Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

not open when double-clicked


  • This topic is locked This topic is locked
17 replies to this topic

#1 bartosm

bartosm

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:10 AM

Posted 20 October 2014 - 07:06 AM

not open when double-clicked and then windows explorer do not work correctly.

Attached Files



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,699 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:10 AM

Posted 25 October 2014 - 07:10 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/552624 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 bartosm

bartosm
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:10 AM

Posted 27 October 2014 - 08:40 AM

Hello
I have win 7 64 bit. I have not original CD or DVD from win.
When double - clic do not work, then do not work ENTER key on keyboord too.
 
If you can any information, then send me e-mail.
 
thx
 
m.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17344 BrowserJavaVersion: 10.67.2
Run by admin at 14:34:09 on 2014-10-27
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1033.18.3793.1472 [GMT 1:00]
.
AV: ESET Endpoint Antivirus 5.0 *Enabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: ESET Endpoint Antivirus 5.0 *Enabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
C:\PROGRAM FILES\COMMON FILES\SIEMENS\ALMPANELPLUGIN\ALMPANELPLUGIN.EXE
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
C:\Program Files\FileOpen\Services\FileOpenManager64.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
C:\Windows\SysWOW64\lkads.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
C:\Windows\SysWOW64\nipalsm.exe
C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe
C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe
C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64X.exe
C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7epasrv64x.exe
C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\PNIOMGR.exe
C:\Windows\SysWOW64\WebUpdateSvc4.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\SysWOW64\lktsrv.exe
C:\Windows\SysWOW64\nidevldu.exe
C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
C:\Windows\SysWOW64\nipxism.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WUDFHost.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\system32\rundll32.exe
C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Lenovo\System Update\SUService.exe
C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Windows\SysWOW64\pniopcac.exe
C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\taskhost.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Lenovo\Access Connections\AcDeskBandHlpr.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\rundll32.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe
C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
C:\Program Files (x86)\Siemens\Automation\Portal V12\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe
C:\Windows\system32\rundll32.exe
C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubTstx.exe
C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe
C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe
C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubtoox.exe
C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe
C:\Program Files (x86)\Common Files\Siemens\Sqlany\dbsrv9.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Common Files\Siemens\SWS\almsrv\almsrvbubble64x.exe
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\consent.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
mWinlogon: Userinit = userinit.exe,
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Partner BHO Class: {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\urlredir.dll
BHO: Symantec VIP Access Add-On: {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAddOnForIE.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: WebTranslator: {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files (x86)\PC Translator\webie.dll
mRun: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"
mRun: [PWMTRV] rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
mRun: [Fastboot] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
mRun: [MobileAccess] C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe -silentExitIfNotFirst
mRun: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
mRun: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
mRun: [SiemensAutomationFileStorage] "C:\Program Files (x86)\Siemens\Automation\Portal V12\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe" preload
mRun: [S7UB Start] "C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB
mRun: [SiemensAutomationFileStorage_TIAP13] "C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe" preload
mRun: [WinCC flexible Smart Start] "C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe" /startup
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [niDevMon] C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe
mRun: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: &Download using ASU_BitsWrapper - C:\Program Files (x86)\Common Files\Siemens\ASU\iecontext.htm
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - {BFC32E1D-EE75-4A48-BC60-104E11EE2431}
IE: {CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Program Files (x86)\PC Translator\webie.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Program Files (x86)\PC Translator\webie.dll
IE: {CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Program Files (x86)\PC Translator\webie.dll
DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab
TCP: NameServer = 10.0.0.138
TCP: Interfaces\{5E76EE3A-99E5-44DD-85ED-88D0E76D871A} : DHCPNameServer = 10.0.0.138
TCP: Interfaces\{5E76EE3A-99E5-44DD-85ED-88D0E76D871A}\64279647A776163747 : DHCPNameServer = 194.25.0.68 194.25.0.68
TCP: Interfaces\{5E76EE3A-99E5-44DD-85ED-88D0E76D871A}\D6164727F637 : DHCPNameServer = 8.8.8.8 8.8.8.4
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
LSA: Notification Packages = scecli C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll ACGina C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll
x64-BHO: Partner BHO Class: {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\urlredir.dll
x64-BHO: Symantec VIP Access Add-On: {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} - C:\Program Files (x86)\Symantec\VIP Access Client\64bit\VIPAddOnForIE64.dll
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-Run: [RtHDVBg_Dolby] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
x64-Run: [TpShocks] TpShocks.exe
x64-Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
x64-Run: [AcWin7Hlpr] C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe
x64-Run: [egui] "C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe" /hide /waitservice
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [MFNetworkScanUtility] C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
x64-Run: [FileOpenBroker] C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-Notify: psfus - C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\nno330qa.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Festo\PARTwebViewer 9.07\32\npwebviewerplugins.dll
FF - plugin: C:\Program Files (x86)\Festo\PARTwebViewer 9.07\64\npwebviewerplugins64.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
.
============= SERVICES / DRIVERS ===============
.
P2 smartserver;Sm@rtServer;C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe [2013-11-16 560864]
R0 DzHDD64;DzHDD64;C:\Windows\System32\drivers\DZHDD64.SYS [2013-7-17 29512]
R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2013-7-17 19224]
R0 nipbcfk;National Instruments Class Upper Filter Driver;C:\Windows\System32\drivers\nipbcfk.sys [2012-12-18 16984]
R0 nipxibaf;National Instruments PXI Bridge Access Driver;C:\Windows\System32\drivers\nipxibaf.sys [2013-2-11 87288]
R0 nipxibrc;National Instruments PXI Bridge Configuration Driver;C:\Windows\System32\drivers\nipxibrc.sys [2013-3-6 70336]
R0 TPDIGIMN;TPDIGIMN;C:\Windows\System32\drivers\ApsHM64.sys [2014-1-29 29496]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2014-7-24 283064]
R1 eamonm;eamonm;C:\Windows\System32\drivers\eamonm.sys [2014-4-10 219696]
R1 PHCORE;PHCORE;C:\Program Files\Lenovo\RapidBoot\PHCORE64.sys [2012-3-27 33344]
R2 aksdf;aksdf;C:\Windows\System32\drivers\aksdf.sys [2014-5-30 91784]
R2 almservice;Automation License Manager Service;C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe [2014-1-13 1563968]
R2 ClickToRunSvc;Služba Klikni a spusti balíka Microsoft Office;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2014-7-18 2436280]
R2 DraftSight API Service;DraftSight API Service;C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2014-6-14 123392]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [2014-4-4 1029704]
R2 epfwwfpr;epfwwfpr;C:\Windows\System32\drivers\epfwwfpr.sys [2013-9-9 147096]
R2 FastbootService;FastbootService;C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2013-7-17 169776]
R2 FileOpenManager;FileOpen Manager Service;C:\Program Files\FileOpen\Services\FileOpenManager64.exe [2014-7-16 341312]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-3 628448]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-7-17 161560]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute;C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2013-7-17 59168]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute;C:\Program Files\Lenovo\HOTKEY\micmute.exe [2014-10-22 110128]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2013-7-17 72992]
R2 LENOVO.TVTVCAM;Lenovo Virtual Camera Controller;C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2013-7-17 197408]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [2014-10-22 115184]
R2 MacheenService;Macheen Service;C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe [2012-7-10 29472]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-21 968504]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-21 1871160]
R2 MSSQL$WINCCFLEXEXPRESS;SQL Server (WINCCFLEXEXPRESS);C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 ni488enumsvc;NI GPIB Enumeration Service;C:\Windows\SysWOW64\nipalsm.exe [2012-1-12 12696]
R2 NIApplicationWebServer;NI Application Web Server;C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2013-6-8 57696]
R2 nidevldu;NI Device Loader;C:\Windows\SysWOW64\nidevldu.exe [2013-3-4 102040]
R2 niLXIDiscovery;NI LXI Discovery Service;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [2012-11-7 236768]
R2 nimDNSResponder;NI mDNS Responder Service;C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2013-5-11 260976]
R2 NINetworkDiscovery;NI Network Discovery;C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [2013-6-19 176512]
R2 nipxirmk;nipxirmk;C:\Windows\System32\drivers\nipxirmkl.sys [2013-3-14 13432]
R2 NISystemWebServer;NI System Web Server;C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [2013-6-8 57680]
R2 NiViPxiK;NI-VISA PXI Driver;C:\Windows\System32\drivers\NiViPxiKl.sys [2013-6-19 15200]
R2 npdrv;npdrv;C:\Windows\System32\drivers\npdrv.sys [2014-7-24 60984]
R2 npdrvfilter;npdrvfilter;C:\Windows\System32\drivers\npdrvfilter.sys [2014-7-24 42040]
R2 risdxc;risdxc;C:\Windows\System32\drivers\risdxc64.sys [2013-7-17 101888]
R2 s7hspsvx;S7 HSP Service;C:\Program Files (x86)\Siemens\Step7\S7BIN\s7hspsvx.exe [2012-12-20 61493]
R2 s7oiehsx64;SIMATIC S7DOS Help Service;C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [2014-6-13 145632]
R2 s7ousbu64x;SIMATIC USB Service;C:\Windows\System32\drivers\s7ousbu64x.sys [2014-2-21 138240]
R2 s7sn2srtx;PROFINET IO RT-Protocol V2.0;C:\Windows\System32\drivers\s7sn2srtx.sys [2012-5-9 83032]
R2 S7TraceServiceX;S7TraceServiceX;C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe [2014-6-13 472288]
R2 TPHKLOAD;Lenovo Hotkey Client Loader;C:\Program Files\Lenovo\HOTKEY\tphkload.exe [2014-10-22 124400]
R2 TPHKSVC;On Screen Display;C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe [2014-10-22 126512]
R2 UA Local Discovery Server;UA Local Discovery Server;C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe [2010-5-5 28160]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-7-17 363800]
R2 VIPAppService;VIPAppService;C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe [2012-4-19 84080]
R2 WebUpdate4;Web Update Wizard Service V4;C:\Windows\SysWOW64\WebUpdateSvc4.exe [2010-8-18 278800]
R2 WMCoreService;Mobile Broadband Service;C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [2013-7-17 689560]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-2-26 2669840]
R3 5U877;5U877;C:\Windows\System32\drivers\5U877.sys [2013-7-17 216064]
R3 dpmconv;SIMATIC NET DP Driver;C:\Windows\System32\drivers\dpmconv.sys [2013-8-7 259584]
R3 ecnssndis; Mobile Broadband Driver;C:\Windows\System32\drivers\wwuss64.sys [2013-7-17 26664]
R3 ecnssndisfltr; Mobile Broadband Driver Filter;C:\Windows\System32\drivers\wwussf64.sys [2013-7-17 29736]
R3 fwkbdrtm;fwkbdrtm;C:\Windows\System32\drivers\fwkbdrtm.sys [2014-7-21 24152]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-7-17 331264]
R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2013-7-17 356632]
R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2013-7-17 789272]
R3 iwdbus;IWD Bus Enumerator;C:\Windows\System32\drivers\iwdbus.sys [2012-4-20 25528]
R3 l36wgps; Mobile Broadband GPS Port;C:\Windows\System32\drivers\l36wgps64.sys [2014-10-22 103184]
R3 l36wscard; Mobile Broadband USIM Port;C:\Windows\System32\drivers\l36wscard.sys [2014-10-22 61992]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-10-21 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-10-21 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-10-21 63704]
R3 Mbm3CBus;H5321 gw Mobile Broadband Device (WDM);C:\Windows\System32\drivers\Mbm3CBus.sys [2014-10-22 443208]
R3 Mbm3DevMt; Mobile Broadband Device Management Driver (WDM);C:\Windows\System32\drivers\Mbm3DevMt.sys [2014-10-22 453960]
R3 Mbm3mdfl; Mobile Broadband Modem Port Filter;C:\Windows\System32\drivers\Mbm3mdfl.sys [2014-10-22 21832]
R3 Mbm3Mdm; Mobile Broadband Modem Port Driver;C:\Windows\System32\drivers\Mbm3Mdm.sys [2014-10-22 506184]
R3 nidimk;nidimk;C:\Windows\System32\drivers\nidimkl.sys [2012-6-28 13000]
R3 NIEthernetDeviceEnumerator;NI Ethernet Device Enumerator Driver;C:\Windows\System32\drivers\niede.sys [2012-1-12 38064]
R3 nimru2k;nimru2k;C:\Windows\System32\drivers\nimru2kl.sys [2012-6-28 13008]
R3 NiViPciK;NI-VISA PCI Driver;C:\Windows\System32\drivers\NiViPciKl.sys [2013-6-19 15200]
R3 Power Manager DBC Service;Power Manager Service;C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe [2013-7-17 1668896]
R3 s7odpx2x64;SIMATIC Knotentaufe;C:\Windows\System32\drivers\s7odpx2x64.sys [2014-4-17 71680]
R3 s7oppinx64;SIMATIC PPI Transport;C:\Windows\System32\drivers\s7oppinx64.sys [2014-4-17 107520]
R3 s7oserix64;Siemens PC Serial Cable;C:\Windows\System32\drivers\s7oserix64.sys [2014-4-17 123392]
R3 s7osmcax64;SIMATIC PC Adapter RS232;C:\Windows\System32\drivers\s7osmcax64.sys [2012-7-24 199680]
R3 s7osobux64;SIMATIC SoftBus;C:\Windows\System32\drivers\s7osobux64.sys [2012-7-24 153600]
R3 s7otmcd64x;SIMATIC Memory Cards;C:\Windows\System32\drivers\s7otmcd64x.sys [2012-7-24 199680]
R3 s7otranx64;SIMATIC Transport;C:\Windows\System32\drivers\s7otranx64.sys [2014-3-7 262656]
R3 s7otsadx64;SIMATIC TS Adapter RS232;C:\Windows\System32\drivers\s7otsadx64.sys [2012-7-24 196096]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2014-10-22 45296]
R3 TVTI2C;Lenovo SM bus driver;C:\Windows\System32\drivers\tvti2c.sys [2012-2-7 40248]
R3 tvtvcamd;ThinkVantage Virtual Camera;C:\Windows\System32\drivers\tvtvcamd.sys [2013-7-17 27432]
R3 vsnl2ada;SIMATIC NET FDL Driver;C:\Windows\System32\drivers\vsnl2ada.sys [2013-8-7 128000]
R3 WwanUsbServ;Mobile Broadband Driver;C:\Windows\System32\drivers\WwanUsbMp64.sys [2013-11-22 284912]
S2 CCDBUtils;CCDBUtils;C:\Program Files (x86)\Common Files\Siemens\commonarchiving\CCDBUtils.exe [2012-7-26 102400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 HyperW7Svc;HyperW7 Service;C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2012-5-29 144992]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;C:\Windows\System32\drivers\bcbtums.sys [2013-7-17 163368]
S3 btwampfl;btwampfl Bluetooth filter driver;C:\Windows\System32\drivers\btwampfl.sys [2013-7-17 594472]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2013-7-17 39976]
S3 CCArchiveManagerService;CCArchiveManagerService;C:\Program Files (x86)\Common Files\Siemens\commonarchiving\CCArchiveManager.exe [2012-7-26 761856]
S3 CCRedundancyAgent-Service;CCRedundancyAgent-Service;C:\Program Files (x86)\Common Files\Siemens\commonarchiving\CCRedundancyAgent.exe [2012-7-26 856064]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2014-8-12 110336]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 DozeSvc;Lenovo Doze Mode Service;C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [2013-7-17 319536]
S3 dpmcslv;dpmcslv;C:\Windows\System32\drivers\dpmcslv.sys [2005-7-4 68280]
S3 EPLAN Client Service;EPLAN Client Service;C:\Program Files\EPLAN\Common\EClientService.exe [2014-7-21 549800]
S3 ESHASRV;ESET SHA Service;C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [2014-4-4 191368]
S3 Fastboot;Fastboot;C:\Windows\System32\drivers\Fastboot.sys [2013-7-17 70416]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-9-4 1431888]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-10-17 111616]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\Windows\System32\drivers\intelaud.sys [2012-4-20 35256]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot;C:\Program Files (x86)\Common Files\Lenovo\easyplussdk\bin\EPHotspot64.exe [2014-10-22 559872]
S3 LSCWinService;LSCWinService;C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-9-3 272776]
S3 lvalarmk;lvalarmk;C:\Windows\System32\drivers\lvalarmk.sys [2013-6-17 27528]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-2-26 273168]
S3 ni1006k;NI PXI-1006 Chassis Pilot;C:\Windows\System32\drivers\ni1006k.sys [2013-2-12 30800]
S3 ni1045k;NI PXI-1045 Chassis Pilot;C:\Windows\System32\drivers\ni1045kl.sys [2013-2-12 12984]
S3 ni1065k;NI PXIe-1065 Chassis Pilot;C:\Windows\System32\drivers\ni1065k.sys [2013-2-12 27832]
S3 nicdcck;nicdcck;C:\Windows\System32\drivers\nicdcckl.sys [2012-7-23 12992]
S3 nicdrk;nicdrk;C:\Windows\System32\drivers\nicdrkl.sys [2011-7-21 11864]
S3 nicmrk;nicmrk;C:\Windows\System32\drivers\nicmrkl.sys [2013-6-25 13456]
S3 nicondrk;nicondrk;C:\Windows\System32\drivers\nicondrkl.sys [2013-6-25 13416]
S3 nicsrk;nicsrk;C:\Windows\System32\drivers\nicsrkl.sys [2013-6-25 15176]
S3 nidmxfk;nidmxfk;C:\Windows\System32\drivers\nidmxfkl.sys [2013-3-4 13416]
S3 nidsark;nidsark;C:\Windows\System32\drivers\nidsarkl.sys [2013-2-13 13432]
S3 niemrk;niemrk;C:\Windows\System32\drivers\niemrkl.sys [2013-6-25 15176]
S3 niesrk;niesrk;C:\Windows\System32\drivers\niesrkl.sys [2013-6-25 15176]
S3 nifslk;nifslk;C:\Windows\System32\drivers\nifslkl.sys [2013-2-13 13432]
S3 nimsdrk;nimsdrk;C:\Windows\System32\drivers\nimsdrkl.sys [2013-3-4 13480]
S3 nimstsk;nimstsk;C:\Windows\System32\drivers\nimstskl.sys [2013-3-4 13448]
S3 nimxpk;nimxpk;C:\Windows\System32\drivers\nimxpkl.sys [2013-3-4 13448]
S3 ninshsdk;ninshsdk;C:\Windows\System32\drivers\ninshsdkl.sys [2012-10-9 13000]
S3 nipalfwedl;nipalfwedl;C:\Windows\System32\drivers\nipalfwedl.sys [2012-12-19 13624]
S3 nipalusbedl;nipalusbedl;C:\Windows\System32\drivers\nipalusbedl.sys [2012-12-19 13624]
S3 nipxigpk;NI PXI Generic Chassis Pilot;C:\Windows\System32\drivers\nipxigpk.sys [2011-8-9 22680]
S3 niraptrk;niraptrk;C:\Windows\System32\drivers\niraptrkl.sys [2013-6-25 15176]
S3 niscdk;niscdk;C:\Windows\System32\drivers\niscdkl.sys [2012-3-7 12984]
S3 nisdigk;nisdigk;C:\Windows\System32\drivers\nisdigkl.sys [2012-7-2 12960]
S3 nisftk;nisftk;C:\Windows\System32\drivers\nisftkl.sys [2012-6-1 12952]
S3 nispdk;nispdk;C:\Windows\System32\drivers\nispdkl.sys [2012-3-7 12984]
S3 nissrk;nissrk;C:\Windows\System32\drivers\nissrkl.sys [2013-6-25 15176]
S3 nistc2k;nistc2k;C:\Windows\System32\drivers\nistc2kl.sys [2009-1-5 11824]
S3 nistc3rk;nistc3rk;C:\Windows\System32\drivers\nistc3rkl.sys [2013-2-7 13416]
S3 nistcrk;nistcrk;C:\Windows\System32\drivers\nistcrkl.sys [2011-7-18 12968]
S3 niswdk;niswdk;C:\Windows\System32\drivers\niswdkl.sys [2013-5-24 15176]
S3 nitiork;nitiork;C:\Windows\System32\drivers\nitiorkl.sys [2013-2-7 13440]
S3 niufurk;niufurk;C:\Windows\System32\drivers\niufurkl.sys [2012-10-8 13008]
S3 niwfrk;niwfrk;C:\Windows\System32\drivers\niwfrkl.sys [2013-6-25 15176]
S3 nixsrk;nixsrk;C:\Windows\System32\drivers\nixsrkl.sys [2013-6-25 15176]
S3 Partner Service;Partner Service;C:\ProgramData\Partner\Partner.exe [2013-7-17 332272]
S3 PwmEWSvc;Cisco EnergyWise Enabler;C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.exe [2013-7-17 1664800]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-7-18 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2014-8-12 206080]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-7-18 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2014-7-18 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-7-18 1255736]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit);C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2013-6-8 81248]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2014-10-23 15:14:30 -------- d-----w- C:\Users\admin\AppData\Roaming\LSC
2014-10-22 20:24:44 -------- d-----w- C:\DRIVERS
2014-10-22 20:22:54 443208 ----a-w- C:\Windows\System32\drivers\Mbm3CBus.sys
2014-10-22 20:22:54 17736 ----a-w- C:\Windows\System32\drivers\Mbm3whnt.sys
2014-10-22 20:22:54 17736 ----a-w- C:\Windows\System32\drivers\Mbm3wh.sys
2014-10-22 20:22:46 61992 ----a-w- C:\Windows\System32\drivers\l36wscard.sys
2014-10-22 20:22:46 103184 ----a-w- C:\Windows\System32\drivers\l36wgps64.sys
2014-10-22 20:22:45 506184 ----a-w- C:\Windows\System32\drivers\Mbm3Mdm.sys
2014-10-22 20:22:45 453960 ----a-w- C:\Windows\System32\drivers\Mbm3DevMt.sys
2014-10-22 20:22:45 21832 ----a-w- C:\Windows\System32\drivers\Mbm3mdfl.sys
2014-10-22 20:22:45 17224 ----a-w- C:\Windows\System32\drivers\Mbm3cmnt.sys
2014-10-22 20:22:45 17224 ----a-w- C:\Windows\System32\drivers\Mbm3cm.sys
2014-10-22 20:21:43 536304 ----a-w- C:\Windows\SysWow64\SynCOM.dll
2014-10-22 20:21:43 461552 ----a-w- C:\Windows\System32\drivers\SynTP.sys
2014-10-22 20:21:43 224496 ----a-w- C:\Windows\System32\SynTPAPI.dll
2014-10-22 20:21:43 173808 ----a-w- C:\Windows\System32\SynTPCo14.dll
2014-10-22 20:21:43 114416 ----a-w- C:\Windows\SysWow64\SynTPCOM.dll
2014-10-22 20:21:42 45296 ----a-w- C:\Windows\System32\drivers\Smb_driver_Intel.sys
2014-10-22 20:21:05 -------- d-----w- C:\Program Files (x86)\Dolby Advanced Audio v2
2014-10-22 20:16:34 77088 ----a-w- C:\Windows\System32\ibmpmsvc.exe
2014-10-22 20:16:34 72480 ----a-w- C:\Windows\System32\ibmpmctl.exe
2014-10-22 20:16:34 59128 ----a-w- C:\Windows\System32\drivers\ibmpmdrv.sys
2014-10-22 20:16:34 40224 ----a-w- C:\Windows\System32\tpinspm.dll
2014-10-22 19:18:07 -------- d-----w- C:\Program Files (x86)\FileOpen
2014-10-22 19:18:05 -------- d-----w- C:\Program Files\FileOpen
2014-10-21 11:11:41 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-10-21 11:11:18 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-10-21 11:11:18 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-10-21 11:11:18 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-10-21 11:11:18 -------- d-----w- C:\ProgramData\Malwarebytes
2014-10-21 11:11:18 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-20 09:46:20 -------- d-----w- C:\Users\admin\AppData\Roaming\LavasoftStatistics
2014-10-20 08:28:37 -------- d-----w- C:\Program Files (x86)\Festo
2014-10-17 06:00:28 2777088 ----a-w- C:\Windows\System32\msmpeg2vdec.dll
2014-10-17 06:00:28 2285056 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2014-10-17 05:54:59 793600 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-10-17 05:53:15 424448 ----a-w- C:\Windows\System32\rastls.dll
2014-10-17 05:53:15 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2014-10-17 05:50:11 6584320 ----a-w- C:\Windows\System32\mstscax.dll
2014-10-17 05:50:11 5703168 ----a-w- C:\Windows\SysWow64\mstscax.dll
2014-10-17 05:48:50 77312 ----a-w- C:\Windows\System32\packager.dll
2014-10-17 05:48:50 67072 ----a-w- C:\Windows\SysWow64\packager.dll
2014-10-17 05:48:48 404480 ----a-w- C:\Windows\System32\gdi32.dll
2014-10-17 05:48:48 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2014-10-17 05:42:10 2620928 ----a-w- C:\Windows\System32\wucltux.dll
2014-10-17 05:42:02 97792 ----a-w- C:\Windows\System32\wudriver.dll
2014-10-17 05:42:02 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
2014-10-17 05:41:56 36864 ----a-w- C:\Windows\System32\wuapp.exe
2014-10-17 05:41:56 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
2014-10-17 05:41:56 198600 ----a-w- C:\Windows\System32\wuwebv.dll
2014-10-17 05:41:56 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
2014-10-17 05:41:12 -------- d-----w- C:\Windows\System32\appmgmt
2014-10-16 05:56:47 220784 ----a-w- C:\Program Files (x86)\Mozilla Firefox\sandboxbroker.dll
2014-10-14 09:21:02 -------- d-----w- C:\Users\admin\AppData\Local\Siemens_AG
2014-10-14 08:18:00 -------- d-----w- C:\Users\admin\AppData\Roaming\FileOpen
2014-10-14 08:18:00 -------- d-----w- C:\ProgramData\FileOpen
2014-09-29 08:12:06 -------- d-----w- C:\testok_data
.
==================== Find3M ====================
.
2014-09-29 00:58:48 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-09-25 22:32:04 2017280 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-09-25 22:31:02 2108416 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-09-25 02:08:38 371712 ----a-w- C:\Windows\System32\qdvd.dll
2014-09-25 01:40:50 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2014-09-19 01:56:02 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-09-19 01:55:49 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-09-19 01:40:43 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-09-19 01:40:03 547328 ----a-w- C:\Windows\System32\vbscript.dll
2014-09-19 01:39:58 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-09-19 01:38:27 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll
2014-09-19 01:36:57 5829632 ----a-w- C:\Windows\System32\jscript9.dll
2014-09-19 01:26:00 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-09-19 01:25:49 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-09-19 01:25:12 4201472 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-09-19 01:25:09 758272 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-09-19 01:18:02 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-09-19 01:14:57 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-09-19 01:06:47 72704 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-09-19 01:02:07 454656 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-09-19 01:01:47 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-09-19 01:01:03 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-09-19 00:59:40 61952 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2014-09-19 00:50:16 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-09-19 00:49:31 597504 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-09-19 00:40:12 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-09-19 00:36:23 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-09-19 00:33:18 2309632 ----a-w- C:\Windows\System32\wininet.dll
2014-09-19 00:18:55 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-09-18 23:59:11 1810944 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-09-18 02:00:42 3241472 ----a-w- C:\Windows\System32\msi.dll
2014-09-18 01:32:52 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2014-09-10 08:50:41 4 ----a-w- C:\Project Manager.reg
2014-09-10 04:06:00 29512 ----a-w- C:\Windows\System32\drivers\DZHDD64.SYS
2014-09-10 04:06:00 2861344 ----a-w- C:\Windows\System32\PWMCP64V.cpl
2014-09-10 04:06:00 2692896 ------w- C:\Windows\PWMBTHLV.EXE
2014-09-10 04:06:00 20736 ----a-w- C:\Windows\System32\drivers\TPPWR64V.SYS
2014-09-09 22:11:04 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-09-09 21:47:10 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-08-29 02:07:13 3179520 ----a-w- C:\Windows\System32\rdpcorets.dll
2014-08-11 14:18:41 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-08-01 11:53:22 1031168 ----a-w- C:\Windows\System32\TSWorkspace.dll
.
============= FINISH: 14:35:34,15 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 18. 7. 2014 14:40:37
System Uptime: 22. 10. 2014 22:32:40 (112 hours ago)
.
Motherboard: LENOVO | | 24296KG
Processor: Intel® Core™ i7-3520M CPU @ 2.90GHz | CPU Socket - U3E1 | 1189/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 447 GiB total, 299,565 GiB free.
Q: is FIXED (NTFS) - 18 GiB total, 6,141 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description: Seagate BlackArmor NAS 2D
Device ID: UUID:730BB733-0FA7-4B10-8842-001075388A30\UMB\3&6486BB1&0&UUID:730BB733-0FA7-4B10-8842-001075388A30
Manufacturer:
Name: Seagate BlackArmor NAS 2D
PNP Device ID: UUID:730BB733-0FA7-4B10-8842-001075388A30\UMB\3&6486BB1&0&UUID:730BB733-0FA7-4B10-8842-001075388A30
Service:
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
7-Zip 9.20 (x64 edition)
ACCON-S7-NET
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 14 Plugin
Adobe Reader XI (11.0.09) - Slovak
Automation Software Updater
Canon Lite Driver
Canon MF5900 Series
CDBurnerXP
Compatibility Check Tool TIA - TIACOMPCHECK Single SetupPackage V11.0 + SP1
Corel WinDVD
Create Recovery Media
CutePDF Writer 3.0
D3DX10
DAEMON Tools Lite
Datasnip Serial to Keyboard redirection
Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7
DL Wedge Emulation Utility 2.01
Dolby Advanced Audio v2
Draft IT
DraftSight x64
EB8000V4.65.08
EBpro V4.10.05
eDrawings 2014 x64
EPLAN Electric P8 2.3
EPLAN Electric P8 Data 2.3
EPLAN Help en-US 2.3
EPLAN License Client
EPLAN Platform 2.3
EPLAN Platform Data 2.3
ESET Endpoint Antivirus
Evernote v. 4.2.3
FastStone Image Viewer 5.1
Festo PARTwebViewer 9.07
FileOpen Client (x64) B945
FileZilla Client 3.9.0.1
Google Toolbar for Internet Explorer
Google Update Helper
Integrated Camera Driver Installer Package Ver.1.2.1.16
Intel AppUp(SM) center
Intel PROSet Wireless
Intel® Control Center
Intel® Management Engine Components
Intel® OpenCL CPU Runtime
Intel® Processor Graphics
Intel® USB 3.0 eXtensible Host Controller Driver
Intel® WiDi
Intel® Wireless Display
Intel® PROSet/Wireless WiFi Software
Intel® Trusted Connect Service Client
IV-Navigator
Java 7 Update 67
Java Auto Updater
Juniper Networks Network Connect 6.5.0
Juniper Networks Setup Client
Juniper Networks Setup Client Activex Control
Junk Mail filter update
K-Lite Codec Pack 10.6.0 Standard
Lenovo Auto Scroll Utility
Lenovo Communications Utility
Lenovo Mobile Access
Lenovo Mobile Broadband Activation
Lenovo Patch Utility
Lenovo Patch Utility 64 bit
Lenovo Power Management Driver
Lenovo Registration
Lenovo SimpleTap
Lenovo Solution Center
Lenovo User Guide
Lenovo Warranty Information
Lenovo Welcome
Malwarebytes Anti-Malware verzia 2.0.3.1025
Math Kernel Libraries
Math Kernel Libraries (64-bit)
Mesh Runtime
Message Center Plus
Metric Collection SDK 35
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 (CSY)
Microsoft .NET Framework 4.5.1 (èeština)
Microsoft Application Error Reporting
Microsoft Office 2013 pre podnikate¾ov - sk-sk
Microsoft OneDrive
Microsoft Primary Interoperability Assemblies 2005
Microsoft Silverlight
Microsoft Silverlight 5.1
Microsoft SOAP Toolkit 3.0
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server 2005 Express Edition (WINCCFLEXEXPRESS)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Mobile Broadband Drivers
Mozilla Firefox 33.0 (x86 sk)
Mozilla Maintenance Service
Mozilla Thunderbird 24.4.0 (x86 sk)
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
National Instruments Software
NCM GPRS 64
NI-488.2 3.1.1
NI-488.2 3.1.1 Development Support
NI-488.2 64-bit Provider for MAX version 3.1.1
NI-488.2 for Windows x64 version 3.1.1
NI-488.2 Provider for MAX version 3.1.1
NI-579x Configuration API 12.1
NI-APAL 2.3 64-Bit Error Files
NI-APAL 2.3 Error Files
NI-APAL 2.3 Error Files for LabVIEW RT
NI-Common Instrument Design Libraries 12.1
NI-DAQ INF Files 19.7.5
NI-DAQmx 653x Installer 1.9.7
NI-DAQmx 653x Installer for 64 Bit Windows 1.9.7
NI-DAQmx 9.7.5
NI-DAQmx ADE Support 9.7.5
NI-DAQmx and NI-DAQ Common Documents 9.7.5
NI-DAQmx C and VB6 API 2.9.0
NI-DAQmx Common Digital 2.0.0
NI-DAQmx Common Digital for 64 Bit Windows 2.0.0
NI-DAQmx DAQ Assistant 2.6.0
NI-DAQmx DAQ Assistant 64-bit 2.6.0
NI-DAQmx Documentation 9.7.5
NI-DAQmx Documentation for 64 bit Windows 9.7.5
NI-DAQmx Dynamic Signal Acquisition for 64 Bit Windows 2.6.0
NI-DAQmx Dynamic Signal Acquisition Installer 2.6.0
NI-DAQmx FSL Installer 2.3.0
NI-DAQmx FSL Installer for 64-Bit Windows 2.3.0
NI-DAQmx MAX Configuration Support 9.7.5
NI-DAQmx MAX Support 64-bit 2.8.0
NI-DAQmx MIO Device Drivers 2.10.5
NI-DAQmx MIO Device Drivers for 64 Bit Windows 2.10.5
NI-DAQmx MX Expert Framework 2.14.0
NI-DAQmx MX Expert Framework for 64 Bit Windows 2.14.0
NI-DAQmx SCXI 2.1.1
NI-DAQmx SCXI for 64 Bit Windows 2.1.1
NI-DAQmx STC 1.11.0
NI-DAQmx STC for 64 Bit Windows 1.11.0
NI-DAQmx support for LabVIEW 2.7.0
NI-DAQmx Switch Core 2.5.1
NI-DAQmx Switch Core for 64 Bit Windows 2.5.1
NI-DAQmx Timing for 64 Bit Windows 2.7.0
NI-DAQmx Timing Installer 2.7.0
NI-DAQmx/LabVIEW shared documentation 9.7.5
NI-DAQmx/LabVIEW shared documentation for 64 Bit Windows 9.7.5
NI-DIM 3.0.0f0
NI-DIM 3.0.0f0 for 64 Bit Windows
NI-MDBG 3.0.0f0
NI-MDBG 3.0.0f0 for 64 Bit Windows
NI-Mesa
NI-MRU 3.0.0f0
NI-MRU 3.0.0f0 for 64 Bit Windows
NI-MXDF 3.0.0f0
NI-MXDF 3.0.0f0 for 64 Bit Windows
NI-MXLC Core (32-bit)
NI-MXLC Core (64-bit)
NI-MXLC LabVIEW 2010 Support
NI-MXLC LabVIEW 2011 Support
NI-MXLC LabVIEW 2012 Support
NI-MXLC LabVIEW 2013 Support
NI-ORB 3.0
NI-ORB 3.0 for 64-bit Windows
NI-PAL 2.9.1 64-Bit Error Files
NI-PAL 2.9.1 Error Files
NI-PAL 2.9.1f0
NI-PAL 2.9.1f0 for 64 Bit Windows
NI-RPC 4.3.0f0 for Phar Lap ETS
NI-RPC 4.4.0f0
NI-RPC 4.4.0f0 for 64 Bit Windows
NI-RPC 4.4.0f0 for Phar Lap ETS
NI-VISA 5.4.0
NI-VISA 5.4.0 64-bit Support
NI-VISA 5.4.0 MAX Provider
NI-VISA 5.4.0 Provider 64-bit Support
NI-VISA Runtime 5.4.0
NI-VISA Server 5.4.0
NI-VISA x64 support 5.4.0
NI .NET Framework 4.0
NI ActiveX Container
NI ActiveX Container (64-bit)
NI AFW Custom UI
NI AFW Custom UI Assemblies
NI AFW Channel Configuration Tool
NI AFW UI Assemblies
NI Assistant Framework
NI Assistant Framework 64-bit
NI Assistant Framework LabVIEW 2012 Support
NI Assistant Framework LabVIEW Code Generator 2012
NI Atomic PXIe Peripheral Module Driver 2.3.1
NI Authentication 13.0.0
NI Authentication 13.0.0 (64-bit)
NI Certificates Deployment Support
NI CodeSignAPI
NI CompactRIO Module Config API Runtime 13.0
NI Curl 13.0.0
NI Curl 13.0.0 (64-bit)
NI Customer Experience Improvement Program
NI DataSocket 5.0
NI DataSocket 5.0 (64-bit)
NI Distributed System Manager 2012
NI DN 2.0 SP1 installer
NI Error Reporting 2013
NI Error Reporting Interface Installer 5.5
NI Error Reporting Interface Installer 5.5 for Windows 64-bit
NI Ethernet Device Enumerator
NI Ethernet Device Enumerator 64-Bit
NI EulaDepot
NI Example Finder 12.0
NI GMP Windows 32-bit Installer 13.0.0
NI GMP Windows 64-bit Installer 13.0.0
NI Help Assistant 2.0
NI Help Assistant 2.0 (64bit)
NI Help Configuration Utility for VS2010
NI I/O Trace 3.1.0
NI I/O Trace API for LabVIEW 2012 (32-bit)
NI Instrument I/O Assistant
NI Instrument IO Assistant for LabVIEW 2012 32-bit
NI LabVIEW 2011 Real-Time NBFifo
NI LabVIEW 2012 Database Connectivity Toolkit
NI LabVIEW 2012 Database Connectivity Toolkit License
NI LabVIEW 2012 Help
NI LabVIEW 2012 Help File
NI LabVIEW 2012 Manuals
NI LabVIEW 2012 Real-Time NBFifo
NI LabVIEW 2012 Run-Time Engine Web Server
NI LabVIEW 2012 Scripting Code Generator
NI LabVIEW 2012 Search
NI LabVIEW 2012 Simulation
NI LabVIEW 2012 SP1
NI LabVIEW 2012 SP1 (32-bit)
NI LabVIEW 2012 SP1 Deployable License
NI LabVIEW 2012 SP1 License
NI LabVIEW 2012 SP1 MeasAppChm File
NI LabVIEW 2012 SP1 Run-Time Engine Non-English Support.
NI LabVIEW 2012 SP1 Variable Web Service
NI LabVIEW 2012 SP1 Web Server
NI LabVIEW 2013 Deployment Framework
NI LabVIEW 2013 Real-Time Error Dialog
NI LabVIEW Broker
NI LabVIEW Broker (64 bit)
NI LabVIEW C Interface
NI LabVIEW Compare Utility 12.0.0
NI LabVIEW Deployable License 8.0
NI LabVIEW MAX XML
NI LabVIEW Merge Utility 2012 SP1
NI LabVIEW Run-Time Engine 2011 SP1
NI LabVIEW Run-Time Engine 2012 SP1 f3
NI LabVIEW Run-Time Engine 8.0
NI LabVIEW Run-Time Engine Interop 2011
NI LabVIEW Run-Time Engine Interop 2012 SP1
NI LabVIEW Web Server for Run-Time Engine
NI LabVIEW Web Services Runtime
NI LabWindows/CVI 2010 LabVIEW DLL Builder
NI LabWindows/CVI 2010 SP1 Analysis Library
NI LabWindows/CVI 2010 SP1 Analysis Library (64-bit)
NI LabWindows/CVI 2010 SP1 Code Generator
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Original)
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Updated)
NI LabWindows/CVI 2010 SP1 Network Variable Library
NI LabWindows/CVI 2010 SP1 Network Variable Library (64-bit)
NI LabWindows/CVI 2010 SP1 Run-Time Engine (64-bit)
NI LabWindows/CVI 2010 SP1 TDM Streaming Library
NI LabWindows/CVI 2010 SP1 TDM Streaming Library (64-bit)
NI LabWindows/CVI Run-Time Engine 2010 SP1
NI LabWindows/CVI Run-Time Engine 2010 SP1 (Updated)
NI Launcher
NI License Manager
NI Logos 5.5
NI Logos 5.5 (64-bit)
NI Logos LabVIEW 2012 Support
NI Logos XT Support
NI Logos64 XT Support
NI Math Kernel Libraries
NI Math Kernel Libraries (64-bit)
NI MAX Remote Configuration 64-bit Installer 5.5
NI MAX Remote Configuration Installer 5.5
NI MAX Support for 64 Bit Windows
NI MDF Support
NI mDNS Responder 2.2 for Windows 64-bit
NI mDNS Responder 2.2.0
NI Measurement & Automation Explorer 5.5.0
NI Measurement Studio 2010 Service Pack 1 Enterprise RunTime for VS2010
NI Measurement Studio Common .NET Assemblies (x64) for .NET 4.0
NI Measurement Studio Common .NET Assemblies for .NET 4.0 and VS2010
NI Measurement Studio ComponentWorks UI
NI Measurement Studio Recipe Processor
NI MetaSuite Installer
NI MXS 5.5.0
NI MXS 5.5.0 for 64 Bit Windows
NI Network Browser 5.5.0
NI Network Discovery 5.5
NI Network Discovery 5.5 for Windows 64-bit
NI NI LabVIEW 2011 SP1 Run-Time Engine Non-English Support
NI OPC Support
NI Portable Configuration 5.5.0
NI Portable Configuration for 64 Bit Windows 5.5.0
NI PXI Hardware 64-bit Support 3.2.3
NI PXI Platform Framework 1.6.3
NI PXI Platform Framework 1.6.3 64-bit
NI PXI Platform Services 3.2.3
NI PXI Platform Services 3.2.3 Configuration Support
NI PXI Platform Services 3.2.3 Expert
NI PXI SystemAPI Expert 3.2.3
NI PXI SystemAPI Expert 64-bit 3.2.3
NI Registration Wizard
NI Remote Provider for MAX 5.5.0
NI Remote PXI Provider for MAX 5.5.0
NI RTSI Cable Core Installer 1.4.0
NI RTSI Cable Core Installer for 64 Bit Windows 1.4.0
NI RTSI PAL Device Library Installer 1.4.0
NI RTSI PAL Device Library Installer for 64 Bit Windows 1.4.0
NI RTSI UI Provider 1.4.0
NI RTSI UI Provider for 64 Bit Windows 1.4.0
NI Search Shared
NI Security Update (KB 67L8LCQW)
NI Security Update (KB 67L8LCQW) (64-bit)
NI Service Locator 13.0
NI SignalExpress 2013 Datatypes
NI SignalExpress 2013 Datatypes LabVIEW 2012 Support
NI SignalExpress 2013 Tools
NI SLCP 1.0
NI Software Provider for MAX 5.5.0
NI SSL LabVIEW 2012 SP1 Support
NI SSL LabVIEW RTE 2012 SP1 Support
NI SSL Support
NI SSL Support (64-bit)
NI System API .NET 5.5.0
NI System API Client for WIF 5.5.0
NI System API Web-Service 32-bit 5.5.0
NI System API Windows 32-bit 5.5.0
NI System API Windows 64-bit 5.5.0
NI System Configuration 5.5.0 LabVIEW Support
NI System Configuration CVI Support 5.5.0
NI System Configuration LV2012 Support 5.5.0
NI System Configuration Runtime 5.5.0
NI System Configuration Runtime 5.5.0 for Windows 64-bit
NI System Monitor 3.2.3
NI System Monitor 3.2.3 64-bit
NI System State Publisher
NI System State Publisher (64-bit)
NI System Web Server 13.0
NI System Web Server Base 13.0.0
NI System Web Server Base 13.0.0 (64-bit)
NI TDM Excel Add-In 3.5
NI TDM Excel Add-In 3.5 64-bit
NI TDM Streaming 2.5
NI TDM Streaming 2.5 (64-bit)
NI Trace Engine
NI Trace Engine (64-bit)
NI Uninstaller
NI Update Service 2.3
NI Update Service 2.3 (64-bit)
NI USI 2.0.0
NI USI 2.0.0 64-Bit
NI Variable Engine (64-bit)
NI Variable Engine 2.6.0
NI Variable Engine LabVIEW 2012 Support
NI VC2005MSMs x64
NI VC2005MSMs x86
NI VC2008MSMs x64
NI VC2008MSMs x86
NI VC2010SP1MSMs x64
NI VC2010SP1MSMs x86
NI VIPM Helper 2012
NI Visual C++ 2010 Redistributable Package
NI Web Application Server 13.0
NI Web Application Server 13.0 (64-bit)
NI Web Interface Framework 2012
NI Web Pipeline 2.0.1
NI Web Pipeline 2.0.1 64-bit support
NI Xalan Delay Load 1.10.2
NI Xalan Delay Load 1.10.2 64-bit
NI Xerces Delay Load 2.7.3
NI Xerces Delay Load 2.7.3 64-bit
NPort Administration Suite Ver1.15
Office 15 Click-to-Run Extensibility Component
Office 15 Click-to-Run Licensing Component
On Screen Display
OPC .NET API 2.00 Redistributables (x86) 101.0
OPC Core Components Redistributable (x86) 101.2
OPC UA SDK 1.01 Redistributables 314.0
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená pøipojení
PC Translator 2004 Komplet
PKZIP Server for Windows 12.00.0014
PKZIP Server for Windows 12.40.0008
PlcSimPlus64
Power Manager
RapidBoot HDD Accelerator
RapidBoot Shield
Realtek High Definition Audio Driver
Realterm 2.0.0.70_SignedWrapper
Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7
Reset NI Config 5.5.0
RICOH_Media_Driver_v2.14.18.01
S7-200 Explorer V2.0.0.27
Samsung Kies
SAMSUNG USB Driver for Mobile Phones
SeCon
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
SHAREit
Siemens Totally Integrated Automation Portal V11
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package 0 V13.0
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package 02 V13.0
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package 03 V13.0
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package WCF-01 V13.0
Siemens Totally Integrated Automation Portal V13 - HM All Editions Single SetupPackage V13.0 UPD4
Siemens Totally Integrated Automation Portal V13 - HM NoBasic Single SetupPackage V13.0 UPD4
Siemens Totally Integrated Automation Portal V13 - SIMATIC S7-PLCSIM V13.0
Siemens Totally Integrated Automation Portal V13 - Simatic Single SetupPackage V13.0 UPD4
Siemens Totally Integrated Automation Portal V13 - Startdrive 13.0
Siemens Totally Integrated Automation Portal V13 - Startdrive Hardware Support Base Package 0 V13.0
Siemens Totally Integrated Automation Portal V13 - STEP 7 Single SetupPackage V13.0 UPD4
Siemens Totally Integrated Automation Portal V13 - Support Base Package TO-01 V13.0
Siemens Totally Integrated Automation Portal V13 - Support Base Package TO-02 V13.0
Siemens Totally Integrated Automation Portal V13 - TIA Tour Single SetupPackage V13.0
Siemens Totally Integrated Automation Portal V13 - TIACOMPCHECK Single SetupPackage V13.0
Siemens Totally Integrated Automation Portal V13 - WinCC Single SetupPackage V13.0 UPD4
Siemens Automation License Manager
Siemens Automation License Manager V5.3 + Upd1
Siemens Totally Integrated Automation Portal V12
Siemens Totally Integrated Automation Portal V13
SIMATIC STEP 7
SIMATIC STEP 7 V5.5 + SP3 Professional 2010 SR3
SIMATIC Device Drivers
SIMATIC Device Drivers WoW
SIMATIC Event Database
SIMATIC HMI License Manager Panel Plugin (x64)
SIMATIC HMI Symbol Library
SIMATIC NCM FWL 64
SIMATIC PLCSIM 64
SIMATIC Prosave
SIMATIC Prosave V13.0
SIMATIC S7-GRAPH
SIMATIC S7-GRAPH V5.3 + SP7 Professional 2010 SR3
SIMATIC S7-PCT
SIMATIC S7-PCT V3.0 Professional 2010 SR3
SIMATIC S7-PLCSIM
SIMATIC S7-PLCSIM Single SetupPackage - SIMATIC S7-PLCSIM V12.0 + SP1
SIMATIC S7-PLCSIM V12 SP1
SIMATIC S7-PLCSIM V13
SIMATIC S7-PLCSIM V5.4 + SP5 + Upd3
SIMATIC S7-SCL
SIMATIC S7-SCL V5.3 + SP6 + Upd1 Professional 2010 SR3
SIMATIC WinCC Common Archiving
SIMATIC WinCC flexible 2008 SP3 Upd4
SIMATIC WinCC flexible OCX
SIMATIC WinCC flexible Runtime
SIMATIC WinCC flexible Runtime 2008 SP3 Upd4
SIMATIC WinCC flexible Runtime Driver (x64)
SIMATIC WinCC flexible Simulator
SIMATIC WinCC flexible Tag Simulator
STEP 7 MicroWIN V4.0.9.25
SugarSync Manager
System Update
TD Keypad Designer V1.0.9.25
TeamViewer 3
Testok
ThinkPad Bluetooth with Enhanced Data Rate Software
ThinkPad UltraNav Driver
ThinkVantage Access Connections
ThinkVantage Active Protection System
ThinkVantage Fingerprint Software
ThinkVantage GPS
TIA Portal Single SetupPackage - Hardware Support Base Package 0 V11.0
TIA Portal Single SetupPackage - Hardware Support Base Package 0 V12.0
TIA Portal Single SetupPackage - Hardware Support Base Package 02 V11.0
TIA Portal Single SetupPackage - Hardware Support Base Package 02 V12.0
TIA Portal Single SetupPackage - Hardware Support Base Package 03 V11.0
TIA Portal Single SetupPackage - Hardware Support Base Package 03 V12.0
TIA Portal Single SetupPackage - Hardware Support Base Package WCF-01 V11.0
TIA Portal Single SetupPackage - Hardware Support Base Package WCF-01 V12.0
TIA Portal Single SetupPackage - HM All Editions Single SetupPackage V12.0 + SP1
TIA Portal Single SetupPackage - HM NoBasic Single SetupPackage V12.0 + SP1
TIA Portal Single SetupPackage - HWConfig Single SetupPackage V11.0 SP2 UPD5
TIA Portal Single SetupPackage - Simatic Single SetupPackage V12.0 SP1 UPD4
TIA Portal Single SetupPackage - Startdrive Hardware Support Base Package 0 V12.0
TIA Portal Single SetupPackage - Startdrive Optional 12.0 + SP1
TIA Portal Single SetupPackage - STEP 7 Safety Single SetupPackage V11.0
TIA Portal Single SetupPackage - STEP 7 Single SetupPackage V11.0 SP2 UPD5
TIA Portal Single SetupPackage - STEP 7 Single SetupPackage V12.0 SP1 UPD4
TIA Portal Single SetupPackage - Support Base Package TO-01 V11.0
TIA Portal Single SetupPackage - Support Base Package TO-01 V12.0
TIA Portal Single SetupPackage - Support Base Package TO-02 V11.0
TIA Portal Single SetupPackage - Support Base Package TO-02 V12.0
TIA Portal Single SetupPackage - TIA ESTOUR V11.0 + SP2
TIA Portal Single SetupPackage - TIA Tour Single SetupPackage V12.0 + SP1
TIA Portal Single SetupPackage - TIACOMPCHECK Single SetupPackage V12.0 + SP1
TIA Portal Single SetupPackage - WinCC Single SetupPackage V11.0 SP2 UPD5
TIA Portal Single SetupPackage - WinCC Single SetupPackage V12.0 SP1 UPD4
TIA Portal Single SetupPackage - WINCCBASUCL V11.0 + SP11
Totally Integrated Automation Portal V11 - TIA Portal Single SetupPackage V11.0 + SP2
Totally Integrated Automation Portal V12 - TIA Portal Single SetupPackage V12.0 + SP1
Totally Integrated Automation Portal V13 - TIA Portal Single SetupPackage V13.0
VC User 71 RTL X86 ---
VIP Access
VISA Shared Components 64-Bit
WIF Core Dependencies Windows 5.5.0
Winamp
WinCC flexible
WinCC flexible Graphics
WinCC Runtime Advanced Simulator
Windows Driver Package - Intel (e1cexpress) Net (01/11/2012 11.15.16.0)
Windows Driver Package - Intel System (01/11/2012 9.3.0.1020)
Windows Driver Package - Intel System (08/26/2011 9.3.0.1011)
Windows Driver Package - Intel USB (08/26/2011 9.3.0.1011)
Windows Driver Package - Lenovo 1.65.05.20 (02/29/2012 1.65.05.20)
Windows Driver Package - Synaptics (SynTP) Mouse (04/06/2012 16.1.1.0)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Fotogalerie
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
.
==== Event Viewer Messages From Past Week ========
.
27. 10. 2014 7:01:04, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.
23. 10. 2014 17:13:56, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Presentation Foundation Font Cache 3.0.0.0 service to connect.
23. 10. 2014 17:13:56, Error: Service Control Manager [7000] - The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
23. 10. 2014 17:13:23, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Microsoft .NET Framework NGEN v4.0.30319_X86 service to connect.
22. 10. 2014 22:33:10, Error: Service Control Manager [7003] - The CCDBUtils service depends the following service: SCSMonitor. This service might not be installed.
22. 10. 2014 22:33:08, Error: Service Control Manager [7000] - The cvintdrv service failed to start due to the following error: This driver has been blocked from loading
22. 10. 2014 22:33:08, Error: Application Popup [1060] - \SystemRoot\SysWow64\Drivers\cvintdrv.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
22. 10. 2014 22:33:01, Error: Service Control Manager [7000] - The SMI Helper Driver (smihlp2) service failed to start due to the following error: The system cannot find the file specified.
22. 10. 2014 22:29:13, Error: Service Control Manager [7000] - The TDKLIB service failed to start due to the following error: The system cannot find the file specified.
.
==== End Of File ===========================

Attached Files


Edited by Oh My!, 02 November 2014 - 07:56 PM.
Posted logs


#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,699 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:10 AM

Posted 30 October 2014 - 07:15 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!

#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:10 AM

Posted 02 November 2014 - 07:54 PM

Greetings bartosm and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. While I review our situation please run the below for me.

===================================================

Farbar Recovery Scan Tool (FRST)

--------------------
  • Download Farbar Recover Scan Tool for either 32 bit or 64 bit systems and save it to your desktop <<< Important
  • If you are unsure if you have 32 bit or 64 bit simply download and try one. If that doesn't run properly the other one should
  • Double click the icon
  • Click Yes to the disclaimer
  • Make sure the Addition.txt box is checked
  • Click Scan and allow the program to run
  • Click OK on the Scan complete screen, then OK on the Addition.txt pop up screen
  • 2 Notepad documents should now be open on your desktop.
  • Please copy and paste the contents of both in your reply
===================================================

System Summary Information

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time
  • Type msinfo32 and press Enter
  • Left click on System Summary
  • Click File, Save, and name the file Summary
  • Zip and attach the file to your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • FRST results
  • Addition log
  • System Summary Information

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#6 bartosm

bartosm
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:10 AM

Posted 03 November 2014 - 02:31 AM

Hello
I am running Farbar Recover Scan and System Summary. I attach files with this scans.
 
m.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-11-2014
Ran by admin (administrator) on NB_BARTOS on 03-11-2014 07:19:31
Running from C:\Users\admin\Downloads
Loaded Profile: admin (Available profiles: admin)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
(ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
(Siemens AG) C:\Program Files\Common Files\Siemens\AlmPanelPlugin\ALMPanelPlugin.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManager64.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
(National Instruments Corporation) C:\Windows\SysWOW64\nipalsm.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(SIEMENS AG) C:\Program Files (x86)\Siemens\Step7\S7BIN\s7hspsvx.exe
(Siemens AG) C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe
(Siemens AG) C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe
(Siemens AG) C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(OPC Foundation) C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe
(Siemens AG) C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7epasrv64x.exe
(Data Perceptions / PowerProgrammer) C:\Windows\SysWOW64\WebUpdateSvc4.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Siemens AG) C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\pniomgr.exe
(Siemens AG) C:\Windows\SysWOW64\pniopcac.exe
(Siemens AG) C:\Windows\SysWOW64\pniopcac.exe
(Siemens AG) C:\Windows\SysWOW64\pniopcac.exe
(Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(National Instruments Corporation) C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo) C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe
(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SIEMENS AG) C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubTstx.exe
(SIEMENS AG) C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(SIEMENS AG) C:\Program Files (x86)\Common Files\Siemens\S7UBTOOX\S7ubtoox.exe
(iAnywhere Solutions, Inc.) C:\Program Files (x86)\Common Files\Siemens\SQLANY\dbsrv9.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvbubble64x.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Macheen) C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\VIP Access Client\WhiteList.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\VIP Access Client\GreenList.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13653208 2013-09-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-30] (Realtek Semiconductor)
HKLM\...\Run: [TpShocks] => C:\Windows\system32\TpShocks.exe [384344 2014-02-17] (Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [295712 2014-08-07] (Lenovo Group Limited)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe [4148664 2014-04-04] (ESET)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552 2012-09-27] (CANON INC.)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-07-18] (Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [133400 2012-02-28] (Intel Corporation)
HKLM-x32\...\Run: [PWMTRV] => rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [1091376 2012-01-17] (Lenovo)
HKLM-x32\...\Run: [MobileAccess] => C:\Program Files (x86)\Lenovo\MobileAccess\MobileAccess.exe [155424 2012-07-10] (Lenovo)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [SiemensAutomationFileStorage] => C:\Program Files (x86)\Siemens\Automation\Portal V12\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe [942592 2014-02-26] (Siemens AG)
HKLM-x32\...\Run: [S7UB Start] => C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe [102453 2010-06-03] (SIEMENS AG)
HKLM-x32\...\Run: [SiemensAutomationFileStorage_TIAP13] => C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe [1023488 2014-07-31] (Siemens AG)
HKLM-x32\...\Run: [WinCC flexible Smart Start] => C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe [118784 2013-12-15] (SIEMENS AG)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\psfus: C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll (Authentec Inc.)
HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\...\MountPoints2: {41e9fb4a-12f8-11e4-ac56-028037ec0200} - D:\autorun.exe
HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\...\MountPoints2: {909430c3-0ec3-11e4-a0f5-806e6f6e6963} - Q:\LenovoQDrive.exe
Lsa: [Notification Packages] scecli C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll ACGina C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => No File
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => No File
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => No File
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/welcome/thinkpad
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com/welcome/thinkpad
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7LENP
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner64.dll (Google Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Symantec VIP Access Add-On -> {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} -> C:\Program Files (x86)\Symantec\VIP Access Client\64bit\VIPAddOnForIE64.dll (Symantec Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Partner BHO Class -> {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} -> C:\ProgramData\Partner\Partner.dll (Google Inc.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Symantec VIP Access Add-On -> {C63CD127-A1CB-4D49-A4F7-D6F88A917BE6} -> C:\Program Files (x86)\Symantec\VIP Access Client\VIPAddOnForIE.dll (Symantec Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files (x86)\PC Translator\webie.dll ()
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Winsock: Catalog5 10 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26512] (National Instruments Corporation)
Winsock: Catalog5-x64 10 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28560] (National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\nno330qa.default
FF Homepage: hxxp://www.google.com/ig
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @cadenas.de/PARTwebViewer,version=9.7.11.7711&arch=x86_64 -> C:\Program Files (x86)\Festo\PARTwebViewer 9.07\64\npwebviewerplugins64.dll (CADENAS GmbH)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @cadenas.de/PARTwebViewer,version=9.7.11.7711&arch=x86_32 -> C:\Program Files (x86)\Festo\PARTwebViewer 9.07\32\npwebviewerplugins.dll (CADENAS GmbH)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @cadenas.de/PARTwebViewer,version=9.7.11.7711&arch=x86_32 -> C:\Program Files (x86)\Festo\PARTwebViewer 9.07\32\npwebviewerplugins.dll (CADENAS GmbH)
FF Plugin HKCU: @cadenas.de/PARTwebViewer,version=9.7.11.7711&arch=x86_64 -> C:\Program Files (x86)\Festo\PARTwebViewer 9.07\64\npwebviewerplugins64.dll (CADENAS GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nplv2011win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nplv2012win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPLV80Win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF Extension: All-in-One Gestures - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\nno330qa.default\Extensions\{8b86149f-01fb-4842-9dd8-4d7eb02fd055} [2014-07-18]
FF Extension: Google Translator for Firefox - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\nno330qa.default\Extensions\translator@zoli.bod.xpi [2014-07-18]
FF HKLM-x32\...\Firefox\Extensions: [VIP3X@verisign.com] - C:\Program Files (x86)\Symantec\VIP Access Client
FF Extension: Symantec VIP Access Add-On - C:\Program Files (x86)\Symantec\VIP Access Client [2013-07-17]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird
FF Extension: ESET Endpoint Security Extension - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird [2014-07-18]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 almservice; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe [1563968 2014-01-13] (SIEMENS AG)
S3 CCArchiveManagerService; C:\Program Files (x86)\Common Files\Siemens\CommonArchiving\CCArchiveManager.exe [761856 2012-07-26] (SIEMENS AG) [File not signed]
S2 CCDBUtils; C:\Program Files (x86)\Common Files\Siemens\CommonArchiving\CCDBUtils.exe [102400 2012-07-26] (SIEMENS AG) [File not signed]
S3 CCRedundancyAgent-Service; C:\Program Files (x86)\Common Files\Siemens\CommonArchiving\CCRedundancyAgent.exe [856064 2012-07-26] (SIEMENS AG) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2436280 2014-09-25] (Microsoft Corporation)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [319536 2014-09-10] (Lenovo.)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [123392 2014-06-14] (Dassault Systèmes) [File not signed]
S3 EhttpSrv; C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe [42048 2014-04-04] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [1029704 2014-04-04] (ESET)
S3 EPLAN Client Service; C:\Program Files\EPLAN\Common\EClientService.exe [549800 2014-07-21] (EPLAN Software & Service GmbH & Co. KG)
S3 ESHASRV; C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [191368 2014-04-04] (ESET)
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [169776 2012-01-17] (Lenovo)
R2 FileOpenManager; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [341312 2014-07-16] (FileOpen Systems Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-28] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [559872 2014-08-06] (Lenovo)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [197408 2014-08-07] (Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [115184 2014-07-08] (Lenovo Group Limited)
R2 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [695136 2010-10-27] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\SysWOW64\lkads.exe [53544 2013-06-12] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [63792 2013-06-12] (National Instruments Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-10-16] ()
R2 MacheenService; C:\Program Files (x86)\Lenovo\MobileAccess\MacheenService.exe [29472 2012-07-10] (Macheen)
R2 MSSQL$WINCCFLEXEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
R2 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [83768 2013-06-10] (National Instruments Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2012-02-26] ()
R2 ni488enumsvc; C:\Windows\SysWOW64\nipalsm.exe [12696 2012-01-12] (National Instruments Corporation)
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [57696 2013-06-08] (National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [81248 2013-06-08] (National Instruments Corporation)
R2 nidevldu; C:\Windows\SysWOW64\nidevldu.exe [102040 2013-03-04] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [380720 2013-06-12] (National Instruments Corporation)
S3 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1427688 2010-08-02] (Macrovision Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [236768 2012-11-07] (National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [260976 2013-05-11] (National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [176512 2013-06-19] (National Instruments Corporation)
R2 nipxirmu; C:\Windows\SysWOW64\nipxism.exe [19056 2013-03-14] (National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [90440 2013-06-07] (National Instruments Corporation)
R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [57680 2013-06-08] (National Instruments Corporation)
R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [680624 2012-06-07] (National Instruments Corporation)
R2 s7hspsvx; C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe [61493 2012-12-20] (SIEMENS AG) [File not signed]
R2 s7oiehsx64; C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [145632 2014-06-13] (Siemens AG)
R2 S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64X.exe [472288 2014-06-13] (Siemens AG)
U2 smartserver; C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe [560864 2013-11-16] (Siemens AG)
R2 UA Local Discovery Server; C:\Program Files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe [28160 2010-05-05] (OPC Foundation) [File not signed]
R2 VIPAppService; C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe [84080 2012-04-19] (Symantec Corporation)
R2 WebUpdate4; C:\Windows\SysWOW64\WebUpdateSvc4.exe [278800 2010-08-18] (Data Perceptions / PowerProgrammer)
R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [689560 2012-10-18] (Ericsson AB)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2669840 2012-02-26] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [60488 2014-05-30] (SafeNet Inc.)
S3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [303624 2014-05-30] (SafeNet Inc.)
S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [163368 2012-04-01] (Broadcom Corporation.)
S2 cvintdrv; C:\Windows\SysWow64\Drivers\cvintdrv.sys [4096 2005-10-18] () [File not signed]
R3 dpmconv; C:\Windows\System32\DRIVERS\dpmconv.sys [259584 2013-08-07] (Siemens AG)
S3 dpmcslv; C:\Windows\System32\Drivers\dpmcslv.sys [68280 2005-07-04] (Siemens AG) [File not signed]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-07-24] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [219696 2014-04-10] (ESET)
R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-10-05] (Ericsson AB)
R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [29736 2011-10-05] (Ericsson AB)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [185224 2013-09-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [155896 2013-09-09] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [147096 2013-09-09] (ESET)
S3 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [70416 2012-01-17] (Windows ® Win 7 DDK provider)
R3 fwkbdrtm; C:\Windows\system32\drivers\fwkbdrtm.sys [24152 2011-12-06] (Windows ® Win 7 DDK provider)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2014-05-30] (SafeNet Inc.)
R3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [103184 2012-03-01] (Ericsson AB)
R3 l36wscard; C:\Windows\System32\DRIVERS\l36wscard.sys [61992 2011-01-14] (Ericsson AB)
S3 lvalarmk; C:\Windows\system32\drivers\lvalarmk.sys [27528 2013-06-17] (National Instruments Corporation)
R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [443208 2012-10-02] (MCCI Corporation)
R3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [453960 2012-10-02] (MCCI Corporation)
R3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [21832 2012-10-02] (MCCI Corporation)
R3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [506184 2012-10-02] (MCCI Corporation)
S3 ni1006k; C:\Windows\system32\drivers\ni1006k.sys [30800 2013-02-12] (National Instruments Corporation)
S3 ni1045k; C:\Windows\system32\drivers\ni1045kl.sys [12984 2013-02-12] (National Instruments Corporation)
S3 ni1065k; C:\Windows\system32\drivers\ni1065k.sys [27832 2013-02-12] (National Instruments Corporation)
S3 nicdcck; C:\Windows\system32\drivers\nicdcckl.sys [12992 2012-07-23] (National Instruments Corporation)
S3 nicdrk; C:\Windows\system32\drivers\nicdrkl.sys [11864 2011-07-21] (National Instruments Corporation)
S3 nicmrk; C:\Windows\system32\drivers\nicmrkl.sys [13456 2013-06-25] (National Instruments Corporation)
S3 nicondrk; C:\Windows\system32\drivers\nicondrkl.sys [13416 2013-06-25] (National Instruments Corporation)
S3 nicsrk; C:\Windows\system32\drivers\nicsrkl.sys [15176 2013-06-25] (National Instruments Corporation)
R3 nidimk; C:\Windows\system32\drivers\nidimkl.sys [13000 2012-06-28] (National Instruments Corporation)
S3 nidmxfk; C:\Windows\system32\drivers\nidmxfkl.sys [13416 2013-03-04] (National Instruments Corporation)
S3 nidsark; C:\Windows\system32\drivers\nidsarkl.sys [13432 2013-02-13] (National Instruments Corporation)
S3 niemrk; C:\Windows\system32\drivers\niemrkl.sys [15176 2013-06-25] (National Instruments Corporation)
S3 niesrk; C:\Windows\system32\drivers\niesrkl.sys [15176 2013-06-25] (National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\Windows\System32\DRIVERS\niede.sys [38064 2012-01-12] (National Instruments Corporation)
S3 nifslk; C:\Windows\system32\drivers\nifslkl.sys [13432 2013-02-13] (National Instruments Corporation)
R3 nimdbgk; C:\Windows\system32\drivers\nimdbgkl.sys [13000 2012-06-28] (National Instruments Corporation)
R3 nimru2k; C:\Windows\system32\drivers\nimru2kl.sys [13008 2012-06-28] (National Instruments Corporation)
S3 nimsdrk; C:\Windows\system32\drivers\nimsdrkl.sys [13480 2013-03-04] (National Instruments Corporation)
S3 nimstsk; C:\Windows\system32\drivers\nimstskl.sys [13448 2013-03-04] (National Instruments Corporation)
R3 nimxdfk; C:\Windows\system32\drivers\nimxdfkl.sys [12984 2012-06-28] (National Instruments Corporation)
S3 nimxpk; C:\Windows\system32\drivers\nimxpkl.sys [13448 2013-03-04] (National Instruments Corporation)
S3 ninshsdk; C:\Windows\system32\drivers\ninshsdkl.sys [13000 2012-10-09] (National Instruments Corporation)
S3 niorbk; C:\Windows\system32\drivers\niorbkl.sys [12992 2012-06-28] (National Instruments Corporation)
S3 nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [13624 2012-12-19] (National Instruments Corporation)
R0 NIPALK; C:\Windows\System32\drivers\nipalk.sys [926992 2012-12-19] (National Instruments Corporation)
S3 nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [13624 2012-12-19] (National Instruments Corporation)
R0 nipbcfk; C:\Windows\System32\drivers\nipbcfk.sys [16984 2012-12-18] (National Instruments Corporation)
R0 nipxibaf; C:\Windows\System32\drivers\nipxibaf.sys [87288 2013-02-11] (National Instruments Corporation)
R0 nipxibrc; C:\Windows\System32\drivers\nipxibrc.sys [70336 2013-03-06] (National Instruments Corporation)
S3 nipxigpk; C:\Windows\system32\drivers\nipxigpk.sys [22680 2011-08-09] (National Instruments Corporation)
R2 nipxirmk; C:\Windows\system32\drivers\nipxirmkl.sys [13432 2013-03-14] (National Instruments Corporation)
S3 niraptrk; C:\Windows\system32\drivers\niraptrkl.sys [15176 2013-06-25] (National Instruments Corporation)
S3 niscdk; C:\Windows\system32\drivers\niscdkl.sys [12984 2012-03-07] (National Instruments Corporation)
S3 nisdigk; C:\Windows\system32\drivers\nisdigkl.sys [12960 2012-07-02] (National Instruments Corporation)
S3 nisftk; C:\Windows\system32\drivers\nisftkl.sys [12952 2012-06-01] (National Instruments Corporation)
S3 nispdk; C:\Windows\system32\drivers\nispdkl.sys [12984 2012-03-07] (National Instruments Corporation)
S3 nissrk; C:\Windows\system32\drivers\nissrkl.sys [15176 2013-06-25] (National Instruments Corporation)
S3 nistc2k; C:\Windows\system32\drivers\nistc2kl.sys [11824 2009-01-05] (National Instruments Corporation)
S3 nistc3rk; C:\Windows\system32\drivers\nistc3rkl.sys [13416 2013-02-07] (National Instruments Corporation)
S3 nistcrk; C:\Windows\system32\drivers\nistcrkl.sys [12968 2011-07-18] (National Instruments Corporation)
S3 niswdk; C:\Windows\system32\drivers\niswdkl.sys [15176 2013-05-24] (National Instruments Corporation)
S3 nitiork; C:\Windows\system32\drivers\nitiorkl.sys [13440 2013-02-07] (National Instruments Corporation)
S3 niufurk; C:\Windows\system32\drivers\niufurkl.sys [13008 2012-10-08] (National Instruments Corporation)
R3 NiViPciK; C:\Windows\System32\drivers\NiViPciKl.sys [15200 2013-06-19] (National Instruments Corporation)
R2 NiViPxiK; C:\Windows\System32\drivers\NiViPxiKl.sys [15200 2013-06-19] (National Instruments Corporation)
S3 niwfrk; C:\Windows\system32\drivers\niwfrkl.sys [15176 2013-06-25] (National Instruments Corporation)
S3 nixsrk; C:\Windows\system32\drivers\nixsrkl.sys [15176 2013-06-25] (National Instruments Corporation)
R2 npdrv; C:\Windows\system32\drivers\npdrv.sys [60984 2010-07-15] (Moxa Inc. )
R2 npdrvfilter; C:\Windows\system32\drivers\npdrvfilter.sys [42040 2010-07-15] (Moxa Inc. )
R3 s7odpx2x64; C:\Windows\System32\DRIVERS\s7odpx2x64.sys [71680 2014-04-17] (Siemens AG)
R3 s7oppinx64; C:\Windows\System32\DRIVERS\s7oppinx64.sys [107520 2014-04-17] (Siemens AG)
R3 s7oserix64; C:\Windows\System32\Drivers\s7oserix64.sys [123392 2014-04-17] (Siemens AG)
R3 s7osmcax64; C:\Windows\System32\DRIVERS\s7osmcax64.sys [199680 2012-07-24] (SIEMENS AG)
R3 s7osobux64; C:\Windows\System32\DRIVERS\s7osobux64.sys [153600 2012-07-24] (SIEMENS AG)
R3 s7otmcd64x; C:\Windows\System32\Drivers\s7otmcd64x.sys [199680 2012-07-24] (SIEMENS AG)
R3 s7otranx64; C:\Windows\System32\DRIVERS\s7otranx64.sys [262656 2014-03-07] (Siemens AG)
R3 s7otsadx64; C:\Windows\System32\DRIVERS\s7otsadx64.sys [196096 2012-07-24] (SIEMENS AG)
R2 s7ousbu64x; C:\Windows\System32\DRIVERS\s7ousbu64x.sys [138240 2014-02-21] (Siemens AG)
R2 s7sn2srtx; C:\Windows\System32\DRIVERS\s7sn2srtx.sys [83032 2012-05-09] (SIEMENS AG)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45296 2014-07-28] (Synaptics Incorporated)
R2 SNTIE; C:\Windows\System32\DRIVERS\sntie.sys [285408 2014-04-08] (Siemens AG)
R3 TVTI2C; C:\Windows\System32\DRIVERS\Tvti2c.sys [40248 2011-05-29] (Lenovo Information Product(ShenZhen China) Inc.)
R3 tvtvcamd; C:\Windows\System32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (ThinkVantage Communications Utility)
R3 vsnl2ada; C:\Windows\System32\DRIVERS\vsnl2ada.sys [128000 2013-08-07] (SIEMENS AG)
R3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [284912 2013-11-22] (Ericsson AB)
S3 avchv; system32\DRIVERS\avchv.sys [X]
S2 smihlp2; \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [X]
S3 usb6xxxk; \??\C:\Windows\system32\drivers\usb6xxxkl.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-03 07:19 - 2014-11-03 07:20 - 00038378 _____ () C:\Users\admin\Downloads\FRST.txt
2014-11-03 07:19 - 2014-11-03 07:19 - 00000000 ____D () C:\FRST
2014-11-03 07:18 - 2014-11-03 07:18 - 02114560 _____ (Farbar) C:\Users\admin\Downloads\FRST64.exe
2014-10-31 14:54 - 2014-10-31 14:54 - 03122772 _____ () C:\Users\admin\Downloads\Language_V1_0.zip
2014-10-31 13:06 - 2014-10-31 13:06 - 00092160 _____ () C:\Users\admin\Downloads\SC Duchonova Zahranicie 10-2014.xls
2014-10-31 12:58 - 2014-10-31 12:58 - 00005474 _____ () C:\Windows\DirectX.log
2014-10-31 12:58 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-10-31 12:58 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-10-31 12:58 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-10-31 12:58 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-10-31 12:58 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-10-31 12:58 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-10-31 12:58 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-10-31 12:58 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-10-31 12:58 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-10-31 12:58 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-10-31 12:58 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-10-31 12:58 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-10-31 12:58 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-10-31 12:58 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-10-31 12:58 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-10-31 12:58 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-10-31 12:58 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-10-31 12:58 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-10-31 12:58 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-10-31 12:58 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-10-31 12:58 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-10-31 12:58 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-10-31 12:58 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-10-31 12:58 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-10-31 12:58 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-10-31 12:58 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-10-31 12:58 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-10-31 12:58 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-10-31 12:58 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-10-31 12:58 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-10-31 12:58 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-10-31 12:58 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-10-31 12:58 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-10-31 12:58 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-10-31 12:58 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-10-31 12:58 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-10-31 12:58 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-10-31 12:58 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-10-31 12:58 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-10-31 12:58 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-10-31 12:58 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-10-31 12:58 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-10-31 12:58 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-10-31 12:58 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-10-31 12:58 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-10-31 12:58 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-10-31 12:58 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-10-31 12:58 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-10-31 12:58 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-10-31 12:58 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-10-31 12:58 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-10-31 12:58 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-10-31 12:58 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-10-31 12:58 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-10-31 12:58 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-10-31 12:58 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-10-31 12:58 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-10-31 12:58 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-10-31 12:58 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-10-31 12:58 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-10-31 12:58 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-10-31 12:58 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-10-31 12:58 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-10-31 12:58 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-10-31 12:58 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-10-31 12:58 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-10-31 12:58 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-10-31 12:58 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-10-31 12:58 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-10-31 12:58 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-10-31 12:58 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-10-31 12:58 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-10-31 12:58 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-10-31 12:58 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-10-31 12:58 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-10-31 12:58 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-10-31 12:58 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-10-31 12:58 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-10-31 12:58 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-10-31 12:58 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-10-31 12:58 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-10-31 12:58 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-10-31 12:58 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-10-31 12:58 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-10-31 12:58 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-10-31 12:58 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-10-31 12:58 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-10-31 12:58 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-10-31 12:58 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-10-31 12:58 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-10-31 12:58 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-10-31 12:58 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-10-31 12:58 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-10-31 12:58 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-10-31 12:58 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-10-31 12:58 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-10-31 12:58 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-10-31 12:58 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-10-31 12:58 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-10-31 12:58 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-10-31 12:58 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-10-31 12:58 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-10-31 12:58 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-10-31 12:58 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-10-31 12:58 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-10-31 12:58 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-10-31 12:58 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-10-31 12:58 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-10-31 12:58 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-10-31 12:58 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-10-31 12:58 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-10-31 12:58 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-10-31 12:58 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-10-31 12:58 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-10-31 12:56 - 2014-10-31 12:58 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-10-31 12:56 - 2014-10-31 12:58 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-10-31 12:56 - 2014-10-31 12:56 - 05993984 _____ (Wargaming.net ) C:\Users\admin\Downloads\WoT_internet_install_eu.exe
2014-10-31 10:35 - 2014-10-31 11:24 - 00000000 ____D () C:\Users\admin\Downloads\RAMMap
2014-10-31 10:34 - 2014-10-31 10:34 - 00276267 _____ () C:\Users\admin\Downloads\RAMMap.zip
2014-10-31 08:42 - 2014-10-31 08:42 - 00000000 ____D () C:\Users\admin\AppData\Local\Evernote
2014-10-31 08:13 - 2014-11-03 07:14 - 00000932 _____ () C:\Windows\setupact.log
2014-10-31 08:13 - 2014-10-31 08:13 - 00000822 _____ () C:\Windows\PFRO.log
2014-10-31 08:13 - 2014-10-31 08:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-31 07:25 - 2014-10-31 07:25 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-31 07:25 - 2014-10-31 07:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-31 07:25 - 2014-10-31 07:25 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-31 07:24 - 2014-10-31 07:24 - 04977216 _____ (Piriform Ltd) C:\Users\admin\Downloads\ccsetup419.exe
2014-10-30 23:16 - 2014-10-30 23:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-30 22:08 - 2014-10-31 14:36 - 00007614 _____ () C:\Users\admin\AppData\Local\Resmon.ResmonCfg
2014-10-29 13:38 - 2014-10-29 13:38 - 03615744 _____ () C:\Users\admin\Downloads\sick_2013.xls
2014-10-29 13:08 - 2014-10-29 13:08 - 07892377 _____ () C:\Users\admin\Downloads\CxMT-078xxxxBxxxxx.stp
2014-10-29 13:08 - 2014-10-29 13:08 - 07814762 _____ () C:\Users\admin\Downloads\CxMT-042xxxxBxxxxx.stp
2014-10-29 10:56 - 2013-11-28 20:01 - 07569392 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00753136 _____ (Intel Corporation) C:\Windows\system32\GfxUIHotKeyMenu.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00531440 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00529904 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00444400 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00407536 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00395248 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00251888 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00165872 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-10-29 10:56 - 2013-11-28 20:01 - 00153072 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-10-29 10:56 - 2013-11-16 06:50 - 00449496 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-10-29 10:56 - 2013-11-16 06:50 - 00089600 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3359.dll
2014-10-29 10:56 - 2013-11-16 06:49 - 00017638 _____ () C:\Windows\system32\iglhxs64.vp
2014-10-29 10:56 - 2013-11-16 06:47 - 09998848 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 09551360 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 08997888 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 08654848 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 07855616 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 07079424 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 04447616 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-10-29 10:56 - 2013-11-16 06:47 - 03487232 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 02384896 _____ () C:\Windows\system32\GfxRes.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00444928 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00444928 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00441856 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00441856 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00434688 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00433152 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00430592 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00358912 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00354304 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00345600 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00288768 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-10-29 10:56 - 2013-11-16 06:47 - 00287232 _____ () C:\Windows\system32\igdde64.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00260548 _____ () C:\Windows\system32\Gfxres.th-TH.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00246708 _____ () C:\Windows\system32\Gfxres.el-GR.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00241152 _____ () C:\Windows\SysWOW64\igdde32.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00229330 _____ () C:\Windows\system32\Gfxres.ru-RU.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00195629 _____ () C:\Windows\system32\Gfxres.ar-SA.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00192932 _____ () C:\Windows\system32\Gfxres.ja-JP.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00192000 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00187352 _____ () C:\Windows\system32\Gfxres.he-IL.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00176041 _____ () C:\Windows\system32\Gfxres.it-IT.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00175682 _____ () C:\Windows\system32\Gfxres.ko-KR.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00173614 _____ () C:\Windows\system32\Gfxres.es-ES.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00173405 _____ () C:\Windows\system32\Gfxres.fr-FR.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00173138 _____ () C:\Windows\system32\Gfxres.de-DE.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00171806 _____ () C:\Windows\system32\Gfxres.ro-RO.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00170962 _____ () C:\Windows\system32\Gfxres.tr-TR.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00170929 _____ () C:\Windows\system32\Gfxres.hu-HU.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00170397 _____ () C:\Windows\system32\Gfxres.pl-PL.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00170096 _____ () C:\Windows\system32\Gfxres.nl-NL.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00169527 _____ () C:\Windows\system32\Gfxres.pt-BR.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00168500 _____ () C:\Windows\system32\Gfxres.sk-SK.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00168403 _____ () C:\Windows\system32\Gfxres.fi-FI.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00168167 _____ () C:\Windows\system32\Gfxres.pt-PT.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00168034 _____ () C:\Windows\system32\Gfxres.sv-SE.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00167741 _____ () C:\Windows\system32\Gfxres.cs-CZ.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00166707 _____ () C:\Windows\system32\Gfxres.hr-HR.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00163378 _____ () C:\Windows\system32\Gfxres.sl-SI.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00162191 _____ () C:\Windows\system32\Gfxres.nb-NO.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00161531 _____ () C:\Windows\system32\Gfxres.da-DK.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00156915 _____ () C:\Windows\system32\Gfxres.en-US.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00150181 _____ () C:\Windows\system32\Gfxres.zh-TW.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00148445 _____ () C:\Windows\system32\Gfxres.zh-CN.resources
2014-10-29 10:56 - 2013-11-16 06:47 - 00140288 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00124928 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-10-29 10:56 - 2013-11-16 06:47 - 00123392 _____ () C:\Windows\system32\igdail64.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00109056 _____ () C:\Windows\SysWOW64\igdail32.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-10-29 10:56 - 2013-11-16 06:47 - 00012288 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-10-29 10:56 - 2013-11-16 06:45 - 01696256 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2014-10-29 10:56 - 2013-11-16 06:45 - 00322560 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2014-10-29 10:56 - 2013-11-16 06:44 - 24283136 _____ () C:\Windows\system32\igdfcl64.dll
2014-10-29 10:56 - 2013-11-16 06:44 - 01569792 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2014-10-29 10:56 - 2013-11-16 06:44 - 00279040 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2014-10-29 10:56 - 2013-11-16 06:44 - 00258560 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-10-29 10:56 - 2013-11-16 06:44 - 00203264 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-10-29 10:56 - 2013-11-16 06:40 - 19587072 _____ () C:\Windows\SysWOW64\igdfcl32.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 04371968 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 02813952 _____ () C:\Windows\system32\iglhxa64.cpa
2014-10-29 10:56 - 2013-11-16 06:37 - 02064896 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 01814016 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00861184 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00856576 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00151552 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00143360 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00129024 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00122880 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2014-10-29 10:56 - 2013-11-16 06:37 - 00044025 _____ () C:\Windows\system32\iglhxo64.vp
2014-10-29 10:56 - 2013-11-16 06:37 - 00043816 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-10-29 10:56 - 2013-11-16 06:37 - 00043494 _____ () C:\Windows\system32\iglhxc64.vp
2014-10-29 10:56 - 2013-11-16 06:37 - 00043298 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-10-29 10:56 - 2013-11-16 06:37 - 00043256 _____ () C:\Windows\system32\iglhxg64.vp
2014-10-29 10:56 - 2013-11-16 06:37 - 00042079 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-10-29 10:56 - 2013-11-16 06:37 - 00001125 _____ () C:\Windows\system32\iglhxa64.vp
2014-10-29 10:56 - 2013-11-16 06:36 - 03412992 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2014-10-29 10:54 - 2013-07-18 01:43 - 00795632 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2014-10-29 10:54 - 2013-07-18 01:43 - 00358896 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2014-10-29 10:54 - 2013-07-18 01:43 - 00020464 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2014-10-29 10:50 - 2014-10-29 10:51 - 83975912 _____ (Lenovo Group Limited ) C:\Users\admin\Downloads\g1d654ww.exe
2014-10-29 10:41 - 2012-11-01 09:48 - 00245872 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\seagcoinst.dll
2014-10-29 10:40 - 2014-10-29 10:40 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Seagate
2014-10-29 10:40 - 2014-10-29 10:40 - 00000000 ____D () C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Seagate
2014-10-29 10:39 - 2014-10-29 10:39 - 00000000 ____D () C:\Program Files (x86)\Seagate
2014-10-28 11:00 - 2014-10-28 11:00 - 04917302 _____ () C:\Users\admin\Downloads\Windows6.1-KB2691442-x86.msu
2014-10-28 07:18 - 2014-10-28 07:18 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-10-28 07:18 - 2014-10-28 07:18 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-10-28 07:18 - 2014-10-28 07:18 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-10-28 07:18 - 2014-10-28 07:18 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-10-28 07:18 - 2014-10-28 07:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-10-28 07:18 - 2014-10-28 07:18 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-27 15:55 - 2014-10-27 15:55 - 00000000 ____D () C:\Users\admin\Downloads\Schneider_Electric_Sistema_libraries_2014_09
2014-10-27 15:54 - 2014-10-27 15:55 - 00000000 ____D () C:\Users\admin\Documents\SISTEMA
2014-10-27 15:53 - 2014-10-27 15:55 - 00000000 ____D () C:\Users\admin\AppData\Roaming\SISTEMA
2014-10-27 15:53 - 2014-10-27 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SISTEMA
2014-10-27 15:53 - 2014-10-27 15:53 - 00000000 ____D () C:\Program Files (x86)\SISTEMA
2014-10-27 15:52 - 2014-10-27 15:53 - 10659407 _____ () C:\Users\admin\Downloads\SISTEMA_1_1_6.zip
2014-10-27 15:46 - 2014-10-27 15:47 - 03711119 _____ () C:\Users\admin\Downloads\circuit_examples.zip.zip
2014-10-27 15:44 - 2014-10-27 15:45 - 09128697 _____ () C:\Users\admin\Downloads\Schneider_Electric_Sistema_libraries_2014_09.zip
2014-10-27 14:33 - 2014-10-27 14:33 - 00688992 ____R (Swearware) C:\Users\admin\Downloads\dds.com
2014-10-23 16:14 - 2014-10-28 07:44 - 00000000 ____D () C:\Users\admin\AppData\Roaming\LSC
2014-10-22 21:24 - 2014-10-22 21:24 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_l36wscard_01007.Wdf
2014-10-22 21:22 - 2012-10-02 12:49 - 00506184 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3Mdm.sys
2014-10-22 21:22 - 2012-10-02 12:49 - 00453960 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3DevMt.sys
2014-10-22 21:22 - 2012-10-02 12:49 - 00443208 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3CBus.sys
2014-10-22 21:22 - 2012-10-02 12:49 - 00021832 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3mdfl.sys
2014-10-22 21:22 - 2012-10-02 12:49 - 00017736 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3whnt.sys
2014-10-22 21:22 - 2012-10-02 12:49 - 00017736 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3wh.sys
2014-10-22 21:22 - 2012-10-02 12:49 - 00017224 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3cmnt.sys
2014-10-22 21:22 - 2012-10-02 12:49 - 00017224 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3cm.sys
2014-10-22 21:22 - 2012-03-01 14:09 - 00103184 _____ (Ericsson AB) C:\Windows\system32\Drivers\l36wgps64.sys
2014-10-22 21:22 - 2011-01-14 12:50 - 00061992 _____ (Ericsson AB) C:\Windows\system32\Drivers\l36wscard.sys
2014-10-22 21:21 - 2014-10-22 21:21 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2014-10-22 21:21 - 2014-10-22 21:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2014-10-22 21:21 - 2014-10-22 21:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2014-10-22 21:21 - 2014-10-22 21:21 - 00000000 ____D () C:\Program Files (x86)\Dolby Advanced Audio v2
2014-10-22 21:21 - 2014-07-28 11:25 - 00536304 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll
2014-10-22 21:21 - 2014-07-28 11:25 - 00461552 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2014-10-22 21:21 - 2014-07-28 11:25 - 00224496 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2014-10-22 21:21 - 2014-07-28 11:25 - 00173808 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo14.dll
2014-10-22 21:21 - 2014-07-28 11:25 - 00114416 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll
2014-10-22 21:21 - 2014-07-28 11:25 - 00045296 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2014-10-22 21:20 - 2014-10-22 21:20 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-10-22 21:20 - 2013-09-13 18:38 - 00646313 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-10-22 21:20 - 2013-09-13 17:54 - 03641688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-10-22 21:20 - 2013-09-13 13:23 - 32882688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-10-22 21:20 - 2013-09-12 18:23 - 00149208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-10-22 21:20 - 2013-09-12 17:03 - 02586840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-10-22 21:20 - 2013-09-03 13:49 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-10-22 21:20 - 2013-08-20 19:17 - 02809048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-10-22 21:20 - 2013-08-07 16:41 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-10-22 21:20 - 2013-08-06 08:47 - 00947248 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-10-22 21:20 - 2013-08-06 03:56 - 06219096 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-10-22 21:20 - 2013-08-06 03:56 - 01908568 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-10-22 21:20 - 2013-08-06 03:56 - 00312152 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-10-22 21:20 - 2013-08-06 03:56 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-10-22 21:20 - 2013-08-05 17:11 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-10-22 21:20 - 2013-08-02 19:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-10-22 21:20 - 2013-06-05 20:42 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-10-22 21:20 - 2013-04-24 16:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-10-22 21:20 - 2013-02-20 17:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-10-22 21:20 - 2012-10-02 13:41 - 00501192 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-10-22 21:20 - 2012-10-02 13:41 - 00487368 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-10-22 21:20 - 2012-10-02 13:41 - 00415688 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-10-22 21:20 - 2012-08-31 18:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-10-22 21:20 - 2012-08-31 18:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-10-22 21:20 - 2012-08-31 18:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-10-22 21:20 - 2012-08-31 18:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-10-22 21:20 - 2012-08-31 18:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-10-22 21:20 - 2012-02-24 17:52 - 00002872 _____ () C:\Windows\system32\Drivers\SAMSFPA.DAT
2014-10-22 21:16 - 2014-09-05 14:22 - 00077088 _____ (Lenovo.) C:\Windows\system32\ibmpmsvc.exe
2014-10-22 21:16 - 2014-09-05 14:22 - 00072480 _____ (Lenovo.) C:\Windows\system32\ibmpmctl.exe
2014-10-22 21:16 - 2014-09-05 14:22 - 00059128 _____ (Lenovo.) C:\Windows\system32\Drivers\ibmpmdrv.sys
2014-10-22 21:16 - 2014-09-05 14:22 - 00040224 _____ (Lenovo.) C:\Windows\system32\tpinspm.dll
2014-10-22 21:15 - 2014-10-22 21:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-10-22 20:18 - 2014-10-22 20:18 - 00000000 ____D () C:\Program Files\FileOpen
2014-10-22 20:18 - 2014-10-22 20:18 - 00000000 ____D () C:\Program Files (x86)\FileOpen
2014-10-21 12:11 - 2014-10-21 12:11 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-20 10:46 - 2014-10-20 10:46 - 00000000 ____D () C:\Users\admin\AppData\Roaming\LavasoftStatistics
2014-10-20 10:45 - 2014-10-20 10:45 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-10-20 09:28 - 2014-10-20 09:28 - 00000000 ____D () C:\Program Files (x86)\Festo
2014-10-17 07:00 - 2014-06-27 03:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-10-17 07:00 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-10-17 06:55 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-17 06:55 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-17 06:55 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-17 06:55 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-17 06:55 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-17 06:55 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-17 06:55 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-17 06:55 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-17 06:55 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-17 06:55 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-17 06:55 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-10-17 06:55 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-17 06:55 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-17 06:55 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-17 06:55 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-17 06:55 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-17 06:55 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-17 06:55 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-17 06:55 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-17 06:55 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-17 06:55 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-17 06:55 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-17 06:55 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-17 06:55 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-17 06:55 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-17 06:55 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-17 06:55 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-17 06:55 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-17 06:55 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-17 06:55 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-17 06:55 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-17 06:55 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-17 06:55 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-17 06:55 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-17 06:55 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-17 06:55 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-17 06:55 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-17 06:55 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-17 06:55 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-17 06:55 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-17 06:55 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-17 06:55 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-17 06:55 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-17 06:55 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-17 06:55 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-17 06:55 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-17 06:55 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-17 06:55 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-17 06:55 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-17 06:55 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-17 06:55 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-17 06:55 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-17 06:55 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-17 06:55 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-17 06:55 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-17 06:55 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-17 06:55 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-17 06:55 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-17 06:55 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-17 06:55 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-17 06:55 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-17 06:54 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-17 06:54 - 2014-09-09 23:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-17 06:54 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-17 06:54 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-10-17 06:54 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-10-17 06:54 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-17 06:54 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-17 06:54 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-17 06:54 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-17 06:54 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-17 06:54 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-17 06:54 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-17 06:54 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-17 06:54 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-17 06:54 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-17 06:54 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-17 06:54 - 2014-07-07 03:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-17 06:54 - 2014-07-07 03:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-17 06:54 - 2014-07-07 02:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-10-17 06:54 - 2014-07-07 02:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-10-17 06:54 - 2014-07-07 02:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-10-17 06:54 - 2014-06-24 04:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-10-17 06:54 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-10-17 06:54 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-17 06:54 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-17 06:54 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-17 06:54 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-17 06:54 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-17 06:54 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-17 06:53 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-17 06:53 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-17 06:53 - 2014-06-25 03:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-10-17 06:53 - 2014-06-25 02:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-10-17 06:50 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-17 06:50 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-17 06:48 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-17 06:48 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-17 06:48 - 2014-08-23 03:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-10-17 06:48 - 2014-08-23 02:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-10-17 06:42 - 2014-05-14 17:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-10-17 06:42 - 2014-05-14 17:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-10-17 06:42 - 2014-05-14 17:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-10-17 06:42 - 2014-05-14 17:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-10-17 06:42 - 2014-05-14 17:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-10-17 06:42 - 2014-05-14 17:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-10-17 06:42 - 2014-05-14 17:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-10-17 06:42 - 2014-05-14 17:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-10-17 06:42 - 2014-05-14 17:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-10-17 06:42 - 2014-05-14 17:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-10-17 06:41 - 2014-10-17 06:41 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-10-17 06:41 - 2014-05-14 08:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-10-17 06:41 - 2014-05-14 08:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-10-17 06:41 - 2014-05-14 08:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-10-17 06:41 - 2014-05-14 08:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-10-14 10:21 - 2014-10-14 10:21 - 00000000 ____D () C:\Users\admin\AppData\Local\Siemens_AG
2014-10-14 09:18 - 2014-10-14 09:18 - 00000000 ____D () C:\Users\admin\AppData\Roaming\FileOpen
2014-10-14 09:18 - 2014-10-14 09:18 - 00000000 ____D () C:\ProgramData\FileOpen
2014-10-14 09:16 - 2014-10-14 09:16 - 00000000 ____D () C:\Users\admin\Downloads\order_44178
2014-10-07 07:19 - 2014-10-31 11:31 - 00005034 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for nb_bartos-admin nb_bartos

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-03 07:11 - 2009-07-14 05:45 - 00034432 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-03 07:11 - 2009-07-14 05:45 - 00034432 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-03 07:07 - 2009-07-14 06:13 - 00849238 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-03 07:06 - 2013-07-17 06:37 - 01908698 _____ () C:\Windows\WindowsUpdate.log
2014-11-03 07:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-31 08:42 - 2013-07-17 06:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2014-10-31 08:41 - 2014-07-18 13:41 - 00000000 ____D () C:\Users\admin\AppData\Local\MobileAccess
2014-10-31 08:24 - 2014-07-18 13:41 - 00082608 _____ () C:\Users\admin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-31 08:13 - 2014-07-24 07:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-31 08:13 - 2013-07-17 06:37 - 00003944 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-31 08:13 - 2013-07-17 06:37 - 00000936 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-31 08:13 - 2013-07-17 06:37 - 00000932 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-31 08:13 - 2009-07-14 05:45 - 00405696 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-31 07:42 - 2013-07-17 06:37 - 00003692 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-31 07:37 - 2014-08-13 06:21 - 00000000 ____D () C:\Users\admin\AppData\Roaming\FileZilla
2014-10-31 07:37 - 2014-07-24 07:56 - 00000000 ____D () C:\Users\admin\AppData\Roaming\DAEMON Tools Lite
2014-10-31 07:37 - 2014-07-22 12:10 - 00000000 ____D () C:\Users\admin\AppData\Roaming\TeamViewer
2014-10-31 07:36 - 2014-07-21 12:00 - 00000000 ____D () C:\Windows\Minidump
2014-10-31 07:36 - 2011-02-24 18:03 - 00000000 ____D () C:\Windows\Panther
2014-10-30 09:11 - 2013-07-17 06:34 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2014-10-29 11:08 - 2013-07-17 06:33 - 00015404 _____ () C:\Windows\system32\results.xml
2014-10-29 10:58 - 2013-07-17 06:26 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-10-29 10:57 - 2013-07-17 06:26 - 00000000 ____D () C:\Program Files\Intel
2014-10-29 10:55 - 2014-07-24 07:47 - 00000000 ____D () C:\ProgramData\Package Cache
2014-10-28 07:25 - 2013-07-17 06:35 - 00000000 ____D () C:\Windows\System32\Tasks\Lenovo
2014-10-28 07:24 - 2013-07-17 06:35 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-10-28 07:21 - 2014-07-18 20:41 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-27 09:02 - 2014-07-18 13:45 - 00000000 ____D () C:\Users\admin\AppData\Local\Lenovo
2014-10-23 21:17 - 2014-07-18 21:07 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-10-22 21:22 - 2014-07-18 19:59 - 00002982 _____ () C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
2014-10-22 21:21 - 2013-07-17 06:30 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-10-22 21:20 - 2013-07-17 06:30 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-10-22 21:19 - 2013-07-17 06:34 - 00003020 _____ () C:\Windows\System32\Tasks\PMTask
2014-10-22 21:18 - 2009-07-14 04:20 - 00000000 __RSD () C:\Windows\Media
2014-10-22 21:16 - 2013-07-17 06:28 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-22 21:15 - 2013-07-17 06:29 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2014-10-22 21:14 - 2013-07-17 06:28 - 00000000 ____D () C:\Program Files\Lenovo
2014-10-21 13:42 - 2014-07-18 21:24 - 00000000 ____D () C:\Windows\pss
2014-10-21 13:36 - 2014-07-21 08:09 - 00000000 ____D () C:\Windows\0PSQTPPPPPfmis
2014-10-17 11:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-10-17 08:42 - 2014-07-21 07:58 - 00000000 ____D () C:\Users\admin\Documents\Automation
2014-10-17 07:03 - 2014-07-18 19:57 - 00833548 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-10-17 07:00 - 2014-07-18 14:39 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-14 11:41 - 2014-07-19 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Siemens Automation
2014-10-14 11:38 - 2014-07-19 20:50 - 00000000 ____D () C:\Program Files\Common Files\Siemens
2014-10-13 06:59 - 2014-07-18 14:20 - 00000000 ____D () C:\Marek
2014-10-06 06:02 - 2014-07-24 07:50 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-27 10:58

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-11-2014
Ran by admin at 2014-11-03 07:21:10
Running from C:\Users\admin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Endpoint Antivirus 5.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Endpoint Antivirus 5.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACCON-S7-NET (HKLM-x32\...\ACCON-S7-NET) (Version: 3.2.2.2 - DELTALOGIC Automatisierungstechnik GmbH)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Automation Software Updater (x32 Version: 01.01.0000 - Siemens AG) Hidden
Canon Lite Driver (HKLM-x32\...\{4F2955CE-956C-4F79-890F-B1134EFA1611}) (Version: 1.00.0000 - NT-ware)
Canon MF5900 Series (HKLM\...\{47C39213-7CE2-4eb0-A112-11671C0072A0}) (Version: 3.9.0.1 - CANON INC.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5000 - CDBurnerXP)
Compatibility Check Tool TIA - TIACOMPCHECK Single SetupPackage V11.0 + SP1 (x32 Version: 11.00.0100 - Siemens AG) Hidden
Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.6.385 - Corel Inc.)
Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - Acro Software Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Datasnip Serial to Keyboard redirection (HKLM-x32\...\ST6UNST #1) (Version: - )
Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7 (HKLM\...\DisableAMTPopup) (Version: 1.00 - )
DL Wedge Emulation Utility 2.01 (HKLM-x32\...\{EB9EDD27-4C00-4CEA-B8A5-7BA674ABE988}) (Version: 02.01.050525 - Datalogic)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Draft IT (HKLM-x32\...\{EBF0AFAA-F07B-4279-9EAF-652788B9CF6D}) (Version: 3.0.8 - CADlogic Limited)
DraftSight x64 (HKLM\...\{27CADF1B-2626-46F9-ACA8-B94FB3B506DA}) (Version: 12.2.1065 - Dassault Systemes)
EB8000V4.65.08 (HKLM-x32\...\{1337505D-880D-45C1-9563-F433120E9C5A}_is1) (Version: - Weintek Labs., Inc.)
EBpro V4.10.05 (HKLM-x32\...\{CC2A0FDE-0B4E-4C75-9287-0B584603CCFA}_is1) (Version: - Weintek Labs., Inc.)
eDrawings 2014 x64 (HKLM\...\{64B02BFF-CA6E-4E97-9F45-0BA62DB1EE99}) (Version: 14.4.105 - Dassault Systèmes SolidWorks Corp)
EPLAN Electric P8 2.3 (HKLM-x32\...\EPLAN Electric P8 2.3) (Version: 2.3.5.7352 - EPLAN Software & Service GmbH & Co. KG)
EPLAN Electric P8 2.3 (x32 Version: 2.3.5.7352 - EPLAN Software & Service GmbH & Co. KG) Hidden
EPLAN Electric P8 Data 2.3 (HKLM-x32\...\{E31079B5-D262-442D-BE97-E4F0EA1BF174}) (Version: 2.3.5.7352 - EPLAN Software & Service GmbH & Co. KG)
EPLAN Help en-US 2.3 (HKLM-x32\...\{FF7D7CDE-BC8B-4250-90E5-CDE2CF781C32}) (Version: 2.3.5.7352 - EPLAN Software & Service GmbH & Co. KG)
EPLAN License Client (HKLM-x32\...\{0100BD88-3990-431F-9175-AB60E31AFFDE}) (Version: 9.1.11.44101 - EPLAN Software & Service GmbH & Co. KG)
EPLAN Platform 2.3 (HKLM-x32\...\{E31472AD-7381-4A37-AB5B-18379C35A336}) (Version: 2.3.5.7352 - EPLAN Software & Service GmbH & Co. KG)
EPLAN Platform Data 2.3 (HKLM-x32\...\{E30050CA-CC38-4A70-8062-B8212683375F}) (Version: 2.3.5.7352 - EPLAN Software & Service GmbH & Co. KG)
ESET Endpoint Antivirus (HKLM\...\{0E13D046-6FF0-4DE8-B9CB-20614B353365}) (Version: 5.0.2229.2 - ESET, spol s r. o.)
Evernote v. 4.2.3 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.2.3.15 - Evernote Corp.)
FastStone Image Viewer 5.1 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.1 - FastStone Soft)
Festo PARTwebViewer 9.07 (HKLM-x32\...\Festo PARTwebViewer 9_is1) (Version: 9.7.11.7711 - Festo AG & Co. KG)
FileOpen Client (x64) B945 (HKLM\...\{739832CC-EAFB-4E1D-A306-CE21B836AC6F}) (Version: 3.0.105.945 - FileOpen Systems, Inc.)
FileZilla Client 3.9.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.1 - Tim Kosse)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Integrated Camera Driver Installer Package Ver.1.2.1.16 (HKLM-x32\...\{A78800AF-1779-4AE8-8EBE-16E1BE727C71}) (Version: 1.2.1.16 - RICOH)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3359 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.9.254 - Intel Corporation)
Intel® WiDi (HKLM\...\{728985C5-A04B-457C-9D62-15360F3EAF85}) (Version: 3.1.29.0 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Intel® PROSet/Wireless WiFi Software (HKLM\...\{E97F409F-9E1C-42A0-B72D-765A78DF3696}) (Version: 15.01.0000.0830 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
IV-Navigator (HKLM-x32\...\{84FFDE13-1359-472A-B3D9-DBBDE2E3381C}) (Version: 2.1.0.0 - KEYENCE CORPORATION)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Juniper Networks Network Connect 6.5.0 (HKLM-x32\...\Juniper Network Connect 6.5.0) (Version: 6.5.0.15991 - Juniper Networks)
Juniper Networks Setup Client (HKCU\...\Juniper_Setup_Client) (Version: 2.1.4.7717 - Juniper Networks)
Juniper Networks Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 10.6.0 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.12 - )
Lenovo Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.1.16.0 - Lenovo)
Lenovo Mobile Access (HKLM-x32\...\{3F0501BE-3203-4001-8125-BAA857C92F51}) (Version: 3.1.0.1268 - Lenovo)
Lenovo Mobile Broadband Activation (HKLM-x32\...\{A95D9DF7-CF34-421A-A1DC-936A49A4DAEA}) (Version: 4.2.1003.00 - Lenovo Group Limited)
Lenovo Patch Utility (HKLM-x32\...\{6E6E7725-C7BC-4C39-8B3F-14B67331A120}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.09.00 - )
Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.4 - Lenovo Inc.)
Lenovo SimpleTap (HKLM\...\{BF601122-9F0A-41A9-BA06-3158D9FB4B80}) (Version: 3.2.0004.00 - Lenovo Group Limited)
Lenovo Solution Center (HKLM\...\{4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1}) (Version: 2.7.003.00 - Lenovo Group Limited)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0005.00 - Lenovo)
Lenovo Welcome (HKLM-x32\...\{2DC26D10-CC6A-494F-BEA3-B5BC21126D5E}) (Version: 3.1.0020.00 - Lenovo Group Limited)
Math Kernel Libraries (64-bit) (Version: 1.0.31.0 - National Instruments) Hidden
Math Kernel Libraries (x32 Version: 1.0.31.0 - National Instruments) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Message Center Plus (HKLM\...\{3849486C-FF09-4F5D-B491-3E179D58EE15}) (Version: 3.1.0004.00 - Lenovo Group Limited)
Metric Collection SDK 35 (x32 Version: 1.2.0001.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2013 pre podnikateľov - sk-sk (HKLM\...\HomeBusinessRetail - sk-sk) (Version: 15.0.4659.1001 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4023.1211 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20125.0 - Microsoft Corporation)
Microsoft SOAP Toolkit 3.0 (HKLM-x32\...\{BCB4C18A-ACA6-4383-8688-E19933A705DD}) (Version: 3.0.1325.4 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM-x32\...\{EA9640BE-414E-4195-B53B-7905BF1A5A09}) (Version: 7.2.5.4 - Ericsson AB)
Mozilla Firefox 33.0.2 (x86 sk) (HKLM-x32\...\Mozilla Firefox 33.0.2 (x86 sk)) (Version: 33.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
Mozilla Thunderbird 24.4.0 (x86 sk) (HKLM-x32\...\Mozilla Thunderbird 24.4.0 (x86 sk)) (Version: 24.4.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
National Instruments Software (HKLM-x32\...\NI Uninstaller) (Version: - National Instruments)
NCM GPRS 64 (Version: 01.01.0000 - Siemens AG) Hidden
NI .NET Framework 4.0 (x32 Version: 4.01.49152 - National Instruments) Hidden
NI ActiveX Container (64-bit) (Version: 13.0.4 - National Instruments) Hidden
NI ActiveX Container (x32 Version: 13.0.4 - National Instruments) Hidden
NI AFW Custom UI (x32 Version: 9.0.143 - National Instruments) Hidden
NI AFW Custom UI Assemblies (x32 Version: 9.0.143 - National Instruments) Hidden
NI AFW Channel Configuration Tool (x32 Version: 9.0.143 - National Instruments) Hidden
NI AFW UI Assemblies (x32 Version: 9.0.143 - National Instruments) Hidden
NI Assistant Framework (x32 Version: 9.0.143 - National Instruments) Hidden
NI Assistant Framework 64-bit (Version: 9.0.143 - National Instruments) Hidden
NI Assistant Framework LabVIEW 2012 Support (x32 Version: 9.0.115 - National Instruments) Hidden
NI Assistant Framework LabVIEW Code Generator 2012 (x32 Version: 9.0.152 - National Instruments) Hidden
NI Atomic PXIe Peripheral Module Driver 2.3.1 (x32 Version: 2.31.49152 - National Instruments) Hidden
NI Authentication 13.0.0 (64-bit) (Version: 13.0.326 - National Instruments) Hidden
NI Authentication 13.0.0 (x32 Version: 13.0.326 - National Instruments) Hidden
NI Certificates Deployment Support (x32 Version: 1.04.49153 - National Instruments) Hidden
NI CodeSignAPI (x32 Version: 2.70.346 - National Instruments) Hidden
NI CompactRIO Module Config API Runtime 13.0 (x32 Version: 13.00.49152 - National Instruments) Hidden
NI Curl 13.0.0 (64-bit) (Version: 13.0.324 - National Instruments) Hidden
NI Curl 13.0.0 (x32 Version: 13.0.324 - National Instruments) Hidden
NI Customer Experience Improvement Program (x32 Version: 1.1.21.0 - National Instruments) Hidden
NI DataSocket 5.0 (64-bit) (Version: 5.0.115.0 - National Instruments) Hidden
NI DataSocket 5.0 (x32 Version: 5.0.115.0 - National Instruments) Hidden
NI Distributed System Manager 2012 (x32 Version: 12.1.52.0 - National Instruments) Hidden
NI DN 2.0 SP1 installer (x32 Version: 2.11.49152 - National Instruments) Hidden
NI Error Reporting 2013 (x32 Version: 13.0.324 - National Instruments) Hidden
NI Error Reporting Interface Installer 5.5 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI Error Reporting Interface Installer 5.5 for Windows 64-bit (Version: 5.50.49152 - National Instruments) Hidden
NI Ethernet Device Enumerator (x32 Version: 1.01.49152 - National Instruments) Hidden
NI Ethernet Device Enumerator 64-Bit (Version: 1.01.49152 - National Instruments) Hidden
NI EulaDepot (x32 Version: 3.20.351 - National Instruments) Hidden
NI Example Finder 12.0 (x32 Version: 12.0.291.0 - National Instruments) Hidden
NI GMP Windows 32-bit Installer 13.0.0 (x32 Version: 13.0.45.0 - National Instruments) Hidden
NI GMP Windows 64-bit Installer 13.0.0 (Version: 13.0.45.0 - National Instruments) Hidden
NI Help Assistant 2.0 (64bit) (Version: 2.0.3 - National Instruments) Hidden
NI Help Assistant 2.0 (x32 Version: 2.0.3 - National Instruments) Hidden
NI Help Configuration Utility for VS2010 (x32 Version: 13.0.00167 - National Instruments) Hidden
NI I/O Trace 3.1.0 (x32 Version: 3.16.768 - National Instruments) Hidden
NI I/O Trace API for LabVIEW 2012 (32-bit) (x32 Version: 3.10.437.0 - National Instruments) Hidden
NI Instrument I/O Assistant (x32 Version: 2.8.18.0 - National Instruments) Hidden
NI Instrument IO Assistant for LabVIEW 2012 32-bit (x32 Version: 1.0.24.0 - National Instruments) Hidden
NI LabVIEW 2011 Real-Time NBFifo (x32 Version: 11.0.250.0 - National Instruments) Hidden
NI LabVIEW 2012 Database Connectivity Toolkit (x32 Version: 12.0.179.0 - National Instruments) Hidden
NI LabVIEW 2012 Database Connectivity Toolkit License (x32 Version: 12.0.181.0 - National Instruments) Hidden
NI LabVIEW 2012 Help (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI LabVIEW 2012 Help File (x32 Version: 12.1.48.0 - National Instruments) Hidden
NI LabVIEW 2012 Manuals (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI LabVIEW 2012 Real-Time NBFifo (x32 Version: 12.0.219.0 - National Instruments) Hidden
NI LabVIEW 2012 Run-Time Engine Web Server (x32 Version: 12.5.198.0 - National Instruments) Hidden
NI LabVIEW 2012 Scripting Code Generator (x32 Version: 9.0.58 - National Instruments) Hidden
NI LabVIEW 2012 Search (x32 Version: 12.0.4.0 - National Instruments) Hidden
NI LabVIEW 2012 Simulation (x32 Version: 12.0.359.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 (32-bit) (x32 Version: 12.1.104.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 (32-bit) (x32 Version: 12.1.53.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 Deployable License (x32 Version: 12.1.52.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 License (x32 Version: 12.1.52.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 MeasAppChm File (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 Run-Time Engine Non-English Support. (x32 Version: 12.1.52.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 Variable Web Service (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI LabVIEW 2012 SP1 Web Server (x32 Version: 12.5.198.0 - National Instruments) Hidden
NI LabVIEW 2013 Deployment Framework (x32 Version: 13.0.330 - National Instruments) Hidden
NI LabVIEW 2013 Real-Time Error Dialog (x32 Version: 13.0.123 - National Instruments) Hidden
NI LabVIEW Broker (64 bit) (Version: 6.8.10.0 - National Instruments) Hidden
NI LabVIEW Broker (x32 Version: 6.8.10.0 - National Instruments) Hidden
NI LabVIEW C Interface (x32 Version: 1.0.1 - National Instruments) Hidden
NI LabVIEW Compare Utility 12.0.0 (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI LabVIEW Deployable License 8.0 (x32 Version: 8.0.893.0 - National Instruments) Hidden
NI LabVIEW MAX XML (x32 Version: 9.0.6.0 - National Instruments) Hidden
NI LabVIEW Merge Utility 2012 SP1 (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2011 SP1 (x32 Version: 11.0.448.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2012 SP1 f3 (x32 Version: 12.1.58.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.0 (x32 Version: 8.0.729.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2011 (x32 Version: 11.0.449.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2012 SP1 (x32 Version: 12.1.58.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (x32 Version: 11.0.375.0 - National Instruments) Hidden
NI LabVIEW Web Services Runtime (x32 Version: 12.5.128.0 - National Instruments) Hidden
NI LabWindows/CVI 2010 LabVIEW DLL Builder (x32 Version: 10.0.0360 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Analysis Library (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Analysis Library (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Code Generator (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Original) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Updated) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Network Variable Library (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Network Variable Library (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Run-Time Engine (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 TDM Streaming Library (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 TDM Streaming Library (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI Run-Time Engine 2010 SP1 (Updated) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI Run-Time Engine 2010 SP1 (x32 Version: 10.0.1434 - National Instruments) Hidden
NI Launcher (x32 Version: 3.20.351 - National Instruments) Hidden
NI License Manager (x32 Version: 3.7.53 - National Instruments) Hidden
NI Logos 5.5 (64-bit) (Version: 5.5.293 - National Instruments) Hidden
NI Logos 5.5 (x32 Version: 5.5.293 - National Instruments) Hidden
NI Logos LabVIEW 2012 Support (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI Logos XT Support (x32 Version: 5.5.294 - National Instruments) Hidden
NI Logos64 XT Support (Version: 5.5.294 - National Instruments) Hidden
NI Math Kernel Libraries (64-bit) (Version: 1.0.10.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.10.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.861.0 - National Instruments) Hidden
NI MAX Remote Configuration 64-bit Installer 5.5 (Version: 5.50.49152 - National Instruments) Hidden
NI MAX Remote Configuration Installer 5.5 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI MAX Support for 64 Bit Windows (Version: 5.50.49152 - National Instruments) Hidden
NI MDF Support (x32 Version: 3.20.351 - National Instruments) Hidden
NI mDNS Responder 2.2 for Windows 64-bit (Version: 2.20.49152 - National Instruments) Hidden
NI mDNS Responder 2.2.0 (x32 Version: 2.20.49152 - National Instruments) Hidden
NI Measurement & Automation Explorer 5.5.0 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI Measurement Studio 2010 Service Pack 1 Enterprise RunTime for VS2010 (x32 Version: 9.1.10106 - National Instruments) Hidden
NI Measurement Studio Common .NET Assemblies (x64) for .NET 4.0 (Version: 13.0.00190 - National Instruments) Hidden
NI Measurement Studio Common .NET Assemblies for .NET 4.0 and VS2010 (x32 Version: 13.0.00190 - National Instruments) Hidden
NI Measurement Studio ComponentWorks UI (x32 Version: 8.6.10603 - National Instruments) Hidden
NI Measurement Studio Recipe Processor (x32 Version: 8.0.0101 - National Instruments) Hidden
NI MetaSuite Installer (x32 Version: 3.20.351 - National Instruments) Hidden
NI MXS 5.5.0 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI MXS 5.5.0 for 64 Bit Windows (Version: 5.50.49152 - National Instruments) Hidden
NI Network Browser 5.5.0 (x32 Version: 5.50.166 - National Instruments) Hidden
NI Network Discovery 5.5 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI Network Discovery 5.5 for Windows 64-bit (Version: 5.50.49152 - National Instruments) Hidden
NI NI LabVIEW 2011 SP1 Run-Time Engine Non-English Support (x32 Version: 11.0.302.0 - National Instruments) Hidden
NI OPC Support (x32 Version: 12.0.295.0 - National Instruments) Hidden
NI Portable Configuration 5.5.0 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI Portable Configuration for 64 Bit Windows 5.5.0 (Version: 5.50.49152 - National Instruments) Hidden
NI PXI Hardware 64-bit Support 3.2.3 (Version: 3.23.49152 - National Instruments) Hidden
NI PXI Platform Framework 1.6.3 (x32 Version: 1.63.49152 - National Instruments) Hidden
NI PXI Platform Framework 1.6.3 64-bit (Version: 1.63.49152 - National Instruments) Hidden
NI PXI Platform Services 3.2.3 (x32 Version: 3.23.49152 - National Instruments) Hidden
NI PXI Platform Services 3.2.3 Configuration Support (x32 Version: 3.23.49152 - National Instruments) Hidden
NI PXI Platform Services 3.2.3 Expert (x32 Version: 3.23.49152 - National Instruments) Hidden
NI PXI SystemAPI Expert 3.2.3 (x32 Version: 3.23.49152 - National Instruments) Hidden
NI PXI SystemAPI Expert 64-bit 3.2.3 (Version: 3.23.49152 - National Instruments) Hidden
NI Registration Wizard (x32 Version: 1.3.97.0 - National Instruments) Hidden
NI Remote Provider for MAX 5.5.0 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI Remote PXI Provider for MAX 5.5.0 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI RTSI Cable Core Installer 1.4.0 (x32 Version: 1.40.49152 - National Instruments) Hidden
NI RTSI Cable Core Installer for 64 Bit Windows 1.4.0 (Version: 1.40.49152 - National Instruments) Hidden
NI RTSI PAL Device Library Installer 1.4.0 (x32 Version: 1.40.49152 - National Instruments) Hidden
NI RTSI PAL Device Library Installer for 64 Bit Windows 1.4.0 (Version: 1.40.49152 - National Instruments) Hidden
NI RTSI UI Provider 1.4.0 (x32 Version: 1.40.49152 - National Instruments) Hidden
NI RTSI UI Provider for 64 Bit Windows 1.4.0 (Version: 1.40.49152 - National Instruments) Hidden
NI Search Shared (x32 Version: 12.0.5.0 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (64-bit) (Version: 1.0.29.0 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (x32 Version: 1.0.29.0 - National Instruments) Hidden
NI Service Locator 13.0 (x32 Version: 13.0.303 - National Instruments) Hidden
NI SignalExpress 2013 Datatypes (x32 Version: 7.0.148 - National Instruments) Hidden
NI SignalExpress 2013 Datatypes LabVIEW 2012 Support (x32 Version: 7.0.148 - National Instruments) Hidden
NI SignalExpress 2013 Tools (x32 Version: 7.0.149 - National Instruments) Hidden
NI SLCP 1.0 (x32 Version: 1.0.63.0 - National Instruments) Hidden
NI Software Provider for MAX 5.5.0 (x32 Version: 5.50.49152 - National Instruments) Hidden
NI SSL LabVIEW 2012 SP1 Support (x32 Version: 12.5.198.0 - National Instruments) Hidden
NI SSL LabVIEW RTE 2012 SP1 Support (x32 Version: 12.5.8.0 - National Instruments) Hidden
NI SSL Support (64-bit) (Version: 13.0.319 - National Instruments) Hidden
NI SSL Support (x32 Version: 13.0.324 - National Instruments) Hidden
NI System API .NET 5.5.0 (x32 Version: 5.50.157 - National Instruments) Hidden
NI System API Client for WIF 5.5.0 (x32 Version: 5.50.419 - National Instruments) Hidden
NI System API Web-Service 32-bit 5.5.0 (x32 Version: 5.50.405 - National Instruments) Hidden
NI System API Windows 32-bit 5.5.0 (x32 Version: 5.50.589 - National Instruments) Hidden
NI System API Windows 64-bit 5.5.0 (Version: 5.50.588 - National Instruments) Hidden
NI System Configuration 5.5.0 LabVIEW Support (x32 Version: 5.50.186 - National Instruments) Hidden
NI System Configuration CVI Support 5.5.0 (x32 Version: 5.50.188 - National Instruments) Hidden
NI System Configuration LV2012 Support 5.5.0 (x32 Version: 5.50.184 - National Instruments) Hidden
NI System Configuration Runtime 5.5.0 (x32 Version: 5.50.226 - National Instruments) Hidden
NI System Configuration Runtime 5.5.0 for Windows 64-bit (Version: 5.50.226 - National Instruments) Hidden
NI System Monitor 3.2.3 (x32 Version: 3.23.49152 - National Instruments) Hidden
NI System Monitor 3.2.3 64-bit (Version: 3.23.49152 - National Instruments) Hidden
NI System State Publisher (64-bit) (Version: 13.0.299 - National Instruments) Hidden
NI System State Publisher (x32 Version: 13.0.304 - National Instruments) Hidden
NI System Web Server 13.0 (x32 Version: 13.0.330 - National Instruments) Hidden
NI System Web Server Base 13.0.0 (64-bit) (Version: 13.0.323 - National Instruments) Hidden
NI System Web Server Base 13.0.0 (x32 Version: 13.0.323 - National Instruments) Hidden
NI TDM Excel Add-In 3.5 (x32 Version: 3.5.9 - National Instruments) Hidden
NI TDM Excel Add-In 3.5 64-bit (Version: 3.5.9 - National Instruments) Hidden
NI TDM Streaming 2.5 (64-bit) (Version: 2.5.36 - National Instruments) Hidden
NI TDM Streaming 2.5 (x32 Version: 2.5.36 - National Instruments) Hidden
NI Trace Engine (64-bit) (Version: 13.0.324 - National Instruments) Hidden
NI Trace Engine (x32 Version: 13.0.324 - National Instruments) Hidden
NI Uninstaller (x32 Version: 3.20.351 - National Instruments) Hidden
NI Update Service 2.3 (64-bit) (Version: 2.30.53 - National Instruments) Hidden
NI Update Service 2.3 (x32 Version: 2.30.65 - National Instruments) Hidden
NI USI 2.0.0 (x32 Version: 2.0.04901 - National Instruments) Hidden
NI USI 2.0.0 64-Bit (Version: 2.0.04901 - National Instruments) Hidden
NI Variable Engine (64-bit) (Version: 2.6.296.0 - National Instruments) Hidden
NI Variable Engine 2.6.0 (x32 Version: 2.6.296.0 - National Instruments) Hidden
NI Variable Engine LabVIEW 2012 Support (x32 Version: 12.1.51.0 - National Instruments) Hidden
NI VC2005MSMs x64 (Version: 8.05.0 - National Instruments) Hidden
NI VC2005MSMs x86 (x32 Version: 8.05.0 - National Instruments) Hidden
NI VC2008MSMs x64 (Version: 9.0.401 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.401 - National Instruments) Hidden
NI VC2010SP1MSMs x64 (Version: 10.0.100 - National Instruments) Hidden
NI VC2010SP1MSMs x86 (x32 Version: 10.0.100 - National Instruments) Hidden
NI VIPM Helper 2012 (x32 Version: 12.0.211.0 - National Instruments) Hidden
NI Visual C++ 2010 Redistributable Package (x32 Version: 10.10.16385 - National Instruments) Hidden
NI Web Application Server 13.0 (64-bit) (Version: 13.0.319 - National Instruments) Hidden
NI Web Application Server 13.0 (x32 Version: 13.0.324 - National Instruments) Hidden
NI Web Interface Framework 2012 (x32 Version: 12.5.138.0 - National Instruments) Hidden
NI Web Pipeline 2.0.1 (x32 Version: 2.0.128.0 - National Instruments) Hidden
NI Web Pipeline 2.0.1 64-bit support (Version: 2.0.122.0 - National Instruments) Hidden
NI Xalan Delay Load 1.10.2 (x32 Version: 1.10.72.0 - National Instruments) Hidden
NI Xalan Delay Load 1.10.2 64-bit (Version: 1.10.73.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 (x32 Version: 2.7.180.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 64-bit (Version: 2.7.190.0 - National Instruments) Hidden
NI-488.2 3.1.1 (x32 Version: 3.11.49152 - National Instruments) Hidden
NI-488.2 3.1.1 Development Support (x32 Version: 3.11.49152 - National Instruments) Hidden
NI-488.2 64-bit Provider for MAX version 3.1.1 (Version: 3.11.49152 - National Instruments) Hidden
NI-488.2 for Windows x64 version 3.1.1 (Version: 3.11.49152 - National Instruments) Hidden
NI-488.2 Provider for MAX version 3.1.1 (x32 Version: 3.11.49152 - National Instruments) Hidden
NI-579x Configuration API 12.1 (x32 Version: 12.10.49152 - National Instruments) Hidden
NI-APAL 2.3 64-Bit Error Files (Version: 2.30.49152 - National Instruments) Hidden
NI-APAL 2.3 Error Files (x32 Version: 2.30.49152 - National Instruments) Hidden
NI-APAL 2.3 Error Files for LabVIEW RT (x32 Version: 2.30.49152 - National Instruments) Hidden
NI-Common Instrument Design Libraries 12.1 (x32 Version: 12.10.49153 - National Instruments) Hidden
NI-DAQ INF Files 19.7.5 (x32 Version: 19.75.3000 - National Instruments) Hidden
NI-DAQmx 653x Installer 1.9.7 (x32 Version: 1.97.49152 - National Instruments) Hidden
NI-DAQmx 653x Installer for 64 Bit Windows 1.9.7 (Version: 1.97.49152 - National Instruments) Hidden
NI-DAQmx 9.7.5 (x32 Version: 9.75.49152 - National Instruments) Hidden
NI-DAQmx ADE Support 9.7.5 (x32 Version: 9.75.49152 - National Instruments) Hidden
NI-DAQmx and NI-DAQ Common Documents 9.7.5 (x32 Version: 9.75.49153 - National Instruments) Hidden
NI-DAQmx C and VB6 API 2.9.0 (x32 Version: 2.90.49152 - National Instruments) Hidden
NI-DAQmx Common Digital 2.0.0 (x32 Version: 2.00.49152 - National Instruments) Hidden
NI-DAQmx Common Digital for 64 Bit Windows 2.0.0 (Version: 2.00.49152 - National Instruments) Hidden
NI-DAQmx DAQ Assistant 2.6.0 (x32 Version: 2.60.49152 - National Instruments) Hidden
NI-DAQmx DAQ Assistant 64-bit 2.6.0 (Version: 2.60.49152 - National Instruments) Hidden
NI-DAQmx Documentation 9.7.5 (x32 Version: 9.75.49152 - National Instruments) Hidden
NI-DAQmx Documentation for 64 bit Windows 9.7.5 (Version: 9.75.49152 - National Instruments) Hidden
NI-DAQmx Dynamic Signal Acquisition for 64 Bit Windows 2.6.0 (Version: 2.60.49153 - National Instruments) Hidden
NI-DAQmx Dynamic Signal Acquisition Installer 2.6.0 (x32 Version: 2.60.49153 - National Instruments) Hidden
NI-DAQmx FSL Installer 2.3.0 (x32 Version: 2.30.49153 - National Instruments) Hidden
NI-DAQmx FSL Installer for 64-Bit Windows 2.3.0 (Version: 2.30.49153 - National Instruments) Hidden
NI-DAQmx MAX Configuration Support 9.7.5 (x32 Version: 9.75.49152 - National Instruments) Hidden
NI-DAQmx MAX Support 64-bit 2.8.0 (Version: 2.80.49152 - National Instruments) Hidden
NI-DAQmx MIO Device Drivers 2.10.5 (x32 Version: 2.105.49153 - National Instruments) Hidden
NI-DAQmx MIO Device Drivers for 64 Bit Windows 2.10.5 (Version: 2.105.49153 - National Instruments) Hidden
NI-DAQmx MX Expert Framework 2.14.0 (x32 Version: 2.140.49152 - National Instruments) Hidden
NI-DAQmx MX Expert Framework for 64 Bit Windows 2.14.0 (Version: 2.140.49152 - National Instruments) Hidden
NI-DAQmx SCXI 2.1.1 (x32 Version: 2.11.49152 - National Instruments) Hidden
NI-DAQmx SCXI for 64 Bit Windows 2.1.1 (Version: 2.11.49152 - National Instruments) Hidden
NI-DAQmx STC 1.11.0 (x32 Version: 1.110.49152 - National Instruments) Hidden
NI-DAQmx STC for 64 Bit Windows 1.11.0 (Version: 1.110.49152 - National Instruments) Hidden
NI-DAQmx support for LabVIEW 2.7.0 (x32 Version: 2.70.49152 - National Instruments) Hidden
NI-DAQmx Switch Core 2.5.1 (x32 Version: 2.51.49153 - National Instruments) Hidden
NI-DAQmx Switch Core for 64 Bit Windows 2.5.1 (Version: 2.51.49153 - National Instruments) Hidden
NI-DAQmx Timing for 64 Bit Windows 2.7.0 (Version: 2.70.49152 - National Instruments) Hidden
NI-DAQmx Timing Installer 2.7.0 (x32 Version: 2.70.49152 - National Instruments) Hidden
NI-DAQmx/LabVIEW shared documentation 9.7.5 (x32 Version: 9.75.49152 - National Instruments) Hidden
NI-DAQmx/LabVIEW shared documentation for 64 Bit Windows 9.7.5 (Version: 9.75.49152 - National Instruments) Hidden
NI-DIM 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-DIM 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-MDBG 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-MDBG 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-Mesa (Version: 13.0.3 - National Instruments) Hidden
NI-Mesa (x32 Version: 13.0.3 - National Instruments) Hidden
NI-MRU 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-MRU 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-MXDF 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-MXDF 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-MXLC Core (32-bit) (x32 Version: 3.5.22 - National Instruments) Hidden
NI-MXLC Core (64-bit) (Version: 3.5.22 - National Instruments) Hidden
NI-MXLC LabVIEW 2010 Support (Version: 3.5.23 - National Instruments) Hidden
NI-MXLC LabVIEW 2010 Support (x32 Version: 3.5.22 - National Instruments) Hidden
NI-MXLC LabVIEW 2011 Support (Version: 3.5.22 - National Instruments) Hidden
NI-MXLC LabVIEW 2011 Support (x32 Version: 3.5.22 - National Instruments) Hidden
NI-MXLC LabVIEW 2012 Support (Version: 3.5.22 - National Instruments) Hidden
NI-MXLC LabVIEW 2012 Support (x32 Version: 3.5.22 - National Instruments) Hidden
NI-MXLC LabVIEW 2013 Support (Version: 3.5.22 - National Instruments) Hidden
NI-MXLC LabVIEW 2013 Support (x32 Version: 3.5.22 - National Instruments) Hidden
NI-ORB 3.0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-ORB 3.0 for 64-bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-PAL 2.9.1 64-Bit Error Files (Version: 2.91.49152 - National Instruments) Hidden
NI-PAL 2.9.1 Error Files (x32 Version: 2.91.49152 - National Instruments) Hidden
NI-PAL 2.9.1f0 (x32 Version: 10.101.49152 - National Instruments) Hidden
NI-PAL 2.9.1f0 for 64 Bit Windows (Version: 10.101.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 for Phar Lap ETS (x32 Version: 4.30.49152 - National Instruments) Hidden
NI-RPC 4.4.0f0 (x32 Version: 4.40.49152 - National Instruments) Hidden
NI-RPC 4.4.0f0 for 64 Bit Windows (Version: 4.40.49152 - National Instruments) Hidden
NI-RPC 4.4.0f0 for Phar Lap ETS (x32 Version: 4.40.49152 - National Instruments) Hidden
NI-VISA 5.4.0 (x32 Version: 5.40.49152 - National Instruments) Hidden
NI-VISA 5.4.0 64-bit Support (Version: 5.40.49152 - National Instruments) Hidden
NI-VISA 5.4.0 MAX Provider (x32 Version: 5.40.49152 - National Instruments) Hidden
NI-VISA 5.4.0 Provider 64-bit Support (Version: 5.40.49152 - National Instruments) Hidden
NI-VISA Runtime 5.4.0 (x32 Version: 5.40.49152 - National Instruments) Hidden
NI-VISA Server 5.4.0 (x32 Version: 5.40.49152 - National Instruments) Hidden
NI-VISA x64 support 5.4.0 (Version: 5.40.49152 - National Instruments) Hidden
NPort Administration Suite Ver1.15 (HKLM\...\NPort Administration Suite_is1) (Version: - Moxa Inc.)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
On Screen Display (HKLM\...\OnScreenDisplay) (Version: 8.42.01 - )
OPC .NET API 2.00 Redistributables (x86) 101.0 (HKLM-x32\...\{9D8DA9A0-67B7-44DB-A0C3-2D1DC6880B71}) (Version: 2.00.10200 - OPC Foundation)
OPC Core Components Redistributable (x86) 101.2 (HKLM-x32\...\{AD9F5DB5-ACE0-4538-A272-88B10A6C93C8}) (Version: 3.00.10102 - OPC Foundation)
OPC UA SDK 1.01 Redistributables 314.0 (HKLM-x32\...\{3FEC5EBE-08CD-44B4-A319-35F97878A18F}) (Version: 1.01.31400 - OPC Foundation)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Translator 2004 Komplet (HKLM-x32\...\PC Translator 2004 Komplet) (Version: - JANOSiK TEAM)
PKZIP Server for Windows 12.00.0014 (HKLM-x32\...\{F1A02F9C-B331-47B6-8EDB-29CDB443EB37}) (Version: 12.00.0014 - PKWARE, Inc)
PKZIP Server for Windows 12.40.0008 (HKLM-x32\...\{134A51EB-1BBB-4249-BAF5-494C3D186A06}) (Version: 12.40.0008 - PKWARE, Inc)
PlcSimPlus64 (Version: 13.00.0000 - Siemens AG) Hidden
Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.66.3 - Lenovo Group Limited)
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 1.00.0802 - Lenovo)
RapidBoot Shield (HKLM\...\{5E2652DF-743F-482B-A593-C95F431A5769}) (Version: 1.23 - Lenovo)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
Realterm 2.0.0.70_SignedWrapper (HKLM-x32\...\Realterm) (Version: 2.0.0.70_SignedWrapper - Broadcast Equipment)
Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (HKLM\...\EnablePS) (Version: 1.00 - )
Reset NI Config 5.5.0 (x32 Version: 5.50.227 - National Instruments) Hidden
RICOH_Media_Driver_v2.14.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.14.18.01 - RICOH)
S7-200 Explorer V2.0.0.27 (HKLM-x32\...\{2A645578-D36C-4E6C-9DEC-B71BC17EAB74}) (Version: 2.0.0.0 - Siemens)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14044_16 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.14044_16 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Seagate NAS Discovery (HKLM-x32\...\{58053C71-35D9-4F16-9E5A-50C97504B2D0}) (Version: 1.00.0020 - Seagate)
SeCon (x32 Version: 02.01.0000 - Siemens AG) Hidden
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.4.0 - Lenovo Group Limited)
Siemens Totally Integrated Automation Portal V11 (HKLM-x32\...\Siemens Installer Assistant - TIAP11) (Version: V11 - Siemens AG)
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package 0 V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package 02 V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package 03 V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Hardware Support Base Package WCF-01 V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - HM All Editions Single SetupPackage V13.0 UPD4 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - HM NoBasic Single SetupPackage V13.0 UPD4 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - SIMATIC S7-PLCSIM V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Simatic Single SetupPackage V13.0 UPD4 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Startdrive 13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Startdrive Hardware Support Base Package 0 V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - STEP 7 Single SetupPackage V13.0 UPD4 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Support Base Package TO-01 V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - Support Base Package TO-02 V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - TIA Tour Single SetupPackage V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - TIACOMPCHECK Single SetupPackage V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Totally Integrated Automation Portal V13 - WinCC Single SetupPackage V13.0 UPD4 (x32 Version: 13.00.0000 - Siemens AG) Hidden
Siemens Automation License Manager (Version: 05.03.0001 - Siemens AG) Hidden
Siemens Automation License Manager V5.3 + Upd1 (HKLM\...\{34A9817D-BA56-4688-A810-C76ECB118DB4}LicenseManager) (Version: 05.03.0001 - Siemens AG)
Siemens Totally Integrated Automation Portal V12 (HKLM-x32\...\Siemens Installer Assistant - TIAP12) (Version: V12 - Siemens AG)
Siemens Totally Integrated Automation Portal V13 (HKLM-x32\...\Siemens Installer Assistant - TIAP13) (Version: V13 - Siemens AG)
SIMATIC STEP 7 (x32 Version: 05.05.0300 - Siemens AG) Hidden
SIMATIC STEP 7 V5.5 + SP3 Professional 2010 SR3 (HKLM-x32\...\{D85DFF91-444D-430A-B2AC-2157BFC68AF2}STEP7) (Version: 05.05.0300 - Siemens AG)
SIMATIC Device Drivers (Version: 01.02.0500 - Siemens AG) Hidden
SIMATIC Device Drivers WoW (x32 Version: 20.02.0500 - Siemens AG) Hidden
SIMATIC Event Database (x32 Version: 05.05.0300 - Siemens AG) Hidden
SIMATIC HMI License Manager Panel Plugin (x64) (Version: 13.00.0000 - Siemens AG) Hidden
SIMATIC HMI Symbol Library (x32 Version: 13.00.0000 - Siemens AG) Hidden
SIMATIC NCM FWL 64 (Version: 05.05.0400 - Siemens AG) Hidden
SIMATIC PLCSIM 64 (Version: 01.00.0003 - Siemens AG) Hidden
SIMATIC Prosave (x32 Version: 13.00.0000 - Siemens AG) Hidden
SIMATIC Prosave V13.0 (HKLM-x32\...\{8E912B95-EDFE-457C-88C3-C8E4062A9C3A}Prosave) (Version: 13.00.0000 - Siemens AG)
SIMATIC S7-GRAPH (x32 Version: 05.03.0700 - Siemens AG) Hidden
SIMATIC S7-GRAPH V5.3 + SP7 Professional 2010 SR3 (HKLM-x32\...\{4FF24C45-A4EE-4A99-B287-E3468EC41CBD}S7GRAPH) (Version: 05.03.0700 - Siemens AG)
SIMATIC S7-PCT (x32 Version: 03.00.0000 - Siemens AG) Hidden
SIMATIC S7-PCT V3.0 Professional 2010 SR3 (HKLM-x32\...\{9C30580E-0057-46B3-BA05-1048E8A89716}S7PCT) (Version: 03.00.0000 - Siemens AG)
SIMATIC S7-PLCSIM (x32 Version: 12.00.0100 - Siemens AG) Hidden
SIMATIC S7-PLCSIM (x32 Version: 13.00.0000 - Siemens AG) Hidden
SIMATIC S7-PLCSIM (x32 Version: 5.4.0503 - Siemens AG) Hidden
SIMATIC S7-PLCSIM Single SetupPackage - SIMATIC S7-PLCSIM V12.0 + SP1 (x32 Version: 12.00.0100 - Siemens AG) Hidden
SIMATIC S7-PLCSIM V12 SP1 (HKLM-x32\...\Siemens Installer Assistant - S7_PLCSIM_V12) (Version: V12 SP1 - Siemens AG)
SIMATIC S7-PLCSIM V13 (HKLM-x32\...\Siemens Installer Assistant - S7_PLCSIM_V13) (Version: V13 - Siemens AG)
SIMATIC S7-PLCSIM V5.4 + SP5 + Upd3 (HKLM-x32\...\{57ABCC6B-F570-49CC-A45E-95155A9423DD}PLCSim) (Version: 5.4.0503 - Siemens AG)
SIMATIC S7-SCL (x32 Version: 5.3.6.1 - Siemens AG) Hidden
SIMATIC S7-SCL V5.3 + SP6 + Upd1 Professional 2010 SR3 (HKLM-x32\...\{1976C83A-A215-4C05-A516-DF0A28F8A69A}SCL) (Version: 5.3.6.1 - Siemens AG)
SIMATIC WinCC Common Archiving (x32 Version: 07.01.0404 - Siemens AG) Hidden
SIMATIC WinCC flexible 2008 SP3 Upd4 (HKLM-x32\...\InstallShield_{4859C171-B826-4B74-ABCE-501B4C725EA2}) (Version: 1.4.0.4 - Siemens AG)
SIMATIC WinCC flexible OCX (x32 Version: 01.04.0004 - Siemens AG) Hidden
SIMATIC WinCC flexible Runtime (x32 Version: 01.04.0000 - Siemens AG) Hidden
SIMATIC WinCC flexible Runtime 2008 SP3 Upd4 (HKLM-x32\...\{BA076DAD-B2E9-4DE6-8DC3-A12C0E569EAC}HmiRTm) (Version: 01.04.0004 - Siemens AG)
SIMATIC WinCC flexible Runtime Driver (x64) (Version: 01.04.0000 - Siemens AG) Hidden
SIMATIC WinCC flexible Simulator (x32 Version: 01.08.0304 - Siemens AG) Hidden
SIMATIC WinCC flexible Tag Simulator (x32 Version: 01.04.0001 - Siemens AG) Hidden
SISTEMA - Safety Integrity Software Tool for the Evaluation of Machine Applications version 1.1.6. (HKLM-x32\...\{0AC94550-F52C-47D9-A9B3-71FA71C435B8}_is1) (Version: 1.1.6. - Institute for Occupational Health and Safety of German Social Accident Insurance (IFA))
STEP 7 MicroWIN V4.0.9.25 (HKLM-x32\...\{EA5E7DD4-D9AC-406B-9233-9B3E65C1DBA2}) (Version: 4.0.9 - Siemens)
System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 4.03.0017 - Lenovo)
TD Keypad Designer V1.0.9.25 (HKLM-x32\...\{3A3DCADC-703E-4D52-A40B-0A4A3381E503}) (Version: 1.0.9 - Siemens)
TeamViewer 3 (HKLM-x32\...\TeamViewer 3) (Version: - TeamViewer GmbH)
Testok (HKLM-x32\...\{C67F89A3-76A8-4A45-95E3-3B696E783F56}) (Version: 1.1.1 - Optimer)
ThinkPad Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2700 - Broadcom Corporation)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.14 - )
ThinkVantage Access Connections (HKLM-x32\...\{A62AEB2B-E2A0-4E77-8AAE-9645FE3B5487}) (Version: 5.95 - Lenovo)
ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.79.00.03 - Lenovo)
ThinkVantage Fingerprint Software (HKLM\...\{F58DA859-016E-492D-A588-317D9BB28002}) (Version: 5.9.9.7282 - Authentec Inc.)
ThinkVantage GPS (HKLM-x32\...\{6DB21B2C-2BEF-44B4-B264-8EC2BC2369C6}) (Version: 2.80 - Lenovo)
TIA Portal Single SetupPackage - Hardware Support Base Package 0 V11.0 (x32 Version: 11.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package 0 V12.0 (x32 Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package 02 V11.0 (x32 Version: 11.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package 02 V12.0 (x32 Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package 03 V11.0 (x32 Version: 11.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package 03 V12.0 (x32 Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package WCF-01 V11.0 (x32 Version: 11.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package WCF-01 V12.0 (x32 Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - HM All Editions Single SetupPackage V12.0 + SP1 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - HM NoBasic Single SetupPackage V12.0 + SP1 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - HWConfig Single SetupPackage V11.0 SP2 UPD5 (x32 Version: 11.00.0200 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Simatic Single SetupPackage V12.0 SP1 UPD4 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Startdrive Hardware Support Base Package 0 V12.0 (x32 Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Startdrive Optional 12.0 + SP1 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - STEP 7 Safety Single SetupPackage V11.0 (x32 Version: 11.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - STEP 7 Single SetupPackage V11.0 SP2 UPD5 (x32 Version: 11.00.0200 - Siemens AG) Hidden
TIA Portal Single SetupPackage - STEP 7 Single SetupPackage V12.0 SP1 UPD4 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Support Base Package TO-01 V11.0 (x32 Version: 11.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Support Base Package TO-01 V12.0 (x32 Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Support Base Package TO-02 V11.0 (x32 Version: 11.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Support Base Package TO-02 V12.0 (x32 Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - TIA ESTOUR V11.0 + SP2 (x32 Version: 11.00.0200 - Siemens AG) Hidden
TIA Portal Single SetupPackage - TIA Tour Single SetupPackage V12.0 + SP1 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - TIACOMPCHECK Single SetupPackage V12.0 + SP1 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - WinCC Single SetupPackage V11.0 SP2 UPD5 (x32 Version: 11.00.0200 - Siemens AG) Hidden
TIA Portal Single SetupPackage - WinCC Single SetupPackage V12.0 SP1 UPD4 (x32 Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - WINCCBASUCL V11.0 + SP11 (x32 Version: 11.00.1100 - Siemens AG) Hidden
Totally Integrated Automation Portal V11 - TIA Portal Single SetupPackage V11.0 + SP2 (x32 Version: 11.00.0200 - Siemens AG) Hidden
Totally Integrated Automation Portal V12 - TIA Portal Single SetupPackage V12.0 + SP1 (x32 Version: 12.00.0100 - Siemens AG) Hidden
Totally Integrated Automation Portal V13 - TIA Portal Single SetupPackage V13.0 (x32 Version: 13.00.0000 - Siemens AG) Hidden
VC User 71 RTL X86 --- (x32 Version: 1.0 - redistributed from Microsoft Corporation merge modules) Hidden
VIP Access (HKLM-x32\...\{E8D46836-CD55-453C-A107-A59EC51CB8DC}) (Version: 2.0.5.13 - VeriSign)
VISA Shared Components 64-Bit (HKLM-x32\...\VISASharedComponents) (Version: 1.5 - IVI Foundation)
VISA Shared Components 64-Bit (Version: 1.5.0 - IVI Foundation) Hidden
WIF Core Dependencies Windows 5.5.0 (x32 Version: 5.50.155 - National Instruments) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinCC flexible (x32 Version: 01.04.0004 - Siemens AG) Hidden
WinCC flexible Graphics (x32 Version: 1.04.0000 - Siemens AG) Hidden
WinCC Runtime Advanced Simulator (x32 Version: 13.00.0000 - Siemens AG) Hidden
Windows Driver Package - Intel (e1cexpress) Net (01/11/2012 11.15.16.0) (HKLM\...\EC2A0F2B229770EC589265FCF2B4839A0C221993) (Version: 01/11/2012 11.15.16.0 - Intel)
Windows Driver Package - Intel System (01/11/2012 9.3.0.1020) (HKLM\...\09839A9B5EDA69DA2DCC34637B5140AAF8A53B44) (Version: 01/11/2012 9.3.0.1020 - Intel)
Windows Driver Package - Intel System (08/26/2011 9.3.0.1011) (HKLM\...\9D7CD466F7FC8B18FF1B84943B7BB8648D17FCE8) (Version: 08/26/2011 9.3.0.1011 - Intel)
Windows Driver Package - Intel System (08/26/2011 9.3.0.1011) (HKLM\...\D8EF6CACF49BD33CC1FACD124C8CC2B1A8E8AE35) (Version: 08/26/2011 9.3.0.1011 - Intel)
Windows Driver Package - Intel USB (08/26/2011 9.3.0.1011) (HKLM\...\97EE1802A0385A37DE6323FA39EC76BEB2D73E41) (Version: 08/26/2011 9.3.0.1011 - Intel)
Windows Driver Package - Lenovo 1.65.05.20 (02/29/2012 1.65.05.20) (HKLM\...\E3535F123E7F666D573665142F90D3E5004DC326) (Version: 02/29/2012 1.65.05.20 - Lenovo)
Windows Driver Package - Synaptics (SynTP) Mouse (04/06/2012 16.1.1.0) (HKLM\...\64B3C27E4CF7B6AD920184EFFF6C488C55EF2892) (Version: 04/06/2012 16.1.1.0 - Synaptics)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1978552082-3196818792-1247738123-1000_Classes\CLSID\{12545791-AC9A-44B2-8964-0DA216C4A4E5}\InprocServer32 -> C:\Program Files (x86)\Festo\PARTwebViewer 9.07\64\npwebviewerplugins64.dll (CADENAS GmbH)
CustomCLSID: HKU\S-1-5-21-1978552082-3196818792-1247738123-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1978552082-3196818792-1247738123-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1978552082-3196818792-1247738123-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1978552082-3196818792-1247738123-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1978552082-3196818792-1247738123-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2014-07-22 12:35 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {12ED5B8C-03B9-4B78-9E05-4194EBDE5CD6} - System32\Tasks\Lenovo\LSC\CreateHardwareScanTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2014-10-16] (Lenovo)
Task: {1CE42326-0590-42E6-BBA4-DC7012A76743} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-05-30] (Lenovo)
Task: {1D341257-A5C8-401C-8D61-84F3601B6028} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-05-06] (Lenovo)
Task: {207AED30-6870-4C22-8722-B93FCA033BD1} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2014-09-10] (Lenovo Group Limited)
Task: {27CF9122-4088-4174-84D5-EF82E6DED5B2} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {344ACA72-4B06-4642-AF38-68966973F646} - System32\Tasks\TVT\TVSUUpdateTask_WIN-O7K2T0KS2C2_Administrator => C:\Program Files (x86)\Lenovo\System Update\tvsu.exe [2012-06-05] ()
Task: {3C626560-D037-4C20-924F-80FD9AA5DD6F} - System32\Tasks\Lenovo\SimpleTap\Start SimpleTap for nb_bartos.admin => C:\Program Files\Lenovo\SimpleTap\SimpleTap.exe [2012-05-16] (Lenovo)
Task: {43D63318-54B8-40F7-B33E-532BB18558C6} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-09-25] (Microsoft Corporation)
Task: {525C27E7-2D74-45E5-A9DB-C6AB8452BE0F} - System32\Tasks\TVT\TVSUUpdateTask_nb_bartos_admin => C:\Program Files (x86)\Lenovo\System Update\tvsu.exe [2012-06-05] ()
Task: {536C2F34-182B-4352-8595-B27ADA18DE02} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {663AA772-95B4-4C03-BD37-0DB69D1262DD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-22] (Google Inc.)
Task: {6DC6DA9B-A4C7-4A22-91B1-69D91C9D6E34} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)
Task: {6E8EC266-C69E-4A81-9055-6E763EE0ECCC} - System32\Tasks\Microsoft Office 15 Sync Maintenance for nb_bartos-admin nb_bartos => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-09-16] (Microsoft Corporation)
Task: {75428E15-7F9C-4EAF-BDE5-9892A7B79EBC} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-10-16] (Lenovo)
Task: {A56D0724-E35B-4925-82C0-EDEA1A9367D0} - System32\Tasks\Lenovo\Message Center Plus Launcher => C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [2012-05-16] (Lenovo)
Task: {BBB06778-C1A7-423C-A048-A71272A1EA73} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-07-28] (Synaptics Incorporated)
Task: {CA596233-7C26-4D4F-899F-E6890B8C5ADA} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-10-16] (Lenovo)
Task: {CFE56DF8-ED89-4FDF-95CB-399F00FB1A79} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {EF63B053-A204-4B28-ABF0-99C7EC37FE02} - System32\Tasks\DiskUpdate => C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe [2009-02-10] ()
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-09-16 05:07 - 2013-10-23 13:24 - 00087600 _____ () C:\Windows\System32\cpwmon64.dll
2014-01-13 09:00 - 2014-01-13 09:00 - 00774144 _____ () C:\Program Files\Common Files\Siemens\SWS\PlugIns\SCP\Scpwin64.dll
2014-07-18 21:07 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-09-05 10:25 - 2013-09-05 10:25 - 01319936 _____ () C:\Program Files\Dassault Systemes\DraftSight\bin\QtNetwork4.dll
2013-09-05 10:25 - 2013-09-05 10:25 - 03405312 _____ () C:\Program Files\Dassault Systemes\DraftSight\bin\QtCore4.dll
2013-12-04 09:25 - 2013-12-04 09:25 - 00566784 _____ () C:\Program Files\Dassault Systemes\DraftSight\bin\QtXml4.dll
2014-05-27 09:21 - 2014-05-27 09:21 - 00853728 _____ () C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\sn_regbase.dll
2013-07-17 06:34 - 2014-09-10 05:06 - 00104960 ____N () C:\Program Files (x86)\ThinkPad\Utilities\US\PWMRT64V.DLL
2014-05-01 20:29 - 2014-05-01 20:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2013-07-17 06:31 - 2012-03-19 07:09 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-07-17 06:36 - 2012-01-17 07:29 - 00030512 _____ () C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBServiceps.dll
2013-07-17 06:34 - 2011-08-02 19:58 - 02201088 _____ () C:\Program Files\Lenovo\Communications Utility\cxcore210.dll
2013-07-17 06:34 - 2011-08-02 19:58 - 02085888 _____ () C:\Program Files\Lenovo\Communications Utility\cv210.dll
2012-10-15 13:04 - 2012-10-15 13:04 - 00385024 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\NISWCH.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00005120 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NI5690.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00012288 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIDWG.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00021504 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIHSD.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00006144 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIPS.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00005632 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIRFSA.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00013312 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISL.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00013824 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISRC.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00006656 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISYNC.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00007680 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NITNR.sdc
2013-03-04 13:46 - 2013-03-04 13:46 - 00009728 _____ () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NITSU.sdc
2011-12-06 21:11 - 2011-12-06 21:11 - 00061776 _____ () C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\zlib.dll
2014-05-27 09:21 - 2014-05-27 09:21 - 00769760 _____ () C:\Windows\SysWOW64\sn_regbase.dll
2013-07-17 06:31 - 2011-07-13 09:10 - 00065576 ____R () C:\Program Files (x86)\Mobile Broadband drivers\WMCore\MBMDebug.dll
2013-05-29 13:51 - 2013-05-29 13:51 - 02214912 _____ () C:\Program Files (x86)\National Instruments\Shared\LabVIEW Run-Time\2012\NIQtCore_2012.dll
2013-05-29 13:51 - 2013-05-29 13:51 - 08044544 _____ () C:\Program Files (x86)\National Instruments\Shared\LabVIEW Run-Time\2012\NIQtGui_2012.dll
2012-01-26 09:36 - 2012-01-26 09:36 - 00278528 _____ () C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\xerces-depdom_2_6.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00891392 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 02281984 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00322048 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00339456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00400384 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00016896 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00195584 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00062464 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00446976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00019456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
2013-07-17 06:38 - 2012-07-12 13:59 - 00062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll
2014-07-18 20:51 - 2014-03-16 22:41 - 03018864 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2014-07-18 20:51 - 2014-03-16 22:41 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2014-07-18 20:51 - 2014-03-16 22:41 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2012-06-05 23:15 - 2012-06-05 23:15 - 00092072 _____ () C:\Program Files (x86)\Lenovo\System Update\tvsutil.dll
2013-07-17 06:29 - 2012-02-21 04:09 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2014-10-30 23:16 - 2014-10-30 23:16 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-07-21 06:11 - 2014-07-21 06:11 - 17029808 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:9A32E6D3

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: FileOpenBroker => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: Lenovo Registration => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
MSCONFIG\startupreg: NI Update Service => "C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe" -startupTask
MSCONFIG\startupreg: niDevMon => C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe
MSCONFIG\startupreg: NIRegistrationWizard => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe -autoDiscover 1 -displayIfNoneFound 0 -displayRegisterOptions 1 -sleepIfNoneFound 0 -locale 1051
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

========================= Accounts: ==========================

admin (S-1-5-21-1978552082-3196818792-1247738123-1000 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-1978552082-3196818792-1247738123-500 - Administrator - Disabled)
Guest (S-1-5-21-1978552082-3196818792-1247738123-501 - Limited - Disabled)
marek (S-1-5-21-1978552082-3196818792-1247738123-1006 - Administrator - Enabled)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/03/2014 07:03:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2014 02:56:25 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1".Error in manifest or policy file "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" on line Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition is Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (10/31/2014 02:56:25 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1".Error in manifest or policy file "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" on line Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition is Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (10/31/2014 02:49:24 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1".Error in manifest or policy file "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" on line Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition is Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (10/31/2014 00:58:33 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Failed to create restore point (Process = C:\Users\admin\AppData\Local\Temp\IXP000.TMP\dxwsetup.exe /windowsupdate; Description = Installed DirectX; Error = 0x80070422).

Error: (10/31/2014 00:38:02 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (10/31/2014 11:23:35 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1".Error in manifest or policy file "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" on line Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition is Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (10/31/2014 11:16:21 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2014 11:03:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2014 10:35:56 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"1".Error in manifest or policy file "Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"2" on line Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0".
Definition is Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0".
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (11/03/2014 07:03:20 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The CCDBUtils service depends the following service: SCSMonitor. This service might not be installed.

Error: (11/03/2014 07:03:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The cvintdrv service failed to start due to the following error:
%%1275

Error: (11/03/2014 07:03:18 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\cvintdrv.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (11/03/2014 07:03:15 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SMI Helper Driver (smihlp2) service failed to start due to the following error:
%%2

Error: (10/31/2014 11:16:02 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The CCDBUtils service depends the following service: SCSMonitor. This service might not be installed.

Error: (10/31/2014 11:16:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The cvintdrv service failed to start due to the following error:
%%1275

Error: (10/31/2014 11:16:00 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\SysWow64\Drivers\cvintdrv.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (10/31/2014 11:15:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The SMI Helper Driver (smihlp2) service failed to start due to the following error:
%%2

Error: (10/31/2014 11:03:40 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The CCDBUtils service depends the following service: SCSMonitor. This service might not be installed.

Error: (10/31/2014 11:03:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The cvintdrv service failed to start due to the following error:
%%1275


Microsoft Office Sessions:
=========================
Error: (11/03/2014 07:03:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2014 02:56:25 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0"C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.exeC:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.Com.DLL1

Error: (10/31/2014 02:56:25 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0"C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.exeC:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.Com.DLL1

Error: (10/31/2014 02:49:24 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0"C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.exeC:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.Com.DLL1

Error: (10/31/2014 00:58:33 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Users\admin\AppData\Local\Temp\IXP000.TMP\dxwsetup.exe /windowsupdateInstalled DirectX0x80070422

Error: (10/31/2014 00:38:02 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422

Error: (10/31/2014 11:23:35 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0"C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.exeC:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.Com.DLL1

Error: (10/31/2014 11:16:21 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2014 11:03:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/31/2014 10:35:56 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Siemens.Automation.Portal.Com,processorArchitecture="AMD64",type="win32",version="1.0.0.0"Siemens.Automation.Portal.Com,processorArchitecture="x86",type="win32",version="1.0.0.0"C:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.exeC:\Program Files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.Portal.Com.DLL1


==================== Memory info ===========================

Processor: Intel® Core™ i7-3520M CPU @ 2.90GHz
Percentage of memory in use: 58%
Total physical RAM: 3792.79 MB
Available physical RAM: 1559.07 MB
Total Pagefile: 7583.77 MB
Available Pagefile: 4433 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Windows7_OS) (Fixed) (Total:446.72 GB) (Free:304.8 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:17.58 GB) (Free:6.14 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 43BA564B)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=446.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=17.6 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Attached Files


Edited by Oh My!, 03 November 2014 - 11:36 AM.
Logs posted


#7 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:10 AM

Posted 03 November 2014 - 12:00 PM

Greetings,

Unless otherwise requested, please copy and paste your information in a reply rather than attach a file. It makes it far easier for me to evaluate.

Please cut and paste FRST from your Downloads folder to your Desktop.

Running from C:\Users\admin\Downloads


Please do these things for me.

===================================================

AdwCleaner by Xplode - Delete Adware

-------------------
  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browser
  • Double click on AdwCleaner.exe, click Run, then select I agree if it appears
  • Click Scan
  • Once the scan has completed click on Clean
  • Confirm the cleaning and rebooting of your computer by clicking OK
  • Your computer will be rebooted automatically. A text file will open after the restart
  • Copy and paste the contents in your reply
  • You can also find the logfile at C:\AdwCleaner\AdwCleaner.txt
===================================================

Junkware Removal Tool by thisisu

-------------------
  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply
===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\...\MountPoints2: {41e9fb4a-12f8-11e4-ac56-028037ec0200} - D:\autorun.exe
HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\...\MountPoints2: {909430c3-0ec3-11e4-a0f5-806e6f6e6963} - Q:\LenovoQDrive.exe
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => No File
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => No File
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => No File
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => No File
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 avchv; system32\DRIVERS\avchv.sys [X]
S2 smihlp2; \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [X]
S3 usb6xxxk; \??\C:\Windows\system32\drivers\usb6xxxkl.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
2014-10-22 21:20 - 2014-10-22 21:20 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
Folder: C:\Windows\0PSQTPPPPPfmis
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Run Combofix in Vista/7

--------------------

Combofix is a very powerful tool and special attention must be taken to allow it to work properly. Please pay careful attention to the following instructions.

sUBs, the author of Combofix, recommends you to uninstall AVG or CA Internet Security before running the program. If you have either of these programs on your computer please uninstall them using AppRemover which can be downloaded here. We will be sure to reinstall the Antivirus program once we are finished using Combofix.
  • Please download ComboFix from one of these locations:

BleepingComputer
ForoSpyware

  • Save Combofix.exe to your Desktop <-- Important!!!
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Double click on Combofix.exe and follow the prompts. It is important you do not mouseclick while the program is running or it may stall.
Note #1: Often times it may appear as if ComboFix has stopped working. To verify it is still running please do one of the following below. If, based on the below, you have concluded ComboFix has stopped running please stop and advise me.
  • Check your computer clock. If it is still running then so is ComboFix
  • Open Task Manager and select the Applications Tab. If the status of AutoScan is Running, then ComboFix is running
  • Open Task Manager and select the Processes Tab. Under Image Name look for files ending in .3xe. If there are fluctuating numbers under CPU and Mem Usage then ComboFix is running
Note #2: If you receive the following error "Illegal operation attempted on a registery key that has been marked for deletion" please just restart your computer to resolve this issue

If Combofix fails to run properly using the above instructions please attempt the following:
  • Right click on the Combofix icon on your desktop and select Delete
  • Download a new copy but rename it to freshcopy.exe first, then save it to your desktop
  • Now download RKill.exe (or RKill renamed as iExplore.exe if the first one doesn't work properly) and save it to your desktop
  • Restart your computer in Safe Mode
  • Right click on RKill (or iExplore) and select Run as Administrator. If you are using Windows XP simply double click the icon
  • A black DOS screen should flash and disappear. If not, try to launch the program with the second file. If neither works please stop and let me know
  • When RKill is finished running you will be presented with a text file and a copy will be saved on your desktop. Copy and paste the contents of this report in your reply
  • Do not reboot your computer
  • Double click the freshcopy.exe icon (renamed Combofix file)
  • When finished, it will produce a log. Please copy and paste the C:\Combofix.txt log information in your next reply
  • If you disabled your antivirus please enable it again. If you uninstalled it please wait for instructions to reinstall it
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • AdwCleaner log
  • Junkware log
  • Fixlog
  • Combofix log
  • How is your computer running?

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#8 bartosm

bartosm
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:10 AM

Posted 03 November 2014 - 02:38 PM

Hello

I am running programs and attach the report. I reinstalled system about 4 months ago.

 

thx

 

 

 

AdwCleaner[R0].txt

 

# AdwCleaner v3.311 - Report created 03/11/2014 at 18:14:40
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : admin - NB_BARTOS
# Running from : C:\Users\admin\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : Partner Service

***** [ Files / Folders ] *****

Folder Found : C:\ProgramData\Partner
Folder Found : C:\Windows\Util

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\adawarebp
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Found : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Found : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A1ECF9FD-832D-4351-B4AC-62F847EE7A80}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v33.0.2 (x86 sk)

[ File : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\nno330qa.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [2931 octets] - [03/11/2014 18:14:40]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2991 octets] ##########
 

 

 

 

 

 

 

 

AdwCleaner[S0].txt

 

# AdwCleaner v3.311 - Report created 03/11/2014 at 18:16:06
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : admin - NB_BARTOS
# Running from : C:\Users\admin\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : Partner Service

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Windows\Util

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A1ECF9FD-832D-4351-B4AC-62F847EE7A80}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344


-\\ Mozilla Firefox v33.0.2 (x86 sk)

[ File : C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\nno330qa.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [3091 octets] - [03/11/2014 18:14:40]
AdwCleaner[S0].txt - [3054 octets] - [03/11/2014 18:16:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3114 octets] ##########
 

 

 

 

 

Junkware log

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.5 (10.31.2014:1)
OS: Windows 7 Professional x64
Ran by admin on po 03. 11. 2014 at 18:24:09,95
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\admin\AppData\Roaming\mozilla\firefox\profiles\nno330qa.default\minidumps [23 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 03. 11. 2014 at 18:26:37,08
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

 

 

Fixlog

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-11-2014
Ran by admin at 2014-11-03 18:31:30 Run:1
Running from C:\Users\admin\Desktop
Loaded Profile: admin (Available profiles: admin)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\...\MountPoints2: {41e9fb4a-12f8-11e4-ac56-028037ec0200} - D:\autorun.exe
HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\...\MountPoints2: {909430c3-0ec3-11e4-a0f5-806e6f6e6963} - Q:\LenovoQDrive.exe
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => No File
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => No File
ShellIconOverlayIdentifiers: [SugarSyncRoot] ->
{A759AFF6-5851-457D-A540-F4ECED148351} => No File
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => No File
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 avchv; system32\DRIVERS\avchv.sys [X]
S2 smihlp2; \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [X]
S3 usb6xxxk; \??\C:\Windows\system32\drivers\usb6xxxkl.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
2014-10-22 21:20 - 2014-10-22 21:20 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
Folder: C:\Windows\0PSQTPPPPPfmis
*****************

"HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41e9fb4a-12f8-11e4-ac56-028037ec0200}" => Key deleted successfully.
"HKCR\CLSID\{41e9fb4a-12f8-11e4-ac56-028037ec0200}" => Key not found.
"HKU\S-1-5-21-1978552082-3196818792-1247738123-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{909430c3-0ec3-11e4-a0f5-806e6f6e6963}" => Key deleted successfully.
"HKCR\CLSID\{909430c3-0ec3-11e4-a0f5-806e6f6e6963}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SugarSyncBackedUp" => Key deleted successfully.
"HKCR\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SugarSyncPending" => Key deleted successfully.
"HKCR\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}" => Key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ShellIconOverlayIdentifiers: [SugarSyncRoot] ->" => Key not found.
"HKCR\CLSID\ShellIconOverlayIdentifiers: [SugarSyncRoot] ->" => Key not found.
{A759AFF6-5851-457D-A540-F4ECED148351} => No File => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SugarSyncShared" => Key deleted successfully.
"HKCR\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
avchv => Service deleted successfully.
smihlp2 => Service deleted successfully.
usb6xxxk => Service deleted successfully.
vmci => Service deleted successfully.
VMnetAdapter => Service deleted successfully.
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.

========================= Folder: C:\Windows\0PSQTPPPPPfmis ========================

2014-07-21 08:09 - 2014-07-21 08:09 - 0001280 _____ () C:\Windows\0PSQTPPPPPfmis\00000000000000000000.DLL

====== End of Folder: ======


=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-11-03 18:34:33)<=

C:\ProgramData\DP45977C.lfl => Moved successfully.

==== End of Fixlog ====

 

 

 

 

 

Combofix log

 

 

ComboFix 14-10-29.01 - admin . 11. 2014  18:43:59.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1250.421.1033.18.3793.1618 [GMT 1:00]
Running from: c:\users\admin\Desktop\ComboFix.exe
AV: ESET Endpoint Antivirus 5.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: ESET Endpoint Antivirus 5.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Created a new restore point
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Lenovo\Lenovo Solution Center\Microsoft Fix it\FixitUi\_desktop.ini
c:\programdata\Roaming
c:\windows\msdownld.tmp
c:\windows\security\Database\tmp.edb
Q:\Autorun.inf
.
.
(((((((((((((((((((((((((   Files Created from 2014-10-03 to 2014-11-03  )))))))))))))))))))))))))))))))
.
.
2014-11-03 18:19 . 2014-11-03 18:19    --------    d-----w-    c:\users\Default\AppData\Local\temp
2014-11-03 17:24 . 2014-11-03 17:24    --------    d-----w-    c:\windows\ERUNT
2014-11-03 17:14 . 2014-11-03 17:16    --------    d-----w-    C:\AdwCleaner
2014-11-03 06:19 . 2014-11-03 17:34    --------    d-----w-    C:\FRST
2014-10-31 07:42 . 2014-10-31 07:42    --------    d-----w-    c:\users\admin\AppData\Local\Evernote
2014-10-31 06:25 . 2014-10-31 06:25    --------    d-----w-    c:\program files\CCleaner
2014-10-29 09:54 . 2013-07-18 00:43    795632    ----a-w-    c:\windows\system32\drivers\iusb3xhc.sys
2014-10-29 09:54 . 2013-07-18 00:43    358896    ----a-w-    c:\windows\system32\drivers\iusb3hub.sys
2014-10-29 09:54 . 2013-07-18 00:43    20464    ----a-w-    c:\windows\system32\drivers\iusb3hcs.sys
2014-10-29 09:41 . 2012-11-01 08:48    245872    ----a-w-    c:\windows\system32\seagcoinst.dll
2014-10-29 09:40 . 2014-10-29 09:40    --------    d-----w-    c:\users\admin\AppData\Roaming\Seagate
2014-10-29 09:40 . 2014-10-29 09:40    86016    ----a-r-    c:\users\admin\AppData\Roaming\Microsoft\Installer\{58053C71-35D9-4F16-9E5A-50C97504B2D0}\Seagate_NAS_Discov_25095144CDA545069117E7B7657B7840.exe
2014-10-29 09:40 . 2014-10-29 09:40    86016    ----a-r-    c:\users\admin\AppData\Roaming\Microsoft\Installer\{58053C71-35D9-4F16-9E5A-50C97504B2D0}\BlackArmor_Discove_90FF9289A03D4ED88DE6D3E499E65F57_1.exe
2014-10-29 09:40 . 2014-10-29 09:40    86016    ----a-r-    c:\users\admin\AppData\Roaming\Microsoft\Installer\{58053C71-35D9-4F16-9E5A-50C97504B2D0}\ARPPRODUCTICON.exe
2014-10-29 09:39 . 2014-10-29 09:39    --------    d-----w-    c:\program files (x86)\Seagate
2014-10-28 06:18 . 2014-10-28 06:18    --------    d-----w-    c:\program files (x86)\Common Files\Java
2014-10-28 06:18 . 2014-10-28 06:18    98216    ----a-w-    c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-10-28 06:18 . 2014-10-28 06:18    --------    d-----w-    c:\program files (x86)\Java
2014-10-27 14:53 . 2014-10-27 14:55    --------    d-----w-    c:\users\admin\AppData\Roaming\SISTEMA
2014-10-27 14:53 . 2014-10-27 14:53    --------    d-----w-    c:\program files (x86)\SISTEMA
2014-10-23 15:14 . 2014-10-28 06:44    --------    d-----w-    c:\users\admin\AppData\Roaming\LSC
2014-10-22 20:24 . 2014-10-22 20:24    --------    d-----w-    C:\DRIVERS
2014-10-22 20:22 . 2012-10-02 11:49    443208    ----a-w-    c:\windows\system32\drivers\Mbm3CBus.sys
2014-10-22 20:22 . 2012-10-02 11:49    17736    ----a-w-    c:\windows\system32\drivers\Mbm3whnt.sys
2014-10-22 20:22 . 2012-10-02 11:49    17736    ----a-w-    c:\windows\system32\drivers\Mbm3wh.sys
2014-10-22 20:22 . 2012-03-01 13:09    103184    ----a-w-    c:\windows\system32\drivers\l36wgps64.sys
2014-10-22 20:22 . 2011-01-14 11:50    61992    ----a-w-    c:\windows\system32\drivers\l36wscard.sys
2014-10-22 20:22 . 2012-10-02 11:49    506184    ----a-w-    c:\windows\system32\drivers\Mbm3Mdm.sys
2014-10-22 20:22 . 2012-10-02 11:49    453960    ----a-w-    c:\windows\system32\drivers\Mbm3DevMt.sys
2014-10-22 20:22 . 2012-10-02 11:49    21832    ----a-w-    c:\windows\system32\drivers\Mbm3mdfl.sys
2014-10-22 20:22 . 2012-10-02 11:49    17224    ----a-w-    c:\windows\system32\drivers\Mbm3cmnt.sys
2014-10-22 20:22 . 2012-10-02 11:49    17224    ----a-w-    c:\windows\system32\drivers\Mbm3cm.sys
2014-10-22 20:21 . 2014-07-28 10:25    461552    ----a-w-    c:\windows\system32\drivers\SynTP.sys
2014-10-22 20:21 . 2014-07-28 10:25    114416    ----a-w-    c:\windows\SysWow64\SynTPCOM.dll
2014-10-22 20:21 . 2014-07-28 10:25    173808    ----a-w-    c:\windows\system32\SynTPCo14.dll
2014-10-22 20:21 . 2014-07-28 10:25    224496    ----a-w-    c:\windows\system32\SynTPAPI.dll
2014-10-22 20:21 . 2014-07-28 10:25    536304    ----a-w-    c:\windows\SysWow64\SynCOM.dll
2014-10-22 20:21 . 2014-07-28 10:25    45296    ----a-w-    c:\windows\system32\drivers\Smb_driver_Intel.sys
2014-10-22 20:21 . 2014-10-22 20:21    --------    d-----w-    c:\program files (x86)\Dolby Advanced Audio v2
2014-10-22 20:16 . 2014-09-05 13:22    40224    ----a-w-    c:\windows\system32\tpinspm.dll
2014-10-22 20:16 . 2014-09-05 13:22    77088    ----a-w-    c:\windows\system32\ibmpmsvc.exe
2014-10-22 20:16 . 2014-09-05 13:22    59128    ----a-w-    c:\windows\system32\drivers\ibmpmdrv.sys
2014-10-22 20:16 . 2014-09-05 13:22    72480    ----a-w-    c:\windows\system32\ibmpmctl.exe
2014-10-22 19:18 . 2014-10-22 19:18    --------    d-----w-    c:\program files (x86)\FileOpen
2014-10-22 19:18 . 2014-10-22 19:18    --------    d-----w-    c:\program files\FileOpen
2014-10-21 11:11 . 2014-10-21 11:11    --------    d-----w-    c:\programdata\Malwarebytes
2014-10-20 09:46 . 2014-10-20 09:46    --------    d-----w-    c:\users\admin\AppData\Roaming\LavasoftStatistics
2014-10-20 08:28 . 2014-10-20 08:28    --------    d-----w-    c:\program files (x86)\Festo
2014-10-17 06:00 . 2014-06-27 02:08    2777088    ----a-w-    c:\windows\system32\msmpeg2vdec.dll
2014-10-17 06:00 . 2014-06-27 01:45    2285056    ----a-w-    c:\windows\SysWow64\msmpeg2vdec.dll
2014-10-17 05:54 . 2014-08-01 11:53    1031168    ----a-w-    c:\windows\system32\TSWorkspace.dll
2014-10-17 05:53 . 2014-06-25 02:05    14175744    ----a-w-    c:\windows\system32\shell32.dll
2014-10-17 05:53 . 2014-09-04 05:23    424448    ----a-w-    c:\windows\system32\rastls.dll
2014-10-17 05:53 . 2014-09-04 05:04    372736    ----a-w-    c:\windows\SysWow64\rastls.dll
2014-10-17 05:50 . 2014-09-05 02:11    6584320    ----a-w-    c:\windows\system32\mstscax.dll
2014-10-17 05:50 . 2014-09-05 01:52    5703168    ----a-w-    c:\windows\SysWow64\mstscax.dll
2014-10-17 05:48 . 2014-09-13 01:58    77312    ----a-w-    c:\windows\system32\packager.dll
2014-10-17 05:48 . 2014-09-13 01:40    67072    ----a-w-    c:\windows\SysWow64\packager.dll
2014-10-17 05:48 . 2014-08-23 02:07    404480    ----a-w-    c:\windows\system32\gdi32.dll
2014-10-17 05:48 . 2014-08-23 01:45    311808    ----a-w-    c:\windows\SysWow64\gdi32.dll
2014-10-17 05:42 . 2014-05-14 16:23    44512    ----a-w-    c:\windows\system32\wups2.dll
2014-10-17 05:42 . 2014-05-14 16:23    58336    ----a-w-    c:\windows\system32\wuauclt.exe
2014-10-17 05:42 . 2014-05-14 16:23    2477536    ----a-w-    c:\windows\system32\wuaueng.dll
2014-10-17 05:42 . 2014-05-14 16:21    2620928    ----a-w-    c:\windows\system32\wucltux.dll
2014-10-17 05:42 . 2014-05-14 16:23    38880    ----a-w-    c:\windows\system32\wups.dll
2014-10-17 05:42 . 2014-05-14 16:23    36320    ----a-w-    c:\windows\SysWow64\wups.dll
2014-10-17 05:42 . 2014-05-14 16:23    700384    ----a-w-    c:\windows\system32\wuapi.dll
2014-10-17 05:42 . 2014-05-14 16:23    581600    ----a-w-    c:\windows\SysWow64\wuapi.dll
2014-10-17 05:42 . 2014-05-14 16:20    97792    ----a-w-    c:\windows\system32\wudriver.dll
2014-10-17 05:42 . 2014-05-14 16:17    92672    ----a-w-    c:\windows\SysWow64\wudriver.dll
2014-10-17 05:41 . 2014-05-14 07:23    198600    ----a-w-    c:\windows\system32\wuwebv.dll
2014-10-17 05:41 . 2014-05-14 07:23    179656    ----a-w-    c:\windows\SysWow64\wuwebv.dll
2014-10-17 05:41 . 2014-05-14 07:20    36864    ----a-w-    c:\windows\system32\wuapp.exe
2014-10-17 05:41 . 2014-05-14 07:17    33792    ----a-w-    c:\windows\SysWow64\wuapp.exe
2014-10-17 05:41 . 2014-10-17 05:41    --------    d-----w-    c:\windows\system32\appmgmt
2014-10-14 09:21 . 2014-10-14 09:21    --------    d-----w-    c:\users\admin\AppData\Local\Siemens_AG
2014-10-14 08:18 . 2014-10-14 08:18    --------    d-----w-    c:\users\admin\AppData\Roaming\FileOpen
2014-10-14 08:18 . 2014-10-14 08:18    --------    d-----w-    c:\programdata\FileOpen
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-03 08:02 . 2014-07-18 13:39    103265616    ----a-w-    c:\windows\system32\MRT.exe
2014-09-26 05:16 . 2014-07-18 20:15    590536    ----a-w-    c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2014-09-10 08:50 . 2014-09-10 08:50    4    ----a-w-    C:\Project Manager.reg
2014-09-10 04:06 . 2013-07-17 05:34    2692896    ------w-    c:\windows\PWMBTHLV.EXE
2014-09-10 04:06 . 2013-07-17 05:34    29512    ----a-w-    c:\windows\system32\drivers\DZHDD64.SYS
2014-09-10 04:06 . 2013-07-17 05:34    2861344    ----a-w-    c:\windows\system32\PWMCP64V.cpl
2014-09-10 04:06 . 2013-07-17 05:34    20736    ----a-w-    c:\windows\system32\drivers\TPPWR64V.SYS
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-07-18 20:32    222920    ----a-w-    c:\users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-07-18 20:32    222920    ----a-w-    c:\users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-07-18 20:32    222920    ----a-w-    c:\users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2008-10-30 55808]
"USB3MON"="c:\program files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-07-18 292088]
"IMSS"="c:\program files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe" [2012-02-28 133400]
"PWMTRV"="c:\program files (x86)\ThinkPad\Utilities\PWMTR64V.DLL" [2014-09-10 6363424]
"Fastboot"="c:\program files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" [2012-01-17 1091376]
"MobileAccess"="c:\program files (x86)\Lenovo\MobileAccess\MobileAccess.exe" [2012-07-10 155424]
"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-07-12 155488]
"SiemensAutomationFileStorage"="c:\program files (x86)\Siemens\Automation\Portal V12\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe" [2014-02-26 942592]
"S7UB Start"="c:\program files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" [2010-06-02 102453]
"SiemensAutomationFileStorage_TIAP13"="c:\program files (x86)\Siemens\Automation\Portal V13\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe" [2014-07-31 1023488]
"WinCC flexible Smart Start"="c:\program files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe" [2013-12-14 118784]
"Dolby Advanced Audio v2"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-08-31 508656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages    REG_MULTI_SZ       scecli c:\program files\ThinkPad\Bluetooth Software\BtwProximityCP.dll c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
.
R2 CCDBUtils;CCDBUtils;c:\program files (x86)\Common Files\Siemens\CommonArchiving\CCDBUtils.exe;c:\program files (x86)\Common Files\Siemens\CommonArchiving\CCDBUtils.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HyperW7Svc;HyperW7 Service;c:\program files\Lenovo\RapidBoot\HyperW7Svc64.exe;c:\program files\Lenovo\RapidBoot\HyperW7Svc64.exe [x]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
R3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 CCArchiveManagerService;CCArchiveManagerService;c:\program files (x86)\Common Files\Siemens\CommonArchiving\CCArchiveManager.exe;c:\program files (x86)\Common Files\Siemens\CommonArchiving\CCArchiveManager.exe [x]
R3 CCRedundancyAgent-Service;CCRedundancyAgent-Service;c:\program files (x86)\Common Files\Siemens\CommonArchiving\CCRedundancyAgent.exe;c:\program files (x86)\Common Files\Siemens\CommonArchiving\CCRedundancyAgent.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 DozeSvc;Lenovo Doze Mode Service;c:\program files (x86)\ThinkPad\Utilities\DZSVC64.EXE;c:\program files (x86)\ThinkPad\Utilities\DZSVC64.EXE [x]
R3 dpmcslv;dpmcslv; [x]
R3 EPLAN Client Service;EPLAN Client Service;c:\program files\EPLAN\Common\EClientService.exe;c:\program files\EPLAN\Common\EClientService.exe [x]
R3 ESHASRV;ESET SHA Service;c:\program files\ESET\ESET Endpoint Antivirus\EShaSrv.exe;c:\program files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [x]
R3 Fastboot;Fastboot;c:\windows\system32\DRIVERS\Fastboot.sys;c:\windows\SYSNATIVE\DRIVERS\Fastboot.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot;c:\program files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe;c:\program files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [x]
R3 LSCWinService;LSCWinService;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [x]
R3 lvalarmk;lvalarmk;c:\windows\system32\drivers\lvalarmk.sys;c:\windows\SYSNATIVE\drivers\lvalarmk.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 ni1006k;NI PXI-1006 Chassis Pilot;c:\windows\system32\drivers\ni1006k.sys;c:\windows\SYSNATIVE\drivers\ni1006k.sys [x]
R3 ni1045k;NI PXI-1045 Chassis Pilot;c:\windows\system32\drivers\ni1045kl.sys;c:\windows\SYSNATIVE\drivers\ni1045kl.sys [x]
R3 ni1065k;NI PXIe-1065 Chassis Pilot;c:\windows\system32\drivers\ni1065k.sys;c:\windows\SYSNATIVE\drivers\ni1065k.sys [x]
R3 nicdcck;nicdcck;c:\windows\system32\drivers\nicdcckl.sys;c:\windows\SYSNATIVE\drivers\nicdcckl.sys [x]
R3 nicdrk;nicdrk;c:\windows\system32\drivers\nicdrkl.sys;c:\windows\SYSNATIVE\drivers\nicdrkl.sys [x]
R3 nicmrk;nicmrk;c:\windows\system32\drivers\nicmrkl.sys;c:\windows\SYSNATIVE\drivers\nicmrkl.sys [x]
R3 nicondrk;nicondrk;c:\windows\system32\drivers\nicondrkl.sys;c:\windows\SYSNATIVE\drivers\nicondrkl.sys [x]
R3 nicsrk;nicsrk;c:\windows\system32\drivers\nicsrkl.sys;c:\windows\SYSNATIVE\drivers\nicsrkl.sys [x]
R3 nidmxfk;nidmxfk;c:\windows\system32\drivers\nidmxfkl.sys;c:\windows\SYSNATIVE\drivers\nidmxfkl.sys [x]
R3 nidsark;nidsark;c:\windows\system32\drivers\nidsarkl.sys;c:\windows\SYSNATIVE\drivers\nidsarkl.sys [x]
R3 niemrk;niemrk;c:\windows\system32\drivers\niemrkl.sys;c:\windows\SYSNATIVE\drivers\niemrkl.sys [x]
R3 niesrk;niesrk;c:\windows\system32\drivers\niesrkl.sys;c:\windows\SYSNATIVE\drivers\niesrkl.sys [x]
R3 nifslk;nifslk;c:\windows\system32\drivers\nifslkl.sys;c:\windows\SYSNATIVE\drivers\nifslkl.sys [x]
R3 nimsdrk;nimsdrk;c:\windows\system32\drivers\nimsdrkl.sys;c:\windows\SYSNATIVE\drivers\nimsdrkl.sys [x]
R3 nimstsk;nimstsk;c:\windows\system32\drivers\nimstskl.sys;c:\windows\SYSNATIVE\drivers\nimstskl.sys [x]
R3 nimxpk;nimxpk;c:\windows\system32\drivers\nimxpkl.sys;c:\windows\SYSNATIVE\drivers\nimxpkl.sys [x]
R3 ninshsdk;ninshsdk;c:\windows\system32\drivers\ninshsdkl.sys;c:\windows\SYSNATIVE\drivers\ninshsdkl.sys [x]
R3 nipalfwedl;nipalfwedl;c:\windows\system32\drivers\nipalfwedl.sys;c:\windows\SYSNATIVE\drivers\nipalfwedl.sys [x]
R3 nipalusbedl;nipalusbedl;c:\windows\system32\drivers\nipalusbedl.sys;c:\windows\SYSNATIVE\drivers\nipalusbedl.sys [x]
R3 nipxigpk;NI PXI Generic Chassis Pilot;c:\windows\system32\drivers\nipxigpk.sys;c:\windows\SYSNATIVE\drivers\nipxigpk.sys [x]
R3 niraptrk;niraptrk;c:\windows\system32\drivers\niraptrkl.sys;c:\windows\SYSNATIVE\drivers\niraptrkl.sys [x]
R3 niscdk;niscdk;c:\windows\system32\drivers\niscdkl.sys;c:\windows\SYSNATIVE\drivers\niscdkl.sys [x]
R3 nisdigk;nisdigk;c:\windows\system32\drivers\nisdigkl.sys;c:\windows\SYSNATIVE\drivers\nisdigkl.sys [x]
R3 nisftk;nisftk;c:\windows\system32\drivers\nisftkl.sys;c:\windows\SYSNATIVE\drivers\nisftkl.sys [x]
R3 nispdk;nispdk;c:\windows\system32\drivers\nispdkl.sys;c:\windows\SYSNATIVE\drivers\nispdkl.sys [x]
R3 nissrk;nissrk;c:\windows\system32\drivers\nissrkl.sys;c:\windows\SYSNATIVE\drivers\nissrkl.sys [x]
R3 nistc2k;nistc2k;c:\windows\system32\drivers\nistc2kl.sys;c:\windows\SYSNATIVE\drivers\nistc2kl.sys [x]
R3 nistc3rk;nistc3rk;c:\windows\system32\drivers\nistc3rkl.sys;c:\windows\SYSNATIVE\drivers\nistc3rkl.sys [x]
R3 nistcrk;nistcrk;c:\windows\system32\drivers\nistcrkl.sys;c:\windows\SYSNATIVE\drivers\nistcrkl.sys [x]
R3 niswdk;niswdk;c:\windows\system32\drivers\niswdkl.sys;c:\windows\SYSNATIVE\drivers\niswdkl.sys [x]
R3 nitiork;nitiork;c:\windows\system32\drivers\nitiorkl.sys;c:\windows\SYSNATIVE\drivers\nitiorkl.sys [x]
R3 niufurk;niufurk;c:\windows\system32\drivers\niufurkl.sys;c:\windows\SYSNATIVE\drivers\niufurkl.sys [x]
R3 niwfrk;niwfrk;c:\windows\system32\drivers\niwfrkl.sys;c:\windows\SYSNATIVE\drivers\niwfrkl.sys [x]
R3 nixsrk;nixsrk;c:\windows\system32\drivers\nixsrkl.sys;c:\windows\SYSNATIVE\drivers\nixsrkl.sys [x]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 NIApplicationWebServer64;NI Application Web Server (64-bit);c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 DzHDD64;DzHDD64;c:\windows\System32\DRIVERS\DzHDD64.sys;c:\windows\SYSNATIVE\DRIVERS\DzHDD64.sys [x]
S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 nipbcfk;National Instruments Class Upper Filter Driver;c:\windows\System32\drivers\nipbcfk.sys;c:\windows\SYSNATIVE\drivers\nipbcfk.sys [x]
S0 nipxibaf;National Instruments PXI Bridge Access Driver;c:\windows\System32\drivers\nipxibaf.sys;c:\windows\SYSNATIVE\drivers\nipxibaf.sys [x]
S0 nipxibrc;National Instruments PXI Bridge Configuration Driver;c:\windows\System32\drivers\nipxibrc.sys;c:\windows\SYSNATIVE\drivers\nipxibrc.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys;c:\windows\SYSNATIVE\DRIVERS\ApsHM64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 PHCORE;PHCORE;c:\program files\Lenovo\RapidBoot\PHCORE64.SYS;c:\program files\Lenovo\RapidBoot\PHCORE64.SYS [x]
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys;c:\windows\SYSNATIVE\drivers\aksdf.sys [x]
S2 almservice;Automation License Manager Service;c:\program files\Common Files\Siemens\sws\almsrv\almsrv64x.exe;c:\program files\Common Files\Siemens\sws\almsrv\almsrv64x.exe [x]
S2 ClickToRunSvc;Služba Klikni a spusti balíka Microsoft Office;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [x]
S2 DraftSight API Service;DraftSight API Service;c:\program files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe;c:\program files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 FastbootService;FastbootService;c:\program files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe;c:\program files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [x]
S2 FileOpenManager;FileOpen Manager Service;c:\program files\FileOpen\Services\FileOpenManager64.exe;c:\program files\FileOpen\Services\FileOpenManager64.exe [x]
S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [x]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [x]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [x]
S2 LENOVO.TVTVCAM;Lenovo Virtual Camera Controller;c:\program files\Lenovo\Communications Utility\vcamsvc.exe;c:\program files\Lenovo\Communications Utility\vcamsvc.exe [x]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [x]
S2 MacheenService;Macheen Service;c:\program files (x86)\Lenovo\MobileAccess\MacheenService.exe;c:\program files (x86)\Lenovo\MobileAccess\MacheenService.exe [x]
S2 MSSQL$WINCCFLEXEXPRESS;SQL Server (WINCCFLEXEXPRESS);c:\program files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe;c:\program files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [x]
S2 ni488enumsvc;NI GPIB Enumeration Service;c:\windows\SysWOW64\nipalsm.exe;c:\windows\SysWOW64\nipalsm.exe [x]
S2 NIApplicationWebServer;NI Application Web Server;c:\program files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;c:\program files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
S2 nidevldu;NI Device Loader;c:\windows\SysWOW64\nidevldu.exe;c:\windows\SysWOW64\nidevldu.exe [x]
S2 niLXIDiscovery;NI LXI Discovery Service;c:\program files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe;c:\program files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [x]
S2 nimDNSResponder;NI mDNS Responder Service;c:\program files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe;c:\program files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [x]
S2 NINetworkDiscovery;NI Network Discovery;c:\program files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe;c:\program files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [x]
S2 nipxirmk;nipxirmk;c:\windows\system32\drivers\nipxirmkl.sys;c:\windows\SYSNATIVE\drivers\nipxirmkl.sys [x]
S2 NISystemWebServer;NI System Web Server;c:\program files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe;c:\program files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [x]
S2 NiViPxiK;NI-VISA PXI Driver;c:\windows\system32\drivers\NiViPxiKl.sys;c:\windows\SYSNATIVE\drivers\NiViPxiKl.sys [x]
S2 npdrv;npdrv;c:\windows\system32\drivers\npdrv.sys;c:\windows\SYSNATIVE\drivers\npdrv.sys [x]
S2 npdrvfilter;npdrvfilter;c:\windows\system32\drivers\npdrvfilter.sys;c:\windows\SYSNATIVE\drivers\npdrvfilter.sys [x]
S2 risdxc;risdxc;c:\windows\system32\DRIVERS\risdxc64.sys;c:\windows\SYSNATIVE\DRIVERS\risdxc64.sys [x]
S2 s7hspsvx;S7 HSP Service;c:\program files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe;c:\program files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe [x]
S2 s7oiehsx64;SIMATIC S7DOS Help Service;c:\program files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe;c:\program files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [x]
S2 s7ousbu64x;SIMATIC USB Service;c:\windows\system32\DRIVERS\s7ousbu64x.sys;c:\windows\SYSNATIVE\DRIVERS\s7ousbu64x.sys [x]
S2 s7sn2srtx;PROFINET IO RT-Protocol V2.0;c:\windows\system32\DRIVERS\s7sn2srtx.sys;c:\windows\SYSNATIVE\DRIVERS\s7sn2srtx.sys [x]
S2 S7TraceServiceX;S7TraceServiceX;c:\program files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64X.exe;c:\program files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64X.exe [x]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [x]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [x]
S2 UA Local Discovery Server;UA Local Discovery Server;c:\program files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe;c:\program files (x86)\Common Files\OPC Foundation\UA\v1.0\Bin\Opc.Ua.DiscoveryServer.exe [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S2 VIPAppService;VIPAppService;c:\program files (x86)\Symantec\VIP Access Client\VIPAppService.exe;c:\program files (x86)\Symantec\VIP Access Client\VIPAppService.exe [x]
S2 WebUpdate4;Web Update Wizard Service V4;c:\windows\SysWOW64\WebUpdateSvc4.exe;c:\windows\SysWOW64\WebUpdateSvc4.exe [x]
S2 WMCoreService;Mobile Broadband Service;c:\program files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe servicemode;c:\program files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe servicemode [x]
S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 5U877;5U877;c:\windows\system32\DRIVERS\5U877.sys;c:\windows\SYSNATIVE\DRIVERS\5U877.sys [x]
S3 dpmconv;SIMATIC NET DP Driver;c:\windows\system32\DRIVERS\dpmconv.sys;c:\windows\SYSNATIVE\DRIVERS\dpmconv.sys [x]
S3 ecnssndis; Mobile Broadband Driver;c:\windows\system32\Drivers\wwuss64.sys;c:\windows\SYSNATIVE\Drivers\wwuss64.sys [x]
S3 ecnssndisfltr; Mobile Broadband Driver Filter;c:\windows\system32\Drivers\wwussf64.sys;c:\windows\SYSNATIVE\Drivers\wwussf64.sys [x]
S3 fwkbdrtm;fwkbdrtm;c:\windows\system32\drivers\fwkbdrtm.sys;c:\windows\SYSNATIVE\drivers\fwkbdrtm.sys [x]
S3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Intel® USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys;c:\windows\SYSNATIVE\DRIVERS\iwdbus.sys [x]
S3 l36wgps; Mobile Broadband GPS Port;c:\windows\system32\DRIVERS\l36wgps64.sys;c:\windows\SYSNATIVE\DRIVERS\l36wgps64.sys [x]
S3 l36wscard; Mobile Broadband USIM Port;c:\windows\system32\DRIVERS\l36wscard.sys;c:\windows\SYSNATIVE\DRIVERS\l36wscard.sys [x]
S3 Mbm3CBus;H5321 gw Mobile Broadband Device (WDM);c:\windows\system32\DRIVERS\Mbm3CBus.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3CBus.sys [x]
S3 Mbm3DevMt; Mobile Broadband Device Management Driver (WDM);c:\windows\system32\DRIVERS\Mbm3DevMt.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3DevMt.sys [x]
S3 Mbm3mdfl; Mobile Broadband Modem Port Filter;c:\windows\system32\DRIVERS\Mbm3mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3mdfl.sys [x]
S3 Mbm3Mdm; Mobile Broadband Modem Port Driver;c:\windows\system32\DRIVERS\Mbm3Mdm.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3Mdm.sys [x]
S3 nidimk;nidimk;c:\windows\system32\drivers\nidimkl.sys;c:\windows\SYSNATIVE\drivers\nidimkl.sys [x]
S3 NIEthernetDeviceEnumerator;NI Ethernet Device Enumerator Driver;c:\windows\system32\DRIVERS\niede.sys;c:\windows\SYSNATIVE\DRIVERS\niede.sys [x]
S3 nimru2k;nimru2k;c:\windows\system32\drivers\nimru2kl.sys;c:\windows\SYSNATIVE\drivers\nimru2kl.sys [x]
S3 NiViPciK;NI-VISA PCI Driver;c:\windows\system32\drivers\NiViPciKl.sys;c:\windows\SYSNATIVE\drivers\NiViPciKl.sys [x]
S3 Power Manager DBC Service;Power Manager Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [x]
S3 s7odpx2x64;SIMATIC Knotentaufe;c:\windows\system32\DRIVERS\s7odpx2x64.sys;c:\windows\SYSNATIVE\DRIVERS\s7odpx2x64.sys [x]
S3 s7oppinx64;SIMATIC PPI Transport;c:\windows\system32\DRIVERS\s7oppinx64.sys;c:\windows\SYSNATIVE\DRIVERS\s7oppinx64.sys [x]
S3 s7oserix64;Siemens PC Serial Cable;c:\windows\system32\Drivers\s7oserix64.sys;c:\windows\SYSNATIVE\Drivers\s7oserix64.sys [x]
S3 s7osmcax64;SIMATIC PC Adapter RS232;c:\windows\system32\DRIVERS\s7osmcax64.sys;c:\windows\SYSNATIVE\DRIVERS\s7osmcax64.sys [x]
S3 s7osobux64;SIMATIC SoftBus;c:\windows\system32\DRIVERS\s7osobux64.sys;c:\windows\SYSNATIVE\DRIVERS\s7osobux64.sys [x]
S3 s7otmcd64x;SIMATIC Memory Cards;c:\windows\system32\Drivers\s7otmcd64x.sys;c:\windows\SYSNATIVE\Drivers\s7otmcd64x.sys [x]
S3 s7otranx64;SIMATIC Transport;c:\windows\system32\DRIVERS\s7otranx64.sys;c:\windows\SYSNATIVE\DRIVERS\s7otranx64.sys [x]
S3 s7otsadx64;SIMATIC TS Adapter RS232;c:\windows\system32\DRIVERS\s7otsadx64.sys;c:\windows\SYSNATIVE\DRIVERS\s7otsadx64.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\DRIVERS\Tvti2c.sys;c:\windows\SYSNATIVE\DRIVERS\Tvti2c.sys [x]
S3 tvtvcamd;ThinkVantage Virtual Camera;c:\windows\system32\DRIVERS\tvtvcamd.sys;c:\windows\SYSNATIVE\DRIVERS\tvtvcamd.sys [x]
S3 vsnl2ada;SIMATIC NET FDL Driver;c:\windows\system32\DRIVERS\vsnl2ada.sys;c:\windows\SYSNATIVE\DRIVERS\vsnl2ada.sys [x]
S3 WwanUsbServ;Mobile Broadband Driver;c:\windows\system32\DRIVERS\WwanUsbMp64.sys;c:\windows\SYSNATIVE\DRIVERS\WwanUsbMp64.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - FileOpenWebPublisherScreenHookDriver
.
Contents of the 'Scheduled Tasks' folder
.
2014-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-17 03:01]
.
2014-10-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-17 03:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-07-18 20:32    261832    ----a-w-    c:\users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-07-18 20:32    261832    ----a-w-    c:\users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-07-18 20:32    261832    ----a-w-    c:\users\admin\AppData\Local\Microsoft\SkyDrive\17.0.4023.1211\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-09-25 10:10    2334416    ----a-w-    c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-09-25 10:10    2334416    ----a-w-    c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-09-25 10:10    2334416    ----a-w-    c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-09-13 13653208]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2013-08-30 1321688]
"TpShocks"="TpShocks.exe" [2014-02-17 384344]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2014-08-07 295712]
"egui"="c:\program files\ESET\ESET Endpoint Antivirus\egui.exe" [2014-04-04 4148664]
"MFNetworkScanUtility"="c:\program files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE" [2012-09-27 486552]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-11-28 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-11-28 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-11-28 444400]
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=LENP&bmod=LENP
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &Download using ASU_BitsWrapper - c:\program files (x86)\Common Files\Siemens\ASU\iecontext.htm
IE: Add to Evernote 4.0 - c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\progra~2\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\progra~2\PCTRAN~1\webie.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\progra~2\PCTRAN~1\webie.dll
TCP: DhcpNameServer = 8.8.8.8 8.8.8.4
FF - ProfilePath - c:\users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\nno330qa.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{A759AFF6-5851-457D-A540-F4ECED148351} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Fastboot]
"ImagePath"=multi:"System32\DRIVERS\Fastboot.sys\00"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Fastboot]
"ImagePath"=multi:"System32\DRIVERS\Fastboot.sys\00"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Siemens\StationManager\Catalog]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Siemens\StationManager\General\Groups]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Juniper Networks\Common Files\dsNcService.exe
c:\windows\SysWOW64\lkads.exe
c:\program files (x86)\National Instruments\MAX\nimxs.exe
c:\program files (x86)\National Instruments\Shared\Security\nidmsrv.exe
c:\program files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe
c:\program files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
c:\program files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
c:\program files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
c:\windows\SysWOW64\lkcitdl.exe
c:\windows\SysWOW64\lktsrv.exe
c:\windows\SysWOW64\nipxism.exe
c:\windows\SysWOW64\pniopcac.exe
c:\windows\SysWOW64\pniopcac.exe
c:\windows\SysWOW64\pniopcac.exe
c:\progra~1\Lenovo\HOTKEY\TPONSCR.EXE
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\Common Files\Siemens\S7UBTOOX\S7ubtoox.exe
c:\program files (x86)\Common Files\Siemens\Sqlany\dbsrv9.exe
c:\program files (x86)\ThinkPad\Utilities\SCHTASK.exe
c:\program files\Lenovo\Lenovo Solution Center\LSCNotify.exe
c:\program files (x86)\Lenovo\message center plus\mcplaunch.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Lenovo\System Update\SUService.exe
.
**************************************************************************
.
Completion time: 2014-11-03  19:55:32 - machine was rebooted
ComboFix-quarantined-files.txt  2014-11-03 18:55
.
Pre-Run: 326 715 953 152 bytes free
Post-Run: 326 205 677 568 bytes free
.
- - End Of File - - F5F44F80785F55BD12F6147618E3F407
 



#9 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:10 AM

Posted 03 November 2014 - 02:58 PM

Thank you,

Are you launching programs by right clicking and selecting Run? Can you explain the problem with Windows Explorer? Are you having any other issues besides those?

Please do this.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
2014-07-21 08:09 - 2014-07-21 08:09 - 0001280 _____ () C:\Windows\0PSQTPPPPPfmis
EmptyTemp:
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Reply to questions
  • Fixlog

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#10 bartosm

bartosm
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:10 AM

Posted 06 November 2014 - 01:24 AM

Hello

 

Yes, when I use right clicking then program run, but when I do not restart explorer procces, then start button do not work resp. win key. This morning, when I am running PC, I have empty Recycle bin, history in firefox.

Sorry I do not have good English :(.

 

Log from fixlog

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-11-2014
Ran by admin at 2014-11-05 14:54:11 Run:2
Running from C:\Users\admin\Desktop
Loaded Profile: admin (Available profiles: admin)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
2014-07-21 08:09 - 2014-07-21 08:09 - 0001280 _____ () C:\Windows\0PSQTPPPPPfmis
EmptyTemp:
*****************

C:\Windows\0PSQTPPPPPfmis => Moved successfully.
EmptyTemp: => Removed 170.5 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====



#11 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:10 AM

Posted 06 November 2014 - 03:03 PM

Please do this.

===================================================

Farbar's Recovery Scan Tool Search

--------------------
  • Launch FRST
  • Copy/paste the following in the Search Field
explorerframe.dll
  • Click Search File(s) button
  • When completed click OK and a Search.txt document will open on your desktop
  • Copy and paste the contents of that document your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Search.txt

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#12 bartosm

bartosm
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:10 AM

Posted 07 November 2014 - 01:08 AM

Hello

This is log from FRST

 

Farbar Recovery Scan Tool (x64) Version: 02-11-2014
Ran by admin at 2014-11-07 07:02:09
Running from C:\Users\admin\Desktop
Boot Mode: Normal

================== Search Files: "explorerframe.dll" =============

C:\Windows\winsxs\wow64_microsoft-windows-explorerframe_31bf3856ad364e35_6.1.7601.17514_none_2af7b924bed13316\ExplorerFrame.dll
[2010-11-21 04:24][2010-11-21 04:24] 1493504 ____A (Microsoft Corporation) E2A17BCC08D92F42E08AF6BA2F93ABA7 [File is signed]

C:\Windows\winsxs\amd64_microsoft-windows-explorerframe_31bf3856ad364e35_6.1.7601.17514_none_20a30ed28a70711b\ExplorerFrame.dll
[2010-11-21 04:24][2010-11-21 04:24] 1866240 ____A (Microsoft Corporation) EED05D42D91835064703E2318552ED25 [File is signed]

C:\Windows\SysWOW64\ExplorerFrame.dll
[2010-11-21 04:24][2010-11-21 04:24] 1493504 ____A (Microsoft Corporation) E2A17BCC08D92F42E08AF6BA2F93ABA7 [File is signed]

C:\Windows\System32\ExplorerFrame.dll
[2010-11-21 04:24][2010-11-21 04:24] 1866240 ____A (Microsoft Corporation) EED05D42D91835064703E2318552ED25 [File is signed]

====== End Of Search ======



#13 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:10 AM

Posted 07 November 2014 - 09:39 AM

Thank you for the information. One of the reports indicated that might be a corrupted file so we needed to make sure it is valid, and it is.

You said you reinstalled the system 4 months ago. Were you having any mouse/keyboard or other issues before reinstalling?

You seem to say you need to manually restart explorer for the Start button to work. How are you restarting Explorer and once you restart it does it stay working?
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#14 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:01:10 AM

Posted 10 November 2014 - 03:21 PM

Greetings,

===================================================

3 Day Bump

It has been more than 3 days since my last post.
  • Do you still need help with this?
  • If after 48hrs you have not replied to this thread then it will have to be closed.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#15 bartosm

bartosm
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:10 AM

Posted 12 November 2014 - 01:13 AM

Hello

Reinsal:

I had problem with network. Mouse and keyboard was OK. I had problem with network because I installed virtual machine. After reinstalled, I do not instal virtual machine and network is OK at the moment.

 

I restart the explorer using Task manager. I kill the process explorer.exe and then run process exploreer.exe. The problem with double-clic is still :(.

 

thx

 

m.






1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users