,064,512 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2011/02/08 01:30:52 | 000,039,936 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronHub3.sys -- (EtronHub3)
DRV:64bit: - [2010/11/20 23:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/10/19 23:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/09/30 23:35:06 | 000,302,120 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv91xx.sys -- (mv91xx)
DRV:64bit: - [2010/06/11 14:37:14 | 000,015,368 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AsrAppCharger.sys -- (AsrAppCharger)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/11/17 19:12:00 | 000,032,344 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/08/14 09:45:24 | 000,021,248 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Motive\MREMP50.sys -- (MREMP50)
DRV - [2009/08/14 09:45:24 | 000,020,096 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Motive\MRESP50.sys -- (MRESP50)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0D F2 5A 06 A7 C9 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.selectedEngine: "Bing"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledAddons: %7Be001c731-5e37-4538-a5cb-8168736a2360%7D:0.9.9.119
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Motive.com/NpMotive,version=1.0: C:\Program Files (x86)\Common Files\Motive\npMotive.dll (Motive, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/09/21 16:50:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/09/21 16:50:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/07/03 16:06:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bill's\AppData\Roaming\mozilla\Extensions
[2013/09/21 21:31:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bill's\AppData\Roaming\mozilla\Firefox\Profiles\4cndd157.default\extensions
[2013/09/21 21:03:06 | 000,000,000 | ---D | M] (Bitdefender QuickScan) -- C:\Users\Bill's\AppData\Roaming\mozilla\Firefox\Profiles\4cndd157.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2013/09/19 18:25:18 | 000,000,000 | ---D | M] (Web Check) -- C:\Users\Bill's\AppData\Roaming\mozilla\Firefox\Profiles\4cndd157.default\extensions\WebCheck
[2013/09/19 18:24:37 | 000,001,292 | ---- | M] () -- C:\Users\Bill's\AppData\Roaming\mozilla\firefox\profiles\4cndd157.default\searchplugins\visualbee.xml
[2013/09/19 18:24:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\Extensions
[2013/09/17 15:05:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/09/17 15:05:35 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - homepage: http://www.google.com
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee\0.1\
CHR - Extension: No name found = C:\Users\Bill's\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [WrtMon.exe] C:\Windows\SysNative\spool\drivers\x64\3\WrtMon.exe ()
O4 - HKLM..\Run: [Aimersoft Helper Compact.exe] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe (AimerSoft)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [ReminderApp] C:\Program Files (x86)\Nova Development\Scrapbook Factory Deluxe 5.0\ReminderApp.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [XFastUsb] C:\Program Files (x86)\XFastUsb\XFastUsb.exe (FNet Co., Ltd.)
O4 - HKCU..\Run: [ASRockXTU] File not found
O4 - HKCU..\Run: [Gadwin PrintScreen] C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Gadwin Systems, Inc)
O4 - HKCU..\Run: [PhotoshopElements8SyncAgent] C:\Program Files (x86)\Adobe\Elements 10 Organizer\ElementsOrganizerSyncAgent.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [zASRockInstantBoot] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000019 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O12 - Plugin for: .spop - C:\Program Files (x86)\Internet Explorer\Plugins\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0F993D91-102B-47A1-A7B7-72983BAFE6F5}: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{27189063-7D8A-4B13-B2AF-186D36120BC2}: DhcpNameServer = 10.0.0.1
O18:64bit: - Protocol\Handler\belarc - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.)
O20 - AppInit_DLLs: (c:\progra~3\bitguard\261673~1.238\{c16c1~1\bitguard.dll) - File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{a8778776-c554-11e1-8459-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{a8778776-c554-11e1-8459-806e6f6e6963}\Shell\AutoRun\command - "" = D:\ASRSetup.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell\install\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell\readfile\command - "" = hh.exe readme.htm
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


MsConfig:64bit - StartUpReg: ReminderApp - hkey= - key= - C:\Program Files (x86)\Nova Development\Scrapbook Factory Deluxe 5.0\ReminderApp.exe ()
MsConfig:64bit - StartUpReg: ReminderApp_EEAC3053-7055-4143-B8A0-306758055099 - hkey= - key= - File not found
MsConfig:64bit - State: "startup" - Reg Error: Key error.
MsConfig:64bit - State: "bootini" - Reg Error: Key error.

SafeBootMin:64bit: !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCore64.exe (SUPERAntiSpyware.com)
SafeBootMin:64bit: AppMgmt - Service
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: hitmanpro37 - Reg Error: Value error.
SafeBootMin:64bit: hitmanpro37.sys - Reg Error: Value error.
SafeBootMin:64bit: HitmanPro37Crusader - Reg Error: Value error.
SafeBootMin:64bit: HitmanPro37CrusaderBoot - Reg Error: Value error.
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: hitmanpro37 - Reg Error: Value error.
SafeBootMin: hitmanpro37.sys - Reg Error: Value error.
SafeBootMin: HitmanPro37Crusader - Reg Error: Value error.
SafeBootMin: HitmanPro37CrusaderBoot - Reg Error: Value error.
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet:64bit: !SASCORE - C:\Program Files\SUPERAntiSpyware\SASCore64.exe (SUPERAntiSpyware.com)
SafeBootNet:64bit: AppMgmt - Service
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: hitmanpro37 - Reg Error: Value error.
SafeBootNet:64bit: hitmanpro37.sys - Reg Error: Value error.
SafeBootNet:64bit: HitmanPro37Crusader - Reg Error: Value error.
SafeBootNet:64bit: HitmanPro37CrusaderBoot - Reg Error: Value error.
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: rdsessmgr - Service
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: hitmanpro37 - Reg Error: Value error.
SafeBootNet: hitmanpro37.sys - Reg Error: Value error.
SafeBootNet: HitmanPro37Crusader - Reg Error: Value error.
SafeBootNet: HitmanPro37CrusaderBoot - Reg Error: Value error.
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX:64bit: {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} - .NET Framework
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} - .NET Framework
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA851-CC51-11CF-AAFA-00AA00B6015C} - rundll32.exe advpack.dll,LaunchINFSection %SystemRoot%\INF\wpie4x86.inf,PerUserStub
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.tscc - C:\Windows\SysWow64\tsccvid.dll (TechSmith Corporation)

CREATERESTOREPOINT
System Restore Service not available.

========== Files/Folders - Created Within 30 Days ==========

[2013/09/25 12:32:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
[2013/09/25 12:32:19 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2013/09/25 11:48:41 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/09/25 11:28:53 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/09/24 19:29:55 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Bill's\Desktop\OTL.exe
[2013/09/21 21:20:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2013/09/21 16:53:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClipGrab
[2013/09/21 16:53:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ClipGrab
[2013/09/21 16:50:42 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Roaming\RealNetworks
[2013/09/21 16:50:31 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2013/09/21 16:50:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RealNetworks
[2013/09/21 16:50:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2013/09/21 16:50:26 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013/09/21 16:50:24 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013/09/21 16:50:24 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013/09/21 16:50:23 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/09/21 16:50:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2013/09/19 19:27:19 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\TubeBox
[2013/09/19 18:31:12 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\Freetec
[2013/09/19 18:31:12 | 000,000,000 | ---D | C] -- C:\Users\Bill's\Documents\Free YouTube Download Manager
[2013/09/19 18:25:02 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\avgchrome
[2013/09/19 18:24:13 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\emaze
[2013/09/17 15:05:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/09/10 17:13:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aimersoft
[2013/09/10 17:13:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Aimersoft
[2013/09/10 16:57:37 | 000,000,000 | ---D | C] -- C:\Users\Bill's\AppData\Local\Aimersoft
[2013/09/10 16:57:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Aimersoft
[2013/09/10 16:57:31 | 000,000,000 | ---D | C] -- C:\Users\Bill's\Documents\Aimersoft DVD Creator
[2013/09/10 15:57:36 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/09/10 15:57:36 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/09/10 15:57:35 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/09/10 15:57:35 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/09/10 15:57:35 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/09/10 15:57:35 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/09/10 15:57:35 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/09/10 15:57:35 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/09/10 15:57:35 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/09/10 15:57:35 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/09/10 15:57:35 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/09/10 15:57:35 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/09/10 15:57:35 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/09/10 15:57:35 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/09/10 15:57:34 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/09/10 15:51:29 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013/09/10 15:51:26 | 005,550,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013/09/10 15:51:26 | 003,968,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013/09/10 15:51:26 | 003,913,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013/09/10 15:51:26 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013/09/10 15:51:25 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013/09/10 15:51:25 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/09/10 15:51:25 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013/09/10 15:51:25 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013/09/10 15:51:25 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/09/10 15:51:25 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/09/10 15:51:25 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013/09/10 15:51:25 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013/09/10 15:51:25 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/09/10 15:51:25 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013/09/10 15:51:25 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/09/10 15:51:25 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013/09/10 15:51:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/09/10 15:51:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2013/09/10 15:51:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2013/09/10 15:51:25 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013/09/10 15:51:25 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013/09/10 15:51:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013/09/10 15:51:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013/09/10 15:51:25 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013/09/10 15:51:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013/09/10 15:51:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013/09/10 15:51:25 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/09/10 15:51:17 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2012/08/04 23:37:52 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\Users\Bill's\cleanup_tool.exe

========== Files - Modified Within 30 Days ==========

[2013/09/25 12:47:28 | 000,029,120 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/25 12:47:28 | 000,029,120 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/25 12:45:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/09/25 12:44:29 | 000,878,660 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/09/25 12:44:29 | 000,730,836 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/09/25 12:44:29 | 000,147,318 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/09/25 12:42:21 | 000,000,796 | ---- | M] () -- C:\Users\Public\Desktop\Speccy.lnk
[2013/09/25 12:40:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/25 12:40:03 | 543,087,650 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/09/25 12:21:37 | 000,000,512 | ---- | M] () -- C:\Users\Bill's\Documents\MBR.dat
[2013/09/24 19:30:33 | 000,001,813 | ---- | M] () -- C:\Users\Bill's\Documents\OTL - Shortcut.lnk
[2013/09/24 19:29:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bill's\Desktop\OTL.exe
[2013/09/24 17:36:22 | 000,024,576 | ---- | M] () -- C:\Users\Bill's\Documents\1ST GRADE SUNDAY SCHOOL.AB2
[2013/09/24 17:36:03 | 000,000,081 | ---- | M] () -- C:\Windows\PARSONS.INI
[2013/09/23 18:04:21 | 000,257,015 | ---- | M] () -- C:\Users\Bill's\Documents\jeannie.eml
[2013/09/23 16:21:07 | 001,050,112 | ---- | M] () -- C:\Users\Bill's\Documents\POSTCARD HIGH ATTEND DAY.pcr
[2013/09/23 14:34:57 | 034,774,114 | ---- | M] () -- C:\Users\Bill's\Documents\Kenny Rogers &amp; Dolly Parton - You Cant Make Old Friends (Official Music Video).flv
[2013/09/22 19:28:12 | 024,255,796 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Pictures.sft
[2013/09/22 19:19:17 | 025,522,598 | ---- | M] () -- C:\Users\Bill's\Documents\First Grade SS small pictures with names.sft
[2013/09/22 19:12:35 | 025,524,750 | ---- | M] () -- C:\Users\Bill's\Documents\1st grade kids with names.sft
[2013/09/22 15:51:13 | 018,398,932 | ---- | M] () -- C:\Users\Bill's\Documents\SS in service 878.sbk
[2013/09/21 21:23:26 | 000,000,085 | ---- | M] () -- C:\Windows\wininit.ini
[2013/09/21 17:45:07 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/09/21 17:45:07 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/09/21 16:54:54 | 011,555,314 | ---- | M] () -- C:\Users\Bill's\Documents\Who Am I --Elvis Presley with lyrics.flv
[2013/09/21 16:53:58 | 000,001,011 | ---- | M] () -- C:\Users\Public\Desktop\ClipGrab.lnk
[2013/09/21 16:50:26 | 000,201,872 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013/09/21 16:50:24 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013/09/21 16:50:24 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013/09/21 16:50:23 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/09/19 18:40:55 | 000,000,822 | ---- | M] () -- C:\Windows\SysNative\.crusader
[2013/09/19 14:22:21 | 000,014,336 | ---- | M] () -- C:\Users\Bill's\Documents\SS ABSENT PEOPLE.AB2
[2013/09/19 14:22:19 | 000,023,552 | ---- | M] () -- C:\Users\Bill's\Documents\SUNDAY SCHOOL Inreach.AB2
[2013/09/19 14:22:18 | 000,020,480 | ---- | M] () -- C:\Users\Bill's\Documents\SUNDAY SCHOOL.AB2
[2013/09/18 15:38:52 | 000,148,480 | ---- | M] () -- C:\Users\Bill's\Documents\Lou Chuch tag.lbl
[2013/09/17 13:57:31 | 017,990,466 | ---- | M] () -- C:\Users\Bill's\Documents\1st grade small pictures.sft
[2013/09/17 12:19:02 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/09/16 22:46:54 | 016,514,254 | ---- | M] () -- C:\Users\Bill's\Documents\SS kids cross.sbk
[2013/09/16 16:50:10 | 017,709,202 | ---- | M] () -- C:\Users\Bill's\Documents\in service SS page 5 Norma.sbk
[2013/09/15 14:20:33 | 016,267,784 | ---- | M] () -- C:\Users\Bill's\Documents\in-service 77.sbk
[2013/09/13 15:33:48 | 001,806,336 | ---- | M] () -- C:\Users\Bill's\Desktop\Bill's's Quicken Data.QDF-backup
[2013/09/12 17:21:41 | 000,198,656 | ---- | M] () -- C:\Users\Bill's\Documents\angle tags.sig
[2013/09/11 16:58:19 | 000,018,432 | ---- | M] () -- C:\Users\Bill's\Documents\names on front of folder.lbl
[2013/09/11 12:14:00 | 000,316,778 | ---- | M] () -- C:\Users\Bill's\Documents\Old & New Testament Header.sbk
[2013/09/11 10:58:33 | 000,353,156 | ---- | M] () -- C:\Users\Bill's\Documents\Books of the bible.sbk
[2013/09/10 17:13:31 | 000,001,180 | ---- | M] () -- C:\Users\Bill's\Desktop\Aimersoft DVD Creator.lnk
[2013/09/10 16:25:08 | 000,001,945 | ---- | M] () -- C:\Users\Public\Desktop\CDBurnerXP.lnk
[2013/09/10 16:24:14 | 001,679,112 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/09/09 19:29:16 | 000,225,280 | ---- | M] () -- C:\Users\Bill's\Documents\half envelope 2.env
[2013/09/09 18:01:33 | 000,848,896 | ---- | M] () -- C:\Users\Bill's\Documents\teacher.env
[2013/09/08 18:08:07 | 015,170,832 | ---- | M] () -- C:\Users\Bill's\Documents\in-service SS 6.sbk
[2013/09/06 16:51:39 | 000,087,552 | ---- | M] () -- C:\Users\Bill's\Documents\SS name tags.lbl
[2013/09/03 08:43:34 | 000,132,088 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avipbb.sys
[2013/09/03 08:43:34 | 000,105,344 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2013/09/03 08:43:34 | 000,081,112 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\SysNative\drivers\avnetflt.sys
[2013/09/01 21:08:13 | 001,029,284 | -H-- | M] () -- C:\Windows\SysWow64\mlfcache.dat
[2013/09/01 20:47:36 | 000,848,896 | ---- | M] () -- C:\Users\Bill's\Documents\half card envelope.env
[2013/09/01 16:14:20 | 000,104,960 | ---- | M] () -- C:\Users\Bill's\Documents\Elsa Baker.env
[2013/09/01 15:42:47 | 018,455,570 | ---- | M] () -- C:\Users\Bill's\Documents\SS pictures In Service.sbk
[2013/09/01 14:48:11 | 014,297,484 | ---- | M] () -- C:\Users\Bill's\Documents\in-service SS 5.sbk
[2013/09/01 14:28:57 | 015,324,336 | ---- | M] () -- C:\Users\Bill's\Documents\in-service SS 4.sbk
[2013/09/01 14:03:21 | 015,310,536 | ---- | M] () -- C:\Users\Bill's\Documents\SS in-service 3.sbk
[2013/09/01 13:27:02 | 017,121,156 | ---- | M] () -- C:\Users\Bill's\Documents\SS In-service 2.sbk
[2013/08/31 08:40:30 | 000,034,304 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Thanksgiving.lbl
[2013/08/30 16:55:28 | 000,025,088 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept - Oct 2013.lbl
[2013/08/28 22:32:30 | 000,323,072 | ---- | M] () -- C:\Users\Bill's\Documents\half envelope example.env
[2013/08/28 21:26:17 | 000,019,456 | ---- | M] () -- C:\Users\Bill's\Documents\LIVE VERSES (COVER).lbl
[2013/08/28 21:01:32 | 000,027,648 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept 2013.lbl
[2013/08/28 20:59:19 | 000,029,184 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov. 2013.lbl
[2013/08/28 20:55:55 | 000,034,304 | ---- | M] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov 2nd one.lbl
[2013/08/28 20:27:27 | 000,019,968 | ---- | M] () -- C:\Users\Bill's\Documents\ss verse 0001.lbl
[2013/08/28 19:17:49 | 000,019,456 | ---- | M] () -- C:\Users\Bill's\Documents\SS Leap of Faith - Frog.lbl

========== Files Created - No Company Name ==========

[2013/09/25 12:42:21 | 000,000,796 | ---- | C] () -- C:\Users\Public\Desktop\Speccy.lnk
[2013/09/25 12:34:10 | 543,087,650 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013/09/25 12:21:37 | 000,000,512 | ---- | C] () -- C:\Users\Bill's\Documents\MBR.dat
[2013/09/24 19:30:33 | 000,001,813 | ---- | C] () -- C:\Users\Bill's\Documents\OTL - Shortcut.lnk
[2013/09/23 17:53:41 | 000,257,015 | ---- | C] () -- C:\Users\Bill's\Documents\jeannie.eml
[2013/09/23 16:28:19 | 000,024,576 | ---- | C] () -- C:\Users\Bill's\Documents\1ST GRADE SUNDAY SCHOOL.AB2
[2013/09/23 16:16:07 | 001,050,112 | ---- | C] () -- C:\Users\Bill's\Documents\POSTCARD HIGH ATTEND DAY.pcr
[2013/09/23 14:35:47 | 034,774,114 | ---- | C] () -- C:\Users\Bill's\Documents\Kenny Rogers &amp; Dolly Parton - You Cant Make Old Friends (Official Music Video).flv
[2013/09/22 19:19:10 | 025,522,598 | ---- | C] () -- C:\Users\Bill's\Documents\First Grade SS small pictures with names.sft
[2013/09/22 15:51:12 | 018,398,932 | ---- | C] () -- C:\Users\Bill's\Documents\SS in service 878.sbk
[2013/09/21 21:23:25 | 000,000,085 | ---- | C] () -- C:\Windows\wininit.ini
[2013/09/21 16:55:19 | 011,555,314 | ---- | C] () -- C:\Users\Bill's\Documents\Who Am I --Elvis Presley with lyrics.flv
[2013/09/21 16:53:58 | 000,001,011 | ---- | C] () -- C:\Users\Public\Desktop\ClipGrab.lnk
[2013/09/19 18:40:55 | 000,000,822 | ---- | C] () -- C:\Windows\SysNative\.crusader
[2013/09/19 18:24:13 | 000,001,230 | ---- | C] () -- C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
[2013/09/18 16:27:50 | 025,524,750 | ---- | C] () -- C:\Users\Bill's\Documents\1st grade kids with names.sft
[2013/09/17 13:42:10 | 017,990,466 | ---- | C] () -- C:\Users\Bill's\Documents\1st grade small pictures.sft
[2013/09/17 09:33:47 | 024,255,796 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Pictures.sft
[2013/09/16 21:38:51 | 016,514,254 | ---- | C] () -- C:\Users\Bill's\Documents\SS kids cross.sbk
[2013/09/15 14:09:50 | 016,267,784 | ---- | C] () -- C:\Users\Bill's\Documents\in-service 77.sbk
[2013/09/12 17:21:41 | 000,198,656 | ---- | C] () -- C:\Users\Bill's\Documents\angle tags.sig
[2013/09/11 16:58:19 | 000,018,432 | ---- | C] () -- C:\Users\Bill's\Documents\names on front of folder.lbl
[2013/09/11 12:13:37 | 000,316,778 | ---- | C] () -- C:\Users\Bill's\Documents\Old & New Testament Header.sbk
[2013/09/10 17:13:31 | 000,001,180 | ---- | C] () -- C:\Users\Bill's\Desktop\Aimersoft DVD Creator.lnk
[2013/09/09 17:20:08 | 000,225,280 | ---- | C] () -- C:\Users\Bill's\Documents\half envelope 2.env
[2013/09/08 17:57:22 | 015,170,832 | ---- | C] () -- C:\Users\Bill's\Documents\in-service SS 6.sbk
[2013/09/01 21:17:36 | 017,709,202 | ---- | C] () -- C:\Users\Bill's\Documents\in service SS page 5 Norma.sbk
[2013/09/01 21:08:13 | 001,029,284 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2013/09/01 14:29:17 | 014,297,484 | ---- | C] () -- C:\Users\Bill's\Documents\in-service SS 5.sbk
[2013/09/01 14:04:31 | 015,324,336 | ---- | C] () -- C:\Users\Bill's\Documents\in-service SS 4.sbk
[2013/09/01 13:35:40 | 015,310,536 | ---- | C] () -- C:\Users\Bill's\Documents\SS in-service 3.sbk
[2013/08/31 19:03:22 | 017,121,156 | ---- | C] () -- C:\Users\Bill's\Documents\SS In-service 2.sbk
[2013/08/31 08:33:40 | 000,034,304 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Thanksgiving.lbl
[2013/08/29 16:21:35 | 000,353,156 | ---- | C] () -- C:\Users\Bill's\Documents\Books of the bible.sbk
[2013/08/28 21:26:17 | 000,019,456 | ---- | C] () -- C:\Users\Bill's\Documents\LIVE VERSES (COVER).lbl
[2013/08/28 20:51:09 | 000,034,304 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov 2nd one.lbl
[2013/08/28 20:48:25 | 000,029,184 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Oct -Nov. 2013.lbl
[2013/08/28 20:36:00 | 000,025,088 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept - Oct 2013.lbl
[2013/08/28 20:33:23 | 000,027,648 | ---- | C] () -- C:\Users\Bill's\Documents\1st Grade Life Verse Sept 2013.lbl
[2013/08/28 20:27:27 | 000,019,968 | ---- | C] () -- C:\Users\Bill's\Documents\ss verse 0001.lbl
[2013/08/28 19:17:49 | 000,019,456 | ---- | C] () -- C:\Users\Bill's\Documents\SS Leap of Faith - Frog.lbl
[2013/08/07 09:52:10 | 000,002,708 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp2.html
[2013/05/21 10:19:25 | 000,113,224 | ---- | C] () -- C:\Users\Bill's\g2ax_customer_downloadhelper_win32_x86.exe
[2013/03/01 19:55:33 | 000,000,081 | ---- | C] () -- C:\Windows\PARSONS.INI
[2013/02/13 18:38:44 | 000,090,784 | ---- | C] () -- C:\Windows\tbicd2hd.exe
[2012/11/06 12:24:33 | 000,005,670 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp5.html
[2012/07/17 11:51:19 | 000,000,003 | ---- | C] () -- C:\Users\Bill's\AppData\Local\user_data.ini
[2012/07/14 10:59:21 | 000,007,073 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp7.html
[2012/07/13 09:16:05 | 000,009,407 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp8.html
[2012/07/05 11:38:08 | 000,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll
[2012/07/05 11:37:23 | 000,000,424 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2012/07/04 19:47:10 | 000,000,432 | ---- | C] () -- C:\Windows\hpbj1100.ini
[2012/07/04 13:49:06 | 000,870,654 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/07/04 13:23:24 | 000,000,126 | ---- | C] () -- C:\Windows\QUICKEN.INI
[2012/07/04 10:10:59 | 000,001,955 | ---- | C] () -- C:\Users\Bill's\AppData\Local\Temp1.html
[2012/07/03 15:47:26 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012/07/03 15:26:13 | 000,053,299 | R--- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2012/06/11 12:50:16 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/06/11 12:50:16 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/05/02 14:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/25 22:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 21:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Custom Scans ==========

========== Drive Information ==========

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: M4-CT256M4SSD2
Partitions: 2
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST3160318AS
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE2 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST3160813AS
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE3 -
Interface type: USB
Media Type:
Model: Generic- Compact Flash USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE4 -
Interface type: USB
Media Type:
Model: Generic- SM/xD-Picture USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE5 -
Interface type: USB
Media Type:
Model: Generic- SD/MMC USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE6 -
Interface type: USB
Media Type:
Model: Generic- MS/MS-Pro USB Device
Partitions: 0
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 238.00GB
Starting Offset: 105906176
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 149.00GB
Starting Offset: 32256
Hidden sectors: 0


DeviceID: Disk #2, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 149.00GB
Starting Offset: 32256
Hidden sectors: 0


< %SYSTEMDRIVE%\*.exe >

< %systemroot%\assembly\GAC_32\*.ini >

< %systemroot%\assembly\GAC_64\*.ini >

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*.exe >

< %APPDATA%\*. >
[2012/07/30 13:16:09 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Adobe
[2012/07/03 15:47:29 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\ATI
[2012/10/04 16:35:52 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Avira
[2012/07/04 15:59:34 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Canneverbe Limited
[2013/04/08 14:53:31 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Canon
[2012/07/07 11:22:45 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012/08/27 11:56:52 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2013/06/19 08:01:38 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Creative Home
[2012/07/03 14:25:11 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Identities
[2012/07/17 11:49:21 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\InstallShield
[2012/07/17 11:51:00 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Intel Corporation
[2012/12/19 21:27:55 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\InterTrust
[2012/07/04 13:23:25 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Intuit
[2012/07/12 12:28:49 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\KeePass
[2012/07/04 10:28:46 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Macromedia
[2012/07/04 14:08:56 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Malwarebytes
[2011/04/12 04:28:03 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Media Center Programs
[2013/09/10 14:49:48 | 000,000,000 | --SD | M] -- C:\Users\Bill's\AppData\Roaming\Microsoft
[2012/07/03 16:06:36 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Mozilla
[2012/07/31 12:17:04 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\NewSoft
[2013/09/21 16:58:52 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Real
[2013/09/21 16:50:42 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\RealNetworks
[2012/07/05 11:37:22 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\ScanSoft
[2012/07/03 17:06:01 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\SUPERAntiSpyware.com
[2012/07/04 11:19:19 | 000,000,000 | ---D | M] -- C:\Users\Bill's\AppData\Roaming\Windows Live Writer

< MD5 for: ATAPI.SYS >
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009/07/13 21:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys

< MD5 for: CSRSS.EXE >
[2009/07/13 21:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\SysNative\csrss.exe
[2009/07/13 21:39:02 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\winsxs\amd64_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_b4d8d57efdc6b4f3\csrss.exe

< MD5 for: EXPLORER.EXE >
[2011/02/26 01:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011/02/25 02:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 02:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 02:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 23:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011/02/25 01:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 01:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010/11/20 23:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: MSWSOCK.DLL >
[2010/11/20 23:24:00 | 000,326,144 | ---- | M] (Microsoft Corporation) MD5=1D5185A4C7E6695431AE4B55C3D7D333 -- C:\Windows\SysNative\mswsock.dll
[2010/11/20 23:24:00 | 000,326,144 | ---- | M] (Microsoft Corporation) MD5=1D5185A4C7E6695431AE4B55C3D7D333 -- C:\Windows\winsxs\amd64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7601.17514_none_16795c7543eb48cf\mswsock.dll
[2010/11/20 23:24:09 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=8999B8631C7FD9F7F9EC3CAFD953BA24 -- C:\Windows\SysWOW64\mswsock.dll
[2010/11/20 23:24:09 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=8999B8631C7FD9F7F9EC3CAFD953BA24 -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7601.17514_none_ba5ac0f18b8dd799\mswsock.dll

< MD5 for: NAPINSP.DLL >
[2009/07/13 21:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=0B7E85364CB878E2AD531DB7B601A9E5 -- C:\Windows\SysWOW64\NapiNSP.dll
[2009/07/13 21:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=0B7E85364CB878E2AD531DB7B601A9E5 -- C:\Windows\winsxs\x86_microsoft-windows-n..ider-infrastructure_31bf3856ad364e35_6.1.7600.16385_none_abf396ebf0847c31\NapiNSP.dll
[2009/07/13 21:41:52 | 000,068,096 | ---- | M] (Microsoft Corporation) MD5=58A0CDABEA255616827B1C22C9994466 -- C:\Windows\SysNative\NapiNSP.dll
[2009/07/13 21:41:52 | 000,068,096 | ---- | M] (Microsoft Corporation) MD5=58A0CDABEA255616827B1C22C9994466 -- C:\Windows\winsxs\amd64_microsoft-windows-n..ider-infrastructure_31bf3856ad364e35_6.1.7600.16385_none_0812326fa8e1ed67\NapiNSP.dll

< MD5 for: NLAAPI.DLL >
[2012/01/13 03:12:03 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=0BA65122FFA7E37564EE86422DBF7AE8 -- C:\Windows\SysWOW64\nlaapi.dll
[2012/01/13 03:12:03 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=0BA65122FFA7E37564EE86422DBF7AE8 -- C:\Windows\winsxs\wow64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17964_none_cfca9d84561311f2\nlaapi.dll
[2010/11/20 23:24:01 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=104A1070E90F1C530328E69B49718841 -- C:\Windows\winsxs\wow64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17514_none_d000a58855ea91a1\nlaapi.dll
[2012/10/03 12:29:27 | 000,052,224 | ---- | M] (Microsoft Corporation) MD5=11B8C7970C10650827D060AA81BEE63F -- C:\Windows\winsxs\wow64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.22124_none_d07f52216f10753a\nlaapi.dll
[2010/11/20 23:23:54 | 000,070,656 | ---- | M] (Microsoft Corporation) MD5=2DF36F15B2BC1571A6A542A3C2107920 -- C:\Windows\winsxs\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17514_none_c5abfb362189cfa6\nlaapi.dll
[2012/10/03 13:44:21 | 000,070,656 | ---- | M] (Microsoft Corporation) MD5=46BB91A169B9B31FF44EB04C48EC1D41 -- C:\Windows\SysNative\nlaapi.dll
[2012/10/03 13:44:21 | 000,070,656 | ---- | M] (Microsoft Corporation) MD5=46BB91A169B9B31FF44EB04C48EC1D41 -- C:\Windows\winsxs\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17964_none_c575f33221b24ff7\nlaapi.dll
[2012/10/03 13:32:48 | 000,070,656 | ---- | M] (Microsoft Corporation) MD5=C98BCE54F31113D5E736C1097FD086DC -- C:\Windows\winsxs\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.22124_none_c62aa7cf3aafb33f\nlaapi.dll

< MD5 for: PNRPNSP.DLL >
[2009/07/13 21:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) MD5=5CF640EDDB1E40A5AB1BB743BCDEC610 -- C:\Windows\SysWOW64\pnrpnsp.dll
[2009/07/13 21:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) MD5=5CF640EDDB1E40A5AB1BB743BCDEC610 -- C:\Windows\winsxs\wow64_microsoft-windows-peertopeerpnrp_31bf3856ad364e35_6.1.7600.16385_none_d7c8b1ac70865dab\pnrpnsp.dll
[2009/07/13 21:41:53 | 000,086,016 | ---- | M] (Microsoft Corporation) MD5=613C8CE10A5FDE582BA5FA64C4D56AAA -- C:\Windows\SysNative\pnrpnsp.dll
[2009/07/13 21:41:53 | 000,086,016 | ---- | M] (Microsoft Corporation) MD5=613C8CE10A5FDE582BA5FA64C4D56AAA -- C:\Windows\winsxs\amd64_microsoft-windows-peertopeerpnrp_31bf3856ad364e35_6.1.7600.16385_none_cd74075a3c259bb0\pnrpnsp.dll

< MD5 for: PRINTISOLATIONHOST.EXE >
[2009/07/13 21:39:27 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=22F020C76E339EB2B2187BA73A7E4173 -- C:\Windows\SysNative\PrintIsolationHost.exe
[2009/07/13 21:39:27 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=22F020C76E339EB2B2187BA73A7E4173 -- C:\Windows\winsxs\amd64_microsoft-windows-p..ng-server-isolation_31bf3856ad364e35_6.1.7600.16385_none_f8a40495785334a9\PrintIsolationHost.exe

< MD5 for: SERVICES.EXE >
[2009/07/13 21:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/13 21:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009/07/13 21:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/13 21:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/13 21:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/13 21:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USER32.DLL >
[2010/11/20 23:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\SysWOW64\user32.dll
[2010/11/20 23:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
[2010/11/20 23:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\SysNative\user32.dll
[2010/11/20 23:24:09 | 001,008,128 | ---- | M] (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll

< MD5 for: USERINIT.EXE >
[2010/11/20 23:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 23:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010/11/20 23:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 23:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 23:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 23:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< MD5 for: WINRNR.DLL >
[2009/07/13 21:41:56 | 000,028,672 | ---- | M] (Microsoft Corporation) MD5=2E2072EB48238FCA8FBB7A9F5FABAC45 -- C:\Windows\SysNative\winrnr.dll
[2009/07/13 21:41:56 | 000,028,672 | ---- | M] (Microsoft Corporation) MD5=2E2072EB48238FCA8FBB7A9F5FABAC45 -- C:\Windows\winsxs\amd64_microsoft-windows-dns-client-winrnr_31bf3856ad364e35_6.1.7600.16385_none_b543449669c73e11\winrnr.dll
[2009/07/13 21:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=5DF5D8CFD9B9573FA3B2C89D9061A240 -- C:\Windows\SysWOW64\winrnr.dll
[2009/07/13 21:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=5DF5D8CFD9B9573FA3B2C89D9061A240 -- C:\Windows\winsxs\x86_microsoft-windows-dns-client-winrnr_31bf3856ad364e35_6.1.7600.16385_none_5924a912b169ccdb\winrnr.dll

< MD5 for: WSHELPER.DLL >
[2009/07/13 21:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) MD5=5B90BB3171504C9DAF3C5CB44B203CA7 -- C:\Windows\SysWOW64\wshelper.dll
[2009/07/13 21:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) MD5=5B90BB3171504C9DAF3C5CB44B203CA7 -- C:\Windows\winsxs\wow64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6ace9e67456cc40b\wshelper.dll
[2009/07/13 21:41:58 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=D314DA4B0B8DCD023D547FC568E34FB6 -- C:\Windows\SysNative\wshelper.dll
[2009/07/13 21:41:58 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=D314DA4B0B8DCD023D547FC568E34FB6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\wshelper.dll

< dir C:\ /S /A:L /C >
Volume in drive C has no label.
Volume Serial Number is E031-BC85
Directory of C:\
07/14/2009 01:08 AM <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\ProgramData]
07/14/2009 01:08 AM <JUNCTION> Desktop [C:\Users\Public\Desktop]
07/14/2009 01:08 AM <JUNCTION> Documents [C:\Users\Public\Documents]
07/14/2009 01:08 AM <JUNCTION> Favorites [C:\Users\Public\Favorites]
07/14/2009 01:08 AM <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
07/14/2009 01:08 AM <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
07/14/2009 01:08 AM <SYMLINKD> All Users [C:\ProgramData]
07/14/2009 01:08 AM <JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\All Users
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\ProgramData]
07/14/2009 01:08 AM <JUNCTION> Desktop [C:\Users\Public\Desktop]
07/14/2009 01:08 AM <JUNCTION> Documents [C:\Users\Public\Documents]
07/14/2009 01:08 AM <JUNCTION> Favorites [C:\Users\Public\Favorites]
07/14/2009 01:08 AM <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
07/14/2009 01:08 AM <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Bill's
07/03/2012 02:25 PM <JUNCTION> Application Data [C:\Users\Bill's\AppData\Roaming]
07/03/2012 02:25 PM <JUNCTION> Cookies [C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Cookies]
07/03/2012 02:25 PM <JUNCTION> Local Settings [C:\Users\Bill's\AppData\Local]
07/03/2012 02:25 PM <JUNCTION> My Documents [C:\Users\Bill's\Documents]
07/03/2012 02:25 PM <JUNCTION> NetHood [C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
07/03/2012 02:25 PM <JUNCTION> PrintHood [C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
07/03/2012 02:25 PM <JUNCTION> Recent [C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Recent]
07/03/2012 02:25 PM <JUNCTION> SendTo [C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\SendTo]
07/03/2012 02:25 PM <JUNCTION> Start Menu [C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Start Menu]
07/03/2012 02:25 PM <JUNCTION> Templates [C:\Users\Bill's\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Bill's\AppData\Local
07/03/2012 02:25 PM <JUNCTION> Application Data [C:\Users\Bill's\AppData\Local]
07/03/2012 02:25 PM <JUNCTION> History [C:\Users\Bill's\AppData\Local\Microsoft\Windows\History]
07/03/2012 02:25 PM <JUNCTION> Temporary Internet Files [C:\Users\Bill's\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Bill's\Documents
07/03/2012 02:25 PM <JUNCTION> My Music [C:\Users\Bill's\Music]
07/03/2012 02:25 PM <JUNCTION> My Pictures [C:\Users\Bill's\Pictures]
07/03/2012 02:25 PM <JUNCTION> My Videos [C:\Users\Bill's\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Default
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
07/14/2009 01:08 AM <JUNCTION> Cookies [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Cookies]
07/14/2009 01:08 AM <JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
07/14/2009 01:08 AM <JUNCTION> My Documents [C:\Users\Default\Documents]
07/14/2009 01:08 AM <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
07/14/2009 01:08 AM <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
07/14/2009 01:08 AM <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
07/14/2009 01:08 AM <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
07/14/2009 01:08 AM <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
07/14/2009 01:08 AM <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
07/14/2009 01:08 AM <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
07/14/2009 01:08 AM <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
07/14/2009 01:08 AM <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
07/14/2009 01:08 AM <JUNCTION> My Music [C:\Users\Default\Music]
07/14/2009 01:08 AM <JUNCTION> My Pictures [C:\Users\Default\Pictures]
07/14/2009 01:08 AM <JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\DefaultAppPool
03/24/2013 05:13 PM <JUNCTION> Application Data [C:\Users\DefaultAppPool\AppData\Roaming]
03/24/2013 05:13 PM <JUNCTION> Cookies [C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Cookies]
03/24/2013 05:13 PM <JUNCTION> Local Settings [C:\Users\DefaultAppPool\AppData\Local]
03/24/2013 05:13 PM <JUNCTION> My Documents [C:\Users\DefaultAppPool\Documents]
03/24/2013 05:13 PM <JUNCTION> NetHood [C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
03/24/2013 05:13 PM <JUNCTION> PrintHood [C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
03/24/2013 05:13 PM <JUNCTION> Recent [C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Recent]
03/24/2013 05:13 PM <JUNCTION> SendTo [C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\SendTo]
03/24/2013 05:13 PM <JUNCTION> Start Menu [C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu]
03/24/2013 05:13 PM <JUNCTION> Templates [C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\DefaultAppPool\AppData\Local
03/24/2013 05:13 PM <JUNCTION> Application Data [C:\Users\DefaultAppPool\AppData\Local]
03/24/2013 05:13 PM <JUNCTION> History [C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\History]
03/24/2013 05:13 PM <JUNCTION> Temporary Internet Files [C:\Users\DefaultAppPool\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\DefaultAppPool\Documents
03/24/2013 05:13 PM <JUNCTION> My Music [C:\Users\DefaultAppPool\Music]
03/24/2013 05:13 PM <JUNCTION> My Pictures [C:\Users\DefaultAppPool\Pictures]
03/24/2013 05:13 PM <JUNCTION> My Videos [C:\Users\DefaultAppPool\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
07/14/2009 01:08 AM <JUNCTION> My Music [C:\Users\Public\Music]
07/14/2009 01:08 AM <JUNCTION> My Pictures [C:\Users\Public\Pictures]
07/14/2009 01:08 AM <JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
66 Dir(s) 171,762,278,400 bytes free

< C:\Windows\assembly\tmp\U\*.* /s >

< %systemroot%\*. /mp /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2013/09/17 15:05:35 | 000,871,608 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2013/09/17 15:05:35 | 000,871,608 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2013/09/17 15:05:35 | 000,871,608 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" [2013/09/17 15:05:35 | 000,274,840 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -preferences [2013/09/17 15:05:35 | 000,274,840 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode [2013/09/17 15:05:35 | 000,274,840 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2013/08/10 02:10:22 | 000,775,256 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2013/08/10 02:10:22 | 000,775,256 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2013/09/17 15:05:35 | 000,871,608 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2013/09/17 15:05:35 | 000,871,608 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2013/09/17 15:05:35 | 000,871,608 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" [2013/09/17 15:05:35 | 000,274,840 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -PREFERENCES [2013/09/17 15:05:35 | 000,274,840 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE" -SAFE-MODE [2013/09/17 15:05:35 | 000,274,840 | ---- | M] (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2013/08/10 01:22:38 | 000,051,712 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2013/08/10 01:22:38 | 000,051,712 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2013/08/10 01:22:38 | 000,051,712 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2013/08/10 02:10:22 | 000,775,256 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE [2013/08/10 02:10:22 | 000,775,256 | ---- | M] (Microsoft Corporation)

< %systemroot%\system32\*.dll /lockedfiles >
[2013/08/09 23:58:05 | 013,761,024 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %ProgramFiles%\WINDOWS NT\*.* /s >
[2010/11/20 23:24:51 | 004,247,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\Accessories\wordpad.exe
[2009/07/13 21:16:20 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\Accessories\WordpadFilter.dll
[2011/04/12 04:17:25 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\Accessories\en-US\wordpad.exe.mui
[2009/07/13 21:16:15 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextService.dll
[2009/06/10 17:43:18 | 000,016,212 | ---- | M] () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceAmharic.txt
[2009/06/10 17:43:18 | 001,272,822 | ---- | M] () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceArray.txt
[2009/06/10 17:43:18 | 000,980,102 | ---- | M] () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceDaYi.txt
[2009/06/10 17:43:19 | 001,665,878 | ---- | M] () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceSimplifiedQuanPin.txt
[2009/06/10 17:43:19 | 001,445,430 | ---- | M] () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceSimplifiedShuangPin.txt
[2009/06/10 17:43:19 | 001,810,352 | ---- | M] () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceSimplifiedZhengMa.txt
[2009/06/10 17:43:19 | 000,044,968 | ---- | M] () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceYi.txt
[2011/04/12 04:17:20 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\TableTextService\en-US\TableTextService.dll.mui

< %systemroot%\system32\drivers\*.sys /lockedfiles >

========== Files - Unicode (All) ==========
[2013/09/25 12:47:46 | 097,787,360 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\埖蹬›
[2013/09/25 12:47:46 | 000,000,000 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\埖蹬›
[2013/09/21 14:18:06 | 098,547,399 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\෭頗蹬‰
[2013/09/21 08:18:15 | 098,547,399 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\෭頗蹬‰

========== Alternate Data Streams ==========

@Alternate Data Stream - 690 bytes -> C:\Users\Bill's\Documents\jeannie.eml:OECustomProperty
@Alternate Data Stream - 192 bytes -> C:\ProgramData\TEMP:CF08C48A

< End of report >
  • 0

#14
WilliamP

WilliamP

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 185 posts
Process Ex. LogProcess CPU Private Bytes Working Set PID Description Company Name Verified Signer
armsvc.exe 1,340 K 4,020 K 1244 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems
ASHelper.exe 8,288 K 13,944 K 2928 AimerSoft Studio AimerSoft (No signature was present in the subject) AimerSoft
atieclxx.exe 3,476 K 7,648 K 1324 AMD External Events Client Module AMD (Verified) Microsoft Windows Hardware Compatibility Publisher
atiesrxx.exe 2,336 K 5,212 K 1000 AMD External Events Service Module AMD (Verified) Microsoft Windows Hardware Compatibility Publisher
audiodg.exe 20,440 K 19,548 K 1948 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
avmailc.exe 2,952 K 1,544 K 4468 Avira MailGuard Service Avira Operations GmbH & Co. KG (Verified) Avira Operations GmbH & Co. KG
avshadow.exe 2,512 K 4,788 K 4448 Avira Shadow Copy Service Avira Operations GmbH & Co. KG (Verified) Avira Operations GmbH & Co. KG
avwebgrd.exe 10,572 K 13,060 K 4488 Avira WebGuard Service Avira Operations GmbH & Co. KG (Verified) Avira Operations GmbH & Co. KG
csrss.exe 2,800 K 5,260 K 516 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 16,500 K 22,420 K 2144 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 5,100 K 10,072 K 7044 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
ijplmsvc.exe 1,164 K 3,728 K 2224 Inkjet Printer/Scanner/Fax Extended Survey Program Service (Verified) Canon Inc.
jusched.exe 1,408 K 4,648 K 2876 Java™ Update Scheduler Oracle Corporation (Verified) Oracle America
lsm.exe 3,092 K 4,920 K 692 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
McciCMService.exe 2,156 K 6,752 K 2284 mcci+McciCMService Alcatel-Lucent (No signature was present in the subject) Alcatel-Lucent
McciCMService.exe 2,752 K 7,320 K 2396 mcci+McciCMService Alcatel-Lucent (No signature was present in the subject) Alcatel-Lucent
OpWareSE4.exe 1,276 K 4,012 K 2684 OCR Aware Nuance Communications, Inc. (Verified) Nuance Communications
PrintScreen.exe 2,668 K 8,536 K 2508 Gadwin PrintScreen Gadwin Systems, Inc (Verified) Gadwin
procexp.exe 2,880 K 8,016 K 6472 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
RAVCpl64.exe 10,200 K 12,268 K 2480 Realtek HD Audio Manager Realtek Semiconductor (Verified) Microsoft Windows Hardware Compatibility Publisher
realsched.exe 3,640 K 372 K 2976 RealNetworks Scheduler RealNetworks, Inc. (Verified) RealNetworks
rndlresolversvc.exe 1,228 K 4,044 K 2564 (Verified) RealNetworks
sched.exe 3,612 K 1,960 K 1492 Avira Scheduler Avira Operations GmbH & Co. KG (Verified) Avira Operations GmbH & Co. KG
services.exe 9,024 K 13,284 K 660 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
smss.exe 728 K 1,408 K 348 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
SMSvcHost.exe 28,468 K 23,156 K 2448 SMSvcHost.exe Microsoft Corporation (Verified) Microsoft Corporation
splwow64.exe 5,368 K 10,716 K 2592 Print driver host for 32bit applications Microsoft Corporation (Verified) Microsoft Windows
spoolsv.exe 9,344 K 16,160 K 1464 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 35,044 K 9,224 K 3000 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 5,208 K 9,972 K 2160 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,116 K 5,740 K 2660 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3,160 K 7,232 K 2732 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,612 K 5,804 K 1120 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 5,560 K 10,808 K 1160 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 7,152 K 10,716 K 3116 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 11,904 K 19,872 K 512 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 5,892 K 11,432 K 848 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3,392 K 7,184 K 4832 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 13,632 K 15,508 K 1700 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 2,548 K 5,908 K 4744 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
taskhost.exe 8,708 K 16,412 K 6176 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
VSSVC.exe 5,044 K 10,468 K 4788 Microsoft® Volume Shadow Copy Service Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 2,596 K 5,564 K 596 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 4,268 K 8,780 K 720 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
WLIDSVCM.EXE 2,088 K 4,084 K 3416 Microsoft® Windows Live ID Service Monitor Microsoft Corp. (Verified) Microsoft Corporation
WmiPrvSE.exe 3,396 K 7,328 K 5060 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
wmpnetwk.exe 12,140 K 6,964 K 5192 Windows Media Player Network Sharing Service Microsoft Corporation (Verified) Microsoft Windows
WUDFHost.exe 2,620 K 6,884 K 4880 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe < 0.01 3,564 K 8,120 K 1660 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
PhotoshopElementsFileAgent.exe < 0.01 3,648 K 1,264 K 1932 Adobe Photoshop Elements 9.0 (component) Adobe Systems Incorporated (Verified) Adobe Systems Incorporated
PhotoshopElementsFileAgent.exe < 0.01 3,652 K 1,268 K 2020 Adobe Photoshop Elements 10.0 (component) Adobe Systems Incorporated (Verified) Adobe Systems Incorporated
avguard.exe < 0.01 274,872 K 61,032 K 2080 Avira On-Access Service Avira Operations GmbH & Co. KG (Verified) Avira Operations GmbH & Co. KG
svchost.exe < 0.01 19,128 K 18,784 K 2728 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
IAStorIcon.exe < 0.01 29,024 K 26,668 K 2700 IAStorIcon Intel Corporation (Verified) Intel Corporation
lsass.exe < 0.01 6,344 K 12,516 K 684 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 28,480 K 29,340 K 1220 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
SASCore64.exe < 0.01 2,184 K 4,564 K 1980 Core Service SUPERAntiSpyware.com (The operation completed successfully) SUPERAntiSpyware.com
CNQMUPDT.EXE < 0.01 24,232 K 22,788 K 3372 Canon Quick Menu Updater CANON INC. (Verified) Canon Inc.
svchost.exe < 0.01 28,164 K 43,688 K 492 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
avgnt.exe < 0.01 8,268 K 4,020 K 2716 Avira System Tray Tool Avira Operations GmbH & Co. KG (Verified) Avira Operations GmbH & Co. KG
WLIDSVC.EXE < 0.01 7,788 K 16,564 K 3140 Microsoft® Windows Live ID Service Microsoft Corp. (Verified) Microsoft Corporation
WrtMon.exe < 0.01 1,820 K 6,012 K 2468 NsWrtMon Microsoft Base Class Application (No signature was present in the subject)
MOM.exe < 0.01 28,244 K 6,040 K 2984 Catalyst Control Center: Monitoring program Advanced Micro Devices Inc. (No signature was present in the subject) Advanced Micro Devices Inc.
svchost.exe < 0.01 6,396 K 10,536 K 932 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
CCC.exe < 0.01 104,880 K 26,624 K 3736 Catalyst Control Center: Host application ATI Technologies Inc. (No signature was present in the subject) ATI Technologies Inc.
taskhost.exe < 0.01 10,424 K 14,136 K 1588 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
CNQMMAIN.EXE < 0.01 71,132 K 26,344 K 2856 Canon Quick Menu CANON INC. (Verified) Canon Inc.
svchost.exe < 0.01 27,696 K 22,944 K 144 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
WrtProc.exe 0.01 1,704 K 5,436 K 2572 NsWrtProc Microsoft Base Clase Application (No signature was present in the subject)
IAStorDataMgrSvc.exe 0.01 24,940 K 22,832 K 1560 IAStorDataSvc Intel Corporation (Verified) Intel Corporation
XFastUsb.exe 0.01 3,408 K 10,924 K 2708 FNet Co., Ltd. (No signature was present in the subject) FNet Co., Ltd.
csrss.exe 0.04 3,688 K 9,208 K 612 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
dwm.exe 0.04 32,572 K 35,112 K 1640 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
spd.exe 0.04 6,628 K 10,724 K 2180 cFosSpeed Service cFos Software GmbH (Verified) cFos Software GmbH
Core Temp.exe 0.05 7,104 K 2,572 K 1880 CPU temperature and system information utility (No signature was present in the subject)
Interrupts 0.08 0 K 0 K n/a Hardware Interrupts and DPCs
System 0.08 112 K 304 K 4
svchost.exe 0.10 202,280 K 210,552 K 452 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
CNQMSWCS.EXE 0.13 73,948 K 70,396 K 2500 Canon Quick Menu Image Display CANON INC. (Verified) Canon Inc.
explorer.exe 0.19 44,720 K 71,016 K 1712 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
procexp64.exe 0.55 46,848 K 58,088 K 1420 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Sysinternals
System Idle Process 98.65 0 K 24 K 0
  • 0

#15
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
Copy the text in the code box by highlighting and Ctrl + c

:OTL
O4 - HKCU..\Run: [ASRockXTU] File not found
O4 - HKCU..\Run: [zASRockInstantBoot] File not found
O20 - AppInit_DLLs: (c:\progra~3\bitguard\261673~1.238\{c16c1~1\bitguard.dll) - File not found
O33 - MountPoints2\{a8778776-c554-11e1-8459-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{a8778776-c554-11e1-8459-806e6f6e6963}\Shell\AutoRun\command - "" = D:\ASRSetup.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell\install\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell\readfile\command - "" = hh.exe readme.htm
MsConfig:64bit - StartUpReg: ReminderApp_EEAC3053-7055-4143-B8A0-306758055099 - hkey= - key= - File not found
SafeBootMin:64bit: hitmanpro37 - Reg Error: Value error.
SafeBootMin:64bit: hitmanpro37.sys - Reg Error: Value error.
SafeBootMin:64bit: HitmanPro37Crusader - Reg Error: Value error.
SafeBootMin:64bit: HitmanPro37CrusaderBoot - Reg Error: Value error.
SafeBootMin: hitmanpro37 - Reg Error: Value error.
SafeBootMin: hitmanpro37.sys - Reg Error: Value error.
SafeBootMin: HitmanPro37Crusader - Reg Error: Value error.
SafeBootMin: HitmanPro37CrusaderBoot - Reg Error: Value error.
SafeBootNet:64bit: hitmanpro37 - Reg Error: Value error.
SafeBootNet:64bit: hitmanpro37.sys - Reg Error: Value error.
SafeBootNet:64bit: HitmanPro37Crusader - Reg Error: Value error.
SafeBootNet:64bit: HitmanPro37CrusaderBoot - Reg Error: Value error.
SafeBootNet: hitmanpro37 - Reg Error: Value error.
SafeBootNet: hitmanpro37.sys - Reg Error: Value error.
SafeBootNet: HitmanPro37Crusader - Reg Error: Value error.
SafeBootNet: HitmanPro37CrusaderBoot - Reg Error: Value error.
[2013/09/25 12:47:46 | 097,787,360 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\埖蹬›
[2013/09/25 12:47:46 | 000,000,000 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\埖蹬›
[2013/09/21 14:18:06 | 098,547,399 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\෭頗蹬‰
[2013/09/21 08:18:15 | 098,547,399 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\෭頗蹬‰
@Alternate Data Stream - 192 bytes -> C:\ProgramData\TEMP:CF08C48A

:Commands
[EMPTYFLASH]
[EMPTYJAVA]
[purity]
[Reboot]


then Rightclick on OTL and select Run As Administrator to start. Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the RUN FIX button (NOT THE QUICK SCAN button!) at the top
Let the program run unhindered, OTL will reboot the PC when it is done. Save the log and copy and paste it into a reply.
It appears that Old Timer is now hiding the log in c:\_OTL\MovedFiles\09252013-some number.log so look there if you don't see it.


Can you turn on System Restore? http://support.microsoft.com/kb/310405
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP