Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Programs take forever to open and often lockup

Started by 70delboy , Mar 13 2018 01:21 PM

  • Please log in to reply

#1
70delboy
Posted 13 March 2018 - 01:21 PM

70delboy

    Member

  • Member
  • PipPipPip
  • 165 posts

I have used this desktop for some time and over the last few months I have noticed a gradual slowing of its operation. Programs take longer to open and even when opened they stay locked-up for 30 seconds or more before they can be used. This applies to IE, Google and most others.
I run CCleaner and MBAM regularly without much to report.

I have run FRST and the 2 files are below.
I would be very grateful for help to recover the original speed of the computer.

Delboy


Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13.03.2018
Ran by Del (13-03-2018 18:47:33)
Running from C:\Users\Del\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2009-11-27 13:56:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2568410734-3031030142-1223416489-500 - Administrator - Disabled)
Del (S-1-5-21-2568410734-3031030142-1223416489-1001 - Administrator - Enabled) => C:\Users\Del
Guest (S-1-5-21-2568410734-3031030142-1223416489-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2568410734-3031030142-1223416489-1016 - Limited - Enabled)
SophosSAUDEL-PC0 (S-1-5-21-2568410734-3031030142-1223416489-1023 - Limited - Enabled)
Yvonne (S-1-5-21-2568410734-3031030142-1223416489-1008 - Limited - Enabled) => C:\Users\Yvonne

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 27.0.0.187 - Adobe Systems Incorporated)
ANT Drivers Installer x86 (HKLM\...\{9A8BD09D-8B45-4FB3-BADF-1838C2C329EA}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM\...\{A83279FD-CA4B-4206-9535-90974DE76654}) (Version: 2.1.5 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 18.2.2328 - AVAST Software)
Blueline 1.1.1 (HKLM\...\Blueline_is1) (Version: - )
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
Canon Inkjet Printer Driver Add-On Module (HKLM\...\CANONIJINBOXADDON100) (Version: - )
Canon MG7500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7500_series) (Version: 1.00 - Canon Inc.)
Canon MG7500 series On-screen Manual (HKLM\...\Canon MG7500 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon MG7500 series User Registration (HKLM\...\Canon MG7500 series User Registration) (Version: - â­Canon Inc.)
Canon My Image Garden (HKLM\...\Canon My Image Garden) (Version: 3.1.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM\...\Canon My Image Garden Design Files) (Version: 3.1.0 - Canon Inc.)
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Canon Quick Menu (HKLM\...\CanonQuickMenu) (Version: 2.5.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.39 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 2.0.6875.668 - Dell)
Dell SupportAssistAgent (HKLM\...\{8BD286A4-87C7-406B-9257-F8D8E6ACB35F}) (Version: 2.1.4.14 - Dell)
Dell System Detect - 1 (HKU\S-1-5-21-2568410734-3031030142-1223416489-1001\...\73f463568823ebbe) (Version: 6.0.0.18 - Dell)
Digital Advertising Alliance Protect My Choices (Beta) (HKLM\...\{F0BF9C38-5639-4F0F-A818-AEA288C0A96E}) (Version: 1.2.0.0 - Digital Advertising Alliance)
Elevated Installer (HKLM\...\{7E73C9A3-24D9-4D7F-B4C7-7E4AFE0ADCCB}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Epson Copy Utility 3.5 (HKLM\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
EPSON TWAIN 5 (HKLM\...\{254BEB3E-1085-4D66-9CDC-0152C0DC2E93}) (Version: 5.71.0000 - SEIKO EPSON Corp.)
Garmin Communicator Plugin (HKLM\...\{032A13FF-D26D-4844-9597-7EF698627985}) (Version: 4.1.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM\...\{50755d67-ae60-4e47-b3d6-ce44d01b5a95}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM\...\{9FB8EC5B-03EE-463E-8F4F-84B525B986B7}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM\...\{1D91CBB5-4CB1-4757-B0FD-2122AF8AAB9E}) (Version: 4.0.15.0 - Garmin Ltd or its subsidiaries) Hidden
Google Advertising Cookie Opt-out (HKLM\...\{D1A87CF6-1DFD-470D-800A-CDC1CE5F7E54}) (Version: 1.0.1.0 - Google Inc)
Google Earth Plug-in (HKLM\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel® Processor Identification Utility (HKLM\...\{A92A4DB0-CD37-42D1-BE1D-603D53C24328}) (Version: 1.0.0.0 - Intel Corporation)
Intel® TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Intel® Driver Update Utility (HKLM\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Japanese Fonts Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5760-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
Junk Mail filter update (HKLM\...\{E2DFE069-083E-4631-9B6C-43C48E991DE5}) (Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.8.106.0 - Microsoft Corporation)
Microsoft Office 2000 Professional (HKLM\...\{00010409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2568410734-3031030142-1223416489-1001\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2568410734-3031030142-1223416489-1008\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MiniTool Partition Wizard Free 9.0 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
MotoCalc 8.07 (HKLM\...\MotoCalc 8_is1) (Version: - Capable Computing, Inc.)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
O2 BB Assisted Controls V2 (HKLM\...\{B0F51838-4AF7-4784-88DD-C86D7D8AF804}) (Version: 1 - SupportSoft)
Password Safe (HKLM\...\Password Safe) (Version: - )
PMB (HKLM\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.8.02.10270 - Sony Corporation)
QuickBooks (HKLM\...\{06A9E630-DBA6-4D92-9DE7-A235AA6496C7}) (Version: 20.0.4017.807 - Intuit Inc.) Hidden
QuickBooks Simple Start 2010 Free Edition (HKLM\...\{0700E22B-A419-40A5-BD20-04BF618CA0F9}) (Version: 20.0.4017.807 - Intuit Inc.)
QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RC Plane Master (HKLM\...\RC Plane Master) (Version: - )
Remote Keyboard Lite (HKLM\...\{26D4F3D3-4FD2-420E-959B-D673E1103EA8}) (Version: 1.2.0.09270 - Sony Corporation) Hidden
Remote Keyboard Lite (HKLM\...\{7C621473-99FD-4800-B2F5-4F390AA46E0C}) (Version: 1.2.0.09270 - Sony Corporation)
SafeZone Stable 4.58.2552.909 (HKLM\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Samsung Data Migration (HKLM\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.1.0.1120 - Samsung Electronics)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM\...\{EFC7DF4A-D0A1-4622-9104-10D8D2B5C82B}) (Version: 6.1.00 - Silicon Laboratories, Inc.)
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Supportsoft Mirror Driver 1.8.0 (HKLM\...\ConsMirror_is1) (Version: 1.8.0 - Consona.)
Supportsoft Printer Driver 1.7.0 (HKLM\...\ConsPrinter_is1) (Version: 1.7.0 - Consona.)
TreeSize Free V3.3.2 (HKLM\...\TreeSize Free_is1) (Version: 3.3.2 - JAM Software)
VirusTotal Uploader 2.2 (HKLM\...\VTUploader) (Version: - )
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{05EC5C13-D255-4592-9CCB-98615172F0D6}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{0ADF9C35-0D5E-4B75-88DD-B64868907E17}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{123FAF7F-3FB1-4B8F-AD18-0047401D436A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{37A2FC00-1795-4679-94A3-A153F1A8BB54}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{37A2FC02-1795-4679-94A3-A153F1A8BB54}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{4716D3CE-55DB-4D2A-818C-87D912895890}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{4844F3F7-2161-4AC4-B219-B3B4311782AA}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{4A56F19E-9F50-4F43-93C8-050E44AA83A9}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{4E5E74B5-8EB5-4859-A335-837EED412620}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{5428A9ED-6CD8-11D6-9C8A-0001023DCAA2}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{547C8F00-5567-4AE3-8BB0-CC3CE2AB9070}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{57D590F1-91EB-44CE-8088-AE4AE19D30A1}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{596801D8-2C9D-4627-9C67-195CB81B655A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{5B7331FA-8910-4748-A8A4-60B445041F28}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{5ED8AC89-B2DE-476D-8EEA-E170B2FCB058}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{7694F1CD-A55B-4B7C-8820-A90892EB4E9E}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{7DBF8260-30AD-4D1B-876A-8032B87B809F}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{810CADD9-2658-4820-BA95-30199625191E}\localserver32 -> C:\Program Files\Intuit\QuickBooks 2010\qbw32.exe (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{828E5386-74CF-4019-B356-C857CD028A7D}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{82CC31B3-53B4-4161-A4E9-6B4F1290A6C8}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{8572570D-12D9-4F2C-8BB8-EB8848178B94}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{8E590317-1329-11D1-B70B-00805F29CD16}\localserver32 -> C:\Program Files\Intuit\QuickBooks 2010\qbw32.exe (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{8FEDE364-AB37-4551-80C9-6D468E222AB2}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{9D9B61F2-9E2B-492A-81B3-AA5A1CCFBC3A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{9D9B61F3-9E2B-492A-81B3-AA5A1CCFBC3A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{9D9B61F4-9E2B-492A-81B3-AA5A1CCFBC3A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{9D9B61F5-9E2B-492A-81B3-AA5A1CCFBC3A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{9D9B61F6-9E2B-492A-81B3-AA5A1CCFBC3A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{9D9B61F7-9E2B-492A-81B3-AA5A1CCFBC3A}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{A63E42D0-9C63-47B5-ABF2-0C839EC20778}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{A63E42D2-9C63-47B5-ABF2-0C839EC20778}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{AF5E0A13-CEAB-47CE-991D-77E82CD1BF3F}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{B10BFAC3-EFF1-40D9-ADA0-BEBE037C24CA}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{B66F2BF1-91EB-44CE-8088-AE4AE19D30A1}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D14FD6B3-6A9F-4537-9460-07B836707127}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D4A12AAF-E15E-470B-A6B6-63032186F91F}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D9B9C060-0954-11D3-9E07-00104BD2BE34}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\ViewSource.dll (Intuit, Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D9BC6F81-A54B-11D4-A516-0050DA68678D}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\cominifile.dll (Intuit, Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D9BC6F84-A54B-11D4-A516-0050DA68678D}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\cominifile.dll (Intuit, Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D9BC6F87-A54B-11D4-A516-0050DA68678D}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\cominifile.dll (Intuit, Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D9BC6FA1-A54B-11D4-A516-0050DA68678D}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\GraphSeriesCol.dll (Intuit, Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D9BC6FA6-A54B-11D4-A516-0050DA68678D}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\GraphSeriesCol.dll (Intuit, Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{D9BC6FB2-A54B-11D4-A516-0050DA68678D}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\StorageClasses.dll (Intuit, Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{DCB2B478-EFF6-48F6-B718-13E98876854E}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{DFD0AF10-B86C-4AF3-B609-1348D513E565}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{E1A173E1-D957-4C3E-A098-43756A3DB454}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{E1A173E3-D957-4C3E-A098-43756A3DB454}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{EADA914E-5B08-4E85-8440-5A087504DF87}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{EAEF733D-5B08-4E85-8440-5A087504DF87}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{F2C593CC-74B2-4F71-8556-DD4D426D0409}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{FAC93D42-FFC2-11d1-9DEB-0008C7A08EBA}\localserver32 -> C:\Program Files\Intuit\QuickBooks 2010\qbw32.exe (Intuit Inc.)
CustomCLSID: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001_Classes\CLSID\{FB17915F-06D1-4214-A902-CC5EE05186E9}\InprocServer32 -> c:\Program Files\Common Files\Intuit\QuickBooks\QBObjProxy.dll (Intuit Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-02-20] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-02-20] (AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-02-20] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2009-09-23] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-02-20] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {242CEF2E-3F62-403A-887D-7A6374CDEBD0} - System32\Tasks\SafeZone scheduled Autoupdate 1474966418 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {251D6272-47D8-4E13-8660-98B434AFF0A1} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2017-09-14] (PC-Doctor, Inc.)
Task: {3F887BE3-90D7-49B6-A6D0-940917880E6C} - System32\Tasks\Dell SupportAssistAgent AnonymousRegistration => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe [2018-02-14] (Dell Inc.)
Task: {41ED6E78-B9A1-42A3-BB2B-2F028CAE8DD5} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2016-08-15] (Microsoft Corporation)
Task: {4220E91D-159A-40F3-BF52-F11C873327DD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {4A6AF5CB-54D0-4DEA-89BC-4959559814AF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-23] (Adobe Systems Incorporated)
Task: {6F65FCE6-903C-4352-A9E2-38D9E1A316F0} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-03-13] (AVAST Software)
Task: {749AB90A-0FF4-401F-9720-6A17FFEF1C92} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2017-09-14] (PC-Doctor, Inc.)
Task: {7B109F44-49ED-4660-AC1C-82AA33F7A7F0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {7EE8B7F1-56B0-4094-A031-B182E86FCB34} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {83B1C3A3-A351-4FB7-A4A1-2E7D19241C2C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2016-08-15] (Microsoft)
Task: {9E04F179-5B16-483A-B46C-287134BF434C} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {A63C1C2E-0329-46AE-A71F-1AA32D88F6A2} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {A919F893-4B86-4251-8158-370AFBF29525} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {AFD891E1-240A-4723-946E-7301C979AB3C} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2016-08-15] (Microsoft Corporation)
Task: {BB4B176F-3D48-449D-8A2D-1E37A903048F} - System32\Tasks\SamsungMagician => C:\Program Files\Samsung\Samsung Magician\SamsungMagician.exe [2017-05-19] (Samsung Electronics Co. Ltd.)
Task: {BFA75C2D-AB73-4123-AAC2-3E5C77CA793F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-01-09] (Piriform Ltd)
Task: {D0A19339-A8A1-48F8-80BB-9DE76C86463A} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Task: {D2FC84A0-64A6-49A7-AC82-257A566CDC6A} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2016-08-15] (Microsoft Corporation)
Task: {E4599639-B6D6-41E1-8DCA-DE457DD18830} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2016-08-15] (Microsoft Corporation)
Task: {E99FFCCB-B16D-452A-9C1E-382AEA0CCFF3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-01-05] (AVAST Software)
Task: {F266ACF2-95AA-4AFC-90DC-BE6BC68F864A} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe [2018-02-14] (Dell Inc.)
Task: {FBE2BA1B-8D87-47DC-9C89-73F36FC0D02D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-01-09] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-02-20 15:23 - 2018-02-20 15:23 - 000287960 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-02-20 15:23 - 2018-02-20 15:23 - 000280280 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-03-12 18:35 - 2018-03-12 18:35 - 005800080 _____ () C:\Program Files\AVAST Software\Avast\defs\18031202\algo.dll
2018-02-20 15:23 - 2018-02-20 15:23 - 000756952 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-02-20 15:22 - 2018-02-20 15:22 - 000172248 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-02-20 15:23 - 2018-02-20 15:23 - 000963288 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-02-20 15:23 - 2018-02-20 15:23 - 000468696 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-02-20 15:23 - 2018-02-20 15:23 - 000339160 _____ () C:\Program Files\AVAST Software\Avast\streamback_avast.dll
2018-03-13 09:34 - 2018-03-13 09:34 - 005800080 _____ () C:\Program Files\AVAST Software\Avast\defs\18031300\algo.dll
2018-03-13 16:27 - 2018-03-13 16:27 - 005800080 _____ () C:\Program Files\AVAST Software\Avast\defs\18031304\algo.dll
2017-10-13 21:06 - 2017-12-08 14:37 - 001934792 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-10-13 21:06 - 2017-12-08 14:37 - 001798608 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-07-12 08:16 - 2017-07-12 08:16 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-02-20 15:22 - 2018-02-20 15:22 - 000275672 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2018-02-20 15:22 - 2018-02-20 15:22 - 000617688 _____ () c:\Program Files\AVAST Software\Avast\vaarclient.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Del\Desktop\passport Y.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Yvonne\Desktop\specs.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\38910314.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\38910314.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SprtListen => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SprtListenPush => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SupportSoft Remote Control Client => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\dell.com -> dell.com
IE trusted site: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001\...\dell.com -> dell.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 02:04 - 2013-09-26 16:00 - 000000098 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2568410734-3031030142-1223416489-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Del\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2568410734-3031030142-1223416489-1008\Control Panel\Desktop\\Wallpaper -> C:\Users\Yvonne\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: DellDataVault => 2
MSCONFIG\Services: DellDataVaultWiz => 2
MSCONFIG\Services: Garmin Device Interaction Service => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: PMBDeviceInfoProvider => 2
MSCONFIG\Services: QBCFMonitorService => 2
MSCONFIG\Services: QBFCService => 3
MSCONFIG\Services: SupportAssistAgent => 2
MSCONFIG\Services: SupportSoft Remote Control Client => 2
MSCONFIG\Services: tgsrvc_o2las => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk => C:\Windows\pss\QuickBooks Update Agent.lnk.CommonStartup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WMP-In-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-Out-UDP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [WMP-Out-TCP-x86] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{E926E57D-011D-4F63-BCC5-FFCFDC28D091}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{CE504808-152F-4073-8BB9-0F8E7C4D30C6}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{AB3FBA72-52C3-4476-9A38-230DBE05659B}] => (Allow) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
FirewallRules: [{3A518E67-8F75-4EFD-9187-1F2C9F2F2168}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{2156CDBD-C558-484C-B70C-A663FD28F4B3}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe

==================== Restore Points =========================

14-08-2017 13:19:45 Scheduled Checkpoint
18-08-2017 10:18:29 Windows Update
27-08-2017 17:58:19 Scheduled Checkpoint
04-09-2017 10:46:38 Scheduled Checkpoint
14-09-2017 17:50:19 Scheduled Checkpoint
16-09-2017 07:51:43 Windows Update
07-10-2017 15:36:06 Scheduled Checkpoint
18-10-2017 10:43:17 Windows Update
27-10-2017 20:09:56 Scheduled Checkpoint
08-11-2017 16:26:27 Scheduled Checkpoint
20-11-2017 11:39:23 Windows Update
28-11-2017 19:02:17 Scheduled Checkpoint
09-12-2017 12:36:37 Scheduled Checkpoint
19-12-2017 12:49:20 Scheduled Checkpoint
30-12-2017 17:56:01 Scheduled Checkpoint
08-01-2018 16:57:14 Scheduled Checkpoint
16-01-2018 20:13:59 Scheduled Checkpoint
24-01-2018 12:48:33 Scheduled Checkpoint
31-01-2018 18:48:32 Removed Evernote v. 5.9.6
31-01-2018 18:50:13 Removed P&O Cruises Live Ship Tracker
31-01-2018 18:55:16 Removed Java 8 Update 141
31-01-2018 18:56:44 Removed Java 8 Update 151
06-02-2018 17:00:11 Windows Backup
18-02-2018 19:40:43 Scheduled Checkpoint
26-02-2018 17:44:20 Scheduled Checkpoint
07-03-2018 17:04:11 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

Name: M:\
Description: MS/MS-Pro
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: VNC Mirror Driver
Description: VNC Mirror Driver
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: RealVNC
Service: vncmirror
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/13/2018 09:35:48 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program iexplore.exe version 11.0.9600.18838 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1604

Start Time: 01d3baae819b4e2b

Termination Time: 2523

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (03/08/2018 12:10:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe_StiSvc, version: 6.1.7600.16385, time stamp: 0x4a5bc100
Faulting module name: CNC_C7L.dll_unloaded, version: 0.0.0.0, time stamp: 0x52ddf466
Exception code: 0xc0000005
Fault offset: 0x00ea4de0
Faulting process id: 0x4d8
Faulting application start time: 0x01d3b6d054d452a6
Faulting application path: C:\Windows\system32\svchost.exe
Faulting module path: CNC_C7L.dll
Report Id: b90662ff-22c9-11e8-a22a-0024e811b7db

Error: (03/07/2018 06:00:27 PM) (Source: SupportAssistAgent) (EventID: 0) (User: )
Description: An exception occurred in session change of service start: Object reference not set to an instance of an object.

Error: (03/01/2018 10:00:26 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: The backup did not complete because of an error writing to the backup location D:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (02/28/2018 03:36:11 PM) (Source: SupportAssistAgent) (EventID: 0) (User: )
Description: An exception occurred in session change of service start: Object reference not set to an instance of an object.

Error: (02/28/2018 03:36:08 PM) (Source: SupportAssistAgent) (EventID: 0) (User: )
Description: An exception occurred in session change of service start: Object reference not set to an instance of an object.

Error: (02/28/2018 03:36:05 PM) (Source: SupportAssistAgent) (EventID: 0) (User: )
Description: An exception occurred in session change of service start: Object reference not set to an instance of an object.

Error: (02/28/2018 03:36:04 PM) (Source: SupportAssistAgent) (EventID: 0) (User: )
Description: An exception occurred in session change of service start: Object reference not set to an instance of an object.


System errors:
=============
Error: (03/13/2018 05:42:40 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (03/13/2018 10:20:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (03/12/2018 07:36:54 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 20.

Error: (03/11/2018 10:27:41 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

Error: (03/11/2018 12:06:28 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 20.

Error: (03/11/2018 11:53:46 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 20.

Error: (03/09/2018 06:47:20 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (03/08/2018 12:10:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Windows Image Acquisition (WIA) service terminated unexpectedly. It has done this 1 time(s).


CodeIntegrity:
===================================

Date: 2016-07-04 20:18:26.417
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-04 20:18:26.370
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-04 20:11:13.417
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-04 20:11:13.386
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-04 15:59:47.386
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-04 15:59:47.354
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-04 15:47:52.386
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2016-07-04 15:47:52.354
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Pentium® Dual-Core CPU E5300 @ 2.60GHz
Percentage of memory in use: 59%
Total physical RAM: 3061.16 MB
Available physical RAM: 1236.5 MB
Total Virtual: 6120.64 MB
Available Virtual: 4037.98 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:232.88 GB) (Free:40.05 GB) NTFS ==>[drive with boot components (obtained from BCD)]


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: CBAB01D2)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13.03.2018
Ran by Del (administrator) on DEL-PC (13-03-2018 18:46:34)
Running from C:\Users\Del\Desktop
Loaded Profiles: Del & Yvonne (Available Profiles: Del & Yvonne)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Samsung Electronics Co. Ltd.) C:\Program Files\Samsung\Samsung Magician\SamsungMagician.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [651832 2011-08-24] (Sony Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [243496 2018-02-20] (AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2568410734-3031030142-1223416489-1001\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\system32\Macromed\Flash\FlashUtil32_27_0_0_187_ActiveX.exe [1319424 2017-11-23] (Adobe Systems Incorporated)
HKU\S-1-5-21-2568410734-3031030142-1223416489-1008\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\tray.exe [1010008 2015-04-08] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2009-11-29]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{07EB6271-F601-432E-A97D-49E29996489E}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.co.uk/
HKU\S-1-5-21-2568410734-3031030142-1223416489-1008\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://uk.msn.com/?ocid=iehp
HKU\S-1-5-21-2568410734-3031030142-1223416489-1008\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.co.uk/
SearchScopes: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001 -> 400E6695BB724B18BB5774F9B7E4317E URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001 -> {F0BE753D-DCEE-412C-BB44-0B4275A7B6C3} URL = hxxps://duckduckgo.com/?q={searchTerms}&atb=v50-6__
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.)
BHO: Advertising Cookie Opt-out -> {8E425EB4-ADBD-4816-B1E8-49BB9DECF034} -> C:\Program Files\Google\Advertising Cookie Opt-out\opt_out.dll [2013-01-10] (Google Inc)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-02-20] (AVAST Software)
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.)
Toolbar: HKU\S-1-5-21-2568410734-3031030142-1223416489-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKU\S-1-5-21-2568410734-3031030142-1223416489-1008 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-2568410734-3031030142-1223416489-1008 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
DPF: {01113300-3E00-11D2-8470-0060089874ED} hxxp://ias.broadband.o2.co.uk/sdccommon/download/tgctlcm.cab
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {0A43D7AC-D6C1-4622-B309-BF975F427C0E} hxxps://internetbankingplus1.firstdirect.com/ibplus/frontdoorFD.cab
DPF: {4E62C4DE-627D-4604-B157-4B7D6B09F02E} hxxps://moneymanager.egg.com/Pinsafe/accounttracking.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: intu-help-qb3 - {c5e479ea-0a65-4b05-8c6c-2fc8cc682eb4} - C:\Program Files\Intuit\QuickBooks 2010\HelpAsyncPluggableProtocol.dll [2013-02-02] (Intuit, Inc.)
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Users\Del\AppData\Roaming\Mozilla\Extensions\[email protected]
FF Extension: (Games by 7Go) - C:\Users\Del\AppData\Roaming\Mozilla\Extensions\[email protected] [2013-09-18] [Legacy] [not signed]
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2013-10-09] (GARMIN Corp.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-11] (Adobe Systems Inc.)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5931184 2018-02-20] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [300600 2018-02-20] (AVAST Software)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [171928 2017-12-14] (Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [2358672 2017-12-14] (Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [188816 2017-12-14] (Dell Inc.)
S4 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [708616 2015-04-08] (Garmin Ltd. or its subsidiaries)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4563920 2017-11-01] (Malwarebytes)
S4 QBCFMonitorService; c:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2013-02-02] (Intuit) [File not signed]
S4 QBFCService; c:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [61440 2009-07-23] (Intuit Inc.) [File not signed]
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [41432 2018-02-14] (Dell Inc.)
S4 SupportSoft Remote Control Client; C:\Program Files\Common Files\supportsoft\bin\consrcclient.exe [2080272 2012-11-06] (SupportSoft, Inc.)
S4 tgsrvc_o2las; C:\Program Files\O2LAS\bin\tgsrvc.exe [213008 2012-11-06] (SupportSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [167040 2018-03-13] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriverx.sys [185432 2018-03-13] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidshx.sys [157368 2018-03-13] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswblogx.sys [276688 2018-03-13] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbunivx.sys [50336 2018-03-13] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [169536 2018-03-13] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [42808 2018-03-13] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [39784 2017-09-13] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [124392 2018-03-13] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [100032 2018-03-13] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [70816 2018-03-13] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783608 2018-03-13] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [391856 2018-03-13] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [152344 2018-03-13] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [310784 2018-03-13] (AVAST Software)
R3 DDDriver; C:\Windows\System32\drivers\DDDriver32Dcsa.sys [30912 2017-04-11] (Dell Inc.)
R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [30520 2017-04-11] (Dell Computer Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59896 2017-12-08] ()
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [168376 2017-12-08] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [91576 2018-03-13] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [40376 2018-03-13] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [221112 2018-03-13] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [65824 2018-03-13] (Malwarebytes)
S3 PSSDK42; C:\Windows\system32\Drivers\pssdk42.sys [38976 2015-03-26] (microOLAP Technologies LTD)
S3 PSSDKLBF; C:\Windows\system32\Drivers\pssdklbf.sys [53312 2015-03-26] (microOLAP Technologies LTD)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [15688 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] ()
S3 RapportIaso; c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso.sys [21520 2012-06-30] (Trusteer Ltd.)
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [47176 2010-07-28] (Silicon Laboratories)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [58112 2010-07-28] (Silicon Laboratories)
R0 speedfan; C:\Windows\System32\speedfan.sys [25240 2011-03-18] (Almico Software)
R3 WirelessKeyboardFilter; C:\Windows\System32\DRIVERS\WirelessKeyboardFilter.sys [44776 2016-07-22] (Microsoft Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 FreshIO; \??\C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-13 18:46 - 2018-03-13 18:47 - 000015565 _____ C:\Users\Del\Desktop\FRST.txt
2018-03-13 18:41 - 2018-03-13 18:46 - 000000000 ____D C:\FRST
2018-03-13 18:40 - 2018-03-13 18:46 - 001763840 _____ (Farbar) C:\Users\Del\Desktop\FRST.exe
2018-03-13 10:24 - 2018-03-13 10:22 - 000319392 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-13 17:46 - 2017-11-20 09:04 - 001870570 _____ C:\Windows\ntbtlog.txt
2018-03-13 17:44 - 2017-11-13 22:24 - 000065824 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-03-13 10:32 - 2009-07-14 04:34 - 000015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-03-13 10:32 - 2009-07-14 04:34 - 000015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-03-13 10:24 - 2009-11-27 14:00 - 000782470 _____ C:\Windows\system32\PerfStringBackup.INI
2018-03-13 10:24 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\inf
2018-03-13 10:23 - 2017-11-21 16:21 - 000167040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-03-13 10:23 - 2016-07-04 19:31 - 000391856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-03-13 10:23 - 2016-07-04 19:31 - 000310784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-03-13 10:23 - 2016-07-04 19:31 - 000152344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-03-13 10:23 - 2016-07-04 19:31 - 000124392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-03-13 10:23 - 2016-07-04 19:31 - 000100032 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-03-13 10:23 - 2016-07-04 19:31 - 000070816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-03-13 10:23 - 2016-07-04 19:31 - 000042808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-03-13 09:37 - 2016-07-04 19:31 - 000783608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-03-13 09:36 - 2018-01-04 18:15 - 000169536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-03-13 09:36 - 2017-03-18 15:46 - 000276688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswblogx.sys
2018-03-13 09:36 - 2017-03-18 15:46 - 000185432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2018-03-13 09:36 - 2017-03-18 15:46 - 000157368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidshx.sys
2018-03-13 09:36 - 2017-03-18 15:46 - 000050336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbunivx.sys
2018-03-13 09:34 - 2017-12-08 14:37 - 000040376 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-03-13 09:33 - 2018-01-06 11:44 - 000091576 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-03-13 09:33 - 2017-11-13 22:24 - 000221112 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-03-13 09:33 - 2009-07-14 04:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-03-12 20:04 - 2009-12-01 21:20 - 000000000 ____D C:\Users\Del\AppData\Local\ElevatedDiagnostics
2018-03-09 19:49 - 2009-07-14 02:37 - 000000000 ____D C:\Windows\system32\NDF
2018-03-09 18:58 - 2015-02-05 19:13 - 000000000 ____D C:\ProgramData\CanonIJPLM
2018-03-04 15:32 - 2017-09-03 09:09 - 000000259 _____ C:\Windows\system32\SmartFlow.txt
2018-03-04 14:41 - 2016-07-07 18:16 - 000000000 ____D C:\Users\Del\Desktop\Manuals
2018-03-02 16:03 - 2011-10-17 18:20 - 000000000 ____D C:\Program Files\SpeedFan
2018-02-26 18:46 - 2009-12-02 12:37 - 000007612 _____ C:\Users\Del\AppData\Local\Resmon.ResmonCfg
2018-02-25 16:32 - 2016-09-11 19:22 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-02-22 12:04 - 2009-11-30 14:01 - 000000000 ____D C:\Users\Yvonne
2018-02-20 18:15 - 2016-06-16 18:20 - 000000000 ____D C:\Users\Del\AppData\Local\PasswordSafe
2018-02-20 15:24 - 2017-11-21 16:21 - 000164928 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4168dba9cbd2730f.tmp
2018-02-20 15:24 - 2016-07-04 19:31 - 000391344 _____ (AVAST Software) C:\Windows\system32\Drivers\asw 2c17808da5152e6.tmp
2018-02-20 15:24 - 2016-07-04 19:31 - 000310784 _____ (AVAST Software) C:\Windows\system32\Drivers\asw3f8257c36953c19d.tmp
2018-02-20 15:24 - 2016-07-04 19:31 - 000151832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswf60da08c9cfc698a.tmp
2018-02-20 15:24 - 2016-07-04 19:31 - 000124392 _____ (AVAST Software) C:\Windows\system32\Drivers\asw1cd4df07dd3172aa.tmp
2018-02-20 15:24 - 2016-07-04 19:31 - 000100024 _____ (AVAST Software) C:\Windows\system32\Drivers\asw8a8464ec508b7b40.tmp
2018-02-20 15:24 - 2016-07-04 19:31 - 000070816 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4cab26d138b8d221.tmp
2018-02-20 15:24 - 2016-07-04 19:31 - 000042808 _____ (AVAST Software) C:\Windows\system32\Drivers\asw25d32a985e7e1858.tmp
2018-02-20 15:22 - 2018-01-04 18:15 - 000150808 _____ (AVAST Software) C:\Windows\system32\Drivers\asw3defee0a794c60f5.tmp
2018-02-20 15:22 - 2016-07-04 19:31 - 000783600 _____ (AVAST Software) C:\Windows\system32\Drivers\asw b229d00a9344b04.tmp
2018-02-12 19:37 - 2009-07-14 04:52 - 000000000 ____D C:\Windows\Downloaded Program Files
2018-02-12 18:36 - 2015-04-19 14:26 - 000000000 ____D C:\ProgramData\PCDr

==================== Files in the root of some directories =======

2009-12-02 12:37 - 2018-02-26 18:46 - 000007612 _____ () C:\Users\Del\AppData\Local\Resmon.ResmonCfg
2016-12-15 19:34 - 2016-12-15 19:34 - 000000000 _____ () C:\Users\Del\AppData\Local\{7312BBF3-A2A9-4E83-A473-4343C87ED2D0}

Some files in TEMP:
====================
2018-02-07 18:07 - 2018-03-02 16:03 - 000192512 _____ () C:\Users\Del\AppData\Local\temp\sfamcc00001.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-03-12 19:57

==================== End of FRST.txt ============================
  • 0

Advertisements

#2
RKinner
Posted 13 March 2018 - 09:23 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

Wait a full minute then:

File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.


Copy the next 2 lines:

TASKLIST /SVC  > \junk.txt
notepad \junk.txt

Open an Elevated Command Prompt:
Win 7: Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator
Win 8: http://www.eightforu...indows-8-a.html
win 10: http://www.howtogeek...-in-windows-10/

Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.


Get the free version of Speccy:

http://www.filehippo...ownload_speccy/ 

(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving),
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.

First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.

 


  • 0

#3
70delboy
Posted 15 March 2018 - 02:11 PM

70delboy

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 165 posts

Hi RKinner

Thanks for replying. Here are the results you wanted.

Delboy



Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
armsvc.exe 812 K 2,736 K 1976 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems
audiodg.exe 15,020 K 13,924 K 1820 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
DDVCollectorSvcApi.exe 1,136 K 3,956 K 5060 Dell Data Vault Data Collector Service API Dell Inc. (Verified) Dell Inc
DDVDataCollector.exe 14,756 K 17,180 K 4876 Dell Data Vault Data Collector Service Dell Inc. (Verified) Dell Inc
DDVRulesProcessor.exe 17,368 K 9,200 K 5992 Dell Data Vault Rules Processor Dell Inc. (Verified) Dell Inc
hkcmd.exe 1,232 K 3,956 K 3344 hkcmd Module Intel Corporation (Verified) Intel Corporation
igfxpers.exe 1,116 K 4,168 K 2868 persistence Module Intel Corporation (Verified) Intel Corporation
igfxsrvc.exe 1,624 K 3,968 K 3264 igfxsrvc Module Intel Corporation (Verified) Intel Corporation
igfxtray.exe 1,204 K 4,056 K 3200 igfxTray Module Intel Corporation (Verified) Intel Corporation
ipoint.exe 4,140 K 2,392 K 2072 IPoint.exe Microsoft Corporation (Verified) Microsoft Corporation
itype.exe 7,092 K 2,092 K 2144 IType.exe Microsoft Corporation (Verified) Microsoft Corporation
lsass.exe 6,392 K 11,008 K 604 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
mbamtray.exe 16,836 K 19,580 K 4836 Malwarebytes Tray Application Malwarebytes (Verified) Malwarebytes Corporation
PMBVolumeWatcher.exe 6,356 K 9,524 K 3664 Media Check Tool Sony Corporation (Verified) Sony Corporation
SamsungMagician.exe 10,600 K 1,072 K 3416 Samsung Magician Samsung Electronics Co. Ltd. (Verified) Samsung Electronics Co.
services.exe 3,848 K 5,948 K 544 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
smss.exe 260 K 796 K 344 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
spoolsv.exe 5,404 K 8,112 K 1508 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 1,244 K 3,772 K 2160 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 1,100 K 3,252 K 3892 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,028 K 4,420 K 1120 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,880 K 4,140 K 2036 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3,732 K 7,540 K 720 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 8,528 K 9,672 K 1552 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3,740 K 6,260 K 812 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 1,228 K 4,212 K 3320 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 1,372 K 4,528 K 1576 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 940 K 2,956 K 488 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 2,172 K 4,496 K 576 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 21,448 K 26,568 K 3400 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 6,368 K 9,228 K 3520 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WUDFHost.exe 1,064 K 3,268 K 4004 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
WUDFHost.exe 1,788 K 5,212 K 4452 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe < 0.01 23,836 K 23,636 K 5144 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 64,840 K 70,440 K 944 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 13,180 K 12,040 K 1256 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe < 0.01 36,588 K 27,208 K 4416 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 6,816 K 13,204 K 972 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 22,436 K 30,792 K 1016 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
taskhost.exe < 0.01 30,196 K 26,516 K 1964 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
csrss.exe 0.01 9,992 K 6,316 K 496 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
uaclauncher.exe 0.01 10,008 K 1,180 K 4352 PC-Doctor Module PC-Doctor, Inc. (Verified) Dell Inc.
lsm.exe 0.01 1,428 K 3,056 K 612 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
iexplore.exe 0.01 23,400 K 38,884 K 4796 Internet Explorer Microsoft Corporation (Verified) Microsoft Corporation
wmpnetwk.exe 0.01 13,184 K 11,080 K 4544 Windows Media Player Network Sharing Service Microsoft Corporation (Verified) Microsoft Windows
iexplore.exe 0.01 140,732 K 146,016 K 5720 Internet Explorer Microsoft Corporation (Verified) Microsoft Corporation
AvastUI.exe 0.02 17,488 K 28,684 K 1444 Avast Antivirus AVAST Software (Verified) AVAST Software s.r.o.
svchost.exe 0.02 18,268 K 16,372 K 856 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.03 5,576 K 9,456 K 660 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.03 28,628 K 54,344 K 456 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
AvastSvc.exe 0.04 177,436 K 41,040 K 1352 Avast Service AVAST Software (Verified) AVAST Software s.r.o.
aswidsagent.exe 0.05 23,444 K 31,480 K 3020 Avast Behavior Shield AVAST Software (Verified) AVAST Software s.r.o.
SupportAssistAgent.exe 0.05 142,416 K 61,032 K 6128 Service Dell Inc. (Verified) Dell Inc.
csrss.exe 0.09 1,712 K 3,816 K 436 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
MBAMService.exe 0.12 155,508 K 168,556 K 2524 Malwarebytes Service Malwarebytes (Verified) Malwarebytes Corporation
Interrupts 0.19 0 K 0 K n/a Hardware Interrupts and DPCs
System 0.31 60 K 3,736 K 4
dwm.exe 0.64 28,960 K 54,276 K 1656 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 2.55 25,228 K 49,392 K 4604 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
svchost.exe 2.86 17,988 K 15,976 K 4936 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
System Idle Process 92.93 0 K 24 K 0




Image Name PID Services
========================= ======== ============================================
System Idle Process 0 N/A
System 4 N/A
smss.exe 344 N/A
csrss.exe 436 N/A
wininit.exe 488 N/A
csrss.exe 496 N/A
services.exe 544 N/A
winlogon.exe 576 N/A
lsass.exe 604 EFS, KeyIso, SamSs
lsm.exe 612 N/A
svchost.exe 720 DcomLaunch, PlugPlay, Power
svchost.exe 812 RpcEptMapper, RpcSs
svchost.exe 856 Audiosrv, Dhcp, eventlog,
HomeGroupProvider, lmhosts, wscsvc
svchost.exe 944 AudioEndpointBuilder, hidserv,
HomeGroupListener, Netman, PcaSvc, SysMain,
UxSms, WPDBusEnum, wudfsvc
svchost.exe 972 EventSystem, fdPHost, FontCache, netprofm,
nsi, SstpSvc, WdiServiceHost
svchost.exe 1016 AeLookupSvc, Appinfo, BITS, Browser,
IKEEXT, LanmanServer, MMCSS, ProfSvc,
RasMan, Schedule, seclogon, SENS,
ShellHWDetection, Themes, Winmgmt, wuauserv
svchost.exe 1120 gpsvc
svchost.exe 1256 CryptSvc, Dnscache, LanmanWorkstation,
NlaSvc, TapiSrv
AvastSvc.exe 1352 avast! Antivirus
spoolsv.exe 1508 Spooler
svchost.exe 1552 BFE, DPS, MpsSvc
taskhost.exe 1964 N/A
armsvc.exe 1976 AdobeARMservice
svchost.exe 2036 DiagTrack
svchost.exe 660 FDResPub, SSDPSRV, upnphost
taskeng.exe 1576 N/A
dwm.exe 1656 N/A
explorer.exe 456 N/A
ipoint.exe 2072 N/A
itype.exe 2144 N/A
svchost.exe 2160 StiSvc
MBAMService.exe 2524 MBAMService
igfxpers.exe 2868 N/A
aswidsagent.exe 3020 aswbIDSAgent
igfxtray.exe 3200 N/A
igfxsrvc.exe 3264 N/A
taskeng.exe 3320 N/A
hkcmd.exe 3344 N/A
WmiPrvSE.exe 3400 N/A
SamsungMagician.exe 3416 N/A
PMBVolumeWatcher.exe 3664 N/A
WUDFHost.exe 4004 N/A
AvastUI.exe 1444 N/A
SearchIndexer.exe 4416 WSearch
WUDFHost.exe 4452 N/A
wmpnetwk.exe 4544 WMPNetworkSvc
mbamtray.exe 4836 N/A
svchost.exe 4936 p2pimsvc, p2psvc, PNRPsvc
WmiPrvSE.exe 5144 N/A
DDVRulesProcessor.exe 5992 DDVRulesProcessor
SupportAssistAgent.exe 6128 SupportAssistAgent
DDVDataCollector.exe 4876 DDVDataCollector
DDVCollectorSvcApi.exe 5060 DDVCollectorSvcApi
svchost.exe 3892 SDRSVC
WmiPrvSE.exe 3520 N/A
uaclauncher.exe 4352 N/A
iexplore.exe 4796 N/A
iexplore.exe 5720 N/A
audiodg.exe 1528 N/A
cmd.exe 5336 N/A
conhost.exe 2464 N/A
tasklist.exe 3988 N/A

Attached Files


  • 0

#4
RKinner
Posted 15 March 2018 - 10:12 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Speccy thinks your PC might be hot so let's get a second opinion.

 

Get Speedfan to monitor your temps in real time:

http://www.filehippo...nload_speedfan/

Download, save and Install it (Win 7+ or Vista right click and Run As Admin.) then run it (Win 7+ or Vista right click and Run As Admin.).

It will tell you your temps in real time tho the default is to show the hard drive temp in the systray.  You can change it:  Hit Configure then click on the highest temp and check Show in tray.  What is the highest temp?

 

Your hard drive is filling up.  Can you get rid of any programs you don't use or offload data?  Do you have the Samsung SSD tool?  Think it's called the Magician:

 

http://www.samsung.c...download/tools/

 

Run it and do Performance Optimization.

 

 

Have you run a boot-time scan with Avast yet?  It takes like 6 hours so I usually let it run at night.


Click on the Avast ball.  Then click on Protection, then on Antivirus, then on Other Scans then on Boot-time Scan.  Click on Install Special Definitions.  Click on Run on Next PC Reboot.

  Reboot and let it run a scan.  It may take hours.
Once it finishes it should load windows.   Mute your speakers so it doesn't wake you up when Windows boots.

When you reboot you will see the scan start.  It will tell you where it saves its log.  Usually it's C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location.   This is a hidden location so you will need to tell Windows to let you see it:

http://www.howtogeek...-windows-vista/

Copy and paste the text from the log to a Reply when done.

 

 

Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator.  Then type (with an Enter after each line).

sfc  /scannow

(This will check your critical system files. Does this finish without complaint?  IF it says it couldn't fix everything then:

Copy the next two lines:

findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  %UserProfile%\desktop\junk.txt
notepad %UserProfile%\desktop\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.  (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)
 
  • 0

#5
70delboy
Posted 16 March 2018 - 02:13 PM

70delboy

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 165 posts

Hi RKinner

I have run SpeedFan over several years and Temp1 is always 86c. Could this be an error?

I have optimised the SSD.

03/16/2018 18:25
Scan of C:

Scan of *STARTUP

File C:\downloads\setup_v223.exe|>OFFLINE\67A5C8AF\E25664CF\WMEncoder.exe|>WMEncoder.msi|>01File Error 42144 {OLE archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\67A5C8AF\E25664CF\WMEncoder.exe|>WMEncoder.msi|>WMEncoder.Cab|>WMEnc.exe Error 42127 {CAB archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\67A5C8AF\E25664CF\WMEncoder.exe|>WMEncoder.msi|>WMEncoder.Cab Error 42144 {OLE archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\67A5C8AF\E25664CF\WMEncoder.exe|>WMEncoder.msi Error 42127 {CAB archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\67A5C8AF\E25664CF\WMEncoder.exe Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\C1C399BB\B41391E5\avcodec-51.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\A6CE512\B41391E5\avformat-51.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\F0986402\B41391E5\avutil-49.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\BDE72E3A\B41391E5\BouncyCastle.Crypto.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\B02C02C4\79103D4A\conversionDLL.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\44317A48\B41391E5\FreeImage.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\E95C873F\79103D4A\Interop.WMEncoderLib.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\F2AC1A4D\B41391E5\pthreadVSE2.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\8D853C97\F4615405\VoltaicHD.resources.dll Error 42139 {7ZIP archive is corrupted.}
File C:\downloads\setup_v223.exe|>OFFLINE\50FD1620\DD68BCE8\VoltaicHD.resources.dll Error 42139 {7ZIP archive is corrupted.}
File C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-b671eac2.exe|>mpavdlta.vdm Error 42127 {CAB archive is corrupted.}
File C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-cd019d3.exe|>mpavdlta.vdm Error 42127 {CAB archive is corrupted.}
File C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-fe9d469d.exe|>mpavbase.vdm._p Error 42127 {CAB archive is corrupted.}
File C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-304dc428.exe|>mpavdlta.vdm Error 42127 {CAB archive is corrupted.}
File C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-53bf4541.exe|>nisbase.vdm Error 42127 {CAB archive is corrupted.}
File C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-8984189b.exe|>115.0.0.0_to_115.35.0.0_NISfull.vdm_source_NISbase.vdm._p Error 42127 {CAB archive is corrupted.}
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\277003B5-00005FA0.eml|>Order Acknowledgement.doc#3606961411 is infected by VBA:Downloader-AKG [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\655E439F-00003B92.eml|>Shipping_Label_ID0018063.zip#1923025960|>Shipping_Label.exe is infected by Win32:Injector-BSC [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\5AF141BB-000043A5.eml|>invc_2014-09-15_15-07-11_8598165.arj#3412633478|>invc_2014-09-10_15-07-11_992303882.exe is infected by Win32:Trojan-gen, Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\072405DB-000058D2.eml|>20131030164403.xls#2394919720 is infected by VBA:Downloader-BH [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\26E901EB-00004202.eml|>order 2856106.zip#3743255336|>Order-8991617.exe is infected by Win32:Trojan-gen, Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\70034DC0-0000449F.eml|>TRSCT00029918833-001.zip#2699063695|>TRSCT00029918833-001.exe is infected by Win32:Trojan-gen, Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\575360BF-000061AA.eml|>Order 0046\033777 [Ref. MARKETHILL CHURCH].doc#944467294 is infected by VBA:Downloader-AEZ [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\4D064DB7-00005D4E.eml|>Advance Shipping Notification 0068352929.DOC#126449409 is infected by VBA:Downloader-AEY [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\0C810654-000043B8.eml|>SKMBT_75114091015230.zip#645221089|>SKMBT_75114091015230.exe is infected by Win32:Malware-gen, Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\533B28AC-00006595.eml|>Document2.zip#2991718662|>Document7135.js is infected by JS:Agent-DTI [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\3A6122CD-000061B4.eml|>ScannedDocs122151.xls#3733328690 is infected by VBA:Downloader-AEZ [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\49E40330-000040FA.eml|>invoice_3699172.zip#1772214962|>invoice_32990192\invoice_32990192.exe is infected by Win32:Vobfus-Q [Wrm], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\4128133D-00005F46.eml|>emailreceipt_20150130R2155644709.xls#3677650881 is infected by VBA:Downloader-ABY [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\16A739E3-00004230.eml|>Payment receipt 0326957.zip#1397518892|>Payment receipt 8821991.exe is infected by Win32:Downloader-VNN [Drp], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\610A1002-00004DD5.eml|>Document1.doc#4142966121 is infected by MO97:Downloader-PN [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\69525F90-000042E9.eml|>L269477_729.zip#3186407173|>BillPay\Bill_Payment_2E_832e458.pdf.exe is infected by Win32:Cutwail-CT [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\2CD672AE-000043A2.eml|>invc_2014-09-15_15-07-11_9477206.zip#3513820986|>invc_2014-09-15_15-07-11_999004882.exe is infected by Win32:Trojan-gen, Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\56AE0732-00005BA6.eml|>52405950469_Standard for Email and Print_1529708_EMAIL.doc#2906690960 is infected by VBA:Downloader-OU [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\124404D9-00003B96.eml|>Shipping_Label_ID0072033.zip#1923025960|>Shipping_Label.exe is infected by Win32:Injector-BSC [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\2BE6387D-000040FC.eml|>1.zip#3600883430|>original_letter_234389_193.scr.exe is infected by Win32:Vobfus-Q [Wrm], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\00294823-00003CFC.eml|>Order_JQ8457756711.zip#2150994782|>Order_JQ8457756711.exe is infected by Win32:Injector-BRZ [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\1FE74D9F-000058DD.eml|>20131030164403.xls#2394919720 is infected by VBA:Downloader-BH [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\21DB52FA-00003D99.eml|>Invoice_111916734.zip#2510811674|>Invoice_111916734.exe is infected by Win32:GenMalicious-GOD [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\38A76FCE-00003D83.eml|>Invoice_111916734.zip#2510811674|>Invoice_111916734.exe is infected by Win32:GenMalicious-GOD [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\45B5671E-000058D8.eml|>20131030164403.xls#2394919720 is infected by VBA:Downloader-BH [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\12E1798B-0000552F.eml|>compinfo_000-865487-76359698_1.doc#2789384424 is infected by VBA:Downloader-FU [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\3EF60822-0000436D.eml|>invoice_8886887.zip#2401952078|>Invoice copy 882991(2).exe is infected by Win32:Dropper-gen [Drp], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\7E87390C-0000435D.eml|>invoice_9228649.zip#1097854726|>invoice_3466198\invoice_3466198.EXE is infected by Win32:Dropper-gen [Drp], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\324B7247-000041AB.eml|>DSC_4733799.zip#2977127294|>Invoice_452846109417420.xls\Invoice_452846109417420.xls.scr is infected by Win32:Vobfus-Q [Wrm], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\5AF141BB-00004157.eml|>573312-30.07.2014.zip#1474250196|>order-8301138-30.07.2014.xls\order-8301138-30.07.2014.xls.exe is infected by Win32:Malware-gen, Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\251923DD-00004351.eml|>tickets.12519.zip#1616872386|>tickets.332091.exe is infected by Win32:Trojan-gen, Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\42BC4E5D-00006225.eml|>SKM_4050151222162800.doc#2488632629 is infected by VBA:Downloader-AIE [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\5D351394-00004294.eml|>invoice_5770872.zip#1475532627|>Invoice_382799087264852.xls\Invoice_382799087264852.xls.scr is infected by Win32:Vobfus-Q [Wrm], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\56AE0732-00006326.eml|>MX62EDO 10.02.2016.doc#1222620388 is infected by VBA:Downloader-AOS [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\39A46B2E-000058D0.eml|>20131030164403.xls#2394919720 is infected by VBA:Downloader-BH [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\63CB6BFC-00006320.eml|>New Doc 115.doc#1222620388 is infected by VBA:Downloader-AOS [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\1F982A6D-00004166.eml|>DSC_6660409.zip#211499925|>DSC_8832966\DSC_8832966.exe is infected by Win32:Crypt-RFD [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\127531B6-00004167.eml|>DSC_0116139.zip#211499925|>DSC_8832966\DSC_8832966.exe is infected by Win32:Crypt-RFD [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\2213260D-00005F65.eml|>Payment Advice For Vendor0000113915.DOC#961459901 is infected by VBA:Downloader-ABY [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\2213260D-00006188.eml|>uk_conf_email_2012_dmh562810.xls#1573525088 is infected by VBA:Downloader-AFV [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\4E45323B-000061D6.eml|>remit_acc-4829848.doc#3824690038|>PartNo_2#1921828539|>[Embedded:ActiveMime.mso] is infected by VBA:Downloader-AHX [Trj], Deleted
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\032A1DDC-00003978.eml|>efax_9362EF8185.zip#1630724291|>mes_4835634778534987593489.pdf.exe is infected by Win32:Crypt-QRI [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\55F87EDE-00005C61.eml|>Cleaning022958.doc#3753756751 is infected by VBA:Downloader-RX [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\47400A8B-0000622F.eml|>[email protected]_34287.doc#3218435396|>PartNo_1#695214375|>[Embedded:ActiveMime.mso] is infected by VBA:Downloader-ALG [Trj], Deleted
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\7282251F-00003F1D.eml|>invoice_8315694.zip#1759480330|>June_invoice_7846935978.xls.exe is infected by Win32:Crypt-REG [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\56AE0732-000064CB.eml|>Invoice_ref-12578613.zip#3853445679|>invoice_VfQRUU.js is infected by JS:Downloader-CWA [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\428B26A6-00006557.eml|>access_04111807.zip#2506094490|>document_tDbdBD.js is infected by JS:Agent-DTJ [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\7A9A1958-0000622E.eml|>[email protected]_4224682.doc#3218435396|>PartNo_1#695214375|>[Embedded:ActiveMime.mso] is infected by VBA:Downloader-ALG [Trj], Deleted
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\4E392AED-000058A4.eml|>Visa Card Aug 2015.docm#3757299475|>word\vbaProject.bin is infected by VBA:Downloader-BH [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\4E392AED-000058A4.eml|>Visa Card Aug 2015.docm#3757299475 is infected by Other:Malware-gen [Trj], Moved to chest
File C:\Users\Del\AppData\Local\Microsoft\Windows Live Mail\O2.co (dere f95\Inbox\701F5D03-000064A3.eml|>scan_314421.doc#3598327787|>PartNo_3#2096889743|>[Embedded:ActiveMime.mso] is infected by VBA:Downloader-ATN [Trj], Deleted
File C:\Users\Yvonne\AppData\Local\temp\~PI6233.tmp is infected by JPG:MS04-028 [Expl], Moved to chest
Number of searched folders: 45088
Number of tested files: 1275833
Number of infected files: 52

sfc completes no integrity violation

 

Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 16/03/2018 20:04:02

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 16/03/2018 19:55:29
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device {C5A047D8-CB5B-40E9-B9E3-316AB06B5A18}\WirelessKeyboardFilter\8&3557e4fb&0&01.

Log: 'System' Date/Time: 16/03/2018 19:55:16
Type: Warning Category: 0
Event: 1 Source: RTL8167
Realtek PCIe FE Family Controller is disconnected from network.

 

Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 16/03/2018 20:05:53

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 16/03/2018 19:54:43
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.     DETAIL -   11 user registry handles leaked from \Registry\User\S-1-5-21-2568410734-3031030142-1223416489-1001:
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001
Process 1372 (\Device\HarddiskVolume1\Program Files\AVAST Software\Avast\AvastSvc.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Microsoft\SystemCertificates\trust
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Microsoft\SystemCertificates\Root
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Microsoft\SystemCertificates\My
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Microsoft\SystemCertificates\CA
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Microsoft\SystemCertificates\SmartCardRoot
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Policies\Microsoft\SystemCertificates
Process 2468 (\Device\HarddiskVolume1\Windows\System32\wbem\WmiPrvSE.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\Policies\Microsoft\SystemCertificates
Process 1372 (\Device\HarddiskVolume1\Program Files\AVAST Software\Avast\AvastSvc.exe) has opened key \REGISTRY\USER\S-1-5-21-2568410734-3031030142-1223416489-1001\Software\AVAST Software\Avast

 

Delboy

 


 


  • 0

#6
RKinner
Posted 16 March 2018 - 09:01 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Temp1 is probably an error of some sort.

 

Avast mostly found some dirty emails perhaps from your spam folder.  It did find some bad archives.  These should be deleted.

 

C:\downloads\setup_v223.exe

C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-b671eac2.exe

C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-cd019d3.exe

C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-fe9d469d.exe

C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-304dc428.exe

C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-53bf4541.exe

C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-8984189b.exe

 

All but the first one are bad Windows Defender updates.

 

What is your current Windows Experience Index?

 

https://www.digitalc...terpret-results

 

What is the lowest number.  Have it recalculate the index.  Does it change?  What is now the lowest number?

 

 

 

Try WhySoSlow:

The Download is on

http://www.resplendence.com/downloads

Look under System Monitoring Tools for WhySoSlow 1.0  then click on


Download free home edition

Save the file then right click and Run As Admin.  Follow the prompts. Let it run for a minute (watch the Time Running indication at the bottom) then hit Analyze

Then when a new window appears hit Analyze again.   Once the report appears scroll down and see if it complains about anything.  You can Save the report but it saves as WhySoSlowOutput.htm which the forum won't let you attach.  You can either zip it up or rename it to WhySoSlowOutput.txt then attach it.


  • 0

#7
70delboy
Posted 17 March 2018 - 09:15 AM

70delboy

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 165 posts

Hi RKinner

 

Windows Experience Index is 3.3

Nothing changed after recalculating apart from Hard Disk which went from 5.9 to 7.7, lowest still 3.3 (Gaming Graphics)

 

WhySoSlow result attached.

 

delboy


  • 0

#8
RKinner
Posted 17 March 2018 - 11:49 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

nothing attached


  • 0

#9
70delboy
Posted 18 March 2018 - 06:12 AM

70delboy

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 165 posts

Sorry!!

 

 

System Information


Computer name: DEL-PC
OS version: Windows 7 Service Pack 1, 6.1, build: 7601 (x86)
Hardware: Inspiron 545, Dell Inc., 0N826N
CPU: GenuineIntel Pentium® Dual-Core CPU E5300 @ 2.60GHz
Logical processors: 2
Processor groups: 1
RAM: 3061 MB total



 

CPU Speed

Your CPU speed ranged between 2472 Mhz and 2495 MHz. The advertised clock speed of your processor is 2593 MHz.

Your CPUs do not appear to be throttled down. More info..



 

CPU Temperature

Your CPU temperature ranged between 48 °C and 53 °C (equal to 118 °F - 127 °F) during the tests.
Your processors are running quite cool. More info..



 

CPU Load

While the test was idle, your CPU usage ranged from 62.2% to 100.0%. Your processor's resources do not appear to be used heavily. More info..



 

Memory Load

The amount of RAM used by your system while the test was running ranged from 64.4% to 64.7%. More info..



 

Paging Information

During the test hard pagefaults ranged from 0.0 to 31.0 pagefaults per second. This values reported are considered excellent. Your paging file resides on a SSD which fortunately limits the impact of hitting hard pagefaults on your system. More info..



 

Application responsiveness

The highest application responsiveness on your system was measured at 0.554 ms. This value is considered fair. More info..



 

Kernel latencies and real-time capabilities

The highest kernel responsiveness on your system was measured at 0.117 ms. This value is considered good. There do not appear to be drivers causing your system to be unsuitable for real-time processing capabilities. More info..



 

BIOS and chipset behavior

The highest measured SM BIOS interrupt or other stall was 1 microseconds. This value is considered excellent. No problems have been detected during the tests. More info..



 

Conclusion

Your system has been analyzed. Your system appears to be running fine.
No problems were found.



Report generated on 18/03/2018 12:11:16



 


  • 0

#10
RKinner
Posted 18 March 2018 - 08:40 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Make sure that in Control Panel Power Options you are set to run at High Performance.  Also check in the BIOS for any  power saving or eco options or low noise and disable them.

 

Let's try Latency Monitor:

Go to

http://www.resplendence.com/downloads

Scroll down to

System Monitoring Tools

and then find

LatencyMon 6.51

Click on Download free home edition

Save it then right click and Run As Admin.  It will install and then start the program.  
It will tell you to click on the Start button but there isn't one.  
Instead click on the green arrowhead (looks like a Play button).  Let it run for a bit then click on Drivers.  
File, Export View, Save it to your Desktop so you can find it easily.  The default name is drivers.txt.  
Open Drivers.txt and copy and paste the text into a Reply.

 

ee if you can run DPC Latency Checker:

http://www.thesycon....ncy_check.shtml

The download is:

http://www.thesycon....clat/dpclat.exe

Just download, save and run it by right click and run as admin.

I assume you will see some  red columns as in the  second picture.

If that is the case try their section on

Analysing drop-out problems with DPC Latency Checker

and see if you can find which driver is causing the red columns.  Note their warning about which drivers you should not disable.

If you find one, leave it disabled and run a process explore log.  Remember to wait 60 seconds to let it settle before saving the log.  If you have to renable the driver to post that's OK.


  • 0

Advertisements

#11
70delboy
Posted 18 March 2018 - 10:04 AM

70delboy

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 165 posts

HI RKinner

Here is drivers.txt

 

Driver file                               Description                                                                                       ISR count  DPC count  Highest execution (ms)  Total execution (ms)  Image base  Image size  Company                                              Product                                                         Version                                                 Path                                                         
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
ndis.sys                                  NDIS 6.20 driver                                                                  758        1681       0.342998                16.061638             0x8AB3C000  749568      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\ndis.sys                         
USBPORT.SYS                               USB 1.1 & 2.0 Port Driver                                                         11745      31897      0.216237                453.623369            0x900F1000  307200      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23933 (win7sp1_ldr.171017-1700)                C:\Windows\system32\drivers\usbport.sys                      
ntkrnlpa.exe                              NT Kernel & System                                                                0          24989      0.170293                94.964599             0x8201D000  4308992     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\ntkrnlpa.exe                             
tcpip.sys                                 TCP/IP Driver                                                                     0          1189       0.125513                17.198835             0x8B021000  1376256     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\tcpip.sys                        
NETIO.SYS                                 Network I/O Subsystem                                                             0          617        0.123999                3.433248              0x8AD93000  258048      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23821 (win7sp1_ldr.170529-1924)                C:\Windows\system32\drivers\netio.sys                        
dxgkrnl.sys                               DirectX Graphics Kernel                                                           3805       3805       0.081825                104.839229            0x98334000  753664      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23809 (win7sp1_ldr.170516-0600)                C:\Windows\system32\drivers\dxgkrnl.sys                      
iaStorV.sys                               Intel Matrix Storage Manager driver - ia32                                        12803      12951      0.044244                215.555863            0x8AC34000  897024      Intel Corporation                                    Intel Matrix Storage Manager driver                             8.6.2.1014                                              C:\Windows\system32\drivers\iastorv.sys                      
rspLLL32.sys                              Resplendence Latency Monitoring and Auxiliary Kernel Library                      0          185850     0.032773                147.171180            0x8E0B9000  40960       Resplendence Software Projects Sp.                   LatMon                                                          6.50 built by: WinDDK                                   C:\Windows\system32\drivers\rsplll32.sys                     
Wdf01000.sys                              Kernel Mode Driver Framework Runtime                                              0          119        0.032267                2.150695              0x82749000  528384      Microsoft Corporation                                Microsoft® Windows® Operating System                            1.11.9200.16384 (win8_rtm.120725-1247)                  C:\Windows\system32\drivers\wdf01000.sys                     
CLASSPNP.SYS                              SCSI Class System Dll                                                             0          491        0.022651                2.272995              0x8B2E6000  151552      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\classpnp.sys                     
afd.sys                                   Ancillary Function Driver for WinSock                                             0          917        0.021829                3.829425              0x8FFA5000  368640      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\afd.sys                          
ACPI.sys                                  ACPI Driver for NT                                                                51         0          0.020285                0.736989              0x8AA17000  294912      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\acpi.sys                         
netbt.sys                                 MBT Transport driver                                                              0          47         0.016504                0.637406              0x8F3A8000  208896      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23889 (win7sp1_ldr.170810-1615)                C:\Windows\system32\drivers\netbt.sys                        
tunnel.sys                                Microsoft Tunnel Interface Driver                                                 0          239        0.008723                0.694916              0x90085000  135168      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\tunnel.sys                       
usbccgp.sys                               USB Common Class Generic Parent Driver                                            0          30         0.007951                0.144885              0x8F22C000  94208       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23933 (win7sp1_ldr.171017-1700)                C:\Windows\system32\drivers\usbccgp.sys                      
srv.sys                                   Server driver                                                                     0          59         0.004763                0.103123              0x81A53000  335872      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\srv.sys                          
rassstp.sys                               RAS SSTP Miniport Call Manager                                                    0          476        0.004297                0.723568              0x8AA00000  94208       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\rassstp.sys                      
HIDCLASS.SYS                              Hid Class Library                                                                 0          119        0.003911                0.202796              0x8F261000  77824       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.18199 (win7sp1_gdr.130702-1534)                C:\Windows\system32\drivers\hidclass.sys                     
Ntfs.sys                                  NT File System Driver                                                             0          24         0.003349                0.038870              0x8AE1C000  1245184     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\ntfs.sys                         
HTTP.sys                                  HTTP Protocol Stack                                                               0          33         0.003169                0.073327              0x9A093000  544768      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\http.sys                         
rdbss.sys                                 Redirected Drive Buffering SubSystem Driver                                       0          19         0.002968                0.038052              0x8B398000  266240      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\rdbss.sys                        
luafv.sys                                 LUA File Virtualization Filter Driver                                             0          20         0.002687                0.029214              0x8F2E7000  110592      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\luafv.sys                        
cng.sys                                   Kernel Cryptography, Next Generation                                              0          12         0.002346                0.020149              0x8AF8A000  385024      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23600 (win7sp1_ldr.161119-0600)                C:\Windows\system32\drivers\cng.sys                          
aswSP.sys                                 Avast self protection module                                                      0          2          0.002201                0.004066              0x8F330000  389120      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswsp.sys                        
srvnet.sys                                Server Network driver                                                             0          6          0.002076                0.009997              0x9A118000  135168      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23913 (win7sp1_ldr.170907-0600)                C:\Windows\system32\drivers\srvnet.sys                       
fltmgr.sys                                Microsoft Filesystem Filter Manager                                               0          10         0.001895                0.013582              0x8AD4E000  212992      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\fltmgr.sys                       
halmacpi.dll                              Hardware Abstraction Layer DLL                                                    0          2          0.001705                0.003159              0x82439000  225280      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\halmacpi.dll                             
dfsc.sys                                  DFS Namespace Client Driver                                                       0          1          0.001429                0.001429              0x8B000000  98304       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23542 (win7sp1_ldr.160908-0600)                C:\Windows\system32\drivers\dfsc.sys                         
rdyboost.sys                              ReadyBoost Driver                                                                 0          1          0.001148                0.001148              0x8B257000  184320      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\rdyboost.sys                     
mup.sys                                   Multiple UNC Provider Driver                                                      0          1          0.000662                0.000662              0x8B28B000  65536       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\mup.sys                          
tdx.sys                                   TDI Translation Driver                                                            0          0          0                       0                     0x8FF82000  94208       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23880 (win7sp1_ldr.170729-0600)                C:\Windows\system32\drivers\tdx.sys                          
Npfs.SYS                                  NPFS Driver                                                                       0          0          0                       0                     0x8FF74000  57344       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\npfs.sys                         
Msfs.SYS                                  Mailslot driver                                                                   0          0          0                       0                     0x8FF69000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\msfs.sys                         
AgileVpn.sys                              RAS Agile Vpn Miniport Call Manager                                               0          0          0                       0                     0x901BD000  73728       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\agilevpn.sys                     
Rt86win7.sys                              Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver                                   0          0          0                       0                     0x9015B000  401408      Realtek                                              Realtek 8136/8168/8169 PCI/PCIe Adapters                        7.046.0610.2011 built by: WinDDK                        C:\Windows\system32\drivers\rt86win7.sys                     
TDI.SYS                                   TDI Wrapper                                                                       0          0          0                       0                     0x8FF99000  49152       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\tdi.sys                          
CompositeBus.sys                          Multi-Transport Composite Bus Enumerator                                          0          0          0                       0                     0x97E10000  53248       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\compositebus.sys                 
rdprefmp.sys                              RDP Reflector Driver Miniport                                                     0          0          0                       0                     0x8FF61000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\rdprefmp.sys                     
RDPCDD.sys                                RDP Miniport                                                                      0          0          0                       0                     0x8FF51000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\rdpcdd.sys                       
discache.sys                              System Indexer/Cache Driver                                                       0          0          0                       0                     0x8B200000  49152       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\discache.sys                     
VIDEOPRT.SYS                              Video Port Driver                                                                 0          0          0                       0                     0x8FF23000  135168      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\videoprt.sys                     
watchdog.sys                              Watchdog Driver                                                                   0          0          0                       0                     0x8FF44000  53248       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\watchdog.sys                     
rdpencdd.sys                              RDP Encoder Miniport                                                              0          0          0                       0                     0x8FF59000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\rdpencdd.sys                     
mssmbios.sys                              System Management BIOS Driver                                                     0          0          0                       0                     0x8B3E3000  40960       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\mssmbios.sys                     
mbae.sys                                                                                                                    0          0          0                       0                     0x8B3ED000  45056                                                                                                                            6.1.7600.16385 (win7_rtm.090713-1255)                   c:\windows\system32\drivers\mbae.sys                         
rasl2tp.sys                               RAS L2TP mini-port/call-manager driver                                            0          0          0                       0                     0x901CF000  98304       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\rasl2tp.sys                      
HDAudBus.sys                              High Definition Audio Bus Driver                                                  0          0          0                       0                     0x9013C000  126976      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\hdaudbus.sys                     
intelppm.sys                              Processor Device Driver                                                           0          0          0                       0                     0x900A6000  73728       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\intelppm.sys                     
termdd.sys                                Remote Desktop Server Driver                                                      0          0          0                       0                     0x8B387000  69632       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\termdd.sys                       
wanarp.sys                                MS Remote Access and Routing ARP Driver                                           0          0          0                       0                     0x8F20E000  77824       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\wanarp.sys                       
igdkmd32.sys                              Intel Graphics Kernel Mode Driver                                                 0          0          0                       0                     0x97E2B000  5279744     Intel Corporation                                    Intel Graphics Accelerator Drivers for Windows Vista®         8.14.10.1930                                            C:\Windows\system32\drivers\igdkmd32.sys                     
aswHdsKe.sys                              Home Network Security                                                             0          0          0                       0                     0x8AC00000  159744      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswhdske.sys                     
nsiproxy.sys                              NSI Proxy                                                                         0          0          0                       0                     0x8B3D9000  40960       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23889 (win7sp1_ldr.170810-1615)                C:\Windows\system32\drivers\nsiproxy.sys                     
aswArPot.sys                              Avast anti rootkit                                                                0          0          0                       0                     0x90049000  245760      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswarpot.sys                     
aswbidsdriverx.sys                        IDS Application Activity Monitor Driver.                                          0          0          0                       0                     0x9001B000  188416      AVAST Software                                       Avast                                                           18.2.3.24976                                            C:\Windows\system32\drivers\aswbidsdriverx.sys               
usbehci.sys                               EHCI eUSB Miniport Driver                                                         0          0          0                       0                     0x97E00000  65536       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23933 (win7sp1_ldr.171017-1700)                C:\Windows\system32\drivers\usbehci.sys                      
wfplwf.sys                                WFP NDIS 6.20 Lightweight Filter Driver                                           0          0          0                       0                     0x8FE00000  28672       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\wfplwf.sys                       
aswRdr2.sys                               Avast WFP Redirect Driver                                                         0          0          0                       0                     0x8F38F000  102400      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0 built by: WinDDK                            C:\Windows\system32\drivers\aswrdr2.sys                      
blbdrive.sys                              BLB Drive Driver                                                                  0          0          0                       0                     0x8AE00000  57344       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\blbdrive.sys                     
netbios.sys                               NetBIOS interface driver                                                          0          0          0                       0                     0x8F200000  57344       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\netbios.sys                      
dxgmms1.sys                               DirectX Graphics MMS                                                              0          0          0                       0                     0x900B8000  233472      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23809 (win7sp1_ldr.170516-0600)                C:\Windows\system32\drivers\dxgmms1.sys                      
usbuhci.sys                               UHCI USB Miniport Driver                                                          0          0          0                       0                     0x983EC000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23933 (win7sp1_ldr.171017-1700)                C:\Windows\system32\drivers\usbuhci.sys                      
pacer.sys                                 QoS Packet Scheduler                                                              0          0          0                       0                     0x8F3DB000  126976      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\pacer.sys                        
PCIIDEX.SYS                               PCI IDE Bus Driver Extension                                                      0          0          0                       0                     0x8AB18000  57344       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\pciidex.sys                      
mountmgr.sys                              Mount Point Manager                                                               0          0          0                       0                     0x8AB26000  90112       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.18933 (win7sp1_gdr.150715-0600)                C:\Windows\system32\drivers\mountmgr.sys                     
pciide.sys                                Generic PCI IDE Bus Driver                                                        0          0          0                       0                     0x8AB11000  28672       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\pciide.sys                       
volmgr.sys                                Volume Manager Driver                                                             0          0          0                       0                     0x8AAB6000  65536       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\volmgr.sys                       
volmgrx.sys                               Volume Manager Extension Driver                                                   0          0          0                       0                     0x8AAC6000  307200      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\volmgrx.sys                      
atapi.sys                                 ATAPI IDE Miniport Driver                                                         0          0          0                       0                     0x8AD0F000  36864       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\atapi.sys                        
fileinfo.sys                              FileInfo Filter Driver                                                            0          0          0                       0                     0x8AD82000  69632       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\fileinfo.sys                     
msrpc.sys                                 Kernel Remote Procedure Call Provider                                             0          0          0                       0                     0x8AF4C000  176128      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\msrpc.sys                        
msahci.sys                                MS AHCI 1.0 Standard Driver                                                       0          0          0                       0                     0x8AD44000  40960       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\msahci.sys                       
ataport.SYS                               ATAPI Driver Extension                                                            0          0          0                       0                     0x8AD18000  143360      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\ataport.sys                      
amdxata.sys                               Storage Filter Driver                                                             0          0          0                       0                     0x8AD3B000  36864       Advanced Micro Devices                               Storage Filter Driver                                           1.1.2.5 (NT.091202-1711)                                C:\Windows\system32\drivers\amdxata.sys                      
partmgr.sys                               Partition Management Driver                                                       0          0          0                       0                     0x8AAA5000  69632       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\partmgr.sys                      
BOOTVID.dll                               VGA Boot Driver                                                                   0          0          0                       0                     0x82698000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\bootvid.dll                              
CLFS.SYS                                  Common Log File System Driver                                                     0          0          0                       0                     0x826A0000  270336      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\clfs.sys                                 
PSHED.dll                                 Platform Specific Hardware Error Driver                                           0          0          0                       0                     0x82687000  69632       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\pshed.dll                                
kdcom.dll                                 Serial Kernel Debugger                                                            0          0          0                       0                     0x81EDA000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\kdcom.dll                                
mcupdate_GenuineIntel.dll                 Intel Microcode Update Library                                                    0          0          0                       0                     0x82602000  544768      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\mcupdate_genuineintel.dll                
CI.dll                                    Code Integrity Module                                                             0          0          0                       0                     0x826E2000  421888      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\ci.dll                                   
pci.sys                                   NT Plug and Play PCI Enumerator                                                   0          0          0                       0                     0x8AA70000  172032      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\pci.sys                          
vdrvroot.sys                              Virtual Drive Root Enumerator                                                     0          0          0                       0                     0x8AA9A000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\vdrvroot.sys                     
msisadrv.sys                              ISA Driver                                                                        0          0          0                       0                     0x8AA68000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\msisadrv.sys                     
WDFLDR.SYS                                Kernel Mode Driver Framework Loader                                               0          0          0                       0                     0x827CA000  57344       Microsoft Corporation                                Microsoft® Windows® Operating System                            1.11.9200.16384 (win8_rtm.120725-1247)                  C:\Windows\system32\drivers\wdfldr.sys                       
WMILIB.SYS                                WMILIB WMI support library Dll                                                    0          0          0                       0                     0x8AA5F000  36864       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\wmilib.sys                       
aswbidshx.sys                             Application Activity Monitor Helper Driver                                        0          0          0                       0                     0x8B355000  151552      AVAST Software                                       Avast                                                           18.2.3.24976                                            C:\Windows\system32\drivers\aswbidshx.sys                    
cdrom.sys                                 SCSI CD-ROM Driver                                                                0          0          0                       0                     0x8F311000  126976      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\cdrom.sys                        
aswblogx.sys                              Logging Driver                                                                    0          0          0                       0                     0x8B316000  258048      AVAST Software                                       Avast                                                           18.2.3.24976                                            C:\Windows\system32\drivers\aswblogx.sys                     
disk.sys                                  PnP Disk Driver                                                                   0          0          0                       0                     0x8B2D5000  69632       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\disk.sys                         
aswbunivx.sys                             Universal Driver                                                                  0          0          0                       0                     0x8B30B000  45056       AVAST Software                                       Avast                                                           18.2.3.24976                                            C:\Windows\system32\drivers\aswbunivx.sys                    
aswSnx.sys                                Avast Virtualization Driver                                                       0          0          0                       0                     0x8FE0F000  774144      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswsnx.sys                       
aswKbd.sys                                Avast Keyboard Filter Driver                                                      0          0          0                       0                     0x8FF0E000  36864       AVAST Software                                       Avast Antivirus                                                 17.6.3614.0                                             C:\Windows\system32\drivers\aswkbd.sys                       
vga.sys                                   VGA/Super VGA Video Driver                                                        0          0          0                       0                     0x8FF17000  49152       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\vga.sys                          
Beep.SYS                                  BEEP Driver                                                                       0          0          0                       0                     0x8FF07000  28672       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\beep.sys                         
ks.sys                                    Kernel CSA Library                                                                0          0          0                       0                     0x8FECC000  212992      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\ks.sys                           
Null.SYS                                  NULL Driver                                                                       0          0          0                       0                     0x8FF00000  28672       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\null.sys                         
fvevol.sys                                BitLocker Drive Encryption Driver                                                 0          0          0                       0                     0x8B2A3000  204800      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\fvevol.sys                       
ksecpkg.sys                               Kernel Security Support Provider Interface Packages                               0          0          0                       0                     0x8ADD2000  155648      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\drivers\ksecpkg.sys                      
fwpkclnt.sys                              FWP/IPsec Kernel-Mode API                                                         0          0          0                       0                     0x8B171000  200704      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23821 (win7sp1_ldr.170529-1924)                C:\Windows\system32\drivers\fwpkclnt.sys                     
Fs_Rec.sys                                File System Recognizer Driver                                                     0          0          0                       0                     0x8AFF6000  36864       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17787 (win7sp1_gdr.120229-1502)                C:\Windows\system32\drivers\fs_rec.sys                       
ksecdd.sys                                Kernel Security Support Provider Interface                                        0          0          0                       0                     0x8AF77000  77824       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\drivers\ksecdd.sys                       
pcw.sys                                   Performance Counters for Windows Driver                                           0          0          0                       0                     0x8AFE8000  57344       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\pcw.sys                          
aswRvrt.sys                               Avast Revert                                                                      0          0          0                       0                     0x8B1A2000  61440       AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswrvrt.sys                      
pwdrvio.sys                                                                                                                 0          0          0                       0                     0x8B284000  28672                                                                                                                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\pwdrvio.sys                              
hwpolicy.sys                              Hardware Policy Driver                                                            0          0          0                       0                     0x8B29B000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\hwpolicy.sys                     
spldr.sys                                 loader for security processor                                                     0          0          0                       0                     0x8B24F000  32768       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7127.0 (fbl_security_bugfix(sepbld-s).090511-0900)  C:\Windows\system32\drivers\spldr.sys                        
aswVmm.sys                                Avast VM Monitor                                                                  0          0          0                       0                     0x8B1B1000  294912      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswvmm.sys                       
volsnap.sys                               Volume Shadow Copy Driver                                                         0          0          0                       0                     0x8B210000  258048      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\volsnap.sys                      
wininet.dll                               Internet Extensions for Win32                                                     0          0          0                       0                     0x76EC0000  2797568     Microsoft Corporation                                Internet Explorer                                               11.00.9600.18838 (winblue_ltsb.171013-1838)             C:\Windows\system32\wininet.dll                              
difxapi.dll                               Driver Install Frameworks for API library module                                  0          0          0                       0                     0x76E60000  335872      Microsoft Corporation                                Driver Install Frameworks API (DIFxAPI)                         2.1                                                     C:\Windows\system32\difxapi.dll                              
clbcatq.dll                               COM+ Configuration Catalog                                                        0          0          0                       0                     0x76DD0000  536576      Microsoft Corporation                                Microsoft® Windows® Operating System                            2001.12.8530.16385 (win7_rtm.090713-1255)               C:\Windows\system32\clbcatq.dll                              
user32.dll                                Multi-User Windows USER API Client DLL                                            0          0          0                       0                     0x77260000  823296      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\user32.dll                               
msctf.dll                                 MSCTF Server DLL                                                                  0          0          0                       0                     0x77190000  839680      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\msctf.dll                                
sechost.dll                               Host for SCM/SDDL/LSA Lookup APIs                                                 0          0          0                       0                     0x77170000  102400      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\sechost.dll                              
shell32.dll                               Windows Shell Common Dll                                                          0          0          0                       0                     0x76020000  12894208    Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\shell32.dll                              
Wldap32.dll                               Win32 LDAP API DLL                                                                0          0          0                       0                     0x75FD0000  282624      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\wldap32.dll                              
psapi.dll                                 Process Status Helper                                                             0          0          0                       0                     0x75FC0000  20480       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\psapi.dll                                
kernel32.dll                              Windows NT BASE API Client DLL                                                    0          0          0                       0                     0x76CF0000  872448      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.18015 (win7sp1_gdr.121129-1432)                C:\Windows\system32\kernel32.dll                             
comdlg32.dll                              Common Dialogs DLL                                                                0          0          0                       0                     0x76C70000  503808      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\comdlg32.dll                             
lpk.dll                                   Language Pack                                                                     0          0          0                       0                     0x779C0000  40960       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23930 (win7sp1_ldr.171011-1526)                C:\Windows\system32\lpk.dll                                  
nsi.dll                                   NSI User-mode interface DLL                                                       0          0          0                       0                     0x779D0000  24576       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23889 (win7sp1_ldr.170810-1615)                C:\Windows\system32\nsi.dll                                  
ntdll.dll                                 NT Layer DLL                                                                      0          0          0                       0                     0x77870000  1318912     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\ntdll.dll                                
smss.exe                                  Windows Session Manager                                                           0          0          0                       0                     0x480A0000  77824       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\smss.exe                                 
apisetschema.dll                          ApiSet Schema DLL                                                                 0          0          0                       0                     0x77AD0000  327680      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\apisetschema.dll                         
mbam.sys                                  Malwarebytes Real-Time Protection                                                 0          0          0                       0                     0x81BF1000  45056       Malwarebytes                                         Malwarebytes Real-Time Protection                               3.0.0.116                                               C:\Windows\system32\drivers\mbam.sys                         
asyncmac.sys                              MS Remote Access serial network driver                                            0          0          0                       0                     0x8E09F000  36864       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\asyncmac.sys                     
mwac.sys                                  Malwarebytes Web Protection                                                       0          0          0                       0                     0x8E0A8000  69632       Malwarebytes                                         Malwarebytes Web Protection                                     3.0.0.159                                               C:\Windows\system32\drivers\mwac.sys                         
ole32.dll                                 Microsoft OLE for Windows                                                         0          0          0                       0                     0x77570000  1429504     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23889 (win7sp1_ldr.170810-1615)                C:\Windows\system32\ole32.dll                                
iertutil.dll                              Run time utility for Internet Explorer                                            0          0          0                       0                     0x77330000  2314240     Microsoft Corporation                                Internet Explorer                                               11.00.9600.18838 (winblue_ltsb.171013-1838)             C:\Windows\system32\iertutil.dll                             
imagehlp.dll                              Windows NT Image Helper                                                           0          0          0                       0                     0x779E0000  176128      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.18288 (win7sp1_gdr.131018-1533)                C:\Windows\system32\imagehlp.dll                             
autochk.exe                               Auto Check Utility                                                                0          0          0                       0                     0x00990000  679936      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\autochk.exe                              
setupapi.dll                              Windows Setup API                                                                 0          0          0                       0                     0x776D0000  1691648     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\setupapi.dll                             
advapi32.dll                              Advanced Windows 32 Base API                                                      0          0          0                       0                     0x77A10000  659456      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\advapi32.dll                             
cfgmgr32.dll                              Configuration Manager DLL                                                         0          0          0                       0                     0x75850000  159744      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\cfgmgr32.dll                             
userenv.dll                               Userenv                                                                           0          0          0                       0                     0x75830000  94208       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\userenv.dll                              
api-ms-win-downlevel-advapi32-l1-1-0.dll  ApiSet Stub DLL                                                                   0          0          0                       0                     0x75820000  20480       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16492 (win8_gdr_oobssr.130113-0015)            C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 
api-ms-win-downlevel-user32-l1-1-0.dll    ApiSet Stub DLL                                                                   0          0          0                       0                     0x759C0000  16384       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16492 (win8_gdr_oobssr.130113-0015)            C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll   
crypt32.dll                               Crypto API32                                                                      0          0          0                       0                     0x75890000  1183744     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23769 (win7sp1_ldr.170412-0600)                C:\Windows\system32\crypt32.dll                              
api-ms-win-downlevel-version-l1-1-0.dll   ApiSet Stub DLL                                                                   0          0          0                       0                     0x75880000  16384       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16492 (win8_gdr_oobssr.130113-0015)            C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll  
api-ms-win-downlevel-normaliz-l1-1-0.dll  ApiSet Stub DLL                                                                   0          0          0                       0                     0x757A0000  12288       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16492 (win8_gdr_oobssr.130113-0015)            C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 
profapi.dll                               User Profile Basic API                                                            0          0          0                       0                     0x75790000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\profapi.dll                              
msasn1.dll                                ASN.1 Runtime APIs                                                                0          0          0                       0                     0x75780000  49152       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\msasn1.dll                               
api-ms-win-downlevel-shlwapi-l1-1-0.dll   ApiSet Stub DLL                                                                   0          0          0                       0                     0x75810000  16384       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16492 (win8_gdr_oobssr.130113-0015)            C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll  
api-ms-win-downlevel-ole32-l1-1-0.dll     ApiSet Stub DLL                                                                   0          0          0                       0                     0x75800000  16384       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16492 (win8_gdr_oobssr.130113-0015)            C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll    
KernelBase.dll                            Windows NT BASE API Client DLL                                                    0          0          0                       0                     0x757B0000  307200      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.18015 (win7sp1_gdr.121129-1432)                C:\Windows\system32\kernelbase.dll                           
devobj.dll                                Device Information Set DLL                                                        0          0          0                       0                     0x759D0000  73728       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\devobj.dll                               
oleaut32.dll                                                                                                                0          0          0                       0                     0x75CE0000  593920      Microsoft Corporation                                                                                                6.1.7601.23775                                          C:\Windows\system32\oleaut32.dll                             
ws2_32.dll                                Windows Socket 2.0 32-Bit DLL                                                     0          0          0                       0                     0x75CA0000  217088      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\ws2_32.dll                               
normaliz.dll                              Unicode Normalization DLL                                                         0          0          0                       0                     0x75C90000  12288       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\normaliz.dll                             
gdi32.dll                                 GDI Client DLL                                                                    0          0          0                       0                     0x75F70000  319488      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23914 (win7sp1_ldr.170908-0600)                C:\Windows\system32\gdi32.dll                                
urlmon.dll                                OLE32 Extensions for Win32                                                        0          0          0                       0                     0x75E20000  1355776     Microsoft Corporation                                Internet Explorer                                               11.00.9600.18838 (winblue_ltsb.171013-1838)             C:\Windows\system32\urlmon.dll                               
usp10.dll                                 Uniscribe Unicode script processor                                                0          0          0                       0                     0x75D80000  643072      Microsoft Corporation                                Microsoft® Uniscribe Unicode script processor                 1.0626.7601.23894 (win7sp1_ldr.170816-0600)             C:\Windows\system32\usp10.dll                                
rpcrt4.dll                                Remote Procedure Call Runtime                                                     0          0          0                       0                     0x75AB0000  663552      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\rpcrt4.dll                               
comctl32.dll                              User Experience Controls Library                                                  0          0          0                       0                     0x75A20000  540672      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.10 (win7_rtm.090713-1255)                             C:\Windows\system32\comctl32.dll                             
wintrust.dll                              Microsoft Trust Verification APIs                                                 0          0          0                       0                     0x759F0000  192512      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23769 (win7sp1_ldr.170412-0600)                C:\Windows\system32\wintrust.dll                             
imm32.dll                                 Multi-User Windows IMM32 API Client DLL                                           0          0          0                       0                     0x75C70000  126976      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\imm32.dll                                
msvcrt.dll                                Windows NT CRT DLL                                                                0          0          0                       0                     0x75BC0000  704512      Microsoft Corporation                                Microsoft® Windows® Operating System                            7.0.7601.17744 (win7sp1_gdr.111215-1535)                C:\Windows\system32\msvcrt.dll                               
shlwapi.dll                               Shell Light-weight Utility Library                                                0          0          0                       0                     0x75B60000  356352      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\shlwapi.dll                              
farflt.sys                                Malwarebytes Anti-Ransomware Protection                                           0          0          0                       0                     0x81AA5000  94208       Malwarebytes                                         Malwarebytes Anti-Ransomware Protection                         3.0.0.289                                               C:\Windows\system32\drivers\farflt.sys                       
dump_iaStorV.sys                                                                                                            0          0          0                       0                     0x91D24000  897024                                                                                                                           6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\dump_iastorv.sys                 
dump_dumpfve.sys                                                                                                            0          0          0                       0                     0x91C00000  69632                                                                                                                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\dump_dumpfve.sys                 
win32k.sys                                Multi-User Win32 Driver                                                           0          0          0                       0                     0x93120000  2482176     Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\win32k.sys                               
portcls.sys                               Port Class (Class Driver for Port/Miniport Devices)                               0          0          0                       0                     0x91CCF000  192512      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\portcls.sys                      
drmk.sys                                  Microsoft Trusted Audio Drivers                                                   0          0          0                       0                     0x91CFE000  102400      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.19091 (win7sp1_gdr.151208-0600)                C:\Windows\system32\drivers\drmk.sys                         
crashdmp.sys                              Crash Dump Driver                                                                 0          0          0                       0                     0x91D17000  53248       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\crashdmp.sys                     
cdd.dll                                   Canonical Display Driver                                                          0          0          0                       0                     0x933C0000  122880      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23809 (win7sp1_ldr.170516-0600)                C:\Windows\system32\cdd.dll                                  
USBD.SYS                                  Universal Serial Bus Driver                                                       0          0          0                       0                     0x90017000  8192        Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23933 (win7sp1_ldr.171017-1700)                C:\Windows\system32\drivers\usbd.sys                         
dc3d.sys                                  Filter Driver for Identification of Microsoft Hardware Wireless Mouse and Keybo   0          0          0                       0                     0x8F243000  77824       Microsoft Corporation                                Microsoft Mouse and Keyboard Center                             9.9.114.0                                               C:\Windows\system32\drivers\dc3d.sys                         
Dxapi.sys                                 DirectX API Driver                                                                0          0          0                       0                     0x91C11000  40960       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\dxapi.sys                        
monitor.sys                               Monitor Driver                                                                    0          0          0                       0                     0x8F221000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\monitor.sys                      
TSDDD.dll                                 Framebuffer Display Driver                                                        0          0          0                       0                     0x93390000  36864       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\tsddd.dll                                
HdAudio.sys                               High Definition Audio Function Driver                                             0          0          0                       0                     0x91C7F000  327680      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\hdaudio.sys                      
raspptp.sys                               Peer-to-Peer Tunneling Protocol                                                   0          0          0                       0                     0x90000000  94208       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\raspptp.sys                      
kbdclass.sys                              Keyboard Class Driver                                                             0          0          0                       0                     0x8AE0E000  53248       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\kbdclass.sys                     
mouclass.sys                              Mouse Class Driver                                                                0          0          0                       0                     0x8AC27000  53248       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\mouclass.sys                     
ndistapi.sys                              NDIS 3.0 connection wrapper driver                                                0          0          0                       0                     0x97E1D000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\ndistapi.sys                     
ndiswan.sys                               MS PPP Framing Driver (Strong Encryption)                                         0          0          0                       0                     0x827D8000  139264      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\ndiswan.sys                      
raspppoe.sys                              RAS PPPoE mini-port/call-manager driver                                           0          0          0                       0                     0x901E7000  98304       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\raspppoe.sys                     
umbus.sys                                 User-Mode Bus Enumerator                                                          0          0          0                       0                     0x91C1C000  57344       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\umbus.sys                        
usbhub.sys                                Default Hub Driver for USB                                                        0          0          0                       0                     0x91C2A000  278528      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23933 (win7sp1_ldr.171017-1700)                C:\Windows\system32\drivers\usbhub.sys                       
NDProxy.SYS                               NDIS Proxy                                                                        0          0          0                       0                     0x91C6E000  69632       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\ndproxy.sys                      
swenum.sys                                Plug and Play Software Device Enumerator                                          0          0          0                       0                     0x97E28000  8192        Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\swenum.sys                       
DDDriver32Dcsa.sys                        DDDriver.sys                                                                      0          0          0                       0                     0x983F7000  36864       Dell Inc.                                            Dell Diags Device Driver                                        1.4.2.0                                                 C:\Windows\system32\drivers\dddriver32dcsa.sys               
DellProf.sys                              DellProf.sys                                                                      0          0          0                       0                     0x8ABF3000  40960       Dell Computer Corporation                            Dell System Analyzer Control Device                             3, 0, 1, 4                                              C:\Windows\system32\drivers\dellprof.sys                     
mrxsmb20.sys                              Longhorn SMB 2.0 Redirector                                                       0          0          0                       0                     0x9A1C2000  114688      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\drivers\mrxsmb20.sys                     
srv2.sys                                  Smb 2.0 Server driver                                                             0          0          0                       0                     0x81A02000  331776      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23913 (win7sp1_ldr.170907-0600)                C:\Windows\system32\drivers\srv2.sys                         
giveio.sys                                                                                                                  0          0          0                       0                     0x81ABD000  4096                                                                                                                             6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\giveio.sys                               
mpsdrv.sys                                Microsoft Protection Service Driver                                               0          0          0                       0                     0x9A151000  73728       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\mpsdrv.sys                       
mrxsmb.sys                                Windows NT SMB Minirdr                                                            0          0          0                       0                     0x9A163000  143360      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\drivers\mrxsmb.sys                       
mrxsmb10.sys                              Longhorn SMB Downlevel SubRdr                                                     0          0          0                       0                     0x9A186000  245760      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23915 (win7sp1_ldr.170913-0600)                C:\Windows\system32\drivers\mrxsmb10.sys                     
WudfPf.sys                                Windows Driver Foundation - User-mode Driver Framework Platform Driver            0          0          0                       0                     0x81B68000  81920       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16384 (win8_rtm.120725-1247)                   C:\Windows\system32\drivers\wudfpf.sys                       
mbamswissarmy.sys                         Malwarebytes SwissArmy                                                            0          0          0                       0                     0x81B7C000  233472      Malwarebytes                                         Malwarebytes SwissArmy                                          4.2.0.140                                               C:\Windows\system32\drivers\mbamswissarmy.sys                
WUDFRd.sys                                Windows Driver Foundation - User-mode Driver Framework Reflector                  0          0          0                       0                     0x81BB5000  176128      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.2.9200.16384 (win8_rtm.120725-1247)                   C:\Windows\system32\drivers\wudfrd.sys                       
peauth.sys                                Protected Environment Authentication and Authorization Export Driver              0          0          0                       0                     0x81ABE000  622592      Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23471 (win7sp1_ldr.160614-0600)                C:\Windows\system32\drivers\peauth.sys                       
speedfan.sys                              SpeedFan x32 Driver                                                               0          0          0                       0                     0x81B56000  20480       Almico Software                                      SpeedFan                                                        X2.03.11                                                c:\windows\system32\speedfan.sys                             
tcpipreg.sys                              TCP/IP Registry Compatibility Driver                                              0          0          0                       0                     0x81B5B000  53248       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23496 (win7sp1_ldr.160707-0600)                C:\Windows\system32\drivers\tcpipreg.sys                     
bowser.sys                                NT Lan Manager Datagram Receiver Driver                                           0          0          0                       0                     0x9A139000  98304       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.23567 (win7sp1_ldr.161005-0600)                C:\Windows\system32\drivers\bowser.sys                       
WirelessKeyboardFilter.sys                WirelessKeyboardFilter                                                            0          0          0                       0                     0x8F280000  40960       Microsoft Corporation                                Microsoft Wireless Keyboard Filter Driver                       1.0.103.0                                               C:\Windows\system32\drivers\wirelesskeyboardfilter.sys       
mouhid.sys                                HID Mouse Filter Driver                                                           0          0          0                       0                     0x8F28A000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\mouhid.sys                       
point32.sys                               Point32k.sys                                                                      0          0          0                       0                     0x8F295000  65536       Microsoft Corporation                                Microsoft Mouse and Keyboard Center                             9.9.114.0                                               C:\Windows\system32\drivers\point32.sys                      
HIDPARSE.SYS                              Hid Parsing Library                                                               0          0          0                       0                     0x8FE07000  28672       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.18199 (win7sp1_gdr.130702-1534)                C:\Windows\system32\drivers\hidparse.sys                     
hidusb.sys                                USB Miniport Driver for Input Devices                                             0          0          0                       0                     0x8F256000  45056       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.17514 (win7sp1_rtm.101119-1850)                C:\Windows\system32\drivers\hidusb.sys                       
kbdhid.sys                                HID Keyboard Filter Driver                                                        0          0          0                       0                     0x8F274000  49152       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\kbdhid.sys                       
aswStm.sys                                Stream Filter                                                                     0          0          0                       0                     0x9A04D000  143360      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswstm.sys                       
lltdio.sys                                Link-Layer Topology Mapper I/O Driver                                             0          0          0                       0                     0x9A070000  65536       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\lltdio.sys                       
rspndr.sys                                Link-Layer Topology Responder Driver for NDIS 6                                   0          0          0                       0                     0x9A080000  77824       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7600.16385 (win7_rtm.090713-1255)                   C:\Windows\system32\drivers\rspndr.sys                       
USBSTOR.SYS                               USB Mass Storage Class Driver                                                     0          0          0                       0                     0x8F2D0000  94208       Microsoft Corporation                                Microsoft® Windows® Operating System                            6.1.7601.19144 (win7sp1_gdr.160203-0600)                C:\Windows\system32\drivers\usbstor.sys                      
aswMonFlt.sys                             Avast File System Minifilter for Windows 2003/Vista                               0          0          0                       0                     0x8F2A5000  143360      AVAST Software                                       Avast Antivirus                                                 18.2.3820.0                                             C:\Windows\system32\drivers\aswmonflt.sys                    
MbamChameleon.sys                         Malwarebytes Chameleon                                                            0          0          0                       0                     0x9A024000  167936      Malwarebytes                                         Malwarebytes Chameleon                                          3.0.0.202                                               C:\Windows\system32\drivers\mbamchameleon.sys                
 

 

 

 

 

Ran DPC Latency Checker, there were no red columns, everything was green and well under 500us


  • 0

#12
RKinner
Posted 18 March 2018 - 10:42 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

See if you can get this to install:

 

https://downloadcent...dows-Vista-exe-


  • 0

#13
70delboy
Posted 18 March 2018 - 11:24 AM

70delboy

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 165 posts

Says 'this computer does not meet minimum requirements for this application' and won't install


  • 0

#14
RKinner
Posted 18 March 2018 - 02:11 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

See if you find an update for:

 

Intel® Graphics Media Accelerator Driver

 

also tho I don't see it in the install list:

 

Intel Matrix Storage Manager driver

 

Don't trust the intel update checker program.  It never seems to find anything.

 

Also look for a new intel chipset utility.

 

In the Search box type:  dxdiag

wait for it to find it.  Right click on dxdiag.exe and Run As Admin.
If you have a 64 bit system then click on Run 64 bit DxDiag.
Once it finishes (green line in bottom left goes away)

Save All Information.  Point it at your desktop and it should save it as dxdiag.txt.

Exit

Double click on dxdiag.txt and copy and paste the text into a reply.


  • 0

#15
70delboy
Posted 19 March 2018 - 10:51 AM

70delboy

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 165 posts

Can't find any newer driver for those shown, checked with Dell Driver Update and again no update available.

 

------------------
System Information
------------------
Time of this report: 3/19/2018, 16:31:09
       Machine name: DEL-PC
   Operating System: Windows 7 Home Premium 32-bit (6.1, Build 7601) Service Pack 1 (7601.win7sp1_ldr.170913-0600)
           Language: English (Regional Setting: English)
System Manufacturer: Dell Inc.
       System Model: Inspiron 545
               BIOS: Phoenix - AwardBIOS v6.00PG
          Processor: Pentium® Dual-Core  CPU      E5300  @ 2.60GHz (2 CPUs), ~2.6GHz
             Memory: 3072MB RAM
Available OS Memory: 3062MB RAM
          Page File: 1726MB used, 4393MB available
        Windows Dir: C:\Windows
    DirectX Version: DirectX 11
DX Setup Parameters: Not found
   User DPI Setting: 120 DPI (125 percent)
 System DPI Setting: 96 DPI (100 percent)
    DWM DPI Scaling: Disabled
     DxDiag Version: 6.01.7601.17514 32bit Unicode

------------
DxDiag Notes
------------
      Display Tab 1: No problems found.
        Sound Tab 1: No problems found.
          Input Tab: No problems found.

--------------------
DirectX Debug Levels
--------------------
Direct3D:    0/4 (retail)
DirectDraw:  0/4 (retail)
DirectInput: 0/5 (retail)
DirectMusic: 0/5 (retail)
DirectPlay:  0/9 (retail)
DirectSound: 0/5 (retail)
DirectShow:  0/6 (retail)

---------------
Display Devices
---------------
          Card name: Intel® G33/G31 Express Chipset Family
       Manufacturer: Intel Corporation
          Chip type: Intel® GMA 3100
           DAC type: Internal
         Device Key: Enum\PCI\VEN_8086&DEV_29C2&SUBSYS_02E01028&REV_02
     Display Memory: 256 MB
   Dedicated Memory: 0 MB
      Shared Memory: 256 MB
       Current Mode: 1920 x 1080 (32 bit) (60Hz)
       Monitor Name: LG 24EN43(Analog)
      Monitor Model: 24EN43
         Monitor Id: GSM59DD
        Native Mode: 1920 x 1080(p) (60.000Hz)
        Output Type: HD15
        Driver Name: igdumdx32.dll
Driver File Version: 8.14.0010.1930 (English)
     Driver Version: 8.15.10.1930
        DDI Version: 9Ex
       Driver Model: WDDM 1.0
  Driver Attributes: Final Retail
   Driver Date/Size: 9/23/2009 18:14:54, 536576 bytes
        WHQL Logo'd: Yes
    WHQL Date Stamp:
  Device Identifier: {D7B78E66-6A82-11CF-1274-EA22A3C2C535}
          Vendor ID: 0x8086
          Device ID: 0x29C2
          SubSys ID: 0x02E01028
        Revision ID: 0x0002
 Driver Strong Name: oem5.inf:Intel.Mfg:iBLB0:8.15.10.1930:pci\ven_8086&dev_29c2
     Rank Of Driver: 00F42001
        Video Accel: ModeMPEG2_A ModeMPEG2_C
   Deinterlace Caps: {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(UYVY,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(NV12,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC1,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC3,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
                     {AEDC1D5D-8546-440E-AAB2-B69FA725AF82}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_FieldAdaptive
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend DeinterlaceTech_BOBVerticalStretch
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC4,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY VideoProcess_AlphaBlend
       D3D9 Overlay: Not Supported
            DXVA-HD: Not Supported
       DDraw Status: Enabled
         D3D Status: Enabled
         AGP Status: Enabled

-------------
Sound Devices
-------------
            Description: Speakers (High Definition Audio Device)
 Default Sound Playback: Yes
 Default Voice Playback: Yes
            Hardware ID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0888&SUBSYS_102802E0&REV_1000
        Manufacturer ID: 1
             Product ID: 65535
                   Type: WDM
            Driver Name: HdAudio.sys
         Driver Version: 6.01.7601.17514 (English)
      Driver Attributes: Final Retail
            WHQL Logo'd: Yes
          Date and Size: 11/20/2010 10:00:21, 304128 bytes
            Other Files:
        Driver Provider: Microsoft
         HW Accel Level: Basic
              Cap Flags: 0xF1F
    Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
 Static/Strm HW 3D Bufs: 0, 0
              HW Memory: 0
       Voice Management: No
 EAX™ 2.0 Listen/Src: No, No
   I3DL2™ Listen/Src: No, No
Sensaura™ ZoomFX™: No

---------------------
Sound Capture Devices
---------------------
-------------------
DirectInput Devices
-------------------
      Device Name: Mouse
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a

      Device Name: Keyboard
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a

      Device Name: Microsoft Hardware USB Mouse
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x045E, 0x07B2
        FF Driver: n/a

      Device Name: Micr
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x045E, 0x07B2
        FF Driver: n/a

      Device Name: Micr
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x045E, 0x07B2
        FF Driver: n/a

      Device Name: Micr
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x045E, 0x07B2
        FF Driver: n/a

      Device Name: Micr
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x045E, 0x07B2
        FF Driver: n/a

Poll w/ Interrupt: No

-----------
USB Devices
-----------
+ USB Root Hub
| Vendor/Product ID: 0x8086, 0x2937
| Matching Device ID: usb\root_hub
| Service: usbhub
| Driver: usbhub.sys, 10/18/2017 01:55:51, 259584 bytes
| Driver: usbd.sys, 10/18/2017 01:55:25, 6016 bytes

----------------
Gameport Devices
----------------

------------
PS/2 Devices
------------
+ Wireless Keyboard Filter Device
| Vendor/Product ID: 0x045E, 0x07B2
| Matching Device ID: hid\vid_045e&pid_07b2&mi_00
| Upper Filters: WirelessKeyboardFilter
| Service: kbdhid
| Driver: WirelessKeyboardFilter.sys, 7/22/2016 06:19:58, 44776 bytes
| Driver: kbdhid.sys, 11/20/2010 09:50:10, 28160 bytes
| Driver: kbdclass.sys, 7/14/2009 01:20:36, 42576 bytes
|
+ Terminal Server Keyboard Driver
| Matching Device ID: root\rdp_kbd
| Upper Filters: kbdclass
| Service: TermDD
| Driver: i8042prt.sys, 7/13/2009 23:11:24, 80896 bytes
| Driver: kbdclass.sys, 7/14/2009 01:20:36, 42576 bytes
|
+ Microsoft USB Dual Receiver Wireless Mouse (Mouse and Keyboard Center)
| Vendor/Product ID: 0x045E, 0x07B2
| Matching Device ID: hid\vid_045e&pid_07b2&mi_01&col01
| Upper Filters: Point32
| Service: mouhid
| Driver: point32.sys, 8/15/2016 13:42:32, 63280 bytes
| Driver: mouhid.sys, 7/13/2009 23:45:08, 26112 bytes
| Driver: mouclass.sys, 7/14/2009 01:20:44, 41552 bytes
| Driver: WdfCoInstaller01011.dll, 12/9/2015 14:19:54, 1637784 bytes
|
+ Terminal Server Mouse Driver
| Matching Device ID: root\rdp_mou
| Upper Filters: mouclass
| Service: TermDD
| Driver: termdd.sys, 11/20/2010 12:30:12, 53120 bytes
| Driver: sermouse.sys, 7/13/2009 23:45:08, 19968 bytes
| Driver: mouclass.sys, 7/14/2009 01:20:44, 41552 bytes

------------------------
Disk & DVD/CD-ROM Drives
------------------------
      Drive: C:
 Free Space: 41.7 GB
Total Space: 238.5 GB
File System: NTFS
      Model: Samsung SSD 850 EVO 250G

      Drive: E:
      Model: PLDS DVD+-RW DH-16AAS
     Driver: c:\windows\system32\drivers\cdrom.sys, 6.01.7601.17514 (English), 11/20/2010 08:38:10, 108544 bytes

--------------
System Devices
--------------
     Name: Intel® ICH9 Family PCI Express Root Port 6 - 294A
Device ID: PCI\VEN_8086&DEV_294A&SUBSYS_294A8086&REV_02\3&2411E6FE&1&E5
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 12:30:06, 153984 bytes

     Name: Intel® ICH9 Family USB Universal Host Controller - 2936
Device ID: PCI\VEN_8086&DEV_2936&SUBSYS_02E01028&REV_02\3&2411E6FE&1&EA
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:27, 24576 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Intel® 82801 PCI Bridge - 244E
Device ID: PCI\VEN_8086&DEV_244E&SUBSYS_02E01028&REV_92\3&2411E6FE&1&F0
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 12:30:06, 153984 bytes

     Name: Intel® ICH9 Family PCI Express Root Port 1 - 2940
Device ID: PCI\VEN_8086&DEV_2940&SUBSYS_29408086&REV_02\3&2411E6FE&1&E0
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 12:30:06, 153984 bytes

     Name: Intel® ICH9 Family USB Universal Host Controller - 2935
Device ID: PCI\VEN_8086&DEV_2935&SUBSYS_02E01028&REV_02\3&2411E6FE&1&E9
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:27, 24576 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Realtek PCIe FE Family Controller
Device ID: PCI\VEN_10EC&DEV_8136&SUBSYS_02E01028&REV_02\4&22F9660C&0&00E5
   Driver: n/a

     Name: High Definition Audio Controller
Device ID: PCI\VEN_8086&DEV_293E&SUBSYS_02E01028&REV_02\3&2411E6FE&1&D8
   Driver: C:\Windows\system32\DRIVERS\hdaudbus.sys, 6.01.7601.17514 (English), 11/20/2010 09:59:29, 108544 bytes

     Name: Intel® ICH9 Family USB Universal Host Controller - 2934
Device ID: PCI\VEN_8086&DEV_2934&SUBSYS_02E01028&REV_02\3&2411E6FE&1&E8
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:27, 24576 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Intel® ICH9 Family USB2 Enhanced Host Controller - 293C
Device ID: PCI\VEN_8086&DEV_293C&SUBSYS_02E01028&REV_02\3&2411E6FE&1&D7
   Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 46592 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Intel® ICH9 Family SMBus Controller - 2930
Device ID: PCI\VEN_8086&DEV_2930&SUBSYS_02E01028&REV_02\3&2411E6FE&1&FB
   Driver: n/a

     Name: Intel® ICH9 Family USB2 Enhanced Host Controller - 293A
Device ID: PCI\VEN_8086&DEV_293A&SUBSYS_02E01028&REV_02\3&2411E6FE&1&EF
   Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 46592 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Intel® G33/G31 Express Chipset Family
Device ID: PCI\VEN_8086&DEV_29C2&SUBSYS_02E01028&REV_02\3&2411E6FE&1&10
   Driver: C:\Windows\system32\DRIVERS\igdkmd32.sys, 8.14.0010.1930 (English), 9/23/2009 18:18:14, 4808192 bytes
   Driver: C:\Windows\system32\igdumd32.dll, 8.14.0010.1930 (English), 9/23/2009 18:18:08, 3829760 bytes
   Driver: C:\Windows\system32\iglhxs32.vp, 9/23/2009 18:45:20, 39440 bytes
   Driver: C:\Windows\system32\iglhxo32.vp, 9/23/2009 17:45:12, 60015 bytes
   Driver: C:\Windows\system32\iglhxc32.vp, 9/23/2009 17:45:12, 60226 bytes
   Driver: C:\Windows\system32\iglhxg32.vp, 9/23/2009 17:45:12, 60254 bytes
   Driver: C:\Windows\system32\iglhxa32.vp, 9/23/2009 17:45:12, 1090 bytes
   Driver: C:\Windows\system32\iglhxa32.cpa, 9/23/2009 17:45:12, 1921265 bytes
   Driver: C:\Windows\system32\hccutils.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:04, 94208 bytes
   Driver: C:\Windows\system32\igfxsrvc.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:24, 51712 bytes
   Driver: C:\Windows\system32\igfxsrvc.exe, 8.14.0010.1930 (English), 9/23/2009 18:30:48, 252952 bytes
   Driver: C:\Windows\system32\igfxpph.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:42, 199680 bytes
   Driver: C:\Windows\system32\igfxcpl.cpl, 8.14.0010.1930 (English), 9/23/2009 17:49:34, 119296 bytes
   Driver: C:\Windows\system32\igfxcfg.exe, 8.14.0010.1930 (English), 9/23/2009 18:30:50, 672792 bytes
   Driver: C:\Windows\system32\igfxdev.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:00, 218112 bytes
   Driver: C:\Windows\system32\igfxdo.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:10, 130048 bytes
   Driver: C:\Windows\system32\igfxtray.exe, 8.14.0010.1930 (English), 9/23/2009 18:30:48, 141848 bytes
   Driver: C:\Windows\system32\hkcmd.exe, 8.14.0010.1930 (English), 9/23/2009 18:30:48, 173592 bytes
   Driver: C:\Windows\system32\igfxress.dll, 8.14.0010.1930 (English), 9/23/2009 17:48:52, 5702656 bytes
   Driver: C:\Windows\system32\igfxpers.exe, 8.14.0010.1930 (English), 9/23/2009 18:30:48, 150552 bytes
   Driver: C:\Windows\system32\igfxTMM.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:42, 257536 bytes
   Driver: C:\Windows\system32\TVWSetup.exe, 1.00.0001.0000 (English), 9/23/2009 18:30:50, 8198680 bytes
   Driver: C:\Windows\system32\igfxext.exe, 8.14.0010.1930 (English), 9/23/2009 18:30:48, 173080 bytes
   Driver: C:\Windows\system32\igfxexps.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:36, 23552 bytes
   Driver: C:\Windows\system32\oemdspif.dll, 8.14.0010.1930 (English), 9/23/2009 17:49:38, 59392 bytes
   Driver: C:\Windows\system32\igfxrara.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:08, 252416 bytes
   Driver: C:\Windows\system32\igfxrchs.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:10, 178176 bytes
   Driver: C:\Windows\system32\igfxrcht.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:10, 179712 bytes
   Driver: C:\Windows\system32\igfxrdan.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:10, 280576 bytes
   Driver: C:\Windows\system32\igfxrdeu.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:10, 303616 bytes
   Driver: C:\Windows\system32\igfxrenu.lrc, 8.14.0010.1930 (English), 9/23/2009 17:48:52, 275968 bytes
   Driver: C:\Windows\system32\igfxresp.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:12, 303104 bytes
   Driver: C:\Windows\system32\igfxrfin.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:12, 281088 bytes
   Driver: C:\Windows\system32\igfxrfra.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:12, 303616 bytes
   Driver: C:\Windows\system32\igfxrheb.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:14, 249856 bytes
   Driver: C:\Windows\system32\igfxrita.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:14, 304640 bytes
   Driver: C:\Windows\system32\igfxrjpn.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:14, 206848 bytes
   Driver: C:\Windows\system32\igfxrkor.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:14, 205312 bytes
   Driver: C:\Windows\system32\igfxrnld.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:16, 299520 bytes
   Driver: C:\Windows\system32\igfxrnor.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:16, 280064 bytes
   Driver: C:\Windows\system32\igfxrplk.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:16, 287744 bytes
   Driver: C:\Windows\system32\igfxrptb.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:16, 289280 bytes
   Driver: C:\Windows\system32\igfxrptg.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:18, 294912 bytes
   Driver: C:\Windows\system32\igfxrrus.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:18, 291328 bytes
   Driver: C:\Windows\system32\igfxrsky.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:18, 282624 bytes
   Driver: C:\Windows\system32\igfxrslv.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:18, 277504 bytes
   Driver: C:\Windows\system32\igfxrsve.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:18, 282624 bytes
   Driver: C:\Windows\system32\igfxrtha.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:20, 262656 bytes
   Driver: C:\Windows\system32\igfxrcsy.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:10, 282624 bytes
   Driver: C:\Windows\system32\igfxrell.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:12, 310784 bytes
   Driver: C:\Windows\system32\igfxrhun.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:14, 288256 bytes
   Driver: C:\Windows\system32\igfxrtrk.lrc, 8.14.0010.1930 (English), 9/23/2009 17:52:20, 279040 bytes
   Driver: C:\Windows\system32\ig4icd32.dll, 8.14.0010.1930 (English), 9/23/2009 17:58:12, 4104192 bytes
   Driver: C:\Windows\system32\ig4dev32.dll, 8.14.0010.1930 (English), 9/23/2009 17:58:38, 2686976 bytes
   Driver: C:\Windows\system32\igdumdx32.dll, 8.14.0010.1930 (English), 9/23/2009 18:14:54, 536576 bytes
   Driver: C:\Windows\system32\igfxCoIn_v1930.dll, 1.01.0017.0000 (English), 9/23/2009 18:27:44, 155648 bytes

     Name: Intel® ICH9 Family USB Universal Host Controller - 2939
Device ID: PCI\VEN_8086&DEV_2939&SUBSYS_02E01028&REV_02\3&2411E6FE&1&D2
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:27, 24576 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Intel® G33/G31/P35/P31 Express Chipset PCI Express Root Port - 29C1
Device ID: PCI\VEN_8086&DEV_29C1&SUBSYS_02E01028&REV_02\3&2411E6FE&1&08
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (English), 11/20/2010 12:30:06, 153984 bytes

     Name: Intel® ICH9 Family USB Universal Host Controller - 2938
Device ID: PCI\VEN_8086&DEV_2938&SUBSYS_02E01028&REV_02\3&2411E6FE&1&D1
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:27, 24576 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Intel® ICH9R LPC Interface Controller - 2916
Device ID: PCI\VEN_8086&DEV_2916&SUBSYS_02E01028&REV_02\3&2411E6FE&1&F8
   Driver: C:\Windows\system32\DRIVERS\msisadrv.sys, 6.01.7600.16385 (English), 7/14/2009 01:20:43, 13888 bytes

     Name: Intel® G33/G31/P35/P31 Express Chipset Processor to I/O Controller - 29C0
Device ID: PCI\VEN_8086&DEV_29C0&SUBSYS_02E01028&REV_02\3&2411E6FE&1&00
   Driver: n/a

     Name: Intel® ICH9 Family USB Universal Host Controller - 2937
Device ID: PCI\VEN_8086&DEV_2937&SUBSYS_02E01028&REV_02\3&2411E6FE&1&D0
   Driver: C:\Windows\system32\drivers\usbuhci.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:27, 24576 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:30, 285696 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.23933 (English), 10/18/2017 01:55:51, 259584 bytes

     Name: Intel® ICH8R/ICH9R/ICH10R/DO SATA RAID Controller
Device ID: PCI\VEN_8086&DEV_2822&SUBSYS_02E01028&REV_02\3&2411E6FE&1&FA
   Driver: C:\Windows\system32\DRIVERS\iaStorV.sys, 8.06.0002.1014 (English), 3/11/2011 05:38:51, 332160 bytes

------------------
DirectShow Filters
------------------

DirectShow Filters:
WMAudio Decoder DMO,0x00800800,1,1,WMADMOD.DLL,6.01.7601.19091
WMAPro over S/PDIF DMO,0x00600800,1,1,WMADMOD.DLL,6.01.7601.19091
WMSpeech Decoder DMO,0x00600800,1,1,WMSPDMOD.DLL,6.01.7601.19091
MP3 Decoder DMO,0x00600800,1,1,mp3dmod.dll,6.01.7601.19091
Mpeg4s Decoder DMO,0x00800001,1,1,mp4sdecd.dll,6.01.7601.19091
WMV Screen decoder DMO,0x00600800,1,1,wmvsdecd.dll,6.01.7601.19091
WMVideo Decoder DMO,0x00800001,1,1,wmvdecod.dll,6.01.7601.19091
Mpeg43 Decoder DMO,0x00800001,1,1,mp43decd.dll,6.01.7601.19091
Mpeg4 Decoder DMO,0x00800001,1,1,mpg4decd.dll,6.01.7601.19091
WMT VIH2 Fix,0x00200000,1,1,WLXVAFilt.dll,14.00.8081.0709
Record Queue,0x00200000,1,1,WLXVAFilt.dll,14.00.8081.0709
WMT Switch Filter,0x00200000,1,1,WLXVAFilt.dll,14.00.8081.0709
WMT Virtual Renderer,0x00200000,1,0,WLXVAFilt.dll,14.00.8081.0709
WMT DV Extract,0x00200000,1,1,WLXVAFilt.dll,14.00.8081.0709
WMT Virtual Source,0x00200000,0,1,WLXVAFilt.dll,14.00.8081.0709
WMT Sample Information Filter,0x00200000,1,1,WLXVAFilt.dll,14.00.8081.0709
DV Muxer,0x00400000,0,0,qdv.dll,6.06.7601.17514
Color Space Converter,0x00400001,1,1,quartz.dll,6.06.7601.23709
WM ASF Reader,0x00400000,0,0,qasf.dll,12.00.7601.19091
Screen Capture filter,0x00200000,0,1,wmpsrcwp.dll,12.00.7601.17514
AVI Splitter,0x00600000,1,1,quartz.dll,6.06.7601.23709
VGA 16 Color Ditherer,0x00400000,1,1,quartz.dll,6.06.7601.23709
SBE2MediaTypeProfile,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft DTV-DVD Video Decoder,0x005fffff,2,4,msmpeg2vdec.dll,12.00.9200.17037
AC3 Parser Filter,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
StreamBufferSink,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft TV Captions Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
MJPEG Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.23709
CBVA DMO wrapper filter,0x00200000,1,1,cbva.dll,6.01.7601.17514
MPEG-I Stream Splitter,0x00600000,1,2,quartz.dll,6.06.7601.23709
SAMI (CC) Parser,0x00400000,1,1,quartz.dll,6.06.7601.23709
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514
MPEG-2 Splitter,0x005fffff,1,0,mpg2splt.ax,6.06.7601.17528
Closed Captions Analysis Filter,0x00200000,2,5,cca.dll,6.06.7601.17514
SBE2FileScan,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft MPEG-2 Video Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.19091
Internal Script Command Renderer,0x00800001,1,0,quartz.dll,6.06.7601.23709
MPEG Audio Decoder,0x03680001,1,1,quartz.dll,6.06.7601.23709
DV Splitter,0x00600000,1,2,qdv.dll,6.06.7601.17514
Video Mixing Renderer 9,0x00200000,1,0,quartz.dll,6.06.7601.23709
Microsoft MPEG-2 Encoder,0x00200000,2,1,msmpeg2enc.dll,6.01.7601.19091
ACM Wrapper,0x00600000,1,1,quartz.dll,6.06.7601.23709
Video Renderer,0x00800001,1,0,quartz.dll,6.06.7601.23709
MPEG-2 Video Stream Analyzer,0x00200000,0,0,sbe.dll,6.06.7601.17528
Line 21 Decoder,0x00600000,1,1,qdvd.dll,6.06.7601.23471
Video Port Manager,0x00600000,2,1,quartz.dll,6.06.7601.23709
Video Renderer,0x00400000,1,0,quartz.dll,6.06.7601.23709
File Writer,0x00200000,1,0,WLXVAFilt.dll,14.00.8081.0709
VPS Decoder,0x00200000,0,0,WSTPager.ax,6.06.7601.17514
WM ASF Writer,0x00400000,0,0,qasf.dll,12.00.7601.19091
VBI Surface Allocator,0x00600000,1,1,vbisurf.ax,6.01.7601.17514
File writer,0x00200000,1,0,qcap.dll,6.06.7601.17514
iTV Data Sink,0x00600000,1,0,itvdata.dll,6.06.7601.17514
iTV Data Capture filter,0x00600000,1,1,itvdata.dll,6.06.7601.17514
WAV Dest,0x00200000,0,0,wavdest.ax,9.00.0000.0000
DVD Navigator,0x00200000,0,3,qdvd.dll,6.06.7601.23471
Microsoft TV Subtitles Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
Overlay Mixer2,0x00200000,1,1,qdvd.dll,6.06.7601.23471
AVI Draw,0x00600064,9,1,quartz.dll,6.06.7601.23709
RDP DShow Redirection Filter,0xffffffff,1,0,DShowRdpFilter.dll,
Microsoft MPEG-2 Audio Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.19091
WST Pager,0x00200000,1,1,WSTPager.ax,6.06.7601.17514
MPEG-2 Demultiplexer,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
DV Video Decoder,0x00800000,1,1,qdv.dll,6.06.7601.17514
SampleGrabber,0x00200000,1,1,qedit.dll,6.06.7601.19091
Null Renderer,0x00200000,1,0,qedit.dll,6.06.7601.19091
MPEG-2 Sections and Tables,0x005fffff,1,0,Mpeg2Data.ax,6.06.7601.17514
Microsoft AC3 Encoder,0x00200000,1,1,msac3enc.dll,6.01.7601.17514
StreamBufferSource,0x00200000,0,0,sbe.dll,6.06.7601.17528
Smart Tee,0x00200000,1,2,qcap.dll,6.06.7601.17514
Overlay Mixer,0x00200000,0,0,qdvd.dll,6.06.7601.23471
AVI Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.23709
NetBridge,0x00200000,2,0,netbridge.dll,6.01.7601.17514
AVI/WAV File Source,0x00400000,0,2,quartz.dll,6.06.7601.23709
Wave Parser,0x00400000,1,1,quartz.dll,6.06.7601.23709
MIDI Parser,0x00400000,1,1,quartz.dll,6.06.7601.23709
Multi-file Parser,0x00400000,1,1,quartz.dll,6.06.7601.23709
File stream renderer,0x00400000,1,1,quartz.dll,6.06.7601.23709
Microsoft DTV-DVD Audio Decoder,0x005fffff,1,1,msmpeg2adec.dll,6.01.7601.23285
StreamBufferSink2,0x00200000,0,0,sbe.dll,6.06.7601.17528
AVI Mux,0x00200000,1,0,qcap.dll,6.06.7601.17514
Line 21 Decoder 2,0x00600002,1,1,quartz.dll,6.06.7601.23709
File Source (Async.),0x00400000,0,1,quartz.dll,6.06.7601.23709
File Source (URL),0x00400000,0,1,quartz.dll,6.06.7601.23709
Media Center Extender Encryption Filter,0x00200000,2,2,Mcx2Filter.dll,6.01.7601.17514
AudioRecorder WAV Dest,0x00200000,0,0,WavDest.dll,
AudioRecorder Wave Form,0x00200000,0,0,WavDest.dll,
SoundRecorder Null Renderer,0x00200000,0,0,WavDest.dll,
Infinite Pin Tee Filter,0x00200000,1,1,qcap.dll,6.06.7601.17514
Enhanced Video Renderer,0x00200000,1,0,evr.dll,6.01.7601.23471
BDA MPEG2 Transport Information Filter,0x00200000,2,0,psisrndr.ax,6.06.7601.17669
MPEG Video Decoder,0x40000001,1,1,quartz.dll,6.06.7601.23709

WDM Streaming Tee/Splitter Devices:
Tee/Sink-to-Sink Converter,0x00200000,1,1,ksproxy.ax,6.01.7601.19091

Video Compressors:
WMVideo8 Encoder DMO,0x00600800,1,1,wmvxencd.dll,6.01.7601.19091
WMVideo9 Encoder DMO,0x00600800,1,1,wmvencod.dll,6.01.7601.19091
MSScreen 9 encoder DMO,0x00600800,1,1,wmvsencd.dll,6.01.7601.19091
DV Video Encoder,0x00200000,0,0,qdv.dll,6.06.7601.17514
MJPEG Compressor,0x00200000,0,0,quartz.dll,6.06.7601.23709
Cinepak Codec by Radius,0x00200000,1,1,qcap.dll,6.06.7601.17514
Intel IYUV codec,0x00200000,1,1,qcap.dll,6.06.7601.17514
Intel IYUV codec,0x00200000,1,1,qcap.dll,6.06.7601.17514
Microsoft RLE,0x00200000,1,1,qcap.dll,6.06.7601.17514
Microsoft Video 1,0x00200000,1,1,qcap.dll,6.06.7601.17514

Audio Compressors:
WM Speech Encoder DMO,0x00600800,1,1,WMSPDMOE.DLL,6.01.7601.19091
WMAudio Encoder DMO,0x00600800,1,1,WMADMOE.DLL,6.01.7601.19091
IMA ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.23709
PCM,0x00200000,1,1,quartz.dll,6.06.7601.23709
Microsoft ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.23709
GSM 6.10,0x00200000,1,1,quartz.dll,6.06.7601.23709
CCITT A-Law,0x00200000,1,1,quartz.dll,6.06.7601.23709
CCITT u-Law,0x00200000,1,1,quartz.dll,6.06.7601.23709
MPEG Layer-3,0x00200000,1,1,quartz.dll,6.06.7601.23709

PBDA CP Filters:
PBDA DTFilter,0x00600000,1,1,CPFilters.dll,6.06.7601.19135
PBDA ETFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.19135
PBDA PTFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.19135

Midi Renderers:
Default MidiOut Device,0x00800000,1,0,quartz.dll,6.06.7601.23709
Microsoft GS Wavetable Synth,0x00200000,1,0,quartz.dll,6.06.7601.23709

WDM Streaming Rendering Devices:
HD Audio Speaker,0x00200000,1,1,ksproxy.ax,6.01.7601.19091

BDA Network Providers:
Microsoft ATSC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBS Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBT Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft Network Provider,0x00200000,0,1,MSNP.ax,6.06.7601.17514

Multi-Instance Capable VBI Codecs:
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514

BDA Transport Information Renderers:
BDA MPEG2 Transport Information Filter,0x00600000,2,0,psisrndr.ax,6.06.7601.17669
MPEG-2 Sections and Tables,0x00600000,1,0,Mpeg2Data.ax,6.06.7601.17514

BDA CP/CA Filters:
Decrypt/Tag,0x00600000,1,1,EncDec.dll,6.06.7601.19135
Encrypt/Tag,0x00200000,0,0,EncDec.dll,6.06.7601.19135
PTFilter,0x00200000,0,0,EncDec.dll,6.06.7601.19135
XDS Codec,0x00200000,0,0,EncDec.dll,6.06.7601.19135

WDM Streaming Communication Transforms:
Tee/Sink-to-Sink Converter,0x00200000,1,1,ksproxy.ax,6.01.7601.19091

Audio Renderers:
Speakers (High Definition Audio,0x00200000,1,0,quartz.dll,6.06.7601.23709
Default DirectSound Device,0x00800000,1,0,quartz.dll,6.06.7601.23709
Default WaveOut Device,0x00200000,1,0,quartz.dll,6.06.7601.23709
DirectSound: Speakers (High Definition Audio Device),0x00200000,1,0,quartz.dll,6.06.7601.23709

---------------
EVR Power Information
---------------
Current Setting: {5C67A112-A4C9-483F-B4A7-1D473BECAFDC} (Quality)
  Quality Flags: 2576
    Enabled:
    Force throttling
    Allow half deinterlace
    Allow scaling
    Decode Power Usage: 100
  Balanced Flags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 50
  PowerFlags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 0


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP