Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Suspected fake Google Chrome virus
Message
<blockquote data-quote="pshell" data-source="post: 338515" data-attributes="member: 33474"><p>FRST.txt file</p><p></p><p>Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2015</p><p>Ran by pshell (administrator) on PSHELL-DELL on 23-01-2015 13:37:09</p><p>Running from C:\Users\pshell.PTICOMBUSTION\Desktop</p><p>Loaded Profiles: pshell (Available profiles: UpdatusUser & PSHELL & pshell)</p><p>Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)</p><p>Internet Explorer Version 11</p><p>Boot Mode: Normal</p><p>Tutorial for Farbar Recovery Scan Tool: <a href="http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/" target="_blank">http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/</a></p><p></p><p>==================== Processes (Whitelisted) =================</p><p></p><p>(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)</p><p></p><p>(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe</p><p>(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe</p><p>(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe</p><p>(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe</p><p>(Microsoft Corporation) C:\Windows\System32\wlanext.exe</p><p>(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe</p><p>(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe</p><p>(Wave Systems Corp.) C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSView Enterprise\TagSrv.exe</p><p>(2X Software Ltd.) C:\Program Files\2X\Client\x86\TuxWinClientService.exe</p><p>(2X Software Ltd.) C:\Program Files\2X\Client\TUXCredProv.exe</p><p>(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe</p><p>(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe</p><p>(Cisco WebEx LLC) C:\Windows\SysWOW64\atashost.exe</p><p>(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe</p><p>(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe</p><p>(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe</p><p>(Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\EventServer.exe</p><p>(Flexera Software, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSOPC Gateway\RSOPCGateway.exe</p><p>(Flexera Software, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe</p><p>(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\Tools\FTActivationBoost.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagSvcHost.exe</p><p>(SafeNet Inc.) C:\Windows\System32\hasplms.exe</p><p>(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe</p><p>(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe</p><p>(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe</p><p>(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\flexsvr.exe</p><p>(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.FTVIEWX64TAGDB\MSSQL\Binn\sqlservr.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\NmspHost.exe</p><p>(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\NTRTScan.exe</p><p>(O2Micro International) C:\Windows\System32\drivers\o2flash.exe</p><p>() C:\Windows\SysWOW64\srvany.exe</p><p>(O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RdcyHost.exe</p><p>(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe</p><p>(Rockwell Automation Inc.) C:\Program Files (x86)\Common Files\Rockwell\RNADiagnosticsSrv.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSView Enterprise\HMIDIAGNOSTICSLSTADAPT.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\RSLinxNG.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RsvcHost.exe</p><p>(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe</p><p>(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe</p><p>(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe</p><p>(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmListen.exe</p><p>(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE</p><p>(X10) C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe</p><p>(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\EventClientMultiplexer.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RnaDirServer.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RNADirMultiplexor.exe</p><p>(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmProxy.exe</p><p>(UPEK Inc.) C:\Program Files\Common Files\SPBA\upeksvr.exe</p><p>(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe</p><p>(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe</p><p>(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe</p><p>(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe</p><p>(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe</p><p>(Intel Corporation) C:\Windows\System32\igfxtray.exe</p><p>(Intel Corporation) C:\Windows\System32\hkcmd.exe</p><p>(Intel Corporation) C:\Windows\System32\igfxpers.exe</p><p>(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe</p><p>(Intel Corporation) C:\Windows\System32\igfxsrvc.exe</p><p>() C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe</p><p>(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe</p><p>(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe</p><p>(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe</p><p>(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe</p><p>(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenBroker64.exe</p><p>(Akamai Technologies, Inc.) C:\Users\pshell.PTICOMBUSTION\AppData\Local\Akamai\netsession_win.exe</p><p>(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe</p><p>(Akamai Technologies, Inc.) C:\Users\pshell.PTICOMBUSTION\AppData\Local\Akamai\netsession_win.exe</p><p>(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe</p><p>(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe</p><p>(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe</p><p>(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe</p><p>(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe</p><p>(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe</p><p>(Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe</p><p>() C:\Program Files (x86)\PST\Binaries\RACurrTray.exe</p><p>(2X Software Ltd.) C:\Program Files\2X\Client\APPServerClient.exe</p><p>(Dropbox, Inc.) C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\Dropbox.exe</p><p>(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe</p><p>(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe</p><p>(Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Automation\UsbCipDriver\UsbCipHelper\UsbCipHelper.exe</p><p>(Intel Corporation) C:\Windows\System32\igfxext.exe</p><p>(Tactical Software, LLC) C:\Program Files (x86)\Tactical Software\SerialIP\SerialIPTray.exe</p><p>(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\PccNTMon.exe</p><p>(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe</p><p>(Dell Inc.) C:\Program Files\Dell\Dell System Manager\PanelHelper32.exe</p><p>(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe</p><p>(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe</p><p>(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe</p><p>(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe</p><p>(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe</p><p>(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe</p><p>(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe</p><p>(Microsoft Corporation) C:\Windows\System32\prevhost.exe</p><p>(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe</p><p></p><p></p><p>==================== Registry (Whitelisted) ==================</p><p></p><p>(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)</p><p></p><p>HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [608112 2011-04-05] (Alps Electric Co., Ltd.)</p><p>HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)</p><p>HKLM\...\Run: [NVHotkey] => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start</p><p>HKLM\...\Run: [FreeFallProtection] => C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2010-12-17] ()</p><p>HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1934608 2010-12-23] (Intel(R) Corporation)</p><p>HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)</p><p>HKLM\...\Run: [OfficeScanNT Monitor] => -HideWindow</p><p>HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [900992 2011-12-09] (FileOpen Systems Inc.)</p><p>HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [112152 2011-01-17] (Intel Corporation)</p><p>HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.)</p><p>HKLM-x32\...\Run: [PDVD9LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-04-29] (CyberLink Corp.)</p><p>HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-03] (Adobe Systems Incorporated)</p><p>HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)</p><p>HKLM-x32\...\Run: [UsbCipHelper] => C:\Program Files (x86)\Rockwell Automation\UsbCipDriver\UsbCipHelper\UsbCipHelper.exe [434176 2011-10-18] (Rockwell Automation, Inc.)</p><p>HKLM-x32\...\Run: [SerialIPSysTray] => C:\Program Files (x86)\Tactical Software\SerialIP\SerialIPTray.exe [493360 2012-05-03] (Tactical Software, LLC)</p><p>HKLM-x32\...\Run: [OfficeScanNT Monitor] => C:\Program Files (x86)\Trend Micro\Client Server Security Agent\pccntmon.exe [1932920 2013-08-29] (Trend Micro Inc.)</p><p>HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)</p><p>Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)</p><p>Winlogon\Notify\spba: C:\Program Files\Common Files\SPBA\homefus2.dll (UPEK Inc.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [PCShowServer] => "C:\Users\pshell.PTICOMBUSTION\AppData\Local\DIRECTV Player\PCShowServerPMWrapper.exe"</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [Akamai NetSession Interface] => C:\Users\pshell.PTICOMBUSTION\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-01-31] (Google Inc.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [cdloader] => C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\mjusbsp\cdloader2.exe [50592 2012-02-01] (magicJack L.P.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-10-17] (Apple Inc.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-09-19] (Apple Inc.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Policies\Explorer: [] </p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\MountPoints2: {5e4eff0c-668a-11e3-989f-5c260a713610} - E:\TL-Bootstrap.exe</p><p>HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)</p><p>AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [226920 2011-06-05] (NVIDIA Corporation)</p><p>AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [193128 2011-06-05] (NVIDIA Corporation)</p><p>Lsa: [Authentication Packages] msv1_0 wvauth</p><p>Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk</p><p>ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)</p><p>Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell System Manager.lnk</p><p>ShortcutTarget: Dell System Manager.lnk -> C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe (Dell Inc.)</p><p>Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RACurrTray.lnk</p><p>ShortcutTarget: RACurrTray.lnk -> C:\Program Files (x86)\PST\Binaries\RACurrTray.exe ()</p><p>Startup: C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2X RDP.lnk</p><p>ShortcutTarget: 2X RDP.lnk -> C:\Program Files\2X\Client\APPServerClient.exe (2X Software Ltd.)</p><p>Startup: C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk</p><p>ShortcutTarget: Dropbox.lnk -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)</p><p>ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)</p><p>ShellIconOverlayIdentifiers: [EnabledUnlockedFDEIconOverlay] -> {30D3C2AF-9709-4D05-9CF4-13335F3C1E4A} => C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll (Wave Systems Corp.)</p><p>ShellIconOverlayIdentifiers: [UninitializedFdeIconOverlay] -> {CF08DA3E-C97D-4891-A66B-E39B28DD270F} => C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll (Wave Systems Corp.)</p><p>ShellIconOverlayIdentifiers-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll (Autodesk, Inc.)</p><p></p><p>==================== Internet (Whitelisted) ====================</p><p></p><p>(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)</p><p></p><p>HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank</p><p>HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank</p><p>HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = <a href="http://g.msn.com/USREL/1" target="_blank">http://g.msn.com/USREL/1</a></p><p>SearchScopes: HKLM -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = <a href="http://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox" target="_blank">http://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox</a></p><p>SearchScopes: HKLM-x32 -> DefaultScope {F5BFC158-F421-434C-B3C7-44656C2DC603} URL = </p><p>SearchScopes: HKLM-x32 -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = <a href="http://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox" target="_blank">http://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox</a></p><p>SearchScopes: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154 -> DefaultScope {F5BFC158-F421-434C-B3C7-44656C2DC603} URL = <a href="http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3303000&CUI=UN59426576290671494&UM=2" target="_blank">http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3303000&CUI=UN59426576290671494&UM=2</a></p><p>SearchScopes: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154 -> {F5BFC158-F421-434C-B3C7-44656C2DC603} URL = <a href="http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3303000&CUI=UN59426576290671494&UM=2" target="_blank">http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3303000&CUI=UN59426576290671494&UM=2</a></p><p>BHO: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg.dll (Trend Micro Inc.)</p><p>BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)</p><p>BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)</p><p>BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)</p><p>BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)</p><p>BHO-x32: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg32.dll (Trend Micro Inc.)</p><p>BHO-x32: Perk Prize Panel -> {47F3EB15-C230-4A0B-BE4B-D527FF483B48} -> C:\Program Files (x86)\Perk Prize Panel\pp.dll ()</p><p>BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)</p><p>BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)</p><p>BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)</p><p>Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)</p><p>Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)</p><p>Toolbar: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)</p><p>DPF: HKLM-x32 {00134F72-5284-44F7-95A8-52A619F70751} <a href="https://remote:4343/officescan/console/ClientInstall/WinNTChk.cab" target="_blank">https://remote:4343/officescan/console/ClientInstall/WinNTChk.cab</a></p><p>DPF: HKLM-x32 {08D75BB0-D2B5-11D1-88FC-0080C859833B} <a href="https://remote:4343/officescan/console/ClientInstall/setupini.cab" target="_blank">https://remote:4343/officescan/console/ClientInstall/setupini.cab</a></p><p>DPF: HKLM-x32 {08D75BC1-D2B5-11D1-88FC-0080C859833B} <a href="https://remote:4343/officescan/console/ClientInstall/setup.cab" target="_blank">https://remote:4343/officescan/console/ClientInstall/setup.cab</a></p><p>DPF: HKLM-x32 {5EFE8CB1-D095-11D1-88FC-0080C859833B} <a href="https://remote:4343/officescan/console/ClientInstall/RemoveCtrl.cab" target="_blank">https://remote:4343/officescan/console/ClientInstall/RemoveCtrl.cab</a></p><p>DPF: HKLM-x32 {91B29AFF-E4FF-11D6-8C88-00A0C9D7BBEB} <a href="http://www.ab.com/support/abdrives/webupdate/RADriveWebUpdate.cab" target="_blank">http://www.ab.com/support/abdrives/webupdate/RADriveWebUpdate.cab</a></p><p>DPF: HKLM-x32 {FFAD8DA9-ED41-494D-AC8E-63D861D0A733} <a href="https://download.rockwellautomation.com/plugins/rockwell.cab" target="_blank">https://download.rockwellautomation.com/plugins/rockwell.cab</a></p><p>Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)</p><p>Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg.dll (Trend Micro Inc.)</p><p>Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg32.dll (Trend Micro Inc.)</p><p>Tcpip\Parameters: [DhcpNameServer] 192.168.1.150</p><p></p><p>FireFox:</p><p>========</p><p>FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)</p><p>FF Plugin: @microsoft.com/GENUINE -> disabled No File</p><p>FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)</p><p>FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()</p><p>FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)</p><p>FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)</p><p>FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File</p><p>FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)</p><p>FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)</p><p>FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)</p><p>FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.26 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.)</p><p>FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.28 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.)</p><p>FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.31 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.)</p><p>FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.35 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.)</p><p>FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)</p><p>FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)</p><p>FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)</p><p>FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)</p><p>FF Plugin HKU\S-1-5-21-3716596101-2069514591-1949305620-1154: @nds.com/PCShowPlugin -> C:\Users\pshell.PTICOMBUSTION\AppData\Local\DIRECTV Player\npPCShowPlugin.dll No File</p><p>FF Plugin HKU\S-1-5-21-3716596101-2069514591-1949305620-1154: @nds.com/PlayerPlugin -> C:\Users\pshell.PTICOMBUSTION\AppData\Local\DIRECTV Player\npPlayerPlugin.dll No File</p><p>FF Plugin HKU\S-1-5-21-3716596101-2069514591-1949305620-1154: DISH Anywhere.com/DISH Anywhere Video Player -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\DISH Anywhere\DISH Anywhere Video Player\npNMPCBrowserPlugin.dll (Nagravision)</p><p>FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\FirefoxExtension</p><p>FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\FirefoxExtension [2014-01-03]</p><p>FF HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Firefox\Extensions: [<a href="mailto:pp@perk.com">pp@perk.com</a>] - C:\Program Files (x86)\Perk Prize Panel\FF</p><p>FF Extension: Perk Prize Panel - C:\Program Files (x86)\Perk Prize Panel\FF [2014-02-19]</p><p></p><p>Chrome: </p><p>=======</p><p>CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll No File</p><p>CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer</p><p>CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll No File</p><p>CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll No File</p><p>CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)</p><p>CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)</p><p>CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)</p><p>CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)</p><p>CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File</p><p>CHR Plugin: (pGetPlus for Rockwell 20731) - C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.)</p><p>CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)</p><p>CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)</p><p>CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)</p><p>CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()</p><p>CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File</p><p>CHR Profile: C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default</p><p>CHR Extension: (Google Docs) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-13]</p><p>CHR Extension: (Google Drive) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-13]</p><p>CHR Extension: (YouTube) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-13]</p><p>CHR Extension: (Google Search) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-13]</p><p>CHR Extension: (SlingPlayer for DISH Anywhere) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcnpmlegoehfgohpkmjhpohjchokamnn [2013-09-09]</p><p>CHR Extension: (Google Wallet) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-08]</p><p>CHR Extension: (Gmail) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-13]</p><p></p><p>==================== Services (Whitelisted) =================</p><p></p><p>(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>R2 2X RDP Backend Service; C:\Program Files\2X\Client\x86\TuxWinClientService.exe [1902472 2014-10-09] (2X Software Ltd.)</p><p>R2 2X SSO Service; C:\Program Files\2X\Client\\TUXCredProv.exe [2214280 2014-10-09] (2X Software Ltd.)</p><p>R2 AcfXAudioService; C:\Windows\SysWOW64\ACFXAU64.dll [436736 2011-02-14] (Conexant Systems, Inc.)</p><p>R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]</p><p>S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [85096 2011-08-16] (Autodesk)</p><p>R2 FactoryTalk Activation Service; C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe [1407312 2012-12-12] (Flexera Software, Inc.)</p><p>R2 FactoryTalk Gateway; C:\Program Files (x86)\Rockwell Software\RSOPC Gateway\RSOPCGateway.exe [387432 2010-08-26] (Rockwell Automation, Inc.)</p><p>R2 FileOpenManagerSvc; C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe [334720 2011-12-09] (FileOpen Systems Inc.)</p><p>R2 FTActivationBoost; C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\Tools\FTActivationBoost.exe [145888 2012-12-21] (Rockwell Automation, Inc.)</p><p>R2 FTSysDiagSvcHost; C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagSvcHost.exe [69120 2012-12-17] (Rockwell Automation, Inc.) [File not signed]</p><p>R2 hasplms; C:\Windows\system32\hasplms.exe [4412872 2012-08-22] (SafeNet Inc.)</p><p>S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]</p><p>S3 LogReceiver; C:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\LogReceiver.exe [82616 2012-12-27] (Rockwell Automation, Inc.)</p><p>R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)</p><p>R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)</p><p>R2 MSSQL$FTVIEWX64TAGDB; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.FTVIEWX64TAGDB\MSSQL\Binn\sqlservr.exe [43040096 2011-06-17] (Microsoft Corporation)</p><p>R2 ntrtscan; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\ntrtscan.exe [3395536 2012-12-18] (Trend Micro Inc.)</p><p>R2 O2SDIOAssist; c:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed]</p><p>R2 Rockwell HMI Diagnostics; C:\Program Files (x86)\Rockwell Software\RSView Enterprise\HMIDIAGNOSTICSLSTADAPT.exe [108728 2013-01-05] (Rockwell Automation, Inc.)</p><p>R2 Rockwell Tag Server; C:\Program Files (x86)\Rockwell Software\RSView Enterprise\TagSrv.exe [214712 2013-01-05] (Rockwell Automation, Inc.)</p><p>S3 RSLinx; C:\Program Files (x86)\Rockwell Software\RSLinx\RSLINX.EXE [2010488 2012-09-14] (Rockwell Automation, Inc.)</p><p>R2 RSLinxNG; C:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\RSLinxNG.exe [250552 2012-12-27] (Rockwell Automation, Inc.)</p><p>S3 SecureStorageService; C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Secure Storage Manager\SecureStorageService.exe [2117120 2010-11-03] (Wave Systems Corp.) [File not signed]</p><p>S4 SQLAgent$FTVIEWX64TAGDB; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.FTVIEWX64TAGDB\MSSQL\Binn\SQLAGENT.EXE [370016 2011-06-17] (Microsoft Corporation)</p><p>S2 tcsd_win32.exe; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [1629696 2010-07-13] () [File not signed]</p><p>R3 TMBMServer; C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe [572464 2012-10-30] (Trend Micro Inc.)</p><p>R2 tmlisten; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\tmlisten.exe [3450856 2013-08-29] (Trend Micro Inc.)</p><p>R3 TmProxy; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmProxy.exe [918064 2012-08-08] (Trend Micro Inc.)</p><p>R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)</p><p>R2 x10nets; C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe [20480 2010-11-01] (X10) [File not signed]</p><p>R2 ZcfgSvc7; C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe [992256 2010-12-23] (Intel(R) Corporation) [File not signed]</p><p></p><p>==================== Drivers (Whitelisted) ====================</p><p></p><p>(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>S3 acfva; C:\Windows\System32\DRIVERS\ACFVA64.sys [122624 2011-02-14] (Conexant Systems Inc.)</p><p>S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (ASIX Electronics Corp.)</p><p>R3 dfmirage; C:\Windows\System32\DRIVERS\dfmirage.sys [36432 2008-03-05] (DemoForge, LLC)</p><p>S3 dgcfltr; C:\Windows\System32\DRIVERS\ACFDCP64.sys [34944 2011-02-14] (Conexant Systems, Inc.)</p><p>R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [321536 2011-09-28] (SafeNet Inc.)</p><p>R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)</p><p>R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-23] (Malwarebytes Corporation)</p><p>R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)</p><p>R2 mdmxsdk; C:\Windows\System32\DRIVERS\ACFSDK64.sys [17024 2011-02-14] (Conexant)</p><p>S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-13] (Microsoft Corporation)</p><p>S3 RAUSBCIP; C:\Windows\System32\drivers\rausbcipwdf.sys [87552 2011-11-07] (Rockwell Automation, Inc.)</p><p>R2 siserial; C:\Windows\System32\DRIVERS\siserial.sys [1719600 2012-05-03] (Tactical Software, LLC)</p><p>R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [82840 2012-10-30] (Trend Micro Inc.)</p><p>R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [174016 2012-11-13] (Trend Micro Inc.)</p><p>R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [65872 2012-10-30] (Trend Micro Inc.)</p><p>R2 TmFilter; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmXPFlt.sys [351032 2014-08-30] (Trend Micro Inc.)</p><p>R2 TmPreFilter; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmPreFlt.sys [44856 2014-08-30] (Trend Micro Inc.)</p><p>R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [108624 2011-08-31] (Trend Micro Inc.)</p><p>R1 VirtualBackplane; C:\Windows\System32\Drivers\VirtualBackplane.sys [51200 2011-06-02] (Rockwell Automation)</p><p>R2 VSApiNt; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\VSApiNt.sys [2316600 2014-08-30] (Trend Micro Inc.)</p><p>R2 XAudio; C:\Windows\System32\DRIVERS\ACFXAU64.sys [10240 2011-02-14] (Conexant Systems, Inc.)</p><p>S3 pcidnt; \SystemRoot\System32\Drivers\pcidnt.sys [X]</p><p>U3 tmpfw; No ImagePath</p><p></p><p>==================== NetSvcs (Whitelisted) ===================</p><p></p><p>(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)</p><p></p><p></p><p>==================== One Month Created Files and Folders ========</p><p></p><p>(If an entry is included in the fixlist, the file\folder will be moved.)</p><p></p><p>2015-01-23 13:07 - 2015-01-23 13:07 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9.5</p><p>2015-01-23 13:07 - 2015-01-23 13:07 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2X Remote Desktops & Applications</p><p>2015-01-23 13:07 - 2015-01-23 13:07 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2x Published Items</p><p>2015-01-23 11:57 - 2015-01-23 13:07 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys</p><p>2015-01-23 11:56 - 2015-01-23 11:57 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk</p><p>2015-01-23 11:56 - 2015-01-23 11:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware</p><p>2015-01-23 11:56 - 2015-01-23 11:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware</p><p>2015-01-23 11:56 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys</p><p>2015-01-23 11:56 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys</p><p>2015-01-23 11:55 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys</p><p>2015-01-23 11:54 - 2011-09-08 15:34 - 09466208 _____ (Malwarebytes Corporation ) C:\Users\pshell.PTICOMBUSTION\Desktop\mbam-setup-1.51.1.1800.exe</p><p>2015-01-23 11:52 - 2015-01-23 11:52 - 16466552 _____ (Malwarebytes Corp.) C:\Users\pshell.PTICOMBUSTION\Desktop\mbar-1.08.3.1004.exe</p><p>2015-01-23 11:10 - 2015-01-23 11:12 - 00061848 _____ () C:\Users\pshell.PTICOMBUSTION\Desktop\Addition.txt</p><p>2015-01-23 11:09 - 2015-01-23 13:37 - 00034220 _____ () C:\Users\pshell.PTICOMBUSTION\Desktop\FRST.txt</p><p>2015-01-23 11:08 - 2015-01-23 13:37 - 00000000 ____D () C:\FRST</p><p>2015-01-23 11:05 - 2015-01-23 11:06 - 02126848 _____ (Farbar) C:\Users\pshell.PTICOMBUSTION\Desktop\FRST64.exe</p><p>2015-01-23 08:40 - 2015-01-23 11:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware</p><p>2015-01-23 08:40 - 2015-01-23 11:55 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Malwarebytes</p><p>2015-01-23 08:40 - 2015-01-23 08:41 - 00000000 ____D () C:\ProgramData\Malwarebytes</p><p>2015-01-23 08:27 - 2015-01-23 13:04 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\X10 Lock</p><p>2015-01-20 08:51 - 2015-01-20 08:51 - 00080312 _____ () C:\Users\pshell.PTICOMBUSTION\Downloads\dwg_e200_0069 (1).zip</p><p>2015-01-20 08:50 - 2015-01-20 08:51 - 00080312 _____ () C:\Users\pshell.PTICOMBUSTION\Downloads\dwg_e200_0069.zip</p><p>2015-01-18 19:45 - 2015-01-18 19:45 - 00000000 ____D () C:\ProgramData\Hewlett-Packard</p><p>2015-01-18 19:45 - 2007-06-27 12:07 - 00130048 _____ (Hewlett-Packard Company) C:\Windows\system32\hpz3l5k2.dll</p><p>2015-01-18 19:45 - 2007-06-27 12:06 - 00233472 _____ (Hewlett Packard Corporation) C:\Windows\SysWOW64\hpzc35k2.dll</p><p>2015-01-17 07:48 - 2015-01-17 07:48 - 00000208 ____H () C:\Users\pshell.PTICOMBUSTION\Downloads\100-c_fs0_ac_dce.dwl2</p><p>2015-01-17 07:48 - 2015-01-17 07:48 - 00000058 ____H () C:\Users\pshell.PTICOMBUSTION\Downloads\100-c_fs0_ac_dce.dwl</p><p>2015-01-17 07:37 - 2015-01-17 07:37 - 00178868 _____ () C:\Users\pshell.PTICOMBUSTION\Downloads\100-c_fs0_ac_dce.dxf</p><p>2015-01-14 03:01 - 2014-12-18 22:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll</p><p>2015-01-14 03:01 - 2014-12-11 12:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe</p><p>2015-01-14 03:01 - 2014-12-05 23:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll</p><p>2015-01-14 03:01 - 2014-12-05 22:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll</p><p>2015-01-14 03:01 - 2014-12-05 22:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll</p><p>2015-01-14 03:00 - 2014-12-18 20:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys</p><p>2015-01-14 03:00 - 2014-12-12 00:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe</p><p>2015-01-14 03:00 - 2014-12-12 00:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll</p><p>2015-01-14 03:00 - 2014-12-12 00:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe</p><p>2015-01-14 03:00 - 2014-12-12 00:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll</p><p>2015-01-14 03:00 - 2014-12-12 00:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe</p><p>2015-01-14 03:00 - 2014-12-12 00:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe</p><p>2015-01-14 03:00 - 2014-12-12 00:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll</p><p></p><p>==================== One Month Modified Files and Folders =======</p><p></p><p>(If an entry is included in the fixlist, the file\folder will be moved.)</p><p></p><p>2015-01-23 13:15 - 2012-09-28 09:38 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job</p><p>2015-01-23 13:13 - 2009-07-13 23:45 - 00021312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0</p><p>2015-01-23 13:13 - 2009-07-13 23:45 - 00021312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0</p><p>2015-01-23 13:11 - 2009-07-14 00:13 - 00950026 _____ () C:\Windows\system32\PerfStringBackup.INI</p><p>2015-01-23 13:10 - 2012-04-19 09:29 - 00014309 _____ () C:\Windows\cfgall.ini</p><p>2015-01-23 13:09 - 2013-01-28 08:21 - 00048185 _____ () C:\Windows\TMFilter.log</p><p>2015-01-23 13:09 - 2011-08-16 13:13 - 02223138 _____ () C:\Windows\system32\TmInstall.log</p><p>2015-01-23 13:08 - 2012-09-05 15:05 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Skype</p><p>2015-01-23 13:07 - 2014-10-02 13:26 - 00000000 ___RD () C:\Users\pshell.PTICOMBUSTION\Dropbox (PTI)</p><p>2015-01-23 13:07 - 2014-10-02 13:25 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox</p><p>2015-01-23 13:07 - 2014-04-01 14:08 - 00009295 _____ () C:\WindowsPODIUM.LOG</p><p>2015-01-23 13:07 - 2012-01-31 13:43 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job</p><p>2015-01-23 13:06 - 2014-02-21 14:34 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\X10 Commander</p><p>2015-01-23 13:06 - 2014-01-03 08:18 - 01570838 _____ () C:\Windows\SysWOW64\TmInstall.log</p><p>2015-01-23 13:06 - 2011-08-16 13:43 - 00000152 _____ () C:\Windows\system32\config\netlogon.ftl</p><p>2015-01-23 13:06 - 2011-08-10 11:05 - 00000000 ____D () C:\ProgramData\NVIDIA</p><p>2015-01-23 13:06 - 2010-11-20 22:47 - 00743572 _____ () C:\Windows\PFRO.log</p><p>2015-01-23 13:06 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT</p><p>2015-01-23 13:06 - 2009-07-13 23:51 - 00107386 _____ () C:\Windows\setupact.log</p><p>2015-01-23 13:05 - 2011-08-10 09:09 - 01396395 _____ () C:\Windows\WindowsUpdate.log</p><p>2015-01-23 13:04 - 2013-09-08 17:29 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\CRE</p><p>2015-01-23 12:48 - 2012-01-31 13:43 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job</p><p>2015-01-23 09:28 - 2014-01-06 09:15 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\cache</p><p>2015-01-23 07:56 - 2014-06-20 05:51 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\5178DA6A-43E8-4410-818E-75E29E593DEB.aplzod</p><p>2015-01-22 16:16 - 2012-09-28 09:38 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater</p><p>2015-01-22 16:16 - 2012-04-24 08:53 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe</p><p>2015-01-22 16:16 - 2011-08-10 09:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl</p><p>2015-01-17 07:29 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF</p><p>2015-01-14 17:01 - 2011-10-20 15:17 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\Apple</p><p>2015-01-06 17:04 - 2011-09-13 15:42 - 00006232 _____ () C:\Users\pshell.PTICOMBUSTION\Desktop\Equipment Cost.txt</p><p>2015-01-06 10:39 - 2011-08-19 15:22 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\Documents\PTI</p><p>2015-01-06 04:36 - 2010-11-20 22:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe</p><p>2015-01-05 08:49 - 2014-10-02 13:26 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox</p><p></p><p>==================== Files in the root of some directories =======</p><p>2000-01-06 15:53 - 2000-01-06 15:53 - 0557328 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\DAO360.DLL</p><p>2011-08-23 11:46 - 2011-08-23 11:46 - 0000108 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Local\fusioncache.dat</p><p>2013-04-04 08:12 - 2013-04-04 08:12 - 0007609 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Local\Resmon.ResmonCfg</p><p>2013-07-14 09:10 - 2013-07-14 09:10 - 0000057 _____ () C:\ProgramData\Ament.ini</p><p>2014-01-06 09:02 - 2014-01-06 09:02 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc</p><p></p><p>Some content of TEMP:</p><p>====================</p><p>C:\Users\PSHELL\AppData\Local\Temp\AcDeltree.exe</p><p>C:\Users\PSHELL\AppData\Local\Temp\MSN96C5.exe</p><p>C:\Users\PSHELL\AppData\Local\Temp\ose00000.exe</p><p>C:\Users\PSHELL\AppData\Local\Temp\ose00001.exe</p><p>C:\Users\PSHELL\AppData\Local\Temp\ose00002.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\AcDeltree.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpyvmj_a.dll</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\hdinst_x64.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\hhupd.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\KUIU.EXE</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\MSN9188.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\setup_AHP.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\SkypeSetup.exe</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\tbVafm.dll</p><p>C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\UIUTEMP.EXE</p><p></p><p></p><p>==================== Bamital & volsnap Check =================</p><p></p><p>(There is no automatic fix for files that do not pass verification.)</p><p></p><p>C:\Windows\System32\winlogon.exe => File is digitally signed</p><p>C:\Windows\System32\wininit.exe => File is digitally signed</p><p>C:\Windows\SysWOW64\wininit.exe => File is digitally signed</p><p>C:\Windows\explorer.exe => File is digitally signed</p><p>C:\Windows\SysWOW64\explorer.exe => File is digitally signed</p><p>C:\Windows\System32\svchost.exe => File is digitally signed</p><p>C:\Windows\SysWOW64\svchost.exe => File is digitally signed</p><p>C:\Windows\System32\services.exe => File is digitally signed</p><p>C:\Windows\System32\User32.dll => File is digitally signed</p><p>C:\Windows\SysWOW64\User32.dll => File is digitally signed</p><p>C:\Windows\System32\userinit.exe => File is digitally signed</p><p>C:\Windows\SysWOW64\userinit.exe => File is digitally signed</p><p>C:\Windows\System32\rpcss.dll => File is digitally signed</p><p>C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed</p><p></p><p></p><p>LastRegBack: 2015-01-14 03:25</p><p></p><p>==================== End Of Log ============================</p><p></p><p></p><p></p><p>Addition File:</p><p></p><p>Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2015</p><p>Ran by pshell at 2015-01-23 13:43:09</p><p>Running from C:\Users\pshell.PTICOMBUSTION\Desktop</p><p>Boot Mode: Normal</p><p>==========================================================</p><p></p><p></p><p>==================== Security Center ========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed.)</p><p></p><p>AV: Trend Micro Security Agent (Enabled - Up to date) {5D349EF8-873B-C657-917F-F1D93E101A7C}</p><p>AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}</p><p>AS: Trend Micro Security Agent Anti-spyware (Enabled - Up to date) {E6557F1C-A101-C9D9-ABCF-CAAB459750C1}</p><p></p><p>==================== Installed Programs ======================</p><p></p><p>(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)</p><p></p><p>1769-L1Y Controllers and Embedded Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>1769-L2Y Controllers and Embedded Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>2X RDP-64 bit (HKLM\...\{BE9CC862-DA8E-421A-ACCB-5C15D3C3E31C}) (Version: 12.0.2212 - 2X Software Ltd.)</p><p>AccelerometerP11 (HKLM-x32\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 2.00.10.22 - STMicroelectronics)</p><p>ActiveHome Pro (HKLM-x32\...\ActiveHomePro) (Version: - )</p><p>Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)</p><p>Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.287 - Adobe Systems Incorporated)</p><p>Adobe Reader X (10.1.2) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.2 - Adobe Systems Incorporated)</p><p>Akamai NetSession Interface (HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Akamai) (Version: - Akamai Technologies, Inc)</p><p>Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)</p><p>Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)</p><p>Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)</p><p>AutoCAD LT 2008 - English (HKLM-x32\...\AutoCAD LT 2008 - English) (Version: 17.1.219.0 - Autodesk)</p><p>AutoCAD LT 2008 - English (x32 Version: 17.1.219.0 - Autodesk) Hidden</p><p>AutoCAD LT 2008 - English SP1 (HKLM-x32\...\AutoCAD LT 2008 - English SP1) (Version: 1 - Autodesk)</p><p>AutoCAD LT 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden</p><p>AutoCAD LT 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden</p><p>Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)</p><p>Autodesk AutoCAD LT 2014 - English (HKLM\...\AutoCAD LT 2014 - English) (Version: 19.1.18.0 - Autodesk)</p><p>Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)</p><p>Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden</p><p>Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden</p><p>Autodesk Design Review 2012 (HKLM-x32\...\Autodesk Design Review 2012) (Version: 12.0.0.93 - Autodesk, Inc.)</p><p>Autodesk Design Review 2012 (x32 Version: 12.0.0.93 - Autodesk, Inc.) Hidden</p><p>Autodesk Inventor View 2012 (Version: 16.0.15600.0000 - Autodesk) Hidden</p><p>Autodesk Inventor View 2012 English (HKLM\...\Autodesk Inventor View 2012) (Version: 16.0.15600.0000 - Autodesk)</p><p>Autodesk Inventor View 2012 English Language Pack (Version: 16.0.15600.0000 - Autodesk) Hidden</p><p>Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)</p><p>Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)</p><p>Autodesk Vault Collaboration 2012 (Client) (HKLM-x32\...\Autodesk Vault Collaboration 2012 (Client)) (Version: 16.0.56.200 - Autodesk, Inc.)</p><p>Autodesk Vault Collaboration 2012 (Client) (Version: 16.0.56.200 - Autodesk, Inc.) Hidden</p><p>Autodesk Vault Collaboration 2012 (Client) English Language Pack (Version: 16.0.56.200 - Autodesk, Inc.) Hidden</p><p>BioAPI Framework (Version: 1.0.2 - Dell Inc.) Hidden</p><p>Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)</p><p>Brother BRAdmin Light 1.23.0003 (HKLM-x32\...\{DB75941E-30C4-4D97-B000-D17C764B998C}) (Version: 1.23.0003 - Brother)</p><p>Cognex 1756 Comm Module Profiles (x32 Version: 1.16.1.0 - Cognex Corp) Hidden</p><p>Connected Components Workbench 2.00.00 (HKLM-x32\...\{AB4D2437-7A8C-4274-A2F8-C15087008A44}) (Version: 2.00.00.07 - Rockwell Automation, Inc.)</p><p>ConSoft (HKLM-x32\...\{35324A3C-6FE0-4E7E-94C4-40C6E7BB843A}) (Version: 2.0.06 - INOR)</p><p>ControlFLASH (HKLM-x32\...\{7213B6CE-E214-472E-B8BE-5400E49A9040}) (Version: 11.00.00 - Rockwell Software)</p><p>Custom (Version: 01.00.00.000 - Wave Systems Corp.) Hidden</p><p>CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.3225 - CyberLink Corp.)</p><p>D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden</p><p>Dell ControlVault Host Components Installer 64 bit (Version: 2.0.20.159 - Broadcom Corporation) Hidden</p><p>Dell Data Protection | Access (HKLM-x32\...\{A7D91856-258D-4C87-8041-B170851CE432}) (Version: 2.0.00001.001 - Dell Inc.)</p><p>Dell Data Protection | Access (Version: 01.01.01.001 - Wave Systems Corp) Hidden</p><p>Dell Data Protection | Access | Drivers (HKLM-x32\...\{4E4E65EE-C456-45AC-B5AD-C62C3A325BD0}) (Version: 1.00.011 - Dell Inc.)</p><p>Dell Data Protection | Access | Middleware (HKLM-x32\...\{841CBDD5-4BB5-403E-AEE3-2FADC3890BE8}) (Version: 1.00.005 - Dell Inc.)</p><p>Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)</p><p>Dell System Manager (HKLM\...\{FDF509ED-9624-4FDE-9BAA-9566C186AB96}) (Version: 1.6.00000 - Dell Inc.)</p><p>Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1208.101.118 - ALPS ELECTRIC CO., LTD.)</p><p>DellAccess (Version: 01.01.00.053 - Wave Systems Corp.) Hidden</p><p>deskPDF 2.5 Professional Edition (HKLM-x32\...\deskPDF 2.5 Professional_is1) (Version: - Docudesk)</p><p>DeviceNet Node Commissioning Tool (HKLM-x32\...\{7FB3F90F-E754-4374-9ABC-EF8F94DA35E2}) (Version: 1.0.0 - Rockwell Software)</p><p>DISH Anywhere Video Player (HKLM-x32\...\{7E69DC96-66CA-4C38-B3EC-DDC5B9CAE00C}) (Version: 2.14.1 - DISH Anywhere)</p><p>DMUninstaller (HKLM-x32\...\DMUninstaller) (Version: - ) <==== ATTENTION</p><p>Docudesk GPL Ghostscript 8.15 (HKLM-x32\...\GPL Ghostscript_is1) (Version: - Docudesk)</p><p>Driver Support (HKLM-x32\...\{597FB4A5-DD86-4316-A410-7E8074CC2CCE}) (Version: 8.1 - Driver Support)</p><p>Dropbox (HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)</p><p>DWG TrueView 2013 (HKLM\...\DWG TrueView 2013) (Version: 19.0.55.0 - Autodesk)</p><p>DWG TrueView 2013 (Version: 19.0.55.0 - Autodesk) Hidden</p><p>EMBASSY Security Center (Version: 04.03.00.067 - Wave Systems Corp.) Hidden</p><p>Endress+Hauser EtherNet/IP Comm Module Profiles (x32 Version: 1.18.1.0 - Endress+Hauser, Inc.) Hidden</p><p>Engineering Power Tools - v1.9.8 (HKLM-x32\...\Engineering Power Tools_is1) (Version: - Engineering Power Tools Software)</p><p>ESolutions402 (HKLM-x32\...\{3D99EEB7-CB68-48A2-8AA8-837E406E05A6}) (Version: 4.0.2 - e-Solutions Enterprise 4.0.2)</p><p>EZSeries TouchPanel 5.7 (HKLM-x32\...\EZSeries TouchPanel) (Version: - )</p><p>FactoryTalk Activation Manager 3.60.00 (CPR 9 SR 6) (HKLM-x32\...\{823DA070-BC8F-4BD4-B5B3-9498F02262CB}) (Version: 3.60.00 - Rockwell Automation, Inc.)</p><p>FactoryTalk Diagnostics 2.60.00 (CPR 9 SR 6) (HKLM-x32\...\{B1EDA7E0-8539-49F3-B706-36842FE984D4}) (Version: 2.60.00 - Rockwell Automation, Inc.)</p><p>FactoryTalk Gateway 3.03.00000 (CPR 9 SR 3) (HKLM-x32\...\{844C71E7-45B8-421A-AC46-EC344F63E59B}) (Version: 3.03.00000 - Rockwell Automation, Inc.)</p><p>FactoryTalk Services Platform 2.60.00 (CPR 9 SR 6) (HKLM-x32\...\{35FCA340-FE96-4635-ADBB-66B979BA992B}) (Version: 2.60.00 - Rockwell Automation, Inc.)</p><p>FactoryTalk View Studio for Machine Edition 7.00.00 (HKLM-x32\...\RSView Studio) (Version: - )</p><p>FactoryTalk® View Studio for Machine Edition 7.00.00 (CPR 9 SR 6) (HKLM-x32\...\{08DC0688-496B-49A5-94C8-0C668DEFA305}) (Version: 7.00.00 - Rockwell Automation, Inc.)</p><p>Fan Selector 9.3 (HKLM-x32\...\Fan Selector Program_is1) (Version: TCF9.3 - Twin City Fan Companies, Ltd.)</p><p>FileOpen Client (x64) (HKLM\...\{8D8B35B1-4F80-412C-8F96-0BEE6AF1C57D}) (Version: 3.0.73.917 - FileOpen Systems, Inc.)</p><p>Firmware Upgrade Wizard for PanelView Plus 6 400-600 (HKLM-x32\...\{B580CDEF-6395-4BD1-AFF6-08C1F9CD0E02}) (Version: 7.00.20140127 - Rockwell Automation)</p><p>Firmware Upgrade Wizard for PanelView Plus 6 700-1500 (HKLM-x32\...\{5A1F1645-DF39-4297-AEDB-6609949A59DB}) (Version: 6.10.20120418 - Rockwell Automation)</p><p>Gemalto (Version: 01.64.01.0010 - Wave Systems Corp) Hidden</p><p>Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)</p><p>Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)</p><p>Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden</p><p>Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden</p><p>Hardy Instruments 1756 Specialty Module Profiles (x32 Version: 1.07.1.0 - Hardy Instruments, Inc.) Hidden</p><p>Hardy Instruments 1769 Specialty Module Profiles (x32 Version: 2.08.1.0 - Hardy Instruments, Inc.) Hidden</p><p>HASP Device Drivers (HKLM-x32\...\HASP Device Drivers) (Version: - )</p><p>HP Officejet Pro 8500 A910 Basic Device Software (HKLM\...\{EE7C94CC-BECB-4000-B5E3-D895307B9D5E}) (Version: 22.50.231.0 - Hewlett-Packard Co.)</p><p>HP Officejet Pro 8500 A910 Help (HKLM-x32\...\{871B2A9D-0F12-44B3-88C1-E0CB10A232E4}) (Version: 140.0.2.2 - Hewlett Packard)</p><p>HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)</p><p>iCloud (HKLM\...\{2AAF09D5-4B3F-4975-B6A9-ECE2631FC942}) (Version: 4.0.5.20 - Apple Inc.)</p><p>Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)</p><p>Intel(R) Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation)</p><p>Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)</p><p>Intel(R) Network Connections 15.7.176.1 (HKLM\...\PROSetDX) (Version: 15.7.176.1 - Dell)</p><p>Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2347 - Intel Corporation)</p><p>Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{4C1CCA11-0D08-4D5E-8444-2D9FB48BCABF}) (Version: 14.00.20110 - Intel Corporation)</p><p>IPRO v4.32 (HKLM-x32\...\IPRO v4.32) (Version: - )</p><p>iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)</p><p>Java(TM) 6 Update 24 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416024FF}) (Version: 6.0.240 - Oracle)</p><p>Java(TM) 6 Update 24 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.240 - Oracle)</p><p>Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden</p><p>KONICA MINOLTA bizhub C250/C250P (HKLM\...\KONICA MINOLTA bizhub C250/C250P Installer) (Version: - )</p><p>Logix CPU Security Tool (HKLM-x32\...\{9AE0E408-37BC-4B89-B768-252DE878CE7A}) (Version: 3.0.0 - Rockwell Automation)</p><p>Logix5000 Clock Update Tool (HKLM-x32\...\{125B984A-CFD9-4539-88D2-F3D80B5DAAE6}) (Version: 2.4.2 - Rockwell Software)</p><p>Logix5000 Task Monitor (HKLM-x32\...\{5E171324-7299-4107-96D6-7584635962D5}) (Version: 2.4.0 - Rockwell Automation)</p><p>magicJack (HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\magicJack) (Version: 2.0.6073.4413 - magicJack L.P.)</p><p>Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)</p><p>Marketsplash Shortcuts (HKLM-x32\...\{16FCDD97-AE09-476B-88CD-261D852BD34C}) (Version: 1.0.1.7 - Hewlett-Packard)</p><p>Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden</p><p>Mettler-Toledo 1756 Comm Module Profiles (x32 Version: 1.09.1.0 - Mettler-Toledo Corporation) Hidden</p><p>Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)</p><p>Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)</p><p>Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)</p><p>Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)</p><p>Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)</p><p>Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)</p><p>Microsoft Office Small Business 2007 (HKLM-x32\...\SMALLBUSINESSR) (Version: 12.0.6612.1000 - Microsoft Corporation)</p><p>Microsoft Report Viewer Redistributable 2008 (KB971118) (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008 (KB971118)) (Version: - Microsoft Corporation)</p><p>Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)</p><p>Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)</p><p>Microsoft SQL Server 2008 Management Objects (HKLM-x32\...\{F5E87B12-3C27-452F-8E78-21D42164FD83}) (Version: 10.0.1600.22 - Microsoft Corporation)</p><p>Microsoft SQL Server 2008 R2 (HKLM-x32\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)</p><p>Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{471AAD2C-9078-4DAC-BD43-FA10FB7C3FCE}) (Version: 10.51.2500.0 - Microsoft Corporation)</p><p>Microsoft SQL Server 2008 R2 Setup (English) (HKLM-x32\...\{48B08845-0CB0-45EC-893C-15319ADDA312}) (Version: 10.51.2500.0 - Microsoft Corporation)</p><p>Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)</p><p>Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.51.2500.0 - Microsoft Corporation)</p><p>Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)</p><p>Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.51.2500.0 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)</p><p>Microsoft Visual Studio Shell 2008 Service Pack 1 - ENU (HKLM-x32\...\{97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)</p><p>Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)</p><p>MinIPAQ Soft v. 1.23 (HKLM-x32\...\MinIPAQ Soft v. 1.23) (Version: - )</p><p>MinIPAQ Soft v. 1.24 (HKLM-x32\...\MinIPAQ Soft v. 1.24) (Version: - )</p><p>Molex Corporation 1756 Comm Module Profiles (x32 Version: 1.25.1.0 - Molex Corporation) Hidden</p><p>MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)</p><p>MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)</p><p>Netwaiting (HKLM-x32\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.59 - BVRP Software, Inc)</p><p>NOOK for PC (HKLM-x32\...\BN_DesktopReader) (Version: 2.5.6.9575 - Barnesandnoble.com)</p><p>NTRU TCG Software Stack (Version: 2.1.34 - Security Innovation) Hidden</p><p>NVIDIA 3D Vision Driver 268.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 268.83 - NVIDIA Corporation)</p><p>NVIDIA Graphics Driver 268.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 268.83 - NVIDIA Corporation)</p><p>NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)</p><p>NVIDIA nView 135.85 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 135.85 - NVIDIA Corporation)</p><p>nyb Electronic Catalog (HKLM-x32\...\{F978045B-D6C4-4008-B2BA-46C0B91BBE1A}) (Version: 1.76 - The New York Blower Company)</p><p>O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}) (Version: 3.0.07.23 - O2Micro International LTD.)</p><p>O2Micro Flash Memory Card Windows Driver (x32 Version: 3.0.07.23 - O2Micro International LTD.) Hidden</p><p>OPC Core Components Redistributable (x64) 101.2 (HKLM\...\{1E45EA19-6DF9-44D5-A0CE-0D642B6AC0E0}) (Version: 3.00.10102 - OPC Foundation)</p><p>Oracle VM VirtualBox 4.2.8 (HKLM\...\{C017D5C7-E2C0-4276-8C8A-0CB6D5914DDD}) (Version: 4.2.8 - Oracle Corporation)</p><p>Parker Isysnet Analog Module Profiles (x32 Version: 6.02.2.0 - Parker Hannifin Corporation) Hidden</p><p>Parker Isysnet ASCII Module Profile (x32 Version: 2.02.1.0 - Parker Hannifin Corporation) Hidden</p><p>Parker Isysnet ControlNet Adapter Module Profile (x32 Version: 3.00.0.0 - Parker Hannifin Corporation) Hidden</p><p>Parker Isysnet Discrete Module Profiles (x32 Version: 6.02.2.0 - Parker Hannifin Corporation) Hidden</p><p>Parker Isysnet Discrete Module Profiles 2 (x32 Version: 2.02.1.0 - Parker Hannifin Corporation) Hidden</p><p>Parker Isysnet Discrete Module Profiles 3 (x32 Version: 2.02.1.0 - Parker Hannifin Corporation) Hidden</p><p>Parker Isysnet Ethernet Adapter Module Profile (x32 Version: 3.00.0.0 - Parker Hannifin Corporation) Hidden</p><p>PC-CCID (Version: 2.0.0 - Gemalto) Hidden</p><p>Perk Prize Panel (HKLM-x32\...\<a href="mailto:pp@perk.com">pp@perk.com</a>) (Version: - )</p><p>Phoenix Digital 1756 Communication Module Profiles (x32 Version: 1.05.1.0 - Phoenix Digital, Inc.) Hidden</p><p>PID Calculation Program (HKLM-x32\...\PID Calculation Program) (Version: - )</p><p>PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.00.000 - Prolific Technology INC)</p><p>Preboot Manager (Version: 03.03.00.049 - Wave Systems Corp.) Hidden</p><p>Private Information Manager (Version: 07.01.00.007 - Wave Systems Corp.) Hidden</p><p>Profisoft v1.2 (HKLM-x32\...\Profisoft v1.2) (Version: - )</p><p>ProSoft Technology 1734 Ethernet Adapter Module Profile (x32 Version: 1.13.1.0 - ProSoft Technology, Inc.) Hidden</p><p>ProSoft Technology 1756 MVI Comm Module Profiles (x32 Version: 1.10.1.0 - ProSoft Technology, Inc.) Hidden</p><p>Prosoft Technology 1769 Comm Module Profiles (x32 Version: 2.01.1.0 - Prosoft Technology, Inc.) Hidden</p><p>Rockwell Automation 1440 XM Dynamic Measurement Module Profile (x32 Version: 2.01.4.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1715 Ethernet Adapter Module Profile (x32 Version: 1.04.2.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1715 Redundant I/O Module Profiles (x32 Version: 2.04.3.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1732 Discrete Module Profiles (x32 Version: 2.02.1.0 - Rockwell Software, Inc.) Hidden</p><p>Rockwell Automation 1732 Discrete Module Profiles 2 (x32 Version: 2.02.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Analog Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Analog Module Profiles 2 (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 ASCII Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 ControlNet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Discrete Module Profile, DeviceLogix (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Discrete Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Discrete Module Profiles 2 (x32 Version: 3.00.2579.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Discrete Module Profiles 4 (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Ethernet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Ethernet Adapter,2-Port,Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1734 Specialty Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Analog Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Analog Module Profiles 2 (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 ASCII Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 ControlNet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Discrete Module Profile, DeviceLogix (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Discrete Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Discrete Module Profiles 2 (x32 Version: 3.00.2579.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Discrete Module Profiles 3 (x32 Version: 2.02.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Discrete Module Profiles 4 (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Ethernet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Ethernet Adapter,2-Port,Module Profile (x32 Version: 4.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1738 Specialty Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1747 Module Profiles (x32 Version: 8.00.3000.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1756 CNet Comms Module Profiles (x32 Version: 1.02.572.0 - Rockwell Software, Inc.) Hidden</p><p>Rockwell Automation 1756 ENet Comms Module Profiles (x32 Version: 1.02.572.0 - Rockwell Software, Inc.) Hidden</p><p>Rockwell Automation 1756 ENet Comms Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1756 Ethernet Bridge Module Profile (x32 Version: 8.01.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1756 HART Module Profiles (x32 Version: 3.06.4.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1756 Remote I/O Interface Module Profile (x32 Version: 2.03.3.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Analog Module Profiles (x32 Version: 7.02.8.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Analog Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 ASCII Module Profiles (x32 Version: 2.02.7.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Boolean Module Profiles (x32 Version: 2.02.5.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Controller Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Discrete Module Profiles (x32 Version: 2.02.2.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Discrete Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Embedded Module Profiles (x32 Version: 2.02.10.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769 Specialty Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1769-L3Y Controllers Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1783 Ethernet Managed Switch Module Profile (x32 Version: 2.00.2479.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1791DS Discrete Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 1799 Embedded Discrete Module Profile (x32 Version: 1.01.6.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 2097 Kinetix Module Profiles (x32 Version: 2.01.2.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 280 ArmorStart Ethernet Module Profiles (x32 Version: 1.03.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 2-Port CIP Sync ENetIP Module Profiles (x32 Version: 2.01.10.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 2-Port Quick Connect ENetIP Module Profiles (x32 Version: 1.01.13.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 48MS Vision Sensor Module Profiles (x32 Version: 1.01.19.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation 5XRF RFID Reader Module Profiles (x32 Version: 1.02.24.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation ArmorStart LT Module Profiles (x32 Version: 1.02.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation DIO DeviceNet Safety Module Profile (x32 Version: 5.04.2.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 2.02.4.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 5.01.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 5.04.2.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 5.04.4.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation DIO EtherNet Safety Module Profiles (x32 Version: 5.03.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Download Manager (HKLM-x32\...\{FFAD8DA9-ED41-494d-AC8E-63D861D0A733}) (Version: 2.0.7.35 - NOS Microsystems Ltd.)</p><p>Rockwell Automation Driver Package x64 (HKLM-x32\...\{03AE0196-A77D-4DB1-BEA2-2ED79723FB30}) (Version: 1.1.11 - Rockwell Automation.)</p><p>Rockwell Automation Drives Peripheral Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Drives PowerFlex 4 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Drives PowerFlex 5 Module Profiles (x32 Version: 1.03.62.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Drives PowerFlex 7 2 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Drives PowerFlex 7 3 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Drives PowerFlex 7 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Drives SCANport Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation E1 Plus Module Profiles (x32 Version: 1.01.0.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation EtherNet/IP Tap Family Module Profiles (x32 Version: 2.06.2.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Faceplates (HKLM-x32\...\{7F3A4AB6-B5D8-4C95-A74D-CC9D82F5427B}) (Version: 2.00.0001 - Rockwell Automation)</p><p>Rockwell Automation Flex Adapter Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Generic Safety Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Kinetix CIP Motion Drive Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Kinetix350 CIP Motion Drive Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation PowerFlex CIP Motion Drive Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation SLC Adapter Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Automation Stratix 8000/8300 Module Profiles (x32 Version: 5.01.10.0 - Rockwell Automation, Inc.) Hidden</p><p>Rockwell Software Hardware Maintenance Tool (HKLM-x32\...\RSHWare) (Version: - )</p><p>Rockwell Windows Firewall Configuration Utility 1.00.06 (HKLM-x32\...\{01D8D3AA-2A4F-4085-9CC3-61E389D86D29}) (Version: 1.00.06.0004 - Rockwell Automation, Inc.)</p><p>RSLinx Classic 2.59.02 CPR 9 SR 5 (HKLM-x32\...\{34540622-805E-4CC7-98CF-65A43E99CF4D}) (Version: 2.59.02 CPR 9 SR 5 - Rockwell Automation, Inc.)</p><p>RSLinx Enterprise 5.60.00 (CPR 9 SR 6) (HKLM-x32\...\{591F33DE-1182-4A8F-A737-4A86F8D64828}) (Version: 5.60.00 - Rockwell Automation, Inc.)</p><p>RSLogix 500 English 8.30.01 (CPR 9) (HKLM-x32\...\{3843ACA8-6023-4BDB-8072-4809D0E3CB1D}) (Version: 8.30.01 - Rockwell Automation Inc)</p><p>RSLogix 5000 Compare (HKLM-x32\...\{D6088EA7-1828-40AF-A684-3C1AD67FDE68}) (Version: 3.20.00 - Rockwell Software)</p><p>RSLogix 5000 DeviceNet Tag Generator (HKLM-x32\...\{B100A292-14C5-4E41-AE27-0229BFBFDA9F}) (Version: 11.00.0020 - Rockwell Automation,Inc.)</p><p>RSLogix 5000 IEC61131-3 Translation Tool (HKLM-x32\...\{517AA455-8CC9-4281-87A4-865E71947DC9}) (Version: 1.0.0 - Rockwell Automation, Inc.)</p><p>RSLogix 5000 Module Profile Core (x32 Version: 8.04.2836.0 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 Module Profile Core EDS Support (x32 Version: 8.03.2836.0 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 Module Profile Core System Updates (x32 Version: 6.00.1769.0 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 Module Profile Core System Updates 1 (x32 Version: 8.00.2421.0 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 Module Profile Setup Utility (x32 Version: 8.04.2836.0 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 Motion Database (x32 Version: 20.01.06 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 Online Books (HKLM-x32\...\{11010120-B129-11DF-A296-000C296D58C5}) (Version: 20.1.0 - Rockwell Automation, Inc.)</p><p>RSLogix 5000 Setup Installer (x32 Version: 5.00.0000 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 Start Page Media v20.01.00 (HKLM-x32\...\{10000120-D5FD-11DA-A128-000C29473C90}) (Version: 20.01.00 - Rockwell Automation, Inc.)</p><p>RSLogix 5000 System Updates (x32 Version: 20.10.0410 - Rockwell Automation, Inc.) Hidden</p><p>RSLogix 5000 v13.04 (HKLM-x32\...\{30010413-EC33-11D6-A408-F6139379CBFB}) (Version: 13.04.0000 - Rockwell Software, Inc.)</p><p>RSLogix 5000 v15.02 (HKLM-x32\...\{30010215-EC33-11D6-A408-F6139379CBFB}) (Version: 15.02.0000 - Rockwell Software, Inc.)</p><p>RSLogix 5000 v16.04.00 (CPR 9) (HKLM-x32\...\{30010416-EC33-11D6-A408-F6139379CBFB}) (Version: 16.04.00 - Rockwell Automation, Inc.)</p><p>RSLogix 5000 v17.01.00 (CPR 9 SR 1) (HKLM-x32\...\{30010117-EC33-11D6-A408-F6139379CBFB}) (Version: 17.01.00 - Rockwell Automation, Inc.)</p><p>RSLogix 5000 v18.02.00 (CPR 9 SR 2) (HKLM-x32\...\{30010218-EC33-11D6-A408-F6139379CBFB}) (Version: 18.02.00 - Rockwell Automation, Inc.)</p><p>RSLogix 5000 v19.01.00 (CPR 9 SR 3) (HKLM-x32\...\{30010119-EC33-11D6-A408-F6139379CBFB}) (Version: 19.01.00 - Rockwell Automation, Inc.)</p><p>RSLogix 5000 v20.01.00 (CPR 9 SR 5) (HKLM-x32\...\{31000120-EC33-11D6-A408-F6139379CBFB}) (Version: 20.01.00 - Rockwell Automation, Inc.)</p><p>RSLogix5000 Data Preserved Download Tool (HKLM-x32\...\{3AFE0B0D-BF18-49AB-8687-D9E8D948EBE7}) (Version: 1.5.2 - Rockwell Software)</p><p>RSNetWorx for ControlNet 10.01.00 (CPR 9 SR 3) (HKLM-x32\...\{2BF0655E-B036-43F6-9230-BB45CB07F004}) (Version: 10.01.00.04 - Rockwell Automation, Inc.)</p><p>RSNetWorx for DeviceNet 10.01.00 (CPR 9 SR 3) (HKLM-x32\...\{692179FB-984B-465A-BC4F-3875D2D53F32}) (Version: 10.01.00.04 - Rockwell Automation, Inc.)</p><p>RSNetWorx for EtherNet/IP 10.01.00 (CPR 9 SR 3) (HKLM-x32\...\{D92FFA80-FC57-11D6-AFD6-0050BA883E61}) (Version: 10.01.00.04 - Rockwell Automation, Inc.)</p><p>Sage Components (x32 Version: 2.00.0000 - Sage) Hidden</p><p>Sage MAS 90 and 200 Fixed Assets Client (HKLM-x32\...\InstallShield_{8E1C97D2-BD4D-40B3-B074-427873985457}) (Version: 2008.1.1 - Sage Software)</p><p>Sage MAS 90 and 200 Fixed Assets Client (x32 Version: 2008.1.1 - Sage Software) Hidden</p><p>Sage MAS 90 Workstation (<a href="http://malwaretips.com/file://\\ladle\Version4\ERP" target="_blank">\\ladle\Version4\ERP</a> Server\MAS90) (HKLM-x32\...\{E2ECD70E-6842-40E4-99C5-C6A672625600}) (Version: 1.0 - Sage Software)</p><p>Serial/IP Version 4.9.4 (HKLM-x32\...\{8A39EF0E-E8D9-4FBA-9803-2CB215BBEA02}) (Version: 4.9.4 - Tactical Software, LLC)</p><p>Service Pack 1 for SQL Server 2008 R2 (KB2528583) (HKLM-x32\...\KB2528583) (Version: 10.51.2500.0 - Microsoft Corporation)</p><p>Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version: - Silicon Laboratories)</p><p>Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM-x32\...\{0254F6C8-E233-46EA-8EDD-3AA294246CB8}) (Version: 6.3a - Silicon Laboratories, Inc.)</p><p>SkypeTalking 0.9.6 (HKLM-x32\...\SkypeTalking_is1) (Version: 0.9.6 - Hrvoje Katić)</p><p>Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)</p><p>SlingPlayer for Web (HKLM-x32\...\{46994DA0-6572-4A02-9354-FC49ACE8C104}) (Version: 2.4.089 - Sling Media)</p><p>SPBA 5.9 (Version: 5.9.4.6686 - UPEK Inc.) Hidden</p><p>Spectrum Controls 1734 Analog Module Profiles (x32 Version: 1.11.1.0 - Spectrum Controls, Inc.) Hidden</p><p>Spectrum Controls 1756 Analog Module Profiles (x32 Version: 1.09.1.0 - Spectrum Controls, Inc.) Hidden</p><p>Spectrum Controls 1756 Specialty Module Profiles (x32 Version: 1.03.1.0 - Spectrum Controls, Inc.) Hidden</p><p>Spectrum Controls 1769 Analog Module Profiles (x32 Version: 1.05.1.0 - Spectrum Controls, Inc.) Hidden</p><p>Spectrum Controls 1769 Analog Module Profiles (x32 Version: 1.06.1.0 - Spectrum Controls, Inc.) Hidden</p><p>Spectrum Controls 1769 Analog Module Profiles (x32 Version: 2.06.1.0 - Spectrum Controls, Inc.) Hidden</p><p>SQL Server 2008 R2 SP1 Common Files (x32 Version: 10.51.2500.0 - Microsoft Corporation) Hidden</p><p>SQL Server 2008 R2 SP1 Database Engine Services (x32 Version: 10.51.2500.0 - Microsoft Corporation) Hidden</p><p>SQL Server 2008 R2 SP1 Database Engine Shared (x32 Version: 10.51.2500.0 - Microsoft Corporation) Hidden</p><p>Sql Server Customer Experience Improvement Program (x32 Version: 10.50.1600.1 - Microsoft Corporation) Hidden</p><p>Tag Data Monitor Tool (HKLM-x32\...\{3D1F0E21-FE2D-480A-B2A0-4D9CB1BE6774}) (Version: 2.0.3 - Rockwell Automation)</p><p>Tag Upload Download Tool (HKLM-x32\...\{F114066A-DFCB-443E-A6FB-82922F6CC88A}) (Version: 2.6.4 - Rockwell Automation)</p><p>Tag Upload Download Tool (HKLM-x32\...\Tag Upload Download Tool) (Version: - Rockwell Automation)</p><p>TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.12799 - TeamViewer)</p><p>Translate PLC-5_SLC 2.0 (HKLM-x32\...\{6EF053F0-150E-4227-8BE2-1EAB082FF7DE}) (Version: 1.0.8 - Rockwell Software)</p><p>Trend Micro Worry-Free Business Security Agent (HKLM\...\Wofie) (Version: 18.0.2013 - Trend Micro Inc.)</p><p>Trend Micro Worry-Free Business Security Agent (Version: 8.0 - Trend Micro Inc.) Hidden</p><p>Trusted Drive Manager (Version: 4.0.5.8 - Wave Systems Corp.) Hidden</p><p>UDC PowerFlex 520 Series Databases (HKLM-x32\...\{202BE51A-9D48-40B9-A8BC-2A988B6ECDBF}) (Version: 1.55.0.0 - Rockwell Automation, Inc.)</p><p>Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)</p><p>Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)</p><p>Upek Touchchip Fingerprint Reader (Version: 1.2.004 - Dell Inc.) Hidden</p><p>USB Modem (HKLM\...\CNXT_MODEM_USB_ACF) (Version: 2.0.22.0 - Conexant)</p><p>Wave Infrastructure Installer (Version: 07.66.40.0008 - Wave Systems Corp) Hidden</p><p>Wave Support Software Installer (Version: 05.13.00.014 - Wave Systems Corp) Hidden</p><p>WebEx (HKLM-x32\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC)</p><p>WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.7900 - Broadcom Corporation)</p><p>Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (HKLM\...\9512AA21B791B05A54E27065C45BBC417AB282DF) (Version: 09/11/2009 1.0.1.6 - Dell Inc.)</p><p>Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\3134FEF0E1D959EC0CC2E458C94B7057B2AC0CC9) (Version: 10/22/2009 2.06.00 - FTDI)</p><p>Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\88EB56038379B8B7DCFB4D2448A60F52E064B265) (Version: 10/22/2009 2.06.00 - FTDI)</p><p>Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)</p><p>Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)</p><p>Windows Small Business Server 2011 Standard ClientAgent (HKLM\...\{5C72F8A3-BF39-4733-B41E-0ED7EF622E37}) (Version: 6.1.7900.1 - Microsoft Corporation)</p><p>WinZip 18.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E3}) (Version: 18.5.11111 - WinZip Computing, S.L. )</p><p></p><p>==================== Custom CLSID (selected items): ==========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)</p><p></p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2013\en-US\dwgviewrficn.dll (Autodesk, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD LT 2014\acadlt.exe (Autodesk, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2014\en-US\acadltficn.dll (Autodesk, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p>CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)</p><p></p><p>==================== Restore Points =========================</p><p></p><p>08-12-2014 08:31:53 Windows Update</p><p>10-12-2014 03:00:31 Windows Update</p><p>16-12-2014 08:35:24 Windows Update</p><p>18-12-2014 03:00:10 Windows Update</p><p>05-01-2015 08:23:00 Windows Update</p><p>13-01-2015 09:17:36 Windows Update</p><p>14-01-2015 03:00:13 Windows Update</p><p>19-01-2015 07:17:28 Windows Update</p><p></p><p>==================== Hosts content: ==========================</p><p></p><p>(If needed Hosts: directive could be included in the fixlist to reset Hosts.)</p><p></p><p>2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts</p><p></p><p>==================== Scheduled Tasks (whitelisted) =============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)</p><p></p><p>Task: {15613070-A9B8-4F1F-A243-469CC4C16499} - System32\Tasks\{6FB9E3A3-1BAC-4096-8A2E-A658BAC2FE3A} => pcalua.exe -a D:\Setup.exe -d D:\</p><p>Task: {1FCC530C-4D32-4D16-8949-BF8D842021CF} - System32\Tasks\{14EE46F5-A96D-420F-842A-7DBBE5597960} => pcalua.exe -a D:\All-Windows-WHQL-driver\PL2303_Prolific_DriverInstaller_v1210.exe -d D:\All-Windows-WHQL-driver</p><p>Task: {3DC4B95C-7FA1-4F80-A56C-4579943739CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)</p><p>Task: {5288E37F-3E12-4D4B-A00C-9AE190C27F5E} - System32\Tasks\HP Officejet Pro 8500 A910.exe => C:\Program Files\HP\HP Officejet Pro 8500 A910\Bin\HP Officejet Pro 8500 A910.exe [2010-11-16] (Hewlett-Packard Co.)</p><p>Task: {7C071AF8-CFD0-49B8-B0BD-F2DFB842640B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-22] (Adobe Systems Incorporated)</p><p>Task: {83AC92B2-DF10-4B10-BFD6-740CB44E7BBC} - System32\Tasks\{D902E4CA-4591-4614-BAC9-886090D3CAC5} => pcalua.exe -a "C:\Users\pshell.PTICOMBUSTION\Documents\Equipment Info\Brother\bal1230003en.exe" -d C:\Users\pshell.PTICOMBUSTION\Desktop</p><p>Task: {AD38A00B-3D2B-4966-913B-E6E243340E28} - System32\Tasks\{3F31E003-E63B-44D7-AA72-D5FD27184D86} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" -c /uninstall SMALLBUSINESSR /dll OSETUP.DLL</p><p>Task: {AF0ACBC8-8FC0-4C05-BCA4-F208D0DB7D2D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.)</p><p>Task: {AF8CC1D1-5312-466F-8AB2-D5E4D7595021} - System32\Tasks\{B953D4CA-F939-41F6-BFF1-34A9E558D077} => pcalua.exe -a "C:\Program Files (x86)\Common Files\OPC Foundation\Install\OpcCustomInstaller.exe" -d "C:\Program Files (x86)\Common Files\OPC Foundation\Install"</p><p>Task: {BA727A24-43DB-4F32-A5C6-6CFA4567A4CE} - System32\Tasks\FaxSetupWizard.exe => C:\Program Files\HP\HP Officejet Pro 8500 A910\Bin\FaxSetupWizard.exe [2010-11-16] (Hewlett-Packard Co.)</p><p>Task: {BBA5F29E-E6E1-4CA4-BEF1-C557ACA95732} - System32\Tasks\{CD5764D2-3E8C-47AF-8124-6C3E479A7725} => pcalua.exe -a "C:\Users\pshell.PTICOMBUSTION\Documents\Equipment Info\AB\AB RSVIEW\RSView32\7.20.00\SETUP.EXE" -d "C:\Users\pshell.PTICOMBUSTION\Documents\Equipment Info\AB\AB RSVIEW\RSView32\7.20.00"</p><p>Task: {BF667EAA-1EA5-4188-B496-45FA0CEF626E} - System32\Tasks\HpWebReg.exe => C:\Program Files\HP\HP Officejet Pro 8500 A910\Bin\HpWebReg.exe [2010-11-16] (Hewlett-Packard Co.)</p><p>Task: {C5B636C8-44D8-4C31-A86A-7FEF1936B9CF} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)</p><p>Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe</p><p>Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe</p><p></p><p>==================== Loaded Modules (whitelisted) =============</p><p></p><p>2010-12-23 13:33 - 2010-12-23 13:33 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll</p><p>2011-08-16 11:37 - 2007-02-18 15:17 - 00026624 _____ () C:\Windows\system32\ddmon64x.dll</p><p>2011-08-31 13:55 - 2011-08-31 13:55 - 00801792 _____ () C:\Program Files (x86)\Trend Micro\Client Server Security Agent\sqlite3.dll</p><p>2011-08-10 09:18 - 2003-04-18 21:06 - 00008192 _____ () c:\Windows\SysWOW64\srvany.exe</p><p>2009-07-02 16:32 - 2009-07-02 16:32 - 00089088 _____ () C:\Program Files (x86)\Trend Micro\Client Server Security Agent\zlibwapi.dll</p><p>2011-08-10 10:55 - 2011-06-05 10:22 - 00004096 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll</p><p>2011-08-10 10:54 - 2011-03-28 12:55 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll</p><p>2011-08-10 09:16 - 2010-12-17 10:24 - 00686704 _____ () C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe</p><p>2010-12-23 13:33 - 2010-12-23 13:33 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll</p><p>2013-02-05 00:21 - 2013-02-05 00:21 - 00056352 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll</p><p>2013-02-05 00:21 - 2013-02-05 00:21 - 00937504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll</p><p>2013-02-05 00:21 - 2013-02-05 00:21 - 00124448 _____ () C:\Program Files\Autodesk\Autodesk Sync\QJson.dll</p><p>2013-02-05 00:21 - 2013-02-05 00:21 - 00045088 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll</p><p>2014-04-01 06:42 - 2009-01-09 16:21 - 00651264 _____ () C:\Program Files (x86)\PST\Binaries\RACurrTray.exe</p><p>2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll</p><p>2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll</p><p>2012-12-17 13:03 - 2012-12-17 13:03 - 00013824 _____ () C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagServerPS.dll</p><p>2012-12-19 22:21 - 2012-12-19 22:21 - 00062136 _____ () C:\Program Files (x86)\Common Files\Rockwell\FTDiagnosticsODBCENU.dll</p><p>2012-12-19 23:32 - 2012-12-19 23:32 - 00018104 _____ () C:\Program Files (x86)\Common Files\Rockwell\RnaStorageSupportServerPS.dll</p><p>2014-10-21 19:22 - 2014-10-21 19:22 - 00750080 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\libGLESv2.dll</p><p>2015-01-23 13:07 - 2015-01-23 13:07 - 00043008 _____ () c:\users\pshell~1.pti\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpyvmj_a.dll</p><p>2014-10-21 19:22 - 2014-10-21 19:22 - 00047616 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\libEGL.dll</p><p>2014-10-21 19:22 - 2014-10-21 19:22 - 00863744 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll</p><p>2014-10-21 19:22 - 2014-10-21 19:22 - 00200704 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll</p><p>2011-10-18 14:05 - 2011-10-18 14:05 - 00053248 _____ () C:\Program Files (x86)\Rockwell Automation\UsbCipDriver\UsbCipHelper\rausbciplib.dll</p><p>2014-02-13 21:38 - 2014-02-13 21:38 - 00124928 _____ () C:\Program Files (x86)\Perk Prize Panel\pp.dll</p><p></p><p>==================== Alternate Data Streams (whitelisted) =========</p><p></p><p>(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)</p><p></p><p></p><p>==================== Safe Mode (whitelisted) ===================</p><p></p><p>(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)</p><p></p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"</p><p></p><p>==================== EXE Association (whitelisted) =============</p><p></p><p>(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)</p><p></p><p></p><p>==================== MSCONFIG/TASK MANAGER disabled items =========</p><p></p><p>(Currently there is no automatic fix for this section.)</p><p></p><p></p><p>========================= Accounts: ==========================</p><p></p><p>Administrator (S-1-5-21-1322846040-2550532913-2088154585-500 - Administrator - Disabled)</p><p>ASPNET (S-1-5-21-1322846040-2550532913-2088154585-1004 - Limited - Enabled)</p><p>Guest (S-1-5-21-1322846040-2550532913-2088154585-501 - Limited - Disabled)</p><p>PSHELL (S-1-5-21-1322846040-2550532913-2088154585-1001 - Administrator - Enabled) => C:\Users\PSHELL</p><p>UpdatusUser (S-1-5-21-1322846040-2550532913-2088154585-1000 - Limited - Enabled) => C:\Users\UpdatusUser</p><p></p><p>==================== Faulty Device Manager Devices =============</p><p></p><p>Name: Dell Wireless 375 Bluetooth Module</p><p>Description: Dell Wireless 375 Bluetooth Module</p><p>Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}</p><p>Manufacturer: Broadcom</p><p>Service: BTHUSB</p><p>Problem: : This device is disabled. (Code 22)</p><p>Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.</p><p></p><p></p><p>==================== Event log errors: =========================</p><p></p><p>Application errors:</p><p>==================</p><p>Error: (01/23/2015 01:08:39 PM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961</p><p>Faulting module name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961</p><p>Exception code: 0xc000000d</p><p>Fault offset: 0x0004bba6</p><p>Faulting process id: 0x249c</p><p>Faulting application start time: 0xdaemonu.exe0</p><p>Faulting application path: daemonu.exe1</p><p>Faulting module path: daemonu.exe2</p><p>Report Id: daemonu.exe3</p><p></p><p>Error: (01/23/2015 01:06:30 PM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (01/23/2015 01:06:30 PM) (Source: 2X RDP) (EventID: 5000) (User: )</p><p>Description: Failed to Load AS-XG Server (The handle is invalid. [0x00000006])</p><p></p><p>Error: (01/23/2015 01:45:39 AM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: nauzqhzpnfzm.exe, version: 36.0.1985.143, time stamp: 0x53e2e515</p><p>Faulting module name: jasrdtcq.dll, version: 6.0.11.452, time stamp: 0x54b4f32f</p><p>Exception code: 0xc0000005</p><p>Fault offset: 0x000140fb</p><p>Faulting process id: 0x29cc</p><p>Faulting application start time: 0xnauzqhzpnfzm.exe0</p><p>Faulting application path: nauzqhzpnfzm.exe1</p><p>Faulting module path: nauzqhzpnfzm.exe2</p><p>Report Id: nauzqhzpnfzm.exe3</p><p></p><p>Error: (01/22/2015 09:43:38 AM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4</p><p>Faulting module name: SHELL32.dll, version: 6.1.7601.18429, time stamp: 0x5330ecd9</p><p>Exception code: 0xc0000005</p><p>Fault offset: 0x000000000015e2e5</p><p>Faulting process id: 0x1bfc</p><p>Faulting application start time: 0xExplorer.EXE0</p><p>Faulting application path: Explorer.EXE1</p><p>Faulting module path: Explorer.EXE2</p><p>Report Id: Explorer.EXE3</p><p></p><p>Error: (01/22/2015 07:13:26 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )</p><p>Description: 90080108</p><p></p><p>Error: (01/21/2015 07:44:31 AM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961</p><p>Faulting module name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961</p><p>Exception code: 0xc000000d</p><p>Fault offset: 0x0004bba6</p><p>Faulting process id: 0x1e80</p><p>Faulting application start time: 0xdaemonu.exe0</p><p>Faulting application path: daemonu.exe1</p><p>Faulting module path: daemonu.exe2</p><p>Report Id: daemonu.exe3</p><p></p><p>Error: (01/21/2015 07:42:02 AM) (Source: WinMgmt) (EventID: 10) (User: )</p><p>Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003</p><p></p><p>Error: (01/21/2015 07:42:01 AM) (Source: 2X RDP) (EventID: 5000) (User: )</p><p>Description: Failed to Load AS-XG Server (The handle is invalid. [0x00000006])</p><p></p><p>Error: (01/19/2015 07:15:44 AM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961</p><p>Faulting module name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961</p><p>Exception code: 0xc000000d</p><p>Fault offset: 0x0004bba6</p><p>Faulting process id: 0x251c</p><p>Faulting application start time: 0xdaemonu.exe0</p><p>Faulting application path: daemonu.exe1</p><p>Faulting module path: daemonu.exe2</p><p>Report Id: daemonu.exe3</p><p></p><p></p><p>System errors:</p><p>=============</p><p>Error: (01/23/2015 01:08:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )</p><p>Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s).</p><p></p><p>Error: (01/23/2015 01:07:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)</p><p>Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)</p><p></p><p>Error: (01/23/2015 01:06:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )</p><p>Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: </p><p>%%0</p><p></p><p>Error: (01/21/2015 07:44:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )</p><p>Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s).</p><p></p><p>Error: (01/21/2015 07:43:14 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)</p><p>Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)</p><p></p><p>Error: (01/21/2015 07:42:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )</p><p>Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: </p><p>%%0</p><p></p><p>Error: (01/19/2015 07:15:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )</p><p>Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s).</p><p></p><p>Error: (01/19/2015 07:14:30 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)</p><p>Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)</p><p></p><p>Error: (01/19/2015 07:13:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: )</p><p>Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: </p><p>%%0</p><p></p><p>Error: (01/19/2015 07:13:28 AM) (Source: EventLog) (EventID: 6008) (User: )</p><p>Description: The previous system shutdown at 7:10:25 AM on 1/19/2015 was unexpected.</p><p></p><p></p><p>Microsoft Office Sessions:</p><p>=========================</p><p>Error: (04/21/2014 06:46:58 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )</p><p>Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 400079 seconds with 18840 seconds of active time. This session ended with a crash.</p><p></p><p>Error: (04/25/2013 02:15:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )</p><p>Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 168898 seconds with 360 seconds of active time. This session ended with a crash.</p><p></p><p>Error: (02/08/2012 01:46:05 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )</p><p>Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 176816 seconds with 5160 seconds of active time. This session ended with a crash.</p><p></p><p>Error: (11/09/2011 03:16:24 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )</p><p>Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6565.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 157526 seconds with 10740 seconds of active time. This session ended with a crash.</p><p></p><p></p><p>CodeIntegrity Errors:</p><p>===================================</p><p> Date: 2011-09-23 12:11:34.232</p><p> Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvoptimusmft.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p></p><p>==================== Memory info ===========================</p><p></p><p>Processor: Intel(R) Core(TM) i7-2720QM CPU @ 2.20GHz</p><p>Percentage of memory in use: 56%</p><p>Total physical RAM: 6024.9 MB</p><p>Available physical RAM: 2592.93 MB</p><p>Total Pagefile: 12047.98 MB</p><p>Available Pagefile: 8171.93 MB</p><p>Total Virtual: 8192 MB</p><p>Available Virtual: 8191.83 MB</p><p></p><p>==================== Drives ================================</p><p></p><p>Drive c: (OS) (Fixed) (Total:237.7 GB) (Free:80.64 GB) NTFS</p><p>Drive k: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS</p><p>Drive l: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS</p><p>Drive m: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS</p><p>Drive n: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS</p><p>Drive p: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS</p><p>Drive q: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS</p><p>Drive r: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS</p><p>Drive u: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS</p><p>Drive v: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS</p><p>Drive w: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS</p><p>Drive x: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS</p><p>Drive z: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS</p><p></p><p>==================== MBR & Partition Table ==================</p><p></p><p>========================================================</p><p>Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 238.5 GB) (Disk ID: 5BCED202)</p><p>Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)</p><p>Partition 2: (Active) - (Size=752 MB) - (Type=07 NTFS)</p><p>Partition 3: (Not Active) - (Size=237.7 GB) - (Type=07 NTFS)</p><p></p><p>==================== End Of Log ============================</p></blockquote><p></p>
[QUOTE="pshell, post: 338515, member: 33474"] FRST.txt file Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2015 Ran by pshell (administrator) on PSHELL-DELL on 23-01-2015 13:37:09 Running from C:\Users\pshell.PTICOMBUSTION\Desktop Loaded Profiles: pshell (Available profiles: UpdatusUser & PSHELL & pshell) Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [URL]http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/[/URL] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe (Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe (Wave Systems Corp.) C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSView Enterprise\TagSrv.exe (2X Software Ltd.) C:\Program Files\2X\Client\x86\TuxWinClientService.exe (2X Software Ltd.) C:\Program Files\2X\Client\TUXCredProv.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Cisco WebEx LLC) C:\Windows\SysWOW64\atashost.exe (Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\EventServer.exe (Flexera Software, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSOPC Gateway\RSOPCGateway.exe (Flexera Software, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe (FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\Tools\FTActivationBoost.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagSvcHost.exe (SafeNet Inc.) C:\Windows\System32\hasplms.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\flexsvr.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.FTVIEWX64TAGDB\MSSQL\Binn\sqlservr.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\NmspHost.exe (Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\NTRTScan.exe (O2Micro International) C:\Windows\System32\drivers\o2flash.exe () C:\Windows\SysWOW64\srvany.exe (O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RdcyHost.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Rockwell Automation Inc.) C:\Program Files (x86)\Common Files\Rockwell\RNADiagnosticsSrv.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSView Enterprise\HMIDIAGNOSTICSLSTADAPT.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\RSLinxNG.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RsvcHost.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmListen.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (X10) C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\EventClientMultiplexer.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RnaDirServer.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RNADirMultiplexor.exe (Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmProxy.exe (UPEK Inc.) C:\Program Files\Common Files\SPBA\upeksvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe () C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe (FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenBroker64.exe (Akamai Technologies, Inc.) C:\Users\pshell.PTICOMBUSTION\AppData\Local\Akamai\netsession_win.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe (Akamai Technologies, Inc.) C:\Users\pshell.PTICOMBUSTION\AppData\Local\Akamai\netsession_win.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe () C:\Program Files (x86)\PST\Binaries\RACurrTray.exe (2X Software Ltd.) C:\Program Files\2X\Client\APPServerClient.exe (Dropbox, Inc.) C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\Dropbox.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Automation\UsbCipDriver\UsbCipHelper\UsbCipHelper.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Tactical Software, LLC) C:\Program Files (x86)\Tactical Software\SerialIP\SerialIPTray.exe (Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Client Server Security Agent\PccNTMon.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (Dell Inc.) C:\Program Files\Dell\Dell System Manager\PanelHelper32.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Windows\System32\prevhost.exe (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [608112 2011-04-05] (Alps Electric Co., Ltd.) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.) HKLM\...\Run: [NVHotkey] => rundll32.exe C:\Windows\system32\nvHotkey.dll,Start HKLM\...\Run: [FreeFallProtection] => C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2010-12-17] () HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1934608 2010-12-23] (Intel(R) Corporation) HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation) HKLM\...\Run: [OfficeScanNT Monitor] => -HideWindow HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [900992 2011-12-09] (FileOpen Systems Inc.) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [112152 2011-01-17] (Intel Corporation) HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.) HKLM-x32\...\Run: [PDVD9LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-04-29] (CyberLink Corp.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-03] (Adobe Systems Incorporated) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.) HKLM-x32\...\Run: [UsbCipHelper] => C:\Program Files (x86)\Rockwell Automation\UsbCipDriver\UsbCipHelper\UsbCipHelper.exe [434176 2011-10-18] (Rockwell Automation, Inc.) HKLM-x32\...\Run: [SerialIPSysTray] => C:\Program Files (x86)\Tactical Software\SerialIP\SerialIPTray.exe [493360 2012-05-03] (Tactical Software, LLC) HKLM-x32\...\Run: [OfficeScanNT Monitor] => C:\Program Files (x86)\Trend Micro\Client Server Security Agent\pccntmon.exe [1932920 2013-08-29] (Trend Micro Inc.) HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\spba: C:\Program Files\Common Files\SPBA\homefus2.dll (UPEK Inc.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [PCShowServer] => "C:\Users\pshell.PTICOMBUSTION\AppData\Local\DIRECTV Player\PCShowServerPMWrapper.exe" HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [Akamai NetSession Interface] => C:\Users\pshell.PTICOMBUSTION\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-01-31] (Google Inc.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [cdloader] => C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\mjusbsp\cdloader2.exe [50592 2012-02-01] (magicJack L.P.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-10-17] (Apple Inc.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-09-19] (Apple Inc.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.) HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Policies\Explorer: [] HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\MountPoints2: {5e4eff0c-668a-11e3-989f-5c260a713610} - E:\TL-Bootstrap.exe HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.) AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [226920 2011-06-05] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [193128 2011-06-05] (NVIDIA Corporation) Lsa: [Authentication Packages] msv1_0 wvauth Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell System Manager.lnk ShortcutTarget: Dell System Manager.lnk -> C:\Program Files\Dell\Dell System Manager\DCPSysMgr.exe (Dell Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RACurrTray.lnk ShortcutTarget: RACurrTray.lnk -> C:\Program Files (x86)\PST\Binaries\RACurrTray.exe () Startup: C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\2X RDP.lnk ShortcutTarget: 2X RDP.lnk -> C:\Program Files\2X\Client\APPServerClient.exe (2X Software Ltd.) Startup: C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: [EnabledUnlockedFDEIconOverlay] -> {30D3C2AF-9709-4D05-9CF4-13335F3C1E4A} => C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll (Wave Systems Corp.) ShellIconOverlayIdentifiers: [UninitializedFdeIconOverlay] -> {CF08DA3E-C97D-4891-A66B-E39B28DD270F} => C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll (Wave Systems Corp.) ShellIconOverlayIdentifiers-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll (Autodesk, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [URL]http://g.msn.com/USREL/1[/URL] SearchScopes: HKLM -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = [URL]http://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox[/URL] SearchScopes: HKLM-x32 -> DefaultScope {F5BFC158-F421-434C-B3C7-44656C2DC603} URL = SearchScopes: HKLM-x32 -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = [URL]http://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox[/URL] SearchScopes: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154 -> DefaultScope {F5BFC158-F421-434C-B3C7-44656C2DC603} URL = [URL]http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3303000&CUI=UN59426576290671494&UM=2[/URL] SearchScopes: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154 -> {F5BFC158-F421-434C-B3C7-44656C2DC603} URL = [URL]http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3303000&CUI=UN59426576290671494&UM=2[/URL] BHO: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg.dll (Trend Micro Inc.) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO-x32: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg32.dll (Trend Micro Inc.) BHO-x32: Perk Prize Panel -> {47F3EB15-C230-4A0B-BE4B-D527FF483B48} -> C:\Program Files (x86)\Perk Prize Panel\pp.dll () BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) DPF: HKLM-x32 {00134F72-5284-44F7-95A8-52A619F70751} [URL]https://remote:4343/officescan/console/ClientInstall/WinNTChk.cab[/URL] DPF: HKLM-x32 {08D75BB0-D2B5-11D1-88FC-0080C859833B} [URL]https://remote:4343/officescan/console/ClientInstall/setupini.cab[/URL] DPF: HKLM-x32 {08D75BC1-D2B5-11D1-88FC-0080C859833B} [URL]https://remote:4343/officescan/console/ClientInstall/setup.cab[/URL] DPF: HKLM-x32 {5EFE8CB1-D095-11D1-88FC-0080C859833B} [URL]https://remote:4343/officescan/console/ClientInstall/RemoveCtrl.cab[/URL] DPF: HKLM-x32 {91B29AFF-E4FF-11D6-8C88-00A0C9D7BBEB} [URL]http://www.ab.com/support/abdrives/webupdate/RADriveWebUpdate.cab[/URL] DPF: HKLM-x32 {FFAD8DA9-ED41-494D-AC8E-63D861D0A733} [URL]https://download.rockwellautomation.com/plugins/rockwell.cab[/URL] Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg.dll (Trend Micro Inc.) Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmIEPlg32.dll (Trend Micro Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.150 FireFox: ======== FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.26 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.) FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.28 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.) FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.31 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.) FF Plugin-x32: @nosltd.com/getPlus+(R),version=2.0.7.35 -> C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3716596101-2069514591-1949305620-1154: @nds.com/PCShowPlugin -> C:\Users\pshell.PTICOMBUSTION\AppData\Local\DIRECTV Player\npPCShowPlugin.dll No File FF Plugin HKU\S-1-5-21-3716596101-2069514591-1949305620-1154: @nds.com/PlayerPlugin -> C:\Users\pshell.PTICOMBUSTION\AppData\Local\DIRECTV Player\npPlayerPlugin.dll No File FF Plugin HKU\S-1-5-21-3716596101-2069514591-1949305620-1154: DISH Anywhere.com/DISH Anywhere Video Player -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\DISH Anywhere\DISH Anywhere Video Player\npNMPCBrowserPlugin.dll (Nagravision) FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\FirefoxExtension FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files (x86)\Trend Micro\Client Server Security Agent\FirefoxExtension [2014-01-03] FF HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Firefox\Extensions: [[email]pp@perk.com[/email]] - C:\Program Files (x86)\Perk Prize Panel\FF FF Extension: Perk Prize Panel - C:\Program Files (x86)\Perk Prize Panel\FF [2014-02-19] Chrome: ======= CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.) CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File CHR Plugin: (pGetPlus for Rockwell 20731) - C:\Program Files (x86)\NOS\bin\nprockwell.dll (NOS Microsystems Ltd.) CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File CHR Profile: C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-13] CHR Extension: (Google Drive) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-13] CHR Extension: (YouTube) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-13] CHR Extension: (Google Search) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-13] CHR Extension: (SlingPlayer for DISH Anywhere) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcnpmlegoehfgohpkmjhpohjchokamnn [2013-09-09] CHR Extension: (Google Wallet) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-08] CHR Extension: (Gmail) - C:\Users\pshell.PTICOMBUSTION\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-13] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 2X RDP Backend Service; C:\Program Files\2X\Client\x86\TuxWinClientService.exe [1902472 2014-10-09] (2X Software Ltd.) R2 2X SSO Service; C:\Program Files\2X\Client\\TUXCredProv.exe [2214280 2014-10-09] (2X Software Ltd.) R2 AcfXAudioService; C:\Windows\SysWOW64\ACFXAU64.dll [436736 2011-02-14] (Conexant Systems, Inc.) R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed] S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [85096 2011-08-16] (Autodesk) R2 FactoryTalk Activation Service; C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe [1407312 2012-12-12] (Flexera Software, Inc.) R2 FactoryTalk Gateway; C:\Program Files (x86)\Rockwell Software\RSOPC Gateway\RSOPCGateway.exe [387432 2010-08-26] (Rockwell Automation, Inc.) R2 FileOpenManagerSvc; C:\Program Files\FileOpen\Services\FileOpenManagerSvc64.exe [334720 2011-12-09] (FileOpen Systems Inc.) R2 FTActivationBoost; C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\Tools\FTActivationBoost.exe [145888 2012-12-21] (Rockwell Automation, Inc.) R2 FTSysDiagSvcHost; C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagSvcHost.exe [69120 2012-12-17] (Rockwell Automation, Inc.) [File not signed] R2 hasplms; C:\Windows\system32\hasplms.exe [4412872 2012-08-22] (SafeNet Inc.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] S3 LogReceiver; C:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\LogReceiver.exe [82616 2012-12-27] (Rockwell Automation, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) R2 MSSQL$FTVIEWX64TAGDB; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.FTVIEWX64TAGDB\MSSQL\Binn\sqlservr.exe [43040096 2011-06-17] (Microsoft Corporation) R2 ntrtscan; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\ntrtscan.exe [3395536 2012-12-18] (Trend Micro Inc.) R2 O2SDIOAssist; c:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed] R2 Rockwell HMI Diagnostics; C:\Program Files (x86)\Rockwell Software\RSView Enterprise\HMIDIAGNOSTICSLSTADAPT.exe [108728 2013-01-05] (Rockwell Automation, Inc.) R2 Rockwell Tag Server; C:\Program Files (x86)\Rockwell Software\RSView Enterprise\TagSrv.exe [214712 2013-01-05] (Rockwell Automation, Inc.) S3 RSLinx; C:\Program Files (x86)\Rockwell Software\RSLinx\RSLINX.EXE [2010488 2012-09-14] (Rockwell Automation, Inc.) R2 RSLinxNG; C:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\RSLinxNG.exe [250552 2012-12-27] (Rockwell Automation, Inc.) S3 SecureStorageService; C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Secure Storage Manager\SecureStorageService.exe [2117120 2010-11-03] (Wave Systems Corp.) [File not signed] S4 SQLAgent$FTVIEWX64TAGDB; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.FTVIEWX64TAGDB\MSSQL\Binn\SQLAGENT.EXE [370016 2011-06-17] (Microsoft Corporation) S2 tcsd_win32.exe; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [1629696 2010-07-13] () [File not signed] R3 TMBMServer; C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe [572464 2012-10-30] (Trend Micro Inc.) R2 tmlisten; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\tmlisten.exe [3450856 2013-08-29] (Trend Micro Inc.) R3 TmProxy; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmProxy.exe [918064 2012-08-08] (Trend Micro Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 x10nets; C:\Program Files (x86)\Common Files\X10\Common\X10nets.exe [20480 2010-11-01] (X10) [File not signed] R2 ZcfgSvc7; C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe [992256 2010-12-23] (Intel(R) Corporation) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 acfva; C:\Windows\System32\DRIVERS\ACFVA64.sys [122624 2011-02-14] (Conexant Systems Inc.) S3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [79360 2011-06-01] (ASIX Electronics Corp.) R3 dfmirage; C:\Windows\System32\DRIVERS\dfmirage.sys [36432 2008-03-05] (DemoForge, LLC) S3 dgcfltr; C:\Windows\System32\DRIVERS\ACFDCP64.sys [34944 2011-02-14] (Conexant Systems, Inc.) R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [321536 2011-09-28] (SafeNet Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-23] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation) R2 mdmxsdk; C:\Windows\System32\DRIVERS\ACFSDK64.sys [17024 2011-02-14] (Conexant) S3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-13] (Microsoft Corporation) S3 RAUSBCIP; C:\Windows\System32\drivers\rausbcipwdf.sys [87552 2011-11-07] (Rockwell Automation, Inc.) R2 siserial; C:\Windows\System32\DRIVERS\siserial.sys [1719600 2012-05-03] (Tactical Software, LLC) R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [82840 2012-10-30] (Trend Micro Inc.) R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [174016 2012-11-13] (Trend Micro Inc.) R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [65872 2012-10-30] (Trend Micro Inc.) R2 TmFilter; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmXPFlt.sys [351032 2014-08-30] (Trend Micro Inc.) R2 TmPreFilter; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\TmPreFlt.sys [44856 2014-08-30] (Trend Micro Inc.) R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [108624 2011-08-31] (Trend Micro Inc.) R1 VirtualBackplane; C:\Windows\System32\Drivers\VirtualBackplane.sys [51200 2011-06-02] (Rockwell Automation) R2 VSApiNt; C:\Program Files (x86)\Trend Micro\Client Server Security Agent\VSApiNt.sys [2316600 2014-08-30] (Trend Micro Inc.) R2 XAudio; C:\Windows\System32\DRIVERS\ACFXAU64.sys [10240 2011-02-14] (Conexant Systems, Inc.) S3 pcidnt; \SystemRoot\System32\Drivers\pcidnt.sys [X] U3 tmpfw; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-23 13:07 - 2015-01-23 13:07 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9.5 2015-01-23 13:07 - 2015-01-23 13:07 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2X Remote Desktops & Applications 2015-01-23 13:07 - 2015-01-23 13:07 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2x Published Items 2015-01-23 11:57 - 2015-01-23 13:07 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-01-23 11:56 - 2015-01-23 11:57 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-01-23 11:56 - 2015-01-23 11:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-01-23 11:56 - 2015-01-23 11:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-01-23 11:56 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-01-23 11:56 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-01-23 11:55 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-01-23 11:54 - 2011-09-08 15:34 - 09466208 _____ (Malwarebytes Corporation ) C:\Users\pshell.PTICOMBUSTION\Desktop\mbam-setup-1.51.1.1800.exe 2015-01-23 11:52 - 2015-01-23 11:52 - 16466552 _____ (Malwarebytes Corp.) C:\Users\pshell.PTICOMBUSTION\Desktop\mbar-1.08.3.1004.exe 2015-01-23 11:10 - 2015-01-23 11:12 - 00061848 _____ () C:\Users\pshell.PTICOMBUSTION\Desktop\Addition.txt 2015-01-23 11:09 - 2015-01-23 13:37 - 00034220 _____ () C:\Users\pshell.PTICOMBUSTION\Desktop\FRST.txt 2015-01-23 11:08 - 2015-01-23 13:37 - 00000000 ____D () C:\FRST 2015-01-23 11:05 - 2015-01-23 11:06 - 02126848 _____ (Farbar) C:\Users\pshell.PTICOMBUSTION\Desktop\FRST64.exe 2015-01-23 08:40 - 2015-01-23 11:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware 2015-01-23 08:40 - 2015-01-23 11:55 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Malwarebytes 2015-01-23 08:40 - 2015-01-23 08:41 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-01-23 08:27 - 2015-01-23 13:04 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\X10 Lock 2015-01-20 08:51 - 2015-01-20 08:51 - 00080312 _____ () C:\Users\pshell.PTICOMBUSTION\Downloads\dwg_e200_0069 (1).zip 2015-01-20 08:50 - 2015-01-20 08:51 - 00080312 _____ () C:\Users\pshell.PTICOMBUSTION\Downloads\dwg_e200_0069.zip 2015-01-18 19:45 - 2015-01-18 19:45 - 00000000 ____D () C:\ProgramData\Hewlett-Packard 2015-01-18 19:45 - 2007-06-27 12:07 - 00130048 _____ (Hewlett-Packard Company) C:\Windows\system32\hpz3l5k2.dll 2015-01-18 19:45 - 2007-06-27 12:06 - 00233472 _____ (Hewlett Packard Corporation) C:\Windows\SysWOW64\hpzc35k2.dll 2015-01-17 07:48 - 2015-01-17 07:48 - 00000208 ____H () C:\Users\pshell.PTICOMBUSTION\Downloads\100-c_fs0_ac_dce.dwl2 2015-01-17 07:48 - 2015-01-17 07:48 - 00000058 ____H () C:\Users\pshell.PTICOMBUSTION\Downloads\100-c_fs0_ac_dce.dwl 2015-01-17 07:37 - 2015-01-17 07:37 - 00178868 _____ () C:\Users\pshell.PTICOMBUSTION\Downloads\100-c_fs0_ac_dce.dxf 2015-01-14 03:01 - 2014-12-18 22:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2015-01-14 03:01 - 2014-12-11 12:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2015-01-14 03:01 - 2014-12-05 23:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2015-01-14 03:01 - 2014-12-05 22:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll 2015-01-14 03:01 - 2014-12-05 22:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll 2015-01-14 03:00 - 2014-12-18 20:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2015-01-14 03:00 - 2014-12-12 00:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-01-14 03:00 - 2014-12-12 00:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-01-14 03:00 - 2014-12-12 00:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-01-14 03:00 - 2014-12-12 00:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-01-14 03:00 - 2014-12-12 00:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-01-14 03:00 - 2014-12-12 00:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-01-14 03:00 - 2014-12-12 00:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-23 13:15 - 2012-09-28 09:38 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-01-23 13:13 - 2009-07-13 23:45 - 00021312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-01-23 13:13 - 2009-07-13 23:45 - 00021312 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-01-23 13:11 - 2009-07-14 00:13 - 00950026 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-01-23 13:10 - 2012-04-19 09:29 - 00014309 _____ () C:\Windows\cfgall.ini 2015-01-23 13:09 - 2013-01-28 08:21 - 00048185 _____ () C:\Windows\TMFilter.log 2015-01-23 13:09 - 2011-08-16 13:13 - 02223138 _____ () C:\Windows\system32\TmInstall.log 2015-01-23 13:08 - 2012-09-05 15:05 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Skype 2015-01-23 13:07 - 2014-10-02 13:26 - 00000000 ___RD () C:\Users\pshell.PTICOMBUSTION\Dropbox (PTI) 2015-01-23 13:07 - 2014-10-02 13:25 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox 2015-01-23 13:07 - 2014-04-01 14:08 - 00009295 _____ () C:\WindowsPODIUM.LOG 2015-01-23 13:07 - 2012-01-31 13:43 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-01-23 13:06 - 2014-02-21 14:34 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\X10 Commander 2015-01-23 13:06 - 2014-01-03 08:18 - 01570838 _____ () C:\Windows\SysWOW64\TmInstall.log 2015-01-23 13:06 - 2011-08-16 13:43 - 00000152 _____ () C:\Windows\system32\config\netlogon.ftl 2015-01-23 13:06 - 2011-08-10 11:05 - 00000000 ____D () C:\ProgramData\NVIDIA 2015-01-23 13:06 - 2010-11-20 22:47 - 00743572 _____ () C:\Windows\PFRO.log 2015-01-23 13:06 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-01-23 13:06 - 2009-07-13 23:51 - 00107386 _____ () C:\Windows\setupact.log 2015-01-23 13:05 - 2011-08-10 09:09 - 01396395 _____ () C:\Windows\WindowsUpdate.log 2015-01-23 13:04 - 2013-09-08 17:29 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\CRE 2015-01-23 12:48 - 2012-01-31 13:43 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-01-23 09:28 - 2014-01-06 09:15 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\cache 2015-01-23 07:56 - 2014-06-20 05:51 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\5178DA6A-43E8-4410-818E-75E29E593DEB.aplzod 2015-01-22 16:16 - 2012-09-28 09:38 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-01-22 16:16 - 2012-04-24 08:53 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-01-22 16:16 - 2011-08-10 09:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-01-17 07:29 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF 2015-01-14 17:01 - 2011-10-20 15:17 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Local\Apple 2015-01-06 17:04 - 2011-09-13 15:42 - 00006232 _____ () C:\Users\pshell.PTICOMBUSTION\Desktop\Equipment Cost.txt 2015-01-06 10:39 - 2011-08-19 15:22 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\Documents\PTI 2015-01-06 04:36 - 2010-11-20 22:27 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-01-05 08:49 - 2014-10-02 13:26 - 00000000 ____D () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox ==================== Files in the root of some directories ======= 2000-01-06 15:53 - 2000-01-06 15:53 - 0557328 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\DAO360.DLL 2011-08-23 11:46 - 2011-08-23 11:46 - 0000108 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Local\fusioncache.dat 2013-04-04 08:12 - 2013-04-04 08:12 - 0007609 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Local\Resmon.ResmonCfg 2013-07-14 09:10 - 2013-07-14 09:10 - 0000057 _____ () C:\ProgramData\Ament.ini 2014-01-06 09:02 - 2014-01-06 09:02 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc Some content of TEMP: ==================== C:\Users\PSHELL\AppData\Local\Temp\AcDeltree.exe C:\Users\PSHELL\AppData\Local\Temp\MSN96C5.exe C:\Users\PSHELL\AppData\Local\Temp\ose00000.exe C:\Users\PSHELL\AppData\Local\Temp\ose00001.exe C:\Users\PSHELL\AppData\Local\Temp\ose00002.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\AcDeltree.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpyvmj_a.dll C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\hdinst_x64.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\hhupd.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\KUIU.EXE C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\MSN9188.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\setup_AHP.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\SkypeSetup.exe C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\tbVafm.dll C:\Users\pshell.PTICOMBUSTION\AppData\Local\Temp\UIUTEMP.EXE ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-01-14 03:25 ==================== End Of Log ============================ Addition File: Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2015 Ran by pshell at 2015-01-23 13:43:09 Running from C:\Users\pshell.PTICOMBUSTION\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Trend Micro Security Agent (Enabled - Up to date) {5D349EF8-873B-C657-917F-F1D93E101A7C} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Trend Micro Security Agent Anti-spyware (Enabled - Up to date) {E6557F1C-A101-C9D9-ABCF-CAAB459750C1} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 1769-L1Y Controllers and Embedded Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden 1769-L2Y Controllers and Embedded Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden 2X RDP-64 bit (HKLM\...\{BE9CC862-DA8E-421A-ACCB-5C15D3C3E31C}) (Version: 12.0.2212 - 2X Software Ltd.) AccelerometerP11 (HKLM-x32\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 2.00.10.22 - STMicroelectronics) ActiveHome Pro (HKLM-x32\...\ActiveHomePro) (Version: - ) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.287 - Adobe Systems Incorporated) Adobe Reader X (10.1.2) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.2 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Akamai) (Version: - Akamai Technologies, Inc) Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) AutoCAD LT 2008 - English (HKLM-x32\...\AutoCAD LT 2008 - English) (Version: 17.1.219.0 - Autodesk) AutoCAD LT 2008 - English (x32 Version: 17.1.219.0 - Autodesk) Hidden AutoCAD LT 2008 - English SP1 (HKLM-x32\...\AutoCAD LT 2008 - English SP1) (Version: 1 - Autodesk) AutoCAD LT 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden AutoCAD LT 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk) Autodesk AutoCAD LT 2014 - English (HKLM\...\AutoCAD LT 2014 - English) (Version: 19.1.18.0 - Autodesk) Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk) Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden Autodesk Design Review 2012 (HKLM-x32\...\Autodesk Design Review 2012) (Version: 12.0.0.93 - Autodesk, Inc.) Autodesk Design Review 2012 (x32 Version: 12.0.0.93 - Autodesk, Inc.) Hidden Autodesk Inventor View 2012 (Version: 16.0.15600.0000 - Autodesk) Hidden Autodesk Inventor View 2012 English (HKLM\...\Autodesk Inventor View 2012) (Version: 16.0.15600.0000 - Autodesk) Autodesk Inventor View 2012 English Language Pack (Version: 16.0.15600.0000 - Autodesk) Hidden Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk) Autodesk Vault Collaboration 2012 (Client) (HKLM-x32\...\Autodesk Vault Collaboration 2012 (Client)) (Version: 16.0.56.200 - Autodesk, Inc.) Autodesk Vault Collaboration 2012 (Client) (Version: 16.0.56.200 - Autodesk, Inc.) Hidden Autodesk Vault Collaboration 2012 (Client) English Language Pack (Version: 16.0.56.200 - Autodesk, Inc.) Hidden BioAPI Framework (Version: 1.0.2 - Dell Inc.) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brother BRAdmin Light 1.23.0003 (HKLM-x32\...\{DB75941E-30C4-4D97-B000-D17C764B998C}) (Version: 1.23.0003 - Brother) Cognex 1756 Comm Module Profiles (x32 Version: 1.16.1.0 - Cognex Corp) Hidden Connected Components Workbench 2.00.00 (HKLM-x32\...\{AB4D2437-7A8C-4274-A2F8-C15087008A44}) (Version: 2.00.00.07 - Rockwell Automation, Inc.) ConSoft (HKLM-x32\...\{35324A3C-6FE0-4E7E-94C4-40C6E7BB843A}) (Version: 2.0.06 - INOR) ControlFLASH (HKLM-x32\...\{7213B6CE-E214-472E-B8BE-5400E49A9040}) (Version: 11.00.00 - Rockwell Software) Custom (Version: 01.00.00.000 - Wave Systems Corp.) Hidden CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.3225 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dell ControlVault Host Components Installer 64 bit (Version: 2.0.20.159 - Broadcom Corporation) Hidden Dell Data Protection | Access (HKLM-x32\...\{A7D91856-258D-4C87-8041-B170851CE432}) (Version: 2.0.00001.001 - Dell Inc.) Dell Data Protection | Access (Version: 01.01.01.001 - Wave Systems Corp) Hidden Dell Data Protection | Access | Drivers (HKLM-x32\...\{4E4E65EE-C456-45AC-B5AD-C62C3A325BD0}) (Version: 1.00.011 - Dell Inc.) Dell Data Protection | Access | Middleware (HKLM-x32\...\{841CBDD5-4BB5-403E-AEE3-2FADC3890BE8}) (Version: 1.00.005 - Dell Inc.) Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc) Dell System Manager (HKLM\...\{FDF509ED-9624-4FDE-9BAA-9566C186AB96}) (Version: 1.6.00000 - Dell Inc.) Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1208.101.118 - ALPS ELECTRIC CO., LTD.) DellAccess (Version: 01.01.00.053 - Wave Systems Corp.) Hidden deskPDF 2.5 Professional Edition (HKLM-x32\...\deskPDF 2.5 Professional_is1) (Version: - Docudesk) DeviceNet Node Commissioning Tool (HKLM-x32\...\{7FB3F90F-E754-4374-9ABC-EF8F94DA35E2}) (Version: 1.0.0 - Rockwell Software) DISH Anywhere Video Player (HKLM-x32\...\{7E69DC96-66CA-4C38-B3EC-DDC5B9CAE00C}) (Version: 2.14.1 - DISH Anywhere) DMUninstaller (HKLM-x32\...\DMUninstaller) (Version: - ) <==== ATTENTION Docudesk GPL Ghostscript 8.15 (HKLM-x32\...\GPL Ghostscript_is1) (Version: - Docudesk) Driver Support (HKLM-x32\...\{597FB4A5-DD86-4316-A410-7E8074CC2CCE}) (Version: 8.1 - Driver Support) Dropbox (HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.) DWG TrueView 2013 (HKLM\...\DWG TrueView 2013) (Version: 19.0.55.0 - Autodesk) DWG TrueView 2013 (Version: 19.0.55.0 - Autodesk) Hidden EMBASSY Security Center (Version: 04.03.00.067 - Wave Systems Corp.) Hidden Endress+Hauser EtherNet/IP Comm Module Profiles (x32 Version: 1.18.1.0 - Endress+Hauser, Inc.) Hidden Engineering Power Tools - v1.9.8 (HKLM-x32\...\Engineering Power Tools_is1) (Version: - Engineering Power Tools Software) ESolutions402 (HKLM-x32\...\{3D99EEB7-CB68-48A2-8AA8-837E406E05A6}) (Version: 4.0.2 - e-Solutions Enterprise 4.0.2) EZSeries TouchPanel 5.7 (HKLM-x32\...\EZSeries TouchPanel) (Version: - ) FactoryTalk Activation Manager 3.60.00 (CPR 9 SR 6) (HKLM-x32\...\{823DA070-BC8F-4BD4-B5B3-9498F02262CB}) (Version: 3.60.00 - Rockwell Automation, Inc.) FactoryTalk Diagnostics 2.60.00 (CPR 9 SR 6) (HKLM-x32\...\{B1EDA7E0-8539-49F3-B706-36842FE984D4}) (Version: 2.60.00 - Rockwell Automation, Inc.) FactoryTalk Gateway 3.03.00000 (CPR 9 SR 3) (HKLM-x32\...\{844C71E7-45B8-421A-AC46-EC344F63E59B}) (Version: 3.03.00000 - Rockwell Automation, Inc.) FactoryTalk Services Platform 2.60.00 (CPR 9 SR 6) (HKLM-x32\...\{35FCA340-FE96-4635-ADBB-66B979BA992B}) (Version: 2.60.00 - Rockwell Automation, Inc.) FactoryTalk View Studio for Machine Edition 7.00.00 (HKLM-x32\...\RSView Studio) (Version: - ) FactoryTalk® View Studio for Machine Edition 7.00.00 (CPR 9 SR 6) (HKLM-x32\...\{08DC0688-496B-49A5-94C8-0C668DEFA305}) (Version: 7.00.00 - Rockwell Automation, Inc.) Fan Selector 9.3 (HKLM-x32\...\Fan Selector Program_is1) (Version: TCF9.3 - Twin City Fan Companies, Ltd.) FileOpen Client (x64) (HKLM\...\{8D8B35B1-4F80-412C-8F96-0BEE6AF1C57D}) (Version: 3.0.73.917 - FileOpen Systems, Inc.) Firmware Upgrade Wizard for PanelView Plus 6 400-600 (HKLM-x32\...\{B580CDEF-6395-4BD1-AFF6-08C1F9CD0E02}) (Version: 7.00.20140127 - Rockwell Automation) Firmware Upgrade Wizard for PanelView Plus 6 700-1500 (HKLM-x32\...\{5A1F1645-DF39-4297-AEDB-6609949A59DB}) (Version: 6.10.20120418 - Rockwell Automation) Gemalto (Version: 01.64.01.0010 - Wave Systems Corp) Hidden Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.) Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Hardy Instruments 1756 Specialty Module Profiles (x32 Version: 1.07.1.0 - Hardy Instruments, Inc.) Hidden Hardy Instruments 1769 Specialty Module Profiles (x32 Version: 2.08.1.0 - Hardy Instruments, Inc.) Hidden HASP Device Drivers (HKLM-x32\...\HASP Device Drivers) (Version: - ) HP Officejet Pro 8500 A910 Basic Device Software (HKLM\...\{EE7C94CC-BECB-4000-B5E3-D895307B9D5E}) (Version: 22.50.231.0 - Hewlett-Packard Co.) HP Officejet Pro 8500 A910 Help (HKLM-x32\...\{871B2A9D-0F12-44B3-88C1-E0CB10A232E4}) (Version: 140.0.2.2 - Hewlett Packard) HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) iCloud (HKLM\...\{2AAF09D5-4B3F-4975-B6A9-ECE2631FC942}) (Version: 4.0.5.20 - Apple Inc.) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Network Connections 15.7.176.1 (HKLM\...\PROSetDX) (Version: 15.7.176.1 - Dell) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2347 - Intel Corporation) Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{4C1CCA11-0D08-4D5E-8444-2D9FB48BCABF}) (Version: 14.00.20110 - Intel Corporation) IPRO v4.32 (HKLM-x32\...\IPRO v4.32) (Version: - ) iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.) Java(TM) 6 Update 24 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416024FF}) (Version: 6.0.240 - Oracle) Java(TM) 6 Update 24 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.240 - Oracle) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden KONICA MINOLTA bizhub C250/C250P (HKLM\...\KONICA MINOLTA bizhub C250/C250P Installer) (Version: - ) Logix CPU Security Tool (HKLM-x32\...\{9AE0E408-37BC-4B89-B768-252DE878CE7A}) (Version: 3.0.0 - Rockwell Automation) Logix5000 Clock Update Tool (HKLM-x32\...\{125B984A-CFD9-4539-88D2-F3D80B5DAAE6}) (Version: 2.4.2 - Rockwell Software) Logix5000 Task Monitor (HKLM-x32\...\{5E171324-7299-4107-96D6-7584635962D5}) (Version: 2.4.0 - Rockwell Automation) magicJack (HKU\S-1-5-21-3716596101-2069514591-1949305620-1154\...\magicJack) (Version: 2.0.6073.4413 - magicJack L.P.) Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Marketsplash Shortcuts (HKLM-x32\...\{16FCDD97-AE09-476B-88CD-261D852BD34C}) (Version: 1.0.1.7 - Hewlett-Packard) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Mettler-Toledo 1756 Comm Module Profiles (x32 Version: 1.09.1.0 - Mettler-Toledo Corporation) Hidden Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Small Business 2007 (HKLM-x32\...\SMALLBUSINESSR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Report Viewer Redistributable 2008 (KB971118) (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008 (KB971118)) (Version: - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2008 Management Objects (HKLM-x32\...\{F5E87B12-3C27-452F-8E78-21D42164FD83}) (Version: 10.0.1600.22 - Microsoft Corporation) Microsoft SQL Server 2008 R2 (HKLM-x32\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation) Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{471AAD2C-9078-4DAC-BD43-FA10FB7C3FCE}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Setup (English) (HKLM-x32\...\{48B08845-0CB0-45EC-893C-15319ADDA312}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation) Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio Shell 2008 Service Pack 1 - ENU (HKLM-x32\...\{97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) MinIPAQ Soft v. 1.23 (HKLM-x32\...\MinIPAQ Soft v. 1.23) (Version: - ) MinIPAQ Soft v. 1.24 (HKLM-x32\...\MinIPAQ Soft v. 1.24) (Version: - ) Molex Corporation 1756 Comm Module Profiles (x32 Version: 1.25.1.0 - Molex Corporation) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Netwaiting (HKLM-x32\...\{3F92ABBB-6BBF-11D5-B229-002078017FBF}) (Version: 2.5.59 - BVRP Software, Inc) NOOK for PC (HKLM-x32\...\BN_DesktopReader) (Version: 2.5.6.9575 - Barnesandnoble.com) NTRU TCG Software Stack (Version: 2.1.34 - Security Innovation) Hidden NVIDIA 3D Vision Driver 268.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 268.83 - NVIDIA Corporation) NVIDIA Graphics Driver 268.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 268.83 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation) NVIDIA nView 135.85 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 135.85 - NVIDIA Corporation) nyb Electronic Catalog (HKLM-x32\...\{F978045B-D6C4-4008-B2BA-46C0B91BBE1A}) (Version: 1.76 - The New York Blower Company) O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}) (Version: 3.0.07.23 - O2Micro International LTD.) O2Micro Flash Memory Card Windows Driver (x32 Version: 3.0.07.23 - O2Micro International LTD.) Hidden OPC Core Components Redistributable (x64) 101.2 (HKLM\...\{1E45EA19-6DF9-44D5-A0CE-0D642B6AC0E0}) (Version: 3.00.10102 - OPC Foundation) Oracle VM VirtualBox 4.2.8 (HKLM\...\{C017D5C7-E2C0-4276-8C8A-0CB6D5914DDD}) (Version: 4.2.8 - Oracle Corporation) Parker Isysnet Analog Module Profiles (x32 Version: 6.02.2.0 - Parker Hannifin Corporation) Hidden Parker Isysnet ASCII Module Profile (x32 Version: 2.02.1.0 - Parker Hannifin Corporation) Hidden Parker Isysnet ControlNet Adapter Module Profile (x32 Version: 3.00.0.0 - Parker Hannifin Corporation) Hidden Parker Isysnet Discrete Module Profiles (x32 Version: 6.02.2.0 - Parker Hannifin Corporation) Hidden Parker Isysnet Discrete Module Profiles 2 (x32 Version: 2.02.1.0 - Parker Hannifin Corporation) Hidden Parker Isysnet Discrete Module Profiles 3 (x32 Version: 2.02.1.0 - Parker Hannifin Corporation) Hidden Parker Isysnet Ethernet Adapter Module Profile (x32 Version: 3.00.0.0 - Parker Hannifin Corporation) Hidden PC-CCID (Version: 2.0.0 - Gemalto) Hidden Perk Prize Panel (HKLM-x32\...\[email]pp@perk.com[/email]) (Version: - ) Phoenix Digital 1756 Communication Module Profiles (x32 Version: 1.05.1.0 - Phoenix Digital, Inc.) Hidden PID Calculation Program (HKLM-x32\...\PID Calculation Program) (Version: - ) PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.00.000 - Prolific Technology INC) Preboot Manager (Version: 03.03.00.049 - Wave Systems Corp.) Hidden Private Information Manager (Version: 07.01.00.007 - Wave Systems Corp.) Hidden Profisoft v1.2 (HKLM-x32\...\Profisoft v1.2) (Version: - ) ProSoft Technology 1734 Ethernet Adapter Module Profile (x32 Version: 1.13.1.0 - ProSoft Technology, Inc.) Hidden ProSoft Technology 1756 MVI Comm Module Profiles (x32 Version: 1.10.1.0 - ProSoft Technology, Inc.) Hidden Prosoft Technology 1769 Comm Module Profiles (x32 Version: 2.01.1.0 - Prosoft Technology, Inc.) Hidden Rockwell Automation 1440 XM Dynamic Measurement Module Profile (x32 Version: 2.01.4.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1715 Ethernet Adapter Module Profile (x32 Version: 1.04.2.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1715 Redundant I/O Module Profiles (x32 Version: 2.04.3.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1732 Discrete Module Profiles (x32 Version: 2.02.1.0 - Rockwell Software, Inc.) Hidden Rockwell Automation 1732 Discrete Module Profiles 2 (x32 Version: 2.02.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Analog Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Analog Module Profiles 2 (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 ASCII Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 ControlNet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Discrete Module Profile, DeviceLogix (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Discrete Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Discrete Module Profiles 2 (x32 Version: 3.00.2579.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Discrete Module Profiles 4 (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Ethernet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Ethernet Adapter,2-Port,Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1734 Specialty Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Analog Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Analog Module Profiles 2 (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 ASCII Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 ControlNet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Discrete Module Profile, DeviceLogix (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Discrete Module Profiles (x32 Version: 7.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Discrete Module Profiles 2 (x32 Version: 3.00.2579.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Discrete Module Profiles 3 (x32 Version: 2.02.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Discrete Module Profiles 4 (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Ethernet Adapter Module Profile (x32 Version: 4.00.2577.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Ethernet Adapter,2-Port,Module Profile (x32 Version: 4.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1738 Specialty Module Profiles (x32 Version: 3.00.2578.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1747 Module Profiles (x32 Version: 8.00.3000.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1756 CNet Comms Module Profiles (x32 Version: 1.02.572.0 - Rockwell Software, Inc.) Hidden Rockwell Automation 1756 ENet Comms Module Profiles (x32 Version: 1.02.572.0 - Rockwell Software, Inc.) Hidden Rockwell Automation 1756 ENet Comms Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1756 Ethernet Bridge Module Profile (x32 Version: 8.01.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1756 HART Module Profiles (x32 Version: 3.06.4.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1756 Remote I/O Interface Module Profile (x32 Version: 2.03.3.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Analog Module Profiles (x32 Version: 7.02.8.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Analog Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 ASCII Module Profiles (x32 Version: 2.02.7.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Boolean Module Profiles (x32 Version: 2.02.5.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Controller Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Discrete Module Profiles (x32 Version: 2.02.2.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Discrete Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Embedded Module Profiles (x32 Version: 2.02.10.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769 Specialty Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1769-L3Y Controllers Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1783 Ethernet Managed Switch Module Profile (x32 Version: 2.00.2479.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1791DS Discrete Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 1799 Embedded Discrete Module Profile (x32 Version: 1.01.6.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 2097 Kinetix Module Profiles (x32 Version: 2.01.2.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 280 ArmorStart Ethernet Module Profiles (x32 Version: 1.03.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 2-Port CIP Sync ENetIP Module Profiles (x32 Version: 2.01.10.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 2-Port Quick Connect ENetIP Module Profiles (x32 Version: 1.01.13.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 48MS Vision Sensor Module Profiles (x32 Version: 1.01.19.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation 5XRF RFID Reader Module Profiles (x32 Version: 1.02.24.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation ArmorStart LT Module Profiles (x32 Version: 1.02.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation DIO DeviceNet Safety Module Profile (x32 Version: 5.04.2.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 2.02.4.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 5.01.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 5.04.2.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation DIO DeviceNet Safety Module Profiles (x32 Version: 5.04.4.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation DIO EtherNet Safety Module Profiles (x32 Version: 5.03.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Download Manager (HKLM-x32\...\{FFAD8DA9-ED41-494d-AC8E-63D861D0A733}) (Version: 2.0.7.35 - NOS Microsystems Ltd.) Rockwell Automation Driver Package x64 (HKLM-x32\...\{03AE0196-A77D-4DB1-BEA2-2ED79723FB30}) (Version: 1.1.11 - Rockwell Automation.) Rockwell Automation Drives Peripheral Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Drives PowerFlex 4 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Drives PowerFlex 5 Module Profiles (x32 Version: 1.03.62.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Drives PowerFlex 7 2 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Drives PowerFlex 7 3 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Drives PowerFlex 7 Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Drives SCANport Module Profiles (x32 Version: 4.04.1.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation E1 Plus Module Profiles (x32 Version: 1.01.0.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation EtherNet/IP Tap Family Module Profiles (x32 Version: 2.06.2.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Faceplates (HKLM-x32\...\{7F3A4AB6-B5D8-4C95-A74D-CC9D82F5427B}) (Version: 2.00.0001 - Rockwell Automation) Rockwell Automation Flex Adapter Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Generic Safety Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Kinetix CIP Motion Drive Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Kinetix350 CIP Motion Drive Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation PowerFlex CIP Motion Drive Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation SLC Adapter Module Profiles (x32 Version: 8.03.2783.0 - Rockwell Automation, Inc.) Hidden Rockwell Automation Stratix 8000/8300 Module Profiles (x32 Version: 5.01.10.0 - Rockwell Automation, Inc.) Hidden Rockwell Software Hardware Maintenance Tool (HKLM-x32\...\RSHWare) (Version: - ) Rockwell Windows Firewall Configuration Utility 1.00.06 (HKLM-x32\...\{01D8D3AA-2A4F-4085-9CC3-61E389D86D29}) (Version: 1.00.06.0004 - Rockwell Automation, Inc.) RSLinx Classic 2.59.02 CPR 9 SR 5 (HKLM-x32\...\{34540622-805E-4CC7-98CF-65A43E99CF4D}) (Version: 2.59.02 CPR 9 SR 5 - Rockwell Automation, Inc.) RSLinx Enterprise 5.60.00 (CPR 9 SR 6) (HKLM-x32\...\{591F33DE-1182-4A8F-A737-4A86F8D64828}) (Version: 5.60.00 - Rockwell Automation, Inc.) RSLogix 500 English 8.30.01 (CPR 9) (HKLM-x32\...\{3843ACA8-6023-4BDB-8072-4809D0E3CB1D}) (Version: 8.30.01 - Rockwell Automation Inc) RSLogix 5000 Compare (HKLM-x32\...\{D6088EA7-1828-40AF-A684-3C1AD67FDE68}) (Version: 3.20.00 - Rockwell Software) RSLogix 5000 DeviceNet Tag Generator (HKLM-x32\...\{B100A292-14C5-4E41-AE27-0229BFBFDA9F}) (Version: 11.00.0020 - Rockwell Automation,Inc.) RSLogix 5000 IEC61131-3 Translation Tool (HKLM-x32\...\{517AA455-8CC9-4281-87A4-865E71947DC9}) (Version: 1.0.0 - Rockwell Automation, Inc.) RSLogix 5000 Module Profile Core (x32 Version: 8.04.2836.0 - Rockwell Automation, Inc.) Hidden RSLogix 5000 Module Profile Core EDS Support (x32 Version: 8.03.2836.0 - Rockwell Automation, Inc.) Hidden RSLogix 5000 Module Profile Core System Updates (x32 Version: 6.00.1769.0 - Rockwell Automation, Inc.) Hidden RSLogix 5000 Module Profile Core System Updates 1 (x32 Version: 8.00.2421.0 - Rockwell Automation, Inc.) Hidden RSLogix 5000 Module Profile Setup Utility (x32 Version: 8.04.2836.0 - Rockwell Automation, Inc.) Hidden RSLogix 5000 Motion Database (x32 Version: 20.01.06 - Rockwell Automation, Inc.) Hidden RSLogix 5000 Online Books (HKLM-x32\...\{11010120-B129-11DF-A296-000C296D58C5}) (Version: 20.1.0 - Rockwell Automation, Inc.) RSLogix 5000 Setup Installer (x32 Version: 5.00.0000 - Rockwell Automation, Inc.) Hidden RSLogix 5000 Start Page Media v20.01.00 (HKLM-x32\...\{10000120-D5FD-11DA-A128-000C29473C90}) (Version: 20.01.00 - Rockwell Automation, Inc.) RSLogix 5000 System Updates (x32 Version: 20.10.0410 - Rockwell Automation, Inc.) Hidden RSLogix 5000 v13.04 (HKLM-x32\...\{30010413-EC33-11D6-A408-F6139379CBFB}) (Version: 13.04.0000 - Rockwell Software, Inc.) RSLogix 5000 v15.02 (HKLM-x32\...\{30010215-EC33-11D6-A408-F6139379CBFB}) (Version: 15.02.0000 - Rockwell Software, Inc.) RSLogix 5000 v16.04.00 (CPR 9) (HKLM-x32\...\{30010416-EC33-11D6-A408-F6139379CBFB}) (Version: 16.04.00 - Rockwell Automation, Inc.) RSLogix 5000 v17.01.00 (CPR 9 SR 1) (HKLM-x32\...\{30010117-EC33-11D6-A408-F6139379CBFB}) (Version: 17.01.00 - Rockwell Automation, Inc.) RSLogix 5000 v18.02.00 (CPR 9 SR 2) (HKLM-x32\...\{30010218-EC33-11D6-A408-F6139379CBFB}) (Version: 18.02.00 - Rockwell Automation, Inc.) RSLogix 5000 v19.01.00 (CPR 9 SR 3) (HKLM-x32\...\{30010119-EC33-11D6-A408-F6139379CBFB}) (Version: 19.01.00 - Rockwell Automation, Inc.) RSLogix 5000 v20.01.00 (CPR 9 SR 5) (HKLM-x32\...\{31000120-EC33-11D6-A408-F6139379CBFB}) (Version: 20.01.00 - Rockwell Automation, Inc.) RSLogix5000 Data Preserved Download Tool (HKLM-x32\...\{3AFE0B0D-BF18-49AB-8687-D9E8D948EBE7}) (Version: 1.5.2 - Rockwell Software) RSNetWorx for ControlNet 10.01.00 (CPR 9 SR 3) (HKLM-x32\...\{2BF0655E-B036-43F6-9230-BB45CB07F004}) (Version: 10.01.00.04 - Rockwell Automation, Inc.) RSNetWorx for DeviceNet 10.01.00 (CPR 9 SR 3) (HKLM-x32\...\{692179FB-984B-465A-BC4F-3875D2D53F32}) (Version: 10.01.00.04 - Rockwell Automation, Inc.) RSNetWorx for EtherNet/IP 10.01.00 (CPR 9 SR 3) (HKLM-x32\...\{D92FFA80-FC57-11D6-AFD6-0050BA883E61}) (Version: 10.01.00.04 - Rockwell Automation, Inc.) Sage Components (x32 Version: 2.00.0000 - Sage) Hidden Sage MAS 90 and 200 Fixed Assets Client (HKLM-x32\...\InstallShield_{8E1C97D2-BD4D-40B3-B074-427873985457}) (Version: 2008.1.1 - Sage Software) Sage MAS 90 and 200 Fixed Assets Client (x32 Version: 2008.1.1 - Sage Software) Hidden Sage MAS 90 Workstation ([URL='http://malwaretips.com/file://\\ladle\Version4\ERP']\\ladle\Version4\ERP[/URL] Server\MAS90) (HKLM-x32\...\{E2ECD70E-6842-40E4-99C5-C6A672625600}) (Version: 1.0 - Sage Software) Serial/IP Version 4.9.4 (HKLM-x32\...\{8A39EF0E-E8D9-4FBA-9803-2CB215BBEA02}) (Version: 4.9.4 - Tactical Software, LLC) Service Pack 1 for SQL Server 2008 R2 (KB2528583) (HKLM-x32\...\KB2528583) (Version: 10.51.2500.0 - Microsoft Corporation) Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version: - Silicon Laboratories) Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM-x32\...\{0254F6C8-E233-46EA-8EDD-3AA294246CB8}) (Version: 6.3a - Silicon Laboratories, Inc.) SkypeTalking 0.9.6 (HKLM-x32\...\SkypeTalking_is1) (Version: 0.9.6 - Hrvoje Katić) Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.) SlingPlayer for Web (HKLM-x32\...\{46994DA0-6572-4A02-9354-FC49ACE8C104}) (Version: 2.4.089 - Sling Media) SPBA 5.9 (Version: 5.9.4.6686 - UPEK Inc.) Hidden Spectrum Controls 1734 Analog Module Profiles (x32 Version: 1.11.1.0 - Spectrum Controls, Inc.) Hidden Spectrum Controls 1756 Analog Module Profiles (x32 Version: 1.09.1.0 - Spectrum Controls, Inc.) Hidden Spectrum Controls 1756 Specialty Module Profiles (x32 Version: 1.03.1.0 - Spectrum Controls, Inc.) Hidden Spectrum Controls 1769 Analog Module Profiles (x32 Version: 1.05.1.0 - Spectrum Controls, Inc.) Hidden Spectrum Controls 1769 Analog Module Profiles (x32 Version: 1.06.1.0 - Spectrum Controls, Inc.) Hidden Spectrum Controls 1769 Analog Module Profiles (x32 Version: 2.06.1.0 - Spectrum Controls, Inc.) Hidden SQL Server 2008 R2 SP1 Common Files (x32 Version: 10.51.2500.0 - Microsoft Corporation) Hidden SQL Server 2008 R2 SP1 Database Engine Services (x32 Version: 10.51.2500.0 - Microsoft Corporation) Hidden SQL Server 2008 R2 SP1 Database Engine Shared (x32 Version: 10.51.2500.0 - Microsoft Corporation) Hidden Sql Server Customer Experience Improvement Program (x32 Version: 10.50.1600.1 - Microsoft Corporation) Hidden Tag Data Monitor Tool (HKLM-x32\...\{3D1F0E21-FE2D-480A-B2A0-4D9CB1BE6774}) (Version: 2.0.3 - Rockwell Automation) Tag Upload Download Tool (HKLM-x32\...\{F114066A-DFCB-443E-A6FB-82922F6CC88A}) (Version: 2.6.4 - Rockwell Automation) Tag Upload Download Tool (HKLM-x32\...\Tag Upload Download Tool) (Version: - Rockwell Automation) TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.12799 - TeamViewer) Translate PLC-5_SLC 2.0 (HKLM-x32\...\{6EF053F0-150E-4227-8BE2-1EAB082FF7DE}) (Version: 1.0.8 - Rockwell Software) Trend Micro Worry-Free Business Security Agent (HKLM\...\Wofie) (Version: 18.0.2013 - Trend Micro Inc.) Trend Micro Worry-Free Business Security Agent (Version: 8.0 - Trend Micro Inc.) Hidden Trusted Drive Manager (Version: 4.0.5.8 - Wave Systems Corp.) Hidden UDC PowerFlex 520 Series Databases (HKLM-x32\...\{202BE51A-9D48-40B9-A8BC-2A988B6ECDBF}) (Version: 1.55.0.0 - Rockwell Automation, Inc.) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-00CA-0000-0000-0000000FF1CE}_SMALLBUSINESSR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Upek Touchchip Fingerprint Reader (Version: 1.2.004 - Dell Inc.) Hidden USB Modem (HKLM\...\CNXT_MODEM_USB_ACF) (Version: 2.0.22.0 - Conexant) Wave Infrastructure Installer (Version: 07.66.40.0008 - Wave Systems Corp) Hidden Wave Support Software Installer (Version: 05.13.00.014 - Wave Systems Corp) Hidden WebEx (HKLM-x32\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC) WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.7900 - Broadcom Corporation) Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (HKLM\...\9512AA21B791B05A54E27065C45BBC417AB282DF) (Version: 09/11/2009 1.0.1.6 - Dell Inc.) Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\3134FEF0E1D959EC0CC2E458C94B7057B2AC0CC9) (Version: 10/22/2009 2.06.00 - FTDI) Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\88EB56038379B8B7DCFB4D2448A60F52E064B265) (Version: 10/22/2009 2.06.00 - FTDI) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Small Business Server 2011 Standard ClientAgent (HKLM\...\{5C72F8A3-BF39-4733-B41E-0ED7EF622E37}) (Version: 6.1.7900.1 - Microsoft Corporation) WinZip 18.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E3}) (Version: 18.5.11111 - WinZip Computing, S.L. ) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2013\en-US\dwgviewrficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD LT 2014\acadlt.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2014\en-US\acadltficn.dll (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3716596101-2069514591-1949305620-1154_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.) ==================== Restore Points ========================= 08-12-2014 08:31:53 Windows Update 10-12-2014 03:00:31 Windows Update 16-12-2014 08:35:24 Windows Update 18-12-2014 03:00:10 Windows Update 05-01-2015 08:23:00 Windows Update 13-01-2015 09:17:36 Windows Update 14-01-2015 03:00:13 Windows Update 19-01-2015 07:17:28 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {15613070-A9B8-4F1F-A243-469CC4C16499} - System32\Tasks\{6FB9E3A3-1BAC-4096-8A2E-A658BAC2FE3A} => pcalua.exe -a D:\Setup.exe -d D:\ Task: {1FCC530C-4D32-4D16-8949-BF8D842021CF} - System32\Tasks\{14EE46F5-A96D-420F-842A-7DBBE5597960} => pcalua.exe -a D:\All-Windows-WHQL-driver\PL2303_Prolific_DriverInstaller_v1210.exe -d D:\All-Windows-WHQL-driver Task: {3DC4B95C-7FA1-4F80-A56C-4579943739CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.) Task: {5288E37F-3E12-4D4B-A00C-9AE190C27F5E} - System32\Tasks\HP Officejet Pro 8500 A910.exe => C:\Program Files\HP\HP Officejet Pro 8500 A910\Bin\HP Officejet Pro 8500 A910.exe [2010-11-16] (Hewlett-Packard Co.) Task: {7C071AF8-CFD0-49B8-B0BD-F2DFB842640B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-22] (Adobe Systems Incorporated) Task: {83AC92B2-DF10-4B10-BFD6-740CB44E7BBC} - System32\Tasks\{D902E4CA-4591-4614-BAC9-886090D3CAC5} => pcalua.exe -a "C:\Users\pshell.PTICOMBUSTION\Documents\Equipment Info\Brother\bal1230003en.exe" -d C:\Users\pshell.PTICOMBUSTION\Desktop Task: {AD38A00B-3D2B-4966-913B-E6E243340E28} - System32\Tasks\{3F31E003-E63B-44D7-AA72-D5FD27184D86} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" -c /uninstall SMALLBUSINESSR /dll OSETUP.DLL Task: {AF0ACBC8-8FC0-4C05-BCA4-F208D0DB7D2D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-20] (Google Inc.) Task: {AF8CC1D1-5312-466F-8AB2-D5E4D7595021} - System32\Tasks\{B953D4CA-F939-41F6-BFF1-34A9E558D077} => pcalua.exe -a "C:\Program Files (x86)\Common Files\OPC Foundation\Install\OpcCustomInstaller.exe" -d "C:\Program Files (x86)\Common Files\OPC Foundation\Install" Task: {BA727A24-43DB-4F32-A5C6-6CFA4567A4CE} - System32\Tasks\FaxSetupWizard.exe => C:\Program Files\HP\HP Officejet Pro 8500 A910\Bin\FaxSetupWizard.exe [2010-11-16] (Hewlett-Packard Co.) Task: {BBA5F29E-E6E1-4CA4-BEF1-C557ACA95732} - System32\Tasks\{CD5764D2-3E8C-47AF-8124-6C3E479A7725} => pcalua.exe -a "C:\Users\pshell.PTICOMBUSTION\Documents\Equipment Info\AB\AB RSVIEW\RSView32\7.20.00\SETUP.EXE" -d "C:\Users\pshell.PTICOMBUSTION\Documents\Equipment Info\AB\AB RSVIEW\RSView32\7.20.00" Task: {BF667EAA-1EA5-4188-B496-45FA0CEF626E} - System32\Tasks\HpWebReg.exe => C:\Program Files\HP\HP Officejet Pro 8500 A910\Bin\HpWebReg.exe [2010-11-16] (Hewlett-Packard Co.) Task: {C5B636C8-44D8-4C31-A86A-7FEF1936B9CF} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2010-12-23 13:33 - 2010-12-23 13:33 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2011-08-16 11:37 - 2007-02-18 15:17 - 00026624 _____ () C:\Windows\system32\ddmon64x.dll 2011-08-31 13:55 - 2011-08-31 13:55 - 00801792 _____ () C:\Program Files (x86)\Trend Micro\Client Server Security Agent\sqlite3.dll 2011-08-10 09:18 - 2003-04-18 21:06 - 00008192 _____ () c:\Windows\SysWOW64\srvany.exe 2009-07-02 16:32 - 2009-07-02 16:32 - 00089088 _____ () C:\Program Files (x86)\Trend Micro\Client Server Security Agent\zlibwapi.dll 2011-08-10 10:55 - 2011-06-05 10:22 - 00004096 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll 2011-08-10 10:54 - 2011-03-28 12:55 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2011-08-10 09:16 - 2010-12-17 10:24 - 00686704 _____ () C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe 2010-12-23 13:33 - 2010-12-23 13:33 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll 2013-02-05 00:21 - 2013-02-05 00:21 - 00056352 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll 2013-02-05 00:21 - 2013-02-05 00:21 - 00937504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll 2013-02-05 00:21 - 2013-02-05 00:21 - 00124448 _____ () C:\Program Files\Autodesk\Autodesk Sync\QJson.dll 2013-02-05 00:21 - 2013-02-05 00:21 - 00045088 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll 2014-04-01 06:42 - 2009-01-09 16:21 - 00651264 _____ () C:\Program Files (x86)\PST\Binaries\RACurrTray.exe 2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2012-12-17 13:03 - 2012-12-17 13:03 - 00013824 _____ () C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagServerPS.dll 2012-12-19 22:21 - 2012-12-19 22:21 - 00062136 _____ () C:\Program Files (x86)\Common Files\Rockwell\FTDiagnosticsODBCENU.dll 2012-12-19 23:32 - 2012-12-19 23:32 - 00018104 _____ () C:\Program Files (x86)\Common Files\Rockwell\RnaStorageSupportServerPS.dll 2014-10-21 19:22 - 2014-10-21 19:22 - 00750080 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\libGLESv2.dll 2015-01-23 13:07 - 2015-01-23 13:07 - 00043008 _____ () c:\users\pshell~1.pti\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpyvmj_a.dll 2014-10-21 19:22 - 2014-10-21 19:22 - 00047616 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\libEGL.dll 2014-10-21 19:22 - 2014-10-21 19:22 - 00863744 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll 2014-10-21 19:22 - 2014-10-21 19:22 - 00200704 _____ () C:\Users\pshell.PTICOMBUSTION\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll 2011-10-18 14:05 - 2011-10-18 14:05 - 00053248 _____ () C:\Program Files (x86)\Rockwell Automation\UsbCipDriver\UsbCipHelper\rausbciplib.dll 2014-02-13 21:38 - 2014-02-13 21:38 - 00124928 _____ () C:\Program Files (x86)\Perk Prize Panel\pp.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-1322846040-2550532913-2088154585-500 - Administrator - Disabled) ASPNET (S-1-5-21-1322846040-2550532913-2088154585-1004 - Limited - Enabled) Guest (S-1-5-21-1322846040-2550532913-2088154585-501 - Limited - Disabled) PSHELL (S-1-5-21-1322846040-2550532913-2088154585-1001 - Administrator - Enabled) => C:\Users\PSHELL UpdatusUser (S-1-5-21-1322846040-2550532913-2088154585-1000 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Faulty Device Manager Devices ============= Name: Dell Wireless 375 Bluetooth Module Description: Dell Wireless 375 Bluetooth Module Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Broadcom Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (01/23/2015 01:08:39 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961 Faulting module name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961 Exception code: 0xc000000d Fault offset: 0x0004bba6 Faulting process id: 0x249c Faulting application start time: 0xdaemonu.exe0 Faulting application path: daemonu.exe1 Faulting module path: daemonu.exe2 Report Id: daemonu.exe3 Error: (01/23/2015 01:06:30 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/23/2015 01:06:30 PM) (Source: 2X RDP) (EventID: 5000) (User: ) Description: Failed to Load AS-XG Server (The handle is invalid. [0x00000006]) Error: (01/23/2015 01:45:39 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: nauzqhzpnfzm.exe, version: 36.0.1985.143, time stamp: 0x53e2e515 Faulting module name: jasrdtcq.dll, version: 6.0.11.452, time stamp: 0x54b4f32f Exception code: 0xc0000005 Fault offset: 0x000140fb Faulting process id: 0x29cc Faulting application start time: 0xnauzqhzpnfzm.exe0 Faulting application path: nauzqhzpnfzm.exe1 Faulting module path: nauzqhzpnfzm.exe2 Report Id: nauzqhzpnfzm.exe3 Error: (01/22/2015 09:43:38 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4 Faulting module name: SHELL32.dll, version: 6.1.7601.18429, time stamp: 0x5330ecd9 Exception code: 0xc0000005 Fault offset: 0x000000000015e2e5 Faulting process id: 0x1bfc Faulting application start time: 0xExplorer.EXE0 Faulting application path: Explorer.EXE1 Faulting module path: Explorer.EXE2 Report Id: Explorer.EXE3 Error: (01/22/2015 07:13:26 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 90080108 Error: (01/21/2015 07:44:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961 Faulting module name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961 Exception code: 0xc000000d Fault offset: 0x0004bba6 Faulting process id: 0x1e80 Faulting application start time: 0xdaemonu.exe0 Faulting application path: daemonu.exe1 Faulting module path: daemonu.exe2 Report Id: daemonu.exe3 Error: (01/21/2015 07:42:02 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/21/2015 07:42:01 AM) (Source: 2X RDP) (EventID: 5000) (User: ) Description: Failed to Load AS-XG Server (The handle is invalid. [0x00000006]) Error: (01/19/2015 07:15:44 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961 Faulting module name: daemonu.exe, version: 1.0.23.0, time stamp: 0x4deb5961 Exception code: 0xc000000d Fault offset: 0x0004bba6 Faulting process id: 0x251c Faulting application start time: 0xdaemonu.exe0 Faulting application path: daemonu.exe1 Faulting module path: daemonu.exe2 Report Id: daemonu.exe3 System errors: ============= Error: (01/23/2015 01:08:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s). Error: (01/23/2015 01:07:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC) Error: (01/23/2015 01:06:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: %%0 Error: (01/21/2015 07:44:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s). Error: (01/21/2015 07:43:14 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC) Error: (01/21/2015 07:42:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: %%0 Error: (01/19/2015 07:15:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s). Error: (01/19/2015 07:14:30 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC) Error: (01/19/2015 07:13:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: %%0 Error: (01/19/2015 07:13:28 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 7:10:25 AM on 1/19/2015 was unexpected. Microsoft Office Sessions: ========================= Error: (04/21/2014 06:46:58 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6691.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 400079 seconds with 18840 seconds of active time. This session ended with a crash. Error: (04/25/2013 02:15:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 168898 seconds with 360 seconds of active time. This session ended with a crash. Error: (02/08/2012 01:46:05 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 176816 seconds with 5160 seconds of active time. This session ended with a crash. Error: (11/09/2011 03:16:24 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6565.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 157526 seconds with 10740 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2011-09-23 12:11:34.232 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvoptimusmft.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-2720QM CPU @ 2.20GHz Percentage of memory in use: 56% Total physical RAM: 6024.9 MB Available physical RAM: 2592.93 MB Total Pagefile: 12047.98 MB Available Pagefile: 8171.93 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:237.7 GB) (Free:80.64 GB) NTFS Drive k: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS Drive l: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS Drive m: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS Drive n: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS Drive p: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS Drive q: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS Drive r: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS Drive u: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS Drive v: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS Drive w: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS Drive x: (DATAPART2) (Network) (Total:1843.2 GB) (Free:1539.05 GB) NTFS Drive z: (ADMS) (Network) (Total:1073.59 GB) (Free:260.01 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 238.5 GB) (Disk ID: 5BCED202) Partition 1: (Not Active) - (Size=39 MB) - (Type=DE) Partition 2: (Active) - (Size=752 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=237.7 GB) - (Type=07 NTFS) ==================== End Of Log ============================ [/QUOTE]
Insert quotes…
Verification
Post reply
Top