Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News: Firefox Improves CSRF Protection With Support For Same-Site Cookies

Featured Deal: Pay What You Want Complete Cyber Security Certification Bundle Deal

MouseDriver in my Startup?

Started by anskha , Sep 20 2016 01:58 PM

Please log in to reply

5 replies to this topic

#1 anskha

Members
8 posts
OFFLINE

Local time:02:41 PM

Posted 20 September 2016 - 01:58 PM

Hi there,

I do regular check-ups of my Startup using CCleaner. Its been a few months since last I checked and today I was puzzled about a program called 'MouseDriver' by Pixart Imaging Inc in my Windows Startup. The entry looks very suspicious to me, so I googled it. Some say that its harmless, while others also find it suspicious. Searching 'MouseDriver' in your database, it says its connected to a virus, which got me really scared now.

I have made a file of my Windows Startup:

Yes   HKCU:Run   avichannel   Evaer Technology   "C:\Program Files (x86)\Evaer\videochannel.exe"
Yes   HKCU:Run   BlueStacks Agent   BlueStack Systems, Inc.   C:\Program Files (x86)\Bluestacks\HD-Agent.exe
Yes   HKCU:Run   CCleaner Monitoring   Piriform Ltd   "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
No   HKCU:Run   Lync   Microsoft Corporation   "C:\Program Files\Microsoft Office\Office15\lync.exe" /fromrunkey
No   HKCU:Run   OneDrive   Microsoft Corporation   "C:\Users\Andreas Skriver\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
No   HKCU:Run   Spotify   Spotify Ltd   "C:\Users\Andreas Skriver\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
No   HKCU:Run   Spotify Web Helper   Spotify Ltd   "C:\Users\Andreas Skriver\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
No   HKCU:Run   Steam   Valve Corporation   "C:\Program Files (x86)\Steam\Steam.exe" -silent
No   HKCU:Run   Viber   Viber Media S.a.r.l   "C:\Users\Andreas Skriver\AppData\Local\Viber\Viber.exe" StartMinimized
Yes   HKLM:Run   Adobe Reader Speed Launcher   Adobe Systems Incorporated   "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
No   HKLM:Run   APSDaemon   Apple Inc.   "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes   HKLM:Run   ASUS InstantKey   ASUS   C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
Yes   HKLM:Run   ASUSWebStorage       C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S
Yes   HKLM:Run   AVG_UI   AVG Technologies CZ, s.r.o.   "C:\Program Files (x86)\AVG\Av\avuirunnerx.exe" C:\Program Files (x86)\AVG\Av\avgui.exe
Yes   HKLM:Run   AvgUi   AVG Technologies CZ, s.r.o.   "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
Yes   HKLM:Run   BDRegion   cyberlink   C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
No   HKLM:Run   BlueStacks Agent   BlueStack Systems, Inc.   C:\Program Files (x86)\BlueStacks\HD-Agent.exe
Yes   HKLM:Run   iTunesHelper   Apple Inc.   "C:\Program Files\iTunes\iTunesHelper.exe"
Yes   HKLM:Run   Malwarebytes Anti-Exploit   Malwarebytes Corporation   C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
No   HKLM:Run   MouseDriver   Pixart Imaging Inc   TiltWheelMouse.exe
Yes   HKLM:Run   NvBackend   NVIDIA Corporation   "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
No   HKLM:Run   QuickTime Task   Apple Inc.   "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
No   HKLM:Run   RemoteControl10   CyberLink Corp.   "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
Yes   HKLM:Run   RtHDVBg   Realtek Semiconductor   "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX3
Yes   HKLM:Run   RTHDVCPL   Realtek Semiconductor   "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
Yes   HKLM:Run   ShadowPlay   Microsoft Corporation   "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
Yes   HKLM:Run   SunJavaUpdateSched   Oracle Corporation   "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
Yes   HKLM:Run   UpdatePSTShortCut   CyberLink Corp.   "C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Cyberlink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

While you are at it, could you also have a look at my Scheduled Tasks:

Yes   Task   Adobe Acrobat Update Task   Adobe Systems Incorporated   C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Yes   Task   Adobe Flash Player Updater   Adobe Systems Incorporated   C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Yes   Task   ASUS InstantOn Config   ASUS   C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
Yes   Task   ASUS P4G   ASUS   C:\Program Files\ASUS\P4G\BatteryLife.exe
Yes   Task   ASUS Smart Gesture Launcher   AsusTek   C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
Yes   Task   ASUS USB Charger Plus   ASUSTek Computer Inc.   "C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
Yes   Task   CCleanerSkipUAC   Piriform Ltd   "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes   Task   CreateChoiceProcessTask       C:\Windows\BrowserChoice\browserchoice.exe /launch
Yes   Task   OneDrive Standalone Update Task   Microsoft Corporation   C:\Users\Andreas Skriver\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
No   Task   Optimize Start Menu Cache Files-S-1-5-21-1137830355-1236294167-3788692297-1002
Yes   Task   Optimize Start Menu Cache Files-S-1-5-21-1137830355-1236294167-3788692297-500
Yes   Task   USER_ESRV_SVC_WILLAMETTE   Microsoft Corporation   "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs"
Yes   Task   {78CFD315-79C0-4D71-8DD8-EA0AA1D62418}   Microsoft Corporation   C:\WINDOWS\system32\pcalua.exe -a E:\INSTALL.EXE -d E:\

As you may notice, the MouseDriver stands out in the Windows Startup.

Can you recommend me any actions?

Thanks!

Anskha

Edited by anskha, 20 September 2016 - 01:58 PM.

BC AdBot (Login to Remove)

BleepingComputer.com
Register to remove ads

#2 boopme

To Insanity and Beyond

Global Moderator
72,740 posts
OFFLINE

Gender:Male
Location:NJ USA
Local time:09:41 AM

Posted 24 September 2016 - 09:38 AM

Hello, what mouse do you use?

MiniToolBox

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
- Flush DNS
- Report IE Proxy Settings
- Reset IE Proxy Settings
- Report FF Proxy Settings
- Reset FF Proxy Settings
- List content of Hosts
- List IP configuration
- List Winsock Entries
- List last 10 Event Viewer log
- List Installed Programs
- List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 anskha

Topic Starter

Members
8 posts
OFFLINE

Local time:02:41 PM

Posted 26 September 2016 - 11:25 AM

Hi,

I will have to come back to you about the mouse, since Im away until the coming Saturday.

In the meantime, here is the result of the MiniToolBox:

MiniToolBox by Farbar Version: 17-06-2016
Ran by \Desktop"
Microsoft Windows 10 Home (X64)
Model: N56VZ Manufacturer: ASUSTeK COMPUTER INC.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWoW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWoW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWoW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWoW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWoW64\winrnr.dll [24064] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog5 08 C:\WINDOWS\SysWoW64\wshbth.dll [51712] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\SysWoW64\mswsock.dll [306016] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog5 08 C:\Windows\System32\wshbth.dll [62976] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/26/2016 05:03:45 PM) (Source: Perflib) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib) (User: )
Description: rdyboost4

Error: (09/26/2016 05:03:44 PM) (Source: PerfNet) (User: )
Description:

Error: (09/26/2016 05:03:44 PM) (Source: Perflib) (User: )
Description: Outlook

Error: (09/26/2016 05:03:44 PM) (Source: Perflib) (User: )
Description: Outlook4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib) (User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4

Error: (09/26/2016 01:51:46 PM) (Source: Perflib) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (09/26/2016 01:51:46 PM) (Source: Perflib) (User: )
Description: rdyboost4

System errors:
=============
Error: (09/26/2016 05:06:14 PM) (Source: DCOM) (User: NT instans)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (09/26/2016 05:03:14 PM) (Source: DCOM) (User: NT instans)
Description: programspecifikLokalAktivering{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT instansLokal tjänstS-1-5-19LocalHost (med LRPC)Inte tillgängligInte tillgänglig

Error: (09/26/2016 05:03:14 PM) (Source: DCOM) (User: NT instans)
Description: programspecifikLokalAktivering{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT instansLokal tjänstS-1-5-19LocalHost (med LRPC)Inte tillgängligInte tillgänglig

Error: (09/26/2016 05:03:14 PM) (Source: DCOM) (User: NT instans)
Description: programspecifikLokalAktivering{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}NT instansSYSTEMS-1-5-18LocalHost (med LRPC)Inte tillgängligInte tillgänglig

Error: (09/26/2016 01:54:17 PM) (Source: DCOM) (User: NT instans)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (09/26/2016 01:51:17 PM) (Source: DCOM) (User: NT instans)
Description: programspecifikLokalAktivering{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT instansLokal tjänstS-1-5-19LocalHost (med LRPC)Inte tillgängligInte tillgänglig

Error: (09/26/2016 01:51:17 PM) (Source: DCOM) (User: NT instans)
Description: programspecifikLokalAktivering{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT instansLokal tjänstS-1-5-19LocalHost (med LRPC)Inte tillgängligInte tillgänglig

Error: (09/26/2016 01:51:17 PM) (Source: DCOM) (User: NT instans)
Description: programspecifikLokalAktivering{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}NT instansSYSTEMS-1-5-18LocalHost (med LRPC)Inte tillgängligInte tillgänglig

Error: (09/26/2016 09:42:52 AM) (Source: DCOM) (User: ANDREAS_DATOR)
Description: {D63B10C5-BB46-4990-A94F-E40B9D520160}

Error: (09/26/2016 09:42:52 AM) (Source: DCOM) (User: ANDREAS_DATOR)
Description: {D63B10C5-BB46-4990-A94F-E40B9D520160}

Microsoft Office Sessions:
=========================
Error: (09/26/2016 05:03:45 PM) (Source: Perflib)(User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib)(User: )
Description: rdyboost4

Error: (09/26/2016 05:03:44 PM) (Source: PerfNet)(User: )
Description:

Error: (09/26/2016 05:03:44 PM) (Source: Perflib)(User: )
Description: Outlook

Error: (09/26/2016 05:03:44 PM) (Source: Perflib)(User: )
Description: Outlook4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib)(User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib)(User: )
Description: LsaC:\Windows\System32\Secur32.dll4

Error: (09/26/2016 05:03:44 PM) (Source: Perflib)(User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll4

Error: (09/26/2016 01:51:46 PM) (Source: Perflib)(User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4

Error: (09/26/2016 01:51:46 PM) (Source: Perflib)(User: )
Description: rdyboost4

CodeIntegrity Errors:
===================================
Date: 2016-09-26 18:20:50.626
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-26 18:20:50.625
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-26 08:32:29.303
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-26 08:32:29.301
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-26 08:09:22.727
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-26 08:09:22.724
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-26 08:08:52.502
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-26 08:08:52.498
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-25 22:39:00.016
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-09-25 22:39:00.014
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

=========================== Installed Programs ============================

. . . (HKLM\...\{DB52A2D0-CAA1-4ED1-B122-29E7EDDE187F}) (Version: 2.1.28.3 - Intel) Hidden
. . . (HKLM-x32\...\{06DA421D-EE23-487D-878F-F0AF97EF69AD}) (Version: 2.6.1.4 - Intel) Hidden
µTorrent (HKCU\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
7-Zip 16.02 (HKLM-x32\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM-x32\...\{01097D6A-8EC6-476D-A336-2B2596C39175}) (Version: 3.9.142.62248 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.9.142.62248 - Alcor Micro Corp.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.70 - NVIDIA Corporation) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ArcGIS 10.1 for Desktop (HKLM-x32\...\{6C8365F4-1102-4064-B696-68842D20B933}) (Version: 10.1.3143 - Environmental Systems Research Institute, Inc.) Hidden
ArcGIS 10.1 for Desktop (HKLM-x32\...\ArcGIS 10.1 for Desktop) (Version: 10.1.3143 - Environmental Systems Research Institute, Inc.)
ArcGIS 10.1 SP1 for Desktop (HKLM-x32\...\ArcGIS 10.1 for Desktop SP1) (Version: - Environmental Systems Research Institute, Inc.)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS Instant Key (HKLM-x32\...\{D97A1B80-131F-4692-9543-E652956D8B99}) (Version: 1.0.5 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.4 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.9 - ASUS)
ASUS N Series Demo (HKLM-x32\...\{246B4AFF-6540-4B72-93E8-B9EB86D37589}) (Version: 1.0.0002 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS)
ASUS Product Demo Movie (HKLM-x32\...\{DC06C90B-C5BE-42F6-B74D-A9503170998C}) (Version: 1.0.3 - ASUS )
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.6 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUS Video Magic (HKLM-x32\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4712 - CyberLink Corp.) Hidden
ASUS Video Magic (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4712 - CyberLink Corp.)
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.9.120 - ASUS Cloud Corporation)
ASUSDVD (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.) Hidden
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0023 - ASUS)
AVG (HKLM\...\{A3E10CD4-8B55-404F-8AEE-9BB74B631E2C}) (Version: 16.111.7797 - AVG Technologies) Hidden
AVG 2016 (HKLM\...\{2A1503C0-5384-41F2-998C-B846187FA18F}) (Version: 16.0.4656 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.111.7797 - AVG Technologies)
BankID Security Application (HKLM-x32\...\{4B2557F9-8C03-4BE7-9984-4DE525076580}) (Version: 6.4.0.22 - Finansiell ID-Teknik BID AB)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.4.44.6257 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3019_44673 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.4905d - CyberLink Corp.)
Diablo II (HKLM-x32\...\Diablo II) (Version: - )
Evaer Video Recorder for Skype 1.6.5.91 (HKLM-x32\...\Evaer Video Recorder for Skype) (Version: 1.6.5.91 - Evaer Technology)
FlacSquisher 1.3.6 (HKLM-x32\...\FlacSquisher) (Version: 1.3.6 - FlacSquisher)
FMW 1 (HKLM\...\{1C3364DF-40B5-4DA4-9810-652A9A792FB1}) (Version: 1.132.1 - AVG Technologies) Hidden
Free MKV to AVI Converter (HKLM-x32\...\Free MKV to AVI Converter_is1) (Version: 1.0 - Freedom Software)
FreeCall (HKLM-x32\...\FreeCall_is1) (Version: 4.14 build 745 - Finarea S.A. Switzerland)
IBM SPSS Statistics 21 (HKLM-x32\...\{1E26B9C2-ED08-4EEA-83C8-A786502B41E5}) (Version: 21.0.0.0 - IBM Corp)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® Wireless Bluetooth® (HKLM-x32\...\{C2A72E57-2CC7-4C02-BE19-0A12D74C5D63}) (Version: 18.1.1525.1445 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{fe2eebd3-ee15-4538-bb19-b627e3f2a911}) (Version: 2.6.1.4 - Intel)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{1593C708-5535-47A4-8C0F-F8D4BE2B4560}) (Version: 15.05.6000.1620 - Intel Corporation)
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Korrekturredskaber til Microsoft Office 15 – Dansk (HKLM\...\{90150000-001F-0406-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Malwarebytes Anti-Exploit version 1.8.1.2572 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.8.1.2572 - Malwarebytes)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 1.6.5230.111 - Waves Audio Ltd.) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Lync Web App Plug-in (HKLM\...\{2FF8A787-F193-4A6C-A108-F1411B0DB100}) (Version: 15.8.8308.884 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (HKLM-x32\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{471AAD2C-9078-4DAC-BD43-FA10FB7C3FCE}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM-x32\...\{48B08845-0CB0-45EC-893C-15319ADDA312}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools för Office Runtime (x64) Language Pack - SVE (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - SVE) (Version: 10.0.50903 - Microsoft Corporation)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.25.00.03 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 49.0.1 (x86 sv-SE) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 sv-SE)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
NVIDIA 3D Vision drivrutin 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.70 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Grafikdrivrutin 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
NVIDIA PhysX systemprogramvara 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
QSR NCapture 1.0 (HKLM-x32\...\{B32CD9BC-7C16-4152-A579-2AA32730E24E}) (Version: 1.0.93.0 - QSR International Pty Ltd)
QSR NVivo 10 (HKLM-x32\...\{49BFDB10-A9AC-4368-9BF1-236D569DD8F0}) (Version: 10.0.128.0 - QSR International Pty Ltd)
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7891 - Realtek Semiconductor Corp.)
Realtek PC Camera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.10586.11183 - Realtek Semiconductor Corp.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0015-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0016-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0018-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0019-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001A-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001B-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0407-1000-0000000FF1CE}_Office15.PROPLUS_{DABB9E2A-F054-4F97-9EB2-6992316C6EC7}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{835E4BED-E265-4103-AE14-0B4C70CF3FE8}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-040B-1000-0000000FF1CE}_Office15.PROPLUS_{F1D8E887-8327-494D-A840-91008C284B01}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-041D-1000-0000000FF1CE}_Office15.PROPLUS_{9967EE60-57CD-4DFC-B461-045A292444F5}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-002C-041D-1000-0000000FF1CE}_Office15.PROPLUS_{9062A358-5ED4-4AD5-ACEE-624A3ABB2E5A}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0044-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-006E-041D-1000-0000000FF1CE}_Office15.PROPLUS_{3896F3D8-2789-40B6-963C-5E0386A55373}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0090-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00A1-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00BA-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1931508C-C004-4983-81E3-70BE6252904B}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-041D-1000-0000000FF1CE}_Office15.PROPLUS_{ACDFCE1C-5DCC-45B8-98A5-31680C3DA25B}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E1-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E2-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-012B-041D-1000-0000000FF1CE}_Office15.PROPLUS_{66C3FB2D-57A3-4EE6-A3BB-DC50D45E933F}) (Version: - Microsoft) Hidden
Service Pack 1 for SQL Server 2008 R2 (KB2528583) (HKLM-x32\...\KB2528583) (Version: 10.51.2500.0 - Microsoft Corporation)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.4.185.g7545a404 - Spotify AB)
SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC)
SQL Server 2008 R2 SP1 Common Files (HKLM-x32\...\{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Common Files (HKLM-x32\...\{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Services (HKLM-x32\...\{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Services (HKLM-x32\...\{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Shared (HKLM-x32\...\{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Shared (HKLM-x32\...\{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{93998800-1608-403F-9A51-420A77D23C25}) (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-041D-1000-0000000FF1CE}_Office15.PROPLUS_{54A3D46A-CA11-4C96-A769-191D694A5EE0}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3118281) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E34F92E8-F338-4749-BE58-E77D605FE648}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3118281) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E34F92E8-F338-4749-BE58-E77D605FE648}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3118281) 64-Bit Edition (HKLM\...\{90150000-012B-041D-1000-0000000FF1CE}_Office15.PROPLUS_{E34F92E8-F338-4749-BE58-E77D605FE648}) (Version: - Microsoft)
Viber (HKCU\...\{7de2db6a-6f4b-4b45-82b9-57d5d7f1c952}) (Version: 5.4.0.1664 - Viber Media Inc.)
Viber (HKLM-x32\...\{097A0B4C-1568-4735-8C3D-4CB265A115C8}) (Version: 5.4.0.1664 - Viber Media Inc.) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.64 - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows-drivrutinspaket - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
Xvid MPEG-4 Video Codec (HKLM-x32\...\xvid) (Version: - Xvid Development Team)

========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 8077.47 MB
Available physical RAM: 5493.48 MB
Total Virtual: 9357.47 MB
Available Virtual: 6868.2 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:279.11 GB) (Free:166.33 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:397.87 GB) (Free:324.26 GB) NTFS

========================= Users: ========================================

**** End of log ****

Edited by boopme, 10 October 2016 - 11:09 AM.

#4 boopme

To Insanity and Beyond

Global Moderator
72,740 posts
OFFLINE

Gender:Male
Location:NJ USA
Local time:09:41 AM

Posted 03 October 2016 - 11:54 AM

I believe the NO at the beginning indicates it's not running.

No HKLM:Run MouseDriver Pixart Imaging Inc TiltWheelMouse.exe

#5 anskha

Topic Starter

Members
8 posts
OFFLINE

Local time:02:41 PM

Posted 09 October 2016 - 04:39 AM

Yes, because I stopped it using CCleaner.

But is it safe?

And is there anything else from the scan that looks dodgy?

#6 boopme

To Insanity and Beyond

Global Moderator
72,740 posts
OFFLINE

Gender:Male
Location:NJ USA
Local time:09:41 AM

Posted 10 October 2016 - 11:06 AM

Leave it disabled ans you'll be OK.

I'll edit the other items .. run these to see if there is any thing else.

AdwCleaner

Please download AdwCleaner by Xplode and save to your Desktop.
Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
Click on the Scan button.
AdwCleaner will begin...be patient as the scan may take some time to complete.
After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
Copy and paste the contents of that logfile in your next reply.
A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

Junkware Removal Tool

Please download Junkware Removal Tool to your desktop.
Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.

ESET Online Scanner

Click here to download the installer for ESET Online Scanner and save it to your Desktop.
Disable all your antivirus and antimalware software - see how to do that here.
Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
Select Enable detection of potentially unwanted applications.
Click Advanced Settings, then place a checkmark in the following:
- Remove found threats
- Scan archives
- Scan for potentially unsafe applications
- Enable Anti-Stealth technology
Click Start to begin scanning.
ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
When the scan is done, click List threats (only available if ESET Online Scanner found something).
Click Export, then save the file to your desktop.
Click Back, then Finish to exit ESET Online Scanner.