Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Antivirus auto-disabled


  • Please log in to reply

#1
zoltain

zoltain

    Member

  • Member
  • PipPipPip
  • 137 posts
Hello,

I'm not sure if I have a virus/malware or not but I have a few different issues that I can't seem to fix. First off about half the time I start my laptop, Microsoft Security Essential's real time protection will be disabled. It is the only antivirus software I leave running all the time.

Another issue I've been having is my wireless connection is acting strangely. It's taking A LOT longer to connect than it has ever before (1-2 min after computer started). I can live with this. The main problem is when I right click the wireless icon on the taskbar (bottom right), and click "troubleshoot problems",I get a message saying an error has occurred. (Path: C:\Windows\diagnostics\system\networking Error Code: 0x80004005). I have attached a picture of the error.

I have run Malwarebytes quick and full scan as well as MSE quick and full scan and neither has found anything. Any help would be greatly appreciated.

Thanks,
Zoltain






OTL logfile created on: 10 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Zach\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United States | Language: ENU | Date Format:

15.98 Gb Total Physical Memory | 13.65 Gb Available Physical Memory | 85.40% Memory free
31.95 Gb Paging File | 29.36 Gb Available in Paging File | 91.87% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.79 Gb Total Space | 65.55 Gb Free Space | 28.16% Space Free | Partition Type: NTFS
Drive D: | 698.54 Gb Total Space | 144.73 Gb Free Space | 20.72% Space Free | Partition Type: NTFS

Computer Name: ZACH-PC | User Name: Zach | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013 (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
PRC - [2013 (OldTimer Tools) -- C:\Users\Zach\Desktop\OTL.exe
PRC - [2013 (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013 (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013 (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013 (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013 (BillP Studios) -- C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2013 (Auslogics) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
PRC - [2013 (Almico Software (www.almico.com)) -- C:\Program Files (x86)\SpeedFan\speedfan.exe
PRC - [2013 (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012 (Western Digital) -- C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
PRC - [2012 (Western Digital) -- C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
PRC - [2012 (Western Digital Technologies, Inc.) -- C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
PRC - [2012 (Western Digital ) -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
PRC - [2012 (Western Digital ) -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
PRC - [2012 (Impulse Point, LLC) -- C:\Program Files (x86)\SafeConnect\scManager.sys
PRC - [2010 (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010 (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010 (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010 () -- C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
PRC - [2010 () -- C:\Program Files (x86)\Hotkey\Hotkey.exe


========== Modules (No Company Name) ==========

MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\c664f44617c6a89edcc171fa8596c89d\System.ServiceProcess.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9a1bc983c28c695729b3e46acdc6933e\System.Management.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013 () -- C:\Program Files (x86)\Auslogics\BoostSpeed\sqlite3.dll
MOD - [2013 () -- C:\Users\Zach\AppData\Local\Temp\sfareca00001.dll
MOD - [2013 () -- C:\Users\Zach\AppData\Local\Temp\sfamcc00001.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013 () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013 () -- C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\8c20095bd7d46cdfa7933eb258a07daa\Accessibility.ni.dll
MOD - [2012 () -- C:\Program Files (x86)\BillP Studios\WinPatrol\sqlite3.dll
MOD - [2010 () -- C:\Program Files (x86)\Hotkey\Hotkey.exe
MOD - [2009 () -- C:\Program Files (x86)\Hotkey\Audiodll.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013 (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013 (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013 (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2013 (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2013 (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2013 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2013 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2013 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2013 (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2013 () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2013 () [Disabled | Stopped] -- C:\Program Files\FileMind\FileMind.Windows.Service.exe -- (Filemind.Windows.Service)
SRV:64bit: - [2012 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2009 (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013 (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013 (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013 (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013 (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013 (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013 (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013 (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013 () [Auto | Stopped] -- C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe -- (SystemStoreService)
SRV - [2012 (Western Digital) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe -- (WDDriveService)
SRV - [2012 (Western Digital ) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe -- (WDRulesService)
SRV - [2012 (Western Digital ) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe -- (WDBackup)
SRV - [2012 (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012 (Impulse Point, LLC) [Auto | Running] -- C:\Program Files (x86)\SafeConnect\scManager.sys -- (SCManager)
SRV - [2010 (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010 (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010 (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010 () [Auto | Running] -- C:\Program Files (x86)\Hotkey\PowerBiosServer.exe -- (PowerBiosServer)
SRV - [2009 (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV:64bit: - [2013 (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2013 (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2013 (TrueCrypt Foundation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\truecrypt.sys -- (truecrypt)
DRV:64bit: - [2013 (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)
DRV:64bit: - [2013 (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2013 (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013 (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvstusb.sys -- (NvStUSB)
DRV:64bit: - [2013 (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2013 (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2013 (ManyCam LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2013 (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGSHidFilt.Sys -- (LGSHidFilt)
DRV:64bit: - [2013 (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2013 (GFI Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\gfibto.sys -- (gfibto)
DRV:64bit: - [2013 (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012 (Windows ® Win 7 DDK provider) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\wcmvcam64.sys -- (WCMVCAM)
DRV:64bit: - [2012 (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2012 (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2012 (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012 (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012 (ManyCam LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys -- (ManyCam)
DRV:64bit: - [2012 (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012 (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011 (JMicron Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\JME.sys -- (JME)
DRV:64bit: - [2011 (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011 (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010 (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\jmcr.sys -- (JMCR)
DRV:64bit: - [2010 (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\itecir.sys -- (itecir)
DRV:64bit: - [2010 (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010 (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010 (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010 () [Kernel | "Start" not found. | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV:64bit: - [2009 (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009 (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009 (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid)
DRV:64bit: - [2009 (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:64bit: - [2009 (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009 (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009 (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009 (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009 (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2008 (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2007 (Waytech Development, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UsbFltr.sys -- (UsbFltr)
DRV - [2011 () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys -- (cpudrv64)
DRV - [2009 (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {75B74648-32B4-40B8-B92F-07A6AC91400D}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://start.sweetpa...8-0090F5BC5FB2}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 4D 20 09 24 2E 24 CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {75B74648-32B4-40B8-B92F-07A6AC91400D}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{75B74648-32B4-40B8-B92F-07A6AC91400D}: "URL" = http://search.condui...0672639120&UM=2
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://start.sweetpa...8-0090F5BC5FB2}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B3d7eb24f-2740-49df-8937-200b1cc08f8a%7D:1.5.17
FF - prefs.js..extensions.enabledAddons: smarterwiki%40wikiatic.com:5.1.9
FF - prefs.js..extensions.enabledAddons: %7Bbb6bc1bb-f824-4702-90cd-35e2fb24f25d%7D:1.5.2
FF - prefs.js..extensions.enabledAddons: %7BEDA7B1D7-F793-4e03-B074-E6F303317FB0%7D:1.2.7
FF - prefs.js..extensions.enabledAddons: %7B4a313247-8330-4a81-948e-b79936516f78%7D:2.0.2
FF - prefs.js..extensions.enabledAddons: %7B1A2D0EC4-75F5-4c91-89C4-3656F6E44B68%7D:0.6.3
FF - prefs.js..extensions.enabledAddons: support%40lastpass.com:2.0.20
FF - prefs.js..extensions.enabledAddons: nosquint%40urandom.ca:2.1.9
FF - prefs.js..extensions.enabledAddons: autopager%40mozilla.org:0.8.0.8
FF - prefs.js..extensions.enabledAddons: %7BE71B541F-5E72-5555-A47C-E47863195841%7D:1.0.33
FF - prefs.js..extensions.enabledAddons: SkipScreen%40SkipScreen:0.7.2
FF - prefs.js..extensions.enabledAddons: %7BF003DA68-8256-4b37-A6C4-350FA04494DF%7D:6.5
FF - prefs.js..extensions.enabledAddons: %7Bcd617375-6743-4ee8-bac4-fbf10f35729e%7D:2.9.5
FF - prefs.js..extensions.enabledAddons: treestyletab%40piro.sakura.ne.jp:0.14.2013082301
FF - prefs.js..extensions.enabledAddons: mozilla_cc%40internetdownloadmanager.com:7.3.58
FF - prefs.js..extensions.enabledAddons: %7B98449521-9320-4257-aa35-9e1a39c8cbe0%7D:2.0.3
FF - prefs.js..extensions.enabledAddons: %7B578e7caa-210f-4967-a0d3-88fe5b59a39f%7D:0.8.10
FF - prefs.js..extensions.enabledAddons: canitbecheaper%40trafficbroker.co.uk:3.9.4
FF - prefs.js..extensions.enabledAddons: %7B65e41d20-f092-41b7-bb83-c6e8a9ab0f57%7D:1.2.1
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.12
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}: C:\PROGRAM FILES\UPDATER BY SWEETPACKS\FIREFOX
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F003DA68-8256-4b37-A6C4-350FA04494DF}: C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013
FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 26.0a1\extensions\\Components: C:\Program Files (x86)\Nightly\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 26.0a1\extensions\\Plugins: C:\Program Files (x86)\Nightly\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 18.0.1\extensions\\Components: C:\Program Files\\Waterfox\components [2013
FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 18.0.1\extensions\\Plugins: C:\Program Files\\Waterfox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5 [2013
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5 [2013

[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{65e41d20-f092-41b7-bb83-c6e8a9ab0f57}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{EDA7B1D7-F793-4e03-B074-E6F303317FB0}.xpi
[2013
[2013
[2013
[2013
[2013 (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 7 U17 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
CHR - plugin: Java Deployment Toolkit 7.0.170.2 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
CHR - Extension: reddit companion = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\algjnflpgoopkdijmkalfcifomdhmcbe\1.1.2_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.3_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.4_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.5_0\
CHR - Extension: Logitech Smooth Scrolling = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk\6.60.170_0\
CHR - Extension: The Camelizer - Amazon Price Tracker = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo\2.3.1_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.3_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.4_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.6_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.7_0\
CHR - Extension: Reddit Enhancement Suite = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.0.1_0\
CHR - Extension: Cookie Manager = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbnfbcpkiaganjpcanopcgeoehkleeck\1.1_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0\
CHR - Extension: SweetPacks Chrome Extension = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.3.0.3_0\
CHR - Extension: SABconnect++ = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\okphadhbbjadcifjplhifajfacbkkbod\0.6.8_0\
CHR - Extension: reddit companion = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\algjnflpgoopkdijmkalfcifomdhmcbe\1.1.2_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.3_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.4_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.5_0\
CHR - Extension: Logitech Smooth Scrolling = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk\6.60.170_0\
CHR - Extension: The Camelizer - Amazon Price Tracker = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo\2.3.1_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.3_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.4_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.6_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.7_0\
CHR - Extension: Reddit Enhancement Suite = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.0.1_0\
CHR - Extension: Cookie Manager = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbnfbcpkiaganjpcanopcgeoehkleeck\1.1_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0\
CHR - Extension: SweetPacks Chrome Extension = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.3.0.3_0\
CHR - Extension: SABconnect++ = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\okphadhbbjadcifjplhifajfacbkkbod\0.6.8_0\

O1 HOSTS File: () - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
O2:64bit: - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [SpeedFan] C:\Program Files (x86)\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O4 - HKLM..\Run: [WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe (Western Digital)
O4 - HKLM..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (Western Digital Technologies, Inc.)
O4 - HKLM..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousMachineGroupPolicy = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousUserGroupPolicy = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\SearchExtensions: InternetExtensionName = Bing Search
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\SearchExtensions: InternetExtensionAction = http://search.bing.c...sults.aspx?q=%w
O8:64bit: - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O8:64bit: - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.10
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2A936B49-CC00-4762-983E-66987E017634}: DhcpNameServer = 10.92.80.5 10.92.80.6 204.17.98.72
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8FAECE5C-6A31-41A3-BE76-57E63394ACFA}: DhcpNameServer = 10.1.1.10
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - C:\Program Files (x86)\Stardock\Object Desktop\IconPackager\iprepair.dll (Stardock.net, Inc)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013 () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013 (Yamicsoft) -- C:\Users\Zach\AppData\Roaming\windows7manager.exe
[2013 (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2013 (OldTimer Tools) -- C:\Users\Zach\Desktop\OTL.exe
[2013 (ManyCam LLC) -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys
[2013 (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2013 (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2013 (Advanced Micro Devices Inc.) -- C:\Program Files (x86)\Common Files\atimpenc.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013 (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2013 (OldTimer Tools) -- C:\Users\Zach\Desktop\OTL.exe
[2013 (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2013 (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2013 () -- C:\Users\Zach\Desktop\Ventrilo.lnk
[2013 () -- C:\Users\Public\Desktop\Urban Trial Freestyle.lnk
[2013 () -- C:\Users\Zach\Desktop\Troubleshoot problems error.JPG
[2013 () -- C:\Users\Zach\Desktop\Texmaker.lnk
[2013 () -- C:\Users\Zach\Desktop\SteamInstall.msi
[2013 () -- C:\Users\Public\Desktop\Steam.lnk
[2013 () -- C:\Users\Zach\Desktop\Puzzle Pirates.lnk
[2013 () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013 () -- C:\Windows\SysNative\perfh009.dat
[2013 () -- C:\Windows\SysNative\perfc009.dat
[2013 () -- C:\Windows\SysNative\nvinfo.pb
[2013 () -- C:\Users\Zach\Desktop\Minecraft.exe
[2013 () -- C:\Users\Zach\Desktop\Lab2 - Zachary Bazarsky.rar
[2013 () -- C:\Users\Zach\AppData\Roaming\keygen.il
[2013 () -- C:\Users\Zach\AppData\Roaming\InstallMTW6.9.il
[2013 () -- C:\Users\Zach\Desktop\i3nF4.jpg
[2013 () -- C:\hiberfil.sys
[2013 () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013 () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013 () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013 () -- C:\Users\Zach\Desktop\Dota 2.url
[2013 () -- C:\Users\Zach\Documents\cc_20130916_151927.reg
[2013 () -- C:\Windows\bootstat.dat
[2013 () -- C:\Users\Zach\Desktop\Auslogics BoostSpeed.lnk
[2013 () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013 () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013 () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013 () -- C:\Users\Zach\Desktop\1aZuY.jpg
[2013 () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013 () -- C:\Windows\WebFerretUninstall.exe
[2013 () -- C:\Users\Zach\Desktop\Ventrilo.lnk
[2013 () -- C:\Users\Public\Desktop\Urban Trial Freestyle.lnk
[2013 () -- C:\Windows\SysWow64\unrar.dll
[2013 () -- C:\Users\Zach\Desktop\Troubleshoot problems error.JPG
[2013 () -- C:\Users\Zach\Desktop\Texmaker.lnk
[2013 () -- C:\Users\Zach\Desktop\SteamInstall.msi
[2013 () -- C:\Users\Public\Desktop\Steam.lnk
[2013 () -- C:\Users\Zach\AppData\Local\Resmon.ResmonCfg
[2013 () -- C:\Users\Zach\Desktop\Puzzle Pirates.lnk
[2013 () -- C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Puzzle Pirates.lnk
[2013 () -- C:\Users\Zach\PUTTY.RND
[2013 () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013 () -- C:\Windows\OEM.ini
[2013 () -- C:\Windows\SysNative\nvinfo.pb
[2013 () -- C:\Windows\SysWow64\NetFerret.dll
[2013 () -- C:\Users\Zach\Desktop\Minecraft.exe
[2013 () -- C:\Users\Zach\Desktop\Lab2 - Zachary Bazarsky.rar
[2013 () -- C:\Users\Zach\AppData\Roaming\keygen.il
[2013 () -- C:\Users\Zach\AppData\Roaming\InstallMTW6.9.il
[2013 () -- C:\Users\Zach\Desktop\i3nF4.jpg
[2013 () -- C:\ProgramData\hash.dat
[2013 () -- C:\Users\Zach\Desktop\Dota 2.url
[2013 () -- C:\Users\Zach\Documents\cc_20130916_151927.reg
[2013 () -- C:\Windows\Bison.ini
[2013 () -- C:\Users\Zach\Desktop\Auslogics BoostSpeed.lnk
[2013 () -- C:\Windows\asfbinwin.INI
[2013 () -- C:\Users\Zach\Desktop\1aZuY.jpg
[2013 () -- C:\ProgramData\1372005809.bdinstall.bin
[2013 () -- C:\ProgramData\1366757276.bdinstall.bin
[2013 () -- C:\ProgramData\1366756389.bdinstall.bin
[2013 () -- C:\ProgramData\1364665264.bdinstall.bin
[2013 () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini

========== ZeroAccess Check ==========

[2009 () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013 (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013 (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009 (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010 (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009 (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 225 bytes -> C:\ProgramData\TEMP:D30E8FC9
< End of report >











OTL Extras logfile created on: 10
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Zach\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United States | Language: ENU | Date Format:

15.98 Gb Total Physical Memory | 13.65 Gb Available Physical Memory | 85.40% Memory free
31.95 Gb Paging File | 29.36 Gb Available in Paging File | 91.87% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.79 Gb Total Space | 65.55 Gb Free Space | 28.16% Space Free | Partition Type: NTFS
Drive D: | 698.54 Gb Total Space | 144.73 Gb Free Space | 20.72% Space Free | Partition Type: NTFS

Computer Name: ZACH-PC | User Name: Zach | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- Reg Error: Value error.
Directory [find] -- Reg Error: Value error.
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- Reg Error: Value error.
Folder [explore] --
Drive [find] -- C:\Windows\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- Reg Error: Value error.
Directory [find] -- Reg Error: Value error.
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- Reg Error: Value error.
Folder [explore] --
Drive [find] -- C:\Windows\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{002C5105-370A-46AE-BF5F-9905BAC6CA16}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{0C5DB97A-D484-425D-9A40-27B9DE588F62}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{2DE8B863-722C-4E06-8E83-3E7F1C3EEC2E}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{31D5AE17-9223-4A8B-8C21-F40C670DD7DD}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{3B33CC63-F75F-483A-9BD3-0A16D43D8EBB}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A73E2D92-6E7A-48AB-BB4C-051C22EDB956}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{B4DE5AA9-AFB8-4540-A5C6-723AF6F36D88}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{CF025AF9-55B3-420C-87B1-64BAC001A8A8}" = lport=5353 | protocol=17 | dir=in | name=bonjour |
"{D3ECDDA8-F774-4CE5-A012-4ADED1B1E11A}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0120DA67-F5EA-4DCA-881C-07AC3DE51641}" = protocol=6 | dir=in | app=c:\program files (x86)\steam1\steam.exe |
"{05F9C584-CC2F-433F-9ABE-CF3E5EFB7F67}" = protocol=6 | dir=in | app=c:\program files (x86)\jdownloader\jdupdate.exe |
"{16EB5F45-E4B0-4DE0-80C3-3BE87DAC9053}" = protocol=6 | dir=in | app=c:\program files (x86)\jdownloader\jdownloaderportable.exe |
"{18A275E2-2874-4314-A767-50C020C7C989}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{2BEDF813-7E65-4FD4-8308-57678A323CC1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{340CEA2B-E0ED-4D58-8C93-1DF502EFE273}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{347AD927-952B-43EF-ACB0-D604EC80C802}" = protocol=6 | dir=in | app=d:\downloads\programs\bradford dissolvable agent.exe |
"{37B17DD4-0E81-4B88-B626-4C2FD3B8FBAB}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{3A7B8ADE-E803-42D5-8DFB-6942D0C5F68C}" = protocol=6 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"{46C2285B-3045-4B1C-A1F4-CE873C3B35C6}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{490EDE6C-4E22-4FB2-9619-9A75E15407FC}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{4E17CC80-1C60-4B59-9D00-9F3FED7AA69B}" = protocol=17 | dir=in | app=c:\users\zach\appdata\roaming\utorrent\utorrent.exe |
"{4F5B8326-0B0A-48EE-917D-D62B0FDCF85C}" = protocol=17 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"{5F330A7D-B125-49F7-99F5-6533B4C9F4B5}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{65C39604-521C-42CC-BEE6-48BA0D154A4E}" = dir=in | app=c:\program files (x86)\airport\apagent.exe |
"{6790586D-0CAA-41EF-9F1D-06EE609A78E1}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{6F9C9342-347F-4410-9DED-4049A36FF750}" = protocol=6 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{6FF36CA7-DDA2-438B-BB1A-A350E09461C3}" = protocol=6 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{73743CD5-221D-4A17-9831-5427A87301AA}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{7EC89610-AD2D-4C91-A462-D20BCBEE3BBA}" = protocol=17 | dir=in | app=d:\downloads\programs\bradford dissolvable agent.exe |
"{85D60093-BEE2-4BA0-BAAB-A2CC43972319}" = protocol=17 | dir=in | app=c:\program files (x86)\jdownloader\jdupdate.exe |
"{8AEB53EC-CC88-4B7C-9CB9-CEE673A82762}" = protocol=6 | dir=in | app=c:\users\zach\appdata\roaming\utorrent\utorrent.exe |
"{8BA40E28-A76D-421C-B678-6B5439106F18}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{97E23419-B87A-4D69-8F4A-70E1F546B83A}" = protocol=17 | dir=in | app=c:\program files (x86)\jdownloader\jdownloaderportable.exe |
"{9940C7BA-4DFE-42DA-ABD9-5D0096D6B8BF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{9A43E226-B6CD-4A9C-A805-5D36FAF71B2C}" = protocol=17 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{9B77B52B-EF76-4E96-8B79-1E04BD2096BD}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{9BF79A53-610F-421E-B72D-1233254BAF1C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{A191B016-F35A-4253-B31E-0C0773022AE5}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{A328F7D8-8B33-4C1C-8A49-6C631EA6D476}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A636601A-C8B4-4744-A4ED-585E9A6B3DDA}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AFB950EA-50A7-45F8-8E0C-FA1B1743BB25}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AFDAE0B7-B7F8-4993-840D-DB3E1C90D946}" = protocol=6 | dir=in | app=c:\program files (x86)\safeconnect\scclient.exe |
"{B226E207-D7FC-493A-ACD3-233915326027}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{B756F811-FF73-42D5-B478-0E78B8A994B9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{C72B7AC3-9275-4F0F-8513-EFFC95F72EB6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam1\steam.exe |
"{CEC21F85-E1E5-4BF3-8FA6-CE3D9ED1BE2E}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{D4F7B4A6-36AB-4FC7-9162-4D66F6C8E1B2}" = protocol=17 | dir=in | app=c:\program files (x86)\safeconnect\scclient.exe |
"{DFC08196-D0AC-4585-918D-D763DB3F9A2B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{E1D2822F-2CC9-48DF-A438-44CC47F3778A}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{E3E2095F-F245-482E-BC80-5A3CFEFEA67E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E3E9FEF1-AD87-4CC5-B9B2-547EE1CE1BC0}" = protocol=17 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{EA41F840-30E0-4CD1-8CE9-CD104D1288C6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{EF3D9F21-3795-424F-9DD2-239F06DD9ED7}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{FA23C7E3-398B-470B-B581-D797DDB72EAA}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"TCP Query User{2163B4BB-41C6-4ED0-9CBF-7B11ABE90BC9}C:\program files (x86)\qbittorrent\qbittorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"TCP Query User{5AA61DC4-B13A-4372-BAEC-90AD329AACA6}C:\program files (x86)\sabnzbd\sabnzbd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sabnzbd\sabnzbd.exe |
"TCP Query User{B25CCDA3-CE95-4E6F-8AAC-5A635D35B7F0}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{CCA276DC-32A3-48D5-B821-46260E6D60E0}C:\program files (x86)\airport\aputil.exe" = protocol=6 | dir=in | app=c:\program files (x86)\airport\aputil.exe |
"TCP Query User{D701142C-0697-447A-A5BB-0AE9A9AC59A8}C:\windows\syswow64\java.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\java.exe |
"UDP Query User{0D9ADEAD-EA70-4DEB-945F-2F62619D8945}C:\program files (x86)\airport\aputil.exe" = protocol=17 | dir=in | app=c:\program files (x86)\airport\aputil.exe |
"UDP Query User{2B518824-CE91-4CDF-8CE3-61BC7EF93FE1}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{3FD66EA8-4FBD-4583-9866-B288F28CBEB5}C:\windows\syswow64\java.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\java.exe |
"UDP Query User{7C305668-BC7C-48DD-9801-1FEEF0A5BFD0}C:\program files (x86)\qbittorrent\qbittorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"UDP Query User{B6BB642F-3B82-4760-8891-2544DCBB81FE}C:\program files (x86)\sabnzbd\sabnzbd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sabnzbd\sabnzbd.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417017FF}" = Java 7 Update 17 (64-bit)
"{27726449-83B8-428D-92DE-101346C1E15C}" = Microsoft Security Client
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{3C28BFD4-90C7-3138-87EF-418DC16E9598}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106
"{427174C0-096E-40D9-9684-9C109BEE2CBF}" = iTunes
"{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}" = WinPatrol
"{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
"{5AF4E09F-5C9B-3AAF-B731-544D3DC821DD}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7C6CD9B4-B230-4E76-80AA-FB465FF4DE29}" = Intel® PROSet/Wireless WiFi Software Driver
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0409-1000-0000000FF1CE}" = Microsoft Access MUI (English) 2013
"{90150000-0016-0409-1000-0000000FF1CE}" = Microsoft Excel MUI (English) 2013
"{90150000-0018-0409-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (English) 2013
"{90150000-0019-0409-1000-0000000FF1CE}" = Microsoft Publisher MUI (English) 2013
"{90150000-001A-0409-1000-0000000FF1CE}" = Microsoft Outlook MUI (English) 2013
"{90150000-001B-0409-1000-0000000FF1CE}" = Microsoft Word MUI (English) 2013
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-1000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-0409-1000-0000000FF1CE}" = Microsoft Office Proofing (English) 2013
"{90150000-0044-0409-1000-0000000FF1CE}" = Microsoft InfoPath MUI (English) 2013
"{90150000-006E-0409-1000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2013
"{90150000-0090-0409-1000-0000000FF1CE}" = Microsoft DCF MUI (English) 2013
"{90150000-00A1-0409-1000-0000000FF1CE}" = Microsoft OneNote MUI (English) 2013
"{90150000-00BA-0409-1000-0000000FF1CE}" = Microsoft Groove MUI (English) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-0409-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (English) 2013
"{90150000-00E1-0409-1000-0000000FF1CE}" = Microsoft Office OSM MUI (English) 2013
"{90150000-00E2-0409-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (English) 2013
"{90150000-0115-0409-1000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2013
"{90150000-0117-0409-1000-0000000FF1CE}" = Microsoft Access Setup Metadata MUI (English) 2013
"{90150000-012B-0409-1000-0000000FF1CE}" = Microsoft Lync MUI (English) 2013
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{9798BB87-01B9-4D46-8EA0-6681E72BDE87}" = WD SmartWare
"{A94C50AA-21E8-4627-ADD0-E16A07030D7D}" = Intel® PROSet/Wireless for Bluetooth® + High Speed
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.6.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 326.01
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 8.3.14
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.26.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.5
"{DEF50764-F1A7-4DD4-B8BA-C81A4807631A}" = Intel® PROSet/Wireless WiFi Software
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"{FD7DEB7B-8CEA-44E5-AB2D-7C66786C0563}" = Waterfox
"CCleaner" = CCleaner
"KLiteCodecPack64_is1" = K-Lite Codec Pack 9.8.0 (64-bit)
"KMSnano 25_is1" = KMSnano 25
"Logitech Gaming Software" = Logitech Gaming Software 8.46
"Logitech Unifying" = Logitech Unifying Software 2.10
"Microsoft Security Client" = Microsoft Security Essentials
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"PotPlayer64" = Daum PotPlayer 1.5.36205 x64 Edition
"sp6" = Logitech SetPoint 6.61
"Speccy" = Speccy
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeraCopy_is1" = TeraCopy 2.3 beta 2
"Unlocker" = Unlocker 1.9.1-x64
"WinRAR archiver" = WinRAR 5.00 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{06D085C8-1F00-11B2-96A7-8f0CE39193ED}" = Intel® SSD Toolbox
"{100C8F3B-82D6-4B14-BB7A-5E8C3FF810C8}_is1" = Driver Fusion
"{164714B6-46BC-4649-9A30-A6ED32F03B5A}" = Hotkey 3.3017
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron Flash Media Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{3B673B37-EFF7-3BA0-94FF-CE8C46C36DD6}" = Google Chrome
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITE Infrared Transceiver
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.6
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{5BBC4803-C96E-4D3E-9D1D-2E43774C4062}" = BisonCam
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6B75BAF2-A67A-418D-A3D4-B27A5C04F2F5}_is1" = Duplicate Video Search version 15.3.3
"{6BF04C63-EAC0-4F19-9E88-9A745493E7BF}" = IconPackager
"{6e8f74e0-43bd-4dce-8477-6ff6828acc07}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106
"{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1" = Auslogics BoostSpeed
"{72E40002-8CEC-47C1-A099-83AC8E173BF0}" = WD Drive Utilities
"{78091D68-706D-4893-B287-9F1DFB24F7AF}" = Intel® Update Manager
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{8172B41A-9BB5-4A64-BF28-1FB5FE43C3FF}" = WD Security
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}" = JMicron Ethernet Adapter NDIS Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}" = OpenOffice.org 3.4.1
"{A0087DDE-69D0-11E2-AD57-43CA6188709B}" = Adobe AIR
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA68AAAE-41F0-40B5-8896-5947F5FD6889}" = AirPort
"{AAE521B6-2F19-447F-8CB6-6D1E3A19F3ED}" = WebCam Installer
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.04)
"{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"{E357C7B4-E337-4E43-84F1-8FDAF1EF4038}" = calibre
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{fad118b4-798f-4755-9e67-a622eec95b62}" = Intel® PROSet/Wireless Software
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"5513-1208-7298-9440" = JDownloader 0.9
"Adobe AIR" = Adobe AIR
"Adobe Digital Editions 2.0" = Adobe Digital Editions 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"A-PDF Page Cut_is1" = A-PDF Page Cut
"AsfTools 3.1" = AsfTools 3.1 (remove only)
"BitMeter" = BitMeter
"CrystalDiskInfo_is1" = CrystalDiskInfo 5.4.2 Shizuku Edition
"DAEMON Tools Lite" = DAEMON Tools Lite
"DSMT6" = MathType 6
"Everything" = Everything 1.2.1.371
"Foxit Reader_is1" = Foxit Reader
"IconPackager" = IconPackager
"iFunbox_is1" = iFunbox (v2.6.2375.747), iFunbox DevTeam
"ImgBurn" = ImgBurn
"InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}" = Hotkey 3.3017
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"Internet Download Manager" = Internet Download Manager
"IrfanView" = IrfanView (remove only)
"jdownloader2" = JDownloader 2.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 9.8.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"MiKTeX 2.9" = MiKTeX 2.9
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 24.0 (x86 en-US)" = Mozilla Firefox 24.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP3Resizer_is1" = MP3Resizer 2.1.0
"Nightly 26.0a1 (x86 en-US)" = Nightly 26.0a1 (x86 en-US)
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"qbittorrent" = qBittorrent 3.0.11
"QuickPar" = QuickPar 0.9
"Rainmeter" = Rainmeter
"Revo Uninstaller" = Revo Uninstaller 1.94
"SABnzbd" = SABnzbd 0.7.16
"SafeConnect" = SafeConnect
"SecureW2 Enterprise Client" = SecureW2 Enterprise Client 3.5.9
"SpeedFan" = SpeedFan (remove only)
"Steam App 570" = Dota 2
"SumatraPDF" = SumatraPDF
"Texmaker" = Texmaker
"The KMPlayer" = The KMPlayer (remove only)
"TreeSize Free_is1" = TreeSize Free V2.7
"TrueCrypt" = TrueCrypt
"Urban Trial Freestyle_is1" = Urban Trial Freestyle
"VLC media player" = VLC media player 2.0.8
"WebFerret" = WebFerret
"Xilisoft Video Converter Ultimate" = Xilisoft Video Converter Ultimate

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CopyTrans Suite" = CopyTrans Suite Remove Only
"Flux" = F.lux
"Puzzle Pirates" = Puzzle Pirates
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 16
Description =

Error - 18
Description =

Error - 18
Description =

Error - 18
Description =

Error - 18
Description =

Error - 23
Description =

Error - 23
Description =

Error - 23
Description =

Error - 23
Description =

Error - 10
Description =

[ System Events ]
Error - 23
Description = The Diagnostic System Host service hung on starting.

Error - 23
Description = The following boot-start or system-start driver(s) failed to load:
SBRE

Error - 10
Description = The Net.Msmq Listener Adapter service depends the following service:
msmq. This service might not be installed.

Error - 10
Description = The Net.Pipe Listener Adapter service depends the following service:
was. This service might not be installed.

Error - 10
Description = The Net.Tcp Listener Adapter service depends the following service:
was. This service might not be installed.

Error - 10
Description = The Windows Image Acquisition (WIA) service depends on the Shell Hardware
Detection service which failed to start because of the following error: %%1058

Error - 10
Description = The WebcamMax, WDM Video Capture service failed to start due to the
following error: %%1058

Error - 10
Description = The Diagnostic Service Host service hung on starting.

Error - 10
Description = The Diagnostic System Host service hung on starting.

Error - 10
Description = The following boot-start or system-start driver(s) failed to load:
SBRE


< End of report >

Attached Thumbnails

  • Troubleshoot problems error.JPG

Edited by zoltain, 02 October 2013 - 08:40 AM.

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.



Download : ADWCleaner to your desktop.

NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close all programs, pause your anti-virus and run AdwCleaner (Vista or Win 7 => right click and Run As Administrator).

Posted Image

Click on Scan and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder.



Junkware-Removal-Tool

Please download Junkware Removal Tool to your desktop.
  • Pause your anti-virus. Close all browsers.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


Download aswMBR.exe to your desktop.
Run aswMBR.exe (Vista or Win 7 => right click and Run As Administrator)

uncheck trace disk IO calls
Click the "Scan" button to start scan (Accept the Avast Engine)
On completion of the scan if the Fix button is enabled (not the FixMBR button) press it and then run a new scan and click save log, save it to your desktop and post in your next reply
If the Fix button is not enabled then just click save log, save it to your desktop and post in your next reply


Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Attach the file to your next post.

(If you do not already have OTL then: Download OTL from
http://www.geekstogo...timers-list-it/
and Save it to your desktop.)

Copy the text in the code box:

DRIVES
nnetsvcs
%SYSTEMDRIVE%\*.exe
%systemroot%\assembly\GAC_32\*.ini
%systemroot%\assembly\GAC_64\*.ini
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.exe
%APPDATA%\*.
/md5start
rsvpsp.dll
pnrpnsp.dll 
nwprovau.dll
nlaapi.dll
napinsp.dll
mswsock.dll
winrnr.dll
wshelper.dll
services.exe
atapi.sys
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
csrss.exe
PrintIsolationHost.exe
consrv.dll
user32.dll
/md5stop
dir C:\ /S /A:L /C
C:\Windows\assembly\tmp\U\*.* /s
%systemroot%\*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%ProgramFiles%\WINDOWS NT\*.* /s
%systemroot%\system32\drivers\*.sys /lockedfiles
CREATERESTOREPOINT

Run OTL (Vista or Win 7 => right click and Run As Administrator)

Paste (Ctrl + v) the copied text in the box where it says Custom Scan/Fixes

Select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.

Please download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document in your next reply.

Ron
  • 0

#3
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
Thanks for replying. I posted all the logs you asked for in the order you asked for. I can also upload them if that would be easier.

Zach










Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by Zach (administrator) on ZACH-PC on 04-10-2013 11:23:44
Running from C:\Users\Zach\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Impulse Point, LLC) C:\Program Files (x86)\SafeConnect\scManager.sys
(Western Digital) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital ) C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Western Digital ) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Auslogics) C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
(Almico Software (www.almico.com)) C:\Program Files (x86)\SpeedFan\speedfan.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
() C:\Program Files (x86)\Hotkey\Hotkey.exe
(Western Digital) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
(BillP Studios) C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
(Microsoft Corporation) C:\Windows\System32\Eap3Host.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MsoSync.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LogiAppBroker.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Update Manager\bin\ismagent.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SpeedFan] - C:\Program Files (x86)\SpeedFan\speedfan.exe [4683768 2013-03-15] (Almico Software (www.almico.com))
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3023600 2013-02-25] (Synaptics Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-06-20] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [7477016 2013-04-24] (Logitech Inc.)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Winlogon: [Shell] explorer.exe <==== ATTENTION
MountPoints2: E - E:\Setup.exe
HKLM-x32\...\Run: [WD Drive Unlocker] - C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1688008 2012-06-13] (Western Digital)
HKLM-x32\...\Run: [WD Quick View] - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5237256 2012-12-20] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WinPatrol] - C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [422632 2013-04-17] (BillP Studios)
SSODL-x32: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - C:\Program Files (x86)\Stardock\Object Desktop\IconPackager\iprepair.dll (Stardock.net, Inc)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4D2009242E24CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - DefaultScope {75B74648-32B4-40B8-B92F-07A6AC91400D} URL =
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://start.sweetpa...8-0090F5BC5FB2}
SearchScopes: HKCU - DefaultScope {75B74648-32B4-40B8-B92F-07A6AC91400D} URL = http://search.condui...0672639120&UM=2
SearchScopes: HKCU - {75B74648-32B4-40B8-B92F-07A6AC91400D} URL = http://search.condui...0672639120&UM=2
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://start.sweetpa...8-0090F5BC5FB2}
BHO: IDM integration (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 131.128.1.126 131.128.1.127

FireFox:
========
FF ProfilePath: C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: LastPass - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: Flashblock - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
FF Extension: Textarea Cache - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{578e7caa-210f-4967-a0d3-88fe5b59a39f}
FF Extension: CacheIt! - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{98449521-9320-4257-aa35-9e1a39c8cbe0}
FF Extension: Cookies Manager+ - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d}
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{E71B541F-5E72-5555-A47C-E47863195841}
FF Extension: autopager - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: canitbecheaper - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: firefox - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: jid0-AHBbopHdrrAT2rK0VAT8dg6KPJE - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: jid0-AsEtBwC86O2aYN7hqMefrquv9ls - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: jid1-xUfzOsOFlzSOXg - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: nosquint - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: SkipScreen - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: smarterwiki - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: treestyletab - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\[email protected]
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{65e41d20-f092-41b7-bb83-c6e8a9ab0f57}.xpi
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: No Name - C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{EDA7B1D7-F793-4e03-B074-E6F303317FB0}.xpi
FF HKLM\...\Firefox\Extensions: [{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}] - C:\Program Files\Updater By SweetPacks\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF HKCU\...\Firefox\Extensions: [[email protected]] - C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5
FF HKCU\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Nightly\firefox.exe

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://alldebrid.com/service/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.66\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.66\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (reddit companion) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\algjnflpgoopkdijmkalfcifomdhmcbe\1.1.2_0
CHR Extension: (WikiTube) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.3_0
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk\6.60.170_0
CHR Extension: () - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd\2.0.0.566_0
CHR Extension: (The Camelizer - Amazon Price Tracker) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo\2.3.1_0
CHR Extension: (LastPass) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.3_0
CHR Extension: (IDM Integration Module) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.6_0
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.0.1_0
CHR Extension: (Cookie Manager) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbnfbcpkiaganjpcanopcgeoehkleeck\1.1_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (SweetPacks Chrome Extension) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.3.0.3_0
CHR Extension: (SABconnect++) - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\okphadhbbjadcifjplhifajfacbkkbod\0.6.8_0
CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKLM-x32\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx

==================== Services (Whitelisted) =================

S4 Filemind.Windows.Service; C:\Program Files\FileMind\FileMind.Windows.Service.exe [479480 2013-04-01] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-06-20] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-02-08] ()
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-06-20] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [32768 2010-11-18] ()
R2 SCManager; C:\Program Files (x86)\SafeConnect\scManager.sys [176520 2012-11-19] (Impulse Point, LLC)
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [296448 2013-04-30] ()
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1155088 2012-12-20] (Western Digital )
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [248248 2012-09-06] (Western Digital)
R2 WDRulesService; C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe [1178128 2012-12-20] (Western Digital )
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3386608 2013-02-08] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-27] (DT Soft Ltd)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-03-28] (GFI Software)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-10] (ManyCam LLC)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
S2 WCMVCAM; C:\Windows\System32\DRIVERS\wcmvcam64.sys [1071032 2012-04-15] (Windows ® Win 7 DDK provider)
S3 cpuz136; \??\C:\Users\Zach\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-04 11:23 - 2013-10-04 11:23 - 00000000 ____D C:\FRST
2013-10-04 11:22 - 2013-10-04 11:22 - 01954124 _____ (Farbar) C:\Users\Zach\Desktop\FRST64.exe
2013-10-03 01:00 - 2013-10-03 18:29 - 00002552 _____ C:\Windows\LkmdfCoInst.log
2013-10-02 17:48 - 2013-10-02 17:48 - 00022183 _____ C:\Users\Zach\Desktop\Dur.torrent
2013-10-02 10:39 - 2013-10-02 10:39 - 00058282 _____ C:\Users\Zach\Desktop\Extras.Txt
2013-10-02 10:38 - 2013-10-02 10:38 - 00099876 _____ C:\Users\Zach\Desktop\OTL.Txt
2013-10-02 10:23 - 2013-10-02 10:23 - 00602112 _____ (OldTimer Tools) C:\Users\Zach\Desktop\OTL.exe
2013-10-01 13:49 - 2013-10-04 11:21 - 00003384 _____ C:\Windows\setupact.log
2013-10-01 13:49 - 2013-10-01 13:49 - 00001006 _____ C:\Windows\PFRO.log
2013-10-01 13:49 - 2013-10-01 13:49 - 00000000 _____ C:\Windows\setuperr.log
2013-09-30 11:58 - 2013-10-01 12:49 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Ventrilo
2013-09-30 11:51 - 2013-09-30 11:51 - 00000913 _____ C:\Users\Zach\Desktop\Ventrilo.lnk
2013-09-30 11:51 - 2013-09-30 11:51 - 00000262 _____ C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
2013-09-30 11:51 - 2013-09-30 11:51 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
2013-09-30 11:51 - 2013-09-30 11:51 - 00000000 ____D C:\Program Files\Ventrilo
2013-09-26 01:11 - 2013-09-26 01:45 - 00000000 ____D C:\Users\Zach\AppData\Roaming\.minecraft
2013-09-26 01:11 - 2013-09-26 01:11 - 00675988 _____ C:\Users\Zach\Desktop\Minecraft.exe
2013-09-25 11:31 - 2013-09-25 11:31 - 00000219 _____ C:\Users\Zach\Desktop\Dota 2.url
2013-09-25 11:31 - 2013-09-25 11:31 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-09-25 11:22 - 2013-10-04 11:21 - 00000000 ____D C:\Program Files (x86)\Steam
2013-09-25 11:22 - 2013-09-25 11:22 - 00000917 _____ C:\Users\Public\Desktop\Steam.lnk
2013-09-25 10:37 - 2013-09-25 10:37 - 00000000 ____D C:\Users\Zach\Desktop\New folder
2013-09-25 10:36 - 2013-09-25 10:36 - 01669632 _____ C:\Users\Zach\Desktop\SteamInstall.msi
2013-09-20 23:55 - 2013-09-20 23:55 - 00000000 ____D C:\Users\Zach\AppData\Local\Urban Trial Freestyle
2013-09-20 23:55 - 2013-09-20 23:55 - 00000000 ____D C:\Users\Zach\AppData\Local\SKIDROW
2013-09-20 23:53 - 2013-09-20 23:53 - 00002291 _____ C:\Users\Public\Desktop\Urban Trial Freestyle.lnk
2013-09-20 23:53 - 2013-09-20 23:53 - 00000000 ____D C:\Program Files (x86)\Tate Multimedia
2013-09-20 23:52 - 2013-09-20 23:52 - 00000000 ____D C:\Users\Zach\Desktop\Urban Trial Freestyle-TiNYiSO
2013-09-20 12:34 - 2013-07-22 12:34 - 00000032 ____R C:\ProgramData\hash.dat
2013-09-20 12:33 - 2013-09-20 12:33 - 00001950 _____ C:\Users\Zach\Desktop\Puzzle Pirates.lnk
2013-09-20 12:33 - 2013-09-20 12:33 - 00001950 _____ C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Puzzle Pirates.lnk
2013-09-20 12:33 - 2013-09-20 12:33 - 00000000 ____D C:\Program Files (x86)\Three Rings Design
2013-09-19 23:54 - 2013-09-19 23:54 - 00001169 _____ C:\Users\Zach\Desktop\Auslogics BoostSpeed.lnk
2013-09-19 23:54 - 2013-09-19 23:54 - 00000000 ____D C:\Windows\System32\Tasks\Auslogics
2013-09-19 23:54 - 2013-09-19 23:54 - 00000000 ____D C:\ProgramData\Auslogics
2013-09-19 23:54 - 2013-09-19 23:54 - 00000000 ____D C:\Program Files (x86)\Auslogics
2013-09-19 23:53 - 2013-09-17 13:12 - 00000000 ____D C:\Users\Zach\Desktop\-AslgcsBstSpd6.2-
2013-09-19 14:46 - 2013-09-19 14:46 - 00113464 _____ C:\Users\Zach\Downloads\CollegeRules.13.09.19.College.Girls.Wanna.Have.Fun.XXX.720p.MP4-KTR.nzb
2013-09-19 13:07 - 2013-09-19 13:07 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-09-19 13:06 - 2013-09-12 04:58 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-09-19 13:06 - 2013-09-12 04:58 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-09-19 13:06 - 2013-09-12 03:25 - 06599968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-09-19 13:06 - 2013-09-12 03:25 - 03452192 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-09-19 13:06 - 2013-09-12 03:25 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-09-19 13:06 - 2013-09-12 03:25 - 00920864 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-09-19 13:06 - 2013-09-12 03:25 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-09-19 13:06 - 2013-09-12 03:25 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 29337376 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 22102304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 15901448 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 15703688 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 13628208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 12947360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 11274528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-09-19 13:05 - 2013-09-12 04:58 - 09281032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 07720576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 07648000 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 06329552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 02986672 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 02970400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 02789152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 02630304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 02367264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 02007328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6432723.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6432723.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 00681760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 00603424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 00586016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 00515360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-09-19 13:05 - 2013-09-12 04:58 - 00022814 _____ C:\Windows\system32\nvinfo.pb
2013-09-19 13:05 - 2013-06-22 19:20 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvir3dgenco6420172.dll
2013-09-19 13:05 - 2013-06-22 19:20 - 00450848 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstusb.sys
2013-09-19 13:05 - 2013-06-16 08:38 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2013-09-19 13:05 - 2013-06-16 08:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2013-09-19 13:05 - 2013-01-29 04:35 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2013-09-18 10:18 - 2013-09-18 10:18 - 00646163 _____ C:\Users\Zach\Downloads\xcite-first.time.auditions.24.nzb
2013-09-17 18:47 - 2013-09-17 18:47 - 00002752 _____ C:\Users\Zach\Downloads\Abutton.java
2013-09-17 18:32 - 2013-09-05 10:23 - 00000000 ____D C:\Users\Zach\Desktop\Lab01 - A basic element
2013-09-17 14:46 - 2013-09-17 14:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-16 17:07 - 2013-09-16 17:07 - 00005088 _____ C:\Users\Zach\Desktop\Lab2 - Zachary Bazarsky.rar
2013-09-16 15:20 - 2013-09-16 15:20 - 00000000 ____D C:\Users\Zach\Desktop\LLab2
2013-09-16 15:19 - 2013-09-16 15:19 - 00032822 _____ C:\Users\Zach\Documents\cc_20130916_151927.reg
2013-09-14 19:06 - 2013-09-14 19:06 - 00634093 _____ C:\Users\Zach\Downloads\Mud.2012.NTSC.MULTi.DVDR-FUTiL.nzb
2013-09-14 19:04 - 2013-09-14 19:05 - 02657988 _____ C:\Users\Zach\Downloads\Star.Trek.Into.Darkness.2013.720p.BluRay.DD5.1.x264-TayTO.nzb
2013-09-13 11:50 - 2013-09-13 11:50 - 00000764 _____ C:\Users\Zach\AppData\Roaming\keygen.il
2013-09-13 11:27 - 2013-09-13 11:27 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Design Science
2013-09-13 11:26 - 2013-09-13 11:51 - 00000000 ____D C:\Program Files (x86)\MathType
2013-09-13 11:22 - 2013-09-13 11:23 - 00000792 _____ C:\Users\Zach\AppData\Roaming\InstallMTW6.9.il
2013-09-13 11:21 - 2013-09-13 11:21 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-13 11:19 - 2013-09-10 13:16 - 00000000 ____D C:\Users\Zach\Desktop\RarLab.WinRAR.v5.00.Cracked-EAT
2013-09-13 11:18 - 2013-09-13 11:18 - 00000000 ____D C:\Users\Zach\Desktop\Design Science MathType 6.9
2013-09-13 11:14 - 2013-09-13 11:14 - 00000000 ____D C:\Users\Zach\AppData\Roaming\xm1
2013-09-13 11:13 - 2013-09-13 11:13 - 00000987 _____ C:\Users\Zach\Desktop\Texmaker.lnk
2013-09-13 11:13 - 2013-09-13 11:13 - 00000987 _____ C:\Users\UpdatusUser\Desktop\Texmaker.lnk
2013-09-13 11:13 - 2013-09-13 11:13 - 00000000 ____D C:\Users\Zach\AppData\Roaming\MiKTeX
2013-09-13 11:13 - 2013-09-13 11:13 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Texmaker
2013-09-13 11:13 - 2013-09-13 11:13 - 00000000 ____D C:\Users\Zach\AppData\Local\MiKTeX
2013-09-13 11:12 - 2013-09-13 11:13 - 00000000 ____D C:\Program Files (x86)\Texmaker
2013-09-13 11:11 - 2013-09-13 11:11 - 00000000 ____D C:\ProgramData\MiKTeX
2013-09-13 11:10 - 2013-09-13 11:11 - 00000000 ____D C:\Program Files (x86)\MiKTeX 2.9
2013-09-12 14:54 - 2013-09-19 14:27 - 00000000 ____D C:\Program Files (x86)\ManyCam
2013-09-12 14:48 - 2012-10-10 23:08 - 00044928 _____ (ManyCam LLC) C:\Windows\system32\Drivers\mcvidrv_x64.sys
2013-09-12 01:17 - 2013-09-12 01:17 - 00571168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-09-12 00:12 - 2013-06-27 12:30 - 10821938 _____ (Adobe Systems, Inc.) C:\Users\Zach\Desktop\Nv2-PC.exe
2013-09-11 15:17 - 2013-09-12 20:52 - 00000000 ____D C:\Users\Zach\AppData\Roaming\qBittorrent
2013-09-11 15:17 - 2013-09-11 15:17 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\qBittorrent
2013-09-11 15:17 - 2013-09-11 15:17 - 00000000 ____D C:\Users\Zach\AppData\Local\qBittorrent
2013-09-11 15:17 - 2013-09-11 15:17 - 00000000 ____D C:\Program Files (x86)\qBittorrent
2013-09-11 08:18 - 2013-08-10 01:22 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 08:18 - 2013-08-10 01:22 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 08:18 - 2013-08-10 01:22 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 08:18 - 2013-08-10 01:21 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 08:18 - 2013-08-10 01:21 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 08:18 - 2013-08-10 01:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 08:18 - 2013-08-10 01:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 08:18 - 2013-08-09 23:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-11 08:18 - 2013-08-09 23:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-11 08:18 - 2013-08-09 23:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-11 08:18 - 2013-08-09 23:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 08:18 - 2013-08-09 23:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-11 08:18 - 2013-08-09 22:27 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 08:18 - 2013-08-09 22:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-11 04:26 - 2013-08-07 21:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 04:26 - 2013-08-04 22:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 04:26 - 2013-08-01 22:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-11 04:26 - 2013-08-01 22:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-11 04:26 - 2013-08-01 22:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-11 04:26 - 2013-08-01 22:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-11 04:26 - 2013-08-01 22:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-11 04:26 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 04:26 - 2013-08-01 22:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-11 04:26 - 2013-08-01 22:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 04:26 - 2013-08-01 22:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-11 04:26 - 2013-08-01 21:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-11 04:26 - 2013-08-01 21:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-11 04:26 - 2013-08-01 21:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-11 04:26 - 2013-08-01 21:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-11 04:26 - 2013-08-01 21:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 04:26 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-11 04:26 - 2013-08-01 20:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-11 04:26 - 2013-08-01 20:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-11 04:26 - 2013-08-01 20:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-11 04:26 - 2013-08-01 20:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-11 04:26 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 04:26 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-11 04:26 - 2013-07-25 22:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 04:26 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-11 04:26 - 2013-07-25 21:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-11 04:26 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-11 01:14 - 2013-09-11 01:18 - 00000000 ____D C:\Users\Zach\Downloads\Mistborn
2013-09-11 01:14 - 2013-09-11 01:15 - 00000000 ____D C:\Users\Zach\Downloads\The Final Empire - Brandon Sanderson - HQ
2013-09-10 16:11 - 2013-09-10 16:11 - 00000000 ____D C:\Users\Zach\AppData\Roaming\WebcamMax
2013-09-10 16:11 - 2013-09-10 16:11 - 00000000 ____D C:\ProgramData\APN
2013-09-08 16:37 - 2013-09-08 16:43 - 00000000 ____D C:\Users\Zach\AppData\Roaming\TrueCrypt
2013-09-08 16:37 - 2013-09-08 16:37 - 00231376 _____ (TrueCrypt Foundation) C:\Windows\system32\Drivers\truecrypt.sys
2013-09-08 16:37 - 2013-09-08 16:37 - 00000000 ____D C:\Program Files\TrueCrypt

==================== One Month Modified Files and Folders =======

2013-10-04 11:23 - 2013-10-04 11:23 - 00000000 ____D C:\FRST
2013-10-04 11:22 - 2013-10-04 11:22 - 01954124 _____ (Farbar) C:\Users\Zach\Desktop\FRST64.exe
2013-10-04 11:22 - 2013-03-23 19:47 - 00004208 _____ C:\Windows\System32\Tasks\Software Updater
2013-10-04 11:22 - 2013-03-23 19:47 - 00004148 _____ C:\Windows\System32\Tasks\Software Updater Ui
2013-10-04 11:22 - 2013-03-18 18:53 - 02063563 _____ C:\Windows\WindowsUpdate.log
2013-10-04 11:22 - 2009-07-14 01:13 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-04 11:21 - 2013-10-01 13:49 - 00003384 _____ C:\Windows\setupact.log
2013-10-04 11:21 - 2013-09-25 11:22 - 00000000 ____D C:\Program Files (x86)\Steam
2013-10-04 11:19 - 2013-06-03 23:31 - 00004950 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Zach-PC-Zach Zach-PC
2013-10-04 11:18 - 2013-03-19 12:23 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2013-10-04 11:18 - 2013-03-18 19:45 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-04 11:17 - 2013-08-03 13:46 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-04 11:17 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-04 02:20 - 2013-03-18 21:09 - 00000000 ____D C:\Users\Zach\AppData\Roaming\DMCache
2013-10-04 02:12 - 2013-03-18 19:45 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-04 02:07 - 2013-03-18 19:46 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-04 01:12 - 2009-07-14 00:45 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-04 01:12 - 2009-07-14 00:45 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-03 18:29 - 2013-10-03 01:00 - 00002552 _____ C:\Windows\LkmdfCoInst.log
2013-10-03 18:29 - 2013-03-18 20:51 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2013-10-03 11:24 - 2013-03-18 21:09 - 00000000 ____D C:\Users\Zach\AppData\Roaming\IDM
2013-10-02 17:48 - 2013-10-02 17:48 - 00022183 _____ C:\Users\Zach\Desktop\Dur.torrent
2013-10-02 10:39 - 2013-10-02 10:39 - 00058282 _____ C:\Users\Zach\Desktop\Extras.Txt
2013-10-02 10:38 - 2013-10-02 10:38 - 00099876 _____ C:\Users\Zach\Desktop\OTL.Txt
2013-10-02 10:23 - 2013-10-02 10:23 - 00602112 _____ (OldTimer Tools) C:\Users\Zach\Desktop\OTL.exe
2013-10-01 13:49 - 2013-10-01 13:49 - 00001006 _____ C:\Windows\PFRO.log
2013-10-01 13:49 - 2013-10-01 13:49 - 00000000 _____ C:\Windows\setuperr.log
2013-10-01 12:49 - 2013-09-30 11:58 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Ventrilo
2013-10-01 12:49 - 2013-03-27 23:21 - 00000000 ____D C:\Users\Zach\AppData\Roaming\DAEMON Tools Lite
2013-10-01 12:48 - 2013-03-23 20:54 - 00000000 ____D C:\Program Files\CCleaner
2013-09-30 11:51 - 2013-09-30 11:51 - 00000913 _____ C:\Users\Zach\Desktop\Ventrilo.lnk
2013-09-30 11:51 - 2013-09-30 11:51 - 00000262 _____ C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
2013-09-30 11:51 - 2013-09-30 11:51 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
2013-09-30 11:51 - 2013-09-30 11:51 - 00000000 ____D C:\Program Files\Ventrilo
2013-09-30 08:22 - 2013-07-07 22:16 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Skype
2013-09-27 19:05 - 2009-07-14 01:08 - 00032554 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-09-27 13:54 - 2013-04-23 20:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-26 01:45 - 2013-09-26 01:11 - 00000000 ____D C:\Users\Zach\AppData\Roaming\.minecraft
2013-09-26 01:11 - 2013-09-26 01:11 - 00675988 _____ C:\Users\Zach\Desktop\Minecraft.exe
2013-09-25 11:31 - 2013-09-25 11:31 - 00000219 _____ C:\Users\Zach\Desktop\Dota 2.url
2013-09-25 11:31 - 2013-09-25 11:31 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-09-25 11:22 - 2013-09-25 11:22 - 00000917 _____ C:\Users\Public\Desktop\Steam.lnk
2013-09-25 11:18 - 2013-03-18 19:54 - 00000000 ____D C:\Program Files (x86)\Steam1
2013-09-25 10:37 - 2013-09-25 10:37 - 00000000 ____D C:\Users\Zach\Desktop\New folder
2013-09-25 10:36 - 2013-09-25 10:36 - 01669632 _____ C:\Users\Zach\Desktop\SteamInstall.msi
2013-09-20 23:55 - 2013-09-20 23:55 - 00000000 ____D C:\Users\Zach\AppData\Local\Urban Trial Freestyle
2013-09-20 23:55 - 2013-09-20 23:55 - 00000000 ____D C:\Users\Zach\AppData\Local\SKIDROW
2013-09-20 23:53 - 2013-09-20 23:53 - 00002291 _____ C:\Users\Public\Desktop\Urban Trial Freestyle.lnk
2013-09-20 23:53 - 2013-09-20 23:53 - 00000000 ____D C:\Program Files (x86)\Tate Multimedia
2013-09-20 23:52 - 2013-09-20 23:52 - 00000000 ____D C:\Users\Zach\Desktop\Urban Trial Freestyle-TiNYiSO
2013-09-20 12:33 - 2013-09-20 12:33 - 00001950 _____ C:\Users\Zach\Desktop\Puzzle Pirates.lnk
2013-09-20 12:33 - 2013-09-20 12:33 - 00001950 _____ C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Puzzle Pirates.lnk
2013-09-20 12:33 - 2013-09-20 12:33 - 00000000 ____D C:\Program Files (x86)\Three Rings Design
2013-09-19 23:54 - 2013-09-19 23:54 - 00001169 _____ C:\Users\Zach\Desktop\Auslogics BoostSpeed.lnk
2013-09-19 23:54 - 2013-09-19 23:54 - 00000000 ____D C:\Windows\System32\Tasks\Auslogics
2013-09-19 23:54 - 2013-09-19 23:54 - 00000000 ____D C:\ProgramData\Auslogics
2013-09-19 23:54 - 2013-09-19 23:54 - 00000000 ____D C:\Program Files (x86)\Auslogics
2013-09-19 20:07 - 2013-03-18 19:46 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-19 20:07 - 2013-03-18 19:46 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-19 20:07 - 2013-03-18 19:46 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-19 15:48 - 2013-03-18 21:09 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager
2013-09-19 14:46 - 2013-09-19 14:46 - 00113464 _____ C:\Users\Zach\Downloads\CollegeRules.13.09.19.College.Girls.Wanna.Have.Fun.XXX.720p.MP4-KTR.nzb
2013-09-19 14:27 - 2013-09-12 14:54 - 00000000 ____D C:\Program Files (x86)\ManyCam
2013-09-19 13:07 - 2013-09-19 13:07 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-09-19 13:07 - 2013-03-18 19:35 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-09-19 13:06 - 2013-08-03 13:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-09-19 13:06 - 2013-03-18 19:28 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-09-19 13:06 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\Help
2013-09-19 13:05 - 2013-07-28 13:34 - 00000000 ____D C:\Users\Zach\AppData\Roaming\NVIDIA
2013-09-18 10:18 - 2013-09-18 10:18 - 00646163 _____ C:\Users\Zach\Downloads\xcite-first.time.auditions.24.nzb
2013-09-17 18:47 - 2013-09-17 18:47 - 00002752 _____ C:\Users\Zach\Downloads\Abutton.java
2013-09-17 18:08 - 2013-03-18 19:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-17 14:46 - 2013-09-17 14:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-17 14:46 - 2013-08-17 00:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox.bak
2013-09-17 13:12 - 2013-09-19 23:53 - 00000000 ____D C:\Users\Zach\Desktop\-AslgcsBstSpd6.2-
2013-09-16 17:07 - 2013-09-16 17:07 - 00005088 _____ C:\Users\Zach\Desktop\Lab2 - Zachary Bazarsky.rar
2013-09-16 15:20 - 2013-09-16 15:20 - 00000000 ____D C:\Users\Zach\Desktop\LLab2
2013-09-16 15:19 - 2013-09-16 15:19 - 00032822 _____ C:\Users\Zach\Documents\cc_20130916_151927.reg
2013-09-16 15:19 - 2013-08-23 00:56 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Media Player Classic
2013-09-16 15:19 - 2013-03-18 19:47 - 00000000 ____D C:\Users\Zach\AppData\Roaming\uTorrent
2013-09-16 15:19 - 2013-02-15 23:44 - 00000000 ____D C:\Windows\Panther
2013-09-15 12:41 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\rescache
2013-09-14 19:53 - 2011-03-03 13:08 - 00000000 ___RD C:\Users\Zach\Desktop\Work
2013-09-14 19:06 - 2013-09-14 19:06 - 00634093 _____ C:\Users\Zach\Downloads\Mud.2012.NTSC.MULTi.DVDR-FUTiL.nzb
2013-09-14 19:05 - 2013-09-14 19:04 - 02657988 _____ C:\Users\Zach\Downloads\Star.Trek.Into.Darkness.2013.720p.BluRay.DD5.1.x264-TayTO.nzb
2013-09-13 21:36 - 2013-03-18 18:56 - 00122984 _____ C:\Users\Zach\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-13 21:35 - 2009-07-14 00:45 - 00479832 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-13 11:51 - 2013-09-13 11:26 - 00000000 ____D C:\Program Files (x86)\MathType
2013-09-13 11:50 - 2013-09-13 11:50 - 00000764 _____ C:\Users\Zach\AppData\Roaming\keygen.il
2013-09-13 11:27 - 2013-09-13 11:27 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Design Science
2013-09-13 11:25 - 2013-03-18 18:54 - 00000000 ___RD C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-13 11:23 - 2013-09-13 11:22 - 00000792 _____ C:\Users\Zach\AppData\Roaming\InstallMTW6.9.il
2013-09-13 11:23 - 2013-03-18 19:54 - 00000000 ____D C:\Program Files\WinRAR
2013-09-13 11:21 - 2013-09-13 11:21 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-09-13 11:18 - 2013-09-13 11:18 - 00000000 ____D C:\Users\Zach\Desktop\Design Science MathType 6.9
2013-09-13 11:14 - 2013-09-13 11:14 - 00000000 ____D C:\Users\Zach\AppData\Roaming\xm1
2013-09-13 11:13 - 2013-09-13 11:13 - 00000987 _____ C:\Users\Zach\Desktop\Texmaker.lnk
2013-09-13 11:13 - 2013-09-13 11:13 - 00000987 _____ C:\Users\UpdatusUser\Desktop\Texmaker.lnk
2013-09-13 11:13 - 2013-09-13 11:13 - 00000000 ____D C:\Users\Zach\AppData\Roaming\MiKTeX
2013-09-13 11:13 - 2013-09-13 11:13 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Texmaker
2013-09-13 11:13 - 2013-09-13 11:13 - 00000000 ____D C:\Users\Zach\AppData\Local\MiKTeX
2013-09-13 11:13 - 2013-09-13 11:12 - 00000000 ____D C:\Program Files (x86)\Texmaker
2013-09-13 11:11 - 2013-09-13 11:11 - 00000000 ____D C:\ProgramData\MiKTeX
2013-09-13 11:11 - 2013-09-13 11:10 - 00000000 ____D C:\Program Files (x86)\MiKTeX 2.9
2013-09-13 10:56 - 2013-03-28 16:14 - 00000000 ____D C:\Users\Zach\Desktop\STUFF
2013-09-12 20:52 - 2013-09-11 15:17 - 00000000 ____D C:\Users\Zach\AppData\Roaming\qBittorrent
2013-09-12 16:01 - 2013-04-24 01:37 - 00000000 ____D C:\Users\Zach\AppData\Roaming\vlc
2013-09-12 16:00 - 2013-04-24 01:38 - 00000000 ____D C:\Users\Zach\AppData\Roaming\dvdcss
2013-09-12 14:51 - 2013-03-18 19:59 - 00000000 ____D C:\Users\Zach\AppData\Local\Paint.NET
2013-09-12 04:58 - 2013-09-19 13:06 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-09-12 04:58 - 2013-09-19 13:06 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 29337376 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 22102304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 15901448 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 15703688 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 13628208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 12947360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 11274528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-09-12 04:58 - 2013-09-19 13:05 - 09281032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 07720576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 07648000 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 06329552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 02986672 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 02970400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 02789152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 02630304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 02367264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 02007328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6432723.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6432723.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 00681760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 00603424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 00586016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 00515360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-09-12 04:58 - 2013-09-19 13:05 - 00022814 _____ C:\Windows\system32\nvinfo.pb
2013-09-12 03:25 - 2013-09-19 13:06 - 06599968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-09-12 03:25 - 2013-09-19 13:06 - 03452192 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-09-12 03:25 - 2013-09-19 13:06 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-09-12 03:25 - 2013-09-19 13:06 - 00920864 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-09-12 03:25 - 2013-09-19 13:06 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-09-12 03:25 - 2013-09-19 13:06 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-09-12 01:17 - 2013-09-12 01:17 - 00571168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-09-11 16:18 - 2013-04-27 14:58 - 00000000 ____D C:\Users\Zach\Documents\Notepad Backup
2013-09-11 15:17 - 2013-09-11 15:17 - 00000000 ____D C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\qBittorrent
2013-09-11 15:17 - 2013-09-11 15:17 - 00000000 ____D C:\Users\Zach\AppData\Local\qBittorrent
2013-09-11 15:17 - 2013-09-11 15:17 - 00000000 ____D C:\Program Files (x86)\qBittorrent
2013-09-11 09:45 - 2013-03-18 18:54 - 00000000 ___RD C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-11 08:17 - 2013-08-07 15:06 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 08:16 - 2013-02-16 00:20 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-11 01:18 - 2013-09-11 01:14 - 00000000 ____D C:\Users\Zach\Downloads\Mistborn
2013-09-11 01:15 - 2013-09-11 01:14 - 00000000 ____D C:\Users\Zach\Downloads\The Final Empire - Brandon Sanderson - HQ
2013-09-10 23:22 - 2013-03-18 19:05 - 00003864 _____ C:\Windows\System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2
2013-09-10 23:22 - 2013-03-18 19:05 - 00003616 _____ C:\Windows\System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon
2013-09-10 16:11 - 2013-09-10 16:11 - 00000000 ____D C:\Users\Zach\AppData\Roaming\WebcamMax
2013-09-10 16:11 - 2013-09-10 16:11 - 00000000 ____D C:\ProgramData\APN
2013-09-10 16:08 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-09-10 13:16 - 2013-09-13 11:19 - 00000000 ____D C:\Users\Zach\Desktop\RarLab.WinRAR.v5.00.Cracked-EAT
2013-09-08 16:43 - 2013-09-08 16:37 - 00000000 ____D C:\Users\Zach\AppData\Roaming\TrueCrypt
2013-09-08 16:37 - 2013-09-08 16:37 - 00231376 _____ (TrueCrypt Foundation) C:\Windows\system32\Drivers\truecrypt.sys
2013-09-08 16:37 - 2013-09-08 16:37 - 00000000 ____D C:\Program Files\TrueCrypt
2013-09-06 10:25 - 2013-03-18 20:06 - 00000000 ____D C:\Program Files (x86)\Everything
2013-09-05 10:23 - 2013-09-17 18:32 - 00000000 ____D C:\Users\Zach\Desktop\Lab01 - A basic element

Files to move or delete:
====================
C:\ProgramData\hash.dat


Some content of TEMP:
====================
C:\Users\Zach\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Zach\AppData\Local\Temp\sfareca00001.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-02 00:49

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013
Ran by Zach at 2013-10-04 11:24:09
Running from C:\Users\Zach\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

µTorrent (HKCU Version: 3.3.1.30003)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe AIR (x32 Version: 3.7.0.2090)
Adobe Digital Editions 2.0 (x32 Version: 2.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.175)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168)
Adobe Reader XI (11.0.04) (x32 Version: 11.0.04)
AirPort (x32 Version: 5.6.1.2)
A-PDF Page Cut (x32)
Apple Application Support (x32 Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
AsfTools 3.1 (remove only) (x32)
Auslogics BoostSpeed (x32 Version: 6.2.0.0)
BisonCam (x32 Version: 9.2.1.71.42)
BitMeter (x32)
Bonjour (Version: 3.0.0.10)
calibre (x32 Version: 0.9.32)
CCleaner (Version: 4.06)
CopyTrans Suite Remove Only (HKCU Version: 2.37)
CrystalDiskInfo 5.4.2 Shizuku Edition (x32 Version: 5.4.2)
DAEMON Tools Lite (x32 Version: 4.47.1.0333)
Daum PotPlayer 1.5.36205 x64 Edition
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
Dota 2 (x32)
Driver Fusion (x32 Version: 1.4.0)
Duplicate Video Search version 15.3.3 (x32 Version: 15.3.3)
eReg (x32 Version: 1.20.138.34)
Everything 1.2.1.371 (x32)
F.lux (HKCU)
Foxit Reader (x32 Version: 5.4.5.124)
GeForce Experience NvStream Client Components (Version: 0.1.87)
Google Chrome (x32 Version: 65.85.172)
Google Update Helper (x32 Version: 1.3.21.153)
Hotkey 3.3017 (x32 Version: 3.3017)
IconPackager (x32 Version: 5.00)
IconPackager (x32)
iFunbox (v2.6.2375.747), iFunbox DevTeam (x32 Version: v2.6.2375.747)
ImgBurn (x32 Version: 2.5.7.0)
Intel® Control Center (x32 Version: 1.2.1.1007)
Intel® Management Engine Components (x32 Version: 7.0.0.1144)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.6.1.0536)
Intel® PROSet/Wireless WiFi Software Driver (Version: 15.06.1000.0167)
Intel® Rapid Storage Technology (x32 Version: 10.1.0.1008)
Intel® Update Manager (x32 Version: 1.6.3.70)
Intel® PROSet/Wireless Software (x32 Version: 15.6.1)
Intel® PROSet/Wireless WiFi Software (Version: 15.06.1000.0142)
Intel® SSD Toolbox (x32 Version: 3.1.8.400)
Internet Download Manager (x32)
IrfanView (remove only) (x32 Version: 4.35)
ITE Infrared Transceiver (x32 Version: 1.00.0000)
iTunes (Version: 11.0.5.5)
Java 7 Update 17 (64-bit) (Version: 7.0.170)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
JDownloader 0.9 (x32 Version: 0.9)
JDownloader 2.0 (x32 Version: 2.0)
JMicron Ethernet Adapter NDIS Driver (x32 Version: 6.0.26.6)
JMicron Flash Media Controller Driver (x32 Version: 1.0.54.1)
K-Lite Codec Pack 9.8.0 (64-bit) (Version: 9.8.0)
K-Lite Codec Pack 9.8.0 (Full) (x32 Version: 9.8.0)
KMSnano 25 (Version: KMSnano 25)
Logitech Gaming Software (Version: 8.40.83)
Logitech Gaming Software 8.46 (Version: 8.46.27)
Logitech SetPoint 6.61 (Version: 6.61.15)
Logitech Unifying Software 2.10 (Version: 2.10.37)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MathType 6 (x32 Version: 6.9)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Access MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Excel MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Groove MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017)
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017)
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4420.1017)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Security Essentials (Version: 4.3.215.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017)
MiKTeX 2.9 (x32 Version: 2.9)
MozBackup 1.5.1 (x32)
Mozilla Firefox 24.0 (x86 en-US) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MP3Resizer 2.1.0 (x32)
Nightly 26.0a1 (x86 en-US) (x32 Version: 26.0a1)
Notepad++ (x32 Version: 6.4.5)
NVIDIA 3D Vision Controller Driver 326.01 (Version: 326.01)
NVIDIA 3D Vision Driver 327.23 (Version: 327.23)
NVIDIA Control Panel 327.23 (Version: 327.23)
NVIDIA GeForce Experience 1.6.1 (Version: 1.6.1)
NVIDIA Graphics Driver 327.23 (Version: 327.23)
NVIDIA HD Audio Driver 1.3.26.4 (Version: 1.3.26.4)
NVIDIA Install Application (Version: 2.1002.133.902)
NVIDIA PhysX (x32 Version: 9.13.0725)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2723)
NVIDIA Update 8.3.14 (Version: 8.3.14)
NVIDIA Update Components (Version: 8.3.14)
NVIDIA Virtual Audio 1.2.5 (Version: 1.2.5)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017)
Paint.NET v3.5.10 (Version: 3.60.0)
Puzzle Pirates (HKCU)
qBittorrent 3.0.11 (x32 Version: 3.0.11)
QuickPar 0.9 (x32 Version: 0.9)
Rainmeter (x32 Version: 2.5 r1842)
Realtek Ethernet Controller Driver (x32 Version: 7.69.304.2013)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6307)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.39.0)
Revo Uninstaller 1.94 (x32 Version: 1.94)
SABnzbd 0.7.16 (x32 Version: 0.7.16)
SafeConnect (x32)
SecureW2 Enterprise Client 3.5.9 (x32)
SHIELD Streaming (Version: 1.05.28)
Skype™ 6.6 (x32 Version: 6.6.106)
Speccy (Version: 1.22)
SpeedFan (remove only) (x32)
Steam (x32 Version: 1.0.0.0)
SumatraPDF (x32 Version: 2.3.2)
Synaptics Pointing Device Driver (Version: 16.3.15.1)
System Requirements Lab for Intel (x32 Version: 4.5.13.0)
TeraCopy 2.3 beta 2
Texmaker (x32)
The KMPlayer (remove only) (x32 Version: 3.5.0.81)
TreeSize Free V2.7 (x32 Version: 2.7)
TrueCrypt (x32 Version: 7.1a)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update for Microsoft Access 2013 (KB2752093) 64-Bit Edition
Update for Microsoft Lync 2013 (KB2817621) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition
Update for Microsoft Office 2013 (KB2737954) 64-Bit Edition
Update for Microsoft Office 2013 (KB2752101) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760533) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760538) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767851) 64-Bit Edition
Update for Microsoft Office 2013 (KB2767860) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768014) 64-Bit Edition
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817311) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817493) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817624) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817630) 64-Bit Edition
Update for Microsoft Office 2013 (KB2817632) 64-Bit Edition
Update for Microsoft OneNote 2013 (KB2817467) 64-Bit Edition
Update for Microsoft Outlook 2013 (KB2825632) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2810006) 64-Bit Edition
Update for Microsoft SkyDrive Pro (KB2817622) 64-Bit Edition
Update for Microsoft Visio 2013 (KB2810008) 64-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition
Update for Microsoft Word 2013 (KB2817308) 64-Bit Edition
Update for Microsoft Word 2013 (KB2817627) 64-Bit Edition
Urban Trial Freestyle (x32)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Waterfox (Version: 18.0.1)
WD Drive Utilities (x32 Version: 1.0.3.3)
WD Security (x32 Version: 1.0.1.5)
WD SmartWare (Version: 1.6.5.2)
WebCam Installer (x32 Version: 3.32)
WebFerret (x32)
Windows 7 USB/DVD Download Tool (x32 Version: 1.0.30)
WinPatrol (Version: 28.0.2013.0)
WinRAR 5.00 (64-bit) (Version: 5.00.0)
Xilisoft Video Converter Ultimate (x32 Version: 7.7.2.20130508)

==================== Restore Points =========================


==================== Hosts content: ==========================

2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {187386C6-45BB-4AE7-A6B6-4F57CBF5EE94} - System32\Tasks\{81797141-70DA-45A3-B941-762F3A1BFE1C} => Firefox.exe http://ui.skype.com/...?LastError=1603
Task: {27A8F8DF-96E3-4B42-B18E-BFE7C695A9D8} - System32\Tasks\Trigger KMS Activation => C:\Program Files\KMSnano\TriggerKMS.exe [2013-01-26] ()
Task: {34E482B1-6415-4DBB-85DA-C13A35C24458} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-18] (Google Inc.)
Task: {40D9F6E4-FD94-4DC9-B0F2-7AAC0D485823} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-19] (Adobe Systems Incorporated)
Task: {482AF800-604A-45C0-A98A-ED8393C78148} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {4EE0B158-DDE2-4ECC-B0C9-F4A99CBB3940} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {6D68DAC9-17DA-4A01-BA78-209B2F6DE8E9} - System32\Tasks\Auslogics\BoostSpeed\Start BoostSpeed оn Zach logon => C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [2013-09-16] (Auslogics)
Task: {6E10A651-F3F6-4763-BCD6-F6A8CC6CC795} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\softwareupdater.bootstrapper.exe [2013-07-08] ()
Task: {6ED04153-9632-4E99-817E-D7B048F474C6} - System32\Tasks\SecureW2 Task => C:\Program Files (x86)\SecureW2\sw2_tray.exe [2012-11-02] (SecureW2 B.V.)
Task: {7783465D-14C8-4498-9FB5-93AA246581FD} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {7B034C02-6DDE-4765-8AC6-1786ADDFE94C} - System32\Tasks\Intel_C_LNEL119500CT250DGN => C:\Program Files (x86)\Intel\Intel® SSD Toolbox\Intel SSD Toolbox.exe [2013-08-13] (Intel)
Task: {86C5DA42-E5E5-47F7-BDB1-5B6654D515B6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {8869E8AC-4ABB-453E-8360-E0FCBC14DAA8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {98595EC0-FBE7-4F7E-AE77-E366C829180B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-18] (Google Inc.)
Task: {A7F3C07B-C8C8-4A37-A9A5-250553926B08} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Zach-PC-Zach Zach-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {ABC7ACC9-76BD-495E-93F7-BCAB6B4C8137} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\Bootstrap.exe [2013-07-03] (Intel Corporation)
Task: {B6DC7A85-AD25-4FA7-A9C3-37AD7215A2C8} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\Bootstrap.exe [2013-07-03] (Intel Corporation)
Task: {BC7CEC5E-0355-402A-BC36-BD590581A77A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {CD83B4DF-5F13-4391-8B43-6B450010108D} - System32\Tasks\Freemium1ClickMaint => C:\Users\Zach\AppData\Roaming\IDM\1Click.exe
Task: {F41B498D-6651-48E8-A699-BDCB5EF989FD} - System32\Tasks\Software Updater Ui => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-09-11] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-07-10 19:31 - 2013-07-10 19:31 - 08865448 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-03-28 16:11 - 2012-01-29 09:55 - 00657920 _____ () C:\Program Files\TeraCopy\TeraCopy64.dll
2013-01-28 13:08 - 2013-01-28 13:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-01-28 13:08 - 2013-01-28 13:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-07-10 19:31 - 2013-07-10 19:31 - 08865448 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-09-19 23:54 - 2013-09-16 18:25 - 00564608 _____ () C:\Program Files (x86)\Auslogics\BoostSpeed\sqlite3.dll
2013-09-03 16:40 - 2013-10-04 11:18 - 00158720 _____ () C:\Users\Zach\AppData\Local\Temp\sfareca00001.dll
2013-03-19 12:23 - 2013-10-04 11:18 - 00192512 _____ () C:\Users\Zach\AppData\Local\Temp\sfamcc00001.dll
2009-06-06 14:50 - 2009-06-06 14:50 - 00019968 _____ () C:\Program Files (x86)\Hotkey\Audiodll.dll
2013-04-25 12:21 - 2012-12-09 21:46 - 00600868 ____N () C:\Program Files (x86)\BillP Studios\WinPatrol\sqlite3.dll
2013-08-15 01:44 - 2013-08-15 01:44 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\eb4812681f6ab4406053f3a1803e6da0\IsdiInterop.ni.dll
2013-03-18 18:56 - 2010-11-05 23:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2013-09-17 14:46 - 2013-09-17 14:46 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-03-25 14:23 - 2013-08-21 18:18 - 00687104 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2013-03-25 21:54 - 2013-09-21 14:35 - 01121192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2013-03-26 16:16 - 2013-09-10 18:20 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2012-12-11 09:51 - 2013-06-14 19:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-12-11 09:51 - 2013-06-14 19:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-12-11 09:51 - 2013-06-14 19:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:D30E8FC9

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Microsoft Teredo Tunneling Adapter
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: SBRE
Description: SBRE
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SBRE
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/04/2013 11:17:36 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/04/2013 11:17:35 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (10/04/2013 11:17:35 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (10/04/2013 11:17:35 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]

Error: (10/04/2013 01:05:40 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/03/2013 06:27:58 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/03/2013 11:12:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/03/2013 00:41:42 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2013 06:34:40 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2013 06:03:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (10/04/2013 11:19:01 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (10/04/2013 11:19:01 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic System Host service hung on starting.

Error: (10/04/2013 11:18:59 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic Service Host service hung on starting.

Error: (10/04/2013 11:17:34 AM) (Source: Service Control Manager) (User: )
Description: The WebcamMax, WDM Video Capture service failed to start due to the following error:
%%1058

Error: (10/04/2013 11:17:33 AM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service depends on the Shell Hardware Detection service which failed to start because of the following error:
%%1058

Error: (10/04/2013 11:17:32 AM) (Source: Service Control Manager) (User: )
Description: The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Error: (10/04/2013 11:17:32 AM) (Source: Service Control Manager) (User: )
Description: The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.

Error: (10/04/2013 11:17:32 AM) (Source: Service Control Manager) (User: )
Description: The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

Error: (10/04/2013 01:07:04 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (10/04/2013 01:07:04 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic System Host service hung on starting.


Microsoft Office Sessions:
=========================
Error: (10/04/2013 11:17:36 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/04/2013 11:17:35 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (10/04/2013 11:17:35 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (10/04/2013 11:17:35 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]

Error: (10/04/2013 01:05:40 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/03/2013 06:27:58 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/03/2013 11:12:16 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/03/2013 00:41:42 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2013 06:34:40 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2013 06:03:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
Date: 2013-03-30 15:39:34.229
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00185_002\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-30 13:52:58.690
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-30 13:52:03.392
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 23:31:06.603
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 23:31:06.571
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 23:30:09.698
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 23:30:09.667
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 23:30:08.565
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 23:30:08.530
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.

Date: 2013-03-19 23:30:07.651
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\shell32.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 18%
Total physical RAM: 16361.34 MB
Available physical RAM: 13364.88 MB
Total Pagefile: 32720.86 MB
Available Pagefile: 29375.74 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.79 GB) (Free:63.39 GB) NTFS
Drive d: () (Fixed) (Total:698.54 GB) (Free:139.69 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 348944AC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 5A94F392)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=699 GB) - (Type=07 NTFS)

==================== End Of Log ============================



# AdwCleaner v3.006 - Report created 04/10/2013 at 11:26:29
# Updated 01/10/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Zach - ZACH-PC
# Running from : D:\Downloads\Programs\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : SystemStoreService

***** [ Files / Folders ] *****

File Found : C:\END
File Found : C:\Windows\System32\Tasks\Software Updater
File Found : C:\Windows\System32\Tasks\Software Updater Ui
Folder Found : C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Folder Found : C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Folder Found : C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{E71B541F-5E72-5555-A47C-E47863195841}
Folder Found C:\Program Files (x86)\adawaretb
Folder Found C:\Program Files (x86)\Conduit
Folder Found C:\Program Files (x86)\SoftwareUpdater
Folder Found C:\ProgramData\apn
Folder Found C:\ProgramData\blekko toolbars
Folder Found C:\Users\Zach\AppData\Local\Conduit
Folder Found C:\Users\Zach\AppData\Local\SwvUpdater
Folder Found C:\Users\Zach\AppData\LocalLow\adawaretb
Folder Found C:\Users\Zach\AppData\LocalLow\Conduit
Folder Found C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\jetpack

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\smartbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\Software\adawaretb
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\prefs.js ]

Line Found : user_pref("extensions.skipscreen.hostMatchStr", "hxxp://www.4shared.com/(get|audio|file|document|dir)/.*|hxxp://.*depositfiles.com/(([a-z]{2})/files/|auth-).*|hxxp://(www.)*digg.com/(.{5}|.{6})$|hxxp:[...]
Line Found : user_pref("extensions.smarterwiki.search_surfcanyon", false);

-\\ Google Chrome v30.0.1599.66

[ File : C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3202 octets] - [04/10/2013 11:26:29]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3262 octets] ##########





# AdwCleaner v3.006 - Report created 04/10/2013 at 11:26:52
# Updated 01/10/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Zach - ZACH-PC
# Running from : D:\Downloads\Programs\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : SystemStoreService

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\Program Files (x86)\adawaretb
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\SoftwareUpdater
Folder Deleted : C:\Users\Zach\AppData\Local\Conduit
Folder Deleted : C:\Users\Zach\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Zach\AppData\LocalLow\adawaretb
Folder Deleted : C:\Users\Zach\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\jetpack
Folder Deleted : C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\Extensions\{E71B541F-5E72-5555-A47C-E47863195841}
Folder Deleted : C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Folder Deleted : C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
File Deleted : C:\END
File Deleted : C:\Windows\System32\Tasks\Software Updater Ui
File Deleted : C:\Windows\System32\Tasks\Software Updater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKLM\Software\adawaretb
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686


-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\prefs.js ]

Line Deleted : user_pref("extensions.skipscreen.hostMatchStr", "hxxp://www.4shared.com/(get|audio|file|document|dir)/.*|hxxp://.*depositfiles.com/(([a-z]{2})/files/|auth-).*|hxxp://(www.)*digg.com/(.{5}|.{6})$|hxxp:[...]
Line Deleted : user_pref("extensions.smarterwiki.search_surfcanyon", false);

-\\ Google Chrome v30.0.1599.66

[ File : C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3358 octets] - [04/10/2013 11:26:29]
AdwCleaner[S0].txt - [3203 octets] - [04/10/2013 11:26:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3263 octets] ##########



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.3 (09.27.2013:1)
OS: Windows 7 Ultimate x64
Ran by Zach on Fri 10/04/2013 at 11:33:03.57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-791533140-1803832889-3702046808-1000\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\updater by sweetpacks
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\softwareupdater_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\softwareupdater_rasmancs
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{75B74648-32B4-40B8-B92F-07A6AC91400D}



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\{c4cfc0de-134f-4466-b2a2-ff7c59a8bfad}
Successfully deleted the following from C:\Users\Zach\AppData\Roaming\mozilla\firefox\profiles\do5y9nnf.default-1376761741539\prefs.js

user_pref("extensions.bootstrappedAddons", "{\"{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}\":{\"version\":\"2.3.2\",\"type\":\"extension\",\"descriptor\":\"C:\\\\Users\\\\Zach\\\\A
user_pref("extensions.skipscreen.hostMatchStr", "hxxp://www.4shared.com/(get|audio|file|document|dir)/.*|hxxp://.*depositfiles.com/(([a-z]{2})/files/|auth-).*|hxxp://(www.)*di
Emptied folder: C:\Users\Zach\AppData\Roaming\mozilla\firefox\profiles\do5y9nnf.default-1376761741539\minidumps [8 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Zach\appdata\local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri at 11:34:13.31
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#4
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-10-04 11:35:55
-----------------------------
11:35:55.865 OS Version: Windows x64 6.1.7601 Service Pack 1
11:35:55.865 Number of processors: 8 586 0x2A07
11:35:55.865 ComputerName: ZACH-PC UserName: Zach
11:35:56.103 Initialize success
11:36:09.146 AVAST engine defs: 13100400
11:36:15.239 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:36:15.240 Disk 0 Vendor: INTEL_SS PWG4 Size: 238475MB BusType: 3
11:36:15.241 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
11:36:15.243 Disk 1 Vendor: ST975042 0001 Size: 715404MB BusType: 3
11:36:15.252 Disk 0 MBR read successfully
11:36:15.253 Disk 0 MBR scan
11:36:15.255 Disk 0 Windows 7 default MBR code
11:36:15.257 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
11:36:15.260 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 238373 MB offset 206848
11:36:15.268 Disk 0 scanning C:\Windows\system32\drivers
11:36:17.624 Service scanning
11:36:24.088 Modules scanning
11:36:24.358 AVAST engine scan C:\Windows
11:36:24.976 AVAST engine scan C:\Windows\system32
11:37:21.695 AVAST engine scan C:\Windows\system32\drivers
11:37:24.596 AVAST engine scan C:\Users\Zach
11:40:36.929 AVAST engine scan C:\ProgramData
11:40:45.696 Scan finished successfully
11:46:39.364 Disk 0 MBR has been saved successfully to "C:\Users\Zach\Desktop\MBR.dat"
11:46:39.364 The log file has been saved successfully to "C:\Users\Zach\Desktop\aswMBR.txt"



Summary
Operating System
Windows 7 Ultimate 64-bit SP1
CPU
Intel Core i7 2820QM @ 2.30GHz 47 °C
Sandy Bridge 32nm Technology
RAM
16.0GB Dual-Channel DDR3 @ 798MHz (9-9-9-27)
Motherboard
CLEVO P170HM3 (SOCKET 0) 48 °C
Graphics
Generic PnP Monitor (1920x1080@60Hz)
2048MB NVIDIA GeForce GTX 580M (CLEVO/KAPOK Computer) 47 °C
Hard Drives
233GB INTEL SSDSC2MH250A2 (SSD)
699GB Seagate ST9750420AS (SATA) 26 °C
Optical Drives
DTSOFT Virtual CdRom Device
TSSTcorp CDDVDW TS-L633F
Audio
Realtek High Definition Audio
Operating System
Windows 7 Ultimate 64-bit SP1
Computer type: Notebook
Installation Date:
Windows Security Center
User Account Control (UAC) Disabled
Firewall Enabled
Windows Update
AutoUpdate Download Automatically and Install at Set Scheduled time
Schedule Frequency Every Day
Schedule Time 3:00 AM
Windows Defender
Windows Defender Disabled
Antivirus
Antivirus Disabled
Company Name Microsoft
Display Name Microsoft Security Essentials
Product Version 4.3.215.0
Virus Signature Database Up to date
.NET Frameworks installed
v4.5 Full
v4.5 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 10.0.9200.16686
PowerShell
Version 2.0
Java
Java Runtime Environment
Path C:\Program Files (x86)\Java\jre7\bin\java.exe
Version 7.0
Update 25
Build 17
Java Runtime Environment
Path C:\Program Files\Java\jre7\bin\java.exe
Version 7.0
Update 17
Build 02
Environment Variables
USERPROFILE C:\Users\Zach
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Zach\AppData\Local\Temp
TMP C:\Users\Zach\AppData\Local\Temp
MOZ_PLUGIN_PATH C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\
Path C:\Program Files\Intel\WiFi\bin\
C:\Program Files\Common Files\Intel\WirelessCommon\
Machine Variables
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
OS Windows_NT
Path C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
C:\Windows\system32
C:\Windows
C:\Windows\System32\Wbem
C:\Windows\System32\WindowsPowerShell\v1.0\
C:\Program Files\Intel\WiFi\bin\
C:\Program Files\Common Files\Intel\WirelessCommon\
C:\Program Files (x86)\Calibre2\
C:\Program Files (x86)\MiKTeX 2.9\miktex\bin\
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE AMD64
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
NUMBER_OF_PROCESSORS 8
PROCESSOR_LEVEL 6
PROCESSOR_IDENTIFIER Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
PROCESSOR_REVISION 2a07
windows_tracing_logfile C:\BVTBin\Tests\installpackage\csilogfile.log
windows_tracing_flags 3
asl.log Destination=file
Battery
AC Line Online
Battery Charge % 100 %
Battery State High
Remaining Battery Time Unknown
Power Profile
Active power scheme High performance
Hibernation Enabled
Turn Off Monitor after: (On AC Power) 15 min
Turn Off Monitor after: (On Battery Power) 15 min
Turn Off Hard Disk after: (On AC Power) 20 min
Turn Off Hard Disk after: (On Battery Power) 20 min
Suspend after: (On AC Power) 30 min
Suspend after: (On Battery Power) Never
Screen saver Disabled
Uptime
Current Session
Current Time 10/4/2013
Current Uptime 983 sec (0 d, 00 h, 16 m, 23 s)
Last Boot Time 10/4/2013 ?
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format
Time Format
Process List
AppleMobileDeviceService.exe
Process ID 1680
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Memory Usage 9.51 MB
Peak Memory Usage 9.57 MB
armsvc.exe
Process ID 1636
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 3.88 MB
Peak Memory Usage 3.94 MB
audiodg.exe
Process ID 4928
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 18 MB
Peak Memory Usage 27 MB
BoostSpeed.exe
Process ID 2328
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
Memory Usage 9.71 MB
Peak Memory Usage 1.45 GB
BTHSAmpPalService.exe
Process ID 3960
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
Memory Usage 4.50 MB
Peak Memory Usage 4.54 MB
BTHSSecurityMgr.exe
Process ID 4528
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
Memory Usage 9.17 MB
Peak Memory Usage 9.23 MB
conhost.exe
Process ID 3532
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 5.22 MB
Peak Memory Usage 5.24 MB
conhost.exe
Process ID 1456
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 3.13 MB
Peak Memory Usage 3.13 MB
csrss.exe
Process ID 604
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 5.02 MB
Peak Memory Usage 5.03 MB
csrss.exe
Process ID 720
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 7.73 MB
Peak Memory Usage 14 MB
daemonu.exe
Process ID 2364
User UpdatusUser
Domain Zach-PC
Path C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
Memory Usage 11 MB
Peak Memory Usage 12 MB
dllhost.exe
Process ID 5592
User Zach
Domain Zach-PC
Path C:\Windows\system32\DllHost.exe
Memory Usage 7.95 MB
Peak Memory Usage 7.95 MB
dwm.exe
Process ID 2064
User Zach
Domain Zach-PC
Path C:\Windows\system32\Dwm.exe
Memory Usage 40 MB
Peak Memory Usage 48 MB
Eap3Host.exe
Process ID 2752
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\Eap3Host.exe
Memory Usage 8.25 MB
Peak Memory Usage 8.31 MB
EvtEng.exe
Process ID 1820
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Intel\WiFi\bin\EvtEng.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
explorer.exe
Process ID 4944
User Zach
Domain Zach-PC
Path C:\Windows\explorer.exe
Memory Usage 80 MB
Peak Memory Usage 80 MB
firefox.exe
Process ID 5932
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Memory Usage 301 MB
Peak Memory Usage 326 MB
Hotkey.exe
Process ID 2580
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\Hotkey\Hotkey.exe
Memory Usage 27 MB
Peak Memory Usage 27 MB
IAStorDataMgrSvc.exe
Process ID 3452
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Intel\Intel Rapid Storage Technology\IAStorDataMgrSvc.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
IDMan.exe
Process ID 3948
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\Internet Download Manager\IDMan.exe
Memory Usage 25 MB
Peak Memory Usage 28 MB
KHALMNPR.exe
Process ID 2552
User Zach
Domain Zach-PC
Path C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
Memory Usage 16 MB
Peak Memory Usage 16 MB
LCore.exe
Process ID 2504
User Zach
Domain Zach-PC
Path C:\Program Files\Logitech Gaming Software\LCore.exe
Memory Usage 50 MB
Peak Memory Usage 50 MB
LMS.exe
Process ID 5172
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Intel\Intel Management Engine Components\LMS\LMS.exe
Memory Usage 4.80 MB
Peak Memory Usage 4.84 MB
LogiAppBroker.exe
Process ID 6064
User Zach
Domain Zach-PC
Path C:\Program Files\Logitech\SetPointP\LogiAppBroker.exe
Memory Usage 7.50 MB
Peak Memory Usage 7.52 MB
lsass.exe
Process ID 776
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
lsm.exe
Process ID 788
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 4.74 MB
Peak Memory Usage 4.74 MB
mDNSResponder.exe
Process ID 1780
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Bonjour\mDNSResponder.exe
Memory Usage 6.63 MB
Peak Memory Usage 6.63 MB
MsMpEng.exe
Process ID 424
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Microsoft Security Client\MsMpEng.exe
Memory Usage 39 MB
Peak Memory Usage 78 MB
MSOSYNC.EXE
Process ID 4948
User Zach
Domain Zach-PC
Path C:\Program Files\Microsoft Office\Office15\MsoSync.exe
Memory Usage 16 MB
Peak Memory Usage 21 MB
msseces.exe
Process ID 2452
User Zach
Domain Zach-PC
Path C:\Program Files\Microsoft Security Client\msseces.exe
Memory Usage 15 MB
Peak Memory Usage 17 MB
nvSCPAPISvr.exe
Process ID 1008
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
Memory Usage 5.97 MB
Peak Memory Usage 6.97 MB
nvstreamsvc.exe
Process ID 3524
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
nvstreamsvc.exe
Process ID 2236
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 9.25 MB
Peak Memory Usage 10 MB
NvTmru.exe
Process ID 2492
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
Memory Usage 8.41 MB
Peak Memory Usage 8.50 MB
nvtray.exe
Process ID 4052
User Zach
Domain Zach-PC
Path C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
nvvsvc.exe
Process ID 1724
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
nvvsvc.exe
Process ID 984
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 7.99 MB
Peak Memory Usage 8.09 MB
nvxdsync.exe
Process ID 1716
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
Memory Usage 23 MB
Peak Memory Usage 23 MB
PowerBiosServer.exe
Process ID 2396
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
RegSrvc.exe
Process ID 2820
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
Memory Usage 7.65 MB
Peak Memory Usage 7.69 MB
scManager.sys
Process ID 2864
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\SafeConnect\scManager.sys
Memory Usage 6.91 MB
Peak Memory Usage 6.93 MB
services.exe
Process ID 756
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 12 MB
Peak Memory Usage 22 MB
SetPoint.exe
Process ID 2540
User Zach
Domain Zach-PC
Path C:\Program Files\Logitech\SetPointP\SetPoint.exe
Memory Usage 36 MB
Peak Memory Usage 41 MB
smss.exe
Process ID 368
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 1.35 MB
Peak Memory Usage 1.39 MB
SMSvcHost.exe
Process ID 1944
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
Memory Usage 19 MB
Peak Memory Usage 19 MB
Speccy64.exe
Process ID 2736
User Zach
Domain Zach-PC
Path C:\Program Files\Speccy\Speccy64.exe
Memory Usage 31 MB
Peak Memory Usage 32 MB
speedfan.exe
Process ID 2432
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\SpeedFan\speedfan.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
svchost.exe
Process ID 1336
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
svchost.exe
Process ID 1084
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 15 MB
Peak Memory Usage 15 MB
svchost.exe
Process ID 1124
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 39 MB
Peak Memory Usage 47 MB
svchost.exe
Process ID 1240
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.67 MB
Peak Memory Usage 5.70 MB
svchost.exe
Process ID 5568
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 7.25 MB
Peak Memory Usage 7.25 MB
svchost.exe
Process ID 880
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 1532
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 17 MB
Peak Memory Usage 28 MB
svchost.exe
Process ID 148
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 8.77 MB
Peak Memory Usage 8.93 MB
svchost.exe
Process ID 416
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 19 MB
Peak Memory Usage 20 MB
svchost.exe
Process ID 1052
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 24 MB
Peak Memory Usage 24 MB
SynTPEnh.exe
Process ID 2444
User Zach
Domain Zach-PC
Path C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
SynTPHelper.exe
Process ID 2528
User Zach
Domain Zach-PC
Path C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
Memory Usage 4.27 MB
Peak Memory Usage 4.28 MB
System
Process ID 4
Memory Usage 324 KB
Peak Memory Usage 12 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 2136
User Zach
Domain Zach-PC
Path C:\Windows\system32\taskeng.exe
Memory Usage 6.75 MB
Peak Memory Usage 6.81 MB
taskhost.exe
Process ID 1104
User Zach
Domain Zach-PC
Path C:\Windows\system32\taskhost.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
UNS.exe
Process ID 4144
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Intel\Intel Management Engine Components\UNS\UNS.exe
Memory Usage 7.55 MB
Peak Memory Usage 7.57 MB
unsecapp.exe
Process ID 3400
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\unsecapp.exe
Memory Usage 5.68 MB
Peak Memory Usage 5.71 MB
WDBackupEngine.exe
Process ID 3360
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
Memory Usage 4.07 MB
Peak Memory Usage 19 MB
WDDMStatus.exe
Process ID 2792
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
WDDriveAutoUnlock.exe
Process ID 2724
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
Memory Usage 7.50 MB
Peak Memory Usage 7.55 MB
WDDriveService.exe
Process ID 2084
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
Memory Usage 10 MB
Peak Memory Usage 12 MB
WDRulesEngine.exe
Process ID 2592
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
Memory Usage 1.73 MB
Peak Memory Usage 20 MB
wininit.exe
Process ID 708
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage 4.87 MB
Peak Memory Usage 4.94 MB
winlogon.exe
Process ID 948
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 7.88 MB
Peak Memory Usage 9.35 MB
WinPatrol.exe
Process ID 2848
User Zach
Domain Zach-PC
Path C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
wlanext.exe
Process ID 1448
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\WLANExt.exe
Memory Usage 17 MB
Peak Memory Usage 18 MB
WmiApSrv.exe
Process ID 844
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\WmiApSrv.exe
Memory Usage 6.74 MB
Peak Memory Usage 6.74 MB
WmiPrvSE.exe
Process ID 3444
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 16 MB
Peak Memory Usage 19 MB
WmiPrvSE.exe
Process ID 5388
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 9.57 MB
Peak Memory Usage 9.95 MB
WmiPrvSE.exe
Process ID 3560
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 33 MB
Peak Memory Usage 33 MB
WUDFHost.exe
Process ID 3008
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\WUDFHost.exe
Memory Usage 5.68 MB
Peak Memory Usage 5.75 MB
ZeroConfigService.exe
Process ID 3300
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
Scheduler
10/4/2013 12:07 PM; Adobe Flash Player Updater
10/4/2013 12:12 PM; GoogleUpdateTaskMachineUA
10/4/2013 6:12 PM; GoogleUpdateTaskMachineCore
10/4/2013 7:49 PM; ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2
10/6/2013 1:47 PM; Intel_C_LNEL119500CT250DGN
CCleanerSkipUAC
Freemium1ClickMaint
ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon
Microsoft Office 15 Sync Maintenance for Zach-PC-Zach Zach-PC
SecureW2 Task
Hotfixes
10/3/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.1332.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
10/2/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.1252.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
10/1/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.1151.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/30/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.1046.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/29/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.983.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/27/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.906.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/27/2013 Update for Microsoft Outlook 2013 (KB2825632) 64-Bit Edition
Microsoft has released an update for Microsoft Outlook 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/26/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.792.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/25/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.672.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/24/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.591.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/23/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.510.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.441.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/20/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.371.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.268.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.258.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/18/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.180.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/17/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.159.89.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/16/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.2005.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1975.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/14/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/14/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/14/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1906.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/13/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/13/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/13/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/12/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1814.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/12/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/12/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/12/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/12/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/11/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1723.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/11/2013 Update for Microsoft Office 2013 (KB2817624) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/11/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2870699)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/11/2013 Update for Microsoft Word 2013 (KB2817308) 64-Bit Edition
Microsoft has released an update for Microsoft Word 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Word
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Windows Malicious Software Removal Tool x64 - September 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
9/11/2013 Update for Windows 7 for x64-based Systems (KB2853952)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/11/2013 Update for Microsoft Office 2013 (KB2817493) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Security Update for Windows 7 for x64-based Systems (KB2872339)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/11/2013 Update for Microsoft Office 2013 (KB2817311) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Update for Microsoft Word 2013 (KB2817627) 64-Bit Edition
Microsoft has released an update for Microsoft Word 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Word
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Security Update for Microsoft Excel 2013 (KB2768017) 64-Bit Edition
A security vulnerability exists in Microsoft Excel 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/11/2013 Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
This update provides the latest junk email and malicious links
filter definitions for Microsoft Office 2013 64-Bit Edition.
9/11/2013 Update for Microsoft Office 2013 (KB2768014) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Security Update for Windows 7 for x64-based Systems (KB2876315)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
9/11/2013 Update for Windows 7 for x64-based Systems (KB2868116)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/11/2013 Update for Microsoft Office 2013 (KB2817632) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Update for Microsoft Access 2013 (KB2752093) 64-Bit Edition
Microsoft has released an update for Microsoft Access 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Access
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Security Update for Microsoft Office 2013 (KB2810009) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
9/11/2013 Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Update for Microsoft Office 2013 (KB2760533) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
9/11/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
9/10/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1620.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/9/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1511.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/8/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1439.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/8/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1430.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/6/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1348.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/5/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1170.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/3/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.1049.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/2/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.932.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
9/1/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.889.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/31/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.877.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/31/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.833.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/29/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.726.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/28/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.641.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/27/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.442.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/25/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.367.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/24/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.330.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/24/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.281.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.164.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/21/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.157.109.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2564.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/18/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2526.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/17/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2492.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/16/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2423.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2307.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/15/2013 Update for Microsoft Outlook 2013 (KB2817629) 64-Bit Edition
Microsoft has released an update for Microsoft Outlook 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/15/2013 Security Update for Windows 7 for x64-based Systems (KB2862966)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
This update provides the latest junk email and malicious links
filter definitions for Microsoft Office 2013 64-Bit Edition.
8/15/2013 Update for Microsoft Lync 2013 (KB2817621) 64-Bit Edition
Microsoft has released an update for Microsoft Lync 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Lync
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/15/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2862772)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Update for Windows 7 for x64-based Systems (KB2863058)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
8/15/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2840642)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Security Update for Windows 7 for x64-based Systems (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Security Update for Windows 7 for x64-based Systems (KB2849470)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Windows Malicious Software Removal Tool x64 - August 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
8/15/2013 Security Update for Windows 7 for x64-based Systems (KB2859537)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Security Update for Windows 7 for x64-based Systems (KB2861855)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Update for Microsoft Office 2013 (KB2727096) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/15/2013 Update for Microsoft SkyDrive Pro (KB2817622) 64-Bit Edition
Microsoft has released an update for Microsoft SkyDrive Pro 64-Bit
Edition. This update provides the latest fixes to Microsoft SkyDrive
Pro 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/15/2013 Security Update for Windows 7 for x64-based Systems (KB2868623)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
8/15/2013 Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
8/14/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2190.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/12/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2072.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/11/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.2013.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/9/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1924.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/8/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1824.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/7/2013 Update for Microsoft Security Essentials - 4.3.215.0 (KB2855265)
This package will update Microsoft Security Essentials client
on the user's machine.
8/7/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1729.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/7/2013 Update for Microsoft Security Essentials - 4.3.215.0 (KB2855265)
This package will update Microsoft Security Essentials client
on the user's machine.
8/7/2013 Windows Malicious Software Removal Tool x64 - July 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
8/6/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1620.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/5/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1541.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/4/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1481.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/3/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1443.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
8/2/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1315.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/31/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1193.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/30/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.1052.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/28/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.955.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/27/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.915.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/26/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.788.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/25/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.724.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/23/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.536.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/21/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.456.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/20/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.388.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.287.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/17/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.127.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/16/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.155.29.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/14/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1971.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/14/2013 Update for Microsoft Office 2013 (KB2817489) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/12/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1875.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/11/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1804.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/10/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1694.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/10/2013 Update for Microsoft Word 2013 (KB2767863) 64-Bit Edition
Microsoft has released an update for Microsoft Word 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Word
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Update for Microsoft Word 2013 (KB2810086) 64-Bit Edition
Microsoft has released an update for Microsoft Word 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Word
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2840631)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Update for Microsoft Office 2013 (KB2817492) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Windows Malicious Software Removal Tool x64 - July 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
7/10/2013 Update for Microsoft PowerPoint 2013 (KB2810006) 64-Bit Edition
Microsoft has released an update for Microsoft PowerPoint 2013
64-Bit Edition. This update provides the latest fixes to Microsoft
PowerPoint 2013 64-Bit Edition. Additionally, this update contains
stability and performance improvements.
7/10/2013 Update for Microsoft Office 2013 (KB2767851) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2847927)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2833957)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Update for Microsoft SkyDrive Pro (KB2817469) 64-Bit Edition
Microsoft has released an update for Microsoft SkyDrive Pro 64-Bit
Edition. This update provides the latest fixes to Microsoft SkyDrive
Pro 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2845187)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Update for Microsoft OneNote 2013 (KB2817467) 64-Bit Edition
Microsoft has released an update for Microsoft OneNote 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft OneNote
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2846071)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft Office 2013 (KB2817491) 64-Bit Edition
A security vulnerability exists in Microsoft Office 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
7/10/2013 Update for Microsoft Office 2013 (KB2817482) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2833946)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft Lync 2013 (KB2817465) 64-Bit Edition
A security vulnerability exists in Microsoft Lync 2013 64-Bit
Edition that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
7/10/2013 Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
This update provides the latest junk email and malicious links
filter definitions for Microsoft Office 2013 64-Bit Edition.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2850851)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008, Windows Server 2008 R2 for x64 (KB2840642)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Update for Microsoft Outlook 2013 (KB2817468) 64-Bit Edition
Microsoft has released an update for Microsoft Outlook 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2835364)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft Silverlight (KB2847559)
This security update to Silverlight includes fixes outlined in
KB 2847559. This update is backward compatible with web applications
built using previous versions of Silverlight.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2832414)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2834886)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/10/2013 Security Update for Windows 7 for x64-based Systems (KB2835361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
7/8/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1542.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/7/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1464.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/6/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1402.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/4/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1292.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/3/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1177.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
7/2/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.1082.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
6/30/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.944.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
6/29/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.910.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
6/28/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.844.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
6/27/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.153.756.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
6/26/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836942)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/26/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/25/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.562.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/24/2013 Definition Update for Windows Defender - KB915597 (Definition 1.153.318.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
6/15/2013 Update for Microsoft Office 2013 (KB2810014) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
6/15/2013 Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2859903)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/12/2013 Update for Microsoft SkyDrive Pro (KB2767865) 64-Bit Edition
Microsoft has released an update for Microsoft SkyDrive Pro 64-Bit
Edition. This update provides the latest fixes to Microsoft SkyDrive
Pro 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
6/12/2013 Security Update for Windows 7 for x64-based Systems (KB2845690)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/12/2013 Update for Microsoft Office 2013 (KB2810017) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
6/12/2013 Update for Microsoft Office 2013 (KB2760538) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
6/12/2013 Update for Microsoft Office 2013 (KB2810018) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
6/12/2013 Windows Malicious Software Removal Tool x64 - June 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
6/12/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 (KB2838727)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/12/2013 Security Update for Windows 7 for x64-based Systems (KB2839894)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/12/2013 Update for Windows 7 for x64-based Systems (KB2808679)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/12/2013 Update for Windows 7 for x64-based Systems (KB2836502)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/12/2013 Security Update for Windows 7 for x64-based Systems (KB2813430)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
6/12/2013 Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
6/12/2013 Update for Microsoft Office 2013 (KB2817320) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
6/12/2013 Update for Windows 7 for x64-based Systems (KB2834140)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
6/3/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2805221)
This update addresses reliability, stability, compatibility and
performance issues in Microsoft .NET Framework 4.5. After you
install this item, you may have to restart your computer.
6/3/2013 Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Windows Server 2008 and Windows Server 2008 R2 for x64 (KB2805226)
This update addresses reliability, stability, compatibility and
performance issues in Microsoft .NET Framework 4.5. After you
install this item, you may have to restart your computer.
5/26/2013 Update for Microsoft Lync 2013 (KB2768004) 64-Bit Edition
Microsoft has released an update for Microsoft Lync 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Lync
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2830290)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2820331)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2798162)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Update for Microsoft SkyDrive Pro (KB2810019) 64-Bit Edition
Microsoft has released an update for Microsoft SkyDrive Pro 64-Bit
Edition. This update provides the latest fixes to Microsoft SkyDrive
Pro 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
5/16/2013 Update for Windows 7 for x64-based Systems (KB2813956)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
5/16/2013 Security Update for Microsoft .NET Framework 4.5 on Windows 7, Vista, Server 2008, and Server 2008 R2 for x64 (KB2804582)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Security Update for Windows 7 for x64-based Systems (KB2829361)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Windows Malicious Software Removal Tool x64 - May 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
5/16/2013 Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
This update provides the latest junk email and malicious links
filter definitions for Microsoft Office 2013 64-Bit Edition.
5/16/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2804579)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
5/16/2013 Update for Microsoft OneNote 2013 (KB2760334) 64-Bit Edition
Microsoft has released an update for Microsoft OneNote 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft OneNote
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
5/16/2013 Update for Microsoft Outlook 2013 (KB2810015) 64-Bit Edition
Microsoft has released an update for Microsoft Outlook 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
5/16/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2829530)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
5/16/2013 Cumulative Security Update for ActiveX Killbits for Windows 7 for x64-based Systems (KB2820197)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/30/2013 NVIDIA Corporation - Audio Device, Other hardware - NVIDIA High Definition Audio
NVIDIA Corporation Audio Device, Other hardware software update
released in July, 2012
4/25/2013 Update for Microsoft Office 2013 (KB2768349) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/25/2013 Update for Microsoft Office 2013 (KB2768355) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Lync 2013 (KB2760556) 64-Bit Edition
Microsoft has released an update for Microsoft Lync 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Lync
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2760343) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2767864) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2752025) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Definition update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
This update provides the latest junk email and malicious links
filter definitions for Microsoft Office 2013 64-Bit Edition.
4/24/2013 Update for Microsoft PowerPoint 2013 (KB2727013) 64-Bit Edition
Microsoft has released an update for Microsoft PowerPoint 2013
64-Bit Edition. This update provides the latest fixes to Microsoft
PowerPoint 2013 64-Bit Edition. Additionally, this update contains
stability and performance improvements.
4/24/2013 Update for Microsoft OneNote 2013 (KB2768011) 64-Bit Edition
Microsoft has released an update for Microsoft OneNote 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft OneNote
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2752094) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2768333) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2737954) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Lync 2013 (KB2760512) 64-Bit Edition
Microsoft has released an update for Microsoft Lync 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Lync
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Visio 2013 (KB2810008) 64-Bit Edition
Microsoft has released an update for Microsoft Visio 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Visio
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2752101) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Word 2013 (KB2768007) 64-Bit Edition
Microsoft has released an update for Microsoft Word 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Word
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Outlook 2013 (KB2738013) 64-Bit Edition
Microsoft has released an update for Microsoft Outlook 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Outlook
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Excel 2013 (KB2760339) 64-Bit Edition
Microsoft has released an update for Microsoft Excel 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Excel
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Word 2013 (KB2768337) 64-Bit Edition
Microsoft has released an update for Microsoft Word 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Word
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition
Microsoft has released an update for Microsoft PowerPoint 2013
64-Bit Edition. This update provides the latest fixes to Microsoft
PowerPoint 2013 64-Bit Edition. Additionally, this update contains
stability and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2726961) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft SkyDrive Pro (KB2768356) 64-Bit Edition
Microsoft has released an update for Microsoft SkyDrive Pro 64-Bit
Edition. This update provides the latest fixes to Microsoft SkyDrive
Pro 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2810010) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2767861) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Access 2013 (KB2760350) 64-Bit Edition
Microsoft has released an update for Microsoft Access 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Access
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2767860) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition
Microsoft has released an update for Microsoft Office 2013 64-Bit
Edition. This update provides the latest fixes to Microsoft Office
2013 64-Bit Edition. Additionally, this update contains stability
and performance improvements.
4/24/2013 Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition
Microsoft has released an update for Microsoft Visio Viewer 2013
64-Bit Edition. This update provides the latest fixes to Microsoft
Visio Viewer 2013 64-Bit Edition. Additionally, this update contains
stability and performance improvements.
4/23/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.350.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/23/2013 Security Update for Windows 7 for x64-based Systems (KB2840149)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/19/2013 Definition Update for Windows Defender - KB915597 (Definition 1.149.131.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/16/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1924.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/12/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1685.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813347)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Windows Malicious Software Removal Tool x64 - April 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2808735)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2823324)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Cumulative Security Update for Internet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2817183)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/10/2013 Update for Windows 7 for x64-based Systems (KB2799926)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
4/10/2013 Security Update for Windows 7 for x64-based Systems (KB2813170)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
4/9/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1392.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/5/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.1105.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
4/2/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.868.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/31/2013 Definition Update for Windows Defender - KB915597 (Definition 1.147.700.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
3/29/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.724.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/28/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.658.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/28/2013 Security Update for Microsoft Visual C++ 2010 Service Pack 1 Redistributable Package (KB2565063)
A security issue has been identified leading to MFC application
vulnerability in DLL planting due to MFC not specifying the full
path to system/localization DLLs. You can protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
3/28/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.658.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/27/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.582.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/26/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.502.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/25/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.421.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/25/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.416.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/24/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.354.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/23/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.291.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/21/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.190.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/20/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.147.81.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/19/2013 Security Update for Microsoft Visual C++ 2010 Service Pack 1 Redistributable Package (KB2565063)
A security issue has been identified leading to MFC application
vulnerability in DLL planting due to MFC not specifying the full
path to system/localization DLLs. You can protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
3/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.145.2146.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.145.2085.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.145.2082.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
3/18/2013 NVIDIA Corporation - Audio Device, Other hardware - NVIDIA High Definition Audio
NVIDIA Corporation Audio Device, Other hardware software update
released in July, 2012
3/18/2013 Windows Malicious Software Removal Tool x64 - March 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
3/18/2013 nVidia - Other hardware - NVIDIA Stereoscopic 3D USB controller
nVidia Other hardware software update released in January, 2013
3/18/2013 AuthenTec driver update for TouchStrip Fingerprint Sensor (WBF advanced mode)
This driver was provided by AuthenTec for support of TouchStrip
Fingerprint Sensor (WBF advanced mode)
3/18/2013 Internet Explorer 10 for Windows 7 for x64-based Systems
Internet Explorer 10 is fast and fluid, and lets your websites
shine and perform just like native apps on your PC.
Internet
Explorer 10. Fast and fluid for Windows 7.
• Fast. Internet
Explorer 10 harnesses the untapped power of your PC, delivering
pages full of vivid graphics, smoother video, and interactive
content.
• Easy. Experience the web the way you want to with
pinned sites, built-in Spellcheck, and seamless integration with
your PC running Windows 7.
• Safer. Improved features like SmartScreen
Filter and Tracking Protection let you be more aware of threats
to your PC and your privacy.
3/18/2013 Security Update for Windows 7 for x64-based Systems (KB2807986)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
3/18/2013 Update for Windows 7 for x64-based Systems (KB2791765)
Install this update to resolve a set of known application compatibility
issues with Windows. For a complete listing of the issues that
are included in this update, see the associated Microsoft Knowledge
Base article for more information. After you install this item,
you may have to restart your computer.
3/18/2013 Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2809289)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
3/18/2013 Definition Update for Windows Defender - KB915597 (Definition 1.145.2049.0)
Install this update to revise the definition files used to detect
spyware and other potentially unwanted software. Once you have
installed this item, it cannot be removed.
System Folders
Path for burning CD C:\Users\Zach\AppData\Local\Microsoft\Windows\Burn\Burn
Application Data C:\ProgramData
Public Desktop C:\Users\Public\Desktop
Documents C:\Users\Public\Documents
Global Favorites C:\Users\Zach\Favorites
Music C:\Users\Public\Music
Pictures C:\Users\Public\Pictures
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Videos C:\Users\Public\Videos
Cookies C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Zach\Desktop
Physical Desktop C:\Users\Zach\Desktop
User Favorites C:\Users\Zach\Favorites
Fonts C:\Windows\Fonts
Internet History C:\Users\Zach\AppData\Local\Microsoft\Windows\History
Temporary Internet Files C:\Users\Zach\AppData\Local\Microsoft\Windows\Temporary Internet Files
Local Application Data C:\Users\Zach\AppData\Local
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Program Files C:\Program Files
Services
Running Adobe Acrobat Update Service
Running Apple Mobile Device
Running Application Experience
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Bonjour Service
Running CNG Key Isolation
Running COM+ Event System
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic Service Host
Running Diagnostic System Host
Running Distributed Link Tracking Client
Running DNS Client
Running Extensible Authentication Protocol
Running Group Policy Client
Running Human Interface Device Access
Running IKE and AuthIP IPsec Keying Modules
Running Intel Centrino Wireless Bluetooth + High Speed Security Service
Running Intel Management and Security Application Local Management Service
Running Intel Management and Security Application User Notification Service
Running Intel PROSet/Wireless Event Log
Running Intel PROSet/Wireless Registry Service
Running Intel PROSet/Wireless Zero Configuration Service
Running Intel Rapid Storage Technology
Running Intel Centrino Wireless Bluetooth + High Speed Service
Running Microsoft Antimalware Service
Running Multimedia Class Scheduler
Running Net.Tcp Port Sharing Service
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running NVIDIA Display Driver Service
Running NVIDIA Stereoscopic 3D Driver Service
Running NVIDIA Streamer Service
Running NVIDIA Update Service Daemon
Running Peer Name Resolution Protocol
Running Peer Networking Identity Manager
Running Plug and Play
Running Power
Running PowerBiosServer
Running Remote Procedure Call (RPC)
Running RPC Endpoint Mapper
Running SafeConnect Manager
Running Security Accounts Manager
Running Security Center
Running Server
Running System Event Notification Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Themes
Running User Profile Service
Running WD Backup
Running WD Drive Manager
Running WD Rules
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Management Instrumentation
Running Windows Update
Running WinHTTP Web Proxy Auto-Discovery Service
Running WLAN AutoConfig
Running WMI Performance Adapter
Running Workstation
Stopped ActiveX Installer (AxInstSV)
Stopped Adaptive Brightness
Stopped Adobe Flash Player Update Service
Stopped Application Identity
Stopped Application Information
Stopped Application Layer Gateway Service
Stopped Application Management
Stopped ASP.NET State Service
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped BranchCache
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped Computer Browser
Stopped Credential Manager
Stopped Disk Defragmenter
Stopped Distributed Transaction Coordinator
Stopped Encrypting File System (EFS)
Stopped Fax
Stopped Filemind Windows Service
Stopped Function Discovery Provider Host
Stopped Function Discovery Resource Publication
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped HomeGroup Listener
Stopped HomeGroup Provider
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped IP Helper
Stopped iPod Service
Stopped IPsec Policy Agent
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped Logitech Bluetooth Service
Stopped Media Center Extender Service
Stopped Microsoft .NET Framework NGEN v2.0.50727_X64
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X64
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Network Inspection
Stopped Microsoft Software Shadow Copy Provider
Stopped Mozilla Maintenance Service
Stopped Net.Msmq Listener Adapter
Stopped Net.Pipe Listener Adapter
Stopped Net.Tcp Listener Adapter
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office 64 Source Engine
Stopped Office Software Protection Platform
Stopped Offline Files
Stopped Parental Controls
Stopped Peer Networking Grouping
Stopped Performance Counter DLL Host
Stopped Performance Logs & Alerts
Stopped PnP-X IP Bus Enumerator
Stopped PNRP Machine Name Publication Service
Stopped Portable Device Enumerator Service
Stopped Print Spooler
Stopped Problem Reports and Solutions Control Panel Support
Stopped Program Compatibility Assistant Service
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Access Connection Manager
Stopped Remote Desktop Configuration
Stopped Remote Desktop Services
Stopped Remote Desktop Services UserMode Port Redirector
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Secondary Logon
Stopped Secure Socket Tunneling Protocol Service
Stopped Shell Hardware Detection
Stopped Skype Updater
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Software Protection
Stopped SPP Notification Service
Stopped SSDP Discovery
Stopped Steam Client Service
Stopped Superfetch
Stopped Tablet PC Input Service
Stopped Telephony
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped UPnP Device Host
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Activation Technologies Service
Stopped Windows Backup
Stopped Windows Biometric Service
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Connect Now - Config Registrar
Stopped Windows Defender
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Image Acquisition (WIA)
Stopped Windows Installer
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Media Player Network Sharing Service
Stopped Windows Modules Installer
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Windows Search
Stopped Windows Time
Stopped Wired AutoConfig
Stopped Wireless PAN DHCP Server
Stopped WWAN AutoConfig
Security Options
Accounts: Administrator account status Disabled
Accounts: Guest account status Disabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network Security: Allow PKU2U authentication requests to this computer to use online identities Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Elevate without prompting
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Disabled
User Account Control: Switch to the secure desktop when prompting for elevation Disabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x64-based PC
Microsoft ACPI-Compliant System
Intel Core i7-2820QM CPU @ 2.30GHz
Intel Core i7-2820QM CPU @ 2.30GHz
Intel Core i7-2820QM CPU @ 2.30GHz
Intel Core i7-2820QM CPU @ 2.30GHz
Intel Core i7-2820QM CPU @ 2.30GHz
Intel Core i7-2820QM CPU @ 2.30GHz
Intel Core i7-2820QM CPU @ 2.30GHz
Intel Core i7-2820QM CPU @ 2.30GHz
Microsoft AC Adapter
Microsoft ACPI-Compliant Control Method Battery
Microsoft Windows Management Interface for ACPI
Microsoft Windows Management Interface for ACPI
ACPI Lid
ACPI Sleep Button
ACPI Power Button
ACPI Thermal Zone
Motherboard resources
ACPI Fixed Feature Button
PCI bus
2nd generation Intel Core processor family DRAM Controller - 0104
Intel Management Engine Interface
Intel 6 Series/C200 Series Chipset Family SMBus Controller - 1C22
System board
Motherboard resources
2nd generation Intel® Core™ processor family PCI Express Controller - 0101
NVIDIA GeForce GTX 580M
Generic PnP Monitor
High Definition Audio Controller
NVIDIA High Definition Audio
NVIDIA High Definition Audio
NVIDIA High Definition Audio
NVIDIA High Definition Audio
Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C2D
USB Root Hub
Generic USB Hub
NVIDIA Stereoscopic 3D USB controller
High Definition Audio Controller
Realtek High Definition Audio
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 1 - 1C10
Renesas Electronics USB 3.0 Host Controller
Renesas Electronics USB 3.0 Root Hub
Logitech USB M500 Laser Mouse
Logitech Driver Interface
Logitech HID-compliant M500 Laser Mouse
Logitech Driver Interface
Logitech Driver Interface
USB Composite Device
USB Input Device (Logitech Download Assistant)
HID Keyboard Device
USB Input Device
HID-compliant mouse
HID-compliant consumer control device
HID-compliant device
HID-compliant device
Logitech Unifying USB receiver
Logitech HID-compliant Unifying device
HID-compliant device
HID-compliant device
Logitech HID-compliant Unifying device
Logitech HID-compliant Unifying Mouse
Logitech Driver Interface
Logitech Driver Interface
Logitech HID-compliant Unifying device
Logitech HID-compliant Unifying keyboard
Logitech Driver Interface
HID-compliant consumer control device
Logitech Driver Interface
HID-compliant device
Logitech Driver Interface
Logitech HID-compliant Unifying device
Logitech HID-compliant Unifying keyboard
Logitech Driver Interface
HID-compliant consumer control device
Logitech Driver Interface
HID-compliant device
Logitech Driver Interface
Logitech HID-compliant Unifying device
Logitech HID-compliant Unifying Mouse
Logitech Driver Interface
Logitech Driver Interface
Logitech HID-compliant Unifying device
Logitech HID-compliant Unifying Mouse
Logitech Driver Interface
Logitech Driver Interface
Logitech HID-compliant Unifying device
Logitech HID-compliant Unifying keyboard
Logitech Driver Interface
HID-compliant consumer control device
Logitech Driver Interface
HID-compliant device
Logitech Driver Interface
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 2 - 1C12
JMicron PCI Express Gigabit Ethernet Adapter
JMicron PCIe SD/MMC Host Controller
JMicron PCIe SD Host Controller
JMicron PCIe MS Host Controller
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 3 - 1C14
Intel® Centrino® Ultimate-N 6300 AGN
Microsoft Virtual WiFi Miniport Adapter
Microsoft Virtual WiFi Miniport Adapter #2
Intel® 6 Series/C200 Series Chipset Family PCI Express Root Port 4 - 1C16
1394 OHCI Compliant Host Controller
Intel® 6 Series/C200 Series Chipset Family USB Enhanced Host Controller - 1C26
USB Root Hub
Generic USB Hub
TouchStrip Fingerprint Sensor (WBF advanced mode)
USB Composite Device
USB Input Device
Logitech Cordless Gaming Receiver
Logitech Gaming HID Device
USB Input Device
HID Keyboard Device
HID-compliant consumer control device
HID-compliant device
HID-compliant device
HID-compliant device
USB Composite Device
BisonCam, NB Pro
Intel® HM67 Express Chipset Family LPC Interface Controller - 1C4B
Direct memory access controller
Intel 82802 Firmware Hub Device
High precision event timer
Programmable interrupt controller
Motherboard resources
System CMOS/real time clock
System timer
Motherboard resources
Motherboard resources
Numeric data processor
Standard PS/2 Keyboard
Synaptics PS/2 Port TouchPad
ITECIR Infrared Receiver (EC)
Microsoft ACPI-Compliant Embedded Controller
Intel® Mobile Express Chipset SATA AHCI Controller
INTEL SSDSC2MH250A2
ST9750420AS
TSSTcorp CDDVDW TS-L633F
CPU
Intel Core i7 2820QM
Cores 4
Threads 8
Name Intel Core i7 2820QM
Code Name Sandy Bridge
Package Socket 988B rPGA
Technology 32nm
Specification Intel Core i7-2820QM CPU @ 2.30GHz
Family 6
Extended Family 6
Model A
Extended Model 2A
Stepping 7
Revision D2
Instructions MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, Intel 64, NX, VMX, AES, AVX
Virtualization Supported, Enabled
Hyperthreading Supported, Enabled
Bus Speed 99.8 MHz
Stock Core Speed 2300 MHz
Stock Bus Speed 100 MHz
Average Temperature 47 °C
Caches
L1 Data Cache Size 4 x 32 KBytes
L1 Instructions Cache Size 4 x 32 KBytes
L2 Unified Cache Size 4 x 256 KBytes
L3 Unified Cache Size 8192 KBytes
Core 0
Core Speed 3392.4 MHz
Multiplier x 34.0
Bus Speed 99.8 MHz
Temperature 48 °C
Thread 1
APIC ID 0
Thread 2
APIC ID 1
Core 1
Core Speed 798.2 MHz
Multiplier x 8.0
Bus Speed 99.8 MHz
Temperature 48 °C
Thread 1
APIC ID 2
Thread 2
APIC ID 3
Core 2
Core Speed 3093.1 MHz
Multiplier x 31.0
Bus Speed 99.8 MHz
Temperature 47 °C
Thread 1
APIC ID 4
Thread 2
APIC ID 5
Core 3
Core Speed 3093.1 MHz
Multiplier x 31.0
Bus Speed 99.8 MHz
Temperature 45 °C
Thread 1
APIC ID 6
Thread 2
APIC ID 7
RAM
Memory slots
Total memory slots 4
Used memory slots 4
Free memory slots 0
Memory
Type DDR3
Size 16384 MBytes
Channels # Dual
DRAM Frequency 798.3 MHz
CAS# Latency (CL) 9 clocks
RAS# to CAS# Delay (tRCD) 9 clocks
RAS# Precharge (tRP) 9 clocks
Cycle Time (tRAS) 27 clocks
Command Rate (CR) 2T
Physical Memory
Memory Usage 17 %
Total Physical 16 GB
Available Physical 13 GB
Total Virtual 32 GB
Available Virtual 29 GB
SPD
Number Of SPD Modules 4
Slot #1
Type DDR3
Size 4096 MBytes
Manufacturer Kingston
Max Bandwidth PC3-12800H (800 MHz)
Part Number 9905428-047.A00LF
Serial Number 570BA44B
Week/year 31 / 11
SPD Ext. EPP
JEDEC #7
Frequency 977.8 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 33
tRC 48
Voltage 1.500 V
JEDEC #6
Frequency 888.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 30
tRC 43
Voltage 1.500 V
JEDEC #5
Frequency 800.0 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 27
tRC 39
Voltage 1.500 V
JEDEC #4
Frequency 711.1 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 24
tRC 35
Voltage 1.500 V
JEDEC #3
Frequency 622.2 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 21
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 444.4 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 15
tRC 22
Voltage 1.500 V
Slot #2
Type DDR3
Size 4096 MBytes
Manufacturer Kingston
Max Bandwidth PC3-12800H (800 MHz)
Part Number 9905428-047.A00LF
Serial Number 580BD74B
Week/year 31 / 11
SPD Ext. EPP
JEDEC #7
Frequency 977.8 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 33
tRC 48
Voltage 1.500 V
JEDEC #6
Frequency 888.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 30
tRC 43
Voltage 1.500 V
JEDEC #5
Frequency 800.0 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 27
tRC 39
Voltage 1.500 V
JEDEC #4
Frequency 711.1 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 24
tRC 35
Voltage 1.500 V
JEDEC #3
Frequency 622.2 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 21
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 444.4 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 15
tRC 22
Voltage 1.500 V
Slot #3
Type DDR3
Size 4096 MBytes
Manufacturer Kingston
Max Bandwidth PC3-12800H (800 MHz)
Part Number 9905428-047.A00LF
Serial Number 570BAD4B
Week/year 31 / 11
SPD Ext. EPP
JEDEC #7
Frequency 977.8 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 33
tRC 48
Voltage 1.500 V
JEDEC #6
Frequency 888.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 30
tRC 43
Voltage 1.500 V
JEDEC #5
Frequency 800.0 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 27
tRC 39
Voltage 1.500 V
JEDEC #4
Frequency 711.1 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 24
tRC 35
Voltage 1.500 V
JEDEC #3
Frequency 622.2 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 21
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 444.4 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 15
tRC 22
Voltage 1.500 V
Slot #4
Type DDR3
Size 4096 MBytes
Manufacturer Kingston
Max Bandwidth PC3-12800H (800 MHz)
Part Number 9905428-047.A00LF
Serial Number 590BC14B
Week/year 31 / 11
SPD Ext. EPP
JEDEC #7
Frequency 977.8 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 33
tRC 48
Voltage 1.500 V
JEDEC #6
Frequency 888.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 30
tRC 43
Voltage 1.500 V
JEDEC #5
Frequency 800.0 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 27
tRC 39
Voltage 1.500 V
JEDEC #4
Frequency 711.1 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 24
tRC 35
Voltage 1.500 V
JEDEC #3
Frequency 622.2 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 21
tRC 30
Voltage 1.500 V
JEDEC #2
Frequency 533.3 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 26
Voltage 1.500 V
JEDEC #1
Frequency 444.4 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 15
tRC 22
Voltage 1.500 V
Motherboard
Manufacturer CLEVO
Model P170HM3 (SOCKET 0)
Version Not Applicable
Chipset Vendor Intel
Chipset Model Sandy Bridge
Chipset Revision 09
Southbridge Vendor Intel
Southbridge Model HM67
Southbridge Revision B3
System Temperature 48 °C
BIOS
Brand American Megatrends Inc.
Version 4.6.4
Date 8/9/2011
PCI Data
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation J6B2
Characteristics 3.3V, Shared, PME
Slot Number 0
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation J6B1
Characteristics 3.3V, Shared, PME
Slot Number 1
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation J6D1
Characteristics 3.3V, Shared, PME
Slot Number 2
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation J7B1
Characteristics 3.3V, Shared, PME
Slot Number 3
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation J8B4
Characteristics 3.3V, Shared, PME
Slot Number 4
Graphics
Monitor
Name Generic PnP Monitor on NVIDIA GeForce GTX 580M
Current Resolution 1920x1080 pixels
Work Resolution 1920x1040 pixels
State Enabled, Primary
Monitor Width 1920
Monitor Height 1080
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
NVIDIA GeForce GTX 580M
Manufacturer NVIDIA
Model GeForce GTX 580M
Device ID 10DE-1211
Revision A2
Subvendor CLEVO/KAPOK Computer (1558)
Current Performance Level Level 1
Current GPU Clock 50 MHz
Current Memory Clock 135 MHz
Current Shader Clock 101 MHz
Voltage 0.800 V
Bus Interface PCI Express x16
Temperature 47 °C
Driver version 9.18.13.2723
BIOS Version 70.24.26.00.01
Memory 2048 MB
Count of performance levels : 3
Level 1 - "Default"
GPU Clock 50 MHz
Memory Clock 135 MHz
Shader Clock 101 MHz
Level 2 - "2D Desktop"
GPU Clock 73 MHz
Memory Clock 324 MHz
Shader Clock 147 MHz
Level 3 - "3D Applications"
GPU Clock 620 MHz
Memory Clock 1500 MHz
Shader Clock 1240 MHz
Hard Drives
INTEL SSDSC2MH250A2
Manufacturer Intel
Heads 16
Cylinders 16,383
SATA type SATA-III 6.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number LNEL119500CT250DGN
LBA Size 48-bit LBA
Power On Count 960 times
Power On Time 176.5 days
Speed Not used (SSD Drive)
Features S.M.A.R.T., NCQ, TRIM, SSD
Transfer Mode SATA III
Interface SATA
Capacity 233 GB
Real size 250,059,350,016 bytes
RAID Type None
S.M.A.R.T
Status Good
03 Spin-Up Time 100 (100) Data 0000000000
04 Start/Stop Count 100 (100) Data 0000000000
05 Reallocated Sectors Count 100 (100) Data 0000000000
09 Power-On Hours (POH) 100 (100) Data 000000108C
0C Device Power Cycle Count 100 (100) Data 00000003C0
C0 Unsafe Shutdown Count 100 (100) Data 0000000012
E1 Host Writes 100 (100) Data 0000014140
E8 Available Reserved Space 100 (100) Data 0000000000
E9 Media Wearout Indicator 094 (094) Data 0000000000
Partition 0
Partition ID Disk #0, Partition #0
Size 100 MB
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number E48649A7
Size 233 GB
Used Space 170 GB (73%)
Free Space 63 GB (27%)
ST9750420AS
Manufacturer Seagate
Form Factor 2.5"
Cache Size 16MB
Heads 16
Cylinders 16,383
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number 6WS00H4J
LBA Size 48-bit LBA
Power On Count 941 times
Power On Time 426.1 days
Speed 7200 RPM
Features S.M.A.R.T., APM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 699 GB
Real size 750,156,374,016 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 26 °C
Temperature Range OK (less than 50 °C)
01 Read Error Rate 116 (099) Data 000657B6E8
03 Spin-Up Time 098 (098) Data 0000000000
04 Start/Stop Count 098 (098) Data 0000000956
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 069 (060) Data 000083FE2E
09 Power-On Hours (POH) 089 (089) Data 00000027F2
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 00000003AD
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 099 (099) Data 0000000001
BC Command Timeout 100 (100) Data 0000000001
BD High Fly Writes (WDC) 100 (100) Data 0000000000
BE Temperature Difference from 100 074 (052) Data 001A15001A
BF G-sense error rate 100 (100) Data 0000000042
C0 Power-off Retract Count 100 (100) Data 000000000C
C1 Load/Unload Cycle Count 001 (001) Data 0000036EDF
C2 Temperature 026 (048) Data 000000001A
C3 Hardware ECC Recovered 116 (099) Data 000657B6E8
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000001
F0 Head Flying Hours 100 (253) Data 0000000605
F1 Total LBAs Written 100 (253) Data 002F7A0D45
F2 Total LBAs Read 100 (253) Data 00A8531E10
FE Free Fall Protection 100 (100) Data 0000000000
Partition 0
Partition ID Disk #1, Partition #0
Size 100 MB
Partition 1
Partition ID Disk #1, Partition #1
Disk Letter D:
File System NTFS
Volume Serial Number 227802ED
Size 699 GB
Used Space 559 GB (81%)
Free Space 140 GB (19%)
Optical Drives
DTSOFT Virtual CdRom Device
Media Type BD Reader
Name DTSOFT Virtual CdRom Device
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-ROM, DVD-R, DVD+R, DVD+RW, DVD-R DL, DVD-RW DL, DVD+R DL, DVD+RW DL, BD-R, BD-ROM, BD-RE
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive E:
Media Loaded FALSE
Status OK
TSSTcorp CDDVDW TS-L633F
Media Type DVD Writer
Name TSSTcorp CDDVDW TS-L633F
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD-RW DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive H:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 2
Status OK
Audio
Sound Cards
NVIDIA High Definition Audio
NVIDIA High Definition Audio
NVIDIA High Definition Audio
NVIDIA High Definition Audio
Realtek High Definition Audio
NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
Playback Devices
Speakers (Realtek High Definition Audio) (default)
Realtek Digital Output (Realtek High Definition Audio)
Recording Device
Microphone (Realtek High Definition Audio)
Speaker Configuration
Speaker type Stereo
Peripherals
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Vendor (Standard keyboards)
Location plugged into keyboard port
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
Microsoft eHome Remote Control Keyboard keys
Device Kind Keyboard
Device Name Microsoft eHome Remote Control Keyboard keys
Vendor Microsoft
Location Microsoft eHome Infrared Transceiver
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
Microsoft eHome MCIR Keyboard
Device Kind Keyboard
Device Name Microsoft eHome MCIR Keyboard
Vendor Microsoft
Location Microsoft eHome Infrared Transceiver
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
Microsoft eHome MCIR 109 Keyboard
Device Kind Keyboard
Device Name Microsoft eHome MCIR 109 Keyboard
Vendor Microsoft
Location Microsoft eHome Infrared Transceiver
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Logitech
Location Logitech Gaming Virtual Keyboard
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Logitech
Location Location 0
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
Logitech HID-compliant Unifying keyboard
Device Kind Keyboard
Device Name Logitech HID-compliant Unifying keyboard
Vendor Logitech
Location Location 2
Driver
Date 5-22-2013
Version 5.60.66.0
File C:\Windows\system32\DRIVERS\LHidFilt.Sys
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
Logitech HID-compliant Unifying keyboard
Device Kind Keyboard
Device Name Logitech HID-compliant Unifying keyboard
Vendor Logitech
Location Location 3
Driver
Date 5-22-2013
Version 5.60.66.0
File C:\Windows\system32\DRIVERS\LHidFilt.Sys
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
Logitech HID-compliant Unifying keyboard
Device Kind Keyboard
Device Name Logitech HID-compliant Unifying keyboard
Vendor Logitech
Location Location 6
Driver
Date 5-22-2013
Version 5.60.66.0
File C:\Windows\system32\DRIVERS\LHidFilt.Sys
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Logitech
Location USB Input Device
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\kbdhid.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
Synaptics PS/2 Port TouchPad
Device Kind Mouse
Device Name Synaptics PS/2 Port TouchPad
Vendor Synaptics
Location plugged into PS/2 mouse port
Driver
Date 2-25-2013
Version 16.3.15.1
File C:\Windows\system32\DRIVERS\SynTP.sys
File C:\Windows\system32\SynTPAPI.dll
File C:\Windows\system32\SynCOM.dll
File C:\Windows\system32\syndata.bin
File C:\Program Files\Synaptics\SynTP\SynTPRes.dll
File C:\Program Files\Synaptics\SynTP\SynTPCpl.dll
File C:\Program Files\Synaptics\SynTP\SynCntxt.rtf
File C:\Program Files\Synaptics\SynTP\SynZMetr.exe
File C:\Program Files\Synaptics\SynTP\SynMood.exe
File C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
File C:\Program Files\Synaptics\SynTP\SynTPCOM.dll
File C:\Program Files\Synaptics\SynTP\Tutorial.exe
File C:\Program Files\Synaptics\SynTP\InstNT.exe
File C:\Program Files\Synaptics\SynTP\SynISDLL.dll
File C:\Program Files\Synaptics\SynTP\SynUnst.ini
File C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
File C:\Program Files\Synaptics\SynTP\StaticImg.html
File C:\Program Files\Synaptics\SynTP\StaticImg.png
File C:\Program Files\Synaptics\SynTP\SynSysDetect.js
File C:\Program Files\Synaptics\SynTP\Syn2FingerScrolling.wmv
File C:\Program Files\Synaptics\SynTP\Syn3FingerFlick.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlick.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FFlickVNB.wmv
File C:\Program Files\Synaptics\SynTP\SynSmartSense.wmv
File C:\Program Files\Synaptics\SynTP\SynSmartSenseNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickUpDown.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickUpDownNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickLeftRight.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickLeftRightNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn3FingerPress.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotion.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearScrolling.wmv
File C:\Program Files\Synaptics\SynTP\SynMomentum.wmv
File C:\Program Files\Synaptics\SynTP\SynMomentumScrolling.wmv
File C:\Program Files\Synaptics\SynTP\SynPinchZoom.wmv
File C:\Program Files\Synaptics\SynTP\SynBlackScreen.wmv
File C:\Program Files\Synaptics\SynTP\SynPivotRotate.wmv
File C:\Program Files\Synaptics\SynTP\SynTwistRotate.wmv
File C:\Program Files\Synaptics\SynTP\SynCoverGesture.wmv
File C:\Program Files\Synaptics\SynTP\SynChiralRotate.wmv
File C:\Program Files\Synaptics\SynTP\SynChiralScrolling.wmv
File C:\Program Files\Synaptics\SynTP\SynCoastingScrolling.wmv
File C:\Program Files\Synaptics\SynTP\SynPointing.wmv
File C:\Program Files\Synaptics\SynTP\SynPalmCheck.wmv
File C:\Program Files\Synaptics\SynTP\SynSensitivity.wmv
File C:\Program Files\Synaptics\SynTP\SynWindowConstrained.wmv
File C:\Program Files\Synaptics\SynTP\SynSlowMotion.wmv
File C:\Program Files\Synaptics\SynTP\SynConstrainedMotion.wmv
File C:\Program Files\Synaptics\SynTP\SynTapping.wmv
File C:\Program Files\Synaptics\SynTP\SynButtons.wmv
File C:\Program Files\Synaptics\SynTP\SynTouchStykSelect.wmv
File C:\Program Files\Synaptics\SynTP\SynTouchStykButton.wmv
File C:\Program Files\Synaptics\SynTP\SynTouchStykSensitivity.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionDragging.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionFixedSpeed.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionPointing.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionPressure.wmv
File C:\Program Files\Synaptics\SynTP\SynNoButtons.wmv
File C:\Program Files\Synaptics\SynTP\SynTapZones.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearHScrolling.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerHScrolling.wmv
File C:\Program Files\Synaptics\SynTP\SynTapHoldToDrag.wmv
File C:\Program Files\Synaptics\SynTP\SynTapLockingDrag.wmv
File C:\Program Files\Synaptics\SynTP\Syn1FingerClickNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn1FingerClickDrag.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerClickDrag.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerRightClickNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerFlickNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerFlickLR.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerHScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn3FingerFlickNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn3FingerPressNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickNB.wmv
File C:\Program Files\Synaptics\SynTP\SynButtonsNB.wmv
File C:\Program Files\Synaptics\SynTP\SynChiralRotateNB.wmv
File C:\Program Files\Synaptics\SynTP\SynChiralScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynCoastingScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynConstrainedMotionNB.wmv
File C:\Program Files\Synaptics\SynTP\SynCoverGestureNB.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionDraggingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionFixedSpeedNB.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionNB.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionPointingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgeMotionPressureNB.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearHScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynMomentumNB.wmv
File C:\Program Files\Synaptics\SynTP\SynMomentumScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynPinchZoomNB.wmv
File C:\Program Files\Synaptics\SynTP\SynPivotRotateNB.wmv
File C:\Program Files\Synaptics\SynTP\SynSensitivityNB.wmv
File C:\Program Files\Synaptics\SynTP\SynSlowMotionNB.wmv
File C:\Program Files\Synaptics\SynTP\SynTapHoldToDragNB.wmv
File C:\Program Files\Synaptics\SynTP\SynTapLockingDragNB.wmv
File C:\Program Files\Synaptics\SynTP\SynTapZonesNB.wmv
File C:\Program Files\Synaptics\SynTP\SynTwistRotateNB.wmv
File C:\Program Files\Synaptics\SynTP\SynPointingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynPalmCheckNB.wmv
File C:\Program Files\Synaptics\SynTP\SynWindowConstrainedNB.wmv
File C:\Program Files\Synaptics\SynTP\SynTappingNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerMomentumVHScrolling.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerMomentumVHScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerMomentumVScrolling_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerMomentumVScrollingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerMomentumHScrolling_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerMomentumHScrollingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerVHCoasting.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerVHCoastingNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerVCoasting_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerHCoasting_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerVCoastingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerHCoastingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynMomentumVHScrolling.wmv
File C:\Program Files\Synaptics\SynTP\SynMomentumVHScrollingNB.wmv
File C:\Program Files\Synaptics\SynTP\SynVHCoasting.wmv
File C:\Program Files\Synaptics\SynTP\SynVHCoastingNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerHScrolling_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerHScrollingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynChiralScrolling_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynChiralScrollingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearHScrolling_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearHScrollingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearScrolling_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynLinearScrollingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynPivotRotate_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynPivotRotateNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynTwistRotate_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynTwistRotateNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgePulls.wmv
File C:\Program Files\Synaptics\SynTP\SynEdgePullsNB.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlick_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerScrolling.html
File C:\Program Files\Synaptics\SynTP\Syn2FingerFlick.html
File C:\Program Files\Synaptics\SynTP\Syn3FingerFlick.html
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlick.html
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickUpDown.html
File C:\Program Files\Synaptics\SynTP\Syn4FingerFlickLeftRight.html
File C:\Program Files\Synaptics\SynTP\Syn3FingerPress.html
File C:\Program Files\Synaptics\SynTP\SynEdgeMotion.html
File C:\Program Files\Synaptics\SynTP\SynMomentum.html
File C:\Program Files\Synaptics\SynTP\SynPinchZoom.html
File C:\Program Files\Synaptics\SynTP\SynRotating.html
File C:\Program Files\Synaptics\SynTP\SynTwistRotate.html
File C:\Program Files\Synaptics\SynTP\SynCoverGesture.html
File C:\Program Files\Synaptics\SynTP\SynAccessibility.html
File C:\Program Files\Synaptics\SynTP\SynSmartSense.html
File C:\Program Files\Synaptics\SynTP\SynButtons.html
File C:\Program Files\Synaptics\SynTP\SynClicking.html
File C:\Program Files\Synaptics\SynTP\SynMultiFingerGestures.html
File C:\Program Files\Synaptics\SynTP\SynPalmCheck.html
File C:\Program Files\Synaptics\SynTP\SynPointing.html
File C:\Program Files\Synaptics\SynTP\SynScrolling.html
File C:\Program Files\Synaptics\SynTP\SynSensitivity.html
File C:\Program Files\Synaptics\SynTP\SynTapping.html
File C:\Program Files\Synaptics\SynTP\SynTouchStykButton.html
File C:\Program Files\Synaptics\SynTP\SynTouchStykSelect.html
File C:\Program Files\Synaptics\SynTP\SynTouchStykSensitivity.html
File C:\Program Files\Synaptics\SynTP\SynScrollingVertical.html
File C:\Program Files\Synaptics\SynTP\SynScrollingHorizontal.html
File C:\Program Files\Synaptics\SynTP\SynScrollingChiral.html
File C:\Program Files\Synaptics\SynTP\SynLockingDrags.html
File C:\Program Files\Synaptics\SynTP\SynEdgePulls.html
File C:\Program Files\Synaptics\SynTP\Syn2FingerScrolling_win8.wmv
File C:\Program Files\Synaptics\SynTP\Syn2FingerScrollingNB_win8.wmv
File C:\Program Files\Synaptics\SynTP\SynWakeup.html
File C:\Program Files\Synaptics\SynTP\SynWakeup.wmv
File C:\Program Files\Synaptics\SynTP\SynWakeupNB.wmv
File C:\Windows\SysWOW64\SynCOM.dll
File C:\Windows\SysWOW64\SynTPCOM.dll
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
File C:\Windows\system32\SynTPCo16.dll
File C:\Windows\system32\WdfCoInstaller01009.dll
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Microsoft
Location Microsoft eHome Infrared Transceiver
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Logitech
Location Logitech Gaming Virtual Mouse
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Logitech HID-compliant Unifying Mouse
Device Kind Mouse
Device Name Logitech HID-compliant Unifying Mouse
Vendor Logitech
Location Location 1
Driver
Date 5-22-2013
Version 5.60.66.0
File C:\Windows\system32\DRIVERS\LHidFilt.Sys
File C:\Windows\system32\DRIVERS\LMouFilt.Sys
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
File C:\Windows\system32\LMouFiltCoInst.dll
Logitech HID-compliant M500 Laser Mouse
Device Kind Mouse
Device Name Logitech HID-compliant M500 Laser Mouse
Vendor Logitech
Location Location 0
Driver
Date 5-22-2013
Version 5.60.66.0
File C:\Windows\system32\DRIVERS\LHidFilt.Sys
File C:\Windows\system32\DRIVERS\LMouFilt.Sys
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
File C:\Windows\system32\LMouFiltCoInst.dll
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor Logitech
Location Location 0
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Logitech HID-compliant Unifying Mouse
Device Kind Mouse
Device Name Logitech HID-compliant Unifying Mouse
Vendor Logitech
Location Location 4
Driver
Date 5-22-2013
Version 5.60.66.0
File C:\Windows\system32\DRIVERS\LHidFilt.Sys
File C:\Windows\system32\DRIVERS\LMouFilt.Sys
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
File C:\Windows\system32\LMouFiltCoInst.dll
Logitech HID-compliant Unifying Mouse
Device Kind Mouse
Device Name Logitech HID-compliant Unifying Mouse
Vendor Logitech
Location Location 5
Driver
Date 5-22-2013
Version 5.60.66.0
File C:\Windows\system32\DRIVERS\LHidFilt.Sys
File C:\Windows\system32\DRIVERS\LMouFilt.Sys
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
File C:\Windows\system32\LMouFiltCoInst.dll
Logitech Cordless Gaming Receiver
Device Kind Mouse
Device Name Logitech Cordless Gaming Receiver
Vendor Logitech
Location USB Input Device
Driver
Date 1-17-2013
Version 8.45.35.0
File C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
File C:\Windows\system32\LkmdfCoInst.dll
USB Video Device
Device Kind Camera/scanner
Device Name USB Video Device
Vendor Unknown
Comment BisonCam, NB Pro
Location 0000.001d.0000.001.006.000.000.000.000
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\drivers\usbvideo.sys
Printers
Network
You are connected to the internet
Connected through Intel Centrino Ultimate-N 6300 AGN
IP Address 172.20.61.249
Subnet mask 255.255.254.0
Gateway server 172.20.60.1
Preferred DNS server 131.128.1.126
Alternate DNS server 131.128.1.127
DHCP Enabled
DHCP server 131.128.1.80
External IP Address 131.128.73.4
Adapter Type IEEE 802.11 wireless
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 207 Bps
Computer Name
NetBIOS Name ZACH-PC
DNS Name Zach-PC
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain Zach-PC
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Using native Wi-Fi API version 2
Available access points count 1
Wi-Fi (URI_Secure)
SSID URI_Secure
Frequency 5825000 kHz
Channel Number 165
Name URI_Secure
Signal Strength/Quality 99
Security Enabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags Currently Connected to this network
Cipher Algorithm to be used when joining this network AES-CCMP algorithm
Default Auth used to join this network for the first time 802.11i Robust Security Network Association (RSNA) algorithm (WPA2 is one such algorithm)
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Enabled
File and Printer Sharing Disabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Microsoft Virtual WiFi Miniport Adapter #2
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Gateway server 0.0.0.0
MAC Address 00-24-D7-CC-88-CD
Microsoft Virtual WiFi Miniport Adapter
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Gateway server 0.0.0.0
MAC Address 00-24-D7-CC-88-CD
Intel® Centrino® Ultimate-N 6300 AGN
IP Address 172.20.61.249
Subnet mask 255.255.254.0
Gateway server 172.20.60.1
MAC Address 00-24-D7-CC-88-CC
JMicron PCI Express Gigabit Ethernet Adapter
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Gateway server 0.0.0.0
MAC Address 00-90-F5-BC-5F-B2
Network Shares
No network shares
Current TCP Connections
AppleMobileDeviceService.exe (1680)
Local 127.0.0.1:27015 LISTEN
Local 127.0.0.1:1028 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (5932)
Local 127.0.0.1:1143 ESTABLISHED Remote 127.0.0.1:1144 (Querying... )
Local 127.0.0.1:1144 ESTABLISHED Remote 127.0.0.1:1143 (Querying... )
Local 172.20.61.249:1145 ESTABLISHED Remote 128.121.22.133:443 (Querying... ) (HTTPS)
Local 172.20.61.249:1147 ESTABLISHED Remote 199.7.54.72:80 (Querying... ) (HTTP)
Local 172.20.61.249:1148 ESTABLISHED Remote 199.7.54.72:80 (Querying... ) (HTTP)
Local 172.20.61.249:1150 ESTABLISHED Remote 199.7.54.72:80 (Querying... ) (HTTP)
C:\Program Files\Logitech\SetPointP\SetPoint.exe (2540)
Local 127.0.0.1:59243 LISTEN
daemonu.exe (2364)
Local 127.0.0.1:2559 LISTEN
lsass.exe (776)
Local 0.0.0.0:1040 LISTEN
mDNSResponder.exe (1780)
Local 127.0.0.1:5354 LISTEN
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:1028 (Querying... )
scManager.sys (2864)
Local 127.0.0.1:8585 LISTEN
services.exe (756)
Local 0.0.0.0:1041 LISTEN
svchost.exe (1124)
Local 0.0.0.0:1027 LISTEN
svchost.exe (148)
Local 0.0.0.0:135 (DCE) LISTEN
svchost.exe (416)
Local 0.0.0.0:1026 LISTEN
System Process
Local 172.20.61.249:1116 TIME-WAIT Remote 54.230.21.9:80 (Querying... ) (HTTP)
Local 172.20.61.249:1117 TIME-WAIT Remote 54.230.21.9:80 (Querying... ) (HTTP)
Local 172.20.61.249:1118 TIME-WAIT Remote 54.230.21.9:80 (Querying... ) (HTTP)
Local 172.20.61.249:1119 TIME-WAIT Remote 54.230.21.9:80 (Querying... ) (HTTP)
Local 172.20.61.249:1120 TIME-WAIT Remote 4.53.56.113:80 (Querying... ) (HTTP)
Local 172.20.61.249:1121 TIME-WAIT Remote 198.199.110.31:80 (Querying... ) (HTTP)
Local 172.20.61.249:1122 TIME-WAIT Remote 54.230.21.9:80 (Querying... ) (HTTP)
Local 172.20.61.249:1103 TIME-WAIT Remote 198.7.236.234:80 (Querying... ) (HTTP)
Local 172.20.61.249:1126 TIME-WAIT Remote 199.27.78.134:80 (Querying... ) (HTTP)
Local 172.20.61.249:1127 TIME-WAIT Remote 199.27.78.134:80 (Querying... ) (HTTP)
Local 172.20.61.249:1128 TIME-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 172.20.61.249:1130 TIME-WAIT Remote 108.161.189.3:80 (Querying... ) (HTTP)
Local 172.20.61.249:1131 TIME-WAIT Remote 4.53.56.113:80 (Querying... ) (HTTP)
Local 172.20.61.249:1132 TIME-WAIT Remote 198.199.110.31:80 (Querying... ) (HTTP)
Local 172.20.61.249:1139 TIME-WAIT Remote 74.52.165.218:80 (Querying... ) (HTTP)
Local 172.20.61.249:1142 TIME-WAIT Remote 74.52.165.218:80 (Querying... ) (HTTP)
Local 172.20.61.249:1149 TIME-WAIT Remote 199.7.54.72:80 (Querying... ) (HTTP)
Local 172.20.61.249:1079 TIME-WAIT Remote 198.7.236.240:80 (Querying... ) (HTTP)
Local 172.20.61.249:1085 TIME-WAIT Remote 108.168.208.206:80 (Querying... ) (HTTP)
Local 172.20.61.249:1086 TIME-WAIT Remote 74.125.29.95:80 (Querying... ) (HTTP)
Local 172.20.61.249:1093 TIME-WAIT Remote 54.230.20.38:80 (Querying... ) (HTTP)
Local 172.20.61.249:1094 TIME-WAIT Remote 54.230.20.38:80 (Querying... ) (HTTP)
Local 172.20.61.249:1095 TIME-WAIT Remote 54.230.20.38:80 (Querying... ) (HTTP)
Local 172.20.61.249:1096 TIME-WAIT Remote 4.53.56.113:80 (Querying... ) (HTTP)
Local 172.20.61.249:1097 TIME-WAIT Remote 173.194.43.57:80 (Querying... ) (HTTP)
Local 172.20.61.249:1098 TIME-WAIT Remote 23.205.15.139:80 (Querying... ) (HTTP)
Local 172.20.61.249:1100 TIME-WAIT Remote 198.199.110.31:80 (Querying... ) (HTTP)
Local 172.20.61.249:1101 TIME-WAIT Remote 173.194.43.13:80 (Querying... ) (HTTP)
Local 172.20.61.249:1136 TIME-WAIT Remote 74.52.165.218:80 (Querying... ) (HTTP)
Local 172.20.61.249:1105 TIME-WAIT Remote 199.27.75.134:80 (Querying... ) (HTTP)
Local 172.20.61.249:1108 TIME-WAIT Remote 198.7.236.240:80 (Querying... ) (HTTP)
Local 172.20.61.249:1111 TIME-WAIT Remote 108.171.164.204:80 (Querying... ) (HTTP)
Local 172.20.61.249:1112 TIME-WAIT Remote 74.125.29.95:80 (Querying... ) (HTTP)
Local 172.20.61.249:1113 TIME-WAIT Remote 108.171.164.204:80 (Querying... ) (HTTP)
Local 172.20.61.249:1114 TIME-WAIT Remote 108.171.164.204:80 (Querying... ) (HTTP)
Local 172.20.61.249:1115 TIME-WAIT Remote 54.230.21.9:80 (Querying... ) (HTTP)
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 172.20.61.249:139 (NetBIOS session service) LISTEN
wininit.exe (708)
Local 0.0.0.0:1025 LISTEN
Generated with Speccy v1.23.569



OTL logfile created on: 11 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Zach\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United States | Language: ENU | Date Format:

15.98 Gb Total Physical Memory | 13.21 Gb Available Physical Memory | 82.70% Memory free
31.95 Gb Paging File | 29.02 Gb Available in Paging File | 90.82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.79 Gb Total Space | 63.08 Gb Free Space | 27.10% Space Free | Partition Type: NTFS
Drive D: | 698.54 Gb Total Space | 139.68 Gb Free Space | 20.00% Space Free | Partition Type: NTFS

Computer Name: ZACH-PC | User Name: Zach | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013 (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
PRC - [2013 (OldTimer Tools) -- C:\Users\Zach\Desktop\OTL.exe
PRC - [2013 (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013 (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013 (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013 (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013 (BillP Studios) -- C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2013 (Auslogics) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
PRC - [2013 (Almico Software (www.almico.com)) -- C:\Program Files (x86)\SpeedFan\speedfan.exe
PRC - [2013 (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012 (Western Digital) -- C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
PRC - [2012 (Western Digital) -- C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
PRC - [2012 (Western Digital Technologies, Inc.) -- C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
PRC - [2012 (Western Digital ) -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
PRC - [2012 (Western Digital ) -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
PRC - [2012 (Impulse Point, LLC) -- C:\Program Files (x86)\SafeConnect\scManager.sys
PRC - [2010 (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010 (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010 (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010 () -- C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
PRC - [2010 () -- C:\Program Files (x86)\Hotkey\Hotkey.exe


========== Modules (No Company Name) ==========

MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\28ea347a952d20959ac6ae02d7457d39\System.Windows.Forms.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\c664f44617c6a89edcc171fa8596c89d\System.ServiceProcess.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9a1bc983c28c695729b3e46acdc6933e\System.Management.ni.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013 () -- C:\Program Files (x86)\Auslogics\BoostSpeed\sqlite3.dll
MOD - [2013 () -- C:\Users\Zach\AppData\Local\Temp\sfareca00001.dll
MOD - [2013 () -- C:\Users\Zach\AppData\Local\Temp\sfamcc00001.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013 () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013 () -- C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
MOD - [2013 () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\8c20095bd7d46cdfa7933eb258a07daa\Accessibility.ni.dll
MOD - [2012 () -- C:\Program Files (x86)\BillP Studios\WinPatrol\sqlite3.dll
MOD - [2010 () -- C:\Program Files (x86)\Hotkey\Hotkey.exe
MOD - [2009 () -- C:\Program Files (x86)\Hotkey\Audiodll.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013 (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013 (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013 (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2013 (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2013 (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2013 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2013 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2013 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2013 (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2013 () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2013 () [Disabled | Stopped] -- C:\Program Files\FileMind\FileMind.Windows.Service.exe -- (Filemind.Windows.Service)
SRV:64bit: - [2012 (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2009 (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013 (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013 (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013 (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013 (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013 (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013 (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013 (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012 (Western Digital) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe -- (WDDriveService)
SRV - [2012 (Western Digital ) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe -- (WDRulesService)
SRV - [2012 (Western Digital ) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe -- (WDBackup)
SRV - [2012 (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012 (Impulse Point, LLC) [Auto | Running] -- C:\Program Files (x86)\SafeConnect\scManager.sys -- (SCManager)
SRV - [2010 (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010 (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010 (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010 () [Auto | Running] -- C:\Program Files (x86)\Hotkey\PowerBiosServer.exe -- (PowerBiosServer)
SRV - [2009 (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV:64bit: - [2013 (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2013 (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2013 (TrueCrypt Foundation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\truecrypt.sys -- (truecrypt)
DRV:64bit: - [2013 (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)
DRV:64bit: - [2013 (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2013 (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013 (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvstusb.sys -- (NvStUSB)
DRV:64bit: - [2013 (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2013 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2013 (ManyCam LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2013 (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2013 (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGSHidFilt.Sys -- (LGSHidFilt)
DRV:64bit: - [2013 (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2013 (GFI Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\gfibto.sys -- (gfibto)
DRV:64bit: - [2013 (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012 (Windows ® Win 7 DDK provider) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\wcmvcam64.sys -- (WCMVCAM)
DRV:64bit: - [2012 (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2012 (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2012 (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012 (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012 (ManyCam LLC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys -- (ManyCam)
DRV:64bit: - [2012 (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012 (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011 (JMicron Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\JME.sys -- (JME)
DRV:64bit: - [2011 (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011 (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010 (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010 (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\jmcr.sys -- (JMCR)
DRV:64bit: - [2010 (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\itecir.sys -- (itecir)
DRV:64bit: - [2010 (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010 (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010 (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010 () [Kernel | "Start" not found. | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV:64bit: - [2009 (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009 (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009 (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid)
DRV:64bit: - [2009 (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:64bit: - [2009 (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009 (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009 (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009 (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009 (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2008 (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2007 (Waytech Development, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UsbFltr.sys -- (UsbFltr)
DRV - [2011 () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys -- (cpudrv64)
DRV - [2009 (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 4D 20 09 24 2E 24 CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B3d7eb24f-2740-49df-8937-200b1cc08f8a%7D:1.5.17
FF - prefs.js..extensions.enabledAddons: smarterwiki%40wikiatic.com:5.1.9
FF - prefs.js..extensions.enabledAddons: %7Bbb6bc1bb-f824-4702-90cd-35e2fb24f25d%7D:1.5.2
FF - prefs.js..extensions.enabledAddons: %7BEDA7B1D7-F793-4e03-B074-E6F303317FB0%7D:1.2.7
FF - prefs.js..extensions.enabledAddons: %7B4a313247-8330-4a81-948e-b79936516f78%7D:2.0.2
FF - prefs.js..extensions.enabledAddons: %7B1A2D0EC4-75F5-4c91-89C4-3656F6E44B68%7D:0.6.3
FF - prefs.js..extensions.enabledAddons: support%40lastpass.com:2.0.20
FF - prefs.js..extensions.enabledAddons: nosquint%40urandom.ca:2.1.9
FF - prefs.js..extensions.enabledAddons: autopager%40mozilla.org:0.8.0.8
FF - prefs.js..extensions.enabledAddons: SkipScreen%40SkipScreen:0.7.2
FF - prefs.js..extensions.enabledAddons: %7BF003DA68-8256-4b37-A6C4-350FA04494DF%7D:6.5
FF - prefs.js..extensions.enabledAddons: %7Bcd617375-6743-4ee8-bac4-fbf10f35729e%7D:2.9.5
FF - prefs.js..extensions.enabledAddons: treestyletab%40piro.sakura.ne.jp:0.14.2013082301
FF - prefs.js..extensions.enabledAddons: mozilla_cc%40internetdownloadmanager.com:7.3.58
FF - prefs.js..extensions.enabledAddons: %7B98449521-9320-4257-aa35-9e1a39c8cbe0%7D:2.0.3
FF - prefs.js..extensions.enabledAddons: %7B578e7caa-210f-4967-a0d3-88fe5b59a39f%7D:0.8.10
FF - prefs.js..extensions.enabledAddons: canitbecheaper%40trafficbroker.co.uk:3.9.4
FF - prefs.js..extensions.enabledAddons: %7B65e41d20-f092-41b7-bb83-c6e8a9ab0f57%7D:1.2.1
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.12
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F003DA68-8256-4b37-A6C4-350FA04494DF}: C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013
FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 26.0a1\extensions\\Components: C:\Program Files (x86)\Nightly\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Nightly 26.0a1\extensions\\Plugins: C:\Program Files (x86)\Nightly\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 18.0.1\extensions\\Components: C:\Program Files\\Waterfox\components [2013
FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 18.0.1\extensions\\Plugins: C:\Program Files\\Waterfox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5 [2013
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\Zach\AppData\Roaming\IDM\idmmzcc5 [2013

[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\[email protected]
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{65e41d20-f092-41b7-bb83-c6e8a9ab0f57}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2013 () (No name found) -- C:\Users\Zach\AppData\Roaming\Mozilla\Firefox\Profiles\do5y9nnf.default-1376761741539\extensions\{EDA7B1D7-F793-4e03-B074-E6F303317FB0}.xpi
[2013
[2013
[2013
[2013
[2013 (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.66\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.66\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.66\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 7 U17 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
CHR - plugin: Java Deployment Toolkit 7.0.170.2 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
CHR - Extension: reddit companion = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\algjnflpgoopkdijmkalfcifomdhmcbe\1.1.2_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.3_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.4_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.5_0\
CHR - Extension: Logitech Smooth Scrolling = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk\6.60.170_0\
CHR - Extension: The Camelizer - Amazon Price Tracker = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo\2.3.1_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.3_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.4_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.6_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.7_0\
CHR - Extension: Reddit Enhancement Suite = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.0.1_0\
CHR - Extension: Cookie Manager = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbnfbcpkiaganjpcanopcgeoehkleeck\1.1_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0\
CHR - Extension: SABconnect++ = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\okphadhbbjadcifjplhifajfacbkkbod\0.6.8_0\
CHR - Extension: reddit companion = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\algjnflpgoopkdijmkalfcifomdhmcbe\1.1.2_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.3_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.4_0\
CHR - Extension: WikiTube = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\aneddidibfifdpbeppmpoackniodpekj\2.5_0\
CHR - Extension: Logitech Smooth Scrolling = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk\6.60.170_0\
CHR - Extension: The Camelizer - Amazon Price Tracker = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghnomdcacenbmilgjigehppbamfndblo\2.3.1_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.3_0\
CHR - Extension: LastPass = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.5.4_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.6_0\
CHR - Extension: IDM Integration Module = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.7_0\
CHR - Extension: Reddit Enhancement Suite = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.0.1_0\
CHR - Extension: Cookie Manager = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbnfbcpkiaganjpcanopcgeoehkleeck\1.1_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0\
CHR - Extension: SABconnect++ = C:\Users\Zach\AppData\Local\Google\Chrome\User Data\Default\Extensions\okphadhbbjadcifjplhifajfacbkkbod\0.6.8_0\

O1 HOSTS File: () - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
O2:64bit: - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [SpeedFan] C:\Program Files (x86)\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O4 - HKLM..\Run: [WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe (Western Digital)
O4 - HKLM..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (Western Digital Technologies, Inc.)
O4 - HKLM..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousMachineGroupPolicy = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousUserGroupPolicy = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\SearchExtensions: InternetExtensionName = Bing Search
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\SearchExtensions: InternetExtensionAction = http://search.bing.c...sults.aspx?q=%w
O8:64bit: - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O8:64bit: - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 131.128.1.126 131.128.1.127
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2A936B49-CC00-4762-983E-66987E017634}: DhcpNameServer = 10.92.80.5 10.92.80.6 204.17.98.72
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8FAECE5C-6A31-41A3-BE76-57E63394ACFA}: DhcpNameServer = 131.128.1.126 131.128.1.127
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - C:\Program Files (x86)\Stardock\Object Desktop\IconPackager\iprepair.dll (Stardock.net, Inc)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013 () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\E\Shell - "" = AutoRun
O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

MsConfig:64bit - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SafeConnect.lnk - C:\Program Files (x86)\SafeConnect\SCClient.exe - (Impulse Point, LLC)
MsConfig:64bit - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: DAEMON Tools Lite - hkey= - key= - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
MsConfig:64bit - StartUpReg: F.lux - hkey= - key= - C:\Users\Zach\Local Settings\Apps\F.lux\flux.exe ()
MsConfig:64bit - StartUpReg: iTunesHelper - hkey= - key= - C:\Program Files (x86)\iTunes\iTunesHelper.exe (Apple Inc.)
MsConfig:64bit - StartUpReg: RtHDVCpl - hkey= - key= - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
MsConfig:64bit - StartUpReg: SkyDrive - hkey= - key= - File not found
MsConfig:64bit - State: "startup" - Reg Error: Key error.
MsConfig:64bit - State: "services" - Reg Error: Key error.

SafeBootMin:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: MsMpSvc - C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: MsMpSvc - C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: rdsessmgr - Service
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX:64bit: {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} - .NET Framework
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} - .NET Framework
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2D46B6DC-2207-486B-B523-A557E6D54B47} - C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.66\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:64bit: msacm.l3acm - l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: msacm.l3codecp - l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FFDS - ff_vfw.dll ()
Drivers32:64bit: VIDC.LAGS - lagarith.dll ( )
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013 (Yamicsoft) -- C:\Users\Zach\AppData\Roaming\windows7manager.exe
[2013 (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2013 (OldTimer Tools) -- C:\Users\Zach\Desktop\OTL.exe
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvstusb.sys
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvir3dgenco6420172.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6432723.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6432723.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013 (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013 (ManyCam LLC) -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys
[2013 (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2013 (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2013 (Advanced Micro Devices Inc.) -- C:\Program Files (x86)\Common Files\atimpenc.dll
[2013 (Adobe Systems, Inc.) -- C:\Users\Zach\Desktop\Nv2-PC.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013 (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2013 (OldTimer Tools) -- C:\Users\Zach\Desktop\OTL.exe
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6432723.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6432723.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2013 (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2013 (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LNonPnP.sys
[2013 (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2013 (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2013 (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013 (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013 () -- C:\Users\Zach\Desktop\Ventrilo.lnk
[2013 () -- C:\Users\Public\Desktop\Urban Trial Freestyle.lnk
[2013 () -- C:\Users\Zach\Desktop\Troubleshoot problems error.JPG
[2013 () -- C:\Users\Zach\Desktop\Texmaker.lnk
[2013 () -- C:\Users\Zach\Desktop\SteamInstall.msi
[2013 () -- C:\Users\Public\Desktop\Steam.lnk
[2013 () -- C:\Users\Zach\Desktop\Puzzle Pirates.lnk
[2013 () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013 () -- C:\Windows\SysNative\perfh009.dat
[2013 () -- C:\Windows\SysNative\perfc009.dat
[2013 () -- C:\Windows\SysNative\nvinfo.pb
[2013 () -- C:\Users\Zach\Desktop\Minecraft.exe
[2013 () -- C:\Users\Zach\Desktop\MBR.dat
[2013 () -- C:\Users\Zach\Desktop\Lab2 - Zachary Bazarsky.rar
[2013 () -- C:\Users\Zach\AppData\Roaming\keygen.il
[2013 () -- C:\Users\Zach\AppData\Roaming\InstallMTW6.9.il
[2013 () -- C:\Users\Zach\Desktop\i3nF4.jpg
[2013 () -- C:\hiberfil.sys
[2013 () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013 () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013 () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013 () -- C:\Users\Zach\Desktop\Dur.torrent
[2013 () -- C:\Users\Zach\Desktop\Dota 2.url
[2013 () -- C:\Users\Zach\Documents\cc_20130916_151927.reg
[2013 () -- C:\Windows\bootstat.dat
[2013 () -- C:\Users\Zach\Desktop\Auslogics BoostSpeed.lnk
[2013 () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013 () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013 () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013 () -- C:\Users\Zach\Desktop\1aZuY.jpg
[2013 () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013 () -- C:\Windows\WebFerretUninstall.exe
[2013 () -- C:\Users\Zach\Desktop\Ventrilo.lnk
[2013 () -- C:\Users\Public\Desktop\Urban Trial Freestyle.lnk
[2013 () -- C:\Windows\SysWow64\unrar.dll
[2013 () -- C:\Users\Zach\Desktop\Troubleshoot problems error.JPG
[2013 () -- C:\Users\Zach\Desktop\Texmaker.lnk
[2013 () -- C:\Users\Zach\Desktop\SteamInstall.msi
[2013 () -- C:\Users\Public\Desktop\Steam.lnk
[2013 () -- C:\Users\Zach\AppData\Local\Resmon.ResmonCfg
[2013 () -- C:\Users\Zach\Desktop\Puzzle Pirates.lnk
[2013 () -- C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Puzzle Pirates.lnk
[2013 () -- C:\Users\Zach\PUTTY.RND
[2013 () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013 () -- C:\Windows\OEM.ini
[2013 () -- C:\Windows\SysNative\nvinfo.pb
[2013 () -- C:\Windows\SysWow64\NetFerret.dll
[2013 () -- C:\Users\Zach\Desktop\Minecraft.exe
[2013 () -- C:\Users\Zach\Desktop\MBR.dat
[2013 () -- C:\Users\Zach\Desktop\Lab2 - Zachary Bazarsky.rar
[2013 () -- C:\Users\Zach\AppData\Roaming\keygen.il
[2013 () -- C:\Users\Zach\AppData\Roaming\InstallMTW6.9.il
[2013 () -- C:\Users\Zach\Desktop\i3nF4.jpg
[2013 () -- C:\ProgramData\hash.dat
[2013 () -- C:\Users\Zach\Desktop\Dur.torrent
[2013 () -- C:\Users\Zach\Desktop\Dota 2.url
[2013 () -- C:\Users\Zach\Documents\cc_20130916_151927.reg
[2013 () -- C:\Windows\Bison.ini
[2013 () -- C:\Users\Zach\Desktop\Auslogics BoostSpeed.lnk
[2013 () -- C:\Windows\asfbinwin.INI
[2013 () -- C:\Users\Zach\Desktop\1aZuY.jpg
[2013 () -- C:\ProgramData\1372005809.bdinstall.bin
[2013 () -- C:\ProgramData\1366757276.bdinstall.bin
[2013 () -- C:\ProgramData\1366756389.bdinstall.bin
[2013 () -- C:\ProgramData\1364665264.bdinstall.bin
[2013 () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini

========== ZeroAccess Check ==========

[2009 () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013 (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013 (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009 (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010 (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009 (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Custom Scans ==========

========== Drive Information ==========

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: INTEL SSDSC2MH250A2
Partitions: 2
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST9750420AS
Partitions: 2
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 233.00GB
Starting Offset: 105906176
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #1, Partition #1
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 699.00GB
Starting Offset: 105906176
Hidden sectors: 0


< %SYSTEMDRIVE%\*.exe >

< %systemroot%\assembly\GAC_32\*.ini >

< %systemroot%\assembly\GAC_64\*.ini >

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*.exe >

< %APPDATA%\*. >
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2011
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013
[2013

< MD5 for: ATAPI.SYS >
[2009 (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009 (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009 (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009 (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009 (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009 (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys

< MD5 for: CSRSS.EXE >
[2009 (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\SysNative\csrss.exe
[2009 (Microsoft Corporation) MD5=60C2862B4BF0FD9F582EF344C2B1EC72 -- C:\Windows\winsxs\amd64_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_b4d8d57efdc6b4f3\csrss.exe

< MD5 for: EXPLORER.EXE >
[2011 (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011 (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011 (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011 (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010 (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011 (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011 (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010 (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: MSWSOCK.DLL >
[2010 (Microsoft Corporation) MD5=1D5185A4C7E6695431AE4B55C3D7D333 -- C:\Windows\SysNative\mswsock.dll
[2010 (Microsoft Corporation) MD5=1D5185A4C7E6695431AE4B55C3D7D333 -- C:\Windows\winsxs\amd64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7601.17514_none_16795c7543eb48cf\mswsock.dll
[2010 (Microsoft Corporation) MD5=8999B8631C7FD9F7F9EC3CAFD953BA24 -- C:\Windows\SysWOW64\mswsock.dll
[2010 (Microsoft Corporation) MD5=8999B8631C7FD9F7F9EC3CAFD953BA24 -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7601.17514_none_ba5ac0f18b8dd799\mswsock.dll

< MD5 for: NAPINSP.DLL >
[2009 (Microsoft Corporation) MD5=0B7E85364CB878E2AD531DB7B601A9E5 -- C:\Windows\SysWOW64\NapiNSP.dll
[2009 (Microsoft Corporation) MD5=0B7E85364CB878E2AD531DB7B601A9E5 -- C:\Windows\winsxs\x86_microsoft-windows-n..ider-infrastructure_31bf3856ad364e35_6.1.7600.16385_none_abf396ebf0847c31\NapiNSP.dll
[2009 (Microsoft Corporation) MD5=58A0CDABEA255616827B1C22C9994466 -- C:\Windows\SysNative\NapiNSP.dll
[2009 (Microsoft Corporation) MD5=58A0CDABEA255616827B1C22C9994466 -- C:\Windows\winsxs\amd64_microsoft-windows-n..ider-infrastructure_31bf3856ad364e35_6.1.7600.16385_none_0812326fa8e1ed67\NapiNSP.dll

< MD5 for: NLAAPI.DLL >
[2012 (Microsoft Corporation) MD5=0BA65122FFA7E37564EE86422DBF7AE8 -- C:\Windows\SysWOW64\nlaapi.dll
[2012 (Microsoft Corporation) MD5=0BA65122FFA7E37564EE86422DBF7AE8 -- C:\Windows\winsxs\wow64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17964_none_cfca9d84561311f2\nlaapi.dll
[2010 (Microsoft Corporation) MD5=104A1070E90F1C530328E69B49718841 -- C:\Windows\winsxs\wow64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17514_none_d000a58855ea91a1\nlaapi.dll
[2012 (Microsoft Corporation) MD5=11B8C7970C10650827D060AA81BEE63F -- C:\Windows\winsxs\wow64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.22124_none_d07f52216f10753a\nlaapi.dll
[2010 (Microsoft Corporation) MD5=2DF36F15B2BC1571A6A542A3C2107920 -- C:\Windows\winsxs\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17514_none_c5abfb362189cfa6\nlaapi.dll
[2012 (Microsoft Corporation) MD5=46BB91A169B9B31FF44EB04C48EC1D41 -- C:\Windows\SysNative\nlaapi.dll
[2012 (Microsoft Corporation) MD5=46BB91A169B9B31FF44EB04C48EC1D41 -- C:\Windows\winsxs\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.17964_none_c575f33221b24ff7\nlaapi.dll
[2012 (Microsoft Corporation) MD5=C98BCE54F31113D5E736C1097FD086DC -- C:\Windows\winsxs\amd64_microsoft-windows-nlasvc_31bf3856ad364e35_6.1.7601.22124_none_c62aa7cf3aafb33f\nlaapi.dll

< MD5 for: PNRPNSP.DLL >
[2009 (Microsoft Corporation) MD5=5CF640EDDB1E40A5AB1BB743BCDEC610 -- C:\Windows\SysWOW64\pnrpnsp.dll
[2009 (Microsoft Corporation) MD5=5CF640EDDB1E40A5AB1BB743BCDEC610 -- C:\Windows\winsxs\wow64_microsoft-windows-peertopeerpnrp_31bf3856ad364e35_6.1.7600.16385_none_d7c8b1ac70865dab\pnrpnsp.dll
[2009 (Microsoft Corporation) MD5=613C8CE10A5FDE582BA5FA64C4D56AAA -- C:\Windows\SysNative\pnrpnsp.dll
[2009 (Microsoft Corporation) MD5=613C8CE10A5FDE582BA5FA64C4D56AAA -- C:\Windows\winsxs\amd64_microsoft-windows-peertopeerpnrp_31bf3856ad364e35_6.1.7600.16385_none_cd74075a3c259bb0\pnrpnsp.dll

< MD5 for: PRINTISOLATIONHOST.EXE >
[2009 (Microsoft Corporation) MD5=22F020C76E339EB2B2187BA73A7E4173 -- C:\Windows\SysNative\PrintIsolationHost.exe
[2009 (Microsoft Corporation) MD5=22F020C76E339EB2B2187BA73A7E4173 -- C:\Windows\winsxs\amd64_microsoft-windows-p..ng-server-isolation_31bf3856ad364e35_6.1.7600.16385_none_f8a40495785334a9\PrintIsolationHost.exe

< MD5 for: SERVICES.EXE >
[2009 (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009 (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009 (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009 (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013 () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009 (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009 (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: USER32.DLL >
[2010 (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\SysWOW64\user32.dll
[2010 (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
[2010 (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\SysNative\user32.dll
[2010 (Microsoft Corporation) MD5=FE70103391A64039A921DBFFF9C7AB1B -- C:\Windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll

< MD5 for: USERINIT.EXE >
[2010 (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010 (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010 (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010 (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010 (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010 (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013 () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< MD5 for: WINRNR.DLL >
[2009 (Microsoft Corporation) MD5=2E2072EB48238FCA8FBB7A9F5FABAC45 -- C:\Windows\SysNative\winrnr.dll
[2009 (Microsoft Corporation) MD5=2E2072EB48238FCA8FBB7A9F5FABAC45 -- C:\Windows\winsxs\amd64_microsoft-windows-dns-client-winrnr_31bf3856ad364e35_6.1.7600.16385_none_b543449669c73e11\winrnr.dll
[2009 (Microsoft Corporation) MD5=5DF5D8CFD9B9573FA3B2C89D9061A240 -- C:\Windows\SysWOW64\winrnr.dll
[2009 (Microsoft Corporation) MD5=5DF5D8CFD9B9573FA3B2C89D9061A240 -- C:\Windows\winsxs\x86_microsoft-windows-dns-client-winrnr_31bf3856ad364e35_6.1.7600.16385_none_5924a912b169ccdb\winrnr.dll

< MD5 for: WSHELPER.DLL >
[2009 (Microsoft Corporation) MD5=5B90BB3171504C9DAF3C5CB44B203CA7 -- C:\Windows\SysWOW64\wshelper.dll
[2009 (Microsoft Corporation) MD5=5B90BB3171504C9DAF3C5CB44B203CA7 -- C:\Windows\winsxs\wow64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6ace9e67456cc40b\wshelper.dll
[2009 (Microsoft Corporation) MD5=D314DA4B0B8DCD023D547FC568E34FB6 -- C:\Windows\SysNative\wshelper.dll
[2009 (Microsoft Corporation) MD5=D314DA4B0B8DCD023D547FC568E34FB6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\wshelper.dll

< dir C:\ /S /A:L /C >
Volume in drive C has no label.
Volume Serial Number is E486-49A7
Directory of C:\
07/14/2009 <JUNCTION> Documents and Settings [C:\Users]
0 File(s) 0 bytes
Directory of C:\ProgramData
07/14/2009 <JUNCTION> Application Data [C:\ProgramData]
<JUNCTION> Desktop [C:\Users\Public\Desktop]
<JUNCTION> Documents [C:\Users\Public\Documents]
<JUNCTION> Favorites [C:\Users\Public\Favorites]
<JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
<JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users
<SYMLINKD> All Users [C:\ProgramData]
<JUNCTION> Default User [C:\Users\Default]
0 File(s) 0 bytes
Directory of C:\Users\All Users
<JUNCTION> Application Data [C:\ProgramData]
<JUNCTION> Desktop [C:\Users\Public\Desktop]
<JUNCTION> Documents [C:\Users\Public\Documents]
<JUNCTION> Favorites [C:\Users\Public\Favorites]
<JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu]
<JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default
<JUNCTION> Application Data [C:\Users\Default\AppData\Roaming]
<JUNCTION> Cookies [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Cookies]
<JUNCTION> Local Settings [C:\Users\Default\AppData\Local]
<JUNCTION> My Documents [C:\Users\Default\Documents]
<JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
<JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
<JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent]
<JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo]
<JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu]
<JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Default\AppData\Local
07/14/2009 <JUNCTION> Application Data [C:\Users\Default\AppData\Local]
<JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History]
<JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Default\Documents
07/14/2009 <JUNCTION> My Music [C:\Users\Default\Music]
<JUNCTION> My Pictures [C:\Users\Default\Pictures]
<JUNCTION> My Videos [C:\Users\Default\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Public\Documents
<JUNCTION> My Music [C:\Users\Public\Music]
<JUNCTION> My Pictures [C:\Users\Public\Pictures]
<JUNCTION> My Videos [C:\Users\Public\Videos]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser
08/03/2013 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Roaming]
<JUNCTION> Cookies [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Cookies]
<JUNCTION> Local Settings [C:\Users\UpdatusUser\AppData\Local]
<JUNCTION> My Documents [C:\Users\UpdatusUser\Documents]
<JUNCTION> NetHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
<JUNCTION> PrintHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
<JUNCTION> Recent [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Recent]
<JUNCTION> SendTo [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\SendTo]
<JUNCTION> Start Menu [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu]
<JUNCTION> Templates [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\AppData\Local
08/03/2013 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Local]
<JUNCTION> History [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\History]
<JUNCTION> Temporary Internet Files [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\UpdatusUser\Documents
08/03/2013 <JUNCTION> My Music [C:\Users\UpdatusUser\Music]
<JUNCTION> My Pictures [C:\Users\UpdatusUser\Pictures]
<JUNCTION> My Videos [C:\Users\UpdatusUser\Videos]
0 File(s) 0 bytes
Directory of C:\Users\Zach
03/18/2013 <JUNCTION> Application Data [C:\Users\Zach\AppData\Roaming]
<JUNCTION> Cookies [C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Cookies]
<JUNCTION> Local Settings [C:\Users\Zach\AppData\Local]
<JUNCTION> My Documents [C:\Users\Zach\Documents]
<JUNCTION> NetHood [C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Network Shortcuts]
<JUNCTION> PrintHood [C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Printer Shortcuts]
<JUNCTION> Recent [C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Recent]
<JUNCTION> SendTo [C:\Users\Zach\AppData\Roaming\Microsoft\Windows\SendTo]
<JUNCTION> Start Menu [C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Start Menu]
<JUNCTION> Templates [C:\Users\Zach\AppData\Roaming\Microsoft\Windows\Templates]
0 File(s) 0 bytes
Directory of C:\Users\Zach\AppData\Local
03/18/2013 <JUNCTION> Application Data [C:\Users\Zach\AppData\Local]
<JUNCTION> History [C:\Users\Zach\AppData\Local\Microsoft\Windows\History]
<JUNCTION> Temporary Internet Files [C:\Users\Zach\AppData\Local\Microsoft\Windows\Temporary Internet Files]
0 File(s) 0 bytes
Directory of C:\Users\Zach\Documents
03/18/2013 <JUNCTION> My Music [C:\Users\Zach\Music]
<JUNCTION> My Pictures [C:\Users\Zach\Pictures]
<JUNCTION> My Videos [C:\Users\Zach\Videos]
0 File(s) 0 bytes
Total Files Listed:
0 File(s) 0 bytes
66 Dir(s) 67,124,359,168 bytes free

< C:\Windows\assembly\tmp\U\*.* /s >

< %systemroot%\*. /mp /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Nightly\uninstall\helper.exe" /HideShortcuts [2013 (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Nightly\uninstall\helper.exe" /ShowShortcuts [2013 (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Nightly\uninstall\helper.exe" /SetAsDefaultAppGlobal [2013 (mozilla.org)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: "C:\Program Files (x86)\Nightly\firefox.exe" [2013 (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files (x86)\Nightly\firefox.exe" -preferences [2013 (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files (x86)\Nightly\firefox.exe" -safe-mode [2013 (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --make-default-browser [2013 (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --hide-icons [2013 (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --show-icons [2013 (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" [2013 (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\System32\ie4uinit.exe" -show
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\System32\ie4uinit.exe" -reinstall
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\System32\ie4uinit.exe" -hide
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2013 (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files (x86)\Internet Explorer\iexplore.exe [2013 (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\NIGHTLY\UNINSTALL\HELPER.EXE" /HIDESHORTCUTS [2013 (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\NIGHTLY\UNINSTALL\HELPER.EXE" /SHOWSHORTCUTS [2013 (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\NIGHTLY\UNINSTALL\HELPER.EXE" /SETASDEFAULTAPPGLOBAL [2013 (mozilla.org)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: "C:\PROGRAM FILES (X86)\NIGHTLY\FIREFOX.EXE" [2013 (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\PROGRAM FILES (X86)\NIGHTLY\FIREFOX.EXE" -PREFERENCES [2013 (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\PROGRAM FILES (X86)\NIGHTLY\FIREFOX.EXE" -SAFE-MODE [2013 (Mozilla Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --MAKE-DEFAULT-BROWSER [2013 (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --HIDE-ICONS [2013 (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" --SHOW-ICONS [2013 (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE" [2013 (Google Inc.)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2013 (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2013 (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2013 (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2013 (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE [2013 (Microsoft Corporation)

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %ProgramFiles%\WINDOWS NT\*.* /s >
[2010 (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\Accessories\wordpad.exe
[2009 (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\Accessories\WordpadFilter.dll
[2011 (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\Accessories\en-US\wordpad.exe.mui
[2009 (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextService.dll
[2009 () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceAmharic.txt
[2009 () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceArray.txt
[2009 () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceDaYi.txt
[2009 () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceSimplifiedQuanPin.txt
[2009 () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceSimplifiedShuangPin.txt
[2009 () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceSimplifiedZhengMa.txt
[2009 () -- C:\Program Files (x86)\WINDOWS NT\TableTextService\TableTextServiceYi.txt
[2011 (Microsoft Corporation) -- C:\Program Files (x86)\WINDOWS NT\TableTextService\en-US\TableTextService.dll.mui

< %systemroot%\system32\drivers\*.sys /lockedfiles >

========== Alternate Data Streams ==========

@Alternate Data Stream - 225 bytes -> C:\ProgramData\TEMP:D30E8FC9
< End of report >




OTL Extras logfile created on: 11
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Zach\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000409 | Country: United States | Language: ENU | Date Format:

15.98 Gb Total Physical Memory | 13.21 Gb Available Physical Memory | 82.70% Memory free
31.95 Gb Paging File | 29.02 Gb Available in Paging File | 90.82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.79 Gb Total Space | 63.08 Gb Free Space | 27.10% Space Free | Partition Type: NTFS
Drive D: | 698.54 Gb Total Space | 139.68 Gb Free Space | 20.00% Space Free | Partition Type: NTFS

Computer Name: ZACH-PC | User Name: Zach | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (All) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm[@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl[@ = cplfile] -- C:\Windows\SysNative\control.exe (Microsoft Corporation)
.hlp[@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.inf[@ = inffile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.reg[@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = comfile] -- "%1" %*
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- "%1" %*
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.inf [@ = inffile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\SysWow64\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\Windows\SysWow64\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- Reg Error: Value error.
Directory [find] -- Reg Error: Value error.
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- Reg Error: Value error.
Folder [explore] --
Drive [find] -- C:\Windows\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- Reg Error: Value error.
Directory [find] -- Reg Error: Value error.
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- Reg Error: Value error.
Folder [explore] --
Drive [find] -- C:\Windows\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{002C5105-370A-46AE-BF5F-9905BAC6CA16}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{0C5DB97A-D484-425D-9A40-27B9DE588F62}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{2DE8B863-722C-4E06-8E83-3E7F1C3EEC2E}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{31D5AE17-9223-4A8B-8C21-F40C670DD7DD}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{3B33CC63-F75F-483A-9BD3-0A16D43D8EBB}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A73E2D92-6E7A-48AB-BB4C-051C22EDB956}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{B4DE5AA9-AFB8-4540-A5C6-723AF6F36D88}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{CF025AF9-55B3-420C-87B1-64BAC001A8A8}" = lport=5353 | protocol=17 | dir=in | name=bonjour |
"{D3ECDDA8-F774-4CE5-A012-4ADED1B1E11A}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0120DA67-F5EA-4DCA-881C-07AC3DE51641}" = protocol=6 | dir=in | app=c:\program files (x86)\steam1\steam.exe |
"{05F9C584-CC2F-433F-9ABE-CF3E5EFB7F67}" = protocol=6 | dir=in | app=c:\program files (x86)\jdownloader\jdupdate.exe |
"{16EB5F45-E4B0-4DE0-80C3-3BE87DAC9053}" = protocol=6 | dir=in | app=c:\program files (x86)\jdownloader\jdownloaderportable.exe |
"{18A275E2-2874-4314-A767-50C020C7C989}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{2BEDF813-7E65-4FD4-8308-57678A323CC1}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{340CEA2B-E0ED-4D58-8C93-1DF502EFE273}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{347AD927-952B-43EF-ACB0-D604EC80C802}" = protocol=6 | dir=in | app=d:\downloads\programs\bradford dissolvable agent.exe |
"{37B17DD4-0E81-4B88-B626-4C2FD3B8FBAB}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{3A7B8ADE-E803-42D5-8DFB-6942D0C5F68C}" = protocol=6 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"{46C2285B-3045-4B1C-A1F4-CE873C3B35C6}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{490EDE6C-4E22-4FB2-9619-9A75E15407FC}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{4E17CC80-1C60-4B59-9D00-9F3FED7AA69B}" = protocol=17 | dir=in | app=c:\users\zach\appdata\roaming\utorrent\utorrent.exe |
"{4F5B8326-0B0A-48EE-917D-D62B0FDCF85C}" = protocol=17 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"{5F330A7D-B125-49F7-99F5-6533B4C9F4B5}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{65C39604-521C-42CC-BEE6-48BA0D154A4E}" = dir=in | app=c:\program files (x86)\airport\apagent.exe |
"{6790586D-0CAA-41EF-9F1D-06EE609A78E1}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{6F9C9342-347F-4410-9DED-4049A36FF750}" = protocol=6 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{6FF36CA7-DDA2-438B-BB1A-A350E09461C3}" = protocol=6 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{73743CD5-221D-4A17-9831-5427A87301AA}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{7EC89610-AD2D-4C91-A462-D20BCBEE3BBA}" = protocol=17 | dir=in | app=d:\downloads\programs\bradford dissolvable agent.exe |
"{85D60093-BEE2-4BA0-BAAB-A2CC43972319}" = protocol=17 | dir=in | app=c:\program files (x86)\jdownloader\jdupdate.exe |
"{8AEB53EC-CC88-4B7C-9CB9-CEE673A82762}" = protocol=6 | dir=in | app=c:\users\zach\appdata\roaming\utorrent\utorrent.exe |
"{8BA40E28-A76D-421C-B678-6B5439106F18}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{97E23419-B87A-4D69-8F4A-70E1F546B83A}" = protocol=17 | dir=in | app=c:\program files (x86)\jdownloader\jdownloaderportable.exe |
"{9940C7BA-4DFE-42DA-ABD9-5D0096D6B8BF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{9A43E226-B6CD-4A9C-A805-5D36FAF71B2C}" = protocol=17 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{9B77B52B-EF76-4E96-8B79-1E04BD2096BD}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{9BF79A53-610F-421E-B72D-1233254BAF1C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{A191B016-F35A-4253-B31E-0C0773022AE5}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{A328F7D8-8B33-4C1C-8A49-6C631EA6D476}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A636601A-C8B4-4744-A4ED-585E9A6B3DDA}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AFB950EA-50A7-45F8-8E0C-FA1B1743BB25}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AFDAE0B7-B7F8-4993-840D-DB3E1C90D946}" = protocol=6 | dir=in | app=c:\program files (x86)\safeconnect\scclient.exe |
"{B226E207-D7FC-493A-ACD3-233915326027}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{B756F811-FF73-42D5-B478-0E78B8A994B9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{C72B7AC3-9275-4F0F-8513-EFFC95F72EB6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam1\steam.exe |
"{CEC21F85-E1E5-4BF3-8FA6-CE3D9ED1BE2E}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{D4F7B4A6-36AB-4FC7-9162-4D66F6C8E1B2}" = protocol=17 | dir=in | app=c:\program files (x86)\safeconnect\scclient.exe |
"{DFC08196-D0AC-4585-918D-D763DB3F9A2B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{E1D2822F-2CC9-48DF-A438-44CC47F3778A}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{E3E2095F-F245-482E-BC80-5A3CFEFEA67E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E3E9FEF1-AD87-4CC5-B9B2-547EE1CE1BC0}" = protocol=17 | dir=in | app=c:\program files\kmsnano\data\qemu-system-i386.exe |
"{EA41F840-30E0-4CD1-8CE9-CD104D1288C6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{EF3D9F21-3795-424F-9DD2-239F06DD9ED7}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{FA23C7E3-398B-470B-B581-D797DDB72EAA}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"TCP Query User{2163B4BB-41C6-4ED0-9CBF-7B11ABE90BC9}C:\program files (x86)\qbittorrent\qbittorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"TCP Query User{5AA61DC4-B13A-4372-BAEC-90AD329AACA6}C:\program files (x86)\sabnzbd\sabnzbd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sabnzbd\sabnzbd.exe |
"TCP Query User{B25CCDA3-CE95-4E6F-8AAC-5A635D35B7F0}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{CCA276DC-32A3-48D5-B821-46260E6D60E0}C:\program files (x86)\airport\aputil.exe" = protocol=6 | dir=in | app=c:\program files (x86)\airport\aputil.exe |
"TCP Query User{D701142C-0697-447A-A5BB-0AE9A9AC59A8}C:\windows\syswow64\java.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\java.exe |
"UDP Query User{0D9ADEAD-EA70-4DEB-945F-2F62619D8945}C:\program files (x86)\airport\aputil.exe" = protocol=17 | dir=in | app=c:\program files (x86)\airport\aputil.exe |
"UDP Query User{2B518824-CE91-4CDF-8CE3-61BC7EF93FE1}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{3FD66EA8-4FBD-4583-9866-B288F28CBEB5}C:\windows\syswow64\java.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\java.exe |
"UDP Query User{7C305668-BC7C-48DD-9801-1FEEF0A5BFD0}C:\program files (x86)\qbittorrent\qbittorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"UDP Query User{B6BB642F-3B82-4760-8891-2544DCBB81FE}C:\program files (x86)\sabnzbd\sabnzbd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sabnzbd\sabnzbd.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417017FF}" = Java 7 Update 17 (64-bit)
"{27726449-83B8-428D-92DE-101346C1E15C}" = Microsoft Security Client
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{3C28BFD4-90C7-3138-87EF-418DC16E9598}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106
"{427174C0-096E-40D9-9684-9C109BEE2CBF}" = iTunes
"{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}" = WinPatrol
"{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}" = Paint.NET v3.5.10
"{5AF4E09F-5C9B-3AAF-B731-544D3DC821DD}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7C6CD9B4-B230-4E76-80AA-FB465FF4DE29}" = Intel® PROSet/Wireless WiFi Software Driver
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0409-1000-0000000FF1CE}" = Microsoft Access MUI (English) 2013
"{90150000-0016-0409-1000-0000000FF1CE}" = Microsoft Excel MUI (English) 2013
"{90150000-0018-0409-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (English) 2013
"{90150000-0019-0409-1000-0000000FF1CE}" = Microsoft Publisher MUI (English) 2013
"{90150000-001A-0409-1000-0000000FF1CE}" = Microsoft Outlook MUI (English) 2013
"{90150000-001B-0409-1000-0000000FF1CE}" = Microsoft Word MUI (English) 2013
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-1000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-0409-1000-0000000FF1CE}" = Microsoft Office Proofing (English) 2013
"{90150000-0044-0409-1000-0000000FF1CE}" = Microsoft InfoPath MUI (English) 2013
"{90150000-006E-0409-1000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2013
"{90150000-0090-0409-1000-0000000FF1CE}" = Microsoft DCF MUI (English) 2013
"{90150000-00A1-0409-1000-0000000FF1CE}" = Microsoft OneNote MUI (English) 2013
"{90150000-00BA-0409-1000-0000000FF1CE}" = Microsoft Groove MUI (English) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-0409-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (English) 2013
"{90150000-00E1-0409-1000-0000000FF1CE}" = Microsoft Office OSM MUI (English) 2013
"{90150000-00E2-0409-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (English) 2013
"{90150000-0115-0409-1000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2013
"{90150000-0117-0409-1000-0000000FF1CE}" = Microsoft Access Setup Metadata MUI (English) 2013
"{90150000-012B-0409-1000-0000000FF1CE}" = Microsoft Lync MUI (English) 2013
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{9798BB87-01B9-4D46-8EA0-6681E72BDE87}" = WD SmartWare
"{A94C50AA-21E8-4627-ADD0-E16A07030D7D}" = Intel® PROSet/Wireless for Bluetooth® + High Speed
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 327.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.6.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 326.01
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 8.3.14
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.26.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.5
"{DEF50764-F1A7-4DD4-B8BA-C81A4807631A}" = Intel® PROSet/Wireless WiFi Software
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"{FD7DEB7B-8CEA-44E5-AB2D-7C66786C0563}" = Waterfox
"CCleaner" = CCleaner
"KLiteCodecPack64_is1" = K-Lite Codec Pack 9.8.0 (64-bit)
"KMSnano 25_is1" = KMSnano 25
"Logitech Gaming Software" = Logitech Gaming Software 8.46
"Logitech Unifying" = Logitech Unifying Software 2.10
"Microsoft Security Client" = Microsoft Security Essentials
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"PotPlayer64" = Daum PotPlayer 1.5.36205 x64 Edition
"sp6" = Logitech SetPoint 6.61
"Speccy" = Speccy
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeraCopy_is1" = TeraCopy 2.3 beta 2
"Unlocker" = Unlocker 1.9.1-x64
"WinRAR archiver" = WinRAR 5.00 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{06D085C8-1F00-11B2-96A7-8f0CE39193ED}" = Intel® SSD Toolbox
"{100C8F3B-82D6-4B14-BB7A-5E8C3FF810C8}_is1" = Driver Fusion
"{164714B6-46BC-4649-9A30-A6ED32F03B5A}" = Hotkey 3.3017
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron Flash Media Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{3B673B37-EFF7-3BA0-94FF-CE8C46C36DD6}" = Google Chrome
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITE Infrared Transceiver
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.6
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{5BBC4803-C96E-4D3E-9D1D-2E43774C4062}" = BisonCam
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6B75BAF2-A67A-418D-A3D4-B27A5C04F2F5}_is1" = Duplicate Video Search version 15.3.3
"{6BF04C63-EAC0-4F19-9E88-9A745493E7BF}" = IconPackager
"{6e8f74e0-43bd-4dce-8477-6ff6828acc07}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106
"{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1" = Auslogics BoostSpeed
"{72E40002-8CEC-47C1-A099-83AC8E173BF0}" = WD Drive Utilities
"{78091D68-706D-4893-B287-9F1DFB24F7AF}" = Intel® Update Manager
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{8172B41A-9BB5-4A64-BF28-1FB5FE43C3FF}" = WD Security
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}" = JMicron Ethernet Adapter NDIS Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}" = OpenOffice.org 3.4.1
"{A0087DDE-69D0-11E2-AD57-43CA6188709B}" = Adobe AIR
"{AA68AAAE-41F0-40B5-8896-5947F5FD6889}" = AirPort
"{AAE521B6-2F19-447F-8CB6-6D1E3A19F3ED}" = WebCam Installer
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.04)
"{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"{E357C7B4-E337-4E43-84F1-8FDAF1EF4038}" = calibre
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{fad118b4-798f-4755-9e67-a622eec95b62}" = Intel® PROSet/Wireless Software
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"5513-1208-7298-9440" = JDownloader 0.9
"Adobe AIR" = Adobe AIR
"Adobe Digital Editions 2.0" = Adobe Digital Editions 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"A-PDF Page Cut_is1" = A-PDF Page Cut
"AsfTools 3.1" = AsfTools 3.1 (remove only)
"BitMeter" = BitMeter
"CrystalDiskInfo_is1" = CrystalDiskInfo 5.4.2 Shizuku Edition
"DAEMON Tools Lite" = DAEMON Tools Lite
"DSMT6" = MathType 6
"Everything" = Everything 1.2.1.371
"Foxit Reader_is1" = Foxit Reader
"IconPackager" = IconPackager
"iFunbox_is1" = iFunbox (v2.6.2375.747), iFunbox DevTeam
"ImgBurn" = ImgBurn
"InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}" = Hotkey 3.3017
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"Internet Download Manager" = Internet Download Manager
"IrfanView" = IrfanView (remove only)
"jdownloader2" = JDownloader 2.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 9.8.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"MiKTeX 2.9" = MiKTeX 2.9
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 24.0 (x86 en-US)" = Mozilla Firefox 24.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP3Resizer_is1" = MP3Resizer 2.1.0
"Nightly 26.0a1 (x86 en-US)" = Nightly 26.0a1 (x86 en-US)
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"qbittorrent" = qBittorrent 3.0.11
"QuickPar" = QuickPar 0.9
"Rainmeter" = Rainmeter
"Revo Uninstaller" = Revo Uninstaller 1.94
"SABnzbd" = SABnzbd 0.7.16
"SafeConnect" = SafeConnect
"SecureW2 Enterprise Client" = SecureW2 Enterprise Client 3.5.9
"SpeedFan" = SpeedFan (remove only)
"Steam App 570" = Dota 2
"SumatraPDF" = SumatraPDF
"Texmaker" = Texmaker
"The KMPlayer" = The KMPlayer (remove only)
"TreeSize Free_is1" = TreeSize Free V2.7
"TrueCrypt" = TrueCrypt
"Urban Trial Freestyle_is1" = Urban Trial Freestyle
"VLC media player" = VLC media player 2.0.8
"WebFerret" = WebFerret
"Xilisoft Video Converter Ultimate" = Xilisoft Video Converter Ultimate

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CopyTrans Suite" = CopyTrans Suite Remove Only
"Flux" = F.lux
"Puzzle Pirates" = Puzzle Pirates
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ System Events ]
Error - 11
Description = The Diagnostic Service Host service hung on starting.

Error - 11
Description = The Diagnostic System Host service hung on starting.

Error - 11
Description = The Skype Updater service terminated unexpectedly. It has done this
1 time(s).

Error - 11
Description = The following boot-start or system-start driver(s) failed to load:
SBRE


< End of report >




Results of screen317's Security Check version 0.99.74
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 10
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
(On Access scanning disabled!)
Error obtaining update status for antivirus!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.75.0.1300
Java 7 Update 25
Java version out of Date!
Adobe Flash Player 11.8.800.168
Adobe Reader XI
Mozilla Firefox (24.0)
Google Chrome 29.0.1547.76
Google Chrome 30.0.1599.66
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
WinPatrol winpatrol.exe
BillP Studios WinPatrol WinPatrol.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 12% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
  • 0

#5
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).
sfc  /scannow

(This will check your critical system files. Does this finish without complaint? IF it says it couldn't fix everything then:

Copy the next two lines:

findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.
  • 0

#6
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
The "sfc /scannow" did not find any integrity violations/



Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 04/10/2013 4:37:21 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7026 Source: Service Control Manager
The following boot-start or system-start driver(s) failed to load: SBRE

Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic System Host service hung on starting.

Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7001 Source: Service Control Manager
The Windows Image Acquisition (WIA) service depends on the Shell Hardware Detection service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 04/10/2013
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device USB\VID_147E&PID_1001\6&3a50b7fe&0&5.

Log: 'System' Date/Time: 04/10/2013
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 04/10/2013
Type: Warning Category: 0
Event: 10002 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN Extensibility Module has stopped. Module Path: C:\Windows\System32\IWMSSvc.dll
  • 0

#7
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 04/10/2013 4:37:58 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

Log: 'Application' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

Log: 'Application' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

Log: 'Application' Date/Time: 04/10/2013
Type: Error Category: 0
Event: 10 Source: Microsoft-Windows-WMI
Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#8
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
Clear the Java Cache by following the instructions on
http://www.java.com/...lugin_cache.xml

You do not have the latest Java.
First go into Control Panel, Add/Remove Software (XP) or Programs and Features (Vista/Win 7) and remove any old versions (which may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE)
I see:
Java 7 Update 17 (64-bit)
Java 7 Update 25

Java has been very vulnerable to infection so unless you absolutely need it you should not reinstall it.

If you feel you must have Java:
Get the latest Java at:
http://www.java.com/en/

Save it to your PC then close all browsers and install it. You will see this screen after you start the install:

Uncheck the foistware - in this case it was the Ask Toolbar but it changes before hitting Next
Do not let it install any foistware.
Once installed, go into Control Panel, Java, Security and set the slider to the Highest then OK.

(If you also want the 64 bit version then use the 64 bit version of IE to get it.)

Also uninstall:

Internet Download Manager
JDownloader 0.9
JDownloader 2.0
qBittorrent 3.0.11
µTorrent
Auslogics BoostSpeed

WebCam Installer (seems to be not working right. You can download it again and reinstall it if you use it.)

and we don't need Speccy any more so you can uninstall it too.

Make sure you have the latest version of Intel® Rapid Storage Technology. Lot of problems with early versions.


Looking at your Events:

Event: 10 Source: Microsoft-Windows-WMI
Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


Run the FixIt on this page:
http://support.micro...b;en-US;2545227

Event: 7003 Source: Service Control Manager
The Net.Pipe Listener Adapter service depends the following service: was. This service might not be installed.
...
Event: 7003 Source: Service Control Manager
The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.


Do not know why these are on. Normally off by default. Copy the next two lines:

sc config NetPipeActivator start= disabled
sc config NNet.Msmq Listener Adapter start= disabled

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. If you don't get an error this should turn them off.


Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.


I think these are associated with SHIELD Streaming from Nvidia. See if you can find a newer version or just reinstall it.


Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.
...
Event: 7001 Source: Service Control Manager
The Windows Image Acquisition (WIA) service depends on the Shell Hardware Detection service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.


Don't know why these are sick. Let's try to start them and see what happens (We will also try to clear two dead services/drivers):

Copy the next 5 lines:

sc start WdiSystemHost > %userprofile%\desktop\junk.txt
sc start ShellHWDetection >> %userprofile%\desktop\junk.txt
sc delete esgiguard >> %userprofile%\desktop\junk.txt
sc delete SBRE >> %userprofile%\desktop\junk.txt
notepad %userprofile%\desktop\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Notepad should open. Copy and paste the text from notepad into a reply.

Then let's see if we have made any improvements in the errors:


Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.
  • 0

#9
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
Microsoft Windows [Version 6.1.7601]
Copyright © 2009 Microsoft Corporation. All rights reserved.

C:\Windows\system32>sc config NetPipeActivator start= disabled
[SC] ChangeServiceConfig SUCCESS

C:\Windows\system32>sc config NNet.Msmq Listener Adapter start= disabled
DESCRIPTION:
Modifies a service entry in the registry and Service Database.
USAGE:
sc <server> config [service name] <option1> <option2>...

OPTIONS:
NOTE: The option name includes the equal sign.
A space is required between the equal sign and the value.
type= <own|share|interact|kernel|filesys|rec|adapt>
start= <boot|system|auto|demand|disabled|delayed-auto>
error= <normal|severe|critical|ignore>
binPath= <BinaryPathName>
group= <LoadOrderGroup>
tag= <yes|no>
depend= <Dependencies(separated by / (forward slash))>
obj= <AccountName|ObjectName>
DisplayName= <display name>
password= <password>

==============================================================================================

[SC] StartService: OpenService FAILED 5:

Access is denied.

[SC] StartService FAILED 1058:

The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

[SC] DeleteService SUCCESS
[SC] DeleteService SUCCESS

====================================================================

Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 05/10/2013 8:03:40 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic System Host service hung on starting.

Log: 'System' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 7001 Source: Service Control Manager
The Windows Image Acquisition (WIA) service depends on the Shell Hardware Detection service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Msmq Listener Adapter service depends the following service: msmq. This service might not be installed.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 06/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.

Log: 'System' Date/Time: 06/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.

Log: 'System' Date/Time: 06/10/2013
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device USB\VID_147E&PID_1001\6&3a50b7fe&0&5.

Log: 'System' Date/Time: 06/10/2013
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 06/10/2013
Type: Warning Category: 0
Event: 10002 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN Extensibility Module has stopped. Module Path: C:\Windows\System32\IWMSSvc.dll

===========================================================


Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 05/10/2013 8:04:26 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

Log: 'Application' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

Log: 'Application' Date/Time: 06/10/2013
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
I left out the quote marks:

Should be

sc config "NNet.Msmq Listener Adapter" start= disabled

if that doesn't work type: services.msc in the Search box and hit Enter. Then find the NNet.Msmq Listener Adapter service and right click on it and change the Startup Type to Disabled.


Copy the next 3 line:

reg query HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WdiSystemHost /s > %userprofile%\junk.txt
reg query HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ShellHWDetection /s >> %userprofile%\junk.txt
notepad %userprofile%\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Notepad should open. Copy the text from notepad and paste it into a reply.
  • 0

Advertisements


#11
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
I found Net.Msmq Listener Adapter in services and set it to disabled but I didn't find a NNet.Msmq Listener Adapter.



HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WdiSystemHost
DisplayName REG_SZ Diagnostic System Host
ImagePath REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Description REG_SZ @%systemroot%\system32\wdi.dll,-501
ObjectName REG_SZ LocalSystem
ErrorControl REG_DWORD 0x1
Start REG_DWORD 0x2
Type REG_DWORD 0x20
ServiceSidType REG_DWORD 0x1
RequiredPrivileges REG_MULTI_SZ SeChangeNotifyPrivilege\0SeImpersonatePrivilege\0SeTcbPrivilege\0SeDebugPrivilege\0SeAssignPrimaryTokenPrivilege\0SeIncreaseQuotaPrivilege\0SeProfileSingleProcessPrivilege\0SeSystemEnvironmentPrivilege
FailureActions REG_BINARY FFFFFFFF00000000000000000300000014000000000000000000000000000000000000000000000000000000

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WdiSystemHost\Parameters
ServiceDll REG_EXPAND_SZ %SystemRoot%\system32\wdi.dll
ServiceMain REG_SZ ServiceMain
ServiceDllUnloadOnStop REG_DWORD 0x1

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WdiSystemHost\Security
Security REG_BINARY 01001480B4000000C0000000140000003000000002001C000100000002801400FF010F00010100000000000100000000020084000500000000001400FF010F0001010000000000051200000000001800EF01020001020000000000052000000020020000000014008D010200010100000000000504000000000014008D01020001010000000000050600000000002800FD0102000106000000000005500000005EF30FB18164AE04B14CA22914B14C21A6568656010100000000000512000000010100000000000512000000





HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ShellHWDetection
DisplayName REG_SZ Shell Hardware Detection
Group REG_SZ ShellSvcGroup
ImagePath REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
Description REG_SZ @%SystemRoot%\System32\shsvcs.dll,-12289
ObjectName REG_SZ LocalSystem
ErrorControl REG_DWORD 0x0
Start REG_DWORD 0x4
Type REG_DWORD 0x20
DependOnService REG_MULTI_SZ RpcSs
ServiceSidType REG_DWORD 0x1
RequiredPrivileges REG_MULTI_SZ SeImpersonatePrivilege
FailureActions REG_BINARY 80510100000000000000000003000000140000000100000060EA00000100000060EA00000000000000000000

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ShellHWDetection\Parameters
ServiceDll REG_EXPAND_SZ %SystemRoot%\System32\shsvcs.dll
ServiceMain REG_SZ HardwareDetectionServiceMain
ServiceDllUnloadOnStop REG_DWORD 0x1
  • 0

#12
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
Both Diagnostic System Host and Shell Hardware Detection are set to start incorrectly. The first one is on automatic start and it should be on Demand. The second one is Disabled and it should be Automatic. Can you change them in Services or do we need to edit the registry?
  • 0

#13
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
By "on Demand" do you mean manual? I changed Shell Hardware Detection to Automatic.
  • 0

#14
RKinner

RKinner

    Malware Expert

  • Expert
  • 24,701 posts
  • MVP
OOPs. Yes it should be Manual. Once you do that, let's see if that fixed it:


Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

Ron
  • 0

#15
zoltain

zoltain

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 137 posts
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 08/10/2013 3:44:01 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 08/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The WebcamMax, WDM Video Capture service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7003 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends the following service: was. This service might not be installed.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic System Host service hung on starting.

Log: 'System' Date/Time: 07/10/2013
Type: Error Category: 0
Event: 7022 Source: Service Control Manager
The Diagnostic Service Host service hung on starting.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device USB\VID_147E&PID_1001\6&3a50b7fe&0&5.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 10002 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN Extensibility Module has stopped. Module Path: C:\Windows\System32\IWMSSvc.dll

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 7 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 5 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 3 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 1 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 6 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 4 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 2 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 7
Event: 37 Source: Microsoft-Windows-Kernel-Processor-Power
The speed of processor 0 in group 0 is being limited by system firmware. The processor has been in this reduced performance state for 8 seconds since the last report.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device USB\VID_147E&PID_1001\6&3a50b7fe&0&5.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 10002 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN Extensibility Module has stopped. Module Path: C:\Windows\System32\IWMSSvc.dll

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.

Log: 'System' Date/Time: 08/10/2013
Type: Warning Category: 0
Event: 129 Source: iaStorA
Reset to device, \Device\RaidPort0, was issued.



Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 08/10/2013 3:44:19 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP