Home News Intermittent audio drops, freezing, and video driver crashes

Intermittent audio drops, freezing, and video driver crashes

46
0

For the past 1-2 weeks I’ve had this issue arise on three different computers in my household.  All are running Win 7 Pro x64.  While gaming, the audio will periodically drop out.  This is sometimes accompanied by the program freezing.  File operations involving Windows File Explorer also freeze, e.g. saving an image from Firefox, then after a few seconds they will continue.  Sometimes the freezes are accompanied by the screen going black for a bit, then the display will come back and Windows displays a message that the video driver stopped working, but has recovered.

 

I have tried updating the video drivers, but this hasn’t helped.  I have also tried keeping the Task Manager open so that when it freezes I can try to see what process was using CPU at that time.  Eventually I became suspicious of audiodg.exe, as it seemed to be constantly using a small amount of CPU (~4%), and after some research I decided to upgrade the Realtek audio drivers from the manufacturer’s website.  All three of the machines having issues have Realtek audio.  The newest drivers I could find online were the 2.82 release from 2017, but they were newer than what I had so I installed them.  The improvement was amazing.  Not only did the issue seem to go away, but the computer booted and ran so much faster!  I was convinced I had figured it out, and did the same to the other two machines.

 

As of this evening, the audio skipping is back.  I’m concerned that some malware might have hijacked the old audio drivers and left something on my computers.  Any help will be appreciated.  These logs are, obviously, from only one of the three affected computers.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Ran by Kevin (administrator) on KEVIN-PC (Gigabyte Technology Co., Ltd. Z170XP-SLI) (03-05-2020 23:03:39)
Running from C:UsersKevinDownloads
Loaded Profiles: Kevin (Available Profiles: Kevin)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonElevationManagerAdobeUpdateService.exe
(Apple Inc. -> Apple Inc.) C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:Program FilesiPodbiniPodService.exe
(Apple Inc. -> Apple Inc.) C:Program FilesiTunesiTunesHelper.exe
(Autodesk, Inc -> Autodesk Inc.) C:Program Files (x86)Common FilesAutodesk SharedAppManagerR1AdAppMgrSvc.exe
(Autodesk, Inc -> Autodesk, Inc.) C:Program Files (x86)AutodeskContent ServiceConnect.Service.ContentService.exe
(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCtrlCntr.exe
(Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.) C:Program FilesCommon FilesFuture Systems SolutionsServicesCASPERSVCS.EXE
(GOG Sp. z o.o. -> GOG.com) C:Program Files (x86)GOG GalaxyGalaxyClient Helper.exe <2>
(GOG Sp. z o.o. -> GOG.com) C:Program Files (x86)GOG GalaxyGalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:Program Files (x86)GOG GalaxyGOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:ProgramDataGOG.comGalaxyredistsGalaxyCommunication.exe
(IDRIX -> IDRIX) C:Program FilesVeraCryptVeraCrypt.exe
(Intel Corporation – Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:Program Files (x86)IntelIntel® Management Engine ComponentsLMSLMS.exe
(Intel® Driver & Support Assistant -> Intel) C:Program Files (x86)Intel Driver and Support AssistantDSAService.exe
(Intel® Driver & Support Assistant -> Intel) C:Program Files (x86)Intel Driver and Support AssistantDSATray.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:Program Files (x86)IntelIntel® Management Engine ComponentsDALjhi_service.exe
(Intel® Network Platform Group -> Intel Corporation) C:WindowsSystem32IPROSetMonitor.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorDataMgrSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorIcon.exe
(Intel® USB eXtensible Host Controller Drivers -> Intel Corporation) C:Program Files (x86)IntelIntel® USB 3.0 3.1 eXtensible Host Controller DriverApplicationiusb3mon.exe
(Intuit, Inc. -> Intuit Inc.) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32taskmgr.exe
(Mozilla Corporation -> Mozilla Corporation) C:Program FilesMozilla Firefoxfirefox.exe <8>
(NVIDIA Corporation -> Node.js) C:Program Files (x86)NVIDIA CorporationNvNodeNVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationDisplay.NvContainerNVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe <3>
(Realtek Semiconductor Corp -> ) C:WindowsrunSW.exe
(Realtek Semiconductor Corp -> Realtek) C:WindowsSwUSB.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:Program FilesSamsungUSB Drivers27_ssconnconnss_conn_service.exe
(Schäuffelhut Berger GmbH -> ) C:Program Files (x86)VPNetwork LLCTorGuardTorGuardDesktopQt.exe
(Schäuffelhut Berger GmbH -> The OpenVPN Project) C:Program Files (x86)VPNetwork LLCTorGuardopenvpn_v2_4.exe
(Valve -> Valve Corporation) C:Program Files (x86)Common FilesSteamSteamService.exe
(Valve -> Valve Corporation) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:Program Files (x86)Steamsteam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [IAStorIcon] => C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorIcon.exe [321096 2017-03-29] (Intel® Rapid Storage Technology -> Intel Corporation)
HKLM…Run: [Logitech Download Assistant] => C:WindowsSystem32LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM…Run: [AdobeGCInvoker-1.0] => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [2872400 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM…Run: [iTunesHelper] => C:Program FilesiTunesiTunesHelper.exe [302904 2020-01-16] (Apple Inc. -> Apple Inc.)
HKLM…Run: [RTHDVCPL] => C:Program FilesRealtekAudioHDARtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32…Run: [USB3MON] => C:Program Files (x86)IntelIntel® USB 3.0 3.1 eXtensible Host Controller DriverApplicationiusb3mon.exe [299504 2016-08-17] (Intel® USB eXtensible Host Controller Drivers -> Intel Corporation)
HKLM-x32…Run: [DSATray] => C:Program Files (x86)Intel Driver and Support AssistantDsaTray.exe [131360 2017-12-05] (Intel® Driver & Support Assistant -> Intel)
HKLM-x32…Run: [ControlCenter4] => C:Program Files (x86)ControlCenter4BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.) [File not signed]
HKLM-x32…Run: [BrStsMon00] => C:Program Files (x86)Browny02BrotherBrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32…Run: [SunJavaUpdateSched] => C:Program Files (x86)Common FilesJavaJava Updatejusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32…Run: [ADSKAppManager] => C:Program Files (x86)Common FilesAutodesk SharedAppManagerR1AdAppMgr.exe [529480 2016-02-23] (Autodesk, Inc -> Autodesk Inc.)
HKLM-x32…Run: [TeamsMachineUninstallerLocalAppData] => C:UsersKevinAppDataLocalMicrosoftTeamsUpdate.exe [2324624 2020-02-19] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32…Run: [TeamsMachineUninstallerProgramData] => %ProgramData%MicrosoftTeamsUpdate.exe –uninstall –msiUninstall –source=default
HKLM…PoliciesExplorer: [NoStrCmpLogical] 1
HKUS-1-5-21-4250991329-2939192951-560751505-1000…Run: [Steam] => C:Program Files (x86)Steamsteam.exe [3372832 2020-04-27] (Valve -> Valve Corporation)
HKUS-1-5-21-4250991329-2939192951-560751505-1000…Run: [Akamai NetSession Interface] => “C:UsersKevinAppDataLocalAkamainetsession_win.exe”
HKUS-1-5-21-4250991329-2939192951-560751505-1000…Run: [AdobeBridge] => [X]
HKUS-1-5-21-4250991329-2939192951-560751505-1000…Run: [Autodesk Sync] => C:Program FilesAutodeskAutodesk SyncAdSync.exe [1193352 2014-02-08] (Autodesk, Inc -> Autodesk, Inc.)
HKUS-1-5-21-4250991329-2939192951-560751505-1000…Run: [GalaxyClient] => [X]
HKUS-1-5-21-4250991329-2939192951-560751505-1000…PoliciesExplorer: []
HKUS-1-5-21-4250991329-2939192951-560751505-1000…MountPoints2: 0cba1e47-def4-11e7-8cbd-806e6f6e6963 – D:Autorun.exe
HKUS-1-5-18…Run: [Autodesk Sync] => C:Program FilesAutodeskAutodesk SyncAdSync.exe [1193352 2014-02-08] (Autodesk, Inc -> Autodesk, Inc.)
HKUS-1-5-18…RunOnce: [SPReview] => “C:WindowsSystem32SPReviewSPReview.exe” /sp:1 /errorfwlink:”hxxp://go.microsoft.com/fwlink/?LinkID=122915″ /build:7601
HKLMSoftwareMicrosoftActive SetupInstalled Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C:Program Files (x86)GoogleChromeApplication81.0.4044.129Installerchrmstp.exe [2020-04-27] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: 1216E3C4-25CC-4CB9-95AB-834905E6CB67 – System32TasksFuture Systems SolutionsCasperMy Data Disk Backup => C:Program FilesFuture Systems SolutionsCasper 8.0CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
Task: 1FDA4070-9F70-4FCE-A63D-67630E40B239 – System32TasksNvTmRep_CrashReport3_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: 32AF0A8C-B56A-4BCD-BB0A-FDF82A32A1E3 – System32TasksNvTmRep_CrashReport2_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: 34E12A00-3C9C-4381-B429-4FEF153F99C8 – System32TasksNvNodeLauncher_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: 38617970-3A85-49EE-B698-77213F22AB41 – System32TasksOneDrive Standalone Update Task-S-1-5-21-4250991329-2939192951-560751505-1000 => C:UsersKevinAppDataLocalMicrosoftOneDriveOneDriveStandaloneUpdater.exe
Task: 4252F24D-1930-4C85-9792-2474EF320E12 – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [27369352 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: 4EEEE60E-C423-4CE4-AEF3-69E8BA4441B9 – System32TasksIntel PTT EK Recertification => C:Program FilesInteliCLS ClientIntelPTTEKRecertification.exe [543536 2016-10-13] (Intel® Trust Services -> Intel® Corporation)
Task: 51A50C2F-6402-4B8D-80F2-B4D17CA72B50 – System32TasksFuture Systems SolutionsCasperCasper 8.0 Update Notification Task => C:Program FilesFuture Systems SolutionsCasper 8.0CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
Task: 5C95344F-801E-47D3-BC3A-B4B87594C7D3 – System32TasksNvBatteryBoostCheckOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: 5FBE4B24-FF47-45CE-8FA1-FEE937BA746B – System32TasksNvTmRep_CrashReport4_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: 6047A701-E6FA-432C-8E6D-9C4952183FD6 – System32TasksMicrosoftOfficeOffice Subscription Maintenance => C:Program Files (x86)Microsoft OfficerootvfsProgramFilesCommonx86Microsoft SharedOffice16OLicenseHeartbeat.exe [1571624 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: 697DE98C-A630-464E-838F-4C004C9617EC – System32TasksNvProfileUpdaterDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: 78125752-D932-4EBE-B3C7-038F6BA72ECC – System32Taskswufuc.72EEE38B-9997-42BD-85D3-2DD96DA17307 => C:Windowssystem32rundll32.exe “C:Program Fileswufucwufuc.dll”,Rundll32Entry
Task: 7ADB205E-D4DD-48A8-A2CC-D4564201F4A8 – System32TasksIntelIntel Telemetry 2 => C:Program FilesIntelTelemetry 2.0lrio.exe [1741576 2016-03-17] (Intel® Software -> Intel Corporation)
Task: 7D18C5FB-079B-46C9-8A8E-895E646E33A2 – System32TasksNvDriverUpdateCheckDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: 882C5E44-CC3D-4A25-9350-F38DCC2FA435 – System32TasksBlueStacksHelper => C:ProgramDataBlueStacksClientHelperBlueStacksHelper.exe
Task: 8E48650A-A6AB-4EBB-B8AB-191B69E8773A – System32TasksUSER_ESRV_SVC_QUEENCREEK => “C:WindowsSystem32Wscript.exe” //B //NoLogo “C:Program FilesIntelSURQUEENCREEKtask.vbs”
Task: 956AD40D-3489-4E70-964C-29BCB7A8103B – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2018-10-05] (Google Inc -> Google Inc.)
Task: 957FF134-71B6-4CA7-BE5E-A6C8C6F91074 – System32TasksTorGuard Autostart => C:Program Files (x86)VPNetwork LLCTorGuardTorGuardDesktopQt.exe [2582424 2020-01-05] (Schäuffelhut Berger GmbH -> )
Task: 99E8A24A-F2CE-4287-9C84-76DE06682553 – System32TasksMicrosoftOfficeOfficeTelemetryAgentFallBack2016 => C:Program Files (x86)Microsoft OfficerootOffice16msoia.exe [4460968 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: AAF01C3E-2B5A-47C3-8639-DD9ABBE035BA – System32TasksMicrosoftOfficeOfficeBackgroundTaskHandlerLogon => C:Program Files (x86)Microsoft OfficerootOffice16officebackgroundtaskhandler.exe [1421736 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: AF5A9331-FEC3-4C2B-A1A8-9C303AF2114A – System32TasksMicrosoftOfficeOfficeTelemetryAgentLogOn2016 => C:Program Files (x86)Microsoft OfficerootOffice16msoia.exe [4460968 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: B107F265-1E2E-4327-8970-2691108647DE – System32TasksMozillaFirefox Default Browser Agent 308046B0AF4A39CB => C:Program FilesMozilla Firefoxdefault-browser-agent.exe [126152 2020-04-21] (Mozilla Corporation -> Mozilla Foundation)
Task: B4EF5BA4-E057-465C-B6DE-83B010378E6F – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program Files (x86)Microsoft OfficerootVFSProgramFilesCommonX86Microsoft SharedOffice16sdxhelper.exe [110416 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: B781CB09-30D8-4939-8237-3B054CA93331 – System32TasksMicrosoftOfficeOffice Feature Updates Logon => C:Program Files (x86)Microsoft OfficerootVFSProgramFilesCommonX86Microsoft SharedOffice16sdxhelper.exe [110416 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: BA17D1A8-83A3-40AD-9677-CED8889E1431 – System32TasksNVIDIA GeForce Experience SelfUpdate_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Experience.exe [3293168 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: BAB91D1E-6843-4922-AC5F-CDCC9A31AEB5 – System32TasksAdobe Flash Player NPAPI Notifier => C:WindowsSysWOW64MacromedFlashFlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-19] (Adobe Inc. -> Adobe)
Task: C0F5BEF1-66B0-4612-91E7-347DC06D2D57 – System32TasksMicrosoftOfficeOfficeBackgroundTaskHandlerRegistration => C:Program Files (x86)Microsoft OfficerootOffice16officebackgroundtaskhandler.exe [1421736 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: C1BE9F32-08B2-4948-B6F2-F43E9F614943 – System32TasksAdobeGCInvoker-1.0 => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [2872400 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: C7FAFD87-143D-4828-A1E4-F06D078363F4 – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [27369352 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: D848BE2E-126C-479D-A061-E1879B0F889C – System32TasksNvProfileUpdaterOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: E5A06C37-5C40-490F-B101-F396055B26B9 – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: E6A56CD5-839C-4183-B5B2-C757C2A70105 – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2018-10-05] (Google Inc -> Google Inc.)
Task: E6AED1F9-456C-4266-AA9E-02D0BAAF52E0 – System32TasksAdobe Flash Player Updater => C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe [335416 2020-04-19] (Adobe Inc. -> Adobe)
Task: F352F3F9-4CC7-47B2-B752-9473F5AFA44D – System32TasksAppleAppleSoftwareUpdate => C:Program Files (x86)Apple Software UpdateSoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: F8B9A915-8C30-4E6F-AE86-8F0DC0B0AD84 – System32TasksNvTmRep_CrashReport1_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: FEA60E6B-C946-464B-996E-2BA30BE18475 – System32TasksFuture Systems SolutionsCasperMy System Disk Backup => C:Program FilesFuture Systems SolutionsCasper 8.0CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:Program Files (x86)BonjourmdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:Program FilesBonjourmdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip..Interfaces4B3751D1-5D87-4830-BC4C-D842B7621544: [NameServer] 208.67.222.222,208.67.220.220
Tcpip..Interfaces4B3751D1-5D87-4830-BC4C-D842B7621544: [DhcpNameServer] 192.168.11.1
Tcpip..Interfaces9E122120-5803-40E2-96EC-361B581C5284: [DhcpNameServer] 192.168.43.1
Tcpip..InterfacesFAF2DFD5-799C-480C-9687-3ECEA10C02D3: [NameServer] 10.9.0.1,10.8.0.1

Internet Explorer:
==================
HKUS-1-5-21-4250991329-2939192951-560751505-1000SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp://news.google.com/
BHO: Skype for Business Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX64Microsoft OfficeOffice16OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C:Program FilesJavajre1.8.0_202binssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: VIPRE Search Guard Helper -> 963C8283-AE7F-4AA6-9B3B-847A8FC62C5E -> C:Program Files (x86)VIPREx64VSGNx64.dll => No File
BHO: Office Document Cache Handler -> B4F3A835-0E21-4959-BA22-42B3008E02FF -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX64Microsoft OfficeOffice16URLREDIR.DLL [2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C:Program FilesJavajre1.8.0_202binjp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C:Program Files (x86)Microsoft OfficerootOffice16OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C:Program Files (x86)Javajre1.8.0_202binssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> 84BFE29A-8139-402a-B2A4-C23AE9E1A75F -> C:Program Files (x86)ArcpluginsArcPluginIE.dll [2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
BHO-x32: VIPRE Search Guard Helper -> 963C8283-AE7F-4AA6-9B3B-847A8FC62C5E -> C:Program Files (x86)VIPREVSGN.dll => No File
BHO-x32: Office Document Cache Handler -> B4F3A835-0E21-4959-BA22-42B3008E02FF -> C:Program Files (x86)Microsoft OfficerootOffice16URLREDIR.DLL [2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C:Program Files (x86)Javajre1.8.0_202binjp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM – VIPRE Search Guard Toolbar – A924C17A-5E94-4E02-BED5-49720BA6F7FA –  No File
Toolbar: HKLM-x32 – VIPRE Search Guard Toolbar – A924C17A-5E94-4E02-BED5-49720BA6F7FA –  No File
Toolbar: HKUS-1-5-21-4250991329-2939192951-560751505-1000 -> VIPRE Search Guard Toolbar – A924C17A-5E94-4E02-BED5-49720BA6F7FA –  No File
Handler-x32: mso-minsb-roaming.16 – 83C25742-A9F7-49FB-9138-434302C88D07 – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 – 5504BE45-A83B-4808-900A-3A5C36E7F77A – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: vipresg – 47BE2E5B-703B-444F-ABD3-05717D2191C6 – C:Program Files (x86)VIPREVSGN.dll No File

FireFox:
========
FF DefaultProfile: 86ew51to.default
FF ProfilePath: C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.default [2020-05-03]
FF Homepage: MozillaFirefoxProfiles86ew51to.default -> hxxp://news.google.com/
FF Notifications: MozillaFirefoxProfiles86ew51to.default -> hxxps://forum.cyanogenmod.org; hxxp://mail.bigkahunatech.com; hxxps://forums.t-nation.com; hxxps://chatsupport.apple.com; hxxps://www.facebook.com
FF Extension: (Facebook Container) – C:UsersKevi[email protected]contain-facebook.xpi [2020-04-14]
FF Extension: (Ant.com addon) – C:UsersKevinAppDat[email protected]ant.com.xpi [2018-04-23]
FF Extension: (Ant Video downloader) – C:UsersKevinAppDataRo[email protected]ant.com.xpi [2020-04-21]
FF Extension: (Bypass Paywalls) – C:UsersKevinAppDataRoamin[email protected]bypasspaywalls.weebly.com.xpi [2020-04-27] [UpdateUrl:hxxps://raw.githubusercontent.com/iamadamdev/bypass-paywalls-firefox/master/updates.json]
FF Extension: (DuckDuckGo Privacy Essentials) – C:UsersKevinAppDataRoamingMozi[email protected]jetpack.xpi [2020-05-01]
FF Extension: (Google Similar Images) – C:UsersKevinAppDataRoamingMozillaFirefox[email protected]gmail.com.xpi [2017-08-02] [Legacy]
FF Extension: (Imagus) – C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.defaultExtensions0000f2a-7cde-4f20-83ed-434fcb420d71.xpi [2020-04-13] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (View Image) – C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.defaultExtensions287dcf75-bec6-4eec-b4f6-71948a2eea29.xpi [2020-04-24]
FF Extension: (A powerful reverse image search tool, with support for various search engines, such as Google, Bing, Yandex, Baidu and TinEye.) – C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.defaultExtensions2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c.xpi [2020-04-21]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) – C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.defaultExtensions6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65.xpi [2018-05-16] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]
FF Extension: (Clear private data now!) – C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.defaultExtensions7a07e802-6785-4e48-a29e-b81bdd5efbd3.xpi [2019-08-12]
FF Extension: (Video DownloadHelper) – C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.defaultExtensionsb9db16a4-6edc-47ec-a1f4-b86292ed211d.xpi [2020-03-30]
FF Extension: (Adblock Plus – free ad blocker) – C:UsersKevinAppDataRoamingMozillaFirefoxProfiles86ew51to.defaultExtensionsd10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d.xpi [2020-04-01]
FF Plugin: @adobe.com/FlashPlayer -> C:Windowssystem32MacromedFlashNPSWF64_32_0_0_363.dll [2020-04-19] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.202.2 -> C:Program FilesJavajre1.8.0_202bindtpluginnpDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.202.2 -> C:Program FilesJavajre1.8.0_202binplugin2npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:Program FilesMicrosoft Silverlight5.1.50918.0npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:Program FilesVideoLANVLCnpvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll [2018-06-22] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:WindowsSysWOW64MacromedFlashNPSWF32_32_0_0_363.dll [2020-04-19] (Adobe Inc. -> )
FF Plugin-x32: @DVR/npmedia,version=3.1.0.4 -> C:Program Files (x86)webrecWEB30WebPluginnpmedia.dll [2017-10-30] () [File not signed]
FF Plugin-x32: @DVR/npTimeGrid,version=3.1.0.4 -> C:Program Files (x86)webrecWEB30WebPluginnpTimeGrid.dll [2017-10-30] (Unauthorized copy) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.202.2 -> C:Program Files (x86)Javajre1.8.0_202bindtpluginnpDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.202.2 -> C:Program Files (x86)Javajre1.8.0_202binplugin2npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:Program Files (x86)Microsoft Silverlight5.1.50918.0npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:Program Files (x86)Microsoft OfficerootOffice16NPSPWRAP.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:Program Files (x86)ArcpluginsnpArcPluginFF.dll [2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.2 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:Program Files (x86)VideoLANVLCnpvlc.dll [No File]
FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect32.dll [2018-07-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKUS-1-5-21-4250991329-2939192951-560751505-1000: @zoom.us/ZoomVideoPlugin -> C:UsersKevinAppDataRoamingZoombinnpzoomplugin.dll [2018-06-12] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR Profile: C:UsersKevinAppDataLocalGoogleChromeUser DataDefault [2020-04-15]
CHR Extension: (Slides) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2018-10-05]
CHR Extension: (Docs) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2018-10-05]
CHR Extension: (Google Drive) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2018-10-11]
CHR Extension: (MEGA) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsbigefpfhnfcobdlfbedofhhaibnlghod [2020-04-15]
CHR Extension: (YouTube) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-05]
CHR Extension: (Adobe Acrobat) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsefaidnbmnnnibpcajpcglclefindmkaj [2020-03-30]
CHR Extension: (Sheets) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2018-10-05]
CHR Extension: (Google Docs Offline) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-15]
CHR Extension: (Chrome Web Store Payments) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2019-05-15]
CHR Extension: (Chrome Media Router) – C:UsersKevinAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-15]
CHR HKLM-x32…ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:Program Files (x86)Common FilesAutodesk SharedAppManagerR1AdAppMgrSvc.exe [1145928 2016-02-23] (Autodesk, Inc -> Autodesk Inc.)
R2 AdobeUpdateService; C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonElevationManagerAdobeUpdateService.exe [818128 2018-07-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S4 AGMService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe [3147344 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe [2914896 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
S3 ArcService; C:Program Files (x86)ArcArcService.exe [88696 2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
R2 Autodesk Content Service; C:Program Files (x86)AutodeskContent ServiceConnect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)
R3 BrYNSvc; C:Program Files (x86)Browny02BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 caspereui; C:Program FilesCommon FilesFuture Systems SolutionsServicesCASPERSVCS.EXE [1168984 2014-09-03] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
R2 casperhpb; C:Program FilesCommon FilesFuture Systems SolutionsServicesCASPERSVCS.EXE [1168984 2014-09-03] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [11600776 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAService; C:Program Files (x86)Intel Driver and Support AssistantDSAService.exe [22304 2017-12-05] (Intel® Driver & Support Assistant -> Intel)
S4 ESRV_SVC_QUEENCREEK; C:Program FilesIntelSURQUEENCREEKesrv_svc.exe [824592 2017-03-07] (Intel® Software Development Products -> )
S3 GalaxyClientService; C:Program Files (x86)GOG GalaxyGalaxyClientService.exe [1747528 2020-05-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:ProgramDataGOG.comGalaxyredistsGalaxyCommunication.exe [6821960 2020-02-24] (GOG Sp. z o.o. -> GOG.com)
S3 Intel® Capability Licensing Service TCP IP Interface; C:Program FilesInteliCLS ClientSocketHeciServer.exe [630048 2016-10-13] (Intel® Trust Services -> Intel® Corporation)
R2 jhi_service; C:Program Files (x86)IntelIntel® Management Engine ComponentsDALjhi_service.exe [196200 2017-01-15] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [6933272 2020-03-08] (Malwarebytes Inc -> Malwarebytes)
R2 NvContainerLocalSystem; C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:Program Files (x86)OriginOriginClientService.exe [2475312 2019-12-23] (Electronic Arts, Inc. -> Electronic Arts)
S3 Origin Web Helper Service; C:Program Files (x86)OriginOriginWebHelperService.exe [3352376 2019-12-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 RunSwUSB; C:WindowsrunSW.exe [48856 2015-11-05] (Realtek Semiconductor Corp -> )
R2 ss_conn_service; C:Program FilesSamsungUSB Drivers27_ssconnconnss_conn_service.exe [752224 2017-01-15] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 SystemUsageReportSvc_QUEENCREEK; C:Program FilesIntel Driver and Support AssistantSURSurSvc.exe [157456 2017-03-07] (Intel® Software Development Products -> )
S4 USER_ESRV_SVC_QUEENCREEK; C:Program FilesIntelSURQUEENCREEKesrv_svc.exe [824592 2017-03-07] (Intel® Software Development Products -> )
R2 WinDefend; C:Program FilesWindows Defendermpsvc.dll [1011712 2013-05-26] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; “C:Program FilesNVIDIA CorporationDisplay.NvContainerNVDisplay.Container.exe” -s NVDisplay.ContainerLocalSystem -f “C:ProgramDataNVIDIANVDisplay.ContainerLocalSystem.log” -l 3 -d “C:Program FilesNVIDIA CorporationDisplay.NvContainerpluginsLocalSystem” -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:WindowsSystem32DRIVERSssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e1dexpress; C:WindowsSystem32DRIVERSe1d62x64.sys [537080 2017-07-19] (Intel® INTELND1617 -> Intel Corporation)
R1 ESProtectionDriver; C:Windowssystem32driversmbae64.sys [153312 2020-04-18] (Malwarebytes Corporation -> Malwarebytes)
R0 gfibto; C:WindowsSystem32driversgfibto.sys [37272 2017-11-02] (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
R0 iaStorF; C:WindowsSystem32DRIVERSiaStorF.sys [41472 2017-03-29] (Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:WindowsSystem32DriversMbamChameleon.sys [214496 2020-04-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:WindowsSystem32DRIVERSfarflt.sys [195432 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:Windowssystem32DRIVERSmbam.sys [73584 2020-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [248968 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:WindowsSystem32DRIVERSmwac.sys [112752 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:WindowsSystem32DRIVERSTeeDriverx64.sys [199760 2016-11-29] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 NvStreamKms; C:Program FilesNVIDIA CorporationNvStreamSrvNvStreamKms.sys [30336 2020-03-31] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:WindowsSystem32driversnvvad64v.sys [69840 2020-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:WindowsSystem32DRIVERSnvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RtlWlanu; C:WindowsSystem32DRIVERSrtwlanu.sys [4620048 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )
S3 semav6msr64; C:Windowssystem32driverssemav6msr64.sys [21984 2016-10-18] (Intel® Code Signing External -> )
S3 ssudmdm; C:WindowsSystem32DRIVERSssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver; C:WindowsSystem32Driversss_conn_usb_driver.sys [43920 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:WindowsSystem32DRIVERStap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:WindowsSystem32Driversusbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 veracrypt; C:WindowsSystem32driversveracrypt.sys [828688 2018-05-06] (IDRIX -> IDRIX)
S3 gdrv; ??C:Windowsgdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-03 23:03 – 2020-05-03 23:03 – 002283520 _____ (Farbar) C:UsersKevinDownloadsFRST64(1).exe
2020-05-03 23:03 – 2020-05-03 23:03 – 000000000 ____D C:FRST
2020-05-02 10:05 – 2020-05-02 10:05 – 000248968 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys
2020-05-02 10:05 – 2020-05-02 10:05 – 000195432 _____ (Malwarebytes) C:Windowssystem32Driversfarflt.sys
2020-05-02 10:05 – 2020-05-02 10:05 – 000112752 _____ (Malwarebytes) C:Windowssystem32Driversmwac.sys
2020-05-02 10:05 – 2020-05-02 10:05 – 000073584 _____ (Malwarebytes) C:Windowssystem32Driversmbam.sys
2020-05-02 10:04 – 2020-05-02 10:04 – 000000000 ____D C:WindowsSysWOW64RTCOM
2020-05-02 10:04 – 2020-05-02 10:04 – 000000000 ____D C:Program FilesRealtek
2020-05-02 10:03 – 2017-06-29 18:55 – 015202032 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE3.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 013122576 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO3064.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 012988336 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO4064.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 006410088 _____ (Nahimic Inc) C:Windowssystem32NAHIMICV3apo.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 005938904 _____ (Nahimic Inc) C:Windowssystem32NAHIMICV2apo.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 005593608 _____ (Nahimic Inc) C:Windowssystem32NAHIMICAPOlfx.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003509256 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RltkAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003507688 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkApi64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003410832 _____ (DTS, Inc.) C:Windowssystem32slcnt64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003299816 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE2.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003122656 _____ (DTS, Inc.) C:Windowssystem32sltech64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003092336 _____ (Realtek Semiconductor Corp.) C:WindowsSysWOW64RltkAPO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 002190976 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001435136 _____ (Synopsys, Inc.) C:Windowssystem32SRRPTR64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001382232 _____ (TOSHIBA Corporation) C:Windowssystem32tosade.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001347136 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTCOM64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001337640 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tossaeapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001016928 _____ (Sound Research, Corp.) C:Windowssystem32SEHDHF64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000984912 _____ (DTS, Inc.) C:Windowssystem32sl3apo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000965024 _____ (Sony Corporation) C:Windowssystem32SFSS_APO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000923736 _____ (Sony Corporation) C:Windowssystem32MISS_APO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000877424 _____ (Sound Research, Corp.) C:WindowsSysWOW64SEHDHF32.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000873456 _____ (TOSHIBA Corporation) C:Windowssystem32tadefxapo264.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000868176 _____ (Sound Research, Corp.) C:Windowssystem32SECOMN64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000866640 _____ (Sound Research, Corp.) C:Windowssystem32SEHDRA64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000852128 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tosasfapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000737960 _____ (Sound Research, Corp.) C:WindowsSysWOW64SECOMN32.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000691680 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtDataProc64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000677664 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVolumeSDAPO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000604792 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tossaemaxapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000568256 _____ (Intel Corporation) C:Windowssystem32tbb_waves.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000532376 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSX64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000525768 _____ (Sound Research, Corp.) C:Windowssystem32SEAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000467152 _____ (Synopsys, Inc.) C:Windowssystem32SRAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000447712 _____ (Dolby Laboratories) C:Windowssystem32R4EED64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000447176 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32toseaeapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000387312 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEP64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000381408 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000343704 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtlCPAPI64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000341144 _____ (Synopsys, Inc.) C:WindowsSysWOW64SRCOM.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000341144 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000321712 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DHT64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000321712 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DAA64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000231912 _____ (Synopsys, Inc.) C:Windowssystem32SFNHK64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000221960 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSH64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000214832 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEED64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000209528 _____ (SRS Labs, Inc.) C:Windowssystem32SRSHP64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000192976 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCfg64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000166200 _____ (SRS Labs, Inc.) C:Windowssystem32SRSWOW64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000158696 _____ (TOSHIBA Corporation) C:Windowssystem32tadefxapo.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000151784 _____ (Dolby Laboratories) C:Windowssystem32R4EEL64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000134200 _____ (Dolby Laboratories) C:Windowssystem32R4EEA64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000110976 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEL64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000090912 _____ (Synopsys, Inc.) C:Windowssystem32SFCOM64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000088344 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEG64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000088312 _____ (Synopsys, Inc.) C:Windowssystem32SFAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000084608 _____ (Dolby Laboratories) C:Windowssystem32R4EEG64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000083624 _____ (Virage Logic Corporation / Sonic Focus) C:WindowsSysWOW64SFCOM.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000075536 _____ (TOSHIBA CORPORATION.) C:Windowssystem32tepeqapo64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 024608272 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioCapture64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 023863048 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRenderAVX64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 023764392 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRender64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 010536152 _____ (Intel Corporation) C:Windowssystem32IntelSSTAPO.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 004059960 _____ (Fortemedia Corporation) C:Windowssystem32FMAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 002291304 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO7064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001780616 _____ (DTS) C:Windowssystem32DTSS2SpeakerDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001591056 _____ (DTS) C:Windowssystem32DTSS2HeadphoneDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001422920 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO6064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001334376 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxSpeechAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001213656 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO5064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001166152 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO4064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000999848 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO2064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000727432 _____ (DTS) C:Windowssystem32DTSSymmetryDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000708312 _____ (DTS) C:Windowssystem32DTSVoiceClarityDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000680544 _____ (ICEpower a/s) C:Windowssystem32ICEsoundAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000678176 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO30.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000618184 _____ (Knowles Acoustics ) C:Windowssystem32KAAPORT64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000514520 _____ (DTS) C:Windowssystem32DTSU2PLFX64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000500552 _____ (DTS) C:Windowssystem32DTSU2PGFX64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000428224 _____ (DTS) C:Windowssystem32DTSU2PREC64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000406448 _____ (Dolby Laboratories) C:Windowssystem32HiFiDAX2APIPCLL.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000366120 _____ (Windows ® Win 7 DDK provider) C:Windowssystem32HMAPO.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000360344 _____ (Harman) C:Windowssystem32HMClariFi.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000330552 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO20.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000203840 _____ (Harman) C:Windowssystem32HMHVS.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000190928 _____ (Harman) C:Windowssystem32HMEQ_Voice.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000190928 _____ (Harman) C:Windowssystem32HMEQ.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000179592 _____ (Harman) C:Windowssystem32HMLimiter.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 005346992 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOv211.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 002444680 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOv201.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001965808 _____ (Dolby Laboratories) C:Windowssystem32DDPD64A.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001959600 _____ (Dolby Laboratories) C:Windowssystem32DDPD64AF3.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001616680 _____ (Conexant Systems Inc.) C:Windowssystem32CX64APO.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001554600 _____ (Dolby Laboratories) C:Windowssystem32DAX3APOProp.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001529136 _____ (Conexant Systems Inc.) C:Windowssystem32CX64Proxy.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001508928 _____ (DTS) C:Windowssystem32DTSBoostDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001326424 _____ (Dolby Laboratories) C:Windowssystem32DAX3APOv251.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001170872 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOvlldp.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000743960 _____ (DTS) C:Windowssystem32DTSBassEnhancementDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000609392 _____ (Conexant Systems, Inc.) C:Windowssystem32CAF64APO2.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000504304 _____ (DTS) C:Windowssystem32DTSNeoPCDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000445392 _____ (DTS) C:Windowssystem32DTSLimiterDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000441264 _____ (DTS) C:Windowssystem32DTSGainCompensatorDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000362048 _____ (Dolby Laboratories) C:Windowssystem32DDPO64AF3.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000327448 _____ (Dolby Laboratories) C:Windowssystem32DDPO64A.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000310416 _____ (Dolby Laboratories) C:Windowssystem32DDPA64F3.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000272712 _____ (Dolby Laboratories) C:Windowssystem32DDPA64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000253896 _____ (DTS) C:Windowssystem32DTSGFXAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000253864 _____ (DTS) C:Windowssystem32DTSLFXAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000252872 _____ (DTS) C:Windowssystem32DTSGFXAPONS64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000115120 _____ (Conexant System, Inc.) C:Windowssystem32Caf64api.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 005826560 _____ (Realtek Semiconductor Corp.) C:Windowssystem32DriversRTKVHD64.sys
2020-05-02 10:03 – 2017-06-29 18:52 – 003677160 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTSnMg64.cpl
2020-05-02 10:03 – 2017-06-29 18:52 – 003205120 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtPgEx64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 002993720 _____ (Audyssey Labs) C:Windowssystem32AudysseyEfx.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 002110592 _____ (Waves Audio Ltd.) C:Windowssystem32WavesGUILib64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 000574752 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAC64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 000258856 _____ (TODO: <Company name>) C:Windowssystem32slprp64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 000118592 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAR64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 072520712 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoRes64.dat
2020-05-02 10:03 – 2017-06-29 18:51 – 014057248 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRealtek64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 007172912 _____ (Dolby Laboratories) C:Windowssystem32R4EEP64A.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 007096184 _____ (Dolby Laboratories) C:Windowssystem32DDPP64A.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 006264632 _____ (Dolby Laboratories) C:Windowssystem32DDPP64AF3.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 002210304 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoInstII64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 002050176 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioEQ64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 001186832 _____ (Intel Corporation) C:Windowssystem32IntelSstCApoPropPage.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 001133064 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOProp.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 001003856 _____ (Nahimic Inc) C:Windowssystem32NahimicAPONSControl.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000931616 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPOShell64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000416504 _____ (Harman) C:Windowssystem32HMUI.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000378384 _____ (Dolby Laboratories) C:Windowssystem32HiFiDAX2API.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000154360 _____ (Harman) C:Windowssystem32HarmanAudioInterface.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000023688 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCoLDR64.dll
2020-05-02 10:03 – 2017-06-29 18:50 – 000122320 _____ (Real Sound Lab SIA) C:Windowssystem32CONEQMSAPOGUILibrary.dll
2020-05-02 10:03 – 2017-06-29 18:50 – 000118584 _____ C:Windowssystem32AcpiServiceVnA64.dll
2020-05-02 10:03 – 2017-06-29 18:50 – 000105304 _____ C:Windowssystem32audioLibVc.dll
2020-05-02 10:03 – 2017-06-29 03:05 – 012334923 _____ C:Windowssystem32DriversRTAIODAT.DAT
2020-05-02 10:03 – 2017-06-29 03:05 – 005804772 _____ C:Windowssystem32Driversrtvienna.dat
2020-05-02 10:03 – 2017-06-29 03:05 – 001920870 _____ C:Windowssystem32DriversrtkSSTsetting.dat
2020-05-02 10:03 – 2017-06-29 03:05 – 000005604 _____ C:Windowssystem32cxapo.lncs
2020-05-02 10:03 – 2017-06-29 03:05 – 000000864 _____ C:Windowssystem32cxapo.prop
2020-05-01 22:04 – 2020-05-02 09:53 – 264424269 _____ (Realtek Semiconductor Corp.) C:UsersKevinDownloads009-64bit_Win7_Win8_Win81_Win10_R282.exe
2020-05-01 09:55 – 2020-05-01 09:55 – 000000000 ____D C:UsersKevinAppDataLocalTempzxpsign46df4a9b7773fc0b
2020-05-01 09:30 – 2020-05-01 09:30 – 000000000 ____D C:UsersKevinAppDataLocalTempzxpsign1e13c401223a96cd
2020-04-30 21:31 – 2020-04-30 21:31 – 000000000 ____D C:UsersKevinAppDataLocalLowSony Online Entertainment
2020-04-29 18:31 – 2020-04-30 08:47 – 000000000 ____D C:UsersKevinDownloadsAn.American.In.Paris.1951.1080p.BluRay.H264.AAC-RARBG
2020-04-29 17:20 – 2020-04-30 08:43 – 000000000 ____D C:UsersKevinDownloadsAn American In Paris
2020-04-28 23:09 – 2020-04-28 23:09 – 000000000 ____D C:temp
2020-04-28 23:08 – 2020-04-12 15:09 – 001329360 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe
2020-04-28 23:08 – 2020-04-12 15:09 – 001329360 _____ C:WindowsSysWOW64vulkaninfo.exe
2020-04-28 23:08 – 2020-04-12 15:08 – 132262800 _____ (NVIDIA Corp.) C:Windowssystem32nvoptix.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 030669552 _____ (NVIDIA Corporation) C:Windowssystem32nvrtum64.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 011945880 _____ (NVIDIA Corporation) C:Windowssystem32nvptxJitCompiler.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 010286488 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvptxJitCompiler.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 001729232 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe
2020-04-28 23:08 – 2020-04-12 15:08 – 001729232 _____ C:Windowssystem32vulkaninfo.exe
2020-04-28 23:08 – 2020-04-12 15:08 – 001078992 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 001078992 _____ C:Windowssystem32vulkan-1.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000937680 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000937680 _____ C:WindowsSysWOW64vulkan-1.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000446352 _____ (Khronos Group) C:Windowssystem32OpenCL.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000420248 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvumdshim.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000342760 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 040450448 _____ (NVIDIA Corporation) C:Windowssystem32nvoglv64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 031024032 _____ (NVIDIA Corporation) C:Windowssystem32nvopencl64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 029695720 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvoglv32.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 026343656 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvopencl32.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 023052688 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvlddmkm.sys
2020-04-28 23:08 – 2020-04-12 15:07 – 002071784 _____ (NVIDIA Corporation) C:Windowssystem32NvFBC64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001565072 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvFBC.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001483176 _____ (NVIDIA Corporation) C:Windowssystem32nvdispgenco6444587.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001482128 _____ (NVIDIA Corporation) C:Windowssystem32NvIFR64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001350560 _____ (NVIDIA Corporation) C:Windowssystem32nvfatbinaryLoader.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001141480 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFR.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001048296 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvfatbinaryLoader.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000625384 _____ (NVIDIA Corporation) C:Windowssystem32NvIFROpenGL.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000544160 _____ (NVIDIA Corporation) C:Windowssystem32nvEncodeAPI64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000516832 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFROpenGL.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000471272 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvEncodeAPI.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000427424 _____ C:Windowssystem32nvofapi64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000378768 _____ C:WindowsSysWOW64nvofapi.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000181152 _____ (NVIDIA Corporation) C:Windowssystem32nvinitx.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000165264 _____ (NVIDIA Corporation) C:Windowssystem32nvoglshim64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000158096 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvinit.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000143080 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvoglshim32.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 040556456 _____ (NVIDIA Corporation) C:Windowssystem32nvcompiler64.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 035418352 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcompiler32.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 017600240 _____ (NVIDIA Corporation) C:Windowssystem32nvcuda.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 015159208 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuda.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 005448616 _____ (NVIDIA Corporation) C:Windowssystem32nvcuvid.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 004863896 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuvid.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 001722280 _____ (NVIDIA Corporation) C:Windowssystem32nvdispco6444587.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 000633752 _____ (NVIDIA Corporation) C:Windowssystem32nvcbl64.dll
2020-04-28 23:08 – 2020-04-12 12:06 – 035464872 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvwgf2um.dll
2020-04-28 23:08 – 2020-04-12 12:06 – 022226656 _____ (NVIDIA Corporation) C:Windowssystem32nvd3dumx.dll
2020-04-28 23:08 – 2020-04-12 12:05 – 004217464 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvapi.dll
2020-04-28 23:08 – 2020-04-11 08:40 – 000223120 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhda64v.sys
2020-04-28 23:08 – 2020-04-11 08:40 – 000039824 _____ (NVIDIA Corporation) C:Windowssystem32nvhdap64.dll
2020-04-28 23:08 – 2020-04-03 16:55 – 000000671 _____ C:WindowsSysWOW64nv-vk32.json
2020-04-28 23:08 – 2020-04-03 16:55 – 000000671 _____ C:Windowssystem32nv-vk64.json
2020-04-28 23:02 – 2020-03-11 12:26 – 000067456 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvhci.sys
2020-04-28 23:02 – 2020-03-06 03:03 – 000069840 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvad64v.sys
2020-04-25 16:20 – 2020-04-25 16:21 – 023162880 _____ C:UsersKevinDownloadsAVD-NativeApp-4.7.1-Release(1).msi
2020-04-25 16:20 – 2020-04-25 16:20 – 000000000 ____D C:Windowssystem32TasksMozilla
2020-04-21 22:47 – 2020-04-28 23:11 – 000000000 ____D C:Program FilesMozilla Firefox
2020-04-21 11:16 – 2020-04-21 11:35 – 023162880 _____ C:UsersKevinDownloadsAVD-NativeApp-4.7.1-Release.msi
2020-04-17 16:32 – 2020-04-17 18:32 – 000000000 ____D C:UsersKevinDownloadsSingin.in.the.Rain.1952.1080p.BluRay.H264.AAC-RARBG
2020-04-16 15:49 – 2020-04-16 15:49 – 107855752 _____ (Open Whisper Systems) C:UsersKevinDownloadssignal-desktop-win-1.33.1.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-03 23:04 – 2017-04-21 10:45 – 000039183 _____ C:UsersKevinDownloadsFRST.txt
2020-05-03 22:38 – 2018-05-18 09:23 – 000007609 _____ C:UsersKevinAppDataLocalResmon.ResmonCfg
2020-05-03 12:25 – 2017-12-11 22:17 – 000000000 ____D C:ProgramDataNVIDIA
2020-05-03 11:02 – 2009-07-13 21:45 – 000030544 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-03 11:02 – 2009-07-13 21:45 – 000030544 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-02 11:54 – 2018-12-19 08:21 – 000000000 ____D C:UsersKevinAppDataRoamingSignal
2020-05-02 10:11 – 2009-07-13 22:13 – 000783606 _____ C:Windowssystem32PerfStringBackup.INI
2020-05-02 10:11 – 2009-07-13 20:20 – 000000000 ____D C:Windowsinf
2020-05-02 10:06 – 2017-12-11 22:35 – 000000000 ____D C:UsersKevinAppDataLocalLowMozilla
2020-05-02 10:05 – 2017-12-12 11:10 – 000000000 ____D C:Program Files (x86)Steam
2020-05-02 10:05 – 2009-07-13 22:08 – 000032608 _____ C:WindowsTasksSCHEDLGU.TXT
2020-05-02 10:05 – 2009-07-13 22:08 – 000000006 ____H C:WindowsTasksSA.DAT
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32RTCOM
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32DAX3
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32DAX2
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:ProgramDataAudyssey Labs
2020-05-02 10:04 – 2017-12-11 21:49 – 000000000 ___HD C:Program Files (x86)Temp
2020-05-02 10:03 – 2017-12-11 21:49 – 000000000 ___HD C:Program Files (x86)InstallShield Installation Information
2020-05-01 21:57 – 2017-12-21 12:09 – 000000000 ____D C:UsersKevinDocumentsOutlook Files
2020-05-01 09:55 – 2018-04-27 12:23 – 000000000 ____D C:UsersKevinAppDataLocalCrashDumps
2020-05-01 09:30 – 2017-12-31 11:43 – 000000000 ____D C:UsersKevinAppDataLocalNVIDIA
2020-05-01 09:00 – 2020-03-25 13:43 – 000000000 ____D C:Program Files (x86)GOG Galaxy
2020-04-30 15:14 – 2017-12-17 14:59 – 000000000 ____D C:UsersKevinAppDataRoamingtixati
2020-04-28 23:12 – 2020-03-25 14:26 – 000001335 _____ C:UsersPublicDesktopRimWorld.lnk
2020-04-28 23:12 – 2020-03-25 14:26 – 000001335 _____ C:ProgramDataDesktopRimWorld.lnk
2020-04-28 23:11 – 2018-05-22 09:27 – 000000986 __RSH C:ProgramDatantuser.pol
2020-04-28 23:11 – 2017-12-11 22:35 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2020-04-28 23:09 – 2009-07-13 20:20 – 000000000 ____D C:WindowsHelp
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport4_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport3_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport2_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport1_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:47 – 000003798 _____ C:Windowssystem32TasksNvNodeLauncher_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:47 – 000003790 _____ C:Windowssystem32TasksNVIDIA GeForce Experience SelfUpdate_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:46 – 000004146 _____ C:Windowssystem32TasksNvDriverUpdateCheckDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:46 – 000003940 _____ C:Windowssystem32TasksNvBatteryBoostCheckOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:ProgramDataNVIDIA Corporation
2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:Program FilesNVIDIA Corporation
2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:Program Files (x86)NVIDIA Corporation
2020-04-28 23:03 – 2018-05-25 13:46 – 000003738 _____ C:Windowssystem32TasksNvProfileUpdaterDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:03 – 2018-05-25 13:46 – 000003494 _____ C:Windowssystem32TasksNvProfileUpdaterOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:03 – 2017-12-11 22:19 – 000000000 ____D C:ProgramDataPackage Cache
2020-04-27 19:34 – 2018-10-05 09:49 – 000002194 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2020-04-25 18:57 – 2020-01-24 16:31 – 000000000 ____D C:UsersKevinAppDataLocalLarianLauncher
2020-04-23 08:51 – 2017-12-21 11:13 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2020-04-23 08:50 – 2017-12-21 11:11 – 000000000 ____D C:Program Files (x86)Microsoft Office
2020-04-19 20:08 – 2018-07-07 17:50 – 000017450 _____ C:UsersKevinDocumentsHalf life decay.xlsx
2020-04-19 10:50 – 2018-04-09 09:19 – 000004462 _____ C:Windowssystem32TasksAdobe Flash Player NPAPI Notifier
2020-04-19 10:50 – 2017-12-15 21:17 – 000842296 _____ (Adobe) C:WindowsSysWOW64FlashPlayerApp.exe
2020-04-19 10:50 – 2017-12-15 21:17 – 000175160 _____ (Adobe) C:WindowsSysWOW64FlashPlayerCPLApp.cpl
2020-04-19 10:50 – 2017-12-15 21:17 – 000004324 _____ C:Windowssystem32TasksAdobe Flash Player Updater
2020-04-19 10:50 – 2017-12-15 21:17 – 000000000 ____D C:WindowsSysWOW64Macromed
2020-04-19 10:50 – 2017-12-15 21:17 – 000000000 ____D C:Windowssystem32Macromed
2020-04-18 23:37 – 2020-02-01 20:59 – 000214496 _____ (Malwarebytes) C:Windowssystem32DriversMbamChameleon.sys
2020-04-18 23:37 – 2019-07-07 10:41 – 000153312 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys
2020-04-16 15:57 – 2018-12-19 08:21 – 000002451 _____ C:UsersKevinAppDataRoamingMicrosoftWindowsStart MenuProgramsSignal.lnk
2020-04-16 15:57 – 2018-12-19 08:21 – 000002443 _____ C:UsersKevinDesktopSignal.lnk
2020-04-14 18:19 – 2017-12-31 11:39 – 000000000 ____D C:UsersKevinAppDataRoaming.minecraft
2020-04-13 13:38 – 2017-12-17 14:39 – 000000000 ____D C:Program Files (x86)Intel Driver and Support Assistant
2020-04-12 15:08 – 2017-11-09 05:33 – 000502680 _____ (NVIDIA Corporation) C:Windowssystem32nvumdshimx.dll
2020-04-12 12:06 – 2017-11-09 05:33 – 041111072 _____ (NVIDIA Corporation) C:Windowssystem32nvwgf2umx.dll
2020-04-12 12:05 – 2017-11-09 05:32 – 018526608 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvd3dum.dll
2020-04-12 12:05 – 2017-11-09 05:32 – 004769584 _____ (NVIDIA Corporation) C:Windowssystem32nvapi64.dll
2020-04-11 08:40 – 2017-11-09 06:01 – 001682368 _____ (NVIDIA Corporation) C:Windowssystem32nvhdagenco6420103.dll
2020-04-08 14:07 – 2009-07-13 20:20 – 000000000 ____D C:Windowssystem32NDF
2020-04-07 10:58 – 2018-05-25 13:48 – 001314792 _____ (NVIDIA Corporation) C:Windowssystem32NvRtmpStreamer64.dll
2020-04-07 10:58 – 2018-05-25 13:47 – 002799416 _____ (NVIDIA Corporation) C:Windowssystem32nvspcap64.dll
2020-04-07 10:58 – 2018-05-25 13:47 – 002159592 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvspcap.dll
2020-04-03 16:55 – 2017-11-09 04:57 – 000053678 _____ C:Windowssystem32nvinfo.pb
2020-04-03 14:56 – 2017-12-11 22:18 – 005581808 _____ (NVIDIA Corporation) C:Windowssystem32nvcpl.dll
2020-04-03 14:56 – 2017-12-11 22:18 – 002631664 _____ (NVIDIA Corporation) C:Windowssystem32nvsvc64.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 001759032 _____ (NVIDIA Corporation) C:Windowssystem32nvsvcr.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 001172464 _____ (NVIDIA Corporation) C:Windowssystem32nv3dappshext.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 000446264 _____ (NVIDIA Corporation) C:Windowssystem32nvmctray.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 000121144 _____ (NVIDIA Corporation) C:Windowssystem32nvshext.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 000074736 _____ (NVIDIA Corporation) C:Windowssystem32nv3dappshextr.dll
2020-04-03 03:08 – 2017-12-11 22:18 – 009037867 _____ C:Windowssystem32nvcoproc.bin

==================== Files in the root of some directories ========

2018-09-26 20:51 – 2019-08-09 08:19 – 000005330 _____ () C:UsersKevinAppDataLocaloobelibMkey.log
2018-05-18 09:23 – 2020-05-03 22:38 – 000007609 _____ () C:UsersKevinAppDataLocalResmon.ResmonCfg
2018-08-21 10:55 – 2017-03-03 01:49 – 000000570 _____ () C:UsersKevinAppDataLocalTroubleshooterConfig.json

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2020-04-27 09:22
==================== End of FRST.txt ========================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Kevin (03-05-2020 23:04:12)
Running from C:UsersKevinDownloads
Windows 7 Professional Service Pack 1 (X64) (2017-12-12 04:28:57)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-4250991329-2939192951-560751505-500 – Administrator – Disabled)
Guest (S-1-5-21-4250991329-2939192951-560751505-501 – Limited – Disabled)
HomeGroupUser$ (S-1-5-21-4250991329-2939192951-560751505-1003 – Limited – Enabled)
Kevin (S-1-5-21-4250991329-2939192951-560751505-1000 – Administrator – Enabled) => C:UsersKevin

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled – Up to date) 23007AD3-69FE-687C-2629-D584AFFAF72B
AS: Malwarebytes (Enabled – Up to date) 98619B37-4FC4-67F2-1C99-EEF6D47DBD96
AS: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM…9C40698F-A953-4658-AFF2-F7BB385A3910) (Version: 7.1 – Intel) Hidden
. . . (HKLM-x32…870E5275-5457-4BBC-98C9-BFF4B70AA5D3) (Version: 3.1.0.12 – Intel) Hidden
¡“ú‚Ì‚¨‚©‚¸_‚Ó‚½ƒNƒŠ_1 (HKLM-x32…KYOH_0003) (Version:  – )
Adobe Acrobat Reader DC (HKLM-x32…AC76BA86-7AD7-1033-7B44-AC0F074E4100) (Version: 20.006.20042 – Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32…KBRG_8_0_1) (Version: 8.0.1 – Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32…Adobe Creative Cloud) (Version: 4.6.0.384 – Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32…Adobe Flash Player ActiveX) (Version: 32.0.0.363 – Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32…Adobe Flash Player NPAPI) (Version: 32.0.0.363 – Adobe)
Adobe Photoshop CC 2017 (HKLM-x32…PHSP_18_0) (Version: 18.0.0 – Adobe Systems Incorporated)
Ant Video downloader (Native messaging host) (HKLM-x32…41A57734-2ED5-449A-BAF0-F0B356417716) (Version: 4.7 – Ant.com)
Apple Application Support (32-bit) (HKLM-x32…A7039CC9-4669-4799-92B1-C5CE346DBE3D) (Version: 8.3 – Apple Inc.)
Apple Application Support (64-bit) (HKLM…DA78A9DC-3599-4D81-A960-B679687A6C14) (Version: 8.3 – Apple Inc.)
Apple Mobile Device Support (HKLM…6CECF0FB-EE71-4FE5-8AE0-FA007408934A) (Version: 13.0.0.38 – Apple Inc.)
Apple Software Update (HKLM-x32…A3985C05-7386-411F-A4BF-32A73F37EB44) (Version: 2.6.3.1 – Apple Inc.)
Arc (HKLM-x32…CED8E25B-122A-4E80-B612-7F99B93284B3) (Version: 1.1.0.17816 – Perfect World Entertainment)
Asmedia USB Host Controller Driver (HKLM-x32…E4FB0B39-C991-4EE7-95DD-1A1A7857D33D) (Version: 1.16.38.1 – Asmedia Technology)
AutoCAD LT 2015 – English (HKLM…5783F2D7-E009-0000-0102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) Hidden
AutoCAD LT 2015 – English (HKLM…5783F2D7-E009-0409-2102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) Hidden
AutoCAD LT 2015 Language Pack – English (HKLM…5783F2D7-E009-0409-1102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) Hidden
Autodesk 360 (HKLM…556966D9-F7F6-421B-9707-D07901604DDF) (Version: 5.0.27.1100 – Autodesk)
Autodesk Application Manager (HKLM-x32…Autodesk Application Manager) (Version: 5.0.142.14 – Autodesk)
Autodesk AutoCAD LT 2015 – English (HKLM…AutoCAD LT 2015 – English) (Version: 20.0.51.0 – Autodesk)
Autodesk Content Service (HKLM-x32…A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F) (Version: 3.2.0.0 – Autodesk) Hidden
Autodesk Content Service (HKLM-x32…Autodesk Content Service) (Version: 3.2.0.0 – Autodesk)
Autodesk Content Service Language Pack (HKLM-x32…A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F) (Version: 3.2.0.0 – Autodesk) Hidden
Autodesk Material Library 2015 (HKLM-x32…427F733F-4D6C-45BC-9324-EB743104C321) (Version: 5.2.9.100 – Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32…ABE2F70B-8D94-44E9-AA04-F0DB35063D62) (Version: 5.2.9.100 – Autodesk)
Avidemux 2.7 – 64 bits (HKLM-x32…Avidemux 2.7 – 64 bits (64-bit)) (Version: 2.7.1.180604 – )
Bonjour (HKLM…56DDDFB8-7F79-4480-89D5-25E1F52AB28F) (Version: 3.1.0.1 – Apple Inc.)
Brother MFL-Pro Suite MFC-J825DW (HKLM-x32…A1B36B88-AF90-43A3-8906-6DBEE89B4FBD) (Version: 1.1.6.0 – Brother Industries, Ltd.)
Casper 8.0 (HKLM…7D52E017-F5C3-4DD0-922F-C0B2EC6AD573) (Version: 8.0.46120 – Future Systems Solutions, Inc.)
Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32…519C4DB6-B53B-4F5C-8297-89B2BE949FA5_is1) (Version:  – Western Digital Corporation)
DC Universe Online (HKUS-1-5-21-4250991329-2939192951-560751505-1000…DGC-DC Universe Online) (Version: 1.0.3.195 – Daybreak Game Company)
DC Universe Online Live (HKUS-1-5-21-4250991329-2939192951-560751505-1000…DG0-DC Universe Online Live) (Version:  – Sony Online Entertainment)
EPSON Scan (HKLM-x32…EPSON Scanner) (Version:  – )
Folder Size 3.4.0.0 (HKLM-x32…2DFA85ED-588F-4CE3-A175-29E52C3804A8_is1) (Version: 3.4.0.0 – MindGems, Inc.)
GOG Galaxy (HKLM-x32…7258BA11-600C-430E-A759-27E2C691A335_is1) (Version:  – GOG.com)
Google Chrome (HKLM-x32…Google Chrome) (Version: 81.0.4044.129 – Google LLC)
Google Update Helper (HKLM-x32…60EC980A-BDA2-4CB6-A427-B07A5498B4CA) (Version: 1.3.35.451 – Google LLC) Hidden
Helium (HKLM-x32…9A781940-AC41-4D5E-8E1E-76A04B916FB9) (Version: 1.0.0 – ClockworkMod)
Intel® Management Engine Components (HKLM…1CEAC85D-2590-4760-800F-8DE5E91F3700) (Version: 11.6.0.1050 – Intel Corporation)
Intel® Network Connections 21.1.29.0 (HKLM…PROSetDX) (Version: 21.1.29.0 – Intel)
Intel® Rapid Storage Technology (HKLM…409CB30E-E457-4008-9B1A-ED1B9EA21140) (Version: 15.5.0.1051 – Intel Corporation)
Intel® USB 3.03.1 eXtensible Host Controller Driver (HKLM-x32…240C3DDD-C5E9-4029-9DF7-95650D040CF2) (Version: 5.0.0.32 – Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32…2550a40e-aac6-4d21-9361-744d33bec573) (Version: 3.1.0.12 – Intel)
iTunes (HKLM…49F48AA2-DEA7-453A-8735-9C862E7C8467) (Version: 12.10.4.2 – Apple Inc.)
Java 8 Update 201 (64-bit) (HKLM…26A24AE4-039D-4CA4-87B4-2F64180201F0) (Version: 8.0.2010.9 – Oracle Corporation)
Java 8 Update 201 (HKLM-x32…26A24AE4-039D-4CA4-87B4-2F32180201F0) (Version: 8.0.2010.9 – Oracle Corporation)
Java 8 Update 202 (64-bit) (HKLM…26A24AE4-039D-4CA4-87B4-2F64180202F0) (Version: 8.0.2020.8 – Oracle Corporation)
Java 8 Update 202 (HKLM-x32…26A24AE4-039D-4CA4-87B4-2F32180202F0) (Version: 8.0.2020.8 – Oracle Corporation)
K-Lite Mega Codec Pack 9.6.5 (HKLM-x32…KLiteCodecPack_is1) (Version: 9.6.5 – )
Malwarebytes version 4.1.0.56 (HKLM…35065F43-4BB2-439A-BFF7-0F1014F2E0CD_is1) (Version: 4.1.0.56 – Malwarebytes)
Mass Effect™ 2 (HKLM-x32…75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB) (Version: 1.2.1604.0 – Electronic Arts)
Microsoft .NET Framework 4.7.2 (HKLM…92FB6C44-E685-45AD-9B20-CADF4CABA132 – 1033) (Version: 4.7.03062 – Microsoft Corporation)
Microsoft Office 365 ProPlus – en-us (HKLM…O365ProPlusRetail – en-us) (Version: 16.0.11929.20708 – Microsoft Corporation)
Microsoft OneDrive (HKU.DEFAULT…OneDriveSetup.exe) (Version: 17.3.6743.1212 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-4250991329-2939192951-560751505-1000…OneDriveSetup.exe) (Version: 18.065.0329.0002 – Microsoft Corporation)
Microsoft Silverlight (HKLM…89F4137D-6C26-4A84-BDB8-2E5A4BB71E00) (Version: 5.1.50918.0 – Microsoft Corporation)
Microsoft Visio Viewer 2016 (HKLM…95160000-0052-0409-1000-0000000FF1CE) (Version: 16.0.4339.1001 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…710f4c1c-cc18-4c49-8cbf-51240c89a1a2) (Version: 8.0.61001 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…7299052b-02a4-4627-81f2-1818da5d550d) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…837b34e3-7c30-493c-8f6a-2b0f04e2912c) (Version: 8.0.59193 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…71c9b48-7c32-4621-a0ac-3f809523288f) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…ad8a2fa1-06e7-4b0d-927d-6e54b3d31028) (Version: 8.0.61000 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.21022 (HKLM…350AA351-21FA-3270-8B7A-835434E766AD) (Version: 9.0.21022 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 (HKLM…8220EEFE-38CD-377E-8595-13398D740ACE) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.4148 (HKLM…4B6C7001-C7D6-3710-913E-5BC23FCE91E6) (Version: 9.0.30729.4148 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.21022 (HKLM-x32…FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4) (Version: 9.0.21022 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…9A25302D-30C0-39D9-BD6F-21E6EC160475) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148 (HKLM-x32…1F1C2DFC-2D24-3E06-BCB8-725134ADF989) (Version: 9.0.30729.4148 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…9BE518E6-ECC6-35A9-88E4-87755C07200F) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…1D8E6291-B0D5-35EC-8441-6616F567A0F7) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…F0C3E5D1-1ADE-321E-8167-68EF0DE699A5) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…ca67548a-5ebe-413a-b50c-4b9ceb6d66c6) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.60610 (HKLM-x32…95716cce-fc71-413f-8ad5-56c2892d4b3a) (Version: 11.0.60610.1 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…33d1fd90-4274-48a1-9bc1-97e33d9c2d6f) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…50d4fc8-5d48-4b8f-8972-47c82c46020f) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…f65db027-aff3-4070-886a-0d87064aabb1) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) – 14.13.26020 (HKLM-x32…7474cd6e-76cc-4257-837e-5b9261e526af) (Version: 14.13.26020.0 – Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) – 14.13.26020 (HKLM-x32…5c045b7f-e561-4794-91f8-c6cda0893107) (Version: 14.13.26020.0 – Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32…D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F) (Version: 4.0.30901.0 – Microsoft Corporation)
Minecraft (HKLM-x32…1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872) (Version: 1.0.3.0 – Mojang)
Movavi Video Converter 18 Premium (HKLM-x32…Movavi Video Converter 18 Premium) (Version: 18.4.0 – Movavi)
Mozilla Firefox 75.0 (x64 en-US) (HKLM…Mozilla Firefox 75.0 (x64 en-US)) (Version: 75.0 – Mozilla)
Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 65.0 – Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_NvContainer.NvapiMonitor) (Version: 1.19 – NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.GFExperience) (Version: 3.20.3.63 – NVIDIA Corporation)
NVIDIA Graphics Driver 445.87 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.Driver) (Version: 445.87 – NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.26 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_HDAudio.Driver) (Version: 1.3.38.26 – NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.PhysX) (Version: 9.19.0218 – NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32…90160000-008C-0000-0000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM…90160000-00DD-0000-1000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…90160000-008F-0000-1000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32…90160000-008C-0409-0000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Origin (HKLM-x32…Origin) (Version: 10.5.57.35162 – Electronic Arts, Inc.)
Realtek High Definition Audio Driver (HKLM-x32…F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC) (Version: 6.0.1.8186 – Realtek Semiconductor Corp.)
RimWorld (HKLM-x32…1094900565_is1) (Version: 1.1.2618 rev713 – GOG.com)
Samsung USB Driver for Mobile Phones (HKLM…D0795B21-0CDA-4a92-AB9E-6E92D8111E44) (Version: 1.5.63.0 – Samsung Electronics Co., Ltd.)
Signal 1.33.1 (HKUS-1-5-21-4250991329-2939192951-560751505-1000…7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.33.1 – Open Whisper Systems)
Skype version 8.33 (HKLM-x32…Skype_is1) (Version: 8.33 – Skype Technologies S.A.)
Smart Player 3.37.2 (HKLM-x32…Smart Player) (Version: 3.37.2 – )
SmartPSS 2.0 (HKLM-x32…SmartPSS) (Version: 2.0 – )
Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)
Syncios Data Transfer 3.0.4 (HKLM-x32…Syncios Data Transfer) (Version: 3.0.4 – Anvsoft)
TAP-Windows 9.9.2 (HKLM…TAP-Windows) (Version: 9.9.2 – )
The Lord of the Rings Online™ v1903.0058.2732.4095 (HKLM-x32…12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 1903.0058.2732.4095 – Standing Stone Games, LLC)
The Sims™ 4 (HKLM-x32…48EBEBBF-B9F8-4520-A3CF-89A730721917) (Version: 1.59.73.1020 – Electronic Arts Inc.)
Tixati (HKLM-x32…tixati) (Version:  – )
TP-LINK Archer T4U Driver (HKLM-x32…1672C2A7-911A-45D5-84C4-263B771C50AE) (Version: 1.3.1 – TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32…319D91C6-3D44-436C-9F79-36C0D22372DC) (Version: 1.3.1 – TP-LINK)
TurboTax 2016 (HKLM-x32…TurboTax 2016) (Version: 2016.0 – Intuit, Inc)
TurboTax 2017 (HKLM-x32…TurboTax 2017) (Version: 2017.0 – Intuit, Inc)
Uplay (HKLM-x32…Uplay) (Version: 4.0 – Ubisoft)
VdhCoApp 1.2.4 (HKLM…weh-iss-net.downloadhelper.coapp_is1) (Version:  – DownloadHelper)
VeraCrypt (HKLM-x32…VeraCrypt) (Version: 1.22 – IDRIX)
VisiPics V1.31 (HKLM-x32…VisiPics_is1) (Version:  – Ozone)
VLC media player (HKLM…VLC media player) (Version: 3.0.8 – VideoLAN)
VLC media player (HKLM-x32…VLC media player) (Version: 3.0.6 – VideoLAN)
VPNetwork LLC – TorGuard – Online Privacy Protection Services (HKLM-x32…VPNetwork LLC TorGuard) (Version: “3.97.4” – “VPNetwork LLC”)
WinCDEmu (HKLM-x32…WinCDEmu) (Version: 4.1 – Sysprogs)
WinMerge 2.14.0 (HKLM-x32…WinMerge_is1) (Version: 2.14.0 – Thingamahoochie Software)
WinRAR 5.61 (64-bit) (HKLM…WinRAR archiver) (Version: 5.61.0 – win.rar GmbH)
wufuc (HKLM…AF23CE93-4FB0-4A8A-A8D6-7A97151BCC14) (Version: 0.7.1.81 – zeffy)
Zoom (HKUS-1-5-21-4250991329-2939192951-560751505-1000…ZoomUMX) (Version: 4.1 – Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID149DD748-EA85-45A6-93C5-AC50D0260C98localserver32 -> C:Program FilesAutodeskAutoCAD LT 2015acadlt.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID162C6FB5-44D3-435B-903D-E613FA093FB5InprocServer32 -> C:UsersKevinAppDataLocalMicrosoftOneDrive17.3.6743.1212amd64FileCoAuthLib64.dll => No File
CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID74F5CC00-49A9-11CF-A2F9-444553540000InprocServer32 -> C:Program FilesAutodeskAutoCAD LT 2015en-USacadltficn.dll (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSIDe8c77137-e224-5791-b6e9-ff0305797a13InprocServer32 -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> 853B7E05-C47D-4985-909A-D0DC5C6D7303 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> 42D38F2E-98E9-4382-B546-E24E4D6D04BB => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> 36A21736-36C2-4C11-8ACB-D4136F2B57BD => C:Windowssystem32AcSignIcon.dll [2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)
ContextMenuHandlers1: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> 2E7A2C6C-B938-40a4-BA1C-C7EC982DC202 => C:Program FilesCommon FilesAutodesk SharedAcShellExAcShellExtension.dll [2014-02-07] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [WinCDEmu] -> D0E37FD2-F675-426F-B09A-2CF37BA46FD5 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers1: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers1: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers2: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers4: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> 3D1975AF-48C6-4f8e-A182-BE0E08FA86A9 => C:Windowssystem32nvshext.dll [2020-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers6: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers6: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Drivers32: [VIDC.XVID] => C:WindowsSysWOW64xvidvfw.dll [243200 2011-06-24] () [File not signed]
HKLM…Drivers32: [VIDC.LAGS] => C:WindowsSysWOW64lagarith.dll [216064 2011-12-07] ( ) [File not signed]
HKLM…Drivers32: [VIDC.FFDS] => C:WindowsSysWOW64ff_vfw.dll [112640 2012-12-24] () [File not signed]
HKLM…Drivers32: [msacm.ac3acm] => C:WindowsSysWOW64ac3acm.acm [151552 2011-12-21] (fccHandler) [File not signed]
HKLM…Drivers32: [vidc.VP60] => C:WindowsSysWOW64vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM…Drivers32: [vidc.VP61] => C:WindowsSysWOW64vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-03-26 13:58 – 2018-03-26 13:58 – 000112128 _____ ( (Microsoft Corporation) [File not signed])  [File is in use ] C:WindowsMicrosoft.NetassemblyGAC_32System.EnterpriseServicesv4.0_4.0.0.0__b03f5f7f11d50a3aSystem.EnterpriseServices.Wrapper.dll
2017-12-22 13:02 – 2009-02-27 17:38 – 000139264 ____R () [File not signed] C:Program Files (x86)BrotherBrUtilitiesBrLogAPI.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 000511987 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibgcc_s_sjlj-1.dll
2018-09-28 08:02 – 2018-09-28 08:02 – 000128239 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardliblzo2-2.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 003311313 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibunbound-8.dll
2017-12-22 13:02 – 2005-04-21 21:36 – 000143360 _____ () [File not signed] C:Windowssystem32BrSNMP64.dll
2017-12-22 13:02 – 2012-07-02 09:24 – 000007168 _____ (Brother Industries Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRLFXA5C.DLL
2017-12-22 13:02 – 2012-07-02 09:24 – 000231936 _____ (Brother Industries Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRUFXA5C.dll
2017-12-22 13:02 – 2012-04-23 16:03 – 000380928 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrMonitor.dll
2017-12-22 13:02 – 2010-09-29 18:07 – 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BroSNMP.dll
2017-12-22 13:02 – 2011-02-28 12:32 – 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrFirmUpdateCheck.dll
2017-12-22 13:02 – 2012-01-11 15:39 – 000626688 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrStMonWRes.dll
2017-12-22 13:02 – 2012-08-28 12:51 – 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcAssoc.dll
2017-12-22 13:02 – 2012-07-06 14:33 – 000098304 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcDlgRc.dll
2017-12-22 13:02 – 2012-07-06 14:33 – 017694720 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcGrImg.dll
2017-12-22 13:02 – 2012-07-17 14:36 – 000090112 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcLUsa.dll
2017-12-22 13:02 – 2012-07-05 04:32 – 000084480 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32BrNetSti.dll
2020-01-03 16:29 – 2007-02-14 10:21 – 000231424 _____ (Hewlett-Packard Corporation) [File not signed] C:Windowssystem32spoolPRTPROCSx64hpzpp4wm.DLL
2017-12-17 14:44 – 2013-02-02 16:41 – 000079360 _____ (hxxp://winmerge.org) [File not signed] C:Program Files (x86)WinMergeShellExtensionX64.dll
2017-12-22 13:05 – 2017-12-22 13:05 – 000065536 _____ (Microsoft Corporation) [File not signed] C:WindowsWinSxSx86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774vcomp.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 000242489 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibwinpthread-1.dll
2015-09-25 14:34 – 2015-09-28 11:08 – 000255488 _____ (Sysprogs OU) [File not signed] C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 002274558 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardLIBEAY32.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 000573933 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardSSLEAY32.dll
2016-12-01 03:44 – 2016-12-01 03:44 – 000039424 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardbearerqgenericbearer.dll
2016-12-01 03:44 – 2016-12-01 03:44 – 000041984 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardbearerqnativewifibearer.dll
2016-12-01 07:28 – 2016-12-01 07:28 – 000040960 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqdds.dll
2016-12-01 03:43 – 2016-12-01 03:43 – 000026112 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqgif.dll
2016-12-01 07:28 – 2016-12-01 07:28 – 000033280 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqicns.dll
2016-12-01 03:43 – 2016-12-01 03:43 – 000027648 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqico.dll
2016-12-01 03:43 – 2016-12-01 03:43 – 000245760 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqjpeg.dll
2016-12-01 06:38 – 2016-12-01 06:38 – 000021504 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqsvg.dll
2016-12-01 07:29 – 2016-12-01 07:29 – 000020992 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqtga.dll
2016-12-01 07:29 – 2016-12-01 07:29 – 000316416 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqtiff.dll
2016-12-01 07:29 – 2016-12-01 07:29 – 000019968 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqwbmp.dll
2016-12-01 07:30 – 2016-12-01 07:30 – 000370688 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqwebp.dll
2016-12-01 03:44 – 2016-12-01 03:44 – 001066496 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardplatformsqwindows.dll
2020-01-05 12:09 – 2020-01-05 12:09 – 004633088 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Core.dll
2016-12-01 03:35 – 2016-12-01 03:35 – 004865024 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Gui.dll
2016-12-01 03:31 – 2016-12-01 03:31 – 000847872 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Network.dll
2016-12-01 06:38 – 2016-12-01 06:38 – 000255488 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Svg.dll
2016-12-01 08:43 – 2016-12-01 08:43 – 000110592 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5WebSockets.dll
2016-12-01 03:40 – 2016-12-01 03:40 – 004448768 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Widgets.dll
2017-07-16 00:47 – 2017-07-16 00:47 – 000148480 _____ (zeffy) [File not signed] C:Program Fileswufucwufuc.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:WindowsSwUSB.exe:AGC [0]
AlternateDataStreams: C:UsersKevinDownloadsAdobe Illustrator CS6 16.0.0 (32-64 bit) [ChingLiu]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsAdobe Photoshop CS6 13.0.1 Final  Multilanguage (cracked dll) [ChingLiu]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsAdobe Photoshop CS6 13.1.2 Extended Multilanguage [ChingLiu]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsAnt Videos:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsavidemux_2.7.0_win64.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsavidemux_2.7.1_win64.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsBefore.Sunset.2004.1080p.BRrip.HEVC.x265-GIRAYS:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsCASPER_SE_SETUP_10_1_6704.EXE:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsCASPER_SE_SETUP_8_0_4612.EXE:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsDCUO_setup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsddfbusty.com – siterip:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsDropboxInstaller.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsepson13829(1).exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsFolderSize.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsiTunes64Setup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsjre-8u151-windows-x64.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadslotrolive.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsmb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsMFC-J825DW-inst-C1-usa.EXE:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsMovaviVideoConverterSetupF.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsOriginSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsOriginThinSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsSetup.X86.en-us_O365ProPlusRetail_0c5e4a56-ee61-43ec-b381-d41a712612ed_TX_PR_b_64_.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadssetuplanguagepack.x64.ja-jp_.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsSRTa.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsStar-trek-online_ArcSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsSteamSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadssyncios_data_transfer.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstixati-2.55-1.win64-install.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorbrowser-install-7.5.6_en-US.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-latest.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-v0.3.78.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-v3.86.1.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.1.1.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.2.3.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.2.4.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVeraCrypt Setup 1.22.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsvipre_defcleaner.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsvlc-2.2.8-win32.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsWinCDEmu-4.1.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadswinxpvirtualcdcontrolpanel_21.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadswpsetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsZoomInstaller(1).exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloads[2005] All Of Me (Greatest Hits) – Anne Murray @ 320kbs [only1joe]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloads[nextorrent.net] Adobe Photoshop CC 2017 18.0 x64:Shareaza.GUID [34]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkVipreEdgeProtection => “”=”service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkWebExaminer => “”=”Driver”

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKUS-1-5-21-4250991329-2939192951-560751505-1000SoftwareClasses.scr: AutoCADLTScriptFile => C:Windowssystem32notepad.exe “%1”

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKUS-1-5-21-4250991329-2939192951-560751505-1000…sharepoint.com -> hxxps://mycicsuci-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 – 2018-10-11 08:21 – 000000824 _____ C:Windowssystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)Common FilesOracleJavajavapath;C:ProgramDataOracleJavajavapath;C:Program Files (x86)InteliCLS Client;C:Program FilesInteliCLS Client;C:Windowssystem32;C:Windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:Program Files (x86)IntelUCRT;C:Program FilesIntelUCRT;C:Program Files (x86)IntelIntel® Management Engine ComponentsDAL;C:Program FilesIntelIntel® Management Engine ComponentsDAL;C:Program Files (x86)IntelIntel® Management Engine ComponentsIPT;C:Program FilesIntelIntel® Management Engine ComponentsIPT;C:Program FilesNVIDIA CorporationNVIDIA NvDLISR;C:Program Files (x86)NVIDIA CorporationPhysXCommon
HKUS-1-5-21-4250991329-2939192951-560751505-1000Control PanelDesktop\Wallpaper -> C:UsersKevinAppDataRoamingMicrosoftWindowsThemesTranscodedWallpaper.jpg
DNS Servers: 10.9.0.1 – 10.8.0.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIGServices: Apple Mobile Device Service => 2
MSCONFIGServices: Bonjour Service => 2
MSCONFIGServices: ESRV_SVC_QUEENCREEK => 2
MSCONFIGServices: iPod Service => 3
MSCONFIGServices: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIGServices: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIGstartupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:WindowspssTP-LINK Wireless Configuration Utility.lnk.CommonStartup
MSCONFIGstartupreg: Adobe Creative Cloud => “C:Program Files (x86)AdobeAdobe Creative CloudACCCreative Cloud.exe” –showwindow=false –onOSstartup=true
MSCONFIGstartupreg: AdobeAAMUpdater-1.0 => “C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe”
MSCONFIGstartupreg: BlueStacks Agent => C:Program Files (x86)BlueStacksHD-Agent.exe
MSCONFIGstartupreg: com.squirrel.Teams.Teams => C:UsersKevinAppDataLocalMicrosoftTeamsUpdate.exe –processStart “Teams.exe” –process-start-args “–system-initiated”
MSCONFIGstartupreg: com.squirrel.WhatsApp.WhatsApp => C:UsersKevinAppDataLocalWhatsAppUpdate.exe –processStart “WhatsApp.exe”
MSCONFIGstartupreg: Dropbox => “C:Program Files (x86)DropboxClientDropbox.exe” /systemstartup
MSCONFIGstartupreg: iTunesHelper => “C:Program FilesiTunesiTunesHelper.exe”
MSCONFIGstartupreg: TeamsMachineInstaller => %ProgramFiles%Teams InstallerTeams.exe –checkInstall –source=PROPLUS

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%system32sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%system32sppsvc.exe No File
FirewallRules: [846E4602-E7B6-4243-B9DD-5EA7061C69AB] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [67D6ACC3-664B-465C-9ECF-6BE32F660877] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [D95F651D-1002-4E5F-B7D6-0AE399D15308] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [D8FB9509-7270-40AF-B5C4-8140223155AE] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [517D608A-7568-4064-B124-969C4ADE1D54] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [8A969959-8387-4915-87B5-8126290DB92D] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [A068161F-A4EA-4F80-9B41-34437756A37A] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [E179E702-1723-418E-BF3C-0B9108936D24] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [E54F8E38-EB3A-4E38-BA90-AA9FC31D0F76] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [7785D835-361A-4357-AEA5-0F86BB01D545] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [FBF047D4-996A-4757-9AB5-6C9AF6EC4E42] => (Allow) C:Program Files (x86)SteamsteamappscommonRome Total War Alexandertestappa.exe No File
FirewallRules: [4A02A123-0B77-4906-A0AF-CAB333B1B9F6] => (Allow) C:Program Files (x86)SteamsteamappscommonRome Total War Alexandertestappa.exe No File
FirewallRules: [B01BC6C6-A84F-4F08-B033-E029A2F68D85] => (Allow) C:Program Files (x86)SteamsteamappscommonOri DEoriDE.exe No File
FirewallRules: [088D858D-DE79-42AB-8D8D-87CDC5FDB44D] => (Allow) C:Program Files (x86)SteamsteamappscommonOri DEoriDE.exe No File
FirewallRules: [52CA5507-2191-4385-BA16-A038E3C6EDC3] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of Nationspatriots.exe No File
FirewallRules: [621A1269-E00F-45A1-8B78-4256FCFB224E] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of Nationspatriots.exe No File
FirewallRules: [9345FE84-4148-4747-911D-9620E0254139] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No File
FirewallRules: [A27D43EB-D5DF-44AA-9A34-45494FDBC4EB] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No File
FirewallRules: [79F01A62-9793-48D8-AEB0-739A2F2303D1] => (Allow) C:Program Files (x86)SteamsteamappscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [93B5509E-2980-41AF-A6E7-09C65E8DAE20] => (Allow) C:Program Files (x86)SteamsteamappscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [FDBD51E5-FB00-4730-8708-94F791D99923] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Witcher 3binx64witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [3726E4C0-6ECB-48C4-B909-14DF2600C5DC] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Witcher 3binx64witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [62212345-1D57-452F-A41B-80AC58B86439] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_SkylinesCities.exe () [File not signed]
FirewallRules: [A4E14026-94F0-48FD-A0AC-3BFC2C37631F] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_SkylinesCities.exe () [File not signed]
FirewallRules: [CB44877C-CB9D-491E-83EB-F60675CFD737] => (Allow) C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [BAB20944-B6BA-493B-BA4C-CB59429E7057] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [071E4B88-973C-4F08-AC18-33B1D2A6A558] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [328B0493-9AF9-4AA2-A88A-1F17B497E805] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [7FEF3CE5-A019-48A1-9404-9BBA278A8BEC] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [531E6327-C961-4F5A-904B-DF3924473D08] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVeu4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [AE4FCF2C-9A55-43CD-8876-EA500B0D9843] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVeu4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [0A5BFF7A-3E64-4879-A0B8-A1D78B6618D1] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [A5F0B236-C290-41A4-8BF7-05E1610BB288] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [07165169-E806-46EF-806D-5F7470AB9AE4] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [5E416C1D-4D01-460D-B729-F52609AE1640] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [62788860-FB1C-409F-90E2-63706E71151A] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [B0D09008-B595-40AA-A078-44DDB6C04B52] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [90289718-D60D-488B-9AAD-4E0675C5FD3B] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [99D1D56C-A4F2-4A5F-A81B-AD65BA9FBD97] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [B73013D2-4D19-4F1D-B506-3318C52BE0CF] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [56A87FCE-9681-4566-AE08-5EFECADF33B5] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [047A23EF-43D8-4989-BFFE-EA454468F4D7] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2MassEffect2Launcher.exe No File
FirewallRules: [1477B1FF-07EC-497A-82A6-252306710EE0] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2MassEffect2Launcher.exe No File
FirewallRules: [BC32DCA6-0DFC-4DAA-8F1B-0CDB1573A265] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [54FB0439-2C5E-4916-B0F2-A898BC997D36] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [DF7FB258-4112-4B9F-8386-895E3011B77B] => (Allow) C:Program Files (x86)SteamsteamappscommonEndless LegendEndlessLegend.exe () [File not signed]
FirewallRules: [95BAD206-9832-450E-AF67-BE57D6B48DBB] => (Allow) C:Program Files (x86)SteamsteamappscommonEndless LegendEndlessLegend.exe () [File not signed]
FirewallRules: [E0ADBE76-76D0-4034-A535-F6B2C174FAF3] => (Allow) C:Program Files (x86)SteamsteamappscommonHalf-Life 2hl2.exe No File
FirewallRules: [89F5CDB1-525A-4031-B2B6-29ECBB46223C] => (Allow) C:Program Files (x86)SteamsteamappscommonHalf-Life 2hl2.exe No File
FirewallRules: [EEACD82D-4A29-4C5E-9DF1-EEE441F3E627] => (Allow) C:Program Files (x86)SteamsteamappscommonPortalhl2.exe No File
FirewallRules: [56148D36-5592-4A6A-BD9A-0511D33B1558] => (Allow) C:Program Files (x86)SteamsteamappscommonPortalhl2.exe No File
FirewallRules: [82CD4A69-A515-4F39-8FBA-99125E8A1617] => (Allow) C:Program Files (x86)SteamsteamappscommonPortal 2portal2.exe No File
FirewallRules: [A62199B1-E081-44A2-9BA8-856B961A8D56] => (Allow) C:Program Files (x86)SteamsteamappscommonPortal 2portal2.exe No File
FirewallRules: [83BA3315-2754-4DA8-AC60-32BD308E80F5] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of the Tomb RaiderROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [A1B67EF9-AC58-4EA9-84BC-064A04C97524] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of the Tomb RaiderROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [BAAC7E77-5A11-459D-BE6B-4A6EEF517C31] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout New VegasFalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [EBE747B2-A3FA-4D3D-A580-2CD2D253A855] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout New VegasFalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [5C0BEAB6-6822-47F5-920C-653F9CCC3C84] => (Allow) C:Program Files (x86)SteamsteamappscommonTransistorx64Transistor.exe No File
FirewallRules: [BB47EE73-F1E8-4577-B80F-16751CB5F8A2] => (Allow) C:Program Files (x86)SteamsteamappscommonTransistorx64Transistor.exe No File
FirewallRules: [0EFDEE5E-FB7B-46A6-8C88-748586877174] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [4BD58CFB-5590-4681-9A66-8C518C8C788D] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [90B37D59-FF32-49FA-81AE-4380C982833F] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [AEFCBAE9-DED9-42EB-B885-89E8CF2AB7ED] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [04FB09B0-6751-4281-AD90-0493C6F5AA83] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [6381F013-3725-4C84-B801-A375835C9211] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [A5F1F507-00ED-4C58-B1B5-A5BE1FF9971B] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [B320E367-4915-4CC8-8F15-F45B6397BC70] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [969E7919-2A50-4D03-85F8-5B6987B41F08] => (Allow) C:Program Files (x86)BrotherBrmfl11aFAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [DA101ED0-CF83-45EC-B9EC-042D9CB665CF] => (Allow) C:Program Files (x86)BrotherBrmfl11aFAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [9A8BEFB1-8A7E-4BCB-AAEB-3FD7AFC8A3D5] => (Allow) LPort=161
FirewallRules: [C788C3B8-AEAA-4122-BCD7-D084EEB0D651] => (Allow) C:Program Files (x86)SteamsteamappscommonPreyBinariesDaniellex64ReleasePrey.exe (Arkane Studios) [File not signed]
FirewallRules: [AB613C3D-9DC1-4CCC-B4CA-37460E0B5CB7] => (Allow) C:Program Files (x86)SteamsteamappscommonPreyBinariesDaniellex64ReleasePrey.exe (Arkane Studios) [File not signed]
FirewallRules: [112D8DBF-C662-4E9C-BE3B-A0E9E22FCD1A] => (Allow) C:Program Files (x86)SteamsteamappscommonDDDADDDA.exe (Capcom U.S.A., Inc.) [File not signed]
FirewallRules: [48718C37-AA30-485D-A156-B0E5580E2C4E] => (Allow) C:Program Files (x86)SteamsteamappscommonDDDADDDA.exe (Capcom U.S.A., Inc.) [File not signed]
FirewallRules: [8D6311D2-304A-4EA6-B5F5-8A8BF7C0F16D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadow TacticsShadow Tactics.exe () [File not signed]
FirewallRules: [4C8ED993-EFB9-4658-B760-02F246BE7E85] => (Allow) C:Program Files (x86)SteamsteamappscommonShadow TacticsShadow Tactics.exe () [File not signed]
FirewallRules: [3D163632-2CE9-499D-8813-1B2144186CA0] => (Allow) C:Program Files (x86)SteamsteamappscommonAssassin’s Creed IV Black FlagAC4BFSP.exe No File
FirewallRules: [3C1FC11C-4B5A-4374-BF5F-55286B86A02A] => (Allow) C:Program Files (x86)SteamsteamappscommonAssassin’s Creed IV Black FlagAC4BFSP.exe No File
FirewallRules: [TCP Query User4508AEE9-DCE9-4D53-81C0-BE08AC84DC2CC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [UDP Query User4DBADB1E-818A-4CD8-B5A0-67B325E047EBC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [TCP Query User03D4CFCD-CD49-4CDC-AA2F-E82E3E3FE11FC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [UDP Query UserA4D34AEF-8C86-4753-A80D-D51344814130C:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [4D5960B1-2A01-4907-8883-407D176702C5] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [A772A869-1017-4FDB-A43E-C6D789243F74] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [902921B2-F900-486A-A465-894EF3F3BB7D] => (Allow) C:Program Files (x86)SteamsteamappscommonHacknetHacknet.exe () [File not signed]
FirewallRules: [417848CF-D774-4295-8C63-64A1F596AAD2] => (Allow) C:Program Files (x86)SteamsteamappscommonHacknetHacknet.exe () [File not signed]
FirewallRules: [0782BB30-6F73-4D8E-A6E1-BE4A979AB297] => (Allow) C:UsersKevinAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [A770D07B-4AF6-458E-918A-00F79965B4FB] => (Allow) C:UsersKevinAppDataRoamingZoombinairhost.exe No File
FirewallRules: [EC211640-2740-4835-81DD-75522A664FDD] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4.exe No File
FirewallRules: [F5F5FE02-87FB-412A-BCC8-3A1B4861826C] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4.exe No File
FirewallRules: [35C4BF3E-90E4-4A32-9E25-63BBFF21D7FA] => (Allow) C:Program Files (x86)BlueStacksHD-Player.exe No File
FirewallRules: [FC97D62B-6523-40F4-9A38-27564E69548E] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [B22C71EB-20E7-45D7-B479-2F28E4A5560B] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [1D8F747D-EB05-4836-8859-DEAAF8A4D58F] => (Allow) C:Program Files (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [3F353260-D351-4F2E-9D79-54BB01F867E8] => (Allow) C:Program Files (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [D5FA710F-6F47-4BD1-9513-C45F885C25DC] => (Allow) C:Program Files (x86)AnvSoftSyncios Data TransferSynciosTransfer.exe No File
FirewallRules: [88F3C470-7523-4291-A65D-5BED49529A0D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [510E3107-8724-465E-B11F-6627DF3495FC] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [A595D386-53E1-4512-A257-845364B12791] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [A1F4ECE8-D9B0-4146-86EB-7C73B7DA10FD] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [D2D4521B-6B99-46FC-AE09-729E31C2ACD6] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [7B7310A2-3731-419F-B1B4-DFCFA1EF880C] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [98C42D62-F884-4386-B316-7152B0C059F4] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [0D84FB84-202E-455E-B244-9C689583F1A6] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [9DBD86AA-300F-4F52-9DED-155BF7D1A2EC] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [852F6D96-B05A-4808-AEEF-AD5A37C110F9] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [E6FF8591-FA65-475D-A4DB-31C48FEE9A32] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [8F14B9C9-AA65-4034-9C98-6A9F0B988067] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [93DE2622-D487-4306-881C-E496AB512735] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [5FB84764-6A08-4AC2-9C34-E2D21234B73F] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [2A14805D-3555-4FBB-B8F9-A617518DFD83] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [122A0B86-7755-40D1-B7EE-78D8C5F6595D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [TCP Query UserF341763C-ACE6-4220-8C92-688D67B115CDC:program filestixatitixati.exe] => (Allow) C:program filestixatitixati.exe (Tixati Software Inc. -> Tixati Software Inc.)
FirewallRules: [UDP Query User3B7625DC-9943-4037-81B0-55272F94BBD5C:program filestixatitixati.exe] => (Allow) C:program filestixatitixati.exe (Tixati Software Inc. -> Tixati Software Inc.)
FirewallRules: [TCP Query User282A8303-157D-42F8-B0AC-18B3A9703A1AC:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe] => (Allow) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [UDP Query UserBF51C937-976B-4E29-9843-FC1E6302D529C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe] => (Allow) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [D454DFC3-6314-4510-9052-72465EE53173] => (Block) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [2108201E-8AFB-4ED9-B87A-CBC3E4092F85] => (Block) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [5DA0F714-A817-49BD-82CA-4066A606E0AD] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [DFDF01E9-4299-4009-8850-8B98F83BC89F] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [B8E888BE-E97F-4015-AF72-A282AE862076] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [3CE57107-2551-4A5F-B744-BE1959B1E4A9] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [F12B9CA7-7242-41A1-971A-5E02698646DB] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [85DB2CF2-1683-4F97-82BE-45546BBA61EC] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [D1303D80-27D6-4995-8FA5-E40FCA50DDF2] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdater.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [EE5EAFB1-524C-4404-AC0B-27F9E9EC23A1] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [6A106A7B-EB1D-454C-B97B-73DE8D992644] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [7C8D43C6-433C-4005-92BA-0C2BE53352A8] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [668E2671-74BD-4BE8-BF7F-29AF7F04042C] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [BE15BF0E-D526-44FD-8CCC-1BFD3B1BFCB7] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [A382F4B0-D1A0-4653-9049-4A7BF8C0400F] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [29B4C330-C935-44CB-99A8-157F093961FC] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [FAB657F4-F3EA-4101-AC8B-A85F9054BB86] => (Allow) LPort=50248
FirewallRules: [3B322613-D262-413D-9845-A2B6A039FDDD] => (Allow) H:Steam GamessteamappscommonHalf-Life 2hl2.exe (Valve -> )
FirewallRules: [BCB57B96-81CD-4976-AC55-55798126114C] => (Allow) H:Steam GamessteamappscommonHalf-Life 2hl2.exe (Valve -> )
FirewallRules: [5A58CDA7-2614-4060-A01A-C0A8C9797215] => (Allow) H:Steam GamessteamappscommonPortalhl2.exe (Valve -> )
FirewallRules: [BC4D40A1-9638-4778-98CD-AEC95EDED230] => (Allow) H:Steam GamessteamappscommonPortalhl2.exe (Valve -> )
FirewallRules: [4B4A8D66-4248-4D1E-88DF-AC209AAEC995] => (Allow) H:Steam GamessteamappscommonPortal 2portal2.exe () [File not signed]
FirewallRules: [D42BCEB7-0D9C-4D87-ADF9-1D7878E5B1AF] => (Allow) H:Steam GamessteamappscommonPortal 2portal2.exe () [File not signed]
FirewallRules: [C2A5C781-F91D-404D-8906-DDB81E2B37B5] => (Allow) H:Steam GamessteamappscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)
FirewallRules: [D45479D2-40DB-4360-B1B9-5F06ADB0A124] => (Allow) H:Steam GamessteamappscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)
FirewallRules: [A020A3FF-57DC-4479-BA31-3010AEBA98ED] => (Allow) H:Steam GamessteamappscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)
FirewallRules: [F0B1CEB9-1810-4EF3-9C78-B7B70B0F6623] => (Allow) H:Steam GamessteamappscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)
FirewallRules: [A962CBB2-908A-40FE-9D2A-8C7732714FD6] => (Allow) H:Steam GamessteamappscommonTransistorx64Transistor.exe (Supergiant Games, LLC) [File not signed]
FirewallRules: [3EEAD57F-DC09-4642-B367-0FDD06AC411C] => (Allow) H:Steam GamessteamappscommonTransistorx64Transistor.exe (Supergiant Games, LLC) [File not signed]
FirewallRules: [7B1DE141-AC19-48F0-AED5-910203920A45] => (Allow) H:Steam GamessteamappscommonAssassin’s Creed IV Black FlagAC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [63C0D939-D179-4683-B935-6DA131B1DC96] => (Allow) H:Steam GamessteamappscommonAssassin’s Creed IV Black FlagAC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [88CCD2F5-E8C5-4DD8-A518-7A69FEF0EE03] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos.exe (GHI Media LLC -> Croteam)
FirewallRules: [AC6C793A-96CB-44F9-A7A0-723B0E69A922] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos.exe (GHI Media LLC -> Croteam)
FirewallRules: [92C00313-5375-4367-8034-D4F5EE0B6713] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe (GHI Media LLC -> Croteam)
FirewallRules: [A5C99289-3667-4738-978E-A662CE1418DA] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe (GHI Media LLC -> Croteam)
FirewallRules: [A2B503CF-F754-49F9-961B-711C5726D37A] => (Allow) H:Steam GamessteamappscommonOri DEoriDE.exe () [File not signed]
FirewallRules: [6581BA0E-2513-42D8-ACB5-E0862185C9B4] => (Allow) H:Steam GamessteamappscommonOri DEoriDE.exe () [File not signed]
FirewallRules: [3A752978-246F-4DFB-B8F3-8800A3DE30FD] => (Allow) C:Program Files (x86)SteamsteamappscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [431ED6F3-C751-4AD1-A60F-5848B618890F] => (Allow) C:Program Files (x86)SteamsteamappscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [EF73EA5A-1774-44D1-AC26-E7B7D889E2F2] => (Allow) H:Steam GamessteamappscommonOpus MagnumLightning.exe () [File not signed]
FirewallRules: [31A0CCA5-877A-4C5C-833F-087CC10B4679] => (Allow) H:Steam GamessteamappscommonOpus MagnumLightning.exe () [File not signed]
FirewallRules: [82EE471F-665E-41DB-B5B1-546202F4ED52] => (Allow) H:Steam GamessteamappscommonDon’t Starve Togetherbindontstarve_steam.exe No File
FirewallRules: [65963D6E-1307-4D0D-99C4-BE8E30BCF078] => (Allow) H:Steam GamessteamappscommonDon’t Starve Togetherbindontstarve_steam.exe No File
FirewallRules: [10B93F89-D659-4F15-9595-E93B0EEE5515] => (Allow) H:Steam GamessteamappscommonShadowOfMordorx64ShadowOfMordor.exe (WB Games, Inc.) [File not signed]
FirewallRules: [353E2741-C0E1-44D5-9398-058E09B083EE] => (Allow) H:Steam GamessteamappscommonShadowOfMordorx64ShadowOfMordor.exe (WB Games, Inc.) [File not signed]
FirewallRules: [6A76D028-C503-409A-A8D4-20177FD4AE32] => (Allow) H:Steam GamessteamappscommonRise of Nationspatriots.exe (TODO: <Company name>) [File not signed]
FirewallRules: [2AFAE238-4F23-4550-A2D4-2C7C4BA5A8D1] => (Allow) H:Steam GamessteamappscommonRise of Nationspatriots.exe (TODO: <Company name>) [File not signed]
FirewallRules: [1F45493A-5CBA-48BA-B890-0E2B6CE59AEF] => (Allow) H:Steam GamessteamappscommonTomb RaiderTombRaider.exe (Square Enix) [File not signed]
FirewallRules: [D06CED37-982B-44F7-B9D9-F83C4C8BC1AA] => (Allow) H:Steam GamessteamappscommonTomb RaiderTombRaider.exe (Square Enix) [File not signed]
FirewallRules: [5F35B8EC-3864-4E8D-A8BD-1C852CF08CAC] => (Allow) H:Steam GamessteamappscommonDishonoredBinariesWin32Dishonored.exe (Bethesda Softworks -> ZeniMax Media Inc.)
FirewallRules: [63C7659B-1430-4E25-8970-01A7CF98C0EB] => (Allow) H:Steam GamessteamappscommonDishonoredBinariesWin32Dishonored.exe (Bethesda Softworks -> ZeniMax Media Inc.)
FirewallRules: [82D9E476-4A6F-42CF-B8BB-7C453DE534A2] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBin_LETS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [27F43EC4-0EA2-42F0-B4C2-5C6E5BD350F6] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBin_LETS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [9604041D-AE4A-433D-905A-7D71FE4B49D6] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [5851A150-6484-4DA8-9A3E-B1DE33D3B458] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [298F3BDB-EAE0-4777-88EF-E640BF7A1C36] => (Allow) C:Program Files (x86)AnvsoftSyncios Data TransferSyncios Data Transfer.exe (Anvsoft Inc. -> Anvsoft)
FirewallRules: [AEE5EAF8-E5F5-4657-BFA8-60D2BDEFEE13] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [8BF9E306-BB85-4254-B9B7-B0174BA1B18A] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [09233D4C-4425-42E0-BA35-AD0C10B9CA47] => (Allow) H:Steam GamessteamappscommonDivinity Original Sin 2binSupportTool.exe (Larian Studios -> Larian Studios)
FirewallRules: [67E7AC73-08A7-4FDE-9777-BBBE1D67CBC4] => (Allow) H:Steam GamessteamappscommonDivinity Original Sin 2binSupportTool.exe (Larian Studios -> Larian Studios)
FirewallRules: [TCP Query UserB57CB413-8591-4427-A575-07765666B1E2H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe] => (Allow) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [UDP Query User09216822-2E66-48F7-9D14-059BB59857A2H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe] => (Allow) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [8B54B3FA-0222-4949-9C6A-94EDC91FEBCA] => (Block) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [41A84CDC-0CD1-4D99-B461-7CB5B334CFE9] => (Block) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [D74D5CE3-070B-46CD-87B2-8121ECAD3228] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [EFB7483F-FBDD-4095-96F4-EBC8E5DA0216] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [3E485EBA-B191-4CF4-B401-09E62D74DB3E] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User4178CE08-4E12-4960-9CDD-CC2F60DD33A8C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [UDP Query User13EF9D5E-F3CF-4725-B28A-68A1984BA51AC:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [TCP Query UserE1223002-27B2-4CD4-9EAB-B596CA862754C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [UDP Query UserBB71AB01-BFBC-426D-8B31-3C660D1ECD11C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [TCP Query UserFFCC26E8-C9F9-4CC5-A24B-9DDD3517AEE8C:program files (x86)minecraftruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [UDP Query UserCD3407D7-28D6-4C34-B297-D59DCC47FF3AC:program files (x86)minecraftruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [E5EEEB5D-7F5F-45B9-8D2C-E37ED3B5B2EB] => (Block) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [66E43BB3-2023-4753-847F-96BF0563991B] => (Block) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [07412082-A2B9-4D33-BA39-B5F03C13479A] => (Allow) C:Program FilesiTunesiTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [6DCC8B15-F6E0-4545-A0C5-30C794867217] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)
FirewallRules: [9E71390D-439A-4CC9-83BE-20F1C32A5C66] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [FC4FD25D-6FE6-4A7E-8B6B-CF6219FB6965] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [B5E5AB54-2F3F-49EA-B081-44F22A142E68] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [DACC25E6-E2C1-436A-9A01-6FFA1B598965] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

02-05-2020 00:00:01 Scheduled Checkpoint
02-05-2020 09:59:50 Removed Realtek High Definition Audio Driver
02-05-2020 10:03:25 Installed Realtek High Definition Audio Driver
03-05-2020 10:58:23 Windows Update

==================== Faulty Device Manager Devices ============

Name: PCI Memory Controller
Description: PCI Memory Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.

Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: 4d36e96f-e325-11ce-bfc1-08002be10318
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Base System Device
Description: Base System Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click “Update Driver”, which starts the Hardware Update wizard.

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: 4d36e96b-e325-11ce-bfc1-08002be10318
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: ========================

Application errors:
==================
Error: (05/03/2020 02:09:37 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for “C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest”.Error in manifest or policy file “C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL” on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture=”AMD64″,type=”win32″,version=”16.0.0.0″.
Definition is UccApi,processorArchitecture=”x86″,type=”win32″,version=”16.0.0.0″.
Please use sxstrace.exe for detailed diagnosis.

Error: (05/03/2020 02:09:37 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for “C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest”.Error in manifest or policy file “C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL” on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture=”AMD64″,type=”win32″,version=”16.0.0.0″.
Definition is UccApi,processorArchitecture=”x86″,type=”win32″,version=”16.0.0.0″.
Please use sxstrace.exe for detailed diagnosis.

Error: (05/01/2020 09:54:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Adobe Spaces Helper.exe, version: 0.0.0.0, time stamp: 0x57fde35d
Faulting module name: libcef.dll, version: 3.2526.1347.0, time stamp: 0x572d0cf0
Exception code: 0xc0000005
Fault offset: 0x0000000002656a12
Faulting process id: 0x2360
Faulting application start time: 0x01d61fd5ddfb6e96
Faulting application path: C:Program FilesAdobeAdobe Photoshop CC 2017RequiredPlug-InsSpacesAdobe Spaces Helper.exe
Faulting module path: C:Program FilesAdobeAdobe Photoshop CC 2017RequiredPlug-InsSpaceslibcef.dll
Report Id: 7a720f16-8bcc-11ea-a891-001bdc0fc646

Error: (05/01/2020 09:53:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Photoshop.exe, version: 18.0.0.53, time stamp: 0x57fde9fd
Faulting module name: nvoglv64.DLL, version: 26.21.14.4587, time stamp: 0x5e879687
Exception code: 0x40000015
Fault offset: 0x0000000000f8b15f
Faulting process id: 0xa78
Faulting application start time: 0x01d61fd5da46cb06
Faulting application path: C:Program FilesAdobeAdobe Photoshop CC 2017Photoshop.exe
Faulting module path: C:Windowssystem32nvoglv64.DLL
Report Id: 436c0f76-8bcc-11ea-a891-001bdc0fc646

Error: (05/01/2020 09:53:21 AM) (Source: NVIDIA OpenGL Driver) (EventID: 1) (User: )
Description: Unable to recover from a kernel exception. The application must close.

Error code: 3 (subcode 2)
 (pid=2680 tid=10760 photoshop.exe 64bit)

Visit http://www.nvidia.com/page/support.html for more information.

Error: (04/30/2020 09:31:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Uninstaller-9828.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Faulting module name: Uninstaller-9828.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Exception code: 0x40000015
Fault offset: 0x0002dd8f
Faulting process id: 0x29f0
Faulting application start time: 0x01d61f7161383f50
Faulting application path: C:UsersKevinAppDataLocalTempUninstaller-9828.exe
Faulting module path: C:UsersKevinAppDataLocalTempUninstaller-9828.exe
Report Id: a09e2290-8b64-11ea-a891-001bdc0fc646

Error: (04/30/2020 09:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Uninstaller-9720.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Faulting module name: Uninstaller-9720.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Exception code: 0x40000015
Fault offset: 0x0002dd8f
Faulting process id: 0x1298
Faulting application start time: 0x01d61f7159747c20
Faulting application path: C:UsersKevinAppDataLocalTempUninstaller-9720.exe
Faulting module path: C:UsersKevinAppDataLocalTempUninstaller-9720.exe
Report Id: 9e977d20-8b64-11ea-a891-001bdc0fc646

Error: (04/29/2020 01:21:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for “C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest”.Error in manifest or policy file “C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL” on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture=”AMD64″,type=”win32″,version=”16.0.0.0″.
Definition is UccApi,processorArchitecture=”x86″,type=”win32″,version=”16.0.0.0″.
Please use sxstrace.exe for detailed diagnosis.

System errors:
=============
Error: (05/02/2020 01:08:52 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport DeviceNetBT_Tcpip_4B3751D1-5D87-4830-BC4C-D842B7621544.
The backup browser is stopping.

Error: (05/02/2020 10:05:20 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (05/02/2020 10:03:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/02/2020 10:03:01 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (05/02/2020 10:02:48 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (05/02/2020 10:01:39 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server 1A1F4206-0688-4E7F-BE03-D82EC69DF9A5 did not register with DCOM within the required timeout.

Error: (05/02/2020 10:01:36 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server F9717507-6651-4EDB-BFF7-AE615179BCCF did not register with DCOM within the required timeout.

Error: (05/01/2020 10:08:01 PM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer ROSA-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_4B3751D1-5D87-4830-BC4C-D842B7621544.
The master browser is stopping or an election is being forced.

Windows Defender:
===================================
Date: 2019-08-02 02:20:57.294
Description:
Windows Defender scan has encountered an error and terminated.
Scan ID:A958ABF6-2B52-47B4-9E03-07AB8DD5DF4A
Scan Type:AntiSpyware
Scan Parameters:Quick Scan
Error Code:0x8050800d
Error description:Some history items could not be displayed. Please wait a few minutes and try again. If that doesn’t work, clear the history and then try again.

CodeIntegrity:
===================================

Date: 2020-03-31 11:21:45.803
Description:
Code Integrity is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32l3codeca.acm because the set of per-page image hashes could not be found on the system.

Date: 2020-02-17 19:39:33.669
Description:
Code Integrity is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32l3codeca.acm because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F7 07/07/2017
Motherboard: Gigabyte Technology Co., Ltd. Z270XP-SLI-CF
Processor: Intel® Core™ i5-7600K CPU @ 3.80GHz
Percentage of memory in use: 50%
Total physical RAM: 16338.27 MB
Available physical RAM: 8055.04 MB
Total Virtual: 66674.69 MB
Available Virtual: 54398.87 MB

==================== Drives ================================

Drive c: (Local Disk) (Fixed) (Total:931.22 GB) (Free:43.11 GB) NTFS
Drive e: (Data Disk) (Fixed) (Total:1862.92 GB) (Free:343.55 GB) NTFS
Drive f: (Local Disk) (Fixed) (Total:931.38 GB) (Free:91.05 GB) NTFS
Drive g: (Data Disk) (Fixed) (Total:1862.98 GB) (Free:366.17 GB) NTFS
Drive h: (Games Disk) (Fixed) (Total:931.32 GB) (Free:710.94 GB) NTFS
Drive x: () (Fixed) (Total:8.98 GB) (Free:5.93 GB) FAT32

\?Volume0cba1e43-def4-11e7-8cbd-806e6f6e6963 (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\?Volume60e0020e-203a-11e9-ba7b-e0d55e03309d (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\?Volume0b20b2f4-e42b-11e7-bc9c-e0d55e03309d (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 39D95AD5)
Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)
Partition 2: (Not Active) – (Size=931.2 GB) – (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 3B710C0C)
Partition 1: (Not Active) – (Size=1862.9 GB) – (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2D3CD337)
Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)
Partition 2: (Not Active) – (Size=931.3 GB) – (Type=07 NTFS)

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 305E0EF1)
Partition 1: (Not Active) – (Size=1863 GB) – (Type=07 NTFS)

==========================================================
Disk: 4 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2A230810)
Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)
Partition 2: (Not Active) – (Size=931.4 GB) – (Type=07 NTFS)

==================== End of Addition.txt =======================

Previous articleIp Man 2 2010 Hindi Dual Audio 400MB BRRip 720p HEVC
Next articleNicolas Cage’s mom, former dancer Joy Vogelsang, dead at 85