Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

SecurityHelper/Provider.dll and malicious temp files after Cryptolocker attack


  • This topic is locked This topic is locked
5 replies to this topic

#1 Giulia18

Giulia18

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:26 PM

Posted 08 March 2015 - 06:05 AM

Hello,

my name is Giulia and I have just experienced some problems with Cryptolocker ransomware. I removed it (or at least the most part of it...), I decrypted my flies with Fabian Wosar's help, but I still get a lot of notifications by Comodo about malware presence (mostly SecurityHelper.dll or SecurityProvider.dll, and some temp files from temp folder that change their name everytime).

I run Win7 Professional x64 on my pc, and I scan it more or less everyday with Comodo (which usually doesn't find anything dangerous during the scan, only quarantines the above-mentioned files as soon as they appear) and Malwarebytes AntiMalware that finds something malicious more or less everytime I reboot my computer (for example last time it has detected two "FSAVXgen" malware files, and the one before this it found two trojan.dorkbot.de files). I tried scanning my computer also with Norton Power Eraser, which found "vnechsde.sys" but wasn't able to delete it.

Right now I'm running Sophos Virus Removal Tool (looong analysis, still not finished)... so my computer is definitely having a rough day (and I'm losing my mind, too :lmao: ).

 

I've read some other entries in your forum in search for help and I found out that also other people have the same malware, so I've already run the preliminary Farbar Scan in order to post you immediately my FRST and Addition text files. Hope I did the right thing.

 

 

FRST.txt

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-03-2015

Ran by Giulia (administrator) on GIULIA-THINKPAD on 08-03-2015 11:46:32
Running from C:\Users\Giulia\Desktop
Loaded Profiles: UpdatusUser & Giulia (Available profiles: UpdatusUser & Giulia)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Italiano (Italia)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Softex Inc.) C:\Program Files\Lenovo\Fingerprint Manager Pro\OmniServ.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Trace Software International) C:\Program Files\SolidWorks Corp\SolidWorks Electrical\server\EwServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_monitor.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Flexera Software, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\lmgrd.exe
(ANSYS, Inc.) C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansyslmd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcDeskBandHlpr.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\MAX\nimxs.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(LITE-ON TECHNOLOGY CORP.) C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\Skdaemon.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Password Manager\password_manager.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
() C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe
(X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
() C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\Color Calibrator Tray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
() C:\Program Files\Lenovo\Fingerprint Manager Pro\opvapp.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(SunplusIT, Inc.) C:\Program Files (x86)\Integrated Camera\Monitor.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\DataFinderDesktop\bin\DataFinder.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo Corporation) C:\Program Files\Lenovo\QuickDisplay\QuickDisplayAgent.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SolidWorks Corp\SolidWorks\sldworks_fs.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\pwm_ie_helper_desktop.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\Password Manager\password_manager.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation) C:\Windows\SysWOW64\nipalsm.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(National Instruments Corporation) C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Message Center Plus\MCPLaunch.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTgui.exe
(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184632 2013-11-14] (Motorola Solutions, Inc.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Enhanced Performance Keyboard] => C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\SKDaemon.exe [335360 2012-08-08] (LITE-ON TECHNOLOGY CORP.)
HKLM\...\Run: [TpShocks] => C:\Windows\system32\TpShocks.exe [555736 2014-09-18] (Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [295712 2014-08-07] (Lenovo Group Limited)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63776 2014-07-10] (Lenovo)
HKLM\...\Run: [PasswordManager] => C:\Program Files\Lenovo\Password Manager\password_manager.exe [1792800 2014-10-21] (Lenovo Group Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2823408 2014-08-06] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [9264456 2011-10-20] (COMODO)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [134616 2013-12-03] (Intel Corporation)
HKLM-x32\...\Run: [PWMTRV] => rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-08-15] (Intel Corporation)
HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4315872 2011-06-01] (Lenovo, Inc.)
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [733936 2013-07-02] (Lenovo)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1719968 2014-02-20] (SunplusIT, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [NI Update Service] => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [851592 2012-06-08] (National Instruments)
HKLM-x32\...\Run: [niDevMon] => C:\Program Files (x86)\National Instruments\NI-DAQ\HWConfig\nidevmon.exe [110224 2012-07-11] (National Instruments Corporation)
HKLM-x32\...\Run: [DataFinder] => C:\Program Files (x86)\National Instruments\Shared\DataFinderDesktop\bin\DataFinder.exe [2063456 2011-06-22] (National Instruments Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [846520 2010-06-21] ()
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-03-02] (Glarysoft Ltd)
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\MountPoints2: {ca7208ed-803e-11e4-8c5b-e8b1fcd33505} - E:\Startme.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [245872 2013-10-29] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\system32\guard64.dll => C:\Windows\system32\guard64.dll [388280 2011-10-07] (COMODO)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [201576 2013-10-29] (NVIDIA Corporation)
AppInit_DLLs-x32:  C:\Windows\SysWOW64\guard32.dll => C:\Windows\SysWOW64\guard32.dll [300200 2011-10-07] (COMODO)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Color Calibrator Tray.lnk
ShortcutTarget: Color Calibrator Tray.lnk -> C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\Color Calibrator Tray.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SolidWorks 2014 Fast Start.lnk
ShortcutTarget: SolidWorks 2014 Fast Start.lnk -> C:\Windows\Installer\{4FFA60C4-9A8B-4C9E-8265-2241B266304C}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers: [0WinSecurityProvider] -> {F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637} => C:\ProgramData\Microsoft\Security\Client\SecurityProvider.dll ()
BootExecute: autocheck autochk *  
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://home.lenovo.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2180257905-4020172000-3852966361-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001 -> {6757A8EB-0FA9-431F-A312-69DCA7FC0162} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll [2014-10-10] (pdfforge GmbH)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-13] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-13] (Oracle Corporation)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll [2014-10-10] (pdfforge GmbH)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [24320] (National Instruments Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26368] (National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 85.37.17.5 85.38.28.77
 
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll [2012-04-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-13] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll [2012-04-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension
FF Extension: PDF Architect 2 Creator - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2015-02-11]
FF HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\Firefox\Extensions: [{FCF36B88-1BBA-487f-B64B-D2E8980A9293}] - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension
FF Extension: No Name - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension [2015-01-11]
 
Chrome: 
=======
CHR HomePage: Default -> https://www.google.it/
CHR StartupUrls: Default -> "https://www.google.it/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-27]
CHR Extension: (Google Docs) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-27]
CHR Extension: (Google Drive) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-27]
CHR Extension: (YouTube) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-27]
CHR Extension: (Google Search) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-27]
CHR Extension: (Google Calendar) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-11-27]
CHR Extension: (Google Sheets) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-27]
CHR Extension: (AdBlock) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-11-27]
CHR Extension: (Google Wallet) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-27]
CHR Extension: (Gmail) - C:\Users\Giulia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-27]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ANSYS, Inc. License Manager; C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe [5457920 2012-09-24] (ANSYS, Inc.) [File not signed]
S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2663568 2011-10-07] (COMODO)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [9954096 2014-04-01] (DisplayLink Corp.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [319536 2014-11-14] (Lenovo.)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [123904 2014-09-25] (Dassault Systèmes) [File not signed]
R2 ewserver; C:\Program Files\SolidWorks Corp\SolidWorks Electrical\server\EwServer.exe [193024 2014-06-11] (Trace Software International) [File not signed]
S4 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [140016 2013-07-02] (Lenovo)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-03] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [619776 2015-01-15] (Lenovo)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [197408 2014-08-07] (Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [115184 2014-07-08] (Lenovo Group Limited)
R2 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [695136 2011-05-06] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\SysWOW64\lkads.exe [50328 2012-06-05] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [60568 2012-06-05] (National Instruments Corporation)
R2 lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [21552 2014-02-21] (Lenovo)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-10-16] ()
R2 MSSQL$TEW_SQLEXPRESS; c:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation)
R2 mxssvr; C:\Program Files (x86)\National Instruments\MAX\nimxs.exe [51360 2012-05-22] (National Instruments Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265936 2014-10-29] ()
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [53960 2012-05-22] (National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [76488 2012-05-22] (National Instruments Corporation)
R2 nidevldu; C:\Windows\SysWOW64\nipalsm.exe [12696 2012-01-12] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [370328 2012-06-05] (National Instruments Corporation)
S3 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1427688 2010-08-02] (Macrovision Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [236768 2012-06-06] (National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [258776 2012-05-31] (National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [169192 2012-06-05] (National Instruments Corporation)
R2 nipxirmu; C:\Windows\SysWOW64\nipxism.exe [18616 2012-07-10] (National Instruments Corporation)
R2 niSvcLoc; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [53952 2012-05-22] (National Instruments Corporation)
R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [680624 2012-06-07] (National Instruments Corporation)
R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2014-03-07] (BayHubTech/O2Micro International)
R2 omniserv; C:\Program Files\Lenovo\Fingerprint Manager Pro\OmniServ.exe [103424 2014-12-24] (Softex Inc.) [File not signed]
S4 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
S4 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH)
S4 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [61232 2014-10-01] (Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [317224 2014-10-01] (Lenovo Group Limited)
S4 RemoteSolverDispatcher; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe [235656 2014-06-11] (Mentor Graphics Corporation) [File not signed]
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2014-11-27] (SolidWorks) [File not signed]
R3 SophosVirusRemovalTool; C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe [153384 2014-11-26] (Sophos Limited)
S4 SQLAgent$TEW_SQLEXPRESS; c:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [24560 2014-06-18] ()
S4 ThinkVantage Registry Monitor Service; C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe [1028096 2010-08-31] (Lenovo Group Limited) [File not signed]
S3 ThunderboltService; C:\Program Files\Intel\Thunderbolt Software\tbtsvc.exe [1179944 2014-03-06] (Intel Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143552 2012-02-22] (TuneUp Software)
S3 TVT Backup Service; C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe [1526120 2013-09-25] (Lenovo Group Limited)
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [49456 2014-11-24] (Synaptics Incorporated)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [203088 2011-10-11] (X-Rite Inc.)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3818704 2014-10-29] (Intel® Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [140600 2013-11-07] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\System32\DRIVERS\btmhsf.sys [1419576 2013-12-11] (Motorola Solutions, Inc.)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [16528 2011-10-07] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [574216 2011-10-07] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [43248 2011-10-07] (COMODO)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-11-27] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [378136 2014-09-29] (Intel Corporation)
S3 Fastboot; C:\Windows\System32\DRIVERS\fastboot.sys [56048 2013-07-02] (Windows ® Win 7 DDK provider)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2014-12-10] (Sony Mobile Communications)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-03-06] (Glarysoft Ltd)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-15] (Intel Corporation)
R3 ibtusb; C:\Windows\System32\DRIVERS\ibtusb.sys [169680 2014-04-02] (Intel Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [93200 2011-10-07] (COMODO)
S3 lvalarmk; C:\Windows\system32\drivers\lvalarmk.sys [25336 2012-06-29] (National Instruments Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100824 2013-12-03] (Intel Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw02.sys [3425768 2014-11-17] (Intel Corporation)
S3 ni1006k; C:\Windows\system32\drivers\ni1006k.sys [30800 2012-03-06] (National Instruments Corporation)
S3 ni1045k; C:\Windows\system32\drivers\ni1045kl.sys [12952 2012-03-06] (National Instruments Corporation)
S3 ni1065k; C:\Windows\system32\drivers\ni1065k.sys [27288 2012-03-06] (National Instruments Corporation)
S3 nicdcck; C:\Windows\system32\drivers\nicdcckl.sys [12992 2012-07-10] (National Instruments Corporation)
S3 nicdrk; C:\Windows\system32\drivers\nicdrkl.sys [11864 2011-07-21] (National Instruments Corporation)
S3 nicmrk; C:\Windows\system32\drivers\nicmrkl.sys [13008 2012-10-08] (National Instruments Corporation)
S3 nicondrk; C:\Windows\system32\drivers\nicondrkl.sys [12976 2012-10-08] (National Instruments Corporation)
S3 nicsrk; C:\Windows\system32\drivers\nicsrkl.sys [12976 2012-10-08] (National Instruments Corporation)
R3 nidimk; C:\Windows\system32\drivers\nidimkl.sys [13000 2012-06-28] (National Instruments Corporation)
S3 nidmxfk; C:\Windows\system32\drivers\nidmxfkl.sys [12976 2012-07-09] (National Instruments Corporation)
S3 nidsark; C:\Windows\system32\drivers\nidsarkl.sys [12992 2012-07-16] (National Instruments Corporation)
S3 niemrk; C:\Windows\system32\drivers\niemrkl.sys [12976 2012-10-08] (National Instruments Corporation)
S3 niemrkw; C:\Windows\System32\DRIVERS\niemrkw.sys [12464 2012-10-08] (National Instruments Corporation)
S3 niesrk; C:\Windows\system32\drivers\niesrkl.sys [12976 2012-10-08] (National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\Windows\System32\DRIVERS\niede.sys [38064 2012-01-12] (National Instruments Corporation)
S3 nifslk; C:\Windows\system32\drivers\nifslkl.sys [12992 2012-07-09] (National Instruments Corporation)
R3 nimdbgk; C:\Windows\system32\drivers\nimdbgkl.sys [13000 2012-06-28] (National Instruments Corporation)
R3 nimru2k; C:\Windows\system32\drivers\nimru2kl.sys [13008 2012-06-28] (National Instruments Corporation)
S3 nimsdrk; C:\Windows\system32\drivers\nimsdrkl.sys [13032 2012-07-09] (National Instruments Corporation)
R3 nimstsk; C:\Windows\system32\drivers\nimstskl.sys [13008 2012-07-09] (National Instruments Corporation)
R3 nimxdfk; C:\Windows\system32\drivers\nimxdfkl.sys [12984 2012-06-28] (National Instruments Corporation)
S3 nimxpk; C:\Windows\system32\drivers\nimxpkl.sys [13008 2012-07-09] (National Instruments Corporation)
S3 ninshsdk; C:\Windows\system32\drivers\ninshsdkl.sys [13000 2012-10-09] (National Instruments Corporation)
S3 niorbk; C:\Windows\system32\drivers\niorbkl.sys [12992 2012-06-28] (National Instruments Corporation)
S3 nipalfwedl; C:\Windows\System32\drivers\nipalfwedl.sys [12520 2012-06-27] (National Instruments Corporation)
R0 NIPALK; C:\Windows\System32\drivers\nipalk.sys [915136 2012-06-27] (National Instruments Corporation)
S3 nipalusbedl; C:\Windows\System32\drivers\nipalusbedl.sys [12520 2012-06-27] (National Instruments Corporation)
R0 nipbcfk; C:\Windows\System32\drivers\nipbcfk.sys [16984 2012-01-12] (National Instruments Corporation)
R0 nipxibaf; C:\Windows\System32\drivers\nipxibaf.sys [84688 2012-03-06] (National Instruments Corporation)
R0 nipxibrc; C:\Windows\System32\drivers\nipxibrc.sys [60640 2012-04-16] (National Instruments Corporation)
S3 nipxigpk; C:\Windows\system32\drivers\nipxigpk.sys [22680 2011-08-09] (National Instruments Corporation)
R2 nipxirmk; C:\Windows\system32\drivers\nipxirmkl.sys [12984 2012-07-10] (National Instruments Corporation)
S3 niraptrk; C:\Windows\system32\drivers\niraptrkl.sys [12976 2012-10-08] (National Instruments Corporation)
S3 niscdk; C:\Windows\system32\drivers\niscdkl.sys [12984 2012-03-07] (National Instruments Corporation)
S3 nisdigk; C:\Windows\system32\drivers\nisdigkl.sys [12960 2012-07-02] (National Instruments Corporation)
S3 nisftk; C:\Windows\system32\drivers\nisftkl.sys [12952 2012-06-01] (National Instruments Corporation)
S3 nispdk; C:\Windows\system32\drivers\nispdkl.sys [12984 2012-03-07] (National Instruments Corporation)
S3 nissrk; C:\Windows\system32\drivers\nissrkl.sys [12976 2012-10-08] (National Instruments Corporation)
S3 nistc2k; C:\Windows\system32\drivers\nistc2kl.sys [11824 2009-01-05] (National Instruments Corporation)
S3 nistc3rk; C:\Windows\system32\drivers\nistc3rkl.sys [12968 2012-07-10] (National Instruments Corporation)
S3 nistcrk; C:\Windows\system32\drivers\nistcrkl.sys [12968 2011-07-18] (National Instruments Corporation)
S3 niswdk; C:\Windows\system32\drivers\niswdkl.sys [12976 2012-10-11] (National Instruments Corporation)
S3 nitiork; C:\Windows\system32\drivers\nitiorkl.sys [13000 2012-07-10] (National Instruments Corporation)
S3 niufurk; C:\Windows\system32\drivers\niufurkl.sys [13008 2012-10-08] (National Instruments Corporation)
R3 NiViPciK; C:\Windows\System32\drivers\NiViPciKl.sys [13008 2012-06-06] (National Instruments Corporation)
R2 NiViPxiK; C:\Windows\System32\drivers\NiViPxiKl.sys [13008 2012-06-06] (National Instruments Corporation)
S3 niwfrk; C:\Windows\system32\drivers\niwfrkl.sys [12984 2012-10-08] (National Instruments Corporation)
S3 nixsrk; C:\Windows\system32\drivers\nixsrkl.sys [12976 2012-10-08] (National Instruments Corporation)
R3 O2FJ2RDR; C:\Windows\System32\DRIVERS\O2FJ2w7x64.sys [209720 2014-03-25] (BayHubTech/O2Micro )
R1 OMNISMI; C:\Windows\SysWOW64\drivers\omnismi.sys [14776 2014-03-31] ()
S4 RsFx0200; C:\Windows\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [31472 2014-08-06] (Synaptics Incorporated)
R1 SMR430; C:\Windows\System32\drivers\SMR430.SYS [108216 2015-03-08] (Symantec Corporation)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1521312 2014-03-18] (Sunplus)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-02-09] (TuneUp Software)
R3 usb3Hub; C:\Windows\System32\DRIVERS\usb3Hub.sys [206744 2013-06-21] (Windows ® Win 7 DDK provider)
S3 usb9162k; C:\Windows\System32\DRIVERS\usb9162k.sys [443040 2012-07-02] (National Instruments Corporation)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [14464 2011-02-16] (Western Digital Technologies) [File not signed]
S3 usb6xxxk; \??\C:\Windows\system32\drivers\usb6xxxkl.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-08 11:46 - 2015-03-08 11:47 - 00041768 _____ () C:\Users\Giulia\Desktop\FRST.txt
2015-03-08 11:46 - 2015-03-08 11:46 - 00000000 ____D () C:\Users\Giulia\Desktop\FRST-OlderVersion
2015-03-08 11:05 - 2015-03-08 11:05 - 00000000 ____D () C:\ProgramData\Sophos
2015-03-08 11:03 - 2015-03-08 11:03 - 00002759 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2015-03-08 11:03 - 2015-03-08 11:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2015-03-08 11:03 - 2015-03-08 11:03 - 00000000 ____D () C:\Program Files (x86)\Sophos
2015-03-08 10:58 - 2015-03-08 11:46 - 00108216 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SMR430.SYS
2015-03-08 10:58 - 2015-03-08 11:46 - 00000020 _____ () C:\Windows\system32\Drivers\SMR430.dat
2015-03-08 10:37 - 2015-03-08 10:37 - 03077776 ____N (Symantec Corporation) C:\Users\Giulia\Downloads\NPE.exe
2015-03-06 16:04 - 2015-03-08 11:46 - 00000000 ____D () C:\FRST
2015-03-06 16:03 - 2015-03-08 11:46 - 02095104 _____ (Farbar) C:\Users\Giulia\Desktop\FRST64.exe
2015-03-06 15:20 - 2015-03-08 10:58 - 00000328 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2015-03-06 15:20 - 2015-03-08 10:58 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2015-03-06 15:20 - 2015-03-06 15:20 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-03-06 15:20 - 2015-03-06 15:20 - 00002988 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
2015-03-06 15:20 - 2015-03-06 15:20 - 00002640 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2015-03-06 15:20 - 2015-03-06 15:20 - 00001107 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-03-06 15:20 - 2015-03-06 15:20 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\GlarySoft
2015-03-06 15:20 - 2015-03-06 15:20 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\DiskDefrag
2015-03-06 15:20 - 2015-03-06 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-03-06 11:30 - 2015-03-06 11:30 - 00000329 _____ () C:\Start_.cmd
2015-03-06 11:28 - 2015-03-06 11:28 - 00000000 ____D () C:\Windows\erdnt
2015-03-06 11:15 - 2015-03-06 11:34 - 00000000 ___SD () C:\32788R22FWJFW
2015-03-06 11:07 - 2015-03-06 11:07 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2015-03-06 11:01 - 2015-03-06 11:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-03-06 11:01 - 2015-03-06 11:01 - 00000000 ____D () C:\Program Files\HitmanPro
2015-03-06 11:00 - 2015-03-06 11:07 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-03-06 10:35 - 2015-03-08 11:01 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-06 10:35 - 2015-03-06 10:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-03-06 10:35 - 2015-03-06 10:36 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-03-06 10:35 - 2015-03-06 10:35 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-03-06 10:35 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-03-06 10:35 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-03-06 10:35 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-03-06 10:33 - 2015-03-08 11:42 - 00000000 ____D () C:\Users\Giulia\Desktop\log
2015-03-06 10:27 - 2015-03-06 18:33 - 00000000 ____D () C:\AdwCleaner
2015-03-06 08:00 - 2015-03-06 08:00 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-03-06 08:00 - 2015-03-06 08:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-03-06 08:00 - 2015-03-06 08:00 - 00000000 ____D () C:\Program Files\CCleaner
2015-03-06 07:56 - 2015-03-06 07:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2015-03-06 07:49 - 2015-03-06 07:49 - 01217207 _____ () C:\Users\Giulia\Documents\decrypted_files.txt
2015-03-06 07:35 - 2015-03-06 07:35 - 01180168 _____ (Emsisoft Ltd) C:\Users\Giulia\Downloads\decrypt_pclock2.exe
2015-03-04 22:59 - 2015-03-08 10:48 - 00000000 ____D () C:\NPE
2015-03-04 22:26 - 2015-03-08 11:46 - 00000000 ____D () C:\Users\Giulia\AppData\Local\NPE
2015-03-04 21:56 - 2015-03-04 21:56 - 00001308 _____ () C:\Users\Giulia\backup_me.reg
2015-03-04 21:52 - 2015-03-04 21:52 - 00000000 ___HD () C:\VritualRoot
2015-03-04 21:50 - 2015-03-04 23:40 - 00000000 ____D () C:\Users\Public\Documents\COMODO
2015-03-04 21:38 - 2015-03-08 11:45 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2015-03-04 21:37 - 2015-03-04 23:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2015-03-04 21:37 - 2015-03-04 23:44 - 00000000 ____D () C:\Program Files\COMODO
2015-03-04 21:37 - 2015-03-04 21:38 - 00000000 ____D () C:\ProgramData\Comodo
2015-03-04 21:37 - 2015-03-04 21:37 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll
2015-03-04 21:37 - 2015-03-04 21:37 - 00001846 _____ () C:\Users\Public\Desktop\COMODO Internet Security.lnk
2015-03-04 21:37 - 2015-03-04 21:37 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2015-03-04 19:29 - 2015-03-04 20:32 - 00000000 ____D () C:\Program Files (x86)\ShadowExplorer
2015-03-04 19:15 - 2015-03-04 19:19 - 00000000 ____D () C:\Program Files (x86)\stinger
2015-03-04 17:54 - 2015-03-04 17:54 - 00058435 _____ () C:\Users\Giulia\Desktop\4plots.fig
2015-03-04 17:36 - 2015-03-04 17:36 - 00447775 _____ () C:\Users\Giulia\enc_files.txt
2015-03-03 09:58 - 2015-03-03 10:42 - 00000000 ____D () C:\Users\Public\Documents\National Instruments
2015-03-03 09:44 - 2015-03-03 09:59 - 00001103 ____N () C:\Users\Public\Desktop\NI MAX.lnk
2015-03-03 09:41 - 2015-03-03 09:41 - 00001050 ____N () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\National Instruments LabVIEW 2012 (64-bit).lnk
2015-03-03 09:30 - 2015-03-03 09:30 - 00000000 ____D () C:\Windows\system32\cvirte
2015-03-03 09:29 - 2015-03-03 10:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\National Instruments
2015-03-03 08:04 - 2013-12-10 03:28 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-03 08:04 - 2013-12-10 03:02 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-02 14:30 - 2015-03-02 18:34 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2015-03-02 14:30 - 2015-03-02 18:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JKI
2015-03-02 14:29 - 2015-03-02 14:33 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\JKI
2015-03-02 14:29 - 2015-03-02 14:29 - 00000000 ____D () C:\Program Files (x86)\JKI
2015-03-02 14:27 - 2015-03-02 18:34 - 00000000 ____D () C:\ProgramData\JKI
2015-03-02 09:36 - 2015-03-02 09:36 - 00000000 _RSHD () C:\RRbackups
2015-03-02 09:28 - 2015-03-02 09:26 - 01628920 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxsfs.dll
2015-03-02 09:28 - 2015-03-02 09:26 - 00547576 ____N (Sonic Solutions) C:\Windows\SysWOW64\px.dll
2015-03-02 09:28 - 2015-03-02 09:26 - 00510712 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxdrv.dll
2015-03-02 09:28 - 2015-03-02 09:26 - 00379640 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxwave.dll
2015-03-02 09:28 - 2015-03-02 09:26 - 00187128 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxmas.dll
2015-03-02 09:28 - 2015-03-02 09:26 - 00129784 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxafs.dll
2015-03-02 09:28 - 2015-03-02 09:26 - 00118520 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxinsi64.exe
2015-03-02 09:28 - 2015-03-02 09:26 - 00116472 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxcpyi64.exe
2015-03-02 09:28 - 2015-03-02 09:26 - 00072440 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxhpinst.exe
2015-03-02 09:28 - 2015-03-02 09:26 - 00064760 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxinsa64.exe
2015-03-02 09:28 - 2015-03-02 09:26 - 00064760 ____N (Sonic Solutions) C:\Windows\SysWOW64\pxcpya64.exe
2015-03-02 09:28 - 2015-03-02 09:26 - 00039672 ____N (Sonic Solutions) C:\Windows\SysWOW64\vxblock.dll
2015-03-02 09:27 - 2015-03-03 12:18 - 00000000 ____D () C:\SWSHARE
2015-03-02 09:19 - 2012-08-04 03:08 - 00081920 ____N () C:\Windows\SysWOW64\GkSui20.EXE
2015-03-02 08:43 - 2015-03-02 08:43 - 00000000 ____D () C:\ProgramData\Measurement Computing
2015-03-02 08:34 - 2015-03-04 23:16 - 00000000 ____D () C:\Program Files (x86)\RMCAT1201
2015-02-28 09:29 - 2015-02-28 09:29 - 00002223 ____N () C:\Users\Public\Desktop\Google Earth.lnk
2015-02-28 09:29 - 2015-02-28 09:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2015-02-26 08:28 - 2015-02-26 08:28 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\RailMeasurement CAT
2015-02-26 08:16 - 2015-01-09 00:44 - 00419936 ____N () C:\Windows\SysWOW64\locale.nls
2015-02-26 08:16 - 2015-01-09 00:43 - 00419936 ____N () C:\Windows\system32\locale.nls
2015-02-26 08:13 - 2015-03-03 09:32 - 00000000 ____D () C:\Users\Giulia\AppData\Local\IVsoft
2015-02-26 08:12 - 2015-02-26 08:28 - 00000000 ____D () C:\Users\Giulia\AppData\Local\Edtion
2015-02-25 19:19 - 2015-01-09 04:14 - 00950272 ____N (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-25 19:19 - 2015-01-09 04:14 - 00091136 ____N (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-25 19:19 - 2015-01-09 04:14 - 00029696 ____N (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-25 19:19 - 2015-01-09 03:48 - 00076800 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-14 15:50 - 2015-03-04 23:42 - 00003706 _____ () C:\Windows\System32\Tasks\Java Update Scheduler
2015-02-14 15:50 - 2015-02-14 16:12 - 00003678 ____N () C:\Windows\System32\Tasks\Programma di aggiornamento HP online
2015-02-14 15:36 - 2015-02-25 13:05 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\TuneUp Software
2015-02-14 15:36 - 2015-02-14 15:36 - 00002208 ____N () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012.lnk
2015-02-14 15:36 - 2015-02-14 15:36 - 00002196 ____N () C:\Users\Public\Desktop\TuneUp Utilities 2012.lnk
2015-02-14 15:36 - 2015-02-14 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012
2015-02-14 15:36 - 2015-02-14 15:36 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2012
2015-02-14 15:36 - 2012-02-22 17:19 - 00034624 ____N (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2015-02-14 15:36 - 2012-02-22 17:19 - 00025920 ____N (TuneUp Software) C:\Windows\system32\authuitu.dll
2015-02-14 15:36 - 2012-02-22 17:19 - 00021312 ____N (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2015-02-14 15:35 - 2015-02-14 15:36 - 00000000 ____D () C:\ProgramData\TuneUp Software
2015-02-14 15:34 - 2015-02-14 15:34 - 00000000 __SHD () C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2015-02-13 15:55 - 2015-02-13 15:55 - 00000000 ____D () C:\Users\Giulia\AppData\Local\QuosaDDM
2015-02-13 15:54 - 2015-02-13 15:54 - 00000000 ____D () C:\ProgramData\Sun
2015-02-13 15:54 - 2015-02-13 15:53 - 00098216 ____N (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-02-13 15:53 - 2015-02-13 15:53 - 00000000 ____D () C:\ProgramData\Oracle
2015-02-13 15:53 - 2015-02-13 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-13 15:53 - 2015-02-13 15:53 - 00000000 ____D () C:\Program Files (x86)\Java
2015-02-11 09:13 - 2015-03-06 10:12 - 00000000 ____D () C:\Users\Giulia\AppData\Local\PDFCreator
2015-02-11 09:09 - 2015-03-06 10:12 - 00000000 ____D () C:\Program Files\PDFCreator
2015-02-11 09:09 - 2015-02-14 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2015-02-11 09:09 - 2015-02-11 09:13 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\PDF Architect 2
2015-02-11 09:09 - 2015-02-11 09:09 - 00000847 ____N () C:\Users\Public\Desktop\PDFCreator.lnk
2015-02-11 09:09 - 2015-02-04 04:16 - 00894976 ____N (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-11 09:09 - 2015-02-04 04:16 - 00762368 ____N (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-11 09:09 - 2015-02-04 04:16 - 00609280 ____N (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-11 09:09 - 2015-02-04 04:16 - 00414720 ____N (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-11 09:09 - 2015-02-04 04:16 - 00227328 ____N (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-11 09:09 - 2015-02-04 04:16 - 00192000 ____N (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-11 09:09 - 2015-02-04 04:13 - 01098752 ____N (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-11 09:09 - 2015-01-28 00:36 - 01239720 ____N (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-11 09:08 - 2015-01-10 07:48 - 00728064 ____N (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-11 09:08 - 2015-01-10 07:48 - 00341504 ____N (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-11 09:08 - 2015-01-10 07:48 - 00314880 ____N (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-11 09:08 - 2015-01-10 07:48 - 00309760 ____N (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-11 09:08 - 2015-01-10 07:48 - 00210944 ____N (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-11 09:08 - 2015-01-10 07:48 - 00086528 ____N (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-11 09:08 - 2015-01-10 07:48 - 00022016 ____N (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-11 09:08 - 2015-01-10 07:27 - 00550912 ____N (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-11 09:08 - 2015-01-10 07:27 - 00259584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-11 09:08 - 2015-01-10 07:27 - 00248832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-11 09:08 - 2015-01-10 07:27 - 00221184 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-11 09:08 - 2015-01-10 07:27 - 00172032 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-11 09:08 - 2015-01-10 07:27 - 00065536 ____N (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-11 09:08 - 2015-01-10 07:27 - 00017408 ____N (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-11 09:07 - 2015-02-11 09:07 - 00001028 ____N () C:\Users\Public\Desktop\PDF Architect 2.lnk
2015-02-11 09:07 - 2015-01-15 09:14 - 00155072 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-11 09:07 - 2015-01-15 09:14 - 00095680 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-11 09:07 - 2015-01-15 09:09 - 01461760 ____N (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-11 09:07 - 2015-01-15 09:09 - 00136192 ____N (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-11 09:07 - 2015-01-15 09:09 - 00031232 ____N (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-11 09:07 - 2015-01-15 09:09 - 00029184 ____N (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-11 09:07 - 2015-01-15 09:09 - 00028160 ____N (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-11 09:07 - 2015-01-15 09:08 - 00064000 ____N (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-11 09:07 - 2015-01-15 09:06 - 00146432 ____N (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-11 09:07 - 2015-01-15 09:06 - 00060416 ____N (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-11 09:07 - 2015-01-15 09:04 - 00686080 ____N (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-11 09:07 - 2015-01-15 08:42 - 00050176 ____N (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-11 09:07 - 2015-01-15 08:42 - 00022016 ____N (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-11 09:07 - 2015-01-15 08:41 - 00096768 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-11 09:07 - 2015-01-15 08:39 - 00146432 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-11 09:07 - 2015-01-15 08:39 - 00060416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-11 09:07 - 2015-01-15 08:37 - 00686080 ____N (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-11 09:07 - 2015-01-15 05:22 - 00458824 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-11 09:07 - 2015-01-13 04:10 - 01424384 ____N (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-11 09:07 - 2015-01-13 03:49 - 01230336 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-11 09:07 - 2014-12-12 06:31 - 01480192 ____N (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-11 09:07 - 2014-12-12 06:07 - 01174528 ____N (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-11 09:07 - 2014-11-26 04:53 - 00861696 ____N (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 09:07 - 2014-11-26 04:32 - 00571904 ____N (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-11 09:07 - 2014-07-07 03:07 - 00229376 ____N (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-11 09:07 - 2014-07-07 03:06 - 00187904 ____N (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-11 09:07 - 2014-07-07 02:40 - 00179200 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-11 09:07 - 2014-07-07 02:40 - 00143872 ____N (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-11 09:06 - 2014-12-08 04:09 - 00406528 ____N (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-11 09:06 - 2014-12-08 03:46 - 00308224 ____N (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-11 09:06 - 2014-10-04 03:10 - 03722752 ____N (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-02-11 09:06 - 2014-10-04 02:42 - 03221504 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-02-11 09:06 - 2014-10-04 02:42 - 00131584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-02-11 09:05 - 2015-02-11 09:07 - 00000000 ____D () C:\Program Files (x86)\PDF Architect 2
2015-02-11 09:05 - 2015-02-11 09:05 - 00000000 ____D () C:\Users\Giulia\Documents\PDF Architect 2
2015-02-11 09:05 - 2015-02-11 09:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
2015-02-11 09:05 - 2015-01-14 07:09 - 05554112 ____N (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-11 09:05 - 2015-01-14 07:05 - 00503808 ____N (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-11 09:05 - 2015-01-14 07:05 - 00050176 ____N (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-11 09:05 - 2015-01-14 07:04 - 00296960 ____N (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-11 09:05 - 2015-01-14 06:44 - 03972544 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-11 09:05 - 2015-01-14 06:44 - 03917760 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-11 09:05 - 2015-01-14 06:41 - 00043008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-11 09:05 - 2015-01-09 03:03 - 03201536 ____N (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-11 09:02 - 2015-02-11 09:02 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2015-02-11 09:01 - 2015-02-11 09:02 - 00114872 ____N (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2015-02-09 09:43 - 2015-02-09 09:53 - 00000000 ____D () C:\Users\Giulia\.felix
2015-02-07 11:00 - 2015-02-07 11:00 - 00000000 ____H () C:\Users\Giulia\AppData\Local\BIT4598.tmp
2015-02-07 11:00 - 2015-02-07 11:00 - 00000000 _____ () C:\Users\Giulia\AppData\Local\{AC9725A1-5340-46C7-8915-3B6DBBAD2C54}
2015-02-06 10:54 - 2015-02-06 10:54 - 00000000 ____D () C:\Users\Giulia\Documents\SignalExpress Data
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-03-08 11:38 - 2014-11-20 00:19 - 01594619 _____ () C:\Windows\WindowsUpdate.log
2015-03-08 11:14 - 2014-11-27 11:54 - 00000000 ____D () C:\Users\Giulia\AppData\Local\CrashDumps
2015-03-08 11:11 - 2014-11-27 23:54 - 00001150 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-08 11:11 - 2014-11-27 23:54 - 00001146 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-08 11:04 - 2009-07-14 05:45 - 00032128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-08 11:04 - 2009-07-14 05:45 - 00032128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-08 10:56 - 2014-11-20 00:48 - 00000000 ____D () C:\ProgramData\Validity
2015-03-08 10:56 - 2014-11-20 00:40 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-08 10:56 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-08 10:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2015-03-06 18:36 - 2014-12-03 11:37 - 00000000 ____D () C:\Users\Giulia\Università
2015-03-06 16:06 - 2014-11-19 23:36 - 00827148 _____ () C:\Windows\system32\perfh010.dat
2015-03-06 16:06 - 2014-11-19 23:36 - 00181448 _____ () C:\Windows\system32\perfc010.dat
2015-03-06 16:06 - 2009-07-14 06:13 - 01904722 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-06 10:12 - 2014-11-27 12:16 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\DAEMON Tools Lite
2015-03-06 10:12 - 2014-01-30 20:47 - 00000000 ____D () C:\Windows\Panther
2015-03-06 07:59 - 2014-12-03 14:19 - 00000000 ____D () C:\Program Files\Recuva
2015-03-06 07:54 - 2014-11-19 06:52 - 00000000 ____D () C:\mfg
2015-03-05 09:29 - 2014-11-28 14:54 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\vlc
2015-03-05 09:28 - 2015-01-13 14:36 - 00000000 ____D () C:\Users\Giulia\Downloads\Shareit
2015-03-04 23:44 - 2014-12-04 11:23 - 00003258 _____ () C:\Windows\System32\Tasks\NIUpdateServiceStartupTask
2015-03-04 23:44 - 2014-11-27 10:54 - 00003550 _____ () C:\Windows\System32\Tasks\NIUpdateServiceCheckTask
2015-03-04 23:09 - 2014-11-27 14:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-03-04 23:09 - 2014-11-27 12:24 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-04 23:08 - 2014-11-27 14:54 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-03-04 23:08 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-03-04 23:08 - 2009-07-14 03:34 - 00000387 _____ () C:\Windows\win.ini
2015-03-04 22:26 - 2014-11-20 00:54 - 00000000 ____D () C:\ProgramData\Norton
2015-03-04 21:56 - 2014-11-26 13:05 - 00000000 ____D () C:\Users\Giulia
2015-03-04 21:32 - 2014-12-23 19:25 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-03-04 13:56 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-03-04 12:43 - 2014-11-26 19:19 - 00000000 ____D () C:\Users\Giulia\Documents\MATLAB
2015-03-03 10:45 - 2014-11-27 10:35 - 00000000 ____D () C:\Program Files (x86)\National Instruments
2015-03-03 10:17 - 2014-11-27 10:34 - 00000000 ____D () C:\ProgramData\National Instruments
2015-03-03 10:07 - 2014-11-27 11:01 - 00172808 ____N () C:\Windows\SysWOW64\niorbmap
2015-03-03 10:07 - 2014-11-27 10:38 - 00000000 ____D () C:\Program Files\National Instruments
2015-03-02 17:20 - 2015-01-18 10:07 - 00000000 ____D () C:\Windows\pss
2015-03-02 14:38 - 2014-11-26 13:54 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\Skype
2015-03-02 14:31 - 2014-11-27 11:57 - 00000000 ____D () C:\Users\Giulia\Documents\LabVIEW Data
2015-03-02 09:32 - 2014-11-20 00:47 - 00000000 ____D () C:\Windows\System32\Tasks\TVT
2015-03-02 09:31 - 2014-12-05 09:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage
2015-03-02 09:27 - 2014-11-20 00:32 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2015-03-02 09:27 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2015-03-02 09:26 - 2014-12-04 23:20 - 00000000 ____D () C:\Windows\Downloaded Installations
2015-03-01 11:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-03-01 11:35 - 2014-11-28 09:59 - 00000000 ____D () C:\Windows\Minidump
2015-02-28 09:29 - 2014-11-27 23:54 - 00000000 ____D () C:\Users\Giulia\AppData\Local\Google
2015-02-28 09:29 - 2014-11-27 23:54 - 00000000 ____D () C:\Program Files (x86)\Google
2015-02-28 08:59 - 2014-11-28 15:11 - 00000000 ____D () C:\Users\Giulia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-02-28 08:59 - 2014-11-28 15:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-02-28 08:59 - 2014-11-28 15:11 - 00000000 ____D () C:\Program Files\WinRAR
2015-02-26 08:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2015-02-25 18:10 - 2015-02-01 19:34 - 00000000 ____D () C:\Users\Giulia\Documents\Biblioteca di calibre
2015-02-23 10:13 - 2014-11-27 23:55 - 00002192 ____N () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 18:36 - 2014-11-27 23:54 - 00004156 ____N () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-17 18:36 - 2014-11-27 23:54 - 00003904 ____N () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-15 22:50 - 2014-11-26 13:07 - 00000000 ____D () C:\Users\Giulia\AppData\Local\VirtualStore
2015-02-14 16:12 - 2014-11-20 00:50 - 00002892 ____N () C:\Windows\System32\Tasks\StartPowerDVDService
2015-02-13 10:55 - 2009-07-14 05:45 - 00471208 ____N () C:\Windows\system32\FNTCACHE.DAT
2015-02-13 10:52 - 2014-12-12 08:58 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-13 10:52 - 2014-11-27 16:31 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-13 10:49 - 2014-12-01 08:33 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-13 10:43 - 2014-12-01 08:33 - 116773704 ____N (Microsoft Corporation) C:\Windows\system32\MRT.exe
 
==================== Files in the root of some directories =======
 
2015-02-07 11:00 - 2015-02-07 11:00 - 0000000 ____H () C:\Users\Giulia\AppData\Local\BIT4598.tmp
2015-02-07 11:00 - 2015-02-07 11:00 - 0000000 _____ () C:\Users\Giulia\AppData\Local\{AC9725A1-5340-46C7-8915-3B6DBBAD2C54}
2014-11-20 00:37 - 2014-11-20 00:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-11-20 00:52 - 2014-11-20 00:52 - 0000107 ____N () C:\ProgramData\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}.log
2014-11-20 00:50 - 2014-11-20 00:50 - 0000105 ____N () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2014-11-20 00:51 - 2014-11-20 00:51 - 0000110 ____N () C:\ProgramData\{B7A0CE06-068E-11D6-97FD-0050BACBF861}.log
2014-11-20 00:51 - 2014-11-20 00:52 - 0000115 ____N () C:\ProgramData\{D6E853EC-8960-4D44-AF03-7361BB93227C}.log
 
Files to move or delete:
====================
C:\Users\Giulia\backup_me.reg
 
 
Some zero byte size files/folders:
==========================
C:\Windows\SysWOW64\dlumd10.dll
C:\Windows\SysWOW64\dlumd11.dll
C:\Windows\SysWOW64\dlumd9.dll
C:\Windows\System32\dlumd10.dll
C:\Windows\System32\dlumd11.dll
C:\Windows\System32\dlumd9.dll
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-03-05 11:20
 
==================== End Of Log ============================

 

 

Addition.txt

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-03-2015

Ran by Giulia at 2015-03-08 11:47:49
Running from C:\Users\Giulia\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: COMODO Antivirus (Enabled - Up to date) {7554F4C5-5EC0-2FC6-8192-8DF831DBED51}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Defense+ (Enabled - Up to date) {CE351521-78FA-2048-BB22-B68A4A5CA7EC}
FW: COMODO Firewall (Enabled) {4D6F75E0-14AF-2E9E-AACD-24CDCF08AA2A}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
 PowerDVD Create 10 (x32 Version: 10.0.1.3710 - CyberLink Corp.) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Italiano (HKLM-x32\...\{AC76BA86-7AD7-1040-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre (HKLM-x32\...\{0CF3C0FA-02EA-4E15-9495-1C441C0377B3}) (Version: 2.18.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
Centro gestione Mouse e Tastiere Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Centro gestione Mouse e Tastiere Microsoft (Version: 2.3.188.0 - Microsoft Corporation) Hidden
COMODO Internet Security (HKLM\...\{4EAB2511-0135-48CA-A47B-CE1E6836793A}) (Version: 5.8.16726.2131 - COMODO Security Solutions Inc.)
Create Recovery Media (HKLM-x32\...\{50DC5136-21E8-48BC-97E5-1AD055F6B0B6}) (Version: 1.20.0.00 - Lenovo Group Limited)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5428.52 - CyberLink Corp.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Disable AMT Profile Synchronization Pop-up for Windows XP/Vista/7/8 (HKLM\...\DisableAMTPopup) (Version: 1.00 - )
Display su Schermo (HKLM\...\OnScreenDisplay) (Version: 8.42.20 - )
DisplayLink Core Software (HKLM\...\{58F4C39B-D946-4A45-A314-DEFC2AFDF397}) (Version: 7.5.54609.0 - DisplayLink Corp.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
DraftSight x64 (HKLM\...\{9155EA6C-B377-4509-8C8C-0D6A915F7352}) (Version: 13.0.1081 - Dassault Systemes)
Extended Asian Language font pack for Adobe Reader XI (HKLM-x32\...\{AC76BA86-7AD7-2530-0000-A00000000049}) (Version: 11.0.09 - Adobe Systems Incorporated)
Glary Utilities 5.20 (HKLM-x32\...\Glary Utilities 5) (Version: 5.20.0.35 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.238 - SurfRight B.V.)
HP Deskjet 3050 J610 series ? (HKLM-x32\...\{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}) (Version: 140.0.63.63 - Hewlett Packard)
HP Update (HKLM-x32\...\{787D1A33-A97B-4245-87C0-7174609A540C}) (Version: 5.002.005.003 - Hewlett-Packard)
Inst5676 (Version: 8.01.35 - Softex Inc.) Hidden
Integrated Camera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.7.32 - SunplusIT)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.22.1760 - Intel Corporation)
Intel® Network Connections Drivers (HKLM\...\PROSet) (Version: 19.5 - Intel)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 17.0.1412.3) (HKLM\...\{302600C1-6BDF-4FD1-1401-148929CC1385}) (Version: 17.0.1401.0428 - Intel Corporation)
Intel® Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.1.28 - Intel Corporation)
Intel® WiDi (HKLM\...\{F949AE30-83D1-41B2-92D2-F44478DD058A}) (Version: 4.2.24.0 - Intel Corporation)
IVI Shared Component 64-bit (Version: 2.21.49152 - IVI Foundation Inc.) Hidden
IVI Shared Components 2.2.1 (HKLM-x32\...\IviSharedComponent) (Version: 2.21.49152 - IVI Foundation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Lenovo Auto Scroll Utility (HKLM\...\LenovoAutoScrollUtility) (Version: 2.13 - )
Lenovo Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 3.1.16.0 - Lenovo)
Lenovo Fingerprint Manager Pro (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.35(x64) - Lenovo)
Lenovo Fingerprint Manager Pro (Version: 8.01.35(x64) - Lenovo) Hidden
Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Peer Connect SDK (HKLM\...\{75C87855-9CBB-4892-B1A9-74C73A19CACA}_is1) (Version: 1.0.0.7 - Lenovo)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.04.04 - )
Lenovo QuickControl (HKLM-x32\...\{ADD41292-FDBB-41E4-BB23-2A83C84D67DA}) (Version: 2.31 - Lenovo Group Limited)
Lenovo QuickDisplay (HKLM\...\{ADEEC90C-A033-4596-ACA1-97327055F9CB}) (Version: 1.2.6.0 - Lenovo Group Limited)
Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.3 - Lenovo Inc.)
Lenovo Solution Center (HKLM\...\{4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1}) (Version: 2.7.003.00 - Lenovo Group Limited)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.06.0016 - Lenovo)
Lenovo USB Graphics (HKLM\...\{E6B1FE9A-CB1E-4096-A0AF-163419CB971C}) (Version: 7.5.54614.0 - Lenovo)
Lenovo USB3.0 to DVI VGA Monitor Adapter (HKLM-x32\...\{454D32AD-C149-49BE-9F2E-8C089C3D6620}) (Version: 1.07.17 - Lenovo)
Lenovo User Guide (HKLM-x32\...\{13F59938-C595-479C-B479-F171AB9AF64F}) (Version: 1.0.0009.00 - Lenovo Group Limited)
Lenovo Warranty Information (HKLM-x32\...\{FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}) (Version: 1.0.0011.00 - Lenovo)
Malwarebytes Anti-Malware versione 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Math Kernel Libraries (64-bit) (Version: 1.0.23.0 - National Instruments) Hidden
Math Kernel Libraries (x32 Version: 1.0.23.0 - National Instruments) Hidden
MATLAB R2009b (HKLM\...\MatlabR2009b) (Version: 7.9 - The MathWorks, Inc.)
Message Center Plus (HKLM\...\{C2C2DB64-1BCE-4FA7-962D-457795ECCEC0}) (Version: 3.3.0004.00 - Lenovo Group Limited)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft AutoRoute 2013 (HKLM-x32\...\{C82185E8-C27B-4EF4-2013-3333BC2C2B6D}) (Version: 19.0.21.0500 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2012) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{5DDC2234-4B37-45BC-AD33-41F1469B4D83}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}) (Version: 11.0.2100.60 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NI .NET Framework 3.5 SP1 (x32 Version: 3.52.49152 - National Instruments) Hidden
NI .NET Framework 4.0 (x32 Version: 4.01.49152 - National Instruments) Hidden
NI ActiveX Container (64-bit) (Version: 12.0.14.0 - National Instruments) Hidden
NI ActiveX Container (x32 Version: 12.0.14.0 - National Instruments) Hidden
NI AFW Channel Configuration Tool (x32 Version: 8.0.171.0 - National Instruments) Hidden
NI AFW Custom UI (x32 Version: 8.0.174.0 - National Instruments) Hidden
NI AFW Custom UI Assemblies (x32 Version: 8.0.72.0 - National Instruments) Hidden
NI AFW UI Assemblies (x32 Version: 8.0.120.0 - National Instruments) Hidden
NI AOP5 DataPlugin 1.8.3 (x32 Version: 1.8.29.0 - National Instruments) Hidden
NI Assistant Framework (x32 Version: 8.0.112.0 - National Instruments) Hidden
NI Assistant Framework 64-bit (Version: 8.0.120.0 - National Instruments) Hidden
NI Assistant Framework LabVIEW Code Generator 2012 (64-bit) (Version: 8.0.69.0 - National Instruments) Hidden
NI Assistant Framework LabVIEW Code Generator 2012 (x32 Version: 8.0.70.0 - National Instruments) Hidden
NI Atomic PXIe Peripheral Module Driver 2.3.0 (x32 Version: 2.30.49152 - National Instruments) Hidden
NI Audio DataPlugin 1.1.1 (x32 Version: 1.1.22.0 - National Instruments) Hidden
NI Authentication 12.0.0 (64-bit) (Version: 12.0.367.0 - National Instruments) Hidden
NI Authentication 12.0.0 (x32 Version: 12.0.367.0 - National Instruments) Hidden
NI Calibration Provider for MAX 5.3.0 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI Calibration Provider Help for 64 Bit Windows (Version: 5.30.49152 - National Instruments) Hidden
NI Certificates Deployment Support (x32 Version: 1.03.49152 - National Instruments) Hidden
NI CodeSignAPI (x32 Version: 2.70.346 - National Instruments) Hidden
NI Curl 12.0.0 (64-bit) (Version: 12.0.412.0 - National Instruments) Hidden
NI Curl 12.0.0 (x32 Version: 12.0.412.0 - National Instruments) Hidden
NI Customer Experience Improvement Program (64-bit) (Version: 1.0.94.0 - National Instruments) Hidden
NI DataFinder Client 3.0 (x32 Version: 3.0.04556 - National Instruments) Hidden
NI DataFinder Desktop 3.0 (x32 Version: 3.0.04556 - National Instruments) Hidden
NI DataSocket 5.0 (64-bit) (Version: 5.0.115.0 - National Instruments) Hidden
NI DataSocket 5.0 (x32 Version: 5.0.115.0 - National Instruments) Hidden
NI DIAdem 2011 (Core) (x32 Version: 11.3.04563 - National Instruments) Hidden
NI DIAdem 2011 (x32 Version: 11.3.04563 - National Instruments) Hidden
NI DIAdem 2011 Documentation (TDM) (x32 Version: 11.3.04563 - National Instruments) Hidden
NI Distributed System Manager 2012 (x32 Version: 12.0.55.0 - National Instruments) Hidden
NI DN 2.0 SP1 installer (x32 Version: 2.11.49152 - National Instruments) Hidden
NI DN 2.0 x64 SP1 installer (x32 Version: 2.11.49152 - National Instruments) Hidden
NI Error Reporting 2012 (64-bit) (Version: 12.0.152.0 - National Instruments) Hidden
NI Error Reporting 2012 (x32 Version: 12.0.172.0 - National Instruments) Hidden
NI Ethernet Device Enumerator (x32 Version: 1.01.49152 - National Instruments) Hidden
NI Ethernet Device Enumerator 64-Bit (Version: 1.01.49152 - National Instruments) Hidden
NI EulaDepot (x32 Version: 3.21.136 - National Instruments) Hidden
NI Example Finder 12.0 (Version: 12.0.278.0 - National Instruments) Hidden
NI GMP Windows 32-bit Installer 12.0.0 (x32 Version: 12.0.46.0 - National Instruments) Hidden
NI GMP Windows 64-bit Installer 12.0.0 (Version: 12.0.46.0 - National Instruments) Hidden
NI Help Assistant (64bit) (Version: 1.0.11 - National Instruments) Hidden
NI Help Assistant (x32 Version: 1.0.11 - National Instruments) Hidden
NI Help Configuration Utility for VS2010 (x32 Version: 12.0.00172 - National Instruments) Hidden
NI I/O Trace API LV201264 (Version: 3.2.39.0 - National Instruments) Hidden
NI Instrument IO Assistant for LabVIEW 2012 64-bit (Version: 1.0.24.0 - National Instruments) Hidden
NI IO Trace 3.0.2 (x32 Version: 3.2.768 - National Instruments) Hidden
NI IVI Class Drivers (64-bit) (Version: 6.40.49155 - National Instruments) Hidden
NI IVI Class Drivers (x32 Version: 6.40.49155 - National Instruments) Hidden
NI IVI Class Simulation Drivers (64-bit) (Version: 4.40.49155 - National Instruments) Hidden
NI IVI Class Simulation Drivers (x32 Version: 4.40.49155 - National Instruments) Hidden
NI IVI Compliance Package 4.4 (64-bit) (Version: 4.40.49155 - National Instruments) Hidden
NI IVI Compliance Package 4.4 (x32 Version: 4.40.49155 - National Instruments) Hidden
NI IVI Engine (64-bit) (Version: 134.40.49155 - National Instruments) Hidden
NI IVI Engine (x32 Version: 134.40.49155 - National Instruments) Hidden
NI IVI Online Help (x32 Version: 4.40.49155 - National Instruments) Hidden
NI IVI Provider for MAX (x32 Version: 5.50.49155 - National Instruments) Hidden
NI LabVIEW 2009 SP1 Run-Time Engine Web Services (x32 Version: 9.0.234.0 - National Instruments) Hidden
NI LabVIEW 2010 Real-Time NBFifo (x32 Version: 10.0.214.0 - National Instruments) Hidden
NI LabVIEW 2011 Real-Time NBFifo (x32 Version: 11.0.250.0 - National Instruments) Hidden
NI LabVIEW 2012 (64 bit) MeasAppChm File (Version: 12.0.98.0 - National Instruments) Hidden
NI LabVIEW 2012 (64-bit) (Version: 12.0.200.0 - National Instruments) Hidden
NI LabVIEW 2012 (64-bit) (Version: 12.0.287.0 - National Instruments) Hidden
NI LabVIEW 2012 (64-bit) (Version: 12.0.297.0 - National Instruments) Hidden
NI LabVIEW 2012 (64-bit) Scripting Code Generator (Version: 8.0.212.0 - National Instruments) Hidden
NI LabVIEW 2012 (64-bit) Search (Version: 12.0.3.0 - National Instruments) Hidden
NI LabVIEW 2012 Deployable License (x32 Version: 12.0.364.0 - National Instruments) Hidden
NI LabVIEW 2012 Deployment Framework (x32 Version: 12.0.369.0 - National Instruments) Hidden
NI LabVIEW 2012 Help (Version: 12.0.283.0 - National Instruments) Hidden
NI LabVIEW 2012 Help File (Version: 12.0.98.0 - National Instruments) Hidden
NI LabVIEW 2012 Help File (x32 Version: 12.0.359.0 - National Instruments) Hidden
NI LabVIEW 2012 License (x32 Version: 12.0.360.0 - National Instruments) Hidden
NI LabVIEW 2012 Manuals (Version: 12.0.280.0 - National Instruments) Hidden
NI LabVIEW 2012 Real-Time Error Dialog (x32 Version: 12.0.71.0 - National Instruments) Hidden
NI LabVIEW 2012 Real-Time NBFifo (x32 Version: 12.0.219.0 - National Instruments) Hidden
NI LabVIEW 2012 Run-Time Engine Web Server (x32 Version: 12.0.406.0 - National Instruments) Hidden
NI LabVIEW 2012 Simulation (Version: 12.0.288.0 - National Instruments) Hidden
NI LabVIEW 2012 Web Server 64-Bit (Version: 12.0.405.0 - National Instruments) Hidden
NI LabVIEW 2012 Web Services Runtime (64-bit) (Version: 12.0.409.0 - National Instruments) Hidden
NI LabVIEW Broker (64 bit) (Version: 6.8.10.0 - National Instruments) Hidden
NI LabVIEW Broker (x32 Version: 6.8.10.0 - National Instruments) Hidden
NI LabVIEW C Interface (x32 Version: 1.0.1 - National Instruments) Hidden
NI LabVIEW Compare Utility 12.0.0 (Version: 12.0.285.0 - National Instruments) Hidden
NI LabVIEW EWB DeviceHandler (x32 Version: 6.0.132.0 - National Instruments) Hidden
NI LabVIEW MAX XML (x32 Version: 9.0.6.0 - National Instruments) Hidden
NI LabVIEW Merge Utility 12.0.0 (Version: 12.0.284.0 - National Instruments) Hidden
NI LabVIEW Real-Time FIFO for Runtime (x32 Version: 8.2.74.0 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (x32 Version: 9.0.319.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2009 SP1 (x32 Version: 9.0.1089.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2010 SP1 (x32 Version: 10.1.114.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2011 SP1 (64-bit) (Version: 11.0.360.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2011 SP1 (x32 Version: 11.0.448.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2012 (64-bit) (Version: 12.0.296.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2012 (x32 Version: 12.0.377.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.2.1 (x32 Version: 8.2.393.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2009 (x32 Version: 9.0.160.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2010 (x32 Version: 10.1.115.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2011 (64-bit) (Version: 11.0.360.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2011 (x32 Version: 11.0.449.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2012 (x32 Version: 12.0.146.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 (x32 Version: 6.0.140.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 Core (x32 Version: 6.0.136.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 Core LabVIEW 2012 Support (x32 Version: 6.0.72.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 Core LabVIEW Support (x32 Version: 6.0.136.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 Datatypes (x32 Version: 6.0.138.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 LabVIEW 2012 Support (x32 Version: 6.0.74.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 LabVIEW Support (x32 Version: 6.0.116.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 Licenses (x32 Version: 6.0.136.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 Steps (x32 Version: 6.0.113.0 - National Instruments) Hidden
NI LabVIEW SignalExpress 2012 Tools (x32 Version: 6.0.113.0 - National Instruments) Hidden
NI LabVIEW Web Server 64-Bit for Run-Time Engine (Version: 11.0.331.0 - National Instruments) Hidden
NI LabVIEW Web Server 64-Bit for Run-Time Engine (Version: 12.0.405.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (x32 Version: 10.0.235.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (x32 Version: 11.0.375.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (x32 Version: 9.0.185.0 - National Instruments) Hidden
NI LabWindows/CVI 2010 LabVIEW DLL Builder (x32 Version: 10.0.0360 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Analysis Library (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Analysis Library (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Code Generator (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Original) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Low-Level Driver (Updated) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Network Variable Library (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Network Variable Library (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 Run-Time Engine (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 TDM Streaming Library (64-bit) (Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI 2010 SP1 TDM Streaming Library (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI Run-Time Engine 2010 SP1 (Updated) (x32 Version: 10.0.1434 - National Instruments) Hidden
NI LabWindows/CVI Run-Time Engine 2010 SP1 (x32 Version: 10.0.1434 - National Instruments) Hidden
NI License Manager (x32 Version: 3.7.44 - National Instruments) Hidden
NI Logos 5.4 (64-bit) (Version: 5.4.303.0 - National Instruments) Hidden
NI Logos 5.4 (x32 Version: 5.4.303.0 - National Instruments) Hidden
NI Logos LabVIEW 2012 Support (Version: 12.0.283.0 - National Instruments) Hidden
NI Logos XT Support (x32 Version: 5.4.295.0 - National Instruments) Hidden
NI Logos64 XT Support (Version: 5.4.295.0 - National Instruments) Hidden
NI Math Kernel Libraries (64-bit) (Version: 1.0.10.0 - National Instruments) Hidden
NI Math Kernel Libraries (64-bit) (Version: 1.0.14.0 - National Instruments) Hidden
NI Math Kernel Libraries (64-bit) (Version: 1.0.15.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.10.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.25.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.28.0 - National Instruments) Hidden
NI Math Kernel Libraries (x32 Version: 1.0.861.0 - National Instruments) Hidden
NI MAX Remote Configuration 64-bit Installer 5.3 (Version: 5.30.49152 - National Instruments) Hidden
NI MAX Remote Configuration Installer 5.3 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI MAX Support for 64 Bit Windows (Version: 5.31.49152 - National Instruments) Hidden
NI MDF Support (x32 Version: 3.21.136 - National Instruments) Hidden
NI mDNS Responder 2.1 for Windows 64-bit (Version: 2.10.49152 - National Instruments) Hidden
NI mDNS Responder 2.1.0 (x32 Version: 2.10.49152 - National Instruments) Hidden
NI Measurement & Automation Explorer 5.3.1 (x32 Version: 5.31.49152 - National Instruments) Hidden
NI Measurement Studio 2010 Service Pack 1 Enterprise RunTime for VS2010 (x32 Version: 9.1.10106 - National Instruments) Hidden
NI Measurement Studio Common .NET Assemblies (x64) for .NET 4.0 (Version: 12.0.00253 - National Instruments) Hidden
NI Measurement Studio Common .NET Assemblies for .NET 4.0 (x32 Version: 12.0.00253 - National Instruments) Hidden
NI Measurement Studio Recipe Processor (x32 Version: 8.0.0101 - National Instruments) Hidden
NI MetaSuite Installer (x32 Version: 3.10.394 - National Instruments) Hidden
NI MXS 5.3.0 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI MXS 5.3.0 for 64 Bit Windows (Version: 5.30.49152 - National Instruments) Hidden
NI Network Browser 5.3.0 (x32 Version: 5.30.275.0 - National Instruments) Hidden
NI Network Discovery 5.3 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI Network Discovery 5.3 for Windows 64-bit (Version: 5.30.49152 - National Instruments) Hidden
NI NI LabVIEW 2011 SP1 Run-Time Engine Non-English Support (x32 Version: 11.0.302.0 - National Instruments) Hidden
NI NI LabVIEW 2012 Run-Time Engine Non-English Support. (x32 Version: 12.0.363.0 - National Instruments) Hidden
NI OPC Support (x32 Version: 12.0.295.0 - National Instruments) Hidden
NI Portable Configuration 5.3.0 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI Portable Configuration for 64 Bit Windows 5.3.0 (Version: 5.30.49152 - National Instruments) Hidden
NI PXI Hardware 64-bit Support 3.0.3 (Version: 3.03.49152 - National Instruments) Hidden
NI PXI Platform Framework 1.6.0 (x32 Version: 1.60.49153 - National Instruments) Hidden
NI PXI Platform Framework 1.6.0 64-bit (Version: 1.60.49153 - National Instruments) Hidden
NI PXI Platform Services 3.0.3 (x32 Version: 3.03.49152 - National Instruments) Hidden
NI PXI Platform Services 3.0.3 Configuration Support (x32 Version: 3.03.49152 - National Instruments) Hidden
NI PXI Platform Services 3.0.3 Expert (x32 Version: 3.03.49152 - National Instruments) Hidden
NI PXI SystemAPI Expert 3.0.3 (x32 Version: 3.03.49152 - National Instruments) Hidden
NI PXI SystemAPI Expert 64-bit 3.0.3 (Version: 3.03.49152 - National Instruments) Hidden
NI Registration Wizard (x32 Version: 1.3.92.0 - National Instruments) Hidden
NI Remote Provider for MAX 5.3.0 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI Remote PXI Provider for MAX 5.3.0 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI RTSI Cable Core Installer 1.3.0 (x32 Version: 1.30.49152 - National Instruments) Hidden
NI RTSI Cable Core Installer for 64 Bit Windows 1.3.0 (Version: 1.30.49152 - National Instruments) Hidden
NI RTSI PAL Device Library Installer 1.3.0 (x32 Version: 1.30.49152 - National Instruments) Hidden
NI RTSI PAL Device Library Installer for 64 Bit Windows 1.3.0 (Version: 1.30.49152 - National Instruments) Hidden
NI RTSI UI Provider 1.3.0 (x32 Version: 1.30.49152 - National Instruments) Hidden
NI RTSI UI Provider for 64 Bit Windows 1.3.0 (Version: 1.30.49152 - National Instruments) Hidden
NI Search Shared 64-bit (Version: 12.0.4.0 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (64-bit) (Version: 1.0.29.0 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (x32 Version: 1.0.29.0 - National Instruments) Hidden
NI Security Update (KB5Q5FJ4QW) - LabVIEW Run-Time Engine 8.2 (x32 Version: 1.00.49172 - National Instruments) Hidden
NI SLCP 1.0 (64-bit) (Version: 1.0.46.0 - National Instruments) Hidden
NI Software Provider for MAX 5.3.0 (x32 Version: 5.30.49152 - National Instruments) Hidden
NI Sound and Vibration 2012 (x32 Version: 12.0.121.0 - National Instruments) Hidden
NI Sound and Vibration 2012 64-bit (Version: 12.0.121.0 - National Instruments) Hidden
NI Sound and Vibration Assistant (x32 Version: 12.0.90.0 - National Instruments) Hidden
NI Sound and Vibration Assistant 64-bit (Version: 12.0.20.0 - National Instruments) Hidden
NI Sound and Vibration Frequency Analysis 2012 (x32 Version: 12.0.75.0 - National Instruments) Hidden
NI Sound and Vibration Frequency Analysis 2012 64-bit Support (Version: 12.0.74.0 - National Instruments) Hidden
NI Sound and Vibration Frequency Analysis LabVIEW 2012 Support (x32 Version: 12.0.75.0 - National Instruments) Hidden
NI Sound and Vibration Licenses 2012 (x32 Version: 12.0.43.0 - National Instruments) Hidden
NI Sound and Vibration Run-Time Engine for VxWorks (x32 Version: 12.0.59.0 - National Instruments) Hidden
NI Sound and Vibration Toolkit 2012 64-bit (Version: 12.0.95.0 - National Instruments) Hidden
NI Sound and Vibration Toolkit LabVIEW 2012 64-bit Support (Version: 12.0.95.0 - National Instruments) Hidden
NI Spy Windows 64 Support 3.0.2 (Version: 3.2.768 - National Instruments) Hidden
NI SSL LabVIEW 2012 RTE Support (64-bit) (Version: 12.0.125.0 - National Instruments) Hidden
NI SSL LabVIEW 2012 Support (64-bit) (Version: 12.0.406.0 - National Instruments) Hidden
NI SSL LabVIEW RTE 2012 Support (x32 Version: 12.0.125.0 - National Instruments) Hidden
NI SSL Support (64-bit) (Version: 12.0.408.0 - National Instruments) Hidden
NI SSL Support (x32 Version: 12.0.408.0 - National Instruments) Hidden
NI System API Client for WIF 5.3.0 (x32 Version: 5.30.461.0 - National Instruments) Hidden
NI System API Web-Servce 32-bit 5.3.1 (x32 Version: 5.31.4.0 - National Instruments) Hidden
NI System API Windows 32-bit 5.3.1 (x32 Version: 5.31.4.0 - National Instruments) Hidden
NI System API Windows 64-bit 5.3.1 (Version: 5.31.4.0 - National Instruments) Hidden
NI System Configuration 5.3.0 LabVIEW Support (x32 Version: 5.30.212.0 - National Instruments) Hidden
NI System Configuration CVI Support 5.3.0 (x32 Version: 5.30.215.0 - National Instruments) Hidden
NI System Configuration LV2012 64-bit Support 5.3.0 (Version: 5.30.205.0 - National Instruments) Hidden
NI System Configuration Runtime 5.3.0 (x32 Version: 5.30.427.0 - National Instruments) Hidden
NI System Configuration Runtime 5.3.0 for Windows 64-bit (Version: 5.30.426.0 - National Instruments) Hidden
NI System State Publisher (64-bit) (Version: 12.0.218.0 - National Instruments) Hidden
NI System State Publisher (x32 Version: 12.0.358.0 - National Instruments) Hidden
NI System Web Server 12.0 (x32 Version: 12.0.414.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (64-bit) (Version: 12.0.407.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (x32 Version: 12.0.407.0 - National Instruments) Hidden
NI TDM Excel Add-In 3.4 (x32 Version: 3.4.19.0 - National Instruments) Hidden
NI TDM Excel Add-In 3.4 64-bit (Version: 3.4.19.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (64-bit) (Version: 2.4.55.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (x32 Version: 2.4.55.0 - National Instruments) Hidden
NI Trace Engine (64-bit) (Version: 12.0.401.0 - National Instruments) Hidden
NI Trace Engine (x32 Version: 12.0.401.0 - National Instruments) Hidden
NI Uninstaller (x32 Version: 3.21.136 - National Instruments) Hidden
NI Update Service 2.1 (x32 Version: 2.10.114.0 - National Instruments) Hidden
NI USI 2.0.0 (x32 Version: 2.0.04901 - National Instruments) Hidden
NI USI 2.0.0 64-Bit (Version: 2.0.04901 - National Instruments) Hidden
NI USI MATLAB DataPlugin 1.2.05557 (x32 Version: 1.2.05557 - National Instruments) Hidden
NI USI MATLAB DataPlugin 64Bit 1.2.05557 (Version: 1.2.05557 - National Instruments) Hidden
NI USI UFF58 Plugin 2.3.2 (x32 Version: 2.3.53.0 - National Instruments) Hidden
NI USI UFF58 Plugin 2.3.2 64Bit (Version: 2.3.60.0 - National Instruments) Hidden
NI Variable Engine (64-bit) (Version: 2.6.296.0 - National Instruments) Hidden
NI Variable Engine 2.6.0 (x32 Version: 2.6.296.0 - National Instruments) Hidden
NI Variable Engine LabVIEW 2012 Support (Version: 12.0.282.0 - National Instruments) Hidden
NI VC2005MSMs x64 (Version: 8.05.0 - National Instruments) Hidden
NI VC2005MSMs x86 (x32 Version: 8.05.0 - National Instruments) Hidden
NI VC2008MSMs x64 (Version: 9.0.401 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.401 - National Instruments) Hidden
NI VC2010MSMs x64 (Version: 10.0.001 - National Instruments) Hidden
NI VC2010MSMs x86 (x32 Version: 10.0.001 - National Instruments) Hidden
NI VIPM Helper 2012 (x32 Version: 12.0.211.0 - National Instruments) Hidden
NI Visual C++ 2010 Redistributable Package (x32 Version: 10.02.49152 - National Instruments) Hidden
NI Web Application Server 12.0 (64-bit) (Version: 12.0.422.0 - National Instruments) Hidden
NI Web Application Server 12.0 (x32 Version: 12.0.422.0 - National Instruments) Hidden
NI Web Interface Framework 2012 (x32 Version: 12.0.352.0 - National Instruments) Hidden
NI Web Pipeline 2.0.1 (x32 Version: 2.0.128.0 - National Instruments) Hidden
NI Web Pipeline 2.0.1 64-bit support (Version: 2.0.122.0 - National Instruments) Hidden
NI Xalan Delay Load 1.10.2 (x32 Version: 1.10.72.0 - National Instruments) Hidden
NI Xalan Delay Load 1.10.2 64-bit (Version: 1.10.73.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 (x32 Version: 2.7.180.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 64-bit (Version: 2.7.190.0 - National Instruments) Hidden
NI-APAL 2.2 64-Bit Error Files (Version: 2.20.49152 - National Instruments) Hidden
NI-APAL 2.2 Error Files (x32 Version: 2.20.49152 - National Instruments) Hidden
NI-APAL 2.2 Error Files for LabVIEW RT (x32 Version: 2.20.49152 - National Instruments) Hidden
NI-DAQ INF Files 19.6.1 (x32 Version: 19.61.3000 - National Instruments) Hidden
NI-DAQmx 653x Installer 1.9.7 (x32 Version: 1.97.49152 - National Instruments) Hidden
NI-DAQmx 653x Installer for 64 Bit Windows 1.9.7 (Version: 1.97.49152 - National Instruments) Hidden
NI-DAQmx 9.6.1 (x32 Version: 9.61.49153 - National Instruments) Hidden
NI-DAQmx ADE Support 9.6.1 (x32 Version: 9.61.49153 - National Instruments) Hidden
NI-DAQmx and NI-DAQ Common Documents 9.6.1 (x32 Version: 9.61.49152 - National Instruments) Hidden
NI-DAQmx C and VB6 API 2.7.0 (x32 Version: 2.70.49152 - National Instruments) Hidden
NI-DAQmx Common Digital 1.15.0 (x32 Version: 1.150.49152 - National Instruments) Hidden
NI-DAQmx Common Digital for 64 Bit Windows 1.15.0 (Version: 1.150.49152 - National Instruments) Hidden
NI-DAQmx DAQ Assistant 2.4.0 (x32 Version: 2.40.49152 - National Instruments) Hidden
NI-DAQmx DAQ Assistant 64-bit 2.4.0 (Version: 2.40.49152 - National Instruments) Hidden
NI-DAQmx Documentation 9.6.0 (x32 Version: 9.60.49153 - National Instruments) Hidden
NI-DAQmx Documentation for 64 bit Windows 9.6.0 (Version: 9.60.49153 - National Instruments) Hidden
NI-DAQmx Dynamic Signal Acquisition for 64 Bit Windows 2.5.0 (Version: 2.50.49153 - National Instruments) Hidden
NI-DAQmx Dynamic Signal Acquisition Installer 2.5.0 (x32 Version: 2.50.49153 - National Instruments) Hidden
NI-DAQmx FSL Installer 2.2.0 (x32 Version: 2.20.49152 - National Instruments) Hidden
NI-DAQmx FSL Installer for 64-Bit Windows 2.2.0 (Version: 2.20.49152 - National Instruments) Hidden
NI-DAQmx MAX Configuration Support 9.6.1 (x32 Version: 9.61.49153 - National Instruments) Hidden
NI-DAQmx MAX Support 64-bit 2.6.0 (Version: 2.60.49155 - National Instruments) Hidden
NI-DAQmx MIO Device Drivers 2.9.1 (x32 Version: 2.91.49153 - National Instruments) Hidden
NI-DAQmx MIO Device Drivers for 64 Bit Windows 2.9.1 (Version: 2.91.49153 - National Instruments) Hidden
NI-DAQmx MX Expert Framework 2.12.0 (x32 Version: 2.120.49153 - National Instruments) Hidden
NI-DAQmx MX Expert Framework for 64 Bit Windows 2.12.0 (Version: 2.120.49153 - National Instruments) Hidden
NI-DAQmx SCXI 2.1.1 (x32 Version: 2.11.49152 - National Instruments) Hidden
NI-DAQmx SCXI for 64 Bit Windows 2.1.1 (Version: 2.11.49152 - National Instruments) Hidden
NI-DAQmx STC 1.11.0 (x32 Version: 1.110.49152 - National Instruments) Hidden
NI-DAQmx STC for 64 Bit Windows 1.11.0 (Version: 1.110.49152 - National Instruments) Hidden
NI-DAQmx support for LabVIEW (64-bit) 2.5.0 (Version: 2.50.49153 - National Instruments) Hidden
NI-DAQmx support for LabVIEW 2.5.0 (x32 Version: 2.50.49153 - National Instruments) Hidden
NI-DAQmx Switch Core 2.5.1 (x32 Version: 2.51.49152 - National Instruments) Hidden
NI-DAQmx Switch Core for 64 Bit Windows 2.5.1 (Version: 2.51.49152 - National Instruments) Hidden
NI-DAQmx Timing for 64 Bit Windows 2.6.0 (Version: 2.60.49152 - National Instruments) Hidden
NI-DAQmx Timing Installer 2.6.0 (x32 Version: 2.60.49152 - National Instruments) Hidden
NI-DAQmx/LabVIEW shared documentation 9.6.0 (x32 Version: 9.60.49152 - National Instruments) Hidden
NI-DAQmx/LabVIEW shared documentation for 64 Bit Windows 9.6.0 (Version: 9.60.49152 - National Instruments) Hidden
NI-DIM 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-DIM 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-MDBG 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-MDBG 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-Mesa (Version: 11.0.11.0 - National Instruments) Hidden
NI-Mesa (x32 Version: 11.0.11.0 - National Instruments) Hidden
NI-MRU 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-MRU 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-MXDF 3.0.0f0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-MXDF 3.0.0f0 for 64 Bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-MXLC Core (32-bit) (x32 Version: 3.0.35.0 - National Instruments) Hidden
NI-MXLC Core (64-bit) (Version: 3.0.34.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2009 Support (Version: 3.0.36.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2009 Support (x32 Version: 3.0.36.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2010 Support (Version: 3.0.53.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2010 Support (x32 Version: 3.0.36.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2011 Support (Version: 3.0.36.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2011 Support (x32 Version: 3.0.36.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2012 Support (Version: 3.0.36.0 - National Instruments) Hidden
NI-MXLC LabVIEW 2012 Support (x32 Version: 3.0.36.0 - National Instruments) Hidden
NI-ORB 3.0 (x32 Version: 3.00.49152 - National Instruments) Hidden
NI-ORB 3.0 for 64-bit Windows (Version: 3.00.49152 - National Instruments) Hidden
NI-PAL 2.9 64-Bit Error Files (Version: 2.90.49152 - National Instruments) Hidden
NI-PAL 2.9 Error Files (x32 Version: 2.90.49152 - National Instruments) Hidden
NI-PAL 2.9.0f0 (x32 Version: 10.100.49152 - National Instruments) Hidden
NI-PAL 2.9.0f0 for 64 Bit Windows (Version: 10.100.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 (x32 Version: 4.30.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 for 64 Bit Windows (Version: 4.30.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 for Phar Lap ETS (x32 Version: 4.30.49152 - National Instruments) Hidden
NI-VISA Runtime 5.2.0 (x32 Version: 5.20.49152 - National Instruments) Hidden
NI-VISA x64 support 5.2.0 (Version: 5.20.49152 - National Instruments) Hidden
NVIDIA 3D Vision Driver 312.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 312.69 - NVIDIA Corporation)
NVIDIA Graphics Driver 312.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 312.69 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.24.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.24.2 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{C4D2B63B-A435-433A-AD02-7D26ACD23DF0}) (Version: 3.3.00.73 - O2Micro International LTD.)
O2Micro Flash Memory Card Windows Driver (Version: 3.3.00.73 - O2Micro International LTD.) Hidden
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PANTONE Color Calibrator 1.2.0 (HKLM-x32\...\PANTONE Color Calibrator_is1) (Version:  - X-Rite)
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.51.17865 - pdfforge GmbH)
PDF Architect 2 Create Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF Architect 2 Edit Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDF Architect 2 View Module (x32 Version: 2.1.6.19758 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.2 - pdfforge)
Power Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.67.2 - Lenovo Group Limited)
PowerDVD Create (HKLM-x32\...\InstallShield_{DE485075-8CD3-4A1E-9ABC-6412EBA44872}) (Version: 10.0 - CyberLink Corp.)
RailMeasurement CAT 12.01 (x32 Version: 12.1.18805 - RailMeasurement Ltd) Hidden
RapidBoot HDD Accelerator (HKLM-x32\...\Fastboot) (Version: 1.1.1.1 - Lenovo)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7188 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (HKLM\...\EnablePS) (Version: 1.00 - )
Rescue and Recovery (HKLM-x32\...\{BDB3E73F-5ECA-441D-96E1-F1CFCF3D427D}) (Version: 4.52.0005.00 - Lenovo Group Limited)
Reset NI Config 5.0.0 (x32 Version: 5.0.146.0 - National Instruments) Hidden
Secure Download Manager (HKLM-x32\...\{E040B65B-8683-4228-8C33-D44A141E40EA}) (Version: 3.1.60 - Kivuto Solutions Inc.)
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.15.0 - Lenovo Group Limited)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Software di base della periferica HP Deskjet 3050 J610 series (HKLM\...\{1E520158-4E94-44C9-98B7-C46D822DAE66}) (Version: 22.0.334.0 - Hewlett-Packard Co.)
Software Intel® PROSet/Wireless (HKLM-x32\...\{9bffdf20-c3a3-4e93-9cbf-61712c6a38be}) (Version: 17.13.2 - Intel Corporation)
Software National Instruments (HKLM-x32\...\NI Uninstaller) (Version:  - National Instruments)
SolidWorks 2014 x64 Edition SP04 (HKLM-x32\...\SolidWorks Installation Manager 20140-40400-1100-100) (Version: 22.4.0.54 - SolidWorks Corporation)
SolidWorks 2014 x64 Edition SP04 (Version: 22.140.54 - SolidWorks) Hidden
SolidWorks 2014x64 Italian Resources (Version: 22.140.54 - Nome società) Hidden
SolidWorks Composer 2014 SP04 x64 Edition (Version: 22.40.54 - Dassault Systemes SolidWorks) Hidden
SolidWorks eDrawings 2014 x64 Edition SP04 (Version: 14.4.105 - Dassault Systèmes SolidWorks Corp) Hidden
SolidWorks Electrical 2014 SP04 x64 Edition (Version: 22.40.54 - DS SolidWorks) Hidden
SolidWorks Explorer 2014 SP04 x64 Edition (Version: 22.40.54 - SolidWorks Corporation) Hidden
SolidWorks Flow Simulation 2014 SP04 x64 Edition  (Version: 22.40.55 - SolidWorks Corporation) Hidden
SolidWorks Plastics 2014 SP04 x64 Edition (Version: 22.40.54 - SolidWorks Corporation) Hidden
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.16.201411190934 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.236 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.236 - Sony)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited)
SQL Server 2012 Common Files (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2012 (HKLM-x32\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.0.2100.60 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
Synaptics WBF DDK 5011 (HKLM\...\{366CA58E-2FBE-424A-9B2E-9C8095ABDCD5}) (Version: 4.5.278.0 - Synaptics)
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.57 - Synaptics Incorporated)
Thinkpad USB 3.0 Ethernet Adapter Driver (HKLM-x32\...\{D8102684-7BA1-4948-88B9-535F84E6E588}) (Version: 7.4.911.2013 - Lenovo)
ThinkVantage Access Connections (HKLM-x32\...\{8E537894-A559-4D60-B3CB-F4485E3D24E3}) (Version: 6.23 - Lenovo)
ThinkVantage Active Protection System (HKLM\...\{46A84694-59EC-48F0-964C-7E76E9F8A2ED}) (Version: 1.80.01.00 - Lenovo)
ThinkVantage Password Manager (HKLM-x32\...\{70EE2BAA-F82A-4B8A-950E-649EFD64D5B9}) (Version: 4.70.2.0 - Lenovo Group Limited)
Thunderbolt™ Software (HKLM\...\{BED2816F-D47A-41DA-AFCF-44E1B257C368}) (Version: 2.0.4.250 - Intel® Corporation)
TuneUp Utilities 2012 (HKLM-x32\...\TuneUp Utilities 2012) (Version: 12.0.3010.43 - TuneUp Software)
TuneUp Utilities 2012 (x32 Version: 12.0.3010.43 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (it-IT) (x32 Version: 12.0.3010.43 - TuneUp Software) Hidden
UltraEdit 15.00 (HKLM-x32\...\{AFC7E003-9CA8-4F68-AAB2-155D0CDF5AED}) (Version: 15.00.32 - IDM Computer Solutions, Inc.)
USB Enhanced Performance Keyboard (HKLM\...\{989DC5D9-A776-430D-9E16-D36E5B81CD86}) (Version: 2.0.1.9 - Lenovo)
VISA Shared Components 64-Bit (HKLM-x32\...\VISASharedComponents) (Version:  - )
VISA Shared Components 64-Bit (Version: 1.4.0 - IVI Foundation Inc.) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WaveEditor (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1.4514 - CyberLink Corp.)
WaveEditor (x32 Version: 1.0.1.4514 - CyberLink Corp.) Hidden
WIF Core Dependencies Windows 5.3.0 (x32 Version: 5.30.208.0 - National Instruments) Hidden
Windows Driver Package - Intel (e1dexpress) Net  (03/13/2014 12.11.77.1) (HKLM\...\0E9686B99C91E380CCB49060633DCDE5ED79DE7E) (Version: 03/13/2014 12.11.77.1 - Intel)
Windows Driver Package - Intel Corporation (iaStorA) HDC  (11/15/2013 12.8.10.1005) (HKLM\...\D25E6F494D3225DFE05884186452E2C79AF2E506) (Version: 11/15/2013 12.8.10.1005 - Intel Corporation)
Windows Driver Package - Lenovo 1.67.04.04 (11/07/2013 1.67.04.04) (HKLM\...\70FB73D983446AEE2932B0ED51A770D1BD1348DA) (Version: 11/07/2013 1.67.04.04 - Lenovo)
Windows Driver Package - Synaptics (SmbDrv) System  (04/07/2014 18.0.7.40) (HKLM\...\FB2627FE59EA6DAD058B4A4C82647DC162F8723D) (Version: 04/07/2014 18.0.7.40 - Synaptics)
Windows Driver Package - Synaptics (SynTP) Mouse  (04/07/2014 18.0.7.40) (HKLM\...\5879A8A324E612CD4CB110632BF1186381FA46F0) (Version: 04/07/2014 18.0.7.40 - Synaptics)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
X-Rite Device Services Manager (HKLM-x32\...\{161654F6-9245-412C-9C76-742791E42F75}) (Version: 2.1.14 - X-Rite)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001_Classes\CLSID\{9A872070-0A06-11D1-90B7-00A024CE2744}\localserver32 -> C:\Program Files\National Instruments\LabVIEW 2012\LabVIEW.exe (National Instruments Corporation)
CustomCLSID: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Giulia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001_Classes\CLSID\{b5eedee0-c06e-11cf-8c56-444553540000}\InprocServer32 -> C:\Program Files (x86)\IDM Computer Solutions\UltraEdit\ue64ctmn.dll ()
CustomCLSID: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Giulia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Giulia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Giulia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2180257905-4020172000-3852966361-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Giulia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)
 
==================== Restore Points  =========================
 
08-03-2015 10:54:52 Norton_Power_Eraser_20150308105452537
08-03-2015 11:03:27 Installed Sophos Virus Removal Tool.
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {0F6191A1-02D6-4DDE-9C7E-CF54E65EC19E} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-03-02] (Glarysoft Ltd)
Task: {12E7ED88-EC43-4108-98C6-199E2A3E6A7B} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {19386817-BF50-49B3-8ABC-8ED0B0260B1C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {200B7B6E-160D-4288-B0EE-A62520932955} - System32\Tasks\RtHDVBg_LENOVO_MICPKEY => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-25] (Realtek Semiconductor)
Task: {23EBCC02-9E1F-4062-B0F1-DB690C411ABC} - System32\Tasks\Programma di aggiornamento HP online => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2010-03-12] (Hewlett-Packard)
Task: {242B78FB-7F4E-4E6A-9E36-E92D3CFE87C8} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {263FE1AC-545C-408F-9E25-2A6335EA7667} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => Thunderbolt.exe
Task: {2BB9559E-F383-4D39-B7CF-B25D2425F952} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {382B818A-4AD9-439F-A4DC-5AD0491A0F8A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {3EEC0257-0A31-486E-A342-5726EB9C65EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-27] (Google Inc.)
Task: {46099C43-EE2C-4238-A965-2C5BB631EDC3} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-02-25] (Realtek Semiconductor)
Task: {4A47CC6C-73C8-4382-960A-887FA6E26278} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-02-24] (Realtek Semiconductor)
Task: {4A667561-65BC-4402-9F86-BD2BE18A1189} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {4DF6FDD5-2629-4C51-85EA-C1BBDCD13D7C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {4F7DBE85-62AA-4670-88B9-A325F23A379E} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => Thunderbolt.exe
Task: {5821D470-A560-4FAF-8AF0-432140C72C24} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [2012-06-08] (National Instruments)
Task: {6645A3C3-B382-4B02-9B4E-E7AB4E8EF0E5} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2014-06-18] ()
Task: {6815E7BD-A1EF-4612-A13D-E40C0DDF7EFC} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-12-17] (Oracle Corporation)
Task: {801A126D-2963-4C41-9A7C-DB33036F01AC} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {809F1DCE-19CF-48C2-BAC7-949A1CD1CBDC} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [2013-06-29] (CyberLink Corp.)
Task: {82B5576C-CDD2-4852-BDBF-BB11471F0015} - System32\Tasks\TVT\UpdateRnR => %TVTCOMMON%\Scheduler\tvtsetsched.exe
Task: {833852D1-4059-4647-BB5C-DD43A5954638} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo)
Task: {84165C5F-A800-436C-9976-033750A4B9A2} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {84E64389-E308-4F6F-B6EB-87762F616846} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2014-11-14] (Lenovo Group Limited)
Task: {87633F0A-FF2A-4969-8355-D9AEB65338A6} - System32\Tasks\CLMLSvc => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2013-03-07] (CyberLink)
Task: {93648E1B-37BC-4F18-B380-73B8D82B1754} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {953B6687-14CA-489E-9CAC-4914C256AC86} - System32\Tasks\TVT\ChangePWD => %RR%\rrcmd.exe
Task: {9643006E-AA7D-4558-ACCE-351955235A04} - System32\Tasks\TVT\LaunchRnR => %RR%\rrcmd.exe
Task: {99A3001C-6DF2-47C2-8FD4-0FD21AB7958C} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => start ThunderboltService
Task: {A7ABACB3-5D61-41C8-80A1-65181BE62CB5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {A88793E0-B1FE-4144-BFA0-953AAAAB424A} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-10-16] (Lenovo)
Task: {ACE8968F-5C56-4B8C-A8DF-A5A0CC44E224} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {B3FD628B-ACBA-4B8F-B7CE-50631B8056A9} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe
Task: {C58CD671-2002-4E76-8DD3-ED3B7C591F11} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-27] (Google Inc.)
Task: {D4A5A109-651C-48BF-809F-C13ADCA9716E} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [2012-06-08] (National Instruments)
Task: {D51282D8-09BC-498F-A279-AC0EA9CB4944} - System32\Tasks\TVT\Lenovo QuickDisplay Agent => C:\Program Files\Lenovo\QuickDisplay\QuickDisplayAgent.exe [2014-03-27] (Lenovo Corporation)
Task: {D51667E0-3C84-44CE-B0FC-6D7EB8D5CBF9} - System32\Tasks\Lenovo\Message Center Plus Launcher => C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [2014-09-13] (Lenovo)
Task: {DA7BA1E5-4111-4227-82DF-1F237633DDBF} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-10-16] ()
Task: {DD586D89-2331-4822-BFF6-D842627F2013} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {E75FCED1-F1FE-4BC3-B952-22F482090A6F} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-03-02] (Glarysoft Ltd)
Task: {F181C45C-E746-4A13-9C95-03D1DADC400D} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-04-27] (Lenovo)
Task: {F4AE650B-3DE3-4685-B799-F8B56A717414} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {F9BE5A44-6965-44F3-A2CB-10F474B7FFA8} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [2014-10-16] (Lenovo)
Task: {FB50CA4B-1139-40A8-B790-38D66ED03F45} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2011-10-07 18:46 - 2011-10-07 18:46 - 00071496 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2014-12-24 09:47 - 2014-12-24 09:47 - 00035840 ____N () C:\Program Files\Lenovo\Fingerprint Manager Pro\ssplogon.dll
2014-12-24 09:47 - 2014-12-24 09:47 - 00055296 ____N () C:\Program Files\Lenovo\Fingerprint Manager Pro\RandomPass.dll
2014-12-24 09:47 - 2014-12-24 09:47 - 00021504 ____N () C:\Program Files\Lenovo\Fingerprint Manager Pro\cryptodll.dll
2014-12-24 09:57 - 2014-12-24 09:57 - 00318032 ____N () C:\Program Files\Lenovo\Fingerprint Manager Pro\mstrpwd.dll
2014-11-20 00:40 - 2013-10-29 01:53 - 00087328 ____N () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-25 11:21 - 2015-02-25 11:21 - 02623488 _____ () C:\ProgramData\Microsoft\Security\Client\SecurityProvider.dll
2014-11-20 00:43 - 2014-11-14 06:07 - 00114176 ____N () C:\Program Files (x86)\ThinkPad\Utilities\IT\PWMRT64V.DLL
2009-05-05 14:18 - 2009-05-05 14:18 - 00092160 ____N () C:\Program Files (x86)\IDM Computer Solutions\UltraEdit\ue64ctmn.dll
2015-01-11 21:05 - 2014-10-21 10:29 - 00601376 ____N () C:\Program Files\Lenovo\Password Manager\pwm_website_config.dll
2010-06-21 14:53 - 2010-06-21 14:53 - 00846520 ____N () C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe
2014-11-20 00:46 - 2013-07-22 22:12 - 40536576 ____N () C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\Color Calibrator Tray.exe
2014-12-24 09:50 - 2014-12-24 09:50 - 00065024 ____N () C:\Program Files\Lenovo\Fingerprint Manager Pro\opvapp.exe
2012-05-29 18:21 - 2012-05-29 18:21 - 02270880 ____N () C:\Program Files\National Instruments\Shared\NI Error Reporting\niwsrp.dll
2014-06-12 07:30 - 2014-06-12 07:30 - 00276008 ____N () C:\Program Files\SolidWorks Corp\SolidWorks\sldBodyDiffu.dll
2015-02-19 22:40 - 2015-02-19 22:40 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1040.dll
2014-11-20 00:45 - 2011-08-02 20:58 - 02201088 ____N () C:\Program Files\Lenovo\Communications Utility\cxcore210.dll
2014-11-20 00:45 - 2011-08-02 20:58 - 02085888 ____N () C:\Program Files\Lenovo\Communications Utility\cv210.dll
2012-10-11 16:45 - 2012-10-11 16:45 - 00385024 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\NISWCH.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00005120 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NI5690.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00012288 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIDWG.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00021504 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIHSD.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00006144 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIPS.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00005632 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NIRFSA.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00013312 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISL.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00013824 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISRC.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00006656 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NISYNC.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00007680 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NITNR.sdc
2012-01-30 13:18 - 2012-01-30 13:18 - 00009728 ____N () C:\Program Files (x86)\National Instruments\Shared\Caps\Compat\NITSU.sdc
2010-06-21 14:52 - 2010-06-21 14:52 - 03678208 ____N () C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.dll
2010-06-21 14:53 - 2010-06-21 14:53 - 00034304 ____N () C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\hwNiHardwareFinder.dll
2011-10-11 14:46 - 2011-10-11 14:46 - 01588560 ____N () C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll
2011-10-11 14:45 - 2011-10-11 14:45 - 00902992 ____N () C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll
2011-10-11 14:46 - 2011-10-11 14:46 - 02639696 ____N () C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll
2014-11-20 00:46 - 2013-07-22 22:12 - 00898560 ____N () C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\libxml2.dll
2014-11-20 00:46 - 2013-07-22 22:12 - 00073728 ____N () C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\zlib1.dll
2014-11-20 00:46 - 2013-07-22 22:12 - 03449344 ____N () C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\CxF2_VC90MD_2.1.dll
2014-11-20 00:46 - 2013-07-22 22:12 - 07390720 ____N () C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\QtGui4.dll
2014-11-20 00:46 - 2013-07-22 22:12 - 02012160 ____N () C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\QtCore4.dll
2013-03-07 06:49 - 2013-03-07 06:49 - 00626240 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2013-03-07 06:52 - 2013-03-07 06:52 - 00015424 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2012-05-29 18:07 - 2012-05-29 18:07 - 01958560 ____N () C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\niwsrp.dll
2012-01-26 10:36 - 2012-01-26 10:36 - 00278528 ____R () C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\xerces-depdom_2_6.dll
2011-06-22 11:53 - 2011-06-22 11:53 - 00680960 ____N () C:\Program Files (x86)\National Instruments\Shared\DataFinderDesktop\bin\susiFTSLucene.dll
2014-10-21 10:26 - 2014-10-21 10:26 - 00546592 ____N () C:\Program Files (x86)\Lenovo\Password Manager\pwm_website_config.dll
2015-03-02 06:39 - 2015-03-02 06:39 - 00080160 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
2014-11-20 00:25 - 2013-12-03 06:36 - 01242584 ____N () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-12-02 14:11 - 2014-12-02 14:11 - 00111400 _____ () C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\rkdisk.dll
2015-02-23 10:13 - 2015-02-17 23:44 - 01117512 ____N () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libglesv2.dll
2015-02-23 10:13 - 2015-02-17 23:44 - 00211272 ____N () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\libegl.dll
2015-02-23 10:13 - 2015-02-17 23:44 - 09171272 ____N () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\pdf.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Windows:nlsPreferences
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service"
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Giulia\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 85.37.17.5 - 85.38.28.77
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NIUpdateService - collegamento.lnk => C:\Windows\pss\NIUpdateService - collegamento.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RegistrationWizard - collegamento.lnk => C:\Windows\pss\RegistrationWizard - collegamento.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SolidWorks Background Downloader.lnk => C:\Windows\pss\SolidWorks Background Downloader.lnk.CommonStartup
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Giulia\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2180257905-4020172000-3852966361-500 - Administrator - Disabled)
Giulia (S-1-5-21-2180257905-4020172000-3852966361-1001 - Administrator - Enabled) => C:\Users\Giulia
Guest (S-1-5-21-2180257905-4020172000-3852966361-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-2180257905-4020172000-3852966361-1000 - Limited - Enabled) => C:\Users\UpdatusUser
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (03/08/2015 11:14:46 AM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Servizio Windows Search: impossibile elaborare l'elenco di percorsi inclusi ed esclusi. Errore: <30, 0x80040d07, "iehistory://{S-1-5-21-2180257905-4020172000-3852966361-1001}/">.
 
Error: (03/08/2015 10:57:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/08/2015 10:44:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/08/2015 10:26:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/08/2015 09:54:27 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/06/2015 05:07:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome dell'applicazione che ha generato l'errore: iexplore.exe.exe, versione: 1.0.1.2041, timestamp: 0x539e8df7
Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea8e7
Codice eccezione: 0xc0000005
Offset errore 0x0002e3be
ID processo che ha generato l'errore: 0x19a4
Ora di avvio dell'applicazione che ha generato l'errore: 0xiexplore.exe.exe0
Percorso dell'applicazione che ha generato l'errore: iexplore.exe.exe1
Percorso del modulo che ha generato l'errore: iexplore.exe.exe2
ID segnalazione: iexplore.exe.exe3
 
Error: (03/06/2015 04:38:08 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Servizio Windows Search: impossibile elaborare l'elenco di percorsi inclusi ed esclusi. Errore: <30, 0x80040d07, "iehistory://{S-1-5-21-2180257905-4020172000-3852966361-1001}/">.
 
Error: (03/06/2015 04:21:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome dell'applicazione che ha generato l'errore: iexplore.exe.exe, versione: 1.0.1.2041, timestamp: 0x539e8df7
Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea8e7
Codice eccezione: 0xc0000005
Offset errore 0x0002e3be
ID processo che ha generato l'errore: 0x2064
Ora di avvio dell'applicazione che ha generato l'errore: 0xiexplore.exe.exe0
Percorso dell'applicazione che ha generato l'errore: iexplore.exe.exe1
Percorso del modulo che ha generato l'errore: iexplore.exe.exe2
ID segnalazione: iexplore.exe.exe3
 
Error: (03/06/2015 03:40:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome dell'applicazione che ha generato l'errore: iexplore.exe.exe, versione: 1.0.1.2041, timestamp: 0x539e8df7
Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea8e7
Codice eccezione: 0xc0000005
Offset errore 0x0002e3be
ID processo che ha generato l'errore: 0x2454
Ora di avvio dell'applicazione che ha generato l'errore: 0xiexplore.exe.exe0
Percorso dell'applicazione che ha generato l'errore: iexplore.exe.exe1
Percorso del modulo che ha generato l'errore: iexplore.exe.exe2
ID segnalazione: iexplore.exe.exe3
 
Error: (03/06/2015 03:37:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome dell'applicazione che ha generato l'errore: iexplore.exe.exe, versione: 1.0.1.2041, timestamp: 0x539e8df7
Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.18247, timestamp: 0x521ea8e7
Codice eccezione: 0xc0000005
Offset errore 0x0002e3be
ID processo che ha generato l'errore: 0x2784
Ora di avvio dell'applicazione che ha generato l'errore: 0xiexplore.exe.exe0
Percorso dell'applicazione che ha generato l'errore: iexplore.exe.exe1
Percorso del modulo che ha generato l'errore: iexplore.exe.exe2
ID segnalazione: iexplore.exe.exe3
 
 
System errors:
=============
Error: (03/08/2015 11:44:07 AM) (Source: Disk) (EventID: 7) (User: )
Description: Rilevato blocco danneggiato sul dispositivo \Device\Harddisk0\DR0.
 
Error: (03/08/2015 11:44:05 AM) (Source: Disk) (EventID: 7) (User: )
Description: Rilevato blocco danneggiato sul dispositivo \Device\Harddisk0\DR0.
 
Error: (03/08/2015 11:44:04 AM) (Source: Disk) (EventID: 7) (User: )
Description: Rilevato blocco danneggiato sul dispositivo \Device\Harddisk0\DR0.
 
Error: (03/08/2015 11:44:02 AM) (Source: Disk) (EventID: 7) (User: )
Description: Rilevato blocco danneggiato sul dispositivo \Device\Harddisk0\DR0.
 
Error: (03/08/2015 11:44:00 AM) (Source: Disk) (EventID: 7) (User: )
Description: Rilevato blocco danneggiato sul dispositivo \Device\Harddisk0\DR0.
 
Error: (03/08/2015 11:43:58 AM) (Source: Disk) (EventID: 7) (User: )
Description: Rilevato blocco danneggiato sul dispositivo \Device\Harddisk0\DR0.
 
Error: (03/08/2015 11:43:56 AM) (Source: Disk) (EventID: 7) (User: )
Description: Rilevato blocco danneggiato sul dispositivo \Device\Harddisk0\DR0.
 
Error: (03/08/2015 10:59:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Il servizio Servizio Google Update (gupdate) non è stato avviato per il seguente errore: 
%%1053
 
Error: (03/08/2015 10:59:50 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del servizio Servizio Google Update (gupdate).
 
Error: (03/08/2015 10:57:34 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifiche dell'applicazioneLocaleAvvio{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (tramite LRPC)
 
 
Microsoft Office Sessions:
=========================
Error: (03/08/2015 11:14:46 AM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 300x80040d07iehistory://{S-1-5-21-2180257905-4020172000-3852966361-1001}/
 
Error: (03/08/2015 10:57:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/08/2015 10:44:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/08/2015 10:26:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/08/2015 09:54:27 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (03/06/2015 05:07:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe.exe1.0.1.2041539e8df7ntdll.dll6.1.7601.18247521ea8e7c00000050002e3be19a401d05827176d1dfcC:\Users\Giulia\Desktop\log\iexplore.exe.exeC:\Windows\SysWOW64\ntdll.dllde87f5e3-c41a-11e4-9312-e8b1fcd33505
 
Error: (03/06/2015 04:38:08 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: 300x80040d07iehistory://{S-1-5-21-2180257905-4020172000-3852966361-1001}/
 
Error: (03/06/2015 04:21:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe.exe1.0.1.2041539e8df7ntdll.dll6.1.7601.18247521ea8e7c00000050002e3be206401d0582091a4095aC:\Users\Giulia\Desktop\log\iexplore.exe.exeC:\Windows\SysWOW64\ntdll.dll680a14e9-c414-11e4-9312-e8b1fcd33505
 
Error: (03/06/2015 03:40:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe.exe1.0.1.2041539e8df7ntdll.dll6.1.7601.18247521ea8e7c00000050002e3be245401d0581b28384671C:\Users\Giulia\Desktop\iexplore.exe.exeC:\Windows\SysWOW64\ntdll.dllc978db9a-c40e-11e4-9312-e8b1fcd33505
 
Error: (03/06/2015 03:37:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe.exe1.0.1.2041539e8df7ntdll.dll6.1.7601.18247521ea8e7c00000050002e3be278401d0581a7332183dC:\Users\Giulia\Desktop\iexplore.exe.exeC:\Windows\SysWOW64\ntdll.dll461af148-c40e-11e4-9312-e8b1fcd33505
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-4810MQ CPU @ 2.80GHz
Percentage of memory in use: 51%
Total physical RAM: 7817.5 MB
Available physical RAM: 3814.86 MB
Total Pagefile: 15633.19 MB
Available Pagefile: 10960.46 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
 
==================== Drives ================================
 
Drive c: (Windows7_OS) (Fixed) (Total:441.75 GB) (Free:342.67 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:22.54 GB) (Free:8.56 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 165C4AD2)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=441.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=22.5 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

 

 

Thank you in advance for your help.

 

Giulia

 

 

 

EDIT: in the meantime Sophos has cleaned up two sources of malware, both in Temp Folder:

 

Mal/Generic-S

Mal/Wonton-AS

 

Still haven't rebooted my computer, I keep on performing scans... more and more paranoid.


Edited by Giulia18, 08 March 2015 - 07:42 AM.


BC AdBot (Login to Remove)

 


m

#2 Rootk

Rootk

  • Malware Response Team
  • 234 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Easter Island, Chile.
  • Local time:07:26 PM

Posted 08 March 2015 - 06:45 PM

Hi. I'm checking your log now and will reply with instructions soon.

#3 Rootk

Rootk

  • Malware Response Team
  • 234 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Easter Island, Chile.
  • Local time:07:26 PM

Posted 09 March 2015 - 11:21 AM

Please follow these steps:

1.- Open notepad. Please copy the contents of the code box below.
To do this highlight the contents of the box and right click on it. Paste this into the open notepad.
Save it to your Desktop as fixlist.txt
 
CloseProcesses:
HKU\S-1-5-21-2180257905-4020172000-3852966361-1001\...\MountPoints2: {ca7208ed-803e-11e4-8c5b-e8b1fcd33505} - E:\Startme.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers: [0WinSecurityProvider] -> {F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637} => C:\ProgramData\Microsoft\Security\Client\SecurityProvider.dll ()
C:\ProgramData\Microsoft\Security\Client\SecurityProvider.dll
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
S3 usb6xxxk; \??\C:\Windows\system32\drivers\usb6xxxkl.sys [X]
v2015-02-07 11:00 - 2015-02-07 11:00 - 0000000 ____H () C:\Users\Giulia\AppData\Local\BIT4598.tmp
2015-02-07 11:00 - 2015-02-07 11:00 - 0000000 _____ () C:\Users\Giulia\AppData\Local\{AC9725A1-5340-46C7-8915-3B6DBBAD2C54}
2014-11-20 00:37 - 2014-11-20 00:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-11-20 00:52 - 2014-11-20 00:52 - 0000107 ____N () C:\ProgramData\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}.log
2014-11-20 00:50 - 2014-11-20 00:50 - 0000105 ____N () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2014-11-20 00:51 - 2014-11-20 00:51 - 0000110 ____N () C:\ProgramData\{B7A0CE06-068E-11D6-97FD-0050BACBF861}.log
2014-11-20 00:51 - 2014-11-20 00:52 - 0000115 ____N () C:\ProgramData\{D6E853EC-8960-4D44-AF03-7361BB93227C}.log
C:\Users\Giulia\backup_me.reg
AlternateDataStreams: C:\Windows:nlsPreferences
EmptyTemp:
NOTICE: This script was written specifically for this user, for use on that particular machine.
Running this on another machine may cause damage to your operating system


Run FRST and press the Fix button just once and wait.
The tool will make a log on your desktop (Fixlog.txt) please post it to your reply.

2.- Download AdwCleaner by Xplode onto your Desktop.
  • Double click on Adwcleaner.exe to run the tool.
  • Click on Scan
  • Once the scan is done, this time click on the Clean button.
  • You will get a prompt asking to close all programs. Click OK.
  • Click OK again to reboot your computer.
  • A text file will open after the restart. Please post the content of that logfile in your reply.
  • You can also find the logfile at C:\AdwCleaner[Sn].txt ('n' represents the most recent report).


#4 Giulia18

Giulia18
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:26 PM

Posted 09 March 2015 - 01:03 PM

Thank you so much for your help.

Everything fixed! :)

 

You can close the topic (or do I have to do it? I don't really know. :D)



#5 Rootk

Rootk

  • Malware Response Team
  • 234 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Easter Island, Chile.
  • Local time:07:26 PM

Posted 10 March 2015 - 08:04 AM

Your computer is not clean yet. There is more to do, so if you want to continue with the cleanup, please post the requested logs.

#6 Rootk

Rootk

  • Malware Response Team
  • 234 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Easter Island, Chile.
  • Local time:07:26 PM

Posted 06 April 2015 - 07:10 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users