Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

“An Install of Flash Player Pro is Recommended” pop-up ad


  • Please log in to reply
12 replies to this topic

#1 PowerCAD

PowerCAD

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 04 September 2014 - 03:25 AM

Mod Edit: Moved from Intros to Am I Infected ~~ boopme


I was originally getting the “An Install of Flash Player Pro is Recommended” pop-up ad and [/size]after reading the post "http://www.bleepingcomputer.com/forums/t/447651/fake-adobe-flash-player-installer-and-redirect-virus/"  I ran the minitoolbox and below are the results. I've downloaded the MBAM and TDSSKiller but have not run them yet, should I do those steps as well?   I believe the issue of the pop up is still happening and I'm concerned that i still have a virus with the NWIZ unknown manufacturer issue but i can't seem to find any subject with that help.  Thank you for your time!
 
MiniToolBox by Farbar  Version: 21-07-2014
Ran by Yvonne (administrator) on 04-09-2014 at 01:12:56
Running from "C:\Users\Yvonne\Downloads"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Server
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.ca.comcast.net.
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : hsd1.ca.comcast.net.
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : E0-3F-49-7B-B5-2D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2601:9:3780:274:7949:3ad6:d0da:364(Preferred) 
   Temporary IPv6 Address. . . . . . : 2601:9:3780:274:2065:7aa6:bcbd:d7fb(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::7949:3ad6:d0da:364%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 10.0.0.35(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, September 03, 2014 11:58:07 PM
   Lease Expires . . . . . . . . . . : Wednesday, September 10, 2014 11:58:07 PM
   Default Gateway . . . . . . . . . : fe80::21d:d5ff:fea0:6831%11
                                       10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 249577289
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-50-8F-86-E0-3F-49-7B-B5-2D
   DNS Servers . . . . . . . . . . . : 2001:558:feed::1
                                       2001:558:feed::2
                                       75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.hsd1.ca.comcast.net.:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.ca.comcast.net.
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:382a:10b8:f5ff:ffdc(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::382a:10b8:f5ff:ffdc%13(Preferred) 
   Default Gateway . . . . . . . . . : 
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  cdns01.comcast.net
Address:  2001:558:feed::1
 
Name:    google.com
Addresses:  2607:f8b0:4010:801::1000
 74.125.239.110
 74.125.239.97
 74.125.239.103
 74.125.239.96
 74.125.239.104
 74.125.239.105
 74.125.239.99
 74.125.239.98
 74.125.239.101
 74.125.239.100
 74.125.239.102
 
 
Pinging google.com [2607:f8b0:4005:800::1005] with 32 bytes of data:
Reply from 2607:f8b0:4005:800::1005: time=16ms 
Reply from 2607:f8b0:4005:800::1005: time=14ms 
 
Ping statistics for 2607:f8b0:4005:800::1005:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 14ms, Maximum = 16ms, Average = 15ms
Server:  cdns01.comcast.net
Address:  2001:558:feed::1
 
Name:    yahoo.com
Addresses:  98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=95ms TTL=48
Reply from 98.139.183.24: bytes=32 time=91ms TTL=48
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 91ms, Maximum = 95ms, Average = 93ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...e0 3f 49 7b b5 2d ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1        10.0.0.35     10
         10.0.0.0    255.255.255.0         On-link         10.0.0.35    266
        10.0.0.35  255.255.255.255         On-link         10.0.0.35    266
       10.0.0.255  255.255.255.255         On-link         10.0.0.35    266
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         10.0.0.35    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         10.0.0.35    266
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 11    266 ::/0                     fe80::21d:d5ff:fea0:6831
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:90d7:382a:10b8:f5ff:ffdc/128
                                    On-link
 11     18 2601:9:3780:274::/64     On-link
 11    266 2601:9:3780:274:2065:7aa6:bcbd:d7fb/128
                                    On-link
 11    266 2601:9:3780:274:7949:3ad6:d0da:364/128
                                    On-link
 11    266 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::382a:10b8:f5ff:ffdc/128
                                    On-link
 11    266 fe80::7949:3ad6:d0da:364/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/03/2014 11:59:45 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/03/2014 11:01:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/03/2014 06:15:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/02/2014 05:41:29 PM) (Source: Application Error) (User: )
Description: Faulting application name: WSCommCntr4.exe, version: 4.0.3.0, time stamp: 0x52df746e
Faulting module name: WSCommCntr4.exe, version: 4.0.3.0, time stamp: 0x52df746e
Exception code: 0xc0000005
Fault offset: 0x0000000000015a1e
Faulting process id: 0x1420
Faulting application start time: 0xWSCommCntr4.exe0
Faulting application path: WSCommCntr4.exe1
Faulting module path: WSCommCntr4.exe2
Report Id: WSCommCntr4.exe3
 
Error: (09/02/2014 00:01:30 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/29/2014 06:10:48 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2014 11:04:04 PM) (Source: Chrome) (User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=74E6BD85EE154C97B085BA73C0F6FAF8;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\02979981-4e69-4de8-aae3-f678de78d9dd.dmp
 
Error: (08/19/2014 11:03:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2014 08:52:48 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/16/2014 00:31:17 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
 
System errors:
=============
Error: (09/03/2014 03:58:18 PM) (Source: Service Control Manager) (User: )
Description: The Microsoft Office ClickToRun Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.
 
Error: (08/19/2014 05:59:08 PM) (Source: srv) (User: )
Description: The server was unable to allocate from the system nonpaged pool because the server reached the configured limit for nonpaged pool allocations.
 
Error: (08/19/2014 05:52:08 PM) (Source: srv) (User: )
Description: The server was unable to allocate from the system nonpaged pool because the server reached the configured limit for nonpaged pool allocations.
 
Error: (08/16/2014 06:57:06 PM) (Source: srv) (User: )
Description: The server was unable to allocate from the system nonpaged pool because the server reached the configured limit for nonpaged pool allocations.
 
Error: (08/16/2014 06:56:06 PM) (Source: srv) (User: )
Description: The server was unable to allocate from the system nonpaged pool because the server reached the configured limit for nonpaged pool allocations.
 
Error: (08/16/2014 06:55:06 PM) (Source: srv) (User: )
Description: The server was unable to allocate from the system nonpaged pool because the server reached the configured limit for nonpaged pool allocations.
 
Error: (08/16/2014 06:32:06 PM) (Source: srv) (User: )
Description: The server was unable to allocate from the system nonpaged pool because the server reached the configured limit for nonpaged pool allocations.
 
Error: (07/31/2014 05:00:40 PM) (Source: Service Control Manager) (User: )
Description: The Advanced SystemCare Service 7 service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (07/29/2014 10:36:27 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:35:26 PM on ‎7/‎29/‎2014 was unexpected.
 
Error: (07/29/2014 10:23:57 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.
 
 
Microsoft Office Sessions:
=========================
Error: (09/03/2014 11:59:45 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/03/2014 11:01:04 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/03/2014 06:15:05 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/02/2014 05:41:29 PM) (Source: Application Error)(User: )
Description: WSCommCntr4.exe4.0.3.052df746eWSCommCntr4.exe4.0.3.052df746ec00000050000000000015a1e142001cfc6e0db058c8fC:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\Lib\WSCommCntr4.exeC:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\Lib\WSCommCntr4.exe0a7de93b-3303-11e4-b1f5-e03f497bb52d
 
Error: (09/02/2014 00:01:30 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/29/2014 06:10:48 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2014 11:04:04 PM) (Source: Chrome)(User: NT AUTHORITY)
Description: Chrome has encountered a fatal error.
ver=36.0.1985.143;lang=;guid=74E6BD85EE154C97B085BA73C0F6FAF8;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\02979981-4e69-4de8-aae3-f678de78d9dd.dmp
 
Error: (08/19/2014 11:03:44 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2014 08:52:48 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/16/2014 00:31:17 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Yvonne\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\TFFVYNHH\softonicdownloader_for_microsoft-mathematics[1].exe
 
 
 
=========================== Installed Programs ============================
Able2Extract 8.0 (HKLM-x32\...\{49272E0B-CF97-4BD6-85A0-9B1C59495851}_is1) (Version: 8.0 - Investintech.com Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.178 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Advanced SystemCare Ultimate 7 (HKLM-x32\...\Advanced SystemCare Ultimate_is1) (Version: 7.1.0 - IObit)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
AutoCAD 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Language Pack - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 VBA Enabler (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD Raster Design 2015 (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD Utility Design 2015 - English (Version: 4.0.40.0 - Autodesk) Hidden
AutoCAD Utility Design 2015 Language Pack - English (Version: 4.0.40.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.0.29.1101 - Autodesk)
Autodesk 3ds Max 2015 Populate Data (HKLM\...\{57E92DED-DC6C-41E5-B9E1-76D83BD2EABE}) (Version: 17.0.0.0 - Autodesk)
Autodesk 3ds Max Design 2015 (HKLM\...\Autodesk 3ds Max Design 2015) (Version: 17.0.630.0 - Autodesk)
Autodesk 3ds Max Design 2015 (Version: 17.0.630.0 - Autodesk) Hidden
Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 3.0.155.0 - Autodesk)
Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD 2015 VBA Enabler (HKLM\...\AutoCAD 2015 VBA Enabler) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD Civil 3D 2015 - English (Version: 10.4.524.0 - Autodesk) Hidden
Autodesk AutoCAD Civil 3D 2015 (HKLM\...\Autodesk AutoCAD Civil 3D 2015) (Version: 10.4.644.0 - Autodesk)
Autodesk AutoCAD Civil 3D 2015 (Version: 10.4.644.0 - Autodesk) Hidden
Autodesk AutoCAD Civil 3D 2015 64 Bit Object Enabler on AutoCAD 2015 - English - English (United States) (HKLM\...\{DF7CFDA7-54E8-4B96-9AF4-CC0CDB0962F8}) (Version: 524.0 - Autodesk, Inc.)
Autodesk AutoCAD Civil 3D 2015 64 Bit Object Enabler on Autodesk 360 - Language Neutral (HKLM\...\{BB9903FB-FE6C-4E8D-9A3F-7BF338B27773}) (Version: 524.0 - Autodesk, Inc.)
Autodesk AutoCAD Civil 3D 2015 64 Bit Object Enabler on Autodesk 3ds Max Design 2015 - Language Neutral (HKLM\...\{C5948E48-8DDF-4640-9D7D-9DB209890E52}) (Version: 524.0 - Autodesk, Inc.)
Autodesk AutoCAD Civil 3D 2015 64 Bit Object Enabler on Autodesk DirectConnect 2015 64-bit - Language Neutral (HKLM\...\{EA6E243E-9F8B-458E-B9EF-99DCFE3AB5D7}) (Version: 524.0 - Autodesk, Inc.)
Autodesk AutoCAD Civil 3D 2015 64 Bit Object Enabler on Autodesk Navisworks Simulate 2015 - 2015 DWG File Reader - Language Neutral (HKLM\...\{DE9CE543-B94A-483C-BE02-621605E0CAF3}) (Version: 524.0 - Autodesk, Inc.)
Autodesk AutoCAD Civil 3D 2015 64 Bit Object Enabler on Revit Structure 2015 - Language Neutral (HKLM\...\{7E817223-BC10-4CC2-B3C5-A4B46034270D}) (Version: 524.0 - Autodesk, Inc.)
Autodesk AutoCAD Civil 3D 2015 Language Pack - English (Version: 10.4.524.0 - Autodesk) Hidden
Autodesk AutoCAD Civil 3D 2015 SP1 (HKLM\...\Autodesk AutoCAD Civil 3D 2015 SP1) (Version: 1 - Autodesk)
Autodesk AutoCAD Map 3D 2015 (Version: 18.0.030.11 - Autodesk) Hidden
Autodesk AutoCAD Map 3D 2015 Language Pack (Version: 18.0.030.11 - Autodesk) Hidden
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk AutoCAD Raster Design 2015 (HKLM\...\AutoCAD Raster Design 2015) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD Utility Design 2015 - English (HKLM\...\AutoCAD Utility Design 2015 - English) (Version: 4.0.40.0 - Autodesk)
Autodesk Autodesk AutoCAD Map 3D 2015 (HKLM\...\Autodesk AutoCAD Map 3D 2015) (Version: 18.0.030.11 - Autodesk)
Autodesk Backburner 2015 (HKLM-x32\...\{8C5F38D2-8EFE-49A4-B3F5-BF3210FED168}) (Version: 15.0.0.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)
Autodesk BIM 360 Navisworks Simulate 2015 Add-in 64 bit (HKLM\...\{29D46C73-A874-465A-87CD-74B165FE62C4}) (Version: 4.33.6482 - Autodesk)
Autodesk BIM 360 Navisworks Simulate 2015 Add-in 64 bit (HKLM\...\{6D74ECFC-F12D-4DAF-ACD8-8BCE85504C54}) (Version: 3.32.3004 - Autodesk)
Autodesk BIM 360 Revit 2015 Add-in 64 bit (HKLM\...\{37E1C3A1-7DBF-4250-9314-46167B68383D}) (Version: 3.32.3357 - Autodesk)
Autodesk BIM 360 Revit 2015 Add-in 64 bit (HKLM\...\{7CADEF56-0402-46A2-8450-0F03BAC823B7}) (Version: 4.33.6482 - Autodesk)
Autodesk Civil View for 3ds Max Design 2015 64-bit (HKLM\...\{1C4FFAF0-5DBB-4F7A-A386-46747D060826}) (Version: 17.0.0.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk DirectConnect 2015 64-bit (HKLM\...\Autodesk DirectConnect 2015 64-bit) (Version: 9.0.56.4 - Autodesk)
Autodesk DirectConnect 2015 64-bit (Version: 9.0.56.4 - Autodesk) Hidden
Autodesk Download Manager (HKLM-x32\...\{C897D9EC-13C6-4A22-ABF7-33F2126A7DB6}) (Version: 3.0.8.0 - Autodesk, Inc.)
Autodesk Featured Apps (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
Autodesk InfraWorks (HKLM\...\Autodesk InfraWorks) (Version: 15.1.52.0 - Autodesk)
Autodesk InfraWorks (Version: 15.1.52.0 - Autodesk) Hidden
Autodesk InfraWorks Content (Version: 15.1.52.0 - Autodesk) Hidden
Autodesk InfraWorks Language Pack (Version: 15.1.52.0 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max Design 2015 (HKLM\...\{D7DEFF4A-BB64-48CC-81AB-845BA62D6032}) (Version: 17.0 - Autodesk)
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2015 (HKLM-x32\...\{4FBC9635-AC56-4378-8FDE-C4D3ED072681}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2015 (HKLM-x32\...\{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}) (Version: 5.2.9.100 - Autodesk)
Autodesk Navisworks 2015 Exporters - 64 bit - English Language Pack (HKLM\...\Autodesk Navisworks 2015 Exporters - 64 bit - English Language Pack) (Version: 12.0.1109.12 - Autodesk)
Autodesk Navisworks 2015 Exporters - 64 bit - English Language Pack (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks 2015 Exporters - 64 bit (HKLM\...\Autodesk Navisworks 2015 Exporters - 64 bit) (Version: 12.0.1109.12 - Autodesk)
Autodesk Navisworks 2015 Exporters - 64 bit (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - 2009 DWG File Reader (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - 2010 DWG File Reader (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - 2011 DWG File Reader (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - 2012 DWG File Reader (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - 2013 DWG File Reader (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - 2014 DWG File Reader (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - 2015 DWG File Reader (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 - English Language Pack (HKLM\...\Autodesk Navisworks Simulate 2015 - English Language Pack) (Version: 12.0.1109.12 - Autodesk)
Autodesk Navisworks Simulate 2015 - English Language Pack (Version: 12.0.1109.12 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 (HKLM\...\Autodesk Navisworks Simulate 2015) (Version: 12.2.1147.53 - Autodesk)
Autodesk Navisworks Simulate 2015 (Version: 12.2.1147.53 - Autodesk) Hidden
Autodesk Navisworks Simulate 2015 Service Pack 2 (HKLM\...\Autodesk Navisworks Simulate 2015_patch_2) (Version:  - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.3.1.39 - Autodesk)
Autodesk ReCap (Version: 1.3.1.39 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2015 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2015) (Version: 15.0.107.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (Version: 15.0.207.0 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2015 UR3 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2015 UR3) (Version: 15.0.207.0 - Autodesk)
Autodesk Revit Interoperability for Navisworks Simulate 2015 (Version: 15.0.107.0 - Autodesk) Hidden
Autodesk Revit Interoperability for Navisworks Simulate 2015 (Version: 15.0.207.0 - Autodesk) Hidden
Autodesk Revit Interoperability for Navisworks Simulate 2015 UR3 (HKLM\...\Autodesk Revit Interoperability for Navisworks Simulate 2015 UR3) (Version: 15.0.207.0 - Autodesk)
Autodesk Revit Structure 2015 (HKLM\...\Autodesk Revit Structure 2015) (Version: 15.0.207.0 - Autodesk)
Autodesk Revit Structure 2015 UR3 (HKLM\...\Autodesk Revit Structure 2015 UR3) (Version: 15.0.207.0 - Autodesk)
Autodesk Revit Structure Content Libraries 2015 (HKLM\...\Autodesk Revit Structure Content Libraries 2015) (Version: 15.0.117.0 - Autodesk)
Autodesk Storm and Sanitary Analysis 2015 (HKLM-x32\...\{36A89146-A453-48A1-82C2-922CD6DBFD35}) (Version: 9.1.140 - Autodesk, Inc.)
Autodesk Storm and Sanitary Analysis 2015 x64 Plug-in (HKLM\...\{70326DC6-6585-47FA-A08E-773D31B6EC08}) (Version: 9.1.140 - Autodesk, Inc.)
Autodesk Subassembly Composer on Autodesk AutoCAD Civil 3D 2015 - English - English (United States) (HKLM\...\{93DD1626-6F14-486D-931D-36BD625DB99F}) (Version: 524.0 - Autodesk, Inc.)
Autodesk Subassembly Composer on Autodesk AutoCAD Civil 3D 2015 - English - Language Neutral (HKLM\...\{F862273C-58FA-41A1-BE1C-4D9A24AE8079}) (Version: 524.0 - Autodesk, Inc.)
Autodesk Workflows 2015 (HKLM\...\{A90DD6F8-60D2-4803-AFF6-796400E73E1B}) (Version: 5.2.9.100 - Autodesk, Inc.)
Bluebeam Revu x64 12 (HKLM-x32\...\InstallShield_{81D4867E-366F-4F34-A1C2-DF819B7BCF00}) (Version: 12.1.0 - Bluebeam Software)
Bluebeam Revu x64 12 (Version: 12.1.0 - Bluebeam Software) Hidden
Brother MFL-Pro Suite MFC-J6910DW (HKLM-x32\...\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CompugraphX 100 Plus Hatch Patterns (HKLM-x32\...\{2FAF3F15-F7DC-45A9-B920-27C552CCC73E}) (Version: 10.00.0000 - CompugraphX)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.4 - IObit)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.27 - Dropbox, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HP Color LaserJet 3600 (02/27/2007 61.063.461.41) (HKLM\...\hpc3600w) (Version: 02/27/2007 61.063.461.41 - HP)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.27.757.1 - Intel Corporation) Hidden
IObit Malware Fighter (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 2.4 - IObit)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
LogMeIn (HKLM-x32\...\{58CF302E-2281-46D3-BDF0-540B11ADCED2}) (Version: 4.1.4400 - LogMeIn, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
Microsoft Office Professional 2013 - en-us (HKLM\...\ProfessionalRetail - en-us) (Version: 15.0.4641.1003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{2180B33F-3225-423E-BBC1-7798CFD3CD1F}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x64) (Version: 7.1.00.00 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Chinese (Simplified) (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Chinese (Traditional) (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Dutch (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) English (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) French (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) German (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Italian (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Japanese (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Korean (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Portuguese (Brazil) (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Spanish (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) Swedish (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 x64 ATL Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x64 CRT Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x64 MFC Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x64 OpenMP Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mikogo (HKCU\...\Mikogo) (Version: 5.0.0 - Mikogo GmbH)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Control Panel 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.154.1150 - NVIDIA Corporation) Hidden
NVIDIA nView 141.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.24 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA WMI 2.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.18.0 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Pandora (HKLM-x32\...\com.pandora.desktop.E7C14276FFE9EEF0BC7DCE654C467D9A299EFD21.1) (Version: 2.0.8 - PANDORA MEDIA, INC.)
Pandora (x32 Version: 2.0.8 - PANDORA MEDIA, INC.) Hidden
PDF to DWG Converter 2015 (HKLM-x32\...\{35A5A640-E86E-42DA-9D6C-691E85CC6DA5}) (Version:  - )
Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
Revit Structure 2015 (Version: 15.0.207.0 - Autodesk) Hidden
Revit Structure 2015 Language Pack - English (Version: 15.0.117.0 - Autodesk) Hidden
Revit Structure Content Libraries 2015 (Version: 15.0.117.0 - Autodesk) Hidden
RoboForm 7-9-8-5 (All Users) (HKLM-x32\...\AI RoboForm) (Version: 7-9-8-5 - Siber Systems)
SketchUp Import (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.2 - IObit)
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
 
========================= Memory info: ===================================
 
Percentage of memory in use: 21%
Total physical RAM: 24514.65 MB
Available physical RAM: 19325.72 MB
Total Pagefile: 49027.48 MB
Available Pagefile: 42884.88 MB
Total Virtual: 4095.88 MB
Available Virtual: 3984.96 MB
 
========================= Partitions: =====================================
 
1 Drive a: (DATA) (Fixed) (Total:1863.01 GB) (Free:796.72 GB) NTFS
2 Drive c: () (Fixed) (Total:465.76 GB) (Free:289.38 GB) NTFS
4 Drive g: (DATA) (Network) (Total:1863.01 GB) (Free:796.72 GB) NTFS
5 Drive q: (DATA) (Network) (Total:1863.01 GB) (Free:796.72 GB) NTFS
6 Drive z: (DATA) (Network) (Total:1863.01 GB) (Free:796.72 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\SERVER
 
Administrator            Guest                    Pro-Star                 
StillmanFamily           Yvonne                   
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****

Edited by boopme, 04 September 2014 - 02:28 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:23 PM

Posted 04 September 2014 - 02:31 PM

Yes ,,,Run MBAM and TDSS and post those logs.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 PowerCAD

PowerCAD
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 04 September 2014 - 03:03 PM

Here are the logs...  note, I ran the MBAM twice and it picked up another one, shown below as well (date and time in bold).

 

 

 

01:40:51.0134 0x1324  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
01:40:55.0881 0x1324  ============================================================
01:40:55.0882 0x1324  Current date / time: 2014/09/04 01:40:55.0881
01:40:55.0882 0x1324  SystemInfo:
01:40:55.0882 0x1324  
01:40:55.0882 0x1324  OS Version: 6.1.7601 ServicePack: 1.0
01:40:55.0882 0x1324  Product type: Workstation
01:40:55.0882 0x1324  ComputerName: SERVER
01:40:55.0882 0x1324  UserName: Yvonne
01:40:55.0882 0x1324  Windows directory: C:\Windows
01:40:55.0882 0x1324  System windows directory: C:\Windows
01:40:55.0882 0x1324  Running under WOW64
01:40:55.0882 0x1324  Processor architecture: Intel x64
01:40:55.0882 0x1324  Number of processors: 12
01:40:55.0882 0x1324  Page size: 0x1000
01:40:55.0883 0x1324  Boot type: Normal boot
01:40:55.0883 0x1324  ============================================================
01:41:02.0937 0x1324  KLMD registered as C:\Windows\system32\drivers\13436757.sys
01:41:03.0174 0x1324  System UUID: {F0B069C9-C8C5-08CE-25B2-595BECBF1E66}
01:41:03.0954 0x1324  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:41:03.0955 0x1324  Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:41:03.0963 0x1324  ============================================================
01:41:03.0963 0x1324  \Device\Harddisk0\DR0:
01:41:03.0963 0x1324  MBR partitions:
01:41:03.0963 0x1324  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
01:41:03.0963 0x1324  \Device\Harddisk1\DR1:
01:41:03.0963 0x1324  MBR partitions:
01:41:03.0963 0x1324  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
01:41:03.0963 0x1324  ============================================================
01:41:03.0964 0x1324  C: <-> \Device\Harddisk1\DR1\Partition1
01:41:03.0990 0x1324  A: <-> \Device\Harddisk0\DR0\Partition1
01:41:03.0990 0x1324  ============================================================
01:41:03.0990 0x1324  Initialize success
01:41:03.0990 0x1324  ============================================================
01:41:48.0750 0x2100  ============================================================
01:41:48.0750 0x2100  Scan started
01:41:48.0750 0x2100  Mode: Manual; TDLFS; 
01:41:48.0750 0x2100  ============================================================
01:41:48.0750 0x2100  KSN ping started
01:41:51.0805 0x2100  KSN ping finished: true
01:41:52.0296 0x2100  ================ Scan system memory ========================
01:41:52.0296 0x2100  System memory - ok
01:41:52.0296 0x2100  ================ Scan services =============================
01:41:52.0385 0x2100  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
01:41:52.0393 0x2100  1394ohci - ok
01:41:52.0458 0x2100  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
01:41:52.0470 0x2100  ACPI - ok
01:41:52.0477 0x2100  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
01:41:52.0478 0x2100  AcpiPmi - ok
01:41:52.0526 0x2100  [ 78CE250000BC7F47CB5A006760E3FD1C, D37A8B0E40E37C6D553FECD9C26DC5D22FA3CF4FBC8E2001D22C26C59297CAEE ] AdAppMgrSvc     C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
01:41:52.0545 0x2100  AdAppMgrSvc - ok
01:41:52.0556 0x2100  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:41:52.0558 0x2100  AdobeARMservice - ok
01:41:52.0596 0x2100  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
01:41:52.0608 0x2100  adp94xx - ok
01:41:52.0633 0x2100  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
01:41:52.0642 0x2100  adpahci - ok
01:41:52.0657 0x2100  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
01:41:52.0662 0x2100  adpu320 - ok
01:41:52.0699 0x2100  [ 7D3F50077C8265827C44755737E5EF5F, B652ED68EF652B45980E696C5E4A29BBF4A588D4F4ACF0FAFB042324558A2D90 ] AdvancedSystemCareService7 C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
01:41:52.0714 0x2100  AdvancedSystemCareService7 - ok
01:41:52.0724 0x2100  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:41:52.0726 0x2100  AeLookupSvc - ok
01:41:52.0750 0x2100  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
01:41:52.0756 0x2100  AFD - ok
01:41:52.0761 0x2100  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
01:41:52.0762 0x2100  agp440 - ok
01:41:52.0768 0x2100  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
01:41:52.0770 0x2100  ALG - ok
01:41:52.0774 0x2100  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:41:52.0775 0x2100  aliide - ok
01:41:52.0778 0x2100  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
01:41:52.0779 0x2100  amdide - ok
01:41:52.0788 0x2100  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
01:41:52.0789 0x2100  AmdK8 - ok
01:41:52.0794 0x2100  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
01:41:52.0795 0x2100  AmdPPM - ok
01:41:52.0803 0x2100  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
01:41:52.0805 0x2100  amdsata - ok
01:41:52.0816 0x2100  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
01:41:52.0818 0x2100  amdsbs - ok
01:41:52.0821 0x2100  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
01:41:52.0822 0x2100  amdxata - ok
01:41:52.0828 0x2100  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
01:41:52.0829 0x2100  AppID - ok
01:41:52.0833 0x2100  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
01:41:52.0833 0x2100  AppIDSvc - ok
01:41:52.0839 0x2100  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
01:41:52.0840 0x2100  Appinfo - ok
01:41:52.0856 0x2100  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
01:41:52.0858 0x2100  AppMgmt - ok
01:41:52.0865 0x2100  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
01:41:52.0866 0x2100  arc - ok
01:41:52.0872 0x2100  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
01:41:52.0874 0x2100  arcsas - ok
01:41:52.0876 0x2100  [ 72B060669EB8A3D1EF1D1B6BE6BE4C28, 7BE40C9B971A671DE1D9D90F0ADB0E32877E068818B64B93530C6279D1AFDDE8 ] asahci64        C:\Windows\system32\DRIVERS\asahci64.sys
01:41:52.0877 0x2100  asahci64 - ok
01:41:52.0899 0x2100  [ C6737AD65BD0ACC63F267ECA5FCCC6E7, E8BD9BFAB3B67EF59A3C12CBEBBB07FC0C7DC1140A37F043D7EEDCFE9E231FCB ] ASCAntivirusSrv C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe
01:41:52.0906 0x2100  ASCAntivirusSrv - ok
01:41:52.0917 0x2100  [ 10920CCB66203D7EF48F024B1B35AE6F, 3C97FE6C91076C059E54234F54021F5D74FB42638BE14E2C1E4CF2EFC342C274 ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
01:41:52.0919 0x2100  asmthub3 - ok
01:41:52.0939 0x2100  [ C479BFAF73CF726E01AA0A487B268A5E, D49F7779CD25E098EC9DAF1886C3B3DB8EB22CEC0FEA6FDF4522A2B2D282AE37 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
01:41:52.0944 0x2100  asmtxhci - ok
01:41:52.0972 0x2100  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
01:41:52.0974 0x2100  aspnet_state - ok
01:41:52.0978 0x2100  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:41:52.0978 0x2100  AsyncMac - ok
01:41:52.0983 0x2100  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
01:41:52.0983 0x2100  atapi - ok
01:41:53.0039 0x2100  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:41:53.0056 0x2100  AudioEndpointBuilder - ok
01:41:53.0108 0x2100  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
01:41:53.0122 0x2100  AudioSrv - ok
01:41:53.0134 0x2100  [ DE3FF859EDF66F5E0106B23B3A4B09CE, 9F6D735E32F340547D5FDA595E2A461083AC581AC0719913D4841C0C5D7A2998 ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
01:41:53.0138 0x2100  Autodesk Content Service - ok
01:41:53.0155 0x2100  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
01:41:53.0157 0x2100  AxInstSV - ok
01:41:53.0191 0x2100  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
01:41:53.0206 0x2100  b06bdrv - ok
01:41:53.0224 0x2100  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
01:41:53.0228 0x2100  b57nd60a - ok
01:41:53.0238 0x2100  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
01:41:53.0240 0x2100  BDESVC - ok
01:41:53.0257 0x2100  [ 66116E0A4DA8407FF7F2AAACE52B8B54, 5FAF396124D9ABB6F7A9CEC8275F5A17A1D492976DB448086C3D0246111F89C9 ] bdfsfltr        C:\Windows\system32\Drivers\bdfsfltr.sys
01:41:53.0263 0x2100  bdfsfltr - ok
01:41:53.0267 0x2100  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:41:53.0267 0x2100  Beep - ok
01:41:53.0329 0x2100  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
01:41:53.0353 0x2100  BFE - ok
01:41:53.0412 0x2100  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
01:41:53.0426 0x2100  BITS - ok
01:41:53.0431 0x2100  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
01:41:53.0432 0x2100  blbdrive - ok
01:41:53.0439 0x2100  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:41:53.0440 0x2100  bowser - ok
01:41:53.0444 0x2100  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
01:41:53.0445 0x2100  BrFiltLo - ok
01:41:53.0448 0x2100  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
01:41:53.0449 0x2100  BrFiltUp - ok
01:41:53.0463 0x2100  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
01:41:53.0465 0x2100  Browser - ok
01:41:53.0483 0x2100  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
01:41:53.0486 0x2100  Brserid - ok
01:41:53.0490 0x2100  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
01:41:53.0491 0x2100  BrSerWdm - ok
01:41:53.0495 0x2100  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
01:41:53.0495 0x2100  BrUsbMdm - ok
01:41:53.0499 0x2100  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
01:41:53.0499 0x2100  BrUsbSer - ok
01:41:53.0512 0x2100  [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
01:41:53.0516 0x2100  BrYNSvc - ok
01:41:53.0521 0x2100  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
01:41:53.0523 0x2100  BTHMODEM - ok
01:41:53.0532 0x2100  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
01:41:53.0533 0x2100  bthserv - ok
01:41:53.0539 0x2100  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:41:53.0541 0x2100  cdfs - ok
01:41:53.0550 0x2100  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
01:41:53.0552 0x2100  cdrom - ok
01:41:53.0561 0x2100  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
01:41:53.0562 0x2100  CertPropSvc - ok
01:41:53.0569 0x2100  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
01:41:53.0570 0x2100  circlass - ok
01:41:53.0590 0x2100  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
01:41:53.0594 0x2100  CLFS - ok
01:41:53.0633 0x2100  [ FE0CFEDA0CFC71F1FF0F77E85CA1FE1F, D067024F9110CEEF573152275DAB100943B59A36E58B342B5CC764FC3C917834 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
01:41:53.0659 0x2100  ClickToRunSvc - ok
01:41:53.0667 0x2100  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:41:53.0668 0x2100  clr_optimization_v2.0.50727_32 - ok
01:41:53.0675 0x2100  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:41:53.0677 0x2100  clr_optimization_v2.0.50727_64 - ok
01:41:53.0708 0x2100  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:41:53.0710 0x2100  clr_optimization_v4.0.30319_32 - ok
01:41:53.0722 0x2100  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:41:53.0728 0x2100  clr_optimization_v4.0.30319_64 - ok
01:41:53.0735 0x2100  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
01:41:53.0737 0x2100  CmBatt - ok
01:41:53.0743 0x2100  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:41:53.0745 0x2100  cmdide - ok
01:41:53.0779 0x2100  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
01:41:53.0791 0x2100  CNG - ok
01:41:53.0798 0x2100  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
01:41:53.0799 0x2100  Compbatt - ok
01:41:53.0804 0x2100  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
01:41:53.0805 0x2100  CompositeBus - ok
01:41:53.0807 0x2100  COMSysApp - ok
01:41:53.0812 0x2100  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
01:41:53.0813 0x2100  crcdisk - ok
01:41:53.0827 0x2100  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:41:53.0830 0x2100  CryptSvc - ok
01:41:53.0860 0x2100  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
01:41:53.0867 0x2100  CSC - ok
01:41:53.0919 0x2100  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
01:41:53.0933 0x2100  CscService - ok
01:41:53.0964 0x2100  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:41:53.0973 0x2100  DcomLaunch - ok
01:41:53.0992 0x2100  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
01:41:53.0997 0x2100  defragsvc - ok
01:41:54.0004 0x2100  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:41:54.0005 0x2100  DfsC - ok
01:41:54.0028 0x2100  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
01:41:54.0033 0x2100  Dhcp - ok
01:41:54.0038 0x2100  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
01:41:54.0039 0x2100  discache - ok
01:41:54.0046 0x2100  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
01:41:54.0047 0x2100  Disk - ok
01:41:54.0053 0x2100  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
01:41:54.0054 0x2100  dmvsc - ok
01:41:54.0067 0x2100  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:41:54.0070 0x2100  Dnscache - ok
01:41:54.0086 0x2100  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:41:54.0090 0x2100  dot3svc - ok
01:41:54.0102 0x2100  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
01:41:54.0105 0x2100  DPS - ok
01:41:54.0109 0x2100  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:41:54.0110 0x2100  drmkaud - ok
01:41:54.0130 0x2100  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:41:54.0142 0x2100  DXGKrnl - ok
01:41:54.0152 0x2100  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
01:41:54.0154 0x2100  EapHost - ok
01:41:54.0340 0x2100  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
01:41:54.0378 0x2100  ebdrv - ok
01:41:54.0385 0x2100  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
01:41:54.0386 0x2100  EFS - ok
01:41:54.0436 0x2100  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:41:54.0444 0x2100  ehRecvr - ok
01:41:54.0448 0x2100  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
01:41:54.0450 0x2100  ehSched - ok
01:41:54.0482 0x2100  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
01:41:54.0488 0x2100  elxstor - ok
01:41:54.0490 0x2100  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:41:54.0491 0x2100  ErrDev - ok
01:41:54.0514 0x2100  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
01:41:54.0519 0x2100  EventSystem - ok
01:41:54.0529 0x2100  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
01:41:54.0539 0x2100  exfat - ok
01:41:54.0553 0x2100  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:41:54.0564 0x2100  fastfat - ok
01:41:54.0607 0x2100  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
01:41:54.0621 0x2100  Fax - ok
01:41:54.0626 0x2100  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
01:41:54.0627 0x2100  fdc - ok
01:41:54.0631 0x2100  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
01:41:54.0632 0x2100  fdPHost - ok
01:41:54.0638 0x2100  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:41:54.0639 0x2100  FDResPub - ok
01:41:54.0645 0x2100  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:41:54.0647 0x2100  FileInfo - ok
01:41:54.0652 0x2100  [ D409D4A4517865131999FAC96D366CBF, 512A80C4B180D5D6DECBAFB831A56C0DC8C5D1CC7E749465C47D29EC4DA45719 ] FileMonitor     C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
01:41:54.0652 0x2100  FileMonitor - ok
01:41:54.0657 0x2100  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:41:54.0658 0x2100  Filetrace - ok
01:41:54.0737 0x2100  [ 8645F91F40B8D022C9AC3DABDF360A6B, 4F83080B1273C92470EB90D80B32056C913240DCC9C4C50B7BE85254066D654D ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
01:41:54.0752 0x2100  FlexNet Licensing Service 64 - ok
01:41:54.0758 0x2100  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
01:41:54.0759 0x2100  flpydisk - ok
01:41:54.0776 0x2100  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:41:54.0780 0x2100  FltMgr - ok
01:41:54.0857 0x2100  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
01:41:54.0873 0x2100  FontCache - ok
01:41:54.0880 0x2100  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:41:54.0881 0x2100  FontCache3.0.0.0 - ok
01:41:54.0888 0x2100  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
01:41:54.0888 0x2100  FsDepends - ok
01:41:54.0892 0x2100  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:41:54.0894 0x2100  Fs_Rec - ok
01:41:54.0906 0x2100  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
01:41:54.0909 0x2100  fvevol - ok
01:41:54.0915 0x2100  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
01:41:54.0916 0x2100  gagp30kx - ok
01:41:54.0976 0x2100  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
01:41:54.0989 0x2100  gpsvc - ok
01:41:54.0998 0x2100  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:41:55.0000 0x2100  gupdate - ok
01:41:55.0007 0x2100  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:41:55.0009 0x2100  gupdatem - ok
01:41:55.0012 0x2100  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
01:41:55.0013 0x2100  hcw85cir - ok
01:41:55.0032 0x2100  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:41:55.0036 0x2100  HdAudAddService - ok
01:41:55.0047 0x2100  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
01:41:55.0050 0x2100  HDAudBus - ok
01:41:55.0054 0x2100  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
01:41:55.0055 0x2100  HidBatt - ok
01:41:55.0061 0x2100  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
01:41:55.0063 0x2100  HidBth - ok
01:41:55.0068 0x2100  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
01:41:55.0068 0x2100  HidIr - ok
01:41:55.0074 0x2100  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
01:41:55.0075 0x2100  hidserv - ok
01:41:55.0079 0x2100  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
01:41:55.0080 0x2100  HidUsb - ok
01:41:55.0087 0x2100  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:41:55.0089 0x2100  hkmsvc - ok
01:41:55.0103 0x2100  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:41:55.0106 0x2100  HomeGroupListener - ok
01:41:55.0116 0x2100  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:41:55.0119 0x2100  HomeGroupProvider - ok
01:41:55.0125 0x2100  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
01:41:55.0126 0x2100  HpSAMD - ok
01:41:55.0178 0x2100  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:41:55.0191 0x2100  HTTP - ok
01:41:55.0197 0x2100  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
01:41:55.0198 0x2100  hwpolicy - ok
01:41:55.0212 0x2100  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
01:41:55.0215 0x2100  i8042prt - ok
01:41:55.0249 0x2100  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
01:41:55.0260 0x2100  iaStorA - ok
01:41:55.0270 0x2100  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
01:41:55.0272 0x2100  IAStorDataMgrSvc - ok
01:41:55.0275 0x2100  [ CE5CD8CBE940965867D507AB8EA2795A, 1CC2C23A1436E4C911DD3B942D8F6DABB7249AB04426F9AB6B6045034226DD25 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
01:41:55.0277 0x2100  iaStorF - ok
01:41:55.0310 0x2100  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
01:41:55.0319 0x2100  iaStorV - ok
01:41:55.0339 0x2100  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:41:55.0349 0x2100  idsvc - ok
01:41:55.0355 0x2100  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
01:41:55.0356 0x2100  iirsp - ok
01:41:55.0408 0x2100  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
01:41:55.0428 0x2100  IKEEXT - ok
01:41:55.0436 0x2100  [ 33F6F3131EE8854F05C6BEAEA233B85F, 3B453B61532E78DF75DF9BAA48ACE5D544795E0E55BF98A54058DCBCE6BCD6C1 ] IMFservice      C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
01:41:55.0440 0x2100  IMFservice - ok
01:41:55.0647 0x2100  [ 2BEE14AC102CF1259AC99ABF53291A8B, 45FAF81302E7A575D378A67F4EF75C89FDDE3B16AC3155BB2803A54D3A7B0DD3 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
01:41:55.0687 0x2100  IntcAzAudAddService - ok
01:41:55.0730 0x2100  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
01:41:55.0739 0x2100  Intel® Capability Licensing Service Interface - ok
01:41:55.0788 0x2100  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
01:41:55.0798 0x2100  Intel® Capability Licensing Service TCP IP Interface - ok
01:41:55.0803 0x2100  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
01:41:55.0804 0x2100  intelide - ok
01:41:55.0809 0x2100  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
01:41:55.0810 0x2100  intelppm - ok
01:41:55.0818 0x2100  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:41:55.0820 0x2100  IPBusEnum - ok
01:41:55.0825 0x2100  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:41:55.0827 0x2100  IpFilterDriver - ok
01:41:55.0855 0x2100  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
01:41:55.0862 0x2100  iphlpsvc - ok
01:41:55.0868 0x2100  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
01:41:55.0869 0x2100  IPMIDRV - ok
01:41:55.0879 0x2100  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
01:41:55.0882 0x2100  IPNAT - ok
01:41:55.0886 0x2100  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:41:55.0886 0x2100  IRENUM - ok
01:41:55.0890 0x2100  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:41:55.0890 0x2100  isapnp - ok
01:41:55.0913 0x2100  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
01:41:55.0917 0x2100  iScsiPrt - ok
01:41:55.0929 0x2100  [ 924019BC58FEDDE04A08C45EC1CF1847, F18C581FE5C25C5BE4514185AD44C561EB715B98AFBE81EF0D673E103EA8E8EE ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
01:41:55.0932 0x2100  jhi_service - ok
01:41:55.0937 0x2100  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
01:41:55.0938 0x2100  kbdclass - ok
01:41:55.0942 0x2100  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
01:41:55.0943 0x2100  kbdhid - ok
01:41:55.0946 0x2100  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
01:41:55.0947 0x2100  KeyIso - ok
01:41:55.0953 0x2100  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:41:55.0955 0x2100  KSecDD - ok
01:41:55.0965 0x2100  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
01:41:55.0967 0x2100  KSecPkg - ok
01:41:55.0971 0x2100  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
01:41:55.0971 0x2100  ksthunk - ok
01:41:55.0992 0x2100  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:41:55.0998 0x2100  KtmRm - ok
01:41:56.0012 0x2100  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
01:41:56.0016 0x2100  LanmanServer - ok
01:41:56.0024 0x2100  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:41:56.0026 0x2100  LanmanWorkstation - ok
01:41:56.0123 0x2100  [ E12302F216E0161F575F90360E3D2466, C2387124462DE903E837297D841EEF80A556A8710568CCE38300A363ED1AB08D ] LiveUpdateSvc   C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
01:41:56.0147 0x2100  LiveUpdateSvc - ok
01:41:56.0154 0x2100  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:41:56.0155 0x2100  lltdio - ok
01:41:56.0170 0x2100  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:41:56.0174 0x2100  lltdsvc - ok
01:41:56.0177 0x2100  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:41:56.0178 0x2100  lmhosts - ok
01:41:56.0196 0x2100  [ D6DB3146C910714F918AC1E456186813, 22428A7AD79F3C89E5FFC6487CF5919DA6F63E25330EB54001E0B633C6E2E458 ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
01:41:56.0200 0x2100  LMIGuardianSvc - ok
01:41:56.0203 0x2100  [ 0F28935ECF1FBDEC22BAF720A5A94564, A4E8E13FD7FE1882243AD7139D5E0925F09069616920382F952D79586A4936E7 ] LMIInfo         C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
01:41:56.0204 0x2100  LMIInfo - ok
01:41:56.0212 0x2100  [ E91CB655C50065D1B97A602392DBA3C2, FE0E6D882BB514FEEC38230F82E645AD67F855B11F2742963776622E1F600514 ] LMIMaint        C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
01:41:56.0215 0x2100  LMIMaint - ok
01:41:56.0218 0x2100  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
01:41:56.0218 0x2100  lmimirr - ok
01:41:56.0220 0x2100  LMIRfsClientNP - ok
01:41:56.0226 0x2100  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
01:41:56.0227 0x2100  LMIRfsDriver - ok
01:41:56.0244 0x2100  [ D3760BC17E1755091B7120CF32DBF56B, 2B31CA0CD838BEE0103054520E2FBEA2436A07D99E711B14543B85F3A511478F ] LogMeIn         C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
01:41:56.0249 0x2100  LogMeIn - ok
01:41:56.0257 0x2100  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
01:41:56.0259 0x2100  LSI_FC - ok
01:41:56.0267 0x2100  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
01:41:56.0268 0x2100  LSI_SAS - ok
01:41:56.0275 0x2100  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
01:41:56.0276 0x2100  LSI_SAS2 - ok
01:41:56.0284 0x2100  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
01:41:56.0286 0x2100  LSI_SCSI - ok
01:41:56.0294 0x2100  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
01:41:56.0295 0x2100  luafv - ok
01:41:56.0299 0x2100  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
01:41:56.0299 0x2100  MBAMProtector - ok
01:41:56.0345 0x2100  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
01:41:56.0369 0x2100  MBAMScheduler - ok
01:41:56.0400 0x2100  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
01:41:56.0418 0x2100  MBAMService - ok
01:41:56.0422 0x2100  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
01:41:56.0424 0x2100  MBAMSwissArmy - ok
01:41:56.0427 0x2100  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
01:41:56.0428 0x2100  MBAMWebAccessControl - ok
01:41:56.0434 0x2100  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:41:56.0436 0x2100  Mcx2Svc - ok
01:41:56.0440 0x2100  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
01:41:56.0441 0x2100  megasas - ok
01:41:56.0459 0x2100  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
01:41:56.0462 0x2100  MegaSR - ok
01:41:56.0467 0x2100  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
01:41:56.0468 0x2100  MEIx64 - ok
01:41:56.0496 0x2100  [ 0AF89452A8CE3928168F4E5B2208C68B, 571F1A9F1F0B31DB5FFAE7FB7F98C16958439D6666A9F2131B0F2E496BF3D2AC ] mi-raysat_3dsmax2015_64 C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
01:41:56.0498 0x2100  mi-raysat_3dsmax2015_64 - ok
01:41:56.0563 0x2100  [ C1FA8B1CCEA9C8E4644F8085E8F7840F, 0141E5001B13E5EE58CC813CEC50F904643C1DAFA397F310FB37AFACBACC6EA2 ] Mikogo-Service  C:\Users\Yvonne\AppData\Roaming\Mikogo\Mikogo-Service.exe
01:41:56.0578 0x2100  Mikogo-Service - ok
01:41:56.0586 0x2100  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
01:41:56.0588 0x2100  MMCSS - ok
01:41:56.0593 0x2100  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
01:41:56.0594 0x2100  Modem - ok
01:41:56.0598 0x2100  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:41:56.0598 0x2100  monitor - ok
01:41:56.0606 0x2100  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
01:41:56.0607 0x2100  mouclass - ok
01:41:56.0610 0x2100  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
01:41:56.0611 0x2100  mouhid - ok
01:41:56.0617 0x2100  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
01:41:56.0619 0x2100  mountmgr - ok
01:41:56.0630 0x2100  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:41:56.0632 0x2100  mpio - ok
01:41:56.0637 0x2100  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:41:56.0638 0x2100  mpsdrv - ok
01:41:56.0690 0x2100  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:41:56.0709 0x2100  MpsSvc - ok
01:41:56.0721 0x2100  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:41:56.0724 0x2100  MRxDAV - ok
01:41:56.0736 0x2100  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:41:56.0739 0x2100  mrxsmb - ok
01:41:56.0757 0x2100  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:41:56.0763 0x2100  mrxsmb10 - ok
01:41:56.0774 0x2100  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:41:56.0777 0x2100  mrxsmb20 - ok
01:41:56.0782 0x2100  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:41:56.0783 0x2100  msahci - ok
01:41:56.0794 0x2100  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:41:56.0796 0x2100  msdsm - ok
01:41:56.0806 0x2100  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
01:41:56.0810 0x2100  MSDTC - ok
01:41:56.0817 0x2100  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:41:56.0820 0x2100  Msfs - ok
01:41:56.0823 0x2100  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
01:41:56.0824 0x2100  mshidkmdf - ok
01:41:56.0828 0x2100  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:41:56.0829 0x2100  msisadrv - ok
01:41:56.0840 0x2100  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:41:56.0843 0x2100  MSiSCSI - ok
01:41:56.0844 0x2100  msiserver - ok
01:41:56.0848 0x2100  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:41:56.0849 0x2100  MSKSSRV - ok
01:41:56.0851 0x2100  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:41:56.0852 0x2100  MSPCLOCK - ok
01:41:56.0854 0x2100  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:41:56.0854 0x2100  MSPQM - ok
01:41:56.0883 0x2100  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:41:56.0905 0x2100  MsRPC - ok
01:41:56.0917 0x2100  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
01:41:56.0919 0x2100  mssmbios - ok
01:41:56.0925 0x2100  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:41:56.0925 0x2100  MSTEE - ok
01:41:56.0929 0x2100  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
01:41:56.0929 0x2100  MTConfig - ok
01:41:56.0936 0x2100  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
01:41:56.0937 0x2100  Mup - ok
01:41:56.0963 0x2100  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
01:41:56.0972 0x2100  napagent - ok
01:41:56.0993 0x2100  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:41:56.0997 0x2100  NativeWifiP - ok
01:41:57.0041 0x2100  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:41:57.0052 0x2100  NDIS - ok
01:41:57.0057 0x2100  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
01:41:57.0058 0x2100  NdisCap - ok
01:41:57.0062 0x2100  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:41:57.0062 0x2100  NdisTapi - ok
01:41:57.0067 0x2100  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:41:57.0068 0x2100  Ndisuio - ok
01:41:57.0077 0x2100  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:41:57.0079 0x2100  NdisWan - ok
01:41:57.0085 0x2100  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:41:57.0089 0x2100  NDProxy - ok
01:41:57.0093 0x2100  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:41:57.0094 0x2100  NetBIOS - ok
01:41:57.0109 0x2100  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
01:41:57.0112 0x2100  NetBT - ok
01:41:57.0116 0x2100  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
01:41:57.0117 0x2100  Netlogon - ok
01:41:57.0138 0x2100  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
01:41:57.0144 0x2100  Netman - ok
01:41:57.0154 0x2100  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:41:57.0156 0x2100  NetMsmqActivator - ok
01:41:57.0165 0x2100  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:41:57.0167 0x2100  NetPipeActivator - ok
01:41:57.0195 0x2100  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
01:41:57.0201 0x2100  netprofm - ok
01:41:57.0210 0x2100  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:41:57.0212 0x2100  NetTcpActivator - ok
01:41:57.0220 0x2100  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:41:57.0222 0x2100  NetTcpPortSharing - ok
01:41:57.0226 0x2100  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
01:41:57.0227 0x2100  nfrd960 - ok
01:41:57.0242 0x2100  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:41:57.0246 0x2100  NlaSvc - ok
01:41:57.0250 0x2100  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:41:57.0253 0x2100  Npfs - ok
01:41:57.0256 0x2100  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
01:41:57.0257 0x2100  nsi - ok
01:41:57.0261 0x2100  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:41:57.0262 0x2100  nsiproxy - ok
01:41:57.0355 0x2100  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:41:57.0443 0x2100  Ntfs - ok
01:41:57.0448 0x2100  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
01:41:57.0450 0x2100  Null - ok
01:41:57.0463 0x2100  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
01:41:57.0466 0x2100  NVHDA - ok
01:41:58.0043 0x2100  [ 2232AE1BB51A96A7381A2CA17DF12E24, 4813E27BC14EB3CBD55AF89B098EA5C8DA4C7FF0B6CCB7AACFC43BC0E578C988 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
01:41:58.0185 0x2100  nvlddmkm - ok
01:41:58.0206 0x2100  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:41:58.0208 0x2100  nvraid - ok
01:41:58.0220 0x2100  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:41:58.0222 0x2100  nvstor - ok
01:41:58.0277 0x2100  [ 2C8DD5A34A81715865D66D7AF39362A6, 62F9D873127921EE2EAA80B73E8994C4BF6DA7EEDACAEA030B8D58E086FD3850 ] nvsvc           C:\Windows\system32\nvvsvc.exe
01:41:58.0290 0x2100  nvsvc - ok
01:41:58.0443 0x2100  [ 9592FF7DA13A0D687BDF011A61B0477C, AA06D02DC0445A6EBB84C6506A52E4F7272B5E505E4C357FDF8123007ABAAEC9 ] NVWMI           C:\Windows\system32\nvwmi64.exe
01:41:58.0475 0x2100  NVWMI - ok
01:41:58.0487 0x2100  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:41:58.0489 0x2100  nv_agp - ok
01:41:58.0497 0x2100  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
01:41:58.0498 0x2100  ohci1394 - ok
01:41:58.0510 0x2100  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:41:58.0512 0x2100  ose - ok
01:41:58.0799 0x2100  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
01:41:58.0856 0x2100  osppsvc - ok
01:41:58.0884 0x2100  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
01:41:58.0889 0x2100  p2pimsvc - ok
01:41:58.0914 0x2100  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
01:41:58.0920 0x2100  p2psvc - ok
01:41:58.0930 0x2100  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
01:41:58.0931 0x2100  Parport - ok
01:41:58.0938 0x2100  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:41:58.0939 0x2100  partmgr - ok
01:41:58.0953 0x2100  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:41:58.0959 0x2100  PcaSvc - ok
01:41:58.0970 0x2100  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
01:41:58.0975 0x2100  pci - ok
01:41:58.0979 0x2100  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
01:41:58.0980 0x2100  pciide - ok
01:41:58.0996 0x2100  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
01:41:59.0002 0x2100  pcmcia - ok
01:41:59.0007 0x2100  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
01:41:59.0009 0x2100  pcw - ok
01:41:59.0047 0x2100  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:41:59.0057 0x2100  PEAUTH - ok
01:41:59.0127 0x2100  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
01:41:59.0144 0x2100  PeerDistSvc - ok
01:41:59.0202 0x2100  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
01:41:59.0205 0x2100  PerfHost - ok
01:41:59.0300 0x2100  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
01:41:59.0328 0x2100  pla - ok
01:41:59.0355 0x2100  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:41:59.0361 0x2100  PlugPlay - ok
01:41:59.0370 0x2100  [ 403F8D707515A6AAE46CCC5DBFE8408C, 82CCE0D2010F0A2B45084C371EE62805C53E93596AA21CE35D7BCBDC9874D265 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
01:41:59.0372 0x2100  Pml Driver HPZ12 - ok
01:41:59.0377 0x2100  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
01:41:59.0379 0x2100  PNRPAutoReg - ok
01:41:59.0398 0x2100  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
01:41:59.0404 0x2100  PNRPsvc - ok
01:41:59.0429 0x2100  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:41:59.0436 0x2100  PolicyAgent - ok
01:41:59.0448 0x2100  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
01:41:59.0451 0x2100  Power - ok
01:41:59.0459 0x2100  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:41:59.0461 0x2100  PptpMiniport - ok
01:41:59.0467 0x2100  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
01:41:59.0468 0x2100  Processor - ok
01:41:59.0484 0x2100  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:41:59.0488 0x2100  ProfSvc - ok
01:41:59.0492 0x2100  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
01:41:59.0493 0x2100  ProtectedStorage - ok
01:41:59.0504 0x2100  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
01:41:59.0506 0x2100  Psched - ok
01:41:59.0601 0x2100  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
01:41:59.0626 0x2100  ql2300 - ok
01:41:59.0636 0x2100  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
01:41:59.0638 0x2100  ql40xx - ok
01:41:59.0652 0x2100  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
01:41:59.0656 0x2100  QWAVE - ok
01:41:59.0661 0x2100  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:41:59.0662 0x2100  QWAVEdrv - ok
01:41:59.0666 0x2100  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:41:59.0667 0x2100  RasAcd - ok
01:41:59.0672 0x2100  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
01:41:59.0673 0x2100  RasAgileVpn - ok
01:41:59.0679 0x2100  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
01:41:59.0681 0x2100  RasAuto - ok
01:41:59.0689 0x2100  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:41:59.0691 0x2100  Rasl2tp - ok
01:41:59.0709 0x2100  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
01:41:59.0714 0x2100  RasMan - ok
01:41:59.0720 0x2100  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:41:59.0721 0x2100  RasPppoe - ok
01:41:59.0728 0x2100  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:41:59.0729 0x2100  RasSstp - ok
01:41:59.0749 0x2100  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:41:59.0752 0x2100  rdbss - ok
01:41:59.0756 0x2100  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
01:41:59.0756 0x2100  rdpbus - ok
01:41:59.0761 0x2100  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:41:59.0761 0x2100  RDPCDD - ok
01:41:59.0772 0x2100  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
01:41:59.0775 0x2100  RDPDR - ok
01:41:59.0778 0x2100  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:41:59.0778 0x2100  RDPENCDD - ok
01:41:59.0781 0x2100  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
01:41:59.0781 0x2100  RDPREFMP - ok
01:41:59.0786 0x2100  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
01:41:59.0786 0x2100  RdpVideoMiniport - ok
01:41:59.0799 0x2100  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:41:59.0811 0x2100  RDPWD - ok
01:41:59.0824 0x2100  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
01:41:59.0826 0x2100  rdyboost - ok
01:41:59.0829 0x2100  [ 5623E2CC4F1F6DE24BE9DB3319E42D23, 2EA009F85804BF2757559DC7EBE4BCB637DE3786795891290F8F99580C32C9ED ] RegFilter       C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
01:41:59.0830 0x2100  RegFilter - ok
01:41:59.0838 0x2100  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:41:59.0840 0x2100  RemoteAccess - ok
01:41:59.0850 0x2100  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:41:59.0853 0x2100  RemoteRegistry - ok
01:41:59.0859 0x2100  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
01:41:59.0861 0x2100  RpcEptMapper - ok
01:41:59.0864 0x2100  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
01:41:59.0865 0x2100  RpcLocator - ok
01:41:59.0891 0x2100  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
01:41:59.0898 0x2100  RpcSs - ok
01:41:59.0905 0x2100  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:41:59.0906 0x2100  rspndr - ok
01:41:59.0946 0x2100  [ 61A04C0C084D560BBEF1D09604608262, 27230BDFB479FBD1B18BB4035059A52F8BE74B19190951EAC95D569E284421B3 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
01:41:59.0955 0x2100  RTL8167 - ok
01:41:59.0959 0x2100  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
01:41:59.0959 0x2100  s3cap - ok
01:41:59.0963 0x2100  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
01:41:59.0964 0x2100  SamSs - ok
01:41:59.0970 0x2100  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:41:59.0972 0x2100  sbp2port - ok
01:41:59.0984 0x2100  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:41:59.0987 0x2100  SCardSvr - ok
01:41:59.0990 0x2100  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
01:41:59.0991 0x2100  scfilter - ok
01:42:00.0046 0x2100  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
01:42:00.0061 0x2100  Schedule - ok
01:42:00.0069 0x2100  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:42:00.0071 0x2100  SCPolicySvc - ok
01:42:00.0081 0x2100  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:42:00.0084 0x2100  SDRSVC - ok
01:42:00.0089 0x2100  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:42:00.0091 0x2100  secdrv - ok
01:42:00.0095 0x2100  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
01:42:00.0097 0x2100  seclogon - ok
01:42:00.0102 0x2100  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
01:42:00.0104 0x2100  SENS - ok
01:42:00.0108 0x2100  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
01:42:00.0110 0x2100  SensrSvc - ok
01:42:00.0114 0x2100  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
01:42:00.0114 0x2100  Serenum - ok
01:42:00.0122 0x2100  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
01:42:00.0123 0x2100  Serial - ok
01:42:00.0132 0x2100  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
01:42:00.0132 0x2100  sermouse - ok
01:42:00.0143 0x2100  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
01:42:00.0145 0x2100  SessionEnv - ok
01:42:00.0148 0x2100  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:42:00.0149 0x2100  sffdisk - ok
01:42:00.0152 0x2100  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:42:00.0153 0x2100  sffp_mmc - ok
01:42:00.0156 0x2100  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:42:00.0156 0x2100  sffp_sd - ok
01:42:00.0160 0x2100  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
01:42:00.0161 0x2100  sfloppy - ok
01:42:00.0183 0x2100  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:42:00.0188 0x2100  SharedAccess - ok
01:42:00.0209 0x2100  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:42:00.0214 0x2100  ShellHWDetection - ok
01:42:00.0219 0x2100  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
01:42:00.0219 0x2100  SiSRaid2 - ok
01:42:00.0225 0x2100  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
01:42:00.0226 0x2100  SiSRaid4 - ok
01:42:00.0230 0x2100  [ E77CB3736A702D46A6FB15FB4A9894E3, A341AD51825D4DB8A68ADDABE0FD17693DE387B0DA11800D427B8EA31577626C ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
01:42:00.0231 0x2100  SmartDefragDriver - ok
01:42:00.0238 0x2100  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:42:00.0240 0x2100  Smb - ok
01:42:00.0245 0x2100  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:42:00.0246 0x2100  SNMPTRAP - ok
01:42:00.0250 0x2100  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
01:42:00.0250 0x2100  spldr - ok
01:42:00.0280 0x2100  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
01:42:00.0287 0x2100  Spooler - ok
01:42:00.0469 0x2100  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
01:42:00.0509 0x2100  sppsvc - ok
01:42:00.0521 0x2100  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
01:42:00.0523 0x2100  sppuinotify - ok
01:42:00.0552 0x2100  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:42:00.0557 0x2100  srv - ok
01:42:00.0581 0x2100  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:42:00.0585 0x2100  srv2 - ok
01:42:00.0595 0x2100  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:42:00.0597 0x2100  srvnet - ok
01:42:00.0610 0x2100  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:42:00.0613 0x2100  SSDPSRV - ok
01:42:00.0619 0x2100  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:42:00.0621 0x2100  SstpSvc - ok
01:42:00.0646 0x2100  [ D2230317777033CD0456990BFC4994E5, 0F2F559593EAD7AB4596E67E9AE56E5ABF5C945201366CFC972357C22A4F776A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
01:42:00.0651 0x2100  Stereo Service - ok
01:42:00.0655 0x2100  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
01:42:00.0656 0x2100  stexstor - ok
01:42:00.0658 0x2100  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
01:42:00.0659 0x2100  StillCam - ok
01:42:00.0685 0x2100  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
01:42:00.0693 0x2100  stisvc - ok
01:42:00.0700 0x2100  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
01:42:00.0701 0x2100  storflt - ok
01:42:00.0704 0x2100  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
01:42:00.0706 0x2100  StorSvc - ok
01:42:00.0710 0x2100  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
01:42:00.0711 0x2100  storvsc - ok
01:42:00.0714 0x2100  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
01:42:00.0714 0x2100  swenum - ok
01:42:00.0741 0x2100  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
01:42:00.0747 0x2100  swprv - ok
01:42:00.0862 0x2100  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
01:42:00.0886 0x2100  SysMain - ok
01:42:00.0895 0x2100  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:42:00.0897 0x2100  TabletInputService - ok
01:42:00.0914 0x2100  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:42:00.0918 0x2100  TapiSrv - ok
01:42:00.0925 0x2100  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
01:42:00.0927 0x2100  TBS - ok
01:42:01.0035 0x2100  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:42:01.0056 0x2100  Tcpip - ok
01:42:01.0170 0x2100  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
01:42:01.0199 0x2100  TCPIP6 - ok
01:42:01.0211 0x2100  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:42:01.0213 0x2100  tcpipreg - ok
01:42:01.0222 0x2100  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:42:01.0223 0x2100  TDPIPE - ok
01:42:01.0228 0x2100  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:42:01.0229 0x2100  TDTCP - ok
01:42:01.0241 0x2100  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:42:01.0244 0x2100  tdx - ok
01:42:01.0250 0x2100  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
01:42:01.0252 0x2100  TermDD - ok
01:42:01.0299 0x2100  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
01:42:01.0311 0x2100  TermService - ok
01:42:01.0317 0x2100  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
01:42:01.0319 0x2100  Themes - ok
01:42:01.0325 0x2100  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
01:42:01.0327 0x2100  THREADORDER - ok
01:42:01.0335 0x2100  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
01:42:01.0338 0x2100  TrkWks - ok
01:42:01.0352 0x2100  [ D5747C16225B4C7B0D04511DB0407544, 413AC0BF02EE3E4B93784DAA6F29BA41E569948D4B3A41AA1AB7E06720EBEBD5 ] Trufos          C:\Windows\system32\DRIVERS\TRUFOS.sys
01:42:01.0356 0x2100  Trufos - ok
01:42:01.0367 0x2100  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:42:01.0369 0x2100  TrustedInstaller - ok
01:42:01.0375 0x2100  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:42:01.0376 0x2100  tssecsrv - ok
01:42:01.0381 0x2100  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
01:42:01.0382 0x2100  TsUsbFlt - ok
01:42:01.0386 0x2100  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
01:42:01.0386 0x2100  TsUsbGD - ok
01:42:01.0394 0x2100  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:42:01.0396 0x2100  tunnel - ok
01:42:01.0402 0x2100  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
01:42:01.0403 0x2100  uagp35 - ok
01:42:01.0423 0x2100  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:42:01.0427 0x2100  udfs - ok
01:42:01.0434 0x2100  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:42:01.0435 0x2100  UI0Detect - ok
01:42:01.0440 0x2100  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:42:01.0441 0x2100  uliagpkx - ok
01:42:01.0445 0x2100  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
01:42:01.0446 0x2100  umbus - ok
01:42:01.0451 0x2100  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
01:42:01.0452 0x2100  UmPass - ok
01:42:01.0467 0x2100  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
01:42:01.0471 0x2100  UmRdpService - ok
01:42:01.0493 0x2100  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
01:42:01.0498 0x2100  upnphost - ok
01:42:01.0500 0x2100  [ 893A6B67C8AA502648AD946CF50DDFD1, 9480AD8BF791E5912FC89A9F610D5B2E23FD07DF99A15F6844A8854E4ECB4095 ] UrlFilter       C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
01:42:01.0501 0x2100  UrlFilter - ok
01:42:01.0507 0x2100  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:42:01.0508 0x2100  usbccgp - ok
01:42:01.0517 0x2100  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:42:01.0519 0x2100  usbcir - ok
01:42:01.0524 0x2100  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
01:42:01.0525 0x2100  usbehci - ok
01:42:01.0553 0x2100  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:42:01.0557 0x2100  usbhub - ok
01:42:01.0561 0x2100  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
01:42:01.0561 0x2100  usbohci - ok
01:42:01.0565 0x2100  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
01:42:01.0565 0x2100  usbprint - ok
01:42:01.0572 0x2100  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:42:01.0573 0x2100  USBSTOR - ok
01:42:01.0578 0x2100  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
01:42:01.0578 0x2100  usbuhci - ok
01:42:01.0583 0x2100  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
01:42:01.0585 0x2100  UxSms - ok
01:42:01.0588 0x2100  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
01:42:01.0589 0x2100  VaultSvc - ok
01:42:01.0593 0x2100  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
01:42:01.0594 0x2100  vdrvroot - ok
01:42:01.0623 0x2100  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
01:42:01.0630 0x2100  vds - ok
01:42:01.0635 0x2100  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:42:01.0635 0x2100  vga - ok
01:42:01.0639 0x2100  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:42:01.0640 0x2100  VgaSave - ok
01:42:01.0650 0x2100  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
01:42:01.0653 0x2100  vhdmp - ok
01:42:01.0657 0x2100  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
01:42:01.0658 0x2100  viaide - ok
01:42:01.0670 0x2100  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
01:42:01.0673 0x2100  vmbus - ok
01:42:01.0676 0x2100  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
01:42:01.0677 0x2100  VMBusHID - ok
01:42:01.0682 0x2100  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:42:01.0683 0x2100  volmgr - ok
01:42:01.0705 0x2100  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:42:01.0709 0x2100  volmgrx - ok
01:42:01.0728 0x2100  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:42:01.0732 0x2100  volsnap - ok
01:42:01.0744 0x2100  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
01:42:01.0746 0x2100  vsmraid - ok
01:42:01.0851 0x2100  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
01:42:01.0872 0x2100  VSS - ok
01:42:01.0878 0x2100  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
01:42:01.0878 0x2100  vwifibus - ok
01:42:01.0900 0x2100  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
01:42:01.0905 0x2100  W32Time - ok
01:42:01.0910 0x2100  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
01:42:01.0911 0x2100  WacomPen - ok
01:42:01.0917 0x2100  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
01:42:01.0919 0x2100  WANARP - ok
01:42:01.0924 0x2100  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:42:01.0926 0x2100  Wanarpv6 - ok
01:42:02.0004 0x2100  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
01:42:02.0026 0x2100  WatAdminSvc - ok
01:42:02.0120 0x2100  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
01:42:02.0141 0x2100  wbengine - ok
01:42:02.0154 0x2100  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
01:42:02.0157 0x2100  WbioSrvc - ok
01:42:02.0179 0x2100  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:42:02.0184 0x2100  wcncsvc - ok
01:42:02.0189 0x2100  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:42:02.0191 0x2100  WcsPlugInService - ok
01:42:02.0196 0x2100  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
01:42:02.0197 0x2100  Wd - ok
01:42:02.0231 0x2100  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:42:02.0240 0x2100  Wdf01000 - ok
01:42:02.0249 0x2100  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:42:02.0251 0x2100  WdiServiceHost - ok
01:42:02.0260 0x2100  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:42:02.0262 0x2100  WdiSystemHost - ok
01:42:02.0274 0x2100  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
01:42:02.0278 0x2100  WebClient - ok
01:42:02.0291 0x2100  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:42:02.0295 0x2100  Wecsvc - ok
01:42:02.0302 0x2100  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:42:02.0304 0x2100  wercplsupport - ok
01:42:02.0311 0x2100  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:42:02.0313 0x2100  WerSvc - ok
01:42:02.0316 0x2100  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
01:42:02.0316 0x2100  WfpLwf - ok
01:42:02.0321 0x2100  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
01:42:02.0322 0x2100  WIMMount - ok
01:42:02.0324 0x2100  WinDefend - ok
01:42:02.0329 0x2100  WinHttpAutoProxySvc - ok
01:42:02.0353 0x2100  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:42:02.0356 0x2100  Winmgmt - ok
01:42:02.0468 0x2100  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
01:42:02.0494 0x2100  WinRM - ok
01:42:02.0559 0x2100  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:42:02.0573 0x2100  Wlansvc - ok
01:42:02.0640 0x2100  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:42:02.0667 0x2100  wlidsvc - ok
01:42:02.0674 0x2100  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
01:42:02.0676 0x2100  WmiAcpi - ok
01:42:02.0692 0x2100  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:42:02.0695 0x2100  wmiApSrv - ok
01:42:02.0699 0x2100  WMPNetworkSvc - ok
01:42:02.0704 0x2100  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:42:02.0705 0x2100  WPCSvc - ok
01:42:02.0715 0x2100  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
01:42:02.0718 0x2100  WPDBusEnum - ok
01:42:02.0723 0x2100  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:42:02.0724 0x2100  ws2ifsl - ok
01:42:02.0733 0x2100  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
01:42:02.0736 0x2100  wscsvc - ok
01:42:02.0739 0x2100  WSearch - ok
01:42:02.0824 0x2100  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
01:42:02.0854 0x2100  wuauserv - ok
01:42:02.0865 0x2100  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:42:02.0867 0x2100  WudfPf - ok
01:42:02.0890 0x2100  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:42:02.0897 0x2100  WUDFRd - ok
01:42:02.0910 0x2100  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:42:02.0915 0x2100  wudfsvc - ok
01:42:02.0932 0x2100  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
01:42:02.0937 0x2100  WwanSvc - ok
01:42:02.0941 0x2100  ================ Scan global ===============================
01:42:02.0947 0x2100  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
01:42:02.0962 0x2100  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
01:42:02.0983 0x2100  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
01:42:02.0991 0x2100  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
01:42:03.0012 0x2100  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
01:42:03.0018 0x2100  [ Global ] - ok
01:42:03.0019 0x2100  ================ Scan MBR ==================================
01:42:03.0032 0x2100  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
01:42:03.0907 0x2100  \Device\Harddisk0\DR0 - ok
01:42:03.0912 0x2100  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
01:42:04.0059 0x2100  \Device\Harddisk1\DR1 - ok
01:42:04.0060 0x2100  ================ Scan VBR ==================================
01:42:04.0063 0x2100  [ 002A9AAA00FDD22EA2208494780E7C64 ] \Device\Harddisk0\DR0\Partition1
01:42:04.0129 0x2100  \Device\Harddisk0\DR0\Partition1 - ok
01:42:04.0133 0x2100  [ FB44A86BF57EDD481AB26F2E97EF6948 ] \Device\Harddisk1\DR1\Partition1
01:42:04.0135 0x2100  \Device\Harddisk1\DR1\Partition1 - ok
01:42:04.0136 0x2100  ================ Scan generic autorun ======================
01:42:04.0511 0x2100  [ 5BAD798CBAB39F3A56A9CD495320F67E, 668FB3F30DD99CBF9EBDDF4C079636DFD2C7693B3506AC8A6DD1B3CA4B5BAF11 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
01:42:04.0589 0x2100  RTHDVCPL - ok
01:42:04.0605 0x2100  [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
01:42:04.0607 0x2100  IAStorIcon - ok
01:42:04.0613 0x2100  [ 116DD6B3450D9BCDC14601CEEE872C46, C712B8380A9494290A54FB3F69802E3042DFB01427AC7E70EC3971D3361CD29F ] C:\Program Files\Bluebeam Software\Bluebeam Revu\Revu\Revu.QuickLaunch.exe
01:42:04.0615 0x2100  RevuQuickLaunch - ok
01:42:04.0621 0x2100  [ 90C87825CF85120AFD26058EC02D4E1B, C170AE1156A9633090BD0BA492EF2BB3BA369CB59BE310A3BD6CFBA2B9122A81 ] C:\Program Files\Bluebeam Software\Bluebeam Revu\Pushbutton PDF\Bluebeam Admin User.exe
01:42:04.0623 0x2100  BbInstallUser - ok
01:42:04.0637 0x2100  [ 3CBFFC2CCDEC8467A7C6FD4A551B1215, 02BD1A957602E0E66F980C98C434A865601CB9B3AA149692549D84F69959FB42 ] C:\Program Files\Common Files\Bluebeam Software\Bluebeam Revu\Brewery\V45\Printer Support\BBPrint.exe
01:42:04.0643 0x2100  BbPrintMonitor - ok
01:42:04.0703 0x2100  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
01:42:04.0723 0x2100  Adobe ARM - ok
01:42:04.0826 0x2100  [ 936ED73425C5306B9900549AAA2FDA65, 2968D9224AE685B10DD916F3F950CBD283D8714FC04B4EDD4279BFA04D0D9711 ] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
01:42:04.0848 0x2100  ADSK DLMSession - ok
01:42:04.0877 0x2100  [ FA7A00513D6839C4DBB0CE568F3D1FDB, 17020A0A9055B047618AD0BB16C349932F0A27E2B754FAAC7763DE805BF033D3 ] C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe
01:42:04.0883 0x2100  ADSKAppManager - ok
01:42:05.0026 0x2100  [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
01:42:05.0061 0x2100  BrStsMon00 - ok
01:42:05.0071 0x2100  [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
01:42:05.0074 0x2100  SunJavaUpdateSched - ok
01:42:05.0100 0x2100  [ 580BB8242B4B5D64FF645BA8A78084D2, 5A6512A49D6BDFCA5CAB3E569C16EE0F09A3E1736F018691AAD8330AE07266A7 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
01:42:05.0117 0x2100  IObit Malware Fighter - ok
01:42:05.0194 0x2100  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:42:05.0217 0x2100  Sidebar - ok
01:42:05.0227 0x2100  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:42:05.0231 0x2100  mctadmin - ok
01:42:05.0314 0x2100  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:42:05.0335 0x2100  Sidebar - ok
01:42:05.0343 0x2100  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:42:05.0345 0x2100  mctadmin - ok
01:42:05.0353 0x2100  [ AA80B164B7A6CF6CBC378A0EC681EBE1, 59C9E7DD6B13BC5A273CE876E158BD3818C494B140F9E564AF0DF3A8FBD1A7AB ] C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
01:42:05.0355 0x2100  RoboForm - ok
01:42:05.0440 0x2100  [ 0A3E532AE3E0421B01B81D37B2FC766D, BFCE1F20142D5EB181A08531B63935A0D290D828B32BDAC53E808C60721FBA50 ] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
01:42:05.0468 0x2100  Advanced SystemCare Ultimate - ok
01:42:05.0484 0x2100  [ 0706DDBD4EA0D122CA069FF2552E20FD, 216F58801714173558D82782D94F3B684E2F625F0318AD34B7ECDC43DB3B9219 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
01:42:05.0494 0x2100  GoogleChromeAutoLaunch_96F5D6001B278CB9FAF90ECF2CB8F414 - ok
01:42:05.0580 0x2100  [ 0A3E532AE3E0421B01B81D37B2FC766D, BFCE1F20142D5EB181A08531B63935A0D290D828B32BDAC53E808C60721FBA50 ] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
01:42:05.0609 0x2100  Advanced SystemCare Ultimate - ok
01:42:05.0618 0x2100  [ AA80B164B7A6CF6CBC378A0EC681EBE1, 59C9E7DD6B13BC5A273CE876E158BD3818C494B140F9E564AF0DF3A8FBD1A7AB ] C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
01:42:05.0619 0x2100  RoboForm - ok
01:42:05.0620 0x2100  Waiting for KSN requests completion. In queue: 339
01:42:06.0621 0x2100  Waiting for KSN requests completion. In queue: 32
01:42:07.0621 0x2100  Waiting for KSN requests completion. In queue: 32
01:42:08.0781 0x2100  AV detected via SS2: Advanced SystemCare Ultimate, C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCAntivirusFix.exe ( 7.0.0.5008 ), 0x71000 ( enabled : updated )
01:42:08.0805 0x2100  Win FW state via NFP2: enabled
01:42:11.0324 0x2100  ============================================================
01:42:11.0324 0x2100  Scan finished
01:42:11.0324 0x2100  ============================================================
01:42:11.0335 0x08cc  Detected object count: 0
01:42:11.0335 0x08cc  Actual detected object count: 0
01:43:00.0426 0x21a8  Deinitialize success
 

 

Malwarebytes Anti-Malware (1st run)
www.malwarebytes.org
 
Scan Date: 9/4/2014
Scan Time: 1:27:42 AM
Logfile: 
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.09.04.02
Rootkit Database: v2014.08.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Yvonne
 
Scan Type: Hyper Scan
Result: Completed
Objects Scanned: 311370
Time Elapsed: 1 min, 24 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Disabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 1
PUP.Optional.Softonic.A, HKU\S-1-5-21-2669524041-3727869485-2838251172-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, Quarantined, [cdd5e702126942f48ecb6aa8ab58d22e], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 1
PUP.Optional.BrowserManager.A, C:\Program Files (x86)\FUPM Browser, Quarantined, [a101e504c8b3979fc6a123c7ec164db3], 
 
Files: 2
PUP.Optional.MindSpark.A, C:\Users\Yvonne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_radiorage.dl.tb.ask.com_0.localstorage, Quarantined, [c5ddb732dd9e3df9972d22eb5da634cc], 
PUP.Optional.MindSpark.A, C:\Users\Yvonne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_radiorage.dl.tb.ask.com_0.localstorage-journal, Quarantined, [e9b93faab2c97abcefd5b05d4bb80cf4], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
Malwarebytes Anti-Malware (2nd run)
www.malwarebytes.org
 
Scan Date: 9/4/2014
Scan Time: 1:45:23 AM
Logfile: 
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.09.04.02
Rootkit Database: v2014.08.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Yvonne
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 453802
Time Elapsed: 6 min, 24 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 2
PUP.Optional.iBryte, C:\$Recycle.Bin\S-1-5-21-2669524041-3727869485-2838251172-1001\$RQSPWIC.exe, Quarantined, [e0c2c9201368b97de9fb228a2dd47b85], 
PUP.Optional.iBryte, C:\$Recycle.Bin\S-1-5-21-2669524041-3727869485-2838251172-1001\$R5W6E0M.crdownload, Quarantined, [5250ae3bf3881b1b677d9616b849fa06], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
Malwarebytes Anti-Malware - Protection Log
www.malwarebytes.org
 
 
Protection, 9/4/2014 1:26:34 AM, SYSTEM, SERVER, Protection, Malware Protection, Starting, 
Protection, 9/4/2014 1:26:34 AM, SYSTEM, SERVER, Protection, Malware Protection, Started, 
Protection, 9/4/2014 1:26:34 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Update, 9/4/2014 1:26:37 AM, SYSTEM, SERVER, Manual, Rootkit Database, 2014.2.20.1, 2014.8.21.1, 
Update, 9/4/2014 1:26:39 AM, SYSTEM, SERVER, Manual, Malware Database, 2014.3.4.9, 2014.9.4.2, 
Protection, 9/4/2014 1:26:39 AM, SYSTEM, SERVER, Protection, Refresh, Starting, 
Protection, 9/4/2014 1:26:39 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Protection, 9/4/2014 1:26:39 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopping, 
Protection, 9/4/2014 1:26:40 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopped, 
Protection, 9/4/2014 1:26:43 AM, SYSTEM, SERVER, Protection, Refresh, Success, 
Protection, 9/4/2014 1:26:43 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 1:26:43 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Protection, 9/4/2014 2:11:34 AM, SYSTEM, SERVER, Protection, Malware Protection, Starting, 
Protection, 9/4/2014 2:11:34 AM, SYSTEM, SERVER, Protection, Malware Protection, Started, 
Protection, 9/4/2014 2:11:34 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 2:11:39 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Update, 9/4/2014 4:15:22 AM, SYSTEM, SERVER, Scheduler, Malware Database, 2014.9.4.2, 2014.9.4.3, 
Protection, 9/4/2014 4:15:23 AM, SYSTEM, SERVER, Protection, Refresh, Starting, 
Protection, 9/4/2014 4:15:23 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopping, 
Protection, 9/4/2014 4:15:23 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopped, 
Protection, 9/4/2014 4:15:26 AM, SYSTEM, SERVER, Protection, Refresh, Success, 
Protection, 9/4/2014 4:15:26 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 4:15:26 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Update, 9/4/2014 7:09:27 AM, SYSTEM, SERVER, Scheduler, Malware Database, 2014.9.4.3, 2014.9.4.4, 
Protection, 9/4/2014 7:09:27 AM, SYSTEM, SERVER, Protection, Refresh, Starting, 
Protection, 9/4/2014 7:09:27 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopping, 
Protection, 9/4/2014 7:09:27 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopped, 
Protection, 9/4/2014 7:09:31 AM, SYSTEM, SERVER, Protection, Refresh, Success, 
Protection, 9/4/2014 7:09:31 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 7:09:31 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Update, 9/4/2014 8:58:01 AM, SYSTEM, SERVER, Scheduler, Malware Database, 2014.9.4.4, 2014.9.4.5, 
Protection, 9/4/2014 8:58:02 AM, SYSTEM, SERVER, Protection, Refresh, Starting, 
Protection, 9/4/2014 8:58:02 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopping, 
Protection, 9/4/2014 8:58:02 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopped, 
Protection, 9/4/2014 8:58:06 AM, SYSTEM, SERVER, Protection, Refresh, Success, 
Protection, 9/4/2014 8:58:06 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 8:58:06 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Update, 9/4/2014 10:00:27 AM, SYSTEM, SERVER, Scheduler, Malware Database, 2014.9.4.5, 2014.9.4.6, 
Protection, 9/4/2014 10:00:41 AM, SYSTEM, SERVER, Protection, Refresh, Starting, 
Protection, 9/4/2014 10:00:41 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopping, 
Protection, 9/4/2014 10:00:41 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopped, 
Protection, 9/4/2014 10:00:45 AM, SYSTEM, SERVER, Protection, Refresh, Success, 
Protection, 9/4/2014 10:00:45 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 10:00:45 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Update, 9/4/2014 10:58:49 AM, SYSTEM, SERVER, Scheduler, Malware Database, 2014.9.4.6, 2014.9.4.7, 
Protection, 9/4/2014 10:58:49 AM, SYSTEM, SERVER, Protection, Refresh, Starting, 
Protection, 9/4/2014 10:58:49 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopping, 
Protection, 9/4/2014 10:58:49 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopped, 
Protection, 9/4/2014 10:58:53 AM, SYSTEM, SERVER, Protection, Refresh, Success, 
Protection, 9/4/2014 10:58:53 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 10:58:53 AM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
Update, 9/4/2014 12:03:28 PM, SYSTEM, SERVER, Scheduler, Malware Database, 2014.9.4.7, 2014.9.4.9, 
Protection, 9/4/2014 12:03:29 PM, SYSTEM, SERVER, Protection, Refresh, Starting, 
Protection, 9/4/2014 12:03:29 PM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopping, 
Protection, 9/4/2014 12:03:29 PM, SYSTEM, SERVER, Protection, Malicious Website Protection, Stopped, 
Protection, 9/4/2014 12:03:32 PM, SYSTEM, SERVER, Protection, Refresh, Success, 
Protection, 9/4/2014 12:03:33 PM, SYSTEM, SERVER, Protection, Malicious Website Protection, Starting, 
Protection, 9/4/2014 12:03:33 PM, SYSTEM, SERVER, Protection, Malicious Website Protection, Started, 
 
(end)


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:23 PM

Posted 04 September 2014 - 03:56 PM

Ok, the second may be in the recycle bin..

Do these next.

ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 PowerCAD

PowerCAD
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 04 September 2014 - 10:37 PM

# AdwCleaner v3.309 - Report created 04/09/2014 at 20:27:19
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Yvonne - SERVER
# Running from : C:\Users\Yvonne\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Util
 
***** [ Scheduled Tasks ] *****
 
Task Deleted : Driver Booster Scan
Task Deleted : Driver Booster Update
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\robotaskbaricon_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\robotaskbaricon_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_microsoft-mathematics[1]_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_microsoft-mathematics[1]_RASMANCS
Key Deleted : HKCU\Software\Softonic
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16563
 
 
-\\ Google Chrome v37.0.2062.103
 
[ File : C:\Users\StillmanFamily\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
 
[ File : C:\Users\Yvonne\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={A4D4826E-EE60-4630-82C6-0C02A3FB3220}&mid=ab017e2c9fbe47d18533d1d9b3be01dc-46105c74726268f4ea43968793912edb3385aa96&lang=us&ds=AVG&pr=fr&d=2012-02-16 19:56:57&v=10.2.0.3&sap=dsp&q={searchTerms}
Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN43861546728226325&ctid=CT3289663&UM=2
Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?ctid=CT3300019&SearchSource=45&UM=2&q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [1696 octets] - [04/09/2014 19:12:47]
AdwCleaner[R1].txt - [1756 octets] - [04/09/2014 20:22:02]
AdwCleaner[S0].txt - [2321 octets] - [04/09/2014 20:27:19]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2381 octets] ##########


#6 PowerCAD

PowerCAD
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 04 September 2014 - 11:40 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x64
Ran by Yvonne on Thu 09/04/2014 at 20:35:41.23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 09/04/2014 at 20:39:52.83
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

# AdwCleaner v3.309 - Report created 04/09/2014 at 20:27:19
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Yvonne - SERVER
# Running from : C:\Users\Yvonne\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Util
 
***** [ Scheduled Tasks ] *****
 
Task Deleted : Driver Booster Scan
Task Deleted : Driver Booster Update
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\robotaskbaricon_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\robotaskbaricon_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_microsoft-mathematics[1]_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_microsoft-mathematics[1]_RASMANCS
Key Deleted : HKCU\Software\Softonic
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v9.0.8112.16563
 
 
-\\ Google Chrome v37.0.2062.103
 
[ File : C:\Users\StillmanFamily\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
 
[ File : C:\Users\Yvonne\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={A4D4826E-EE60-4630-82C6-0C02A3FB3220}&mid=ab017e2c9fbe47d18533d1d9b3be01dc-46105c74726268f4ea43968793912edb3385aa96&lang=us&ds=AVG&pr=fr&d=2012-02-16 19:56:57&v=10.2.0.3&sap=dsp&q={searchTerms}
Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN43861546728226325&ctid=CT3289663&UM=2
Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?ctid=CT3300019&SearchSource=45&UM=2&q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [1696 octets] - [04/09/2014 19:12:47]
AdwCleaner[R1].txt - [1756 octets] - [04/09/2014 20:22:02]
AdwCleaner[S0].txt - [2321 octets] - [04/09/2014 20:27:19]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2381 octets] ##########


#7 PowerCAD

PowerCAD
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 05 September 2014 - 04:34 AM

HERE ARE THE RESULTS FROM THE ESET SCAN.  
 
A:\bk\Business\PowerCAD Inc\Operations\Computers-Software\FreeFileSync_5.6_setup.exe Win32/OpenCandy potentially unsafe application deleted - quarantined
A:\bk\Music\MP3Rocket-Win.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted - quarantined
A:\data\Business\PowerCAD Inc\Operations\Computers-Software\FreeFileSync_5.6_setup.exe Win32/OpenCandy potentially unsafe application deleted - quarantined
A:\data\Music\MP3Rocket-Win.exe a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted - quarantined
C:\$Recycle.Bin\S-1-5-21-2669524041-3727869485-2838251172-1001\$RPQZOAY.exe a variant of Win32/CNETInstaller.B potentially unwanted application deleted - quarantined
C:\Users\Yvonne\Dropbox\Family\Tristan\WinZip\Utils\WzSysScan\WINZIPSSRegClean.exe probably a variant of Win32/Systweak potentially unwanted application deleted - quarantined
C:\Users\Yvonne\Dropbox\PowerCAD Inc\Operations\Computers-Software\FreeFileSync_5.6_setup.exe Win32/OpenCandy potentially unsafe application deleted - quarantined


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:23 PM

Posted 05 September 2014 - 10:07 AM

Looks good.. Update MBAM , rerun it and see how it is.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 PowerCAD

PowerCAD
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 05 September 2014 - 01:48 PM

here are the results from MBAM.

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 9/5/2014
Scan Time: 11:40:41 AM
Logfile: 
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.09.05.06
Rootkit Database: v2014.08.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Yvonne
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 453876
Time Elapsed: 6 min, 8 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:23 PM

Posted 05 September 2014 - 01:59 PM

Ahh .. good

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
Have a great day!!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 PowerCAD

PowerCAD
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 06 September 2014 - 01:19 AM

Thank you so much for your help.  So helpful I'm going to ask if you'd look at my other two computers.  I started the process and ran the MiniToolBox.  This computer is called "CAD4" in case we needed to start a new topic. This is a secondary work computer as well as the family's go to computer so since i have teenagers, I'm always noticing some funky stuff.  I'll run the MBAM and TDSSKiller next.  Thank you for your time!

 

here are the minitoolbox results.

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Yvonne (administrator) on 05-09-2014 at 23:09:36
Running from "C:\Users\Yvonne\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek PCIe FE Family Controller = Local Area Connection (Connected)
Intel® Gigabit CT Desktop Adapter = Local Area Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : CAD4-HP
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.ca.comcast.net.
 
Ethernet adapter Local Area Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Gigabit CT Desktop Adapter
   Physical Address. . . . . . . . . : 00-1B-21-BB-72-16
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : hsd1.ca.comcast.net.
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 2C-27-D7-1C-55-3B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2601:9:3780:274:e09b:690f:7079:6a41(Preferred) 
   Temporary IPv6 Address. . . . . . : 2601:9:3780:274:a09c:8184:e645:571c(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::e09b:690f:7079:6a41%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 10.0.0.25(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, September 05, 2014 10:51:35 PM
   Lease Expires . . . . . . . . . . : Friday, September 12, 2014 10:51:35 PM
   Default Gateway . . . . . . . . . : fe80::21d:d5ff:fea0:6831%13
                                       10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 276344000
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-AC-D8-82-2C-27-D7-1C-55-3B
   DNS Servers . . . . . . . . . . . : 2001:558:feed::1
                                       2001:558:feed::2
                                       75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{C3AC632E-7CF4-4B36-BC2D-F4E4C62032E5}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 9:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{8126AF98-B5BB-43FB-9FCA-410B6136A83C}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns01.comcast.net
Address:  2001:558:feed::1
 
Name:    google.com
Addresses:  2607:f8b0:4005:802::1007
 74.125.239.33
 74.125.239.46
 74.125.239.37
 74.125.239.38
 74.125.239.39
 74.125.239.40
 74.125.239.41
 74.125.239.32
 74.125.239.34
 74.125.239.36
 74.125.239.35
 
 
Pinging google.com [2607:f8b0:4005:800::1009] with 32 bytes of data:
Reply from 2607:f8b0:4005:800::1009: time=14ms 
Reply from 2607:f8b0:4005:800::1009: time=16ms 
 
Ping statistics for 2607:f8b0:4005:800::1009:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 14ms, Maximum = 16ms, Average = 15ms
Server:  cdns01.comcast.net
Address:  2001:558:feed::1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=36ms TTL=50
Reply from 206.190.36.45: bytes=32 time=34ms TTL=50
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 34ms, Maximum = 36ms, Average = 35ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...00 1b 21 bb 72 16 ......Intel® Gigabit CT Desktop Adapter
 13...2c 27 d7 1c 55 3b ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 12...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1        10.0.0.25     20
         10.0.0.0    255.255.255.0         On-link         10.0.0.25    276
        10.0.0.25  255.255.255.255         On-link         10.0.0.25    276
       10.0.0.255  255.255.255.255         On-link         10.0.0.25    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         10.0.0.25    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         10.0.0.25    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13    276 ::/0                     fe80::21d:d5ff:fea0:6831
  1    306 ::1/128                  On-link
 13     28 2601:9:3780:274::/64     On-link
 13    276 2601:9:3780:274:a09c:8184:e645:571c/128
                                    On-link
 13    276 2601:9:3780:274:e09b:690f:7079:6a41/128
                                    On-link
 13    276 fe80::/64                On-link
 13    276 fe80::e09b:690f:7079:6a41/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/05/2014 10:53:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/05/2014 09:24:14 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/04/2014 04:18:18 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/03/2014 09:42:47 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/03/2014 05:31:40 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/31/2014 03:37:40 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/30/2014 02:53:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/30/2014 02:47:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/10/2014 09:43:00 AM) (Source: Application Error) (User: )
Description: Faulting application name: GoogleUpdate.exe, version: 1.3.21.103, time stamp: 0x4f3c6d6c
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x000223e0
Faulting process id: 0xf74
Faulting application start time: 0xGoogleUpdate.exe0
Faulting application path: GoogleUpdate.exe1
Faulting module path: GoogleUpdate.exe2
Report Id: GoogleUpdate.exe3
 
Error: (08/10/2014 09:27:05 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (09/05/2014 11:06:22 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{8126AF98-B5BB-43FB-9FCA-410B6136A83C}.
The backup browser is stopping.
 
Error: (09/05/2014 10:59:29 PM) (Source: Service Control Manager) (User: )
Description: The AdvancedSystemCareAntivirus service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (09/05/2014 09:30:25 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
 
Error: (09/04/2014 08:53:58 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
 
Error: (09/03/2014 10:05:26 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
 
Error: (08/31/2014 01:03:30 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
 
Error: (08/31/2014 03:34:44 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
 
Error: (08/10/2014 09:25:25 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 3:33:52 PM on ‎7/‎15/‎2014 was unexpected.
 
Error: (07/15/2014 08:19:21 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
 
Error: (07/14/2014 08:30:15 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
 
 
Microsoft Office Sessions:
=========================
 
 
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
=========================== Installed Programs ============================
64 Bit HP CIO Components Installer (Version: 3.2.1 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
AMD APP SDK Runtime (Version: 2.4.595.1 - Advanced Micro Devices Inc.) Hidden
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2F72F540-1F60-4266-9506-952B21D6640D}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI AVIVO64 Codecs (Version: 11.6.0.51125 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{8E9405C3-4A81-A757-1670-56B202B46F3C}) (Version: 3.0.820.0 - ATI Technologies, Inc.)
ATI Problem Report Wizard (Version: 3.0.821.0 - ATI Technologies) Hidden
AutoCAD 2012 VBA Enabler (HKLM\...\{2BD66EAF-062B-42F9-013A-028F3D6A10CD}) (Version: 18.2.51.0 - Autodesk)
AutoCAD 2013 - English (HKLM\...\AutoCAD 2013 - English) (Version: 19.0.55.0 - Autodesk)
AutoCAD 2013 - English (Version: 19.0.204.0 - Autodesk) Hidden
AutoCAD 2013 - English (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2013 - English SP2 (HKLM\...\AutoCAD 2013 - English SP2) (Version: 1 - Autodesk)
AutoCAD 2013 Language Pack - English (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2013 VBA Enabler (HKLM\...\{19D00409-7664-446C-01A9-D5B36EB516BE}) (Version: 19.0.114.0 - Autodesk)
AutoCAD Civil 3D 2012 (HKLM\...\AutoCAD Civil 3D 2012) (Version: 9.0.2566.0 - Autodesk)
AutoCAD Civil 3D 2012 (Version: 9.0.2566.0 - Autodesk) Hidden
AutoCAD Civil 3D 2012 32 Bit Object Enabler on Autodesk® Storm and Sanitary Analysis 2012 - Language Neutral (HKLM-x32\...\{121360F1-7922-42F3-85CB-C73FEBF8D285}) (Version: 1619.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2012 32 Bit Object Enabler on Autodesk® Storm and Sanitary Analysis 2012 - Language Neutral (HKLM-x32\...\{F9C48566-367E-427C-920E-D8886A33746B}) (Version: 1619.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2012 Language Pack - English (Version: 9.0.1619.0 - Autodesk) Hidden
AutoCAD Civil 3D 2012 SP2 (HKLM\...\AutoCAD Civil 3D 2012 SP2) (Version: 1 - Autodesk)
AutoCAD Civil 3D 2013 - English (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 (HKLM\...\AutoCAD Civil 3D 2013) (Version: 10.0.1663.0 - Autodesk)
AutoCAD Civil 3D 2013 (Version: 10.0.1663.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 32 Bit Object Enabler on Autodesk® Storm and Sanitary Analysis 2013 - Language Neutral (HKLM-x32\...\{6229E112-039A-4222-8196-E4F03D85DEF4}) (Version: 1111.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2013 64 Bit Object Enabler on AutoCAD 2013 - English - English (United States) (HKLM\...\{456B6EED-1AC9-44EC-9CEF-5946CCD1176A}) (Version: 1464.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2013 64 Bit Object Enabler on AutoCAD Map 3D 2013 - English (United States) (HKLM\...\{08C3DFBA-D382-4616-AD17-98490262E9A0}) (Version: 1464.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2013 64 Bit Object Enabler on Autodesk 3ds Max Design 2013 64-bit - Language Neutral (HKLM\...\{6A3762C5-4F56-4D8F-B769-725BF07EF969}) (Version: 1464.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2013 64 Bit Object Enabler on Autodesk DirectConnect 2013 64-bit - Language Neutral (HKLM\...\{7DCAC1DD-DED5-45F6-A72D-9A53CB7BCD3F}) (Version: 1464.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2013 64 Bit Object Enabler on Autodesk Navisworks Simulate 2013 - 2013 DWG File Reader - Language Neutral (HKLM\...\{0DCE25A2-0D90-4665-9902-A4C5B1627B1C}) (Version: 1464.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2013 Language Pack - English (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 SP2 (HKLM\...\AutoCAD Civil 3D 2013 SP2) (Version: 1 - Autodesk)
AutoCAD Map 3D 2013 (HKLM\...\AutoCAD Map 3D 2013) (Version: 16.0.036.2 - Autodesk)
AutoCAD Map 3D 2013 (Version: 16.0.036.2 - Autodesk) Hidden
AutoCAD Map 3D 2013 Language Pack (Version: 16.0.036.2 - Autodesk) Hidden
AutoCAD Raster Design 2013 (HKLM\...\AutoCAD Raster Design 2013) (Version: 19.0.70.0 - Autodesk)
AutoCAD Raster Design 2013 (Version: 19.0.70.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2013 64-bit (HKLM\...\Autodesk 3ds Max Design 2013 64-bit) (Version: 15.0.0.347 - Autodesk)
Autodesk 3ds Max Design 2013 64-bit (Version: 15.0.0.347 - Autodesk) Hidden
Autodesk Backburner 2013.0.0 (HKLM-x32\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2013.0.0 - Autodesk, Inc.)
Autodesk Civil View for 3ds Max Design 2013 (HKLM-x32\...\{FE6DCC8D-427F-405C-A779-C93B6D9F77A5}) (Version: 1.0.0.2 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.0.84.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DirectConnect 2013 64-bit (HKLM\...\Autodesk DirectConnect 2013 64-bit) (Version: 7.0.28.0 - Autodesk)
Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0 - Autodesk) Hidden
Autodesk Essential Skills Movies for 3ds Max Design 2013 64-bit (HKLM\...\{62CBE596-1BB8-4D7B-A056-103287BAD1C4}) (Version: 1.0.0.1 - Autodesk)
Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit (HKLM\...\Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit) (Version:  - Autodesk)
Autodesk Infrastructure Administrator 2013 (HKLM\...\Autodesk Infrastructure Administrator 2013) (Version: 16.0.036 - Autodesk)
Autodesk Infrastructure Administrator 2013 (Version: 16.0.036 - Autodesk) Hidden
Autodesk Infrastructure Administrator 2013 Language Pack (Version: 16.0.036 - Autodesk) Hidden
Autodesk Infrastructure Modeler 2013 (HKLM\...\Autodesk Infrastructure Modeler 2013) (Version: 2.0.0.03305 - Autodesk)
Autodesk Infrastructure Modeler 2013 (Version: 2.0.0.03305 - Autodesk) Hidden
Autodesk Infrastructure Modeler 2013 Language Pack (Version: 2.0.0.03305 - Autodesk) Hidden
Autodesk Inventor Fusion 2013 (HKLM\...\Autodesk Inventor Fusion 2013) (Version: 2.0.0.206 - Autodesk, Inc.)
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Autodesk Inventor Fusion plug-in for AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Fusion plug-in language pack for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max Design 2013 64-bit (HKLM\...\{BC66B242-DF13-1664-851B-00123612ED98}) (Version: 15.0 - Autodesk)
Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2013 (HKLM-x32\...\{27C6C0A2-2EC9-4FEA-BE2B-659EAAC2C68C}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2013 (HKLM-x32\...\{58760EEC-8B6A-43F4-81AA-696E381DFADD}) (Version: 3.0.13 - Autodesk)
Autodesk Navisworks 2013 32 bit Exporter Plug-ins (HKLM-x32\...\Autodesk Navisworks 2013 32 bit Exporter Plug-ins) (Version: 10.0.840.82 - Autodesk)
Autodesk Navisworks 2013 32 bit Exporter Plug-ins (x32 Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks 2013 32 bit Exporter Plug-ins English Language Pack (HKLM-x32\...\Autodesk Navisworks 2013 32 bit Exporter Plug-ins English Language Pack) (Version: 10.0.840.82 - Autodesk)
Autodesk Navisworks 2013 32 bit Exporter Plug-ins English Language Pack (x32 Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks 2013 64 bit Exporter Plug-ins (HKLM\...\Autodesk Navisworks 2013 64 bit Exporter Plug-ins) (Version: 10.0.840.82 - Autodesk)
Autodesk Navisworks 2013 64 bit Exporter Plug-ins (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks 2013 64 bit Exporter Plug-ins English Language Pack (HKLM\...\Autodesk Navisworks 2013 64 bit Exporter Plug-ins English Language Pack) (Version: 10.0.840.82 - Autodesk)
Autodesk Navisworks 2013 64 bit Exporter Plug-ins English Language Pack (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 - 2008 DWG File Reader (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 - 2009 DWG File Reader (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 - 2010 DWG File Reader (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 - 2011 DWG File Reader (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 - 2012 DWG File Reader (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 - 2013 DWG File Reader (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 (HKLM\...\Autodesk Navisworks Simulate 2013) (Version: 10.0.840.82 - Autodesk)
Autodesk Navisworks Simulate 2013 (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Navisworks Simulate 2013 English Language Pack (HKLM\...\Autodesk Navisworks Simulate 2013 English Language Pack) (Version: 10.0.840.82 - Autodesk)
Autodesk Navisworks Simulate 2013 English Language Pack (Version: 10.0.840.82 - Autodesk) Hidden
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 1.0.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (HKLM\...\{06E18300-BB64-1664-8E6A-2593FC67BB74}) (Version: 1.0.0.1 - Autodesk)
Autodesk Subassembly Composer on AutoCAD Civil 3D 2013 - English - English (United States) (HKLM\...\{7D81A86B-95EA-40EC-8D67-96CA52B50982}) (Version: 1111.0 - Autodesk, Inc.)
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.102.0 - Autodesk, Inc.)
Autodesk Workflows - Infrastructure Design Suite 2013 (HKLM\...\{06388E0D-A364-478B-8E40-7D76142A8DF7}) (Version: 3.0.10.0 - Autodesk)
Autodesk® Storm and Sanitary Analysis 2013 (HKLM-x32\...\{0C6C3239-D579-411C-9E8C-5E8D38D90165}) (Version: 7.1.2186.2 - Autodesk, Inc.)
Autodesk® Storm and Sanitary Analysis 2013 x64 Plug-in (HKLM\...\{FD349C8D-70D1-4624-AC93-4BAFE3819169}) (Version: 7.1.2186.2 - Autodesk, Inc.)
Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden
Blio (HKLM-x32\...\{9368DDD5-CE7F-4BD7-A83A-F00FABE338EC}) (Version: 2.2.6699 - K-NFB Reading Technology, Inc.)
Bluebeam PDF Revu Standard x64 v9.5.1 (HKLM-x32\...\InstallShield_{AD9D0D19-76BD-4F1F-BC89-B446A1511602}) (Version: 9.5.1 - Bluebeam Software)
Bluebeam PDF Revu Standard x64 v9.5.1 (Version: 9.5.1 - Bluebeam Software) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden
Brother MFL-Pro Suite MFC-J6910DW (HKLM-x32\...\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}) (Version: 1.0.27.0 - Brother Industries, Ltd.)
Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.1125.2142.38865 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0309.2206.39672 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.1125.2142.38865 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help English (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help French (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help German (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.1125.2141.38865 - ATI) Hidden
ccc-core-static (x32 Version: 2010.1125.2142.38865 - ATI) Hidden
ccc-utility64 (Version: 2010.1125.2142.38865 - ATI) Hidden
CompugraphX 100 Plus Hatch Patterns (HKLM-x32\...\{2FAF3F15-F7DC-45A9-B920-27C552CCC73E}) (Version: 10.00.0000 - CompugraphX)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.10.28 - Dropbox, Inc.)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FATE - The Traitor Soul (x32 Version: 2.2.0.95 - WildTangent) Hidden
Flash Player Pro V5.4 (HKLM-x32\...\Flash Player Pro_is1) (Version:  - FlashPlayerPro.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
GoToManage Customer 1.6.0.383 (HKLM-x32\...\GoToAssist Express Customer) (Version: 1.6.0.383 - Citrix Online)
GoToMeeting 5.5.0.1133 (HKCU\...\GoToMeeting) (Version: 5.5.0.1133 - CitrixOnline)
HP Auto (Version: 1.0.12935.3667 - Hewlett-Packard Company) Hidden
HP Client Services (Version: 1.1.12938.3539 - Hewlett-Packard) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.7 - Hewlett-Packard) Hidden
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.4 - WildTangent)
HP LinkUp (HKLM-x32\...\{C1AD9241-3ADD-483F-914D-071F3E50855A}) (Version: 2.01.026 - Hewlett-Packard)
HP MediaSmart/TouchSmart Netflix (HKLM-x32\...\{BB760C1D-98F4-4E38-8CC4-3B67329AA981}) (Version: 1.0.6.0 - Hewlett-Packard)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard)
HP MovieStore (x32 Version: 1.0.045 - Hewlett-Packard) Hidden
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{210A03F5-B2ED-4947-B27E-516F50CBB292}) (Version: 8.6.4530.3651 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13253.3682 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}) (Version: 10.1.1000 - Hewlett-Packard)
HP Update (HKLM-x32\...\{DE77FE3F-A33D-499A-87AD-5FC406617B40}) (Version: 5.002.003.003 - Hewlett-Packard)
HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.5.0.0 - Hewlett-Packard)
Hulu Desktop (HKCU\...\HuluDesktop) (Version: 0.9.13 - Hulu LLC)
HydraVision (x32 Version: 4.2.188.0 - ATI Technologies Inc.) Hidden
iTunes (HKLM\...\{427174C0-096E-40D9-9684-9C109BEE2CBF}) (Version: 11.0.5.5 - Apple Inc.)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
join.me (HKCU\...\JoinMe) (Version: 1.8.0.108 - LogMeIn, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kobo (HKLM-x32\...\Kobo) (Version: 1.6 - Kobo Inc.)
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3609 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.3609 - CyberLink Corp.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
LogMeIn (HKLM-x32\...\{EE4CA5AF-4A55-418C-8CB8-74435814207B}) (Version: 4.1.2450 - LogMeIn, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.3.188.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook 2007 (HKLM-x32\...\OUTLOOK) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Outlook 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual Basic Power Packs 3.0 (HKLM-x32\...\{7B4D193B-D76D-308B-8B12-5D9BB1CBCE6C}) (Version: 9.0.30214 - Microsoft)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 (HKLM-x32\...\{EDEA8AB7-7683-4ED2-AA19-E6C078064C0D}) (Version: 3.0.5305.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.) Hidden
Mikogo (HKCU\...\Mikogo) (Version: 5.0.0 - Mikogo GmbH)
Mozilla Firefox 28.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MySQL Connector/ODBC 5.1 (HKLM\...\{29042B1C-0713-4575-B7CA-5C8E7B0899D4}) (Version: 5.1.6 - MySQL AB)
OpenOffice.org 3.3 (HKLM-x32\...\{3E171899-0175-47CC-84C4-562ACDD4C021}) (Version: 3.3.9567 - OpenOffice.org)
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.35 - PDF Complete, Inc)
PDF Report Writer (novaPDF 6.4  printer) (HKLM\...\PDF Report Writer_is1) (Version:  - Softland)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.8 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4817 - CyberLink Corp.)
Power2Go (x32 Version: 6.1.4817 - CyberLink Corp.) Hidden
Premium Support Remote Access (HKLM-x32\...\{C2835850-FCEB-4A1A-A213-57E7A9A8EC62}) (Version: 7.0.454 - LogMeIn, Inc.)
PressReader (HKLM-x32\...\{912CED74-88D3-4C5B-ACB0-132318649765}) (Version: 5.10.1217.0 -  NewspaperDirect Inc.)
QuickBooks (x32 Version: 21.0.4014.904 - Intuit Inc.) Hidden
QuickBooks Pro 2011 (HKLM-x32\...\{11E0AC7D-6822-4F67-865F-EE1C13D28C38}) (Version: 21.0.4014.904 - Intuit Inc.)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Recovery Manager (x32 Version: 5.5.3621 - CyberLink Corp.) Hidden
Remote Graphics Receiver (HKLM-x32\...\{16FC3056-90C0-4757-8A68-64D8DA846ADA}) (Version: 5.4.5 - Hewlett-Packard)
RoboForm 7-7-9-9 (All Users) (HKLM-x32\...\AI RoboForm) (Version: 7-7-9-9 - Siber Systems)
RoxioNow Player (HKLM-x32\...\{0EDEB615-1A60-425E-8306-0E10519C7B55}) (Version: 1.9.5.103 - RoxioNow)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Slingo Supreme (x32 Version: 2.2.0.95 - WildTangent) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_OUTLOOK_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_OUTLOOK_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_OUTLOOK_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_OUTLOOK_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0000-0000-0000000FF1CE}_OUTLOOK_{B2260BC9-D561-46EE-B33D-739CF760A2A9}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_OUTLOOK_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VBA (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden
WildTangent Games App (HP Games) (x32 Version: 4.0.5.2 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Zinio Reader 4 (HKLM-x32\...\ZinioReader4.9310D8F796442B71068C511E15D70529A702D19D.1) (Version: 4.0.3184 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.0.3184 - Zinio LLC) Hidden
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
 
========================= Memory info: ===================================
 
Percentage of memory in use: 15%
Total physical RAM: 16383.29 MB
Available physical RAM: 13851.7 MB
Total Pagefile: 32764.75 MB
Available Pagefile: 29964.54 MB
Total Virtual: 4095.88 MB
Available Virtual: 3981.45 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:920.27 GB) (Free:590.51 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:11.15 GB) (Free:1.33 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\CAD4-HP
 
Administrator            CAD4                     Guest                    
PowerCAD                 PowerTech                RickP                    
Ron                      Shealynn                 Tristan                  
Yvonne                   
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****


#12 PowerCAD

PowerCAD
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Incline Village, Nevada
  • Local time:06:23 PM

Posted 06 September 2014 - 04:04 AM

Hello again.  My laptop is having major issues.  It is dog slow on the internet and i get a lot of popups.  I ran the mintotolbox and here are the results.  This computer is called "Stillman-PC".  I'll run MBAM and TDSSKiiller next.  should we make this another topic so we don't get the computers mixed up?

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Yvonne (administrator) on 06-09-2014 at 01:54:32
Running from "C:\Users\Yvonne\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Qualcomm Atheros AR5B93 Wireless Network Adapter = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Stillman-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.ca.comcast.net.
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : 00-26-2D-A5-F3-9C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 22-7C-8F-00-2A-8E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : hsd1.ca.comcast.net.
   Description . . . . . . . . . . . : Qualcomm Atheros AR5B93 Wireless Network Adapter
   Physical Address. . . . . . . . . : 20-7C-8F-00-2A-8E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2601:9:3780:274:1d94:bca:7223:79c5(Preferred) 
   Temporary IPv6 Address. . . . . . : 2601:9:3780:274:61b5:7a88:18eb:e6a6(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::1d94:bca:7223:79c5%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 10.0.0.11(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, September 06, 2014 1:38:37 AM
   Lease Expires . . . . . . . . . . : Saturday, September 13, 2014 1:38:37 AM
   Default Gateway . . . . . . . . . : fe80::21d:d5ff:fea0:6831%10
                                       10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 186678415
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-AA-95-73-20-7C-8F-00-2A-8E
   DNS Servers . . . . . . . . . . . : 2001:558:feed::1
                                       2001:558:feed::2
                                       75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.gateway.2wire.net:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns01.comcast.net
Address:  2001:558:feed::1
 
Name:    google.com
Addresses:  2607:f8b0:4005:800::1000
 74.125.239.34
 74.125.239.38
 74.125.239.37
 74.125.239.41
 74.125.239.39
 74.125.239.35
 74.125.239.33
 74.125.239.46
 74.125.239.40
 74.125.239.36
 74.125.239.32
 
 
Pinging google.com [2607:f8b0:4010:801::1003] with 32 bytes of data:
Reply from 2607:f8b0:4010:801::1003: time=35ms 
Reply from 2607:f8b0:4010:801::1003: time=32ms 
 
Ping statistics for 2607:f8b0:4010:801::1003:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 32ms, Maximum = 35ms, Average = 33ms
Server:  cdns01.comcast.net
Address:  2001:558:feed::1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.139.183.24
 98.138.253.109
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=55ms TTL=50
Reply from 206.190.36.45: bytes=32 time=36ms TTL=50
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 36ms, Maximum = 55ms, Average = 45ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 16...00 26 2d a5 f3 9c ......Broadcom NetLink ™ Gigabit Ethernet
 13...22 7c 8f 00 2a 8e ......Microsoft Virtual WiFi Miniport Adapter
 10...20 7c 8f 00 2a 8e ......Qualcomm Atheros AR5B93 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1        10.0.0.11     25
         10.0.0.0    255.255.255.0         On-link         10.0.0.11    281
        10.0.0.11  255.255.255.255         On-link         10.0.0.11    281
       10.0.0.255  255.255.255.255         On-link         10.0.0.11    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         10.0.0.11    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         10.0.0.11    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 10    281 ::/0                     fe80::21d:d5ff:fea0:6831
  1    306 ::1/128                  On-link
 10     33 2601:9:3780:274::/64     On-link
 10    281 2601:9:3780:274:1d94:bca:7223:79c5/128
                                    On-link
 10    281 2601:9:3780:274:61b5:7a88:18eb:e6a6/128
                                    On-link
 10    281 fe80::/64                On-link
 10    281 fe80::1d94:bca:7223:79c5/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/06/2014 01:00:19 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e4c2e17a-bebc-4734-a169-ed0670cda803}
 
Error: (09/04/2014 10:55:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2122
 
Error: (09/04/2014 10:55:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2122
 
Error: (09/04/2014 10:55:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (09/04/2014 10:55:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1108
 
Error: (09/04/2014 10:55:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1108
 
Error: (09/04/2014 10:55:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (09/04/2014 09:02:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (08/24/2014 11:32:16 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (08/24/2014 00:41:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
 
System errors:
=============
Error: (09/06/2014 01:53:23 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{A42CD28B-9F1C-428D-8251-9C427E9C428C}.
The backup browser is stopping.
 
Error: (09/06/2014 01:40:44 AM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (09/06/2014 01:40:17 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (09/06/2014 00:52:29 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{A42CD28B-9F1C-428D-8251-9C427E9C428C}.
The backup browser is stopping.
 
Error: (09/06/2014 00:47:23 AM) (Source: Service Control Manager) (User: )
Description: The AdvancedSystemCareAntivirus service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (09/06/2014 00:27:31 AM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (09/04/2014 08:06:18 PM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (09/04/2014 07:55:37 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:31:40 AM on ‎9/‎3/‎2014 was unexpected.
 
Error: (08/20/2014 04:47:40 PM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (08/20/2014 04:24:38 PM) (Source: DCOM) (User: )
Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}
 
 
Microsoft Office Sessions:
=========================
Error: (09/06/2014 01:00:19 AM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {e4c2e17a-bebc-4734-a169-ed0670cda803}
 
Error: (09/04/2014 10:55:20 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2122
 
Error: (09/04/2014 10:55:20 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2122
 
Error: (09/04/2014 10:55:20 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (09/04/2014 10:55:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1108
 
Error: (09/04/2014 10:55:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1108
 
Error: (09/04/2014 10:55:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (09/04/2014 09:02:23 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\IObit\driver booster\DpInst\x64\dpinst.exe
 
Error: (08/24/2014 11:32:16 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\IObit\driver booster\DpInst\x64\dpinst.exe
 
Error: (08/24/2014 00:41:07 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program files\IObit\driver booster\DpInst\x64\dpinst.exe
 
 
 
=========================== Installed Programs ============================
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Photoshop Elements 6.0 (HKLM\...\Adobe Photoshop Elements 6) (Version: 6.0 - Adobe Systems Inc.)
Adobe Photoshop Elements 6.0 (Version: 6.0 - Adobe Systems Inc.) Hidden
Adobe Reader X (10.1.9) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM\...\InstallShield_{6030FCD7-8F1A-427D-AF05-8DD1A2EA2ABA}) (Version: 1.5.17.05094 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (Version: 1.5.17.05094 - Alcor Micro Corp.) Hidden
Apple Application Support (HKLM\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{8F1ADE4D-EFAC-4F5A-B346-23C2687FAF50}) (Version: 5.2.0.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
avast! Internet Security (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BovadaPoker (HKLM\...\{D7CA2DF8-95CE-4C80-9296-98E21219A1E5}}_is1) (Version:   -  )
Brother MFL-Pro Suite MFC-J6910DW (HKLM\...\{17795164-3BC1-4D4F-8ADA-65C895EBFC9A}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CatalystEX 4.3 (HKLM\...\{0FB9CEA7-56AB-45DD-9A0B-0D32C6689736}) (Version: 4.3 - Dimension Printing)
ClubWPT (HKLM\...\ClubWPT) (Version:  - )
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.10.29 - Dropbox, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
iCloud (HKLM\...\{DA7DF8E2-4B8F-4286-97FE-DE3FFFE9B728}) (Version: 1.1.0.40 - Apple Inc.)
Intel® Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2189 - Intel Corporation)
iTunes (HKLM\...\{6AD9F5F3-5BD0-4000-BD9C-B536CF86D988}) (Version: 10.6.3.25 - Apple Inc.)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217040FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 1.1.500.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 1.1.500.0 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Movie Maker (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 31.0 (x86 en-US) (HKLM\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (Version: 16.4.1108.0727 - Microsoft) Hidden
OpenOffice.org 3.3 (HKLM\...\{3E171899-0175-47CC-84C4-562ACDD4C021}) (Version: 3.3.9567 - OpenOffice.org)
Photo Gallery (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
ResumeMaker Professional (HKLM\...\{E0CBBB2C-57FE-40BF-8816-44E3AC6BD2D6}) (Version: 15.0.0 - Individual Software Inc.)
Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
System Requirements Lab CYRI (HKLM\...\{943A8D28-80D6-41DC-AE94-81FEB42041BF}) (Version: 4.5.1.0 - Husdawg, LLC)
Ultimate Poker (HKLM\...\{C7EEE451-8539-4766-83B4-BBDECF94D739}) (Version: 3.0.4273 - Ultimate Gaming)
Windows Live Communications Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 47%
Total physical RAM: 2804.51 MB
Available physical RAM: 1472.63 MB
Total Pagefile: 5607.3 MB
Available Pagefile: 3791.93 MB
Total Virtual: 2047.88 MB
Available Virtual: 1949.38 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:232.79 GB) (Free:110.5 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\STILLMAN-PC
 
Administrator            Guest                    Shealynn                 
Stillman                 Yvonne                   
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****


#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:23 PM

Posted 07 September 2014 - 10:21 AM

Or we do one at a time.

On Stillman-PC, complete the other scans. As I think there are files corrupted and we cannot fix until clean.

CAD4 appears to have no antivirus.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users