My home grown system has issues. Something has gotten into it. I believe it started getting noticeably about a week ago. I vaguely remember doing an update, for I believe was Malwarebytes. Since then all kinds of issues have happened. The most noticeable was that I was getting errors for net.exe. I finally got Malwarebytes back running, but I'm not sure if I trust the installation. I did do a root scan with mssstool64 and that turned out okay. Using the MS SFC I verified that I had issues with net1.exe that could not be corrected.
I am getting extremely slow shut downs and restarts. I recently had an issue with explorer not wanting to start. That appeared to be an issue with Autodesk360, which I uninstalled, so that is now working.
Any help weeding out the bug would be appreciated.
Attached is attach.txt and sfcdetails.txt
Thank you,
Randy
DDS.TXT -
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.18792 BrowserJavaVersion: 11.31.2
Run by Randy at 19:41:40 on 2017-10-05
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.16362.8605 [GMT -4:00]
.
AV: Norton Security *Enabled/Updated* {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Security *Enabled/Updated* {8B15A0D7-38AE-74BB-CE13-B9D7D5768117}
FW: Norton Security *Enabled* {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\nvwmi64.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\nvwmi64.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Corsair\Corsair Link\CorsairLINK_HardwareMonitor.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Program Files\FileOpen\Services\FileOpenManager64.exe
C:\Windows\system32\hasplms.exe
C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\system32\hasplmv.exe
C:\Windows\SysWOW64\lkads.exe
C:\Windows\SysWOW64\lktsrv.exe
C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe
C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe
C:\Program Files\Autodesk\Inventor 2017\Moldflow\bin\mitsijm.exe
C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
C:\Program Files\NVIDIA Corporation\nview\nViewMain64.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\NS.exe
C:\Program Files\NVIDIA Corporation\nview\nViewMain.exe
C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
C:\Users\Randy\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Randy\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Randy\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Timberline Office\Shared\Sage.CRE.PervasiveLicenseService.exe
C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\NS.exe
C:\Program Files (x86)\Pervasive Software\PSQL\bin\notifyviewer.exe
C:\Program Files (x86)\Sage\SIM\Client\Sage.Sim.Client.WindowsService.exe
C:\Program Files\ShareSync\Tray\ShareSyncTray.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
C:\Program Files\Autodesk\Autodesk SketchBook Pro 2015\SketchBookSnapshot.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe
C:\Program Files (x86)\Sage\SIM\Client\SimNotify.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe
C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files\TrueKey\McTkSchedulerService.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
C:\Program Files (x86)\Common Files\Sage\LS1\ServiceHost\Sage.LS1.ServiceHost.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\sysWOW64\wbem\wmiprvse.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\net.exe
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\prevhost.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe,
BHO: True Key Helper: {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
BHO: Norton Identity Safety: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine32\22.10.1.10\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.10.1.10\coieplg.dll
TB: True Key: {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
uRun: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
uRun: [HP Officejet Pro 8600 (NET)] "C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN2A9BWH2705KD:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1
uRun: [Akamai NetSession Interface] "C:\Users\Randy\AppData\Local\Akamai\netsession_win.exe"
uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
uRun: [OneDrive] "C:\Users\Randy\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
mRun: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
mRun: [ZyngaGamesAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
mRun: [SimNotify.exe] C:\Program Files (x86)\Sage\SIM\Client\SimNotify.exe
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
mRun: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
StartupFolder: C:\Users\Randy\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SENDTO~1.LNK - C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\RUNNOT~1.LNK - C:\Windows\Installer\{0A3238D7-AB32-1130-B717-F3E3F18B4A8C}\ico_notifyviewer.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SHARES~1.LNK - C:\Program Files\ShareSync\Tray\ShareSyncTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SKETCH~1.LNK - C:\Program Files\Autodesk\Autodesk SketchBook Pro 2015\SketchBookSnapshot.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\STARTP~1.LNK - C:\Windows\Installer\{0A3238D7-AB32-1130-B717-F3E3F18B4A8C}\ico_w3dbsmgr.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer = 10.100.100.200
TCP: Interfaces\{6026CFA6-A22A-429E-9EE0-E7E254AD1D9D} : DHCPNameServer = 10.100.100.200
TCP: Interfaces\{9B682F1B-8848-4BDD-8BFF-BE409C3EC4B6} : DHCPNameServer = 75.75.75.75 75.75.76.76
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
SSODL: WebCheck - <orphaned>
LSA: Notification Packages = scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-BHO: True Key Helper: {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-BHO: GBHO.BHO: {45d30484-7ded-43d9-957a-d2fd1f046511} -
x64-BHO: Norton Identity Safety: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\coieplg.dll
x64-BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL
x64-BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL
x64-TB: Smart Recovery 2: {1d09c093-f71e-43c3-b948-19316cbd695e} -
x64-TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\coieplg.dll
x64-TB: True Key: {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Logitech Download Assistant] C:\Windows\System32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
x64-Run: [nwiz] "C:\Program Files\NVIDIA Corporation\nview\nwiz.exe" /installquiet
x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
x64-Run: [CnxtCoInstallerDefer] C:\Program Files\CONEXANT\PREINSTALL\SETUP582EFB190\SETUP64.EXE -REBOOTED_FROM_NO_ENUM_INSTALL_METHOD=1 -S
x64-Run: [FileOpenBroker] C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
x64-Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - <orphaned>
x64-Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - <orphaned>
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {28B89EEF-1007-0000-7102-CF3F3A09B77D} - msiexec /fus {28B89EEF-1007-0000-7102-CF3F3A09B77D}
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-mASetup: {AD99243B-F007-0000-B1CC-22A4DDD4B96F} - msiexec /fus {AD99243B-F007-0000-B1CC-22A4DDD4B96F}
x64-mASetup: {CD301C75-E007-0409-8A4F-E62AF995F11C} - msiexec /fus {CD301C75-E007-0409-8A4F-E62AF995F11C}
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Randy\AppData\Roaming\Mozilla\Firefox\Profiles\y6iuiy1g.default\
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Users\Randy\AppData\Roaming\Mozilla\plugins\npatgpc.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll
.
============= SERVICES / DRIVERS ===============
.
R0 nipbcfk;National Instruments Class Upper Filter Driver;C:\Windows\System32\drivers\nipbcfk.sys [2012-12-18 16984]
R0 SymEFASI;Symantec Extended File Attributes (SI);C:\Windows\System32\drivers\NSx64\160A010.00A\symefasi64.sys [2017-9-6 1868416]
R1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2014-6-17 21104]
R1 BHDrvx64;BHDrvx64;C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\BASHDefs\20171004.001\BHDrvx64.sys [2017-10-5 1872032]
R1 ccSet_NS;NS Settings Manager;C:\Windows\System32\drivers\NSx64\160A010.00A\ccsetx64.sys [2017-9-6 187520]
R1 IDSVia64;IDSVia64;C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\IPSDefs\20171004.001\IDSvia64.sys [2017-10-4 1056920]
R1 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NSx64\160A010.00A\ironx64.sys [2017-9-6 301288]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NSx64\160A010.00A\symnets.sys [2017-9-6 566912]
R2 AdAppMgrSvc;Autodesk Desktop App Service;C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2017-4-24 1353208]
R2 aksdf;aksdf;C:\Windows\System32\drivers\aksdf.sys [2016-11-16 390472]
R2 Autodesk Content Service;Autodesk Content Service;C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2014-2-7 31192]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service;C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-4-6 4122824]
R2 DES2 Service;DES2 Service for Energy Saving.;C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2014-6-17 68136]
R2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
R2 FileOpenManager;FileOpen Manager;C:\Program Files\FileOpen\Services\FileOpenManager64.exe [2017-9-6 363176]
R2 hasplms;Sentinel LDK License Manager;C:\Windows\System32\hasplms.exe -run --> C:\Windows\System32\hasplms.exe -run [?]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-5-21 49464]
R2 mitsijm2015;Autodesk Simulation Moldflow MITSI 2015 Job Manager;C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [2013-10-11 968480]
R2 mitsijm2016;Autodesk Simulation Moldflow MITSI 2016 Job Manager;C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe [2014-9-30 968480]
R2 mitsijm2017;Autodesk Simulation Moldflow MITSI 2017 Job Manager;C:\Program Files\Autodesk\Inventor 2017\Moldflow\bin\mitsijm.exe [2015-8-4 967456]
R2 mitsijm2018;Autodesk Simulation Moldflow MITSI 2018 Job Manager;C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe [2016-9-25 967664]
R2 NIApplicationWebServer;NI Application Web Server;C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2012-5-22 53960]
R2 niLXIDiscovery;NI LXI Discovery Service;C:\Program Files (x86)\ivi foundation\visa\WinNT\NIvisa\niLxiDiscovery.exe [2012-11-7 236768]
R2 nimDNSResponder;NI mDNS Responder Service;C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2012-5-31 258776]
R2 NS;Norton Security;C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\ns.exe [2017-9-6 326144]
R2 NVWMI;NVIDIA WMI Provider;C:\Windows\System32\nvwmi64.exe [2015-10-13 3079800]
R2 Sage.CRE.PervasiveLicenseService;Sage Pervasive License Service;C:\Program Files (x86)\Timberline Office\Shared\Sage.CRE.PervasiveLicenseService.exe [2013-7-8 34608]
R2 Sage.LS1.ServiceHost;Sage Service Host (v13.1);C:\Program Files (x86)\Common Files\Sage\LS1\ServiceHost\Sage.LS1.ServiceHost.exe [2013-7-8 108848]
R2 SageInstMgrClient;Sage Installation Manager Client;C:\Program Files (x86)\Sage\SIM\Client\Sage.Sim.Client.WindowsService.exe [2013-7-8 17712]
R2 SDLService;SDLService;C:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe [2014-6-17 95264]
R2 Smart TimeLock;Smart TimeLock Service;C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe [2014-6-17 114688]
R2 SplashtopRemoteService;Splashtop® Remote Service;C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [2017-8-2 731648]
R2 SSUService;Splashtop Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2013-10-8 609056]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-10-13 417400]
R2 TrueKeyScheduler;Intel Security True Key Scheduler;C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-10-14 16928]
R2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-3-24 493384]
R2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-3-22 497480]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2017-7-11 158336]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\System32\drivers\LEqdUsb.sys [2015-6-17 87696]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\System32\drivers\LHidEqd.sys [2015-6-17 23184]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-11-18 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-11-18 181248]
R3 rtkio;rtkio;C:\Program Files (x86)\Realtek\Smart Dual Lan\rtkio.sys [2014-6-17 17392]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-6-17 412264]
S2 AcfXAudioService;AcfXAudioService;C:\Windows\System32\svchost.exe -k AcfXAudioService [2009-7-13 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-4-21 107656]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-4-21 128648]
S2 InstallerService;Service Installer TrueKey;C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 --> C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [?]
S2 TrueKey;Intel Security True Key;C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-7-12 1001920]
S3 acfva;acfva;C:\Windows\System32\drivers\ACFVA64.sys [2016-11-18 122624]
S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]
S3 dgcfltr;DGC Filter Driver;C:\Windows\System32\drivers\ACFDCP64.sys [2016-11-18 34944]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 etdrv;etdrv;C:\Windows\etdrv.sys [2014-6-17 25640]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2014-6-19 1591264]
S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2014-6-17 30528]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2017-9-12 116224]
S3 mi-raysat_3dsmax2015_64;mental ray Satellite for Autodesk 3ds Max Design 2015 64-bit;C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe [2011-9-15 86016]
S3 mi-raysat_3dsmax2016_64;mental ray Satellite for Autodesk 3ds Max 2016 64-bit;C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [2011-9-15 86016]
S3 nipalfwedl;nipalfwedl;C:\Windows\System32\drivers\nipalfwedl.sys [2012-12-19 13624]
S3 nipalusbedl;nipalusbedl;C:\Windows\System32\drivers\nipalusbedl.sys [2012-12-19 13624]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 ser2at;ATEN USB to Serial port driver;C:\Windows\System32\drivers\ser2at64.sys [2009-10-15 96256]
S3 ser2attr;Tripp Lite USB to Serial port;C:\Windows\System32\drivers\ser2attr64.sys [2009-11-16 96256]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper;C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-7-12 87760]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-6-18 1255736]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit);C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2012-5-22 76488]
.
=============== File Associations ===============
.
ShellExec: pi11.exe: Open="C:\Program Files (x86)\Microsoft Digital Image 2006\pi.exe" "%1"
.
=============== Created Last 30 ================
.
2017-10-05 23:16:32 -------- d--h--w- C:\OneDriveTemp
2017-10-03 18:45:45 -------- d-----w- C:\Windows\Microsoft Antimalware
2017-10-03 13:45:16 77440 ----a-w- C:\Windows\System32\drivers\mbae64.sys
2017-09-30 02:21:37 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-09-28 13:19:24 -------- d-----w- C:\Program Files\Malwarebytes
2017-09-28 13:15:52 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-09-28 13:09:51 112592 ----a-w- C:\Program Files (x86)\Mozilla Firefox\AccessibleHandler.dll
2017-09-28 13:09:49 55248 ----a-w- C:\Program Files (x86)\Mozilla Firefox\pingsender.exe
2017-09-13 00:25:59 880640 ----a-w- C:\Windows\System32\advapi32.dll
2017-09-08 10:54:34 448712 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\LICLUA.EXE
2017-09-08 10:53:08 28360 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\Office Setup Controller\pkeyconfig.companion.dll
2017-09-08 10:46:08 207048 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
2017-09-06 18:05:14 566912 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\symnets.sys
2017-09-06 18:05:13 810136 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\srtsp64.sys
2017-09-06 18:05:13 49304 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\srtspx64.sys
2017-09-06 18:05:13 301288 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\ironx64.sys
2017-09-06 18:05:13 24608 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\symelam.sys
2017-09-06 18:05:13 187520 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\ccsetx64.sys
2017-09-06 18:05:13 1868416 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\symefasi64.sys
2017-09-06 18:04:36 -------- d-----w- C:\Windows\System32\drivers\NSx64\160A010.00A
2017-09-06 14:03:29 -------- d-----w- C:\Users\Randy\AppData\Roaming\FileOpen
2017-09-06 14:03:22 -------- d-----w- C:\ProgramData\FileOpen
2017-09-06 14:03:20 -------- d-----w- C:\Program Files\FileOpen
2017-09-06 01:03:02 17407232 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSO.DLL
.
==================== Find3M ====================
.
2017-10-05 23:12:50 25640 ----a-w- C:\Windows\gdrv.sys
2017-09-14 22:55:21 15728682 ----a-w- C:\Windows\System32\net1.exe
2017-08-16 15:29:31 806912 ----a-w- C:\Windows\System32\usp10.dll
2017-08-16 15:10:30 629760 ----a-w- C:\Windows\SysWow64\usp10.dll
2017-08-16 14:57:58 3224576 ----a-w- C:\Windows\System32\win32k.sys
2017-08-15 15:29:34 1867264 ----a-w- C:\Windows\System32\ExplorerFrame.dll
2017-08-15 15:10:42 1499648 ----a-w- C:\Windows\SysWow64\ExplorerFrame.dll
2017-08-14 17:35:10 303104 ----a-w- C:\Windows\SysWow64\mmcbase.dll
2017-08-14 17:35:10 2150912 ----a-w- C:\Windows\SysWow64\mmcndmgr.dll
2017-08-14 17:35:10 128512 ----a-w- C:\Windows\SysWow64\mmcshext.dll
2017-08-14 17:35:06 172544 ----a-w- C:\Windows\SysWow64\cic.dll
2017-08-14 17:35:03 355328 ----a-w- C:\Windows\System32\mmcbase.dll
2017-08-14 17:35:03 3203584 ----a-w- C:\Windows\System32\mmcndmgr.dll
2017-08-14 17:35:03 131072 ----a-w- C:\Windows\System32\mmcshext.dll
2017-08-14 17:34:59 211968 ----a-w- C:\Windows\System32\cic.dll
2017-08-13 21:37:59 2144256 ----a-w- C:\Windows\System32\mmc.exe
2017-08-13 21:30:41 1401344 ----a-w- C:\Windows\SysWow64\mmc.exe
2017-08-13 17:24:23 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2017-08-13 17:24:07 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2017-08-13 17:06:46 66560 ----a-w- C:\Windows\System32\iesetup.dll
2017-08-13 17:05:51 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2017-08-13 17:05:42 417792 ----a-w- C:\Windows\System32\html.iec
2017-08-13 17:05:20 576512 ----a-w- C:\Windows\System32\vbscript.dll
2017-08-13 17:05:13 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
2017-08-13 16:51:21 5981696 ----a-w- C:\Windows\System32\jscript9.dll
2017-08-13 16:51:09 116224 ----a-w- C:\Windows\System32\ieetwcollector.exe
2017-08-13 16:51:07 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2017-08-13 16:50:39 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
2017-08-13 16:46:10 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2017-08-13 16:41:42 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2017-08-13 16:30:33 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
2017-08-13 16:29:56 499200 ----a-w- C:\Windows\SysWow64\vbscript.dll
2017-08-13 16:29:44 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2017-08-13 16:29:41 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2017-08-13 16:29:24 341504 ----a-w- C:\Windows\SysWow64\html.iec
2017-08-13 16:29:11 87552 ----a-w- C:\Windows\System32\tdc.ocx
2017-08-13 16:28:17 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2017-08-13 16:17:51 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2017-08-13 16:17:19 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2017-08-13 16:02:26 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2017-08-13 16:01:54 2134528 ----a-w- C:\Windows\System32\inetcpl.cpl
2017-08-13 16:01:46 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2017-08-13 16:01:15 73216 ----a-w- C:\Windows\SysWow64\tdc.ocx
2017-08-13 15:48:04 4547072 ----a-w- C:\Windows\SysWow64\jscript9.dll
2017-08-13 15:43:48 2058752 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2017-08-13 15:43:00 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2017-08-13 15:40:24 3241472 ----a-w- C:\Windows\System32\wininet.dll
2017-08-13 15:17:15 2767872 ----a-w- C:\Windows\SysWow64\wininet.dll
2017-08-11 06:42:11 631176 ----a-w- C:\Windows\System32\winresume.efi
2017-08-11 06:38:49 706792 ----a-w- C:\Windows\System32\winload.efi
2017-08-11 06:38:48 95464 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2017-08-11 06:38:48 5547752 ----a-w- C:\Windows\System32\ntoskrnl.exe
2017-08-11 06:38:48 154856 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2017-08-11 06:36:37 1732864 ----a-w- C:\Windows\System32\ntdll.dll
2017-08-11 06:34:58 60416 ----a-w- C:\Windows\System32\msobjs.dll
2017-08-11 06:24:04 4001000 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2017-08-11 06:24:04 3945704 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2017-08-11 06:21:22 1314112 ----a-w- C:\Windows\SysWow64\ntdll.dll
2017-08-11 06:20:50 71680 ----a-w- C:\Windows\System32\PrintBrmUi.exe
2017-08-11 06:20:32 48640 ----a-w- C:\Windows\System32\wpnpinst.exe
2017-08-11 06:20:29 61952 ----a-w- C:\Windows\System32\ntprint.exe
2017-08-11 06:12:12 25088 ----a-w- C:\Windows\System32\netbtugc.exe
2017-08-11 06:09:32 61952 ----a-w- C:\Windows\SysWow64\ntprint.exe
2017-08-11 06:07:27 148480 ----a-w- C:\Windows\System32\appidpolicyconverter.exe
2017-08-11 06:07:20 62464 ----a-w- C:\Windows\System32\drivers\appid.sys
2017-08-11 06:07:20 17920 ----a-w- C:\Windows\System32\appidcertstorecheck.exe
2017-08-11 06:06:40 64000 ----a-w- C:\Windows\System32\auditpol.exe
2017-08-11 06:03:40 338432 ----a-w- C:\Windows\System32\conhost.exe
2017-08-11 06:03:37 26624 ----a-w- C:\Windows\SysWow64\netbtugc.exe
2017-08-11 06:02:48 296960 ----a-w- C:\Windows\System32\rstrui.exe
2017-08-11 06:01:43 7168 ----a-w- C:\Windows\SysWow64\comcat.dll
2017-08-11 06:00:09 159744 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2017-08-11 06:00:01 50176 ----a-w- C:\Windows\SysWow64\auditpol.exe
2017-08-11 06:00:01 262656 ----a-w- C:\Windows\System32\drivers\netbt.sys
2017-08-11 05:59:55 460800 ----a-w- C:\Windows\System32\drivers\srv.sys
2017-08-11 05:59:48 405504 ----a-w- C:\Windows\System32\drivers\srv2.sys
2017-08-11 05:59:41 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2017-08-11 05:59:35 291328 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2017-08-11 05:59:32 129536 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2017-08-11 05:58:55 26112 ----a-w- C:\Windows\System32\drivers\nsiproxy.sys
2017-08-11 05:58:52 30720 ----a-w- C:\Windows\System32\lsass.exe
2017-08-11 05:58:48 112640 ----a-w- C:\Windows\System32\smss.exe
2017-08-11 05:56:33 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2017-08-11 05:56:31 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2017-08-11 05:56:31 2048 ----a-w- C:\Windows\SysWow64\user.exe
2017-08-11 05:56:31 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2017-08-11 05:55:46 36352 ----a-w- C:\Windows\SysWow64\cryptbase.dll
2017-08-11 05:55:39 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2017-08-11 05:55:39 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-11 05:55:39 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2017-08-11 05:55:39 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2017-07-29 14:56:30 117248 ----a-w- C:\Windows\System32\drivers\tdx.sys
2017-07-26 16:21:17 102568 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2017-07-21 14:26:31 282624 ----a-w- C:\Windows\SysWow64\mstext40.dll
2017-07-21 14:26:30 518144 ----a-w- C:\Windows\SysWow64\msjetoledb40.dll
2017-07-21 14:26:30 409600 ----a-w- C:\Windows\SysWow64\msexch40.dll
2017-07-21 14:26:30 290816 ----a-w- C:\Windows\SysWow64\msjtes40.dll
2017-07-20 03:21:02 440792 ----a-w- C:\Windows\System32\AcSignOpt.exe
2017-07-20 03:21:00 41944 ----a-w- C:\Windows\System32\AcSignExt.dll
2017-07-14 15:29:15 486400 ----a-w- C:\Windows\System32\wer.dll
.
============= FINISH: 19:44:11.10 ===============
I am getting extremely slow shut downs and restarts. I recently had an issue with explorer not wanting to start. That appeared to be an issue with Autodesk360, which I uninstalled, so that is now working.
Any help weeding out the bug would be appreciated.
Attached is attach.txt and sfcdetails.txt
Thank you,
Randy
DDS.TXT -
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.18792 BrowserJavaVersion: 11.31.2
Run by Randy at 19:41:40 on 2017-10-05
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.16362.8605 [GMT -4:00]
.
AV: Norton Security *Enabled/Updated* {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Security *Enabled/Updated* {8B15A0D7-38AE-74BB-CE13-B9D7D5768117}
FW: Norton Security *Enabled* {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\nvwmi64.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\nvwmi64.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Corsair\Corsair Link\CorsairLINK_HardwareMonitor.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Program Files\FileOpen\Services\FileOpenManager64.exe
C:\Windows\system32\hasplms.exe
C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\system32\hasplmv.exe
C:\Windows\SysWOW64\lkads.exe
C:\Windows\SysWOW64\lktsrv.exe
C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe
C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe
C:\Program Files\Autodesk\Inventor 2017\Moldflow\bin\mitsijm.exe
C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
C:\Program Files\NVIDIA Corporation\nview\nViewMain64.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\NS.exe
C:\Program Files\NVIDIA Corporation\nview\nViewMain.exe
C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
C:\Users\Randy\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Randy\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Randy\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Timberline Office\Shared\Sage.CRE.PervasiveLicenseService.exe
C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\NS.exe
C:\Program Files (x86)\Pervasive Software\PSQL\bin\notifyviewer.exe
C:\Program Files (x86)\Sage\SIM\Client\Sage.Sim.Client.WindowsService.exe
C:\Program Files\ShareSync\Tray\ShareSyncTray.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
C:\Program Files\Autodesk\Autodesk SketchBook Pro 2015\SketchBookSnapshot.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files (x86)\Pervasive Software\PSQL\bin\w3dbsmgr.exe
C:\Program Files (x86)\Sage\SIM\Client\SimNotify.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe
C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe
C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files\TrueKey\McTkSchedulerService.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
C:\Program Files (x86)\Common Files\Sage\LS1\ServiceHost\Sage.LS1.ServiceHost.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\sysWOW64\wbem\wmiprvse.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\net.exe
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\prevhost.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\net.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe,
BHO: True Key Helper: {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
BHO: Norton Identity Safety: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine32\22.10.1.10\coieplg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.10.1.10\coieplg.dll
TB: True Key: {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
uRun: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
uRun: [HP Officejet Pro 8600 (NET)] "C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN2A9BWH2705KD:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1
uRun: [Akamai NetSession Interface] "C:\Users\Randy\AppData\Local\Akamai\netsession_win.exe"
uRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
uRun: [OneDrive] "C:\Users\Randy\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
mRun: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
mRun: [ZyngaGamesAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
mRun: [SimNotify.exe] C:\Program Files (x86)\Sage\SIM\Client\SimNotify.exe
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun: [ADSK DLMSession] C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
mRun: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
StartupFolder: C:\Users\Randy\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SENDTO~1.LNK - C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\RUNNOT~1.LNK - C:\Windows\Installer\{0A3238D7-AB32-1130-B717-F3E3F18B4A8C}\ico_notifyviewer.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SHARES~1.LNK - C:\Program Files\ShareSync\Tray\ShareSyncTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SKETCH~1.LNK - C:\Program Files\Autodesk\Autodesk SketchBook Pro 2015\SketchBookSnapshot.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\STARTP~1.LNK - C:\Windows\Installer\{0A3238D7-AB32-1130-B717-F3E3F18B4A8C}\ico_w3dbsmgr.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer = 10.100.100.200
TCP: Interfaces\{6026CFA6-A22A-429E-9EE0-E7E254AD1D9D} : DHCPNameServer = 10.100.100.200
TCP: Interfaces\{9B682F1B-8848-4BDD-8BFF-BE409C3EC4B6} : DHCPNameServer = 75.75.75.75 75.75.76.76
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
SSODL: WebCheck - <orphaned>
LSA: Notification Packages = scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-BHO: True Key Helper: {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-BHO: GBHO.BHO: {45d30484-7ded-43d9-957a-d2fd1f046511} -
x64-BHO: Norton Identity Safety: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\coieplg.dll
x64-BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL
x64-BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL
x64-TB: Smart Recovery 2: {1d09c093-f71e-43c3-b948-19316cbd695e} -
x64-TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\coieplg.dll
x64-TB: True Key: {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Logitech Download Assistant] C:\Windows\System32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
x64-Run: [nwiz] "C:\Program Files\NVIDIA Corporation\nview\nwiz.exe" /installquiet
x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
x64-Run: [CnxtCoInstallerDefer] C:\Program Files\CONEXANT\PREINSTALL\SETUP582EFB190\SETUP64.EXE -REBOOTED_FROM_NO_ENUM_INSTALL_METHOD=1 -S
x64-Run: [FileOpenBroker] C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
x64-Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - <orphaned>
x64-Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - <orphaned>
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {28B89EEF-1007-0000-7102-CF3F3A09B77D} - msiexec /fus {28B89EEF-1007-0000-7102-CF3F3A09B77D}
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-mASetup: {AD99243B-F007-0000-B1CC-22A4DDD4B96F} - msiexec /fus {AD99243B-F007-0000-B1CC-22A4DDD4B96F}
x64-mASetup: {CD301C75-E007-0409-8A4F-E62AF995F11C} - msiexec /fus {CD301C75-E007-0409-8A4F-E62AF995F11C}
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Randy\AppData\Roaming\Mozilla\Firefox\Profiles\y6iuiy1g.default\
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Users\Randy\AppData\Roaming\Mozilla\plugins\npatgpc.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll
.
============= SERVICES / DRIVERS ===============
.
R0 nipbcfk;National Instruments Class Upper Filter Driver;C:\Windows\System32\drivers\nipbcfk.sys [2012-12-18 16984]
R0 SymEFASI;Symantec Extended File Attributes (SI);C:\Windows\System32\drivers\NSx64\160A010.00A\symefasi64.sys [2017-9-6 1868416]
R1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2014-6-17 21104]
R1 BHDrvx64;BHDrvx64;C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\BASHDefs\20171004.001\BHDrvx64.sys [2017-10-5 1872032]
R1 ccSet_NS;NS Settings Manager;C:\Windows\System32\drivers\NSx64\160A010.00A\ccsetx64.sys [2017-9-6 187520]
R1 IDSVia64;IDSVia64;C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\IPSDefs\20171004.001\IDSvia64.sys [2017-10-4 1056920]
R1 SymIRON;Symantec Iron Driver;C:\Windows\System32\drivers\NSx64\160A010.00A\ironx64.sys [2017-9-6 301288]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\System32\drivers\NSx64\160A010.00A\symnets.sys [2017-9-6 566912]
R2 AdAppMgrSvc;Autodesk Desktop App Service;C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2017-4-24 1353208]
R2 aksdf;aksdf;C:\Windows\System32\drivers\aksdf.sys [2016-11-16 390472]
R2 Autodesk Content Service;Autodesk Content Service;C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2014-2-7 31192]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service;C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-4-6 4122824]
R2 DES2 Service;DES2 Service for Energy Saving.;C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2014-6-17 68136]
R2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
R2 FileOpenManager;FileOpen Manager;C:\Program Files\FileOpen\Services\FileOpenManager64.exe [2017-9-6 363176]
R2 hasplms;Sentinel LDK License Manager;C:\Windows\System32\hasplms.exe -run --> C:\Windows\System32\hasplms.exe -run [?]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-5-21 49464]
R2 mitsijm2015;Autodesk Simulation Moldflow MITSI 2015 Job Manager;C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [2013-10-11 968480]
R2 mitsijm2016;Autodesk Simulation Moldflow MITSI 2016 Job Manager;C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe [2014-9-30 968480]
R2 mitsijm2017;Autodesk Simulation Moldflow MITSI 2017 Job Manager;C:\Program Files\Autodesk\Inventor 2017\Moldflow\bin\mitsijm.exe [2015-8-4 967456]
R2 mitsijm2018;Autodesk Simulation Moldflow MITSI 2018 Job Manager;C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe [2016-9-25 967664]
R2 NIApplicationWebServer;NI Application Web Server;C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2012-5-22 53960]
R2 niLXIDiscovery;NI LXI Discovery Service;C:\Program Files (x86)\ivi foundation\visa\WinNT\NIvisa\niLxiDiscovery.exe [2012-11-7 236768]
R2 nimDNSResponder;NI mDNS Responder Service;C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2012-5-31 258776]
R2 NS;Norton Security;C:\Program Files (x86)\Norton Security\Engine\22.10.1.10\ns.exe [2017-9-6 326144]
R2 NVWMI;NVIDIA WMI Provider;C:\Windows\System32\nvwmi64.exe [2015-10-13 3079800]
R2 Sage.CRE.PervasiveLicenseService;Sage Pervasive License Service;C:\Program Files (x86)\Timberline Office\Shared\Sage.CRE.PervasiveLicenseService.exe [2013-7-8 34608]
R2 Sage.LS1.ServiceHost;Sage Service Host (v13.1);C:\Program Files (x86)\Common Files\Sage\LS1\ServiceHost\Sage.LS1.ServiceHost.exe [2013-7-8 108848]
R2 SageInstMgrClient;Sage Installation Manager Client;C:\Program Files (x86)\Sage\SIM\Client\Sage.Sim.Client.WindowsService.exe [2013-7-8 17712]
R2 SDLService;SDLService;C:\Program Files (x86)\Realtek\Smart Dual Lan\SDLService.exe [2014-6-17 95264]
R2 Smart TimeLock;Smart TimeLock Service;C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe [2014-6-17 114688]
R2 SplashtopRemoteService;Splashtop® Remote Service;C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [2017-8-2 731648]
R2 SSUService;Splashtop Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [2013-10-8 609056]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-10-13 417400]
R2 TrueKeyScheduler;Intel Security True Key Scheduler;C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-10-14 16928]
R2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-3-24 493384]
R2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-3-22 497480]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2017-7-11 158336]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\System32\drivers\LEqdUsb.sys [2015-6-17 87696]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\System32\drivers\LHidEqd.sys [2015-6-17 23184]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-11-18 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-11-18 181248]
R3 rtkio;rtkio;C:\Program Files (x86)\Realtek\Smart Dual Lan\rtkio.sys [2014-6-17 17392]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-6-17 412264]
S2 AcfXAudioService;AcfXAudioService;C:\Windows\System32\svchost.exe -k AcfXAudioService [2009-7-13 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-4-21 107656]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-4-21 128648]
S2 InstallerService;Service Installer TrueKey;C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 --> C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [?]
S2 TrueKey;Intel Security True Key;C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2017-7-12 1001920]
S3 acfva;acfva;C:\Windows\System32\drivers\ACFVA64.sys [2016-11-18 122624]
S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?]
S3 dgcfltr;DGC Filter Driver;C:\Windows\System32\drivers\ACFDCP64.sys [2016-11-18 34944]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 etdrv;etdrv;C:\Windows\etdrv.sys [2014-6-17 25640]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2014-6-19 1591264]
S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2014-6-17 30528]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2017-9-12 116224]
S3 mi-raysat_3dsmax2015_64;mental ray Satellite for Autodesk 3ds Max Design 2015 64-bit;C:\Program Files\Autodesk\3ds Max Design 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe [2011-9-15 86016]
S3 mi-raysat_3dsmax2016_64;mental ray Satellite for Autodesk 3ds Max 2016 64-bit;C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [2011-9-15 86016]
S3 nipalfwedl;nipalfwedl;C:\Windows\System32\drivers\nipalfwedl.sys [2012-12-19 13624]
S3 nipalusbedl;nipalusbedl;C:\Windows\System32\drivers\nipalusbedl.sys [2012-12-19 13624]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 ser2at;ATEN USB to Serial port driver;C:\Windows\System32\drivers\ser2at64.sys [2009-10-15 96256]
S3 ser2attr;Tripp Lite USB to Serial port;C:\Windows\System32\drivers\ser2attr64.sys [2009-11-16 96256]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper;C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2017-7-12 87760]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-6-18 1255736]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit);C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2012-5-22 76488]
.
=============== File Associations ===============
.
ShellExec: pi11.exe: Open="C:\Program Files (x86)\Microsoft Digital Image 2006\pi.exe" "%1"
.
=============== Created Last 30 ================
.
2017-10-05 23:16:32 -------- d--h--w- C:\OneDriveTemp
2017-10-03 18:45:45 -------- d-----w- C:\Windows\Microsoft Antimalware
2017-10-03 13:45:16 77440 ----a-w- C:\Windows\System32\drivers\mbae64.sys
2017-09-30 02:21:37 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-09-28 13:19:24 -------- d-----w- C:\Program Files\Malwarebytes
2017-09-28 13:15:52 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-09-28 13:09:51 112592 ----a-w- C:\Program Files (x86)\Mozilla Firefox\AccessibleHandler.dll
2017-09-28 13:09:49 55248 ----a-w- C:\Program Files (x86)\Mozilla Firefox\pingsender.exe
2017-09-13 00:25:59 880640 ----a-w- C:\Windows\System32\advapi32.dll
2017-09-08 10:54:34 448712 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\LICLUA.EXE
2017-09-08 10:53:08 28360 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\Office Setup Controller\pkeyconfig.companion.dll
2017-09-08 10:46:08 207048 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
2017-09-06 18:05:14 566912 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\symnets.sys
2017-09-06 18:05:13 810136 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\srtsp64.sys
2017-09-06 18:05:13 49304 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\srtspx64.sys
2017-09-06 18:05:13 301288 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\ironx64.sys
2017-09-06 18:05:13 24608 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\symelam.sys
2017-09-06 18:05:13 187520 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\ccsetx64.sys
2017-09-06 18:05:13 1868416 ----a-w- C:\Windows\System32\drivers\NSx64\160A010.00A\symefasi64.sys
2017-09-06 18:04:36 -------- d-----w- C:\Windows\System32\drivers\NSx64\160A010.00A
2017-09-06 14:03:29 -------- d-----w- C:\Users\Randy\AppData\Roaming\FileOpen
2017-09-06 14:03:22 -------- d-----w- C:\ProgramData\FileOpen
2017-09-06 14:03:20 -------- d-----w- C:\Program Files\FileOpen
2017-09-06 01:03:02 17407232 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSO.DLL
.
==================== Find3M ====================
.
2017-10-05 23:12:50 25640 ----a-w- C:\Windows\gdrv.sys
2017-09-14 22:55:21 15728682 ----a-w- C:\Windows\System32\net1.exe
2017-08-16 15:29:31 806912 ----a-w- C:\Windows\System32\usp10.dll
2017-08-16 15:10:30 629760 ----a-w- C:\Windows\SysWow64\usp10.dll
2017-08-16 14:57:58 3224576 ----a-w- C:\Windows\System32\win32k.sys
2017-08-15 15:29:34 1867264 ----a-w- C:\Windows\System32\ExplorerFrame.dll
2017-08-15 15:10:42 1499648 ----a-w- C:\Windows\SysWow64\ExplorerFrame.dll
2017-08-14 17:35:10 303104 ----a-w- C:\Windows\SysWow64\mmcbase.dll
2017-08-14 17:35:10 2150912 ----a-w- C:\Windows\SysWow64\mmcndmgr.dll
2017-08-14 17:35:10 128512 ----a-w- C:\Windows\SysWow64\mmcshext.dll
2017-08-14 17:35:06 172544 ----a-w- C:\Windows\SysWow64\cic.dll
2017-08-14 17:35:03 355328 ----a-w- C:\Windows\System32\mmcbase.dll
2017-08-14 17:35:03 3203584 ----a-w- C:\Windows\System32\mmcndmgr.dll
2017-08-14 17:35:03 131072 ----a-w- C:\Windows\System32\mmcshext.dll
2017-08-14 17:34:59 211968 ----a-w- C:\Windows\System32\cic.dll
2017-08-13 21:37:59 2144256 ----a-w- C:\Windows\System32\mmc.exe
2017-08-13 21:30:41 1401344 ----a-w- C:\Windows\SysWow64\mmc.exe
2017-08-13 17:24:23 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2017-08-13 17:24:07 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2017-08-13 17:06:46 66560 ----a-w- C:\Windows\System32\iesetup.dll
2017-08-13 17:05:51 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2017-08-13 17:05:42 417792 ----a-w- C:\Windows\System32\html.iec
2017-08-13 17:05:20 576512 ----a-w- C:\Windows\System32\vbscript.dll
2017-08-13 17:05:13 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
2017-08-13 16:51:21 5981696 ----a-w- C:\Windows\System32\jscript9.dll
2017-08-13 16:51:09 116224 ----a-w- C:\Windows\System32\ieetwcollector.exe
2017-08-13 16:51:07 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2017-08-13 16:50:39 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
2017-08-13 16:46:10 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2017-08-13 16:41:42 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2017-08-13 16:30:33 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
2017-08-13 16:29:56 499200 ----a-w- C:\Windows\SysWow64\vbscript.dll
2017-08-13 16:29:44 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2017-08-13 16:29:41 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2017-08-13 16:29:24 341504 ----a-w- C:\Windows\SysWow64\html.iec
2017-08-13 16:29:11 87552 ----a-w- C:\Windows\System32\tdc.ocx
2017-08-13 16:28:17 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2017-08-13 16:17:51 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2017-08-13 16:17:19 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2017-08-13 16:02:26 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2017-08-13 16:01:54 2134528 ----a-w- C:\Windows\System32\inetcpl.cpl
2017-08-13 16:01:46 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2017-08-13 16:01:15 73216 ----a-w- C:\Windows\SysWow64\tdc.ocx
2017-08-13 15:48:04 4547072 ----a-w- C:\Windows\SysWow64\jscript9.dll
2017-08-13 15:43:48 2058752 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2017-08-13 15:43:00 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2017-08-13 15:40:24 3241472 ----a-w- C:\Windows\System32\wininet.dll
2017-08-13 15:17:15 2767872 ----a-w- C:\Windows\SysWow64\wininet.dll
2017-08-11 06:42:11 631176 ----a-w- C:\Windows\System32\winresume.efi
2017-08-11 06:38:49 706792 ----a-w- C:\Windows\System32\winload.efi
2017-08-11 06:38:48 95464 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2017-08-11 06:38:48 5547752 ----a-w- C:\Windows\System32\ntoskrnl.exe
2017-08-11 06:38:48 154856 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2017-08-11 06:36:37 1732864 ----a-w- C:\Windows\System32\ntdll.dll
2017-08-11 06:34:58 60416 ----a-w- C:\Windows\System32\msobjs.dll
2017-08-11 06:24:04 4001000 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2017-08-11 06:24:04 3945704 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2017-08-11 06:21:22 1314112 ----a-w- C:\Windows\SysWow64\ntdll.dll
2017-08-11 06:20:50 71680 ----a-w- C:\Windows\System32\PrintBrmUi.exe
2017-08-11 06:20:32 48640 ----a-w- C:\Windows\System32\wpnpinst.exe
2017-08-11 06:20:29 61952 ----a-w- C:\Windows\System32\ntprint.exe
2017-08-11 06:12:12 25088 ----a-w- C:\Windows\System32\netbtugc.exe
2017-08-11 06:09:32 61952 ----a-w- C:\Windows\SysWow64\ntprint.exe
2017-08-11 06:07:27 148480 ----a-w- C:\Windows\System32\appidpolicyconverter.exe
2017-08-11 06:07:20 62464 ----a-w- C:\Windows\System32\drivers\appid.sys
2017-08-11 06:07:20 17920 ----a-w- C:\Windows\System32\appidcertstorecheck.exe
2017-08-11 06:06:40 64000 ----a-w- C:\Windows\System32\auditpol.exe
2017-08-11 06:03:40 338432 ----a-w- C:\Windows\System32\conhost.exe
2017-08-11 06:03:37 26624 ----a-w- C:\Windows\SysWow64\netbtugc.exe
2017-08-11 06:02:48 296960 ----a-w- C:\Windows\System32\rstrui.exe
2017-08-11 06:01:43 7168 ----a-w- C:\Windows\SysWow64\comcat.dll
2017-08-11 06:00:09 159744 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2017-08-11 06:00:01 50176 ----a-w- C:\Windows\SysWow64\auditpol.exe
2017-08-11 06:00:01 262656 ----a-w- C:\Windows\System32\drivers\netbt.sys
2017-08-11 05:59:55 460800 ----a-w- C:\Windows\System32\drivers\srv.sys
2017-08-11 05:59:48 405504 ----a-w- C:\Windows\System32\drivers\srv2.sys
2017-08-11 05:59:41 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2017-08-11 05:59:35 291328 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2017-08-11 05:59:32 129536 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2017-08-11 05:58:55 26112 ----a-w- C:\Windows\System32\drivers\nsiproxy.sys
2017-08-11 05:58:52 30720 ----a-w- C:\Windows\System32\lsass.exe
2017-08-11 05:58:48 112640 ----a-w- C:\Windows\System32\smss.exe
2017-08-11 05:56:33 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2017-08-11 05:56:31 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2017-08-11 05:56:31 2048 ----a-w- C:\Windows\SysWow64\user.exe
2017-08-11 05:56:31 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2017-08-11 05:55:46 36352 ----a-w- C:\Windows\SysWow64\cryptbase.dll
2017-08-11 05:55:39 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2017-08-11 05:55:39 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-11 05:55:39 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2017-08-11 05:55:39 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2017-07-29 14:56:30 117248 ----a-w- C:\Windows\System32\drivers\tdx.sys
2017-07-26 16:21:17 102568 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2017-07-21 14:26:31 282624 ----a-w- C:\Windows\SysWow64\mstext40.dll
2017-07-21 14:26:30 518144 ----a-w- C:\Windows\SysWow64\msjetoledb40.dll
2017-07-21 14:26:30 409600 ----a-w- C:\Windows\SysWow64\msexch40.dll
2017-07-21 14:26:30 290816 ----a-w- C:\Windows\SysWow64\msjtes40.dll
2017-07-20 03:21:02 440792 ----a-w- C:\Windows\System32\AcSignOpt.exe
2017-07-20 03:21:00 41944 ----a-w- C:\Windows\System32\AcSignExt.dll
2017-07-14 15:29:15 486400 ----a-w- C:\Windows\System32\wer.dll
.
============= FINISH: 19:44:11.10 ===============