Serveur d'impression

Suppressions audio intermittentes, gel et plantages du pilote vidéo – Bien choisir son serveur d impression

Le 9 mai 2020 - 106 minutes de lecture

Au cours des 1 à 2 dernières semaines, j'ai rencontré ce problème sur trois ordinateurs différents de ma maison. Tous exécutent Win 7 Pro x64. Pendant le jeu, l'audio s'interrompt périodiquement. Ceci est parfois accompagné du gel du programme. Les opérations de fichiers impliquant l'Explorateur de fichiers Windows gèlent également, par exemple enregistrer une image de Firefox, puis après quelques secondes, ils continueront. Parfois, les gels sont accompagnés d'un écran noir un peu, puis l'affichage revient et Windows affiche un message indiquant que le pilote vidéo a cessé de fonctionner, mais s'est rétabli.

J'ai essayé de mettre à jour les pilotes vidéo, mais cela n'a pas aidé. J'ai également essayé de garder le Gestionnaire des tâches ouvert afin que lorsqu'il se fige, je puisse essayer de voir quel processus utilisait le processeur à ce moment-là. Finalement, je suis devenu suspect d'audiodg.exe, car il semblait utiliser constamment une petite quantité de CPU (~ 4%), et après quelques recherches, j'ai décidé de mettre à niveau les pilotes audio Realtek à partir du site Web du fabricant. Les trois machines ayant des problèmes ont l'audio Realtek. Les pilotes les plus récents que j'ai pu trouver en ligne étaient la version 2.82 de 2017, mais ils étaient plus récents que ce que j'avais, alors je les ai installés. L'amélioration était incroyable. Non seulement le problème a semblé disparaître, mais l'ordinateur a démarré et a fonctionné tellement plus vite! J'étais convaincu que je l'avais compris, et j'ai fait de même pour les deux autres machines.

Depuis ce soir, le saut audio est de retour. Je crains que certains logiciels malveillants n'aient détourné les anciens pilotes audio et laissé quelque chose sur mes ordinateurs. Toute aide serait appréciée. Ces journaux proviennent évidemment d'un seul des trois ordinateurs concernés.

Résultat de l'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Géré par Kevin (administrateur) sur KEVIN-PC (Gigabyte Technology Co., Ltd. Z170XP-SLI) (03-05-2020 23:03:39)
Exécution à partir de C: Users Kevin Downloads
Profils chargés: Kevin (Profils disponibles: Kevin)
Plateforme: Windows 7 Professional Service Pack 1 (X64) Langue: anglais (États-Unis)
Internet Explorer version 11 (navigateur par défaut: FF)
Mode de démarrage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (liste blanche) =================

(Si une entrée est incluse dans la liste de correctifs, le processus sera fermé. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Systems) C: Program Files (x86) Common Files Adobe ARM 1.0 armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C: Program Files (x86) Common Files Adobe Adobe Desktop Common ElevationManager AdobeUpdateService.exe
(Apple Inc. -> Apple Inc.) C: Program Files Fichiers communs Apple Mobile Device Support AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C: Program Files iPod bin iPodService.exe
(Apple Inc. -> Apple Inc.) C: Program Files iTunes iTunesHelper.exe
(Autodesk, Inc -> Autodesk Inc.) C: Program Files (x86) Common Files Autodesk Shared AppManager R1 AdAppMgrSvc.exe
(Autodesk, Inc -> Autodesk, Inc.) C: Program Files (x86) Autodesk Content Service Connect.Service.ContentService.exe
(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) Browny02 Brother BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) Browny02 BrYNSvc.exe
(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) ControlCenter4 BrCcUxSys.exe
(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) ControlCenter4 BrCtrlCntr.exe
(Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.) C: Program Files Fichiers communs Future Systems Solutions Services CASPERSVCS.EXE
(GOG Sp. Z o.o. -> GOG.com) C: Program Files (x86) GOG Galaxy GalaxyClient Helper.exe <2>
(GOG Sp. Z o.o. -> GOG.com) C: Program Files (x86) GOG Galaxy GalaxyClient.exe
(GOG Sp. Z o.o. -> GOG.com) C: Program Files (x86) GOG Galaxy GOG Galaxy Notifications Renderer.exe
(GOG Sp. Z o.o. -> GOG.com) C: ProgramData GOG.com Galaxy redists GalaxyCommunication.exe
(IDRIX -> IDRIX) C: Program Files VeraCrypt VeraCrypt.exe
(Intel Corporation – Groupe des sous-systèmes intégrés et blocs IP -> Intel Corporation) C: Program Files (x86) Intel Intel® Management Engine Components LMS LMS.exe
(Assistant pilote et support Intel® -> Intel) C: Program Files (x86) Assistant pilote et support Intel DSAService.exe
(Assistant pilote et support Intel® -> Intel) C: Program Files (x86) Assistant pilote et support Intel DSATray.exe
(Groupe des sous-systèmes et blocs IP intégrés Intel® -> Intel Corporation) C: Program Files (x86) Intel Intel® Management Engine Components DAL jhi_service.exe
(Intel® Network Platform Group -> Intel Corporation) C: Windows System32 IPROSetMonitor.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C: Program Files Intel Intel® Rapid Storage Technology IAStorDataMgrSvc.exe
(Technologie de stockage Intel® Rapid -> Intel Corporation) C: Program Files Intel Intel® Rapid Storage Technology IAStorIcon.exe
(Pilotes du contrôleur hôte Intel® USB eXtensible -> Intel Corporation) C: Program Files (x86) Intel Intel® USB 3.0 3.1 Pilote du contrôleur hôte eXtensible Application iusb3mon.exe
(Intuit, Inc. -> Intuit Inc.) C: Program Files (x86) Common Files Intuit Update Service v4 IntuitUpdateService.exe
(Malwarebytes Inc -> Malwarebytes) C: Program Files Malwarebytes Anti-Malware MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C: Program Files Malwarebytes Anti-Malware mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C: Program Files Fichiers communs Microsoft Shared ClickToRun OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 taskmgr.exe
(Mozilla Corporation -> Mozilla Corporation) C: Program Files Mozilla Firefox firefox.exe <8>
(NVIDIA Corporation -> Node.js) C: Program Files (x86) NVIDIA Corporation NvNode NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C: Program Files NVIDIA Corporation Display.NvContainer NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C: Program Files NVIDIA Corporation NvContainer nvcontainer.exe <3>
(Realtek Semiconductor Corp ->) C: Windows runSW.exe
(Realtek Semiconductor Corp -> Realtek) C: Windows SwUSB.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C: Program Files Samsung USB Drivers 27_ssconn conn ss_conn_service.exe
(Schäuffelhut Berger GmbH ->) C: Program Files (x86) VPNetwork LLC TorGuard TorGuardDesktopQt.exe
(Schäuffelhut Berger GmbH -> Le projet OpenVPN) C: Program Files (x86) VPNetwork LLC TorGuard openvpn_v2_4.exe
(Valve -> Valve Corporation) C: Program Files (x86) Common Files Steam SteamService.exe
(Valve -> Valve Corporation) C: Program Files (x86) Steam bin cef cef.win7x64 steamwebhelper.exe <7>
(Valve -> Valve Corporation) C: Program Files (x86) Steam steam.exe

==================== Registre (liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM … Run: [IAStorIcon] => C: Program Files Intel Intel® Rapid Storage Technology IAStorIcon.exe [321096 2017-03-29] (Technologie de stockage rapide Intel® -> Intel Corporation)
HKLM … Run: [Logitech Download Assistant] => C: Windows System32 LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM … Run: [AdobeGCInvoker-1.0] => C: Program Files (x86) Common Files Adobe AdobeGCClient AGCInvokerUtility.exe [2872400 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM … Run: [iTunesHelper] => C: Program Files iTunes iTunesHelper.exe [302904 2020-01-16] (Apple Inc. -> Apple Inc.)
HKLM … Run: [RTHDVCPL] => C: Program Files Realtek Audio HDA RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32 … Exécuter: [USB3MON] => C: Program Files (x86) Intel Intel® USB 3.0 3.1 Pilote du contrôleur hôte extensible Application iusb3mon.exe [299504 2016-08-17] (Pilotes de contrôleur hôte Intel® USB eXtensible -> Intel Corporation)
HKLM-x32 … Exécuter: [DSATray] => C: Program Files (x86) Intel Driver and Support Assistant DsaTray.exe [131360 2017-12-05] (Assistant pilote et support Intel® -> Intel)
HKLM-x32 … Exécuter: [ControlCenter4] => C: Program Files (x86) ControlCenter4 BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.) [File not signed]
HKLM-x32 … Exécuter: [BrStsMon00] => C: Program Files (x86) Browny02 Brother BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]
HKLM-x32 … Exécuter: [SunJavaUpdateSched] => C: Program Files (x86) Fichiers communs Java Java Update jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32 … Exécuter: [ADSKAppManager] => C: Program Files (x86) Fichiers communs Autodesk Shared AppManager R1 AdAppMgr.exe [529480 2016-02-23] (Autodesk, Inc -> Autodesk Inc.)
HKLM-x32 … Exécuter: [TeamsMachineUninstallerLocalAppData] => C: Users Kevin AppData Local Microsoft Teams Update.exe [2324624 2020-02-19] (Composant d'application tiers Microsoft -> Microsoft Corporation)
HKLM-x32 … Exécuter: [TeamsMachineUninstallerProgramData] =>% ProgramData% Microsoft Teams Update.exe –uninstall –msiUninstall –source = default
HKLM … Policies Explorer: [NoStrCmpLogical] 1
HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [Steam] => C: Program Files (x86) Steam steam.exe [3372832 2020-04-27] (Valve -> Valve Corporation)
HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [Akamai NetSession Interface] => "C: Users Kevin AppData Local Akamai netsession_win.exe"
HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [AdobeBridge] => [X]
HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [Autodesk Sync] => C: Program Files Autodesk Autodesk Sync AdSync.exe [1193352 2014-02-08] (Autodesk, Inc -> Autodesk, Inc.)
HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [GalaxyClient] => [X]
HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Policies Explorer: []
HKU S-1-5-21-4250991329-2939192951-560751505-1000 … MountPoints2: 0cba1e47-def4-11e7-8cbd-806e6f6e6963 – D: Autorun.exe
HKU S-1-5-18 … Run: [Autodesk Sync] => C: Program Files Autodesk Autodesk Sync AdSync.exe [1193352 2014-02-08] (Autodesk, Inc -> Autodesk, Inc.)
HKU S-1-5-18 … RunOnce: [SPReview] => "C: Windows System32 SPReview SPReview.exe" / sp: 1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915 "/ build: 7601
HKLM Software Microsoft Active Setup Installed Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C: Program Files (x86) Google Chrome Application 81.0.4044.129 Installer chrmstp.exe [2020-04-27] (Google LLC -> Google LLC)
GroupPolicy: Restriction? <==== ATTENTION

==================== Tâches planifiées (liste blanche) ============

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

Tâche: 1216E3C4-25CC-4CB9-95AB-834905E6CB67 – System32 Tasks Future Systems Solutions Casper My Data Disk Backup => C: Program Files Future Systems Solutions Casper 8.0 CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
Tâche: 1FDA4070-9F70-4FCE-A63D-67630E40B239 – System32 Tasks NvTmRep_CrashReport3_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvBackend Nt [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: 32AF0A8C-B56A-4BCD-BB0A-FDF82A32A1E3 – System32 Tasks NvTmRep_CrashReport2_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvTend.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: 34E12A00-3C9C-4381-B429-4FEF153F99C8 – System32 Tasks NvNodeLauncher_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files (x86) NVIDIA Corporation NvNode nvnodejsla [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: 38617970-3A85-49EE-B698-77213F22AB41 – System32 Tasks OneDrive Standalone Update Task-S-1-5-21-4250991329-2939192951-560751505-1000 => C: Users Kevin AppData Local Microsoft OneDrive OneDriveStandaloneUpdater.exe
Tâche: 4252F24D-1930-4C85-9792-2474EF320E12 – System32 Tasks Microsoft Office Office ClickToRun Service Monitor => C: Program Files Common Files Microsoft Shared ClickToRun OfficeC2RClient.exe [27369352 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Tâche: 4EEEE60E-C423-4CE4-AEF3-69E8BA4441B9 – System32 Tasks Intel PTT EK Recertification => C: Program Files Intel iCLS Client IntelPTTEKRecertification.exe [543536 2016-10-13] (Intel® Trust Services -> Intel® Corporation)
Tâche: 51A50C2F-6402-4B8D-80F2-B4D17CA72B50 – Tâche de notification de mise à jour System32 Tasks Future Systems Solutions Casper Casper 8.0 => C: Program Files Future Systems Solutions Casper 8.0 CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
Tâche: 5C95344F-801E-47D3-BC3A-B4B87594C7D3 – System32 Tasks NvBatteryBoostCheckOnLogon_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation Nvcontain NvContain [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: 5FBE4B24-FF47-45CE-8FA1-FEE937BA746B – System32 Tasks NvTmRep_CrashReport4_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvBackend Nt [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: 6047A701-E6FA-432C-8E6D-9C4952183FD6 – System32 Tasks Microsoft Office Office Subscription Maintenance => C: Program Files (x86) Microsoft Office root vfs ProgramFilesCommonx86 Microsoft Shared Office16 OLicenseHeartbeat.exe [1571624 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche: 697DE98C-A630-464E-838F-4C004C9617EC – System32 Tasks NvProfileUpdaterDaily_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation Update Core NvProfileUpdater.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: 78125752-D932-4EBE-B3C7-038F6BA72ECC – System32 Tasks wufuc. 72EEE38B-9997-42BD-85D3-2DD96DA17307 => C: Windows system32 rundll32.exe "C: Program Files wufuc wufuc.dll", Rundll32Entry
Tâche: 7ADB205E-D4DD-48A8-A2CC-D4564201F4A8 – System32 Tasks Intel Intel Telemetry 2 => C: Program Files Intel Telemetry 2.0 lrio.exe [1741576 2016-03-17] (Logiciel Intel® -> Intel Corporation)
Tâche: 7D18C5FB-079B-46C9-8A8E-895E646E33A2 – System32 Tasks NvDriverUpdateCheckDaily_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvContainer nvcontainer n [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: 882C5E44-CC3D-4A25-9350-F38DCC2FA435 – System32 Tasks BlueStacksHelper => C: ProgramData BlueStacks Client Helper BlueStacksHelper.exe
Tâche: 8E48650A-A6AB-4EBB-B8AB-191B69E8773A – System32 Tasks USER_ESRV_SVC_QUEENCREEK => "C: Windows System32 Wscript.exe" // B // NoLogo "C: Program Files Intel SUR QUEENCREEK task.vbs "
Tâche: 956AD40D-3489-4E70-964C-29BCB7A8103B – System32 Tasks GoogleUpdateTaskMachineCore => C: Program Files (x86) Google Update GoogleUpdate.exe [153168 2018-10-05] (Google Inc -> Google Inc.)
Tâche: 957FF134-71B6-4CA7-BE5E-A6C8C6F91074 – System32 Tasks TorGuard Autostart => C: Program Files (x86) VPNetwork LLC TorGuard TorGuardDesktopQt.exe [2582424 2020-01-05] (Schäuffelhut Berger GmbH ->)
Tâche: 99E8A24A-F2CE-4287-9C84-76DE06682553 – System32 Tasks Microsoft Office OfficeTelemetryAgentFallBack2016 => C: Program Files (x86) Microsoft Office root Office16 msoia.exe [4460968 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche: AAF01C3E-2B5A-47C3-8639-DD9ABBE035BA – System32 Tasks Microsoft Office OfficeBackgroundTaskHandlerLogon => C: Program Files (x86) Microsoft Office root Office16 officebackgroundtaskhandler.exe [1421736 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche: AF5A9331-FEC3-4C2B-A1A8-9C303AF2114A – System32 Tasks Microsoft Office OfficeTelemetryAgentLogOn2016 => C: Program Files (x86) Microsoft Office root Office16 msoia.exe [4460968 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche: B107F265-1E2E-4327-8970-2691108647DE – Agent de navigateur par défaut System32 Tasks Mozilla Firefox 308046B0AF4A39CB => C: Program Files Mozilla Firefox default-browser-agent.exe [126152 2020-04-21] (Mozilla Corporation -> Fondation Mozilla)
Tâche: B4EF5BA4-E057-465C-B6DE-83B010378E6F – System32 Tasks Microsoft Office Office Feature Updates => C: Program Files (x86) Microsoft Office root VFS ProgramFilesCommonX86 Microsoft Shared Office16 sdxhelper.exe [110416 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche: B781CB09-30D8-4939-8237-3B054CA93331 – Connexion aux mises à jour des fonctionnalités System32 Tasks Microsoft Office Office => C: Program Files (x86) Microsoft Office root VFS ProgramFilesCommonX86 Microsoft Shared Office16 sdxhelper.exe [110416 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche: BA17D1A8-83A3-40AD-9677-CED8889E1431 – System32 Tasks NVIDIA GeForce Experience SelfUpdate_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NVIDIA GeForce Experience NVIDIA GeForce Experience NVIDIA GeForce Experience Experience.exe [3293168 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: BAB91D1E-6843-4922-AC5F-CDCC9A31AEB5 – System32 Tasks Adobe Flash Player NPAPI Notifier => C: Windows SysWOW64 Macromed Flash FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-19] (Adobe Inc. -> Adobe)
Tâche: C0F5BEF1-66B0-4612-91E7-347DC06D2D57 – System32 Tasks Microsoft Office OfficeBackgroundTaskHandlerRegistration => C: Program Files (x86) Microsoft Office root Office16 officebackgroundtaskhandler.exe [1421736 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
Tâche: C1BE9F32-08B2-4948-B6F2-F43E9F614943 – System32 Tasks AdobeGCInvoker-1.0 => C: Program Files (x86) Common Files Adobe AdobeGCClient AGCInvokerUtility.exe [2872400 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
Tâche: C7FAFD87-143D-4828-A1E4-F06D078363F4 – System32 Tasks Microsoft Office Office Automatic Updates 2.0 => C: Program Files Common Files Microsoft Shared ClickToRun OfficeC2RClient.exe [27369352 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Tâche: D848BE2E-126C-479D-A061-E1879B0F889C – System32 Tasks NvProfileUpdaterOnLogon_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation Update Core NvProf.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: E5A06C37-5C40-490F-B101-F396055B26B9 – System32 Tasks Adobe Acrobat Update Task => C: Program Files (x86) Common Files Adobe ARM 1.0 AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Tâche: E6A56CD5-839C-4183-B5B2-C757C2A70105 – System32 Tasks GoogleUpdateTaskMachineUA => C: Program Files (x86) Google Update GoogleUpdate.exe [153168 2018-10-05] (Google Inc -> Google Inc.)
Tâche: E6AED1F9-456C-4266-AA9E-02D0BAAF52E0 – System32 Tasks Adobe Flash Player Updater => C: Windows SysWOW64 Macromed Flash FlashPlayerUpdateService.exe [335416 2020-04-19] (Adobe Inc. -> Adobe)
Tâche: F352F3F9-4CC7-47B2-B752-9473F5AFA44D – System32 Tasks Apple AppleSoftwareUpdate => C: Program Files (x86) Apple Software Update SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Tâche: F8B9A915-8C30-4E6F-AE86-8F0DC0B0AD84 – System32 Tasks NvTmRep_CrashReport1_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvTend.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Tâche: FEA60E6B-C946-464B-996E-2BA30BE18475 – System32 Tasks Future Systems Solutions Casper My System Disk Backup => C: Program Files Future Systems Solutions Casper 8.0 CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)

(Si une entrée est incluse dans la liste de correctifs, le fichier de tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

==================== Internet (liste blanche) ====================

(Si un élément est inclus dans la liste de correctifs, s'il s'agit d'un élément du registre, il sera supprimé ou restauré par défaut.)

Winsock: Catalog5 07 C: Program Files (x86) Bonjour mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C: Program Files Bonjour mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip .. Interfaces 4B3751D1-5D87-4830-BC4C-D842B7621544: [NameServer] 208.67.222.222,208.67.220.220
Tcpip .. Interfaces 4B3751D1-5D87-4830-BC4C-D842B7621544: [DhcpNameServer] 192.168.11.1
Tcpip .. Interfaces 9E122120-5803-40E2-96EC-361B581C5284: [DhcpNameServer] 192.168.43.1
Tcpip .. Interfaces FAF2DFD5-799C-480C-9687-3ECEA10C02D3: [NameServer] 10.9.0.1,10.8.0.1

Internet Explorer:
==================
HKU S-1-5-21-4250991329-2939192951-560751505-1000 Software Microsoft Internet Explorer Main, page de démarrage = hxxp: //news.google.com/
BHO: Skype Entreprise Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C: Program Files (x86) Microsoft Office root VFS ProgramFilesX64 Microsoft Office Office16 OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java ™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C: Program Files Java jre1.8.0_202 bin ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: VIPRE Search Guard Helper -> 963C8283-AE7F-4AA6-9B3B-847A8FC62C5E -> C: Program Files (x86) VIPRE x64 VSGNx64.dll => Aucun fichier
BHO: Gestionnaire de cache de documents Office -> B4F3A835-0E21-4959-BA22-42B3008E02FF -> C: Program Files (x86) Microsoft Office root VFS ProgramFilesX64 Microsoft Office Office16 URLREDIR.DLL [2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java ™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C: Program Files Java jre1.8.0_202 bin jp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Assistant de navigateur Skype Entreprise -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C: Program Files (x86) Microsoft Office root Office16 OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java ™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C: Program Files (x86) Java jre1.8.0_202 bin ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: classe ArcPluginIEBHO -> 84BFE29A-8139-402a-B2A4-C23AE9E1A75F -> C: Program Files (x86) Arc plugins ArcPluginIE.dll [2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
BHO-x32: VIPRE Search Guard Helper -> 963C8283-AE7F-4AA6-9B3B-847A8FC62C5E -> C: Program Files (x86) VIPRE VSGN.dll => Aucun fichier
BHO-x32: Gestionnaire de cache de documents Office -> B4F3A835-0E21-4959-BA22-42B3008E02FF -> C: Program Files (x86) Microsoft Office root Office16 URLREDIR.DLL [2020-04-23] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java ™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C: Program Files (x86) Java jre1.8.0_202 bin jp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
Barre d'outils: HKLM – Barre d'outils VIPRE Search Guard – A924C17A-5E94-4E02-BED5-49720BA6F7FA – Aucun fichier
Barre d'outils: HKLM-x32 – Barre d'outils VIPRE Search Guard – A924C17A-5E94-4E02-BED5-49720BA6F7FA – Aucun fichier
Barre d'outils: HKU S-1-5-21-4250991329-2939192951-560751505-1000 -> Barre d'outils VIPRE Search Guard – A924C17A-5E94-4E02-BED5-49720BA6F7FA – Aucun fichier
Handler-x32: mso-minsb-roaming.16 – 83C25742-A9F7-49FB-9138-434302C88D07 – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 – 5504BE45-A83B-4808-900A-3A5C36E7F77A – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
Gestionnaire: vipresg – 47BE2E5B-703B-444F-ABD3-05717D2191C6 – C: Program Files (x86) VIPRE VSGN.dll aucun fichier

FireFox:
========
FF DefaultProfile: 86ew51to.default
FF ProfilePath: C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default [2020-05-03]
Page d'accueil de FF: Mozilla Firefox Profiles 86ew51to.default -> hxxp: //news.google.com/
Notifications FF: Mozilla Firefox Profiles 86ew51to.default -> hxxps: //forum.cyanogenmod.org; hxxp: //mail.bigkahunatech.com; hxxps: //forums.t-nation.com; hxxps: //chatsupport.apple.com; hxxps: //www.facebook.com
Extension FF: (Conteneur Facebook) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions @ contain-facebook.xpi [2020-04-14]
Extension FF: (module complémentaire Ant.com) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions [email protected] [2018-04-23]
Extension FF: (Ant Video downloader) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions [email protected] [2020-04-21]
Extension FF: (Contourner les murs payants) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions [email protected] [2020-04-27] [UpdateUrl:hxxps://raw.githubusercontent.com/iamadamdev/bypass-paywalls-firefox/master/updates.json]
Extension FF: (DuckDuckGo Privacy Essentials) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions [email protected] [2020-05-01]
Extension FF: (Images similaires Google) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions [email protected] [2017-08-02] [Legacy]
Extension FF: (Imagus) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 00000f2a-7cde-4f20-83ed-434fcb420d71 .xpi [2020-04-13] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
Extension FF: (Afficher l'image) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 287dcf75-bec6-4eec-b4f6-71948a2eea29 .xpi [2020-04-24]
Extension FF: (Un puissant outil de recherche d'image inversée, prenant en charge divers moteurs de recherche, tels que Google, Bing, Yandex, Baidu et TinEye.) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to .default Extensions 2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c .xpi [2020-04-21]
Extension FF: (module complémentaire de désactivation de Google Analytics (par Google)) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 6d96bb5e-1175-4ebf-8ab5- 5f56f1c79f65 .xpi [2018-05-16] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]
Extension FF: (Effacer les données privées maintenant!) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 7a07e802-6785-4e48-a29e-b81bdd5efbd3 .xpi [2019-08-12]
Extension FF: (Video DownloadHelper) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions b9db16a4-6edc-47ec-a1f4-b86292ed211d .xpi [2020-03-30]
Extension FF: (Adblock Plus – bloqueur de publicités gratuit) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d .xpi [2020-04-01]
Plugin FF: @ adobe.com / FlashPlayer -> C: Windows system32 Macromed Flash NPSWF64_32_0_0_363.dll [2020-04-19] (Adobe Inc. ->)
Plugin FF: @ java.com / DTPlugin, version = 11.202.2 -> C: Program Files Java jre1.8.0_202 bin dtplugin npDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
Plugin FF: @ java.com / JavaPlugin, version = 11.202.2 -> C: Program Files Java jre1.8.0_202 bin plugin2 npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
Plugin FF: @ microsoft.com / GENUINE -> désactivé [No File]
Plugin FF: @ Microsoft.com / NpCtrl, version = 1.0 -> C: Program Files Microsoft Silverlight 5.1.50918.0 npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
Plugin FF: @ videolan.org / vlc, version = 3.0.8 -> C: Program Files VideoLAN VLC npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
Plugin FF: adobe.com/AdobeAAMDetect -> C: Program Files (x86) Adobe Adobe Creative Cloud Utils npAdobeAAMDetect64.dll [2018-06-22] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @ adobe.com / FlashPlayer -> C: Windows SysWOW64 Macromed Flash NPSWF32_32_0_0_363.dll [2020-04-19] (Adobe Inc. ->)
FF Plugin-x32: @ DVR / npmedia, version = 3.1.0.4 -> C: Program Files (x86) webrec WEB30 WebPlugin npmedia.dll [2017-10-30] () [File not signed]
FF Plugin-x32: @ DVR / npTimeGrid, version = 3.1.0.4 -> C: Program Files (x86) webrec WEB30 WebPlugin npTimeGrid.dll [2017-10-30] (Copie non autorisée) [File not signed]
FF Plugin-x32: @ java.com / DTPlugin, version = 11.202.2 -> C: Program Files (x86) Java jre1.8.0_202 bin dtplugin npDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @ java.com / JavaPlugin, version = 11.202.2 -> C: Program Files (x86) Java jre1.8.0_202 bin plugin2 npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @ microsoft.com / GENUINE -> désactivé [No File]
FF Plugin-x32: @ microsoft.com / Lync, version = 15.0 -> C: Program Files (x86) Microsoft Office root VFS ProgramFilesX86 Mozilla Firefox plugins npmeetingjoinpluginoc.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ Microsoft.com / NpCtrl, version = 1.0 -> C: Program Files (x86) Microsoft Silverlight 5.1.50918.0 npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ microsoft.com / SharePoint, version = 14.0 -> C: Program Files (x86) Microsoft Office root Office16 NPSPWRAP.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ perfectworld.com / npArcPlayNowPlugin -> C: Program Files (x86) Arc plugins npArcPluginFF.dll [2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
FF Plugin-x32: @ videolan.org / vlc, version = 2.2.8 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]
FF Plugin-x32: @ videolan.org / vlc, version = 3.0.1 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]
FF Plugin-x32: @ videolan.org / vlc, version = 3.0.2 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]
FF Plugin-x32: @ videolan.org / vlc, version = 3.0.3 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]
FF Plugin-x32: @ videolan.org / vlc, version = 3.0.6 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]
FF Plugin-x32: Adobe Reader -> C: Program Files (x86) Adobe Acrobat Reader DC Reader AIR nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C: Program Files (x86) Adobe Adobe Creative Cloud Utils npAdobeAAMDetect32.dll [2018-07-09] (Adobe Systems Incorporated -> Adobe Systems)
Plugin FF HKU S-1-5-21-4250991329-2939192951-560751505-1000: @ zoom.us / ZoomVideoPlugin -> C: Users Kevin AppData Roaming Zoom bin npzoomplugin.dll [2018-06-12] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
Profil CHR: C: Users Kevin AppData Local Google Chrome User Data Default [2020-04-15]
Extension CHR: (diapositives) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions aapocclcgogkmnckokdopfmhonfmgoek [2018-10-05]
Extension CHR: (Docs) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions aohghmighlieiainnegkcijnfilokake [2018-10-05]
Extension CHR: (Google Drive) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions apdfllckaahabafndbhieahigkjlhalf [2018-10-11]
Extension CHR: (MEGA) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions bigefpfhnfcobdlfbedofhhaibnlghod [2020-04-15]
Extension CHR: (YouTube) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-05]
Extension CHR: (Adobe Acrobat) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions efaidnbmnnnibpcajpcglclefindmkaj [2020-03-30]
Extension CHR: (Sheets) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions felcaaldnbdncclmgdcncolpebgiejap [2018-10-05]
Extension CHR: (Google Docs hors ligne) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-15]
Extension CHR: (Paiements Chrome Web Store) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
Extension CHR: (Gmail) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions pjkljhegncpnkpknbcohdijeoejaedia [2019-05-15]
Extension CHR: (Chrome Media Router) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-15]
CHR HKLM-x32 … Chrome Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (liste blanche) ===================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.)

R2 AdAppMgrSvc; C: Program Files (x86) Common Files Autodesk Shared AppManager R1 AdAppMgrSvc.exe [1145928 2016-02-23] (Autodesk, Inc -> Autodesk Inc.)
R2 AdobeUpdateService; C: Program Files (x86) Fichiers communs Adobe Adobe Desktop Common ElevationManager AdobeUpdateService.exe [818128 2018-07-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S4 AGMService; C: Program Files (x86) Common Files Adobe AdobeGCClient AGMService.exe [3147344 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C: Program Files (x86) Common Files Adobe AdobeGCClient AGSService.exe [2914896 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C: Program Files Common Files Apple Mobile Device Support AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
S3 ArcService; C: Program Files (x86) Arc ArcService.exe [88696 2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
R2 Autodesk Content Service; C:Program Files (x86)AutodeskContent ServiceConnect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)
R3 BrYNSvc; C:Program Files (x86)Browny02BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 caspereui; C:Program FilesCommon FilesFuture Systems SolutionsServicesCASPERSVCS.EXE [1168984 2014-09-03] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
R2 casperhpb; C:Program FilesCommon FilesFuture Systems SolutionsServicesCASPERSVCS.EXE [1168984 2014-09-03] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)
R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [11600776 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAService; C:Program Files (x86)Intel Driver and Support AssistantDSAService.exe [22304 2017-12-05] (Intel® Driver & Support Assistant -> Intel)
S4 ESRV_SVC_QUEENCREEK; C:Program FilesIntelSURQUEENCREEKesrv_svc.exe [824592 2017-03-07] (Intel® Software Development Products -> )
S3 GalaxyClientService; C:Program Files (x86)GOG GalaxyGalaxyClientService.exe [1747528 2020-05-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:ProgramDataGOG.comGalaxyredistsGalaxyCommunication.exe [6821960 2020-02-24] (GOG Sp. z o.o. -> GOG.com)
S3 Intel® Capability Licensing Service TCP IP Interface; C:Program FilesInteliCLS ClientSocketHeciServer.exe [630048 2016-10-13] (Intel® Trust Services -> Intel® Corporation)
R2 jhi_service; C:Program Files (x86)IntelIntel® Management Engine ComponentsDALjhi_service.exe [196200 2017-01-15] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [6933272 2020-03-08] (Malwarebytes Inc -> Malwarebytes)
R2 NvContainerLocalSystem; C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:Program Files (x86)OriginOriginClientService.exe [2475312 2019-12-23] (Electronic Arts, Inc. -> Electronic Arts)
S3 Origin Web Helper Service; C:Program Files (x86)OriginOriginWebHelperService.exe [3352376 2019-12-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 RunSwUSB; C:WindowsrunSW.exe [48856 2015-11-05] (Realtek Semiconductor Corp -> )
R2 ss_conn_service; C:Program FilesSamsungUSB Drivers27_ssconnconnss_conn_service.exe [752224 2017-01-15] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 SystemUsageReportSvc_QUEENCREEK; C:Program FilesIntel Driver and Support AssistantSURSurSvc.exe [157456 2017-03-07] (Intel® Software Development Products -> )
S4 USER_ESRV_SVC_QUEENCREEK; C:Program FilesIntelSURQUEENCREEKesrv_svc.exe [824592 2017-03-07] (Intel® Software Development Products -> )
R2 WinDefend; C:Program FilesWindows Defendermpsvc.dll [1011712 2013-05-26] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:Program FilesNVIDIA CorporationDisplay.NvContainerNVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:ProgramDataNVIDIANVDisplay.ContainerLocalSystem.log" -l 3 -d "C:Program FilesNVIDIA CorporationDisplay.NvContainerpluginsLocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:WindowsSystem32DRIVERSssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 e1dexpress; C:WindowsSystem32DRIVERSe1d62x64.sys [537080 2017-07-19] (Intel® INTELND1617 -> Intel Corporation)
R1 ESProtectionDriver; C:Windowssystem32driversmbae64.sys [153312 2020-04-18] (Malwarebytes Corporation -> Malwarebytes)
R0 gfibto; C:WindowsSystem32driversgfibto.sys [37272 2017-11-02] (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
R0 iaStorF; C:WindowsSystem32DRIVERSiaStorF.sys [41472 2017-03-29] (Intel® Rapid Storage Technology -> Intel Corporation)
R2 MBAMChameleon; C:WindowsSystem32DriversMbamChameleon.sys [214496 2020-04-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:WindowsSystem32DRIVERSfarflt.sys [195432 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:Windowssystem32DRIVERSmbam.sys [73584 2020-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [248968 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:WindowsSystem32DRIVERSmwac.sys [112752 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:WindowsSystem32DRIVERSTeeDriverx64.sys [199760 2016-11-29] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 NvStreamKms; C:Program FilesNVIDIA CorporationNvStreamSrvNvStreamKms.sys [30336 2020-03-31] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:WindowsSystem32driversnvvad64v.sys [69840 2020-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:WindowsSystem32DRIVERSnvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RtlWlanu; C:WindowsSystem32DRIVERSrtwlanu.sys [4620048 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )
S3 semav6msr64; C:Windowssystem32driverssemav6msr64.sys [21984 2016-10-18] (Intel® Code Signing External -> )
S3 ssudmdm; C:WindowsSystem32DRIVERSssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver; C:WindowsSystem32Driversss_conn_usb_driver.sys [43920 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:WindowsSystem32DRIVERStap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:WindowsSystem32Driversusbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 veracrypt; C:WindowsSystem32driversveracrypt.sys [828688 2018-05-06] (IDRIX -> IDRIX)
S3 gdrv; ??C:Windowsgdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-03 23:03 – 2020-05-03 23:03 – 002283520 _____ (Farbar) C:UsersKevinDownloadsFRST64(1).exe
2020-05-03 23:03 – 2020-05-03 23:03 – 000000000 ____D C:FRST
2020-05-02 10:05 – 2020-05-02 10:05 – 000248968 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys
2020-05-02 10:05 – 2020-05-02 10:05 – 000195432 _____ (Malwarebytes) C:Windowssystem32Driversfarflt.sys
2020-05-02 10:05 – 2020-05-02 10:05 – 000112752 _____ (Malwarebytes) C:Windowssystem32Driversmwac.sys
2020-05-02 10:05 – 2020-05-02 10:05 – 000073584 _____ (Malwarebytes) C:Windowssystem32Driversmbam.sys
2020-05-02 10:04 – 2020-05-02 10:04 – 000000000 ____D C:WindowsSysWOW64RTCOM
2020-05-02 10:04 – 2020-05-02 10:04 – 000000000 ____D C:Program FilesRealtek
2020-05-02 10:03 – 2017-06-29 18:55 – 015202032 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE3.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 013122576 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO3064.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 012988336 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO4064.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 006410088 _____ (Nahimic Inc) C:Windowssystem32NAHIMICV3apo.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 005938904 _____ (Nahimic Inc) C:Windowssystem32NAHIMICV2apo.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 005593608 _____ (Nahimic Inc) C:Windowssystem32NAHIMICAPOlfx.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003509256 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RltkAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003507688 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkApi64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003410832 _____ (DTS, Inc.) C:Windowssystem32slcnt64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003299816 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE2.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003122656 _____ (DTS, Inc.) C:Windowssystem32sltech64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 003092336 _____ (Realtek Semiconductor Corp.) C:WindowsSysWOW64RltkAPO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 002190976 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001435136 _____ (Synopsys, Inc.) C:Windowssystem32SRRPTR64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001382232 _____ (TOSHIBA Corporation) C:Windowssystem32tosade.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001347136 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTCOM64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001337640 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tossaeapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 001016928 _____ (Sound Research, Corp.) C:Windowssystem32SEHDHF64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000984912 _____ (DTS, Inc.) C:Windowssystem32sl3apo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000965024 _____ (Sony Corporation) C:Windowssystem32SFSS_APO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000923736 _____ (Sony Corporation) C:Windowssystem32MISS_APO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000877424 _____ (Sound Research, Corp.) C:WindowsSysWOW64SEHDHF32.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000873456 _____ (TOSHIBA Corporation) C:Windowssystem32tadefxapo264.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000868176 _____ (Sound Research, Corp.) C:Windowssystem32SECOMN64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000866640 _____ (Sound Research, Corp.) C:Windowssystem32SEHDRA64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000852128 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tosasfapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000737960 _____ (Sound Research, Corp.) C:WindowsSysWOW64SECOMN32.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000691680 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtDataProc64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000677664 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVolumeSDAPO.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000604792 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tossaemaxapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000568256 _____ (Intel Corporation) C:Windowssystem32tbb_waves.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000532376 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSX64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000525768 _____ (Sound Research, Corp.) C:Windowssystem32SEAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000467152 _____ (Synopsys, Inc.) C:Windowssystem32SRAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000447712 _____ (Dolby Laboratories) C:Windowssystem32R4EED64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000447176 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32toseaeapo64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000387312 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEP64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000381408 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000343704 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtlCPAPI64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000341144 _____ (Synopsys, Inc.) C:WindowsSysWOW64SRCOM.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000341144 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000321712 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DHT64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000321712 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DAA64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000231912 _____ (Synopsys, Inc.) C:Windowssystem32SFNHK64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000221960 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSH64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000214832 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEED64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000209528 _____ (SRS Labs, Inc.) C:Windowssystem32SRSHP64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000192976 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCfg64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000166200 _____ (SRS Labs, Inc.) C:Windowssystem32SRSWOW64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000158696 _____ (TOSHIBA Corporation) C:Windowssystem32tadefxapo.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000151784 _____ (Dolby Laboratories) C:Windowssystem32R4EEL64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000134200 _____ (Dolby Laboratories) C:Windowssystem32R4EEA64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000110976 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEL64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000090912 _____ (Synopsys, Inc.) C:Windowssystem32SFCOM64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000088344 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEG64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000088312 _____ (Synopsys, Inc.) C:Windowssystem32SFAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000084608 _____ (Dolby Laboratories) C:Windowssystem32R4EEG64A.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000083624 _____ (Virage Logic Corporation / Sonic Focus) C:WindowsSysWOW64SFCOM.dll
2020-05-02 10:03 – 2017-06-29 18:55 – 000075536 _____ (TOSHIBA CORPORATION.) C:Windowssystem32tepeqapo64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 024608272 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioCapture64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 023863048 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRenderAVX64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 023764392 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRender64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 010536152 _____ (Intel Corporation) C:Windowssystem32IntelSSTAPO.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 004059960 _____ (Fortemedia Corporation) C:Windowssystem32FMAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 002291304 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO7064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001780616 _____ (DTS) C:Windowssystem32DTSS2SpeakerDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001591056 _____ (DTS) C:Windowssystem32DTSS2HeadphoneDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001422920 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO6064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001334376 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxSpeechAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001213656 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO5064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 001166152 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO4064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000999848 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO2064.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000727432 _____ (DTS) C:Windowssystem32DTSSymmetryDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000708312 _____ (DTS) C:Windowssystem32DTSVoiceClarityDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000680544 _____ (ICEpower a/s) C:Windowssystem32ICEsoundAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000678176 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO30.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000618184 _____ (Knowles Acoustics ) C:Windowssystem32KAAPORT64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000514520 _____ (DTS) C:Windowssystem32DTSU2PLFX64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000500552 _____ (DTS) C:Windowssystem32DTSU2PGFX64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000428224 _____ (DTS) C:Windowssystem32DTSU2PREC64.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000406448 _____ (Dolby Laboratories) C:Windowssystem32HiFiDAX2APIPCLL.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000366120 _____ (Windows ® Win 7 DDK provider) C:Windowssystem32HMAPO.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000360344 _____ (Harman) C:Windowssystem32HMClariFi.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000330552 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO20.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000203840 _____ (Harman) C:Windowssystem32HMHVS.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000190928 _____ (Harman) C:Windowssystem32HMEQ_Voice.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000190928 _____ (Harman) C:Windowssystem32HMEQ.dll
2020-05-02 10:03 – 2017-06-29 18:54 – 000179592 _____ (Harman) C:Windowssystem32HMLimiter.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 005346992 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOv211.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 002444680 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOv201.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001965808 _____ (Dolby Laboratories) C:Windowssystem32DDPD64A.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001959600 _____ (Dolby Laboratories) C:Windowssystem32DDPD64AF3.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001616680 _____ (Conexant Systems Inc.) C:Windowssystem32CX64APO.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001554600 _____ (Dolby Laboratories) C:Windowssystem32DAX3APOProp.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001529136 _____ (Conexant Systems Inc.) C:Windowssystem32CX64Proxy.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001508928 _____ (DTS) C:Windowssystem32DTSBoostDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001326424 _____ (Dolby Laboratories) C:Windowssystem32DAX3APOv251.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 001170872 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOvlldp.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000743960 _____ (DTS) C:Windowssystem32DTSBassEnhancementDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000609392 _____ (Conexant Systems, Inc.) C:Windowssystem32CAF64APO2.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000504304 _____ (DTS) C:Windowssystem32DTSNeoPCDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000445392 _____ (DTS) C:Windowssystem32DTSLimiterDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000441264 _____ (DTS) C:Windowssystem32DTSGainCompensatorDLL64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000362048 _____ (Dolby Laboratories) C:Windowssystem32DDPO64AF3.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000327448 _____ (Dolby Laboratories) C:Windowssystem32DDPO64A.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000310416 _____ (Dolby Laboratories) C:Windowssystem32DDPA64F3.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000272712 _____ (Dolby Laboratories) C:Windowssystem32DDPA64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000253896 _____ (DTS) C:Windowssystem32DTSGFXAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000253864 _____ (DTS) C:Windowssystem32DTSLFXAPO64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000252872 _____ (DTS) C:Windowssystem32DTSGFXAPONS64.dll
2020-05-02 10:03 – 2017-06-29 18:53 – 000115120 _____ (Conexant System, Inc.) C:Windowssystem32Caf64api.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 005826560 _____ (Realtek Semiconductor Corp.) C:Windowssystem32DriversRTKVHD64.sys
2020-05-02 10:03 – 2017-06-29 18:52 – 003677160 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTSnMg64.cpl
2020-05-02 10:03 – 2017-06-29 18:52 – 003205120 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtPgEx64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 002993720 _____ (Audyssey Labs) C:Windowssystem32AudysseyEfx.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 002110592 _____ (Waves Audio Ltd.) C:Windowssystem32WavesGUILib64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 000574752 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAC64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 000258856 _____ (TODO: ) C:Windowssystem32slprp64.dll
2020-05-02 10:03 – 2017-06-29 18:52 – 000118592 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAR64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 072520712 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoRes64.dat
2020-05-02 10:03 – 2017-06-29 18:51 – 014057248 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRealtek64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 007172912 _____ (Dolby Laboratories) C:Windowssystem32R4EEP64A.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 007096184 _____ (Dolby Laboratories) C:Windowssystem32DDPP64A.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 006264632 _____ (Dolby Laboratories) C:Windowssystem32DDPP64AF3.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 002210304 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoInstII64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 002050176 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioEQ64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 001186832 _____ (Intel Corporation) C:Windowssystem32IntelSstCApoPropPage.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 001133064 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOProp.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 001003856 _____ (Nahimic Inc) C:Windowssystem32NahimicAPONSControl.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000931616 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPOShell64.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000416504 _____ (Harman) C:Windowssystem32HMUI.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000378384 _____ (Dolby Laboratories) C:Windowssystem32HiFiDAX2API.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000154360 _____ (Harman) C:Windowssystem32HarmanAudioInterface.dll
2020-05-02 10:03 – 2017-06-29 18:51 – 000023688 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCoLDR64.dll
2020-05-02 10:03 – 2017-06-29 18:50 – 000122320 _____ (Real Sound Lab SIA) C:Windowssystem32CONEQMSAPOGUILibrary.dll
2020-05-02 10:03 – 2017-06-29 18:50 – 000118584 _____ C:Windowssystem32AcpiServiceVnA64.dll
2020-05-02 10:03 – 2017-06-29 18:50 – 000105304 _____ C:Windowssystem32audioLibVc.dll
2020-05-02 10:03 – 2017-06-29 03:05 – 012334923 _____ C:Windowssystem32DriversRTAIODAT.DAT
2020-05-02 10:03 – 2017-06-29 03:05 – 005804772 _____ C:Windowssystem32Driversrtvienna.dat
2020-05-02 10:03 – 2017-06-29 03:05 – 001920870 _____ C:Windowssystem32DriversrtkSSTsetting.dat
2020-05-02 10:03 – 2017-06-29 03:05 – 000005604 _____ C:Windowssystem32cxapo.lncs
2020-05-02 10:03 – 2017-06-29 03:05 – 000000864 _____ C:Windowssystem32cxapo.prop
2020-05-01 22:04 – 2020-05-02 09:53 – 264424269 _____ (Realtek Semiconductor Corp.) C:UsersKevinDownloads009-64bit_Win7_Win8_Win81_Win10_R282.exe
2020-05-01 09:55 – 2020-05-01 09:55 – 000000000 ____D C:UsersKevinAppDataLocalTempzxpsign46df4a9b7773fc0b
2020-05-01 09:30 – 2020-05-01 09:30 – 000000000 ____D C:UsersKevinAppDataLocalTempzxpsign1e13c401223a96cd
2020-04-30 21:31 – 2020-04-30 21:31 – 000000000 ____D C:UsersKevinAppDataLocalLowSony Online Entertainment
2020-04-29 18:31 – 2020-04-30 08:47 – 000000000 ____D C:UsersKevinDownloadsAn.American.In.Paris.1951.1080p.BluRay.H264.AAC-RARBG
2020-04-29 17:20 – 2020-04-30 08:43 – 000000000 ____D C:UsersKevinDownloadsAn American In Paris
2020-04-28 23:09 – 2020-04-28 23:09 – 000000000 ____D C:temp
2020-04-28 23:08 – 2020-04-12 15:09 – 001329360 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe
2020-04-28 23:08 – 2020-04-12 15:09 – 001329360 _____ C:WindowsSysWOW64vulkaninfo.exe
2020-04-28 23:08 – 2020-04-12 15:08 – 132262800 _____ (NVIDIA Corp.) C:Windowssystem32nvoptix.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 030669552 _____ (NVIDIA Corporation) C:Windowssystem32nvrtum64.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 011945880 _____ (NVIDIA Corporation) C:Windowssystem32nvptxJitCompiler.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 010286488 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvptxJitCompiler.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 001729232 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe
2020-04-28 23:08 – 2020-04-12 15:08 – 001729232 _____ C:Windowssystem32vulkaninfo.exe
2020-04-28 23:08 – 2020-04-12 15:08 – 001078992 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 001078992 _____ C:Windowssystem32vulkan-1.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000937680 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000937680 _____ C:WindowsSysWOW64vulkan-1.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000446352 _____ (Khronos Group) C:Windowssystem32OpenCL.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000420248 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvumdshim.dll
2020-04-28 23:08 – 2020-04-12 15:08 – 000342760 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 040450448 _____ (NVIDIA Corporation) C:Windowssystem32nvoglv64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 031024032 _____ (NVIDIA Corporation) C:Windowssystem32nvopencl64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 029695720 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvoglv32.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 026343656 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvopencl32.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 023052688 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvlddmkm.sys
2020-04-28 23:08 – 2020-04-12 15:07 – 002071784 _____ (NVIDIA Corporation) C:Windowssystem32NvFBC64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001565072 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvFBC.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001483176 _____ (NVIDIA Corporation) C:Windowssystem32nvdispgenco6444587.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001482128 _____ (NVIDIA Corporation) C:Windowssystem32NvIFR64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001350560 _____ (NVIDIA Corporation) C:Windowssystem32nvfatbinaryLoader.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001141480 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFR.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 001048296 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvfatbinaryLoader.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000625384 _____ (NVIDIA Corporation) C:Windowssystem32NvIFROpenGL.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000544160 _____ (NVIDIA Corporation) C:Windowssystem32nvEncodeAPI64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000516832 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFROpenGL.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000471272 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvEncodeAPI.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000427424 _____ C:Windowssystem32nvofapi64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000378768 _____ C:WindowsSysWOW64nvofapi.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000181152 _____ (NVIDIA Corporation) C:Windowssystem32nvinitx.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000165264 _____ (NVIDIA Corporation) C:Windowssystem32nvoglshim64.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000158096 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvinit.dll
2020-04-28 23:08 – 2020-04-12 15:07 – 000143080 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvoglshim32.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 040556456 _____ (NVIDIA Corporation) C:Windowssystem32nvcompiler64.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 035418352 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcompiler32.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 017600240 _____ (NVIDIA Corporation) C:Windowssystem32nvcuda.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 015159208 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuda.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 005448616 _____ (NVIDIA Corporation) C:Windowssystem32nvcuvid.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 004863896 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuvid.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 001722280 _____ (NVIDIA Corporation) C:Windowssystem32nvdispco6444587.dll
2020-04-28 23:08 – 2020-04-12 15:06 – 000633752 _____ (NVIDIA Corporation) C:Windowssystem32nvcbl64.dll
2020-04-28 23:08 – 2020-04-12 12:06 – 035464872 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvwgf2um.dll
2020-04-28 23:08 – 2020-04-12 12:06 – 022226656 _____ (NVIDIA Corporation) C:Windowssystem32nvd3dumx.dll
2020-04-28 23:08 – 2020-04-12 12:05 – 004217464 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvapi.dll
2020-04-28 23:08 – 2020-04-11 08:40 – 000223120 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhda64v.sys
2020-04-28 23:08 – 2020-04-11 08:40 – 000039824 _____ (NVIDIA Corporation) C:Windowssystem32nvhdap64.dll
2020-04-28 23:08 – 2020-04-03 16:55 – 000000671 _____ C:WindowsSysWOW64nv-vk32.json
2020-04-28 23:08 – 2020-04-03 16:55 – 000000671 _____ C:Windowssystem32nv-vk64.json
2020-04-28 23:02 – 2020-03-11 12:26 – 000067456 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvhci.sys
2020-04-28 23:02 – 2020-03-06 03:03 – 000069840 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvad64v.sys
2020-04-25 16:20 – 2020-04-25 16:21 – 023162880 _____ C:UsersKevinDownloadsAVD-NativeApp-4.7.1-Release(1).msi
2020-04-25 16:20 – 2020-04-25 16:20 – 000000000 ____D C:Windowssystem32TasksMozilla
2020-04-21 22:47 – 2020-04-28 23:11 – 000000000 ____D C:Program FilesMozilla Firefox
2020-04-21 11:16 – 2020-04-21 11:35 – 023162880 _____ C:UsersKevinDownloadsAVD-NativeApp-4.7.1-Release.msi
2020-04-17 16:32 – 2020-04-17 18:32 – 000000000 ____D C:UsersKevinDownloadsSingin.in.the.Rain.1952.1080p.BluRay.H264.AAC-RARBG
2020-04-16 15:49 – 2020-04-16 15:49 – 107855752 _____ (Open Whisper Systems) C:UsersKevinDownloadssignal-desktop-win-1.33.1.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-03 23:04 – 2017-04-21 10:45 – 000039183 _____ C:UsersKevinDownloadsFRST.txt
2020-05-03 22:38 – 2018-05-18 09:23 – 000007609 _____ C:UsersKevinAppDataLocalResmon.ResmonCfg
2020-05-03 12:25 – 2017-12-11 22:17 – 000000000 ____D C:ProgramDataNVIDIA
2020-05-03 11:02 – 2009-07-13 21:45 – 000030544 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-03 11:02 – 2009-07-13 21:45 – 000030544 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-02 11:54 – 2018-12-19 08:21 – 000000000 ____D C:UsersKevinAppDataRoamingSignal
2020-05-02 10:11 – 2009-07-13 22:13 – 000783606 _____ C:Windowssystem32PerfStringBackup.INI
2020-05-02 10:11 – 2009-07-13 20:20 – 000000000 ____D C:Windowsinf
2020-05-02 10:06 – 2017-12-11 22:35 – 000000000 ____D C:UsersKevinAppDataLocalLowMozilla
2020-05-02 10:05 – 2017-12-12 11:10 – 000000000 ____D C:Program Files (x86)Steam
2020-05-02 10:05 – 2009-07-13 22:08 – 000032608 _____ C:WindowsTasksSCHEDLGU.TXT
2020-05-02 10:05 – 2009-07-13 22:08 – 000000006 ____H C:WindowsTasksSA.DAT
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32RTCOM
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32DAX3
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32DAX2
2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:ProgramDataAudyssey Labs
2020-05-02 10:04 – 2017-12-11 21:49 – 000000000 ___HD C:Program Files (x86)Temp
2020-05-02 10:03 – 2017-12-11 21:49 – 000000000 ___HD C:Program Files (x86)InstallShield Installation Information
2020-05-01 21:57 – 2017-12-21 12:09 – 000000000 ____D C:UsersKevinDocumentsOutlook Files
2020-05-01 09:55 – 2018-04-27 12:23 – 000000000 ____D C:UsersKevinAppDataLocalCrashDumps
2020-05-01 09:30 – 2017-12-31 11:43 – 000000000 ____D C:UsersKevinAppDataLocalNVIDIA
2020-05-01 09:00 – 2020-03-25 13:43 – 000000000 ____D C:Program Files (x86)GOG Galaxy
2020-04-30 15:14 – 2017-12-17 14:59 – 000000000 ____D C:UsersKevinAppDataRoamingtixati
2020-04-28 23:12 – 2020-03-25 14:26 – 000001335 _____ C:UsersPublicDesktopRimWorld.lnk
2020-04-28 23:12 – 2020-03-25 14:26 – 000001335 _____ C:ProgramDataDesktopRimWorld.lnk
2020-04-28 23:11 – 2018-05-22 09:27 – 000000986 __RSH C:ProgramDatantuser.pol
2020-04-28 23:11 – 2017-12-11 22:35 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2020-04-28 23:09 – 2009-07-13 20:20 – 000000000 ____D C:WindowsHelp
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport4_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport3_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport2_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport1_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:47 – 000003798 _____ C:Windowssystem32TasksNvNodeLauncher_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:47 – 000003790 _____ C:Windowssystem32TasksNVIDIA GeForce Experience SelfUpdate_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:46 – 000004146 _____ C:Windowssystem32TasksNvDriverUpdateCheckDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2018-05-25 13:46 – 000003940 _____ C:Windowssystem32TasksNvBatteryBoostCheckOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:ProgramDataNVIDIA Corporation
2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:Program FilesNVIDIA Corporation
2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:Program Files (x86)NVIDIA Corporation
2020-04-28 23:03 – 2018-05-25 13:46 – 000003738 _____ C:Windowssystem32TasksNvProfileUpdaterDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:03 – 2018-05-25 13:46 – 000003494 _____ C:Windowssystem32TasksNvProfileUpdaterOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8
2020-04-28 23:03 – 2017-12-11 22:19 – 000000000 ____D C:ProgramDataPackage Cache
2020-04-27 19:34 – 2018-10-05 09:49 – 000002194 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2020-04-25 18:57 – 2020-01-24 16:31 – 000000000 ____D C:UsersKevinAppDataLocalLarianLauncher
2020-04-23 08:51 – 2017-12-21 11:13 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2020-04-23 08:50 – 2017-12-21 11:11 – 000000000 ____D C:Program Files (x86)Microsoft Office
2020-04-19 20:08 – 2018-07-07 17:50 – 000017450 _____ C:UsersKevinDocumentsHalf life decay.xlsx
2020-04-19 10:50 – 2018-04-09 09:19 – 000004462 _____ C:Windowssystem32TasksAdobe Flash Player NPAPI Notifier
2020-04-19 10:50 – 2017-12-15 21:17 – 000842296 _____ (Adobe) C:WindowsSysWOW64FlashPlayerApp.exe
2020-04-19 10:50 – 2017-12-15 21:17 – 000175160 _____ (Adobe) C:WindowsSysWOW64FlashPlayerCPLApp.cpl
2020-04-19 10:50 – 2017-12-15 21:17 – 000004324 _____ C:Windowssystem32TasksAdobe Flash Player Updater
2020-04-19 10:50 – 2017-12-15 21:17 – 000000000 ____D C:WindowsSysWOW64Macromed
2020-04-19 10:50 – 2017-12-15 21:17 – 000000000 ____D C:Windowssystem32Macromed
2020-04-18 23:37 – 2020-02-01 20:59 – 000214496 _____ (Malwarebytes) C:Windowssystem32DriversMbamChameleon.sys
2020-04-18 23:37 – 2019-07-07 10:41 – 000153312 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys
2020-04-16 15:57 – 2018-12-19 08:21 – 000002451 _____ C:UsersKevinAppDataRoamingMicrosoftWindowsStart MenuProgramsSignal.lnk
2020-04-16 15:57 – 2018-12-19 08:21 – 000002443 _____ C:UsersKevinDesktopSignal.lnk
2020-04-14 18:19 – 2017-12-31 11:39 – 000000000 ____D C:UsersKevinAppDataRoaming.minecraft
2020-04-13 13:38 – 2017-12-17 14:39 – 000000000 ____D C:Program Files (x86)Intel Driver and Support Assistant
2020-04-12 15:08 – 2017-11-09 05:33 – 000502680 _____ (NVIDIA Corporation) C:Windowssystem32nvumdshimx.dll
2020-04-12 12:06 – 2017-11-09 05:33 – 041111072 _____ (NVIDIA Corporation) C:Windowssystem32nvwgf2umx.dll
2020-04-12 12:05 – 2017-11-09 05:32 – 018526608 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvd3dum.dll
2020-04-12 12:05 – 2017-11-09 05:32 – 004769584 _____ (NVIDIA Corporation) C:Windowssystem32nvapi64.dll
2020-04-11 08:40 – 2017-11-09 06:01 – 001682368 _____ (NVIDIA Corporation) C:Windowssystem32nvhdagenco6420103.dll
2020-04-08 14:07 – 2009-07-13 20:20 – 000000000 ____D C:Windowssystem32NDF
2020-04-07 10:58 – 2018-05-25 13:48 – 001314792 _____ (NVIDIA Corporation) C:Windowssystem32NvRtmpStreamer64.dll
2020-04-07 10:58 – 2018-05-25 13:47 – 002799416 _____ (NVIDIA Corporation) C:Windowssystem32nvspcap64.dll
2020-04-07 10:58 – 2018-05-25 13:47 – 002159592 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvspcap.dll
2020-04-03 16:55 – 2017-11-09 04:57 – 000053678 _____ C:Windowssystem32nvinfo.pb
2020-04-03 14:56 – 2017-12-11 22:18 – 005581808 _____ (NVIDIA Corporation) C:Windowssystem32nvcpl.dll
2020-04-03 14:56 – 2017-12-11 22:18 – 002631664 _____ (NVIDIA Corporation) C:Windowssystem32nvsvc64.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 001759032 _____ (NVIDIA Corporation) C:Windowssystem32nvsvcr.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 001172464 _____ (NVIDIA Corporation) C:Windowssystem32nv3dappshext.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 000446264 _____ (NVIDIA Corporation) C:Windowssystem32nvmctray.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 000121144 _____ (NVIDIA Corporation) C:Windowssystem32nvshext.dll
2020-04-03 14:55 – 2017-12-11 22:18 – 000074736 _____ (NVIDIA Corporation) C:Windowssystem32nv3dappshextr.dll
2020-04-03 03:08 – 2017-12-11 22:18 – 009037867 _____ C:Windowssystem32nvcoproc.bin

==================== Files in the root of some directories ========

2018-09-26 20:51 – 2019-08-09 08:19 – 000005330 _____ () C:UsersKevinAppDataLocaloobelibMkey.log
2018-05-18 09:23 – 2020-05-03 22:38 – 000007609 _____ () C:UsersKevinAppDataLocalResmon.ResmonCfg
2018-08-21 10:55 – 2017-03-03 01:49 – 000000570 _____ () C:UsersKevinAppDataLocalTroubleshooterConfig.json

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2020-04-27 09:22
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Kevin (03-05-2020 23:04:12)
Running from C:UsersKevinDownloads
Windows 7 Professional Service Pack 1 (X64) (2017-12-12 04:28:57)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-4250991329-2939192951-560751505-500 – Administrator – Disabled)
Guest (S-1-5-21-4250991329-2939192951-560751505-501 – Limited – Disabled)
HomeGroupUser$ (S-1-5-21-4250991329-2939192951-560751505-1003 – Limited – Enabled)
Kevin (S-1-5-21-4250991329-2939192951-560751505-1000 – Administrator – Enabled) => C:UsersKevin

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled – Up to date) 23007AD3-69FE-687C-2629-D584AFFAF72B
AS: Malwarebytes (Enabled – Up to date) 98619B37-4FC4-67F2-1C99-EEF6D47DBD96
AS: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM…9C40698F-A953-4658-AFF2-F7BB385A3910) (Version: 7.1 – Intel) Hidden
. . . (HKLM-x32…870E5275-5457-4BBC-98C9-BFF4B70AA5D3) (Version: 3.1.0.12 – Intel) Hidden
¡“ú‚Ì‚¨‚©‚¸_‚Ó‚½ƒNƒŠ_1 (HKLM-x32…KYOH_0003) (Version:  – )
Adobe Acrobat Reader DC (HKLM-x32…AC76BA86-7AD7-1033-7B44-AC0F074E4100) (Version: 20.006.20042 – Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32…KBRG_8_0_1) (Version: 8.0.1 – Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32…Adobe Creative Cloud) (Version: 4.6.0.384 – Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32…Adobe Flash Player ActiveX) (Version: 32.0.0.363 – Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32…Adobe Flash Player NPAPI) (Version: 32.0.0.363 – Adobe)
Adobe Photoshop CC 2017 (HKLM-x32…PHSP_18_0) (Version: 18.0.0 – Adobe Systems Incorporated)
Ant Video downloader (Native messaging host) (HKLM-x32…41A57734-2ED5-449A-BAF0-F0B356417716) (Version: 4.7 – Ant.com)
Apple Application Support (32-bit) (HKLM-x32…A7039CC9-4669-4799-92B1-C5CE346DBE3D) (Version: 8.3 – Apple Inc.)
Apple Application Support (64-bit) (HKLM…DA78A9DC-3599-4D81-A960-B679687A6C14) (Version: 8.3 – Apple Inc.)
Apple Mobile Device Support (HKLM…6CECF0FB-EE71-4FE5-8AE0-FA007408934A) (Version: 13.0.0.38 – Apple Inc.)
Apple Software Update (HKLM-x32…A3985C05-7386-411F-A4BF-32A73F37EB44) (Version: 2.6.3.1 – Apple Inc.)
Arc (HKLM-x32…CED8E25B-122A-4E80-B612-7F99B93284B3) (Version: 1.1.0.17816 – Perfect World Entertainment)
Asmedia USB Host Controller Driver (HKLM-x32…E4FB0B39-C991-4EE7-95DD-1A1A7857D33D) (Version: 1.16.38.1 – Asmedia Technology)
AutoCAD LT 2015 – English (HKLM…5783F2D7-E009-0000-0102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) Hidden
AutoCAD LT 2015 – English (HKLM…5783F2D7-E009-0409-2102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) Hidden
AutoCAD LT 2015 Language Pack – English (HKLM…5783F2D7-E009-0409-1102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) Hidden
Autodesk 360 (HKLM…556966D9-F7F6-421B-9707-D07901604DDF) (Version: 5.0.27.1100 – Autodesk)
Autodesk Application Manager (HKLM-x32…Autodesk Application Manager) (Version: 5.0.142.14 – Autodesk)
Autodesk AutoCAD LT 2015 – English (HKLM…AutoCAD LT 2015 – English) (Version: 20.0.51.0 – Autodesk)
Autodesk Content Service (HKLM-x32…A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F) (Version: 3.2.0.0 – Autodesk) Hidden
Autodesk Content Service (HKLM-x32…Autodesk Content Service) (Version: 3.2.0.0 – Autodesk)
Autodesk Content Service Language Pack (HKLM-x32…A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F) (Version: 3.2.0.0 – Autodesk) Hidden
Autodesk Material Library 2015 (HKLM-x32…427F733F-4D6C-45BC-9324-EB743104C321) (Version: 5.2.9.100 – Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32…ABE2F70B-8D94-44E9-AA04-F0DB35063D62) (Version: 5.2.9.100 – Autodesk)
Avidemux 2.7 – 64 bits (HKLM-x32…Avidemux 2.7 – 64 bits (64-bit)) (Version: 2.7.1.180604 – )
Bonjour (HKLM…56DDDFB8-7F79-4480-89D5-25E1F52AB28F) (Version: 3.1.0.1 – Apple Inc.)
Brother MFL-Pro Suite MFC-J825DW (HKLM-x32…A1B36B88-AF90-43A3-8906-6DBEE89B4FBD) (Version: 1.1.6.0 – Brother Industries, Ltd.)
Casper 8.0 (HKLM…7D52E017-F5C3-4DD0-922F-C0B2EC6AD573) (Version: 8.0.46120 – Future Systems Solutions, Inc.)
Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32…519C4DB6-B53B-4F5C-8297-89B2BE949FA5_is1) (Version:  – Western Digital Corporation)
DC Universe Online (HKUS-1-5-21-4250991329-2939192951-560751505-1000…DGC-DC Universe Online) (Version: 1.0.3.195 – Daybreak Game Company)
DC Universe Online Live (HKUS-1-5-21-4250991329-2939192951-560751505-1000…DG0-DC Universe Online Live) (Version:  – Sony Online Entertainment)
EPSON Scan (HKLM-x32…EPSON Scanner) (Version:  – )
Folder Size 3.4.0.0 (HKLM-x32…2DFA85ED-588F-4CE3-A175-29E52C3804A8_is1) (Version: 3.4.0.0 – MindGems, Inc.)
GOG Galaxy (HKLM-x32…7258BA11-600C-430E-A759-27E2C691A335_is1) (Version:  – GOG.com)
Google Chrome (HKLM-x32…Google Chrome) (Version: 81.0.4044.129 – Google LLC)
Google Update Helper (HKLM-x32…60EC980A-BDA2-4CB6-A427-B07A5498B4CA) (Version: 1.3.35.451 – Google LLC) Hidden
Helium (HKLM-x32…9A781940-AC41-4D5E-8E1E-76A04B916FB9) (Version: 1.0.0 – ClockworkMod)
Intel® Management Engine Components (HKLM…1CEAC85D-2590-4760-800F-8DE5E91F3700) (Version: 11.6.0.1050 – Intel Corporation)
Intel® Network Connections 21.1.29.0 (HKLM…PROSetDX) (Version: 21.1.29.0 – Intel)
Intel® Rapid Storage Technology (HKLM…409CB30E-E457-4008-9B1A-ED1B9EA21140) (Version: 15.5.0.1051 – Intel Corporation)
Intel® USB 3.03.1 eXtensible Host Controller Driver (HKLM-x32…240C3DDD-C5E9-4029-9DF7-95650D040CF2) (Version: 5.0.0.32 – Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32…2550a40e-aac6-4d21-9361-744d33bec573) (Version: 3.1.0.12 – Intel)
iTunes (HKLM…49F48AA2-DEA7-453A-8735-9C862E7C8467) (Version: 12.10.4.2 – Apple Inc.)
Java 8 Update 201 (64-bit) (HKLM…26A24AE4-039D-4CA4-87B4-2F64180201F0) (Version: 8.0.2010.9 – Oracle Corporation)
Java 8 Update 201 (HKLM-x32…26A24AE4-039D-4CA4-87B4-2F32180201F0) (Version: 8.0.2010.9 – Oracle Corporation)
Java 8 Update 202 (64-bit) (HKLM…26A24AE4-039D-4CA4-87B4-2F64180202F0) (Version: 8.0.2020.8 – Oracle Corporation)
Java 8 Update 202 (HKLM-x32…26A24AE4-039D-4CA4-87B4-2F32180202F0) (Version: 8.0.2020.8 – Oracle Corporation)
K-Lite Mega Codec Pack 9.6.5 (HKLM-x32…KLiteCodecPack_is1) (Version: 9.6.5 – )
Malwarebytes version 4.1.0.56 (HKLM…35065F43-4BB2-439A-BFF7-0F1014F2E0CD_is1) (Version: 4.1.0.56 – Malwarebytes)
Mass Effect™ 2 (HKLM-x32…75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB) (Version: 1.2.1604.0 – Electronic Arts)
Microsoft .NET Framework 4.7.2 (HKLM…92FB6C44-E685-45AD-9B20-CADF4CABA132 – 1033) (Version: 4.7.03062 – Microsoft Corporation)
Microsoft Office 365 ProPlus – en-us (HKLM…O365ProPlusRetail – en-us) (Version: 16.0.11929.20708 – Microsoft Corporation)
Microsoft OneDrive (HKU.DEFAULT…OneDriveSetup.exe) (Version: 17.3.6743.1212 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-4250991329-2939192951-560751505-1000…OneDriveSetup.exe) (Version: 18.065.0329.0002 – Microsoft Corporation)
Microsoft Silverlight (HKLM…89F4137D-6C26-4A84-BDB8-2E5A4BB71E00) (Version: 5.1.50918.0 – Microsoft Corporation)
Microsoft Visio Viewer 2016 (HKLM…95160000-0052-0409-1000-0000000FF1CE) (Version: 16.0.4339.1001 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…710f4c1c-cc18-4c49-8cbf-51240c89a1a2) (Version: 8.0.61001 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…7299052b-02a4-4627-81f2-1818da5d550d) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…837b34e3-7c30-493c-8f6a-2b0f04e2912c) (Version: 8.0.59193 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…71c9b48-7c32-4621-a0ac-3f809523288f) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…ad8a2fa1-06e7-4b0d-927d-6e54b3d31028) (Version: 8.0.61000 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.21022 (HKLM…350AA351-21FA-3270-8B7A-835434E766AD) (Version: 9.0.21022 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 (HKLM…8220EEFE-38CD-377E-8595-13398D740ACE) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.4148 (HKLM…4B6C7001-C7D6-3710-913E-5BC23FCE91E6) (Version: 9.0.30729.4148 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.21022 (HKLM-x32…FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4) (Version: 9.0.21022 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…9A25302D-30C0-39D9-BD6F-21E6EC160475) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148 (HKLM-x32…1F1C2DFC-2D24-3E06-BCB8-725134ADF989) (Version: 9.0.30729.4148 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…9BE518E6-ECC6-35A9-88E4-87755C07200F) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…1D8E6291-B0D5-35EC-8441-6616F567A0F7) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…F0C3E5D1-1ADE-321E-8167-68EF0DE699A5) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…ca67548a-5ebe-413a-b50c-4b9ceb6d66c6) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.60610 (HKLM-x32…95716cce-fc71-413f-8ad5-56c2892d4b3a) (Version: 11.0.60610.1 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…33d1fd90-4274-48a1-9bc1-97e33d9c2d6f) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…50d4fc8-5d48-4b8f-8972-47c82c46020f) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…f65db027-aff3-4070-886a-0d87064aabb1) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) – 14.13.26020 (HKLM-x32…7474cd6e-76cc-4257-837e-5b9261e526af) (Version: 14.13.26020.0 – Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) – 14.13.26020 (HKLM-x32…5c045b7f-e561-4794-91f8-c6cda0893107) (Version: 14.13.26020.0 – Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32…D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F) (Version: 4.0.30901.0 – Microsoft Corporation)
Minecraft (HKLM-x32…1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872) (Version: 1.0.3.0 – Mojang)
Movavi Video Converter 18 Premium (HKLM-x32…Movavi Video Converter 18 Premium) (Version: 18.4.0 – Movavi)
Mozilla Firefox 75.0 (x64 en-US) (HKLM…Mozilla Firefox 75.0 (x64 en-US)) (Version: 75.0 – Mozilla)
Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 65.0 – Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_NvContainer.NvapiMonitor) (Version: 1.19 – NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.GFExperience) (Version: 3.20.3.63 – NVIDIA Corporation)
NVIDIA Graphics Driver 445.87 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.Driver) (Version: 445.87 – NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.26 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_HDAudio.Driver) (Version: 1.3.38.26 – NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.PhysX) (Version: 9.19.0218 – NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32…90160000-008C-0000-0000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM…90160000-00DD-0000-1000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…90160000-008F-0000-1000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32…90160000-008C-0409-0000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) Hidden
Origin (HKLM-x32…Origin) (Version: 10.5.57.35162 – Electronic Arts, Inc.)
Realtek High Definition Audio Driver (HKLM-x32…F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC) (Version: 6.0.1.8186 – Realtek Semiconductor Corp.)
RimWorld (HKLM-x32…1094900565_is1) (Version: 1.1.2618 rev713 – GOG.com)
Samsung USB Driver for Mobile Phones (HKLM…D0795B21-0CDA-4a92-AB9E-6E92D8111E44) (Version: 1.5.63.0 – Samsung Electronics Co., Ltd.)
Signal 1.33.1 (HKUS-1-5-21-4250991329-2939192951-560751505-1000…7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.33.1 – Open Whisper Systems)
Skype version 8.33 (HKLM-x32…Skype_is1) (Version: 8.33 – Skype Technologies S.A.)
Smart Player 3.37.2 (HKLM-x32…Smart Player) (Version: 3.37.2 – )
SmartPSS 2.0 (HKLM-x32…SmartPSS) (Version: 2.0 – )
Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)
Syncios Data Transfer 3.0.4 (HKLM-x32…Syncios Data Transfer) (Version: 3.0.4 – Anvsoft)
TAP-Windows 9.9.2 (HKLM…TAP-Windows) (Version: 9.9.2 – )
The Lord of the Rings Online™ v1903.0058.2732.4095 (HKLM-x32…12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 1903.0058.2732.4095 – Standing Stone Games, LLC)
The Sims™ 4 (HKLM-x32…48EBEBBF-B9F8-4520-A3CF-89A730721917) (Version: 1.59.73.1020 – Electronic Arts Inc.)
Tixati (HKLM-x32…tixati) (Version:  – )
TP-LINK Archer T4U Driver (HKLM-x32…1672C2A7-911A-45D5-84C4-263B771C50AE) (Version: 1.3.1 – TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32…319D91C6-3D44-436C-9F79-36C0D22372DC) (Version: 1.3.1 – TP-LINK)
TurboTax 2016 (HKLM-x32…TurboTax 2016) (Version: 2016.0 – Intuit, Inc)
TurboTax 2017 (HKLM-x32…TurboTax 2017) (Version: 2017.0 – Intuit, Inc)
Uplay (HKLM-x32…Uplay) (Version: 4.0 – Ubisoft)
VdhCoApp 1.2.4 (HKLM…weh-iss-net.downloadhelper.coapp_is1) (Version:  – DownloadHelper)
VeraCrypt (HKLM-x32…VeraCrypt) (Version: 1.22 – IDRIX)
VisiPics V1.31 (HKLM-x32…VisiPics_is1) (Version:  – Ozone)
VLC media player (HKLM…VLC media player) (Version: 3.0.8 – VideoLAN)
VLC media player (HKLM-x32…VLC media player) (Version: 3.0.6 – VideoLAN)
VPNetwork LLC – TorGuard – Online Privacy Protection Services (HKLM-x32…VPNetwork LLC TorGuard) (Version: "3.97.4" – "VPNetwork LLC")
WinCDEmu (HKLM-x32…WinCDEmu) (Version: 4.1 – Sysprogs)
WinMerge 2.14.0 (HKLM-x32…WinMerge_is1) (Version: 2.14.0 – Thingamahoochie Software)
WinRAR 5.61 (64-bit) (HKLM…WinRAR archiver) (Version: 5.61.0 – win.rar GmbH)
wufuc (HKLM…AF23CE93-4FB0-4A8A-A8D6-7A97151BCC14) (Version: 0.7.1.81 – zeffy)
Zoom (HKUS-1-5-21-4250991329-2939192951-560751505-1000…ZoomUMX) (Version: 4.1 – Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID149DD748-EA85-45A6-93C5-AC50D0260C98localserver32 -> C:Program FilesAutodeskAutoCAD LT 2015acadlt.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID162C6FB5-44D3-435B-903D-E613FA093FB5InprocServer32 -> C:UsersKevinAppDataLocalMicrosoftOneDrive17.3.6743.1212amd64FileCoAuthLib64.dll => No File
CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID74F5CC00-49A9-11CF-A2F9-444553540000InprocServer32 -> C:Program FilesAutodeskAutoCAD LT 2015en-USacadltficn.dll (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSIDe8c77137-e224-5791-b6e9-ff0305797a13InprocServer32 -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> 853B7E05-C47D-4985-909A-D0DC5C6D7303 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> 42D38F2E-98E9-4382-B546-E24E4D6D04BB => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> 36A21736-36C2-4C11-8ACB-D4136F2B57BD => C:Windowssystem32AcSignIcon.dll [2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)
ContextMenuHandlers1: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> 2E7A2C6C-B938-40a4-BA1C-C7EC982DC202 => C:Program FilesCommon FilesAutodesk SharedAcShellExAcShellExtension.dll [2014-02-07] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [WinCDEmu] -> D0E37FD2-F675-426F-B09A-2CF37BA46FD5 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers1: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers1: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers2: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers4: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> 3D1975AF-48C6-4f8e-A182-BE0E08FA86A9 => C:Windowssystem32nvshext.dll [2020-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]
ContextMenuHandlers6: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers6: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Drivers32: [VIDC.XVID] => C:WindowsSysWOW64xvidvfw.dll [243200 2011-06-24] () [File not signed]
HKLM…Drivers32: [VIDC.LAGS] => C:WindowsSysWOW64lagarith.dll [216064 2011-12-07] ( ) [File not signed]
HKLM…Drivers32: [VIDC.FFDS] => C:WindowsSysWOW64ff_vfw.dll [112640 2012-12-24] () [File not signed]
HKLM…Drivers32: [msacm.ac3acm] => C:WindowsSysWOW64ac3acm.acm [151552 2011-12-21] (fccHandler) [File not signed]
HKLM…Drivers32: [vidc.VP60] => C:WindowsSysWOW64vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM…Drivers32: [vidc.VP61] => C:WindowsSysWOW64vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-03-26 13:58 – 2018-03-26 13:58 – 000112128 _____ ( (Microsoft Corporation) [File not signed]) [File is in use ] C:WindowsMicrosoft.NetassemblyGAC_32System.EnterpriseServicesv4.0_4.0.0.0__b03f5f7f11d50a3aSystem.EnterpriseServices.Wrapper.dll
2017-12-22 13:02 – 2009-02-27 17:38 – 000139264 ____R () [File not signed] C:Program Files (x86)BrotherBrUtilitiesBrLogAPI.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 000511987 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibgcc_s_sjlj-1.dll
2018-09-28 08:02 – 2018-09-28 08:02 – 000128239 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardliblzo2-2.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 003311313 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibunbound-8.dll
2017-12-22 13:02 – 2005-04-21 21:36 – 000143360 _____ () [File not signed] C:Windowssystem32BrSNMP64.dll
2017-12-22 13:02 – 2012-07-02 09:24 – 000007168 _____ (Brother Industries Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRLFXA5C.DLL
2017-12-22 13:02 – 2012-07-02 09:24 – 000231936 _____ (Brother Industries Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRUFXA5C.dll
2017-12-22 13:02 – 2012-04-23 16:03 – 000380928 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrMonitor.dll
2017-12-22 13:02 – 2010-09-29 18:07 – 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BroSNMP.dll
2017-12-22 13:02 – 2011-02-28 12:32 – 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrFirmUpdateCheck.dll
2017-12-22 13:02 – 2012-01-11 15:39 – 000626688 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrStMonWRes.dll
2017-12-22 13:02 – 2012-08-28 12:51 – 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcAssoc.dll
2017-12-22 13:02 – 2012-07-06 14:33 – 000098304 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcDlgRc.dll
2017-12-22 13:02 – 2012-07-06 14:33 – 017694720 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcGrImg.dll
2017-12-22 13:02 – 2012-07-17 14:36 – 000090112 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcLUsa.dll
2017-12-22 13:02 – 2012-07-05 04:32 – 000084480 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32BrNetSti.dll
2020-01-03 16:29 – 2007-02-14 10:21 – 000231424 _____ (Hewlett-Packard Corporation) [File not signed] C:Windowssystem32spoolPRTPROCSx64hpzpp4wm.DLL
2017-12-17 14:44 – 2013-02-02 16:41 – 000079360 _____ (hxxp://winmerge.org) [File not signed] C:Program Files (x86)WinMergeShellExtensionX64.dll
2017-12-22 13:05 – 2017-12-22 13:05 – 000065536 _____ (Microsoft Corporation) [File not signed] C:WindowsWinSxSx86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774vcomp.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 000242489 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibwinpthread-1.dll
2015-09-25 14:34 – 2015-09-28 11:08 – 000255488 _____ (Sysprogs OU) [File not signed] C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 002274558 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardLIBEAY32.dll
2019-12-13 04:18 – 2019-12-13 04:18 – 000573933 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardSSLEAY32.dll
2016-12-01 03:44 – 2016-12-01 03:44 – 000039424 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardbearerqgenericbearer.dll
2016-12-01 03:44 – 2016-12-01 03:44 – 000041984 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardbearerqnativewifibearer.dll
2016-12-01 07:28 – 2016-12-01 07:28 – 000040960 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqdds.dll
2016-12-01 03:43 – 2016-12-01 03:43 – 000026112 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqgif.dll
2016-12-01 07:28 – 2016-12-01 07:28 – 000033280 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqicns.dll
2016-12-01 03:43 – 2016-12-01 03:43 – 000027648 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqico.dll
2016-12-01 03:43 – 2016-12-01 03:43 – 000245760 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqjpeg.dll
2016-12-01 06:38 – 2016-12-01 06:38 – 000021504 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqsvg.dll
2016-12-01 07:29 – 2016-12-01 07:29 – 000020992 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqtga.dll
2016-12-01 07:29 – 2016-12-01 07:29 – 000316416 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqtiff.dll
2016-12-01 07:29 – 2016-12-01 07:29 – 000019968 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqwbmp.dll
2016-12-01 07:30 – 2016-12-01 07:30 – 000370688 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqwebp.dll
2016-12-01 03:44 – 2016-12-01 03:44 – 001066496 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardplatformsqwindows.dll
2020-01-05 12:09 – 2020-01-05 12:09 – 004633088 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Core.dll
2016-12-01 03:35 – 2016-12-01 03:35 – 004865024 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Gui.dll
2016-12-01 03:31 – 2016-12-01 03:31 – 000847872 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Network.dll
2016-12-01 06:38 – 2016-12-01 06:38 – 000255488 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Svg.dll
2016-12-01 08:43 – 2016-12-01 08:43 – 000110592 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5WebSockets.dll
2016-12-01 03:40 – 2016-12-01 03:40 – 004448768 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Widgets.dll
2017-07-16 00:47 – 2017-07-16 00:47 – 000148480 _____ (zeffy) [File not signed] C:Program Fileswufucwufuc.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:WindowsSwUSB.exe:AGC [0]
AlternateDataStreams: C:UsersKevinDownloadsAdobe Illustrator CS6 16.0.0 (32-64 bit) [ChingLiu]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsAdobe Photoshop CS6 13.0.1 Final  Multilanguage (cracked dll) [ChingLiu]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsAdobe Photoshop CS6 13.1.2 Extended Multilanguage [ChingLiu]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsAnt Videos:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsavidemux_2.7.0_win64.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsavidemux_2.7.1_win64.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsBefore.Sunset.2004.1080p.BRrip.HEVC.x265-GIRAYS:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsCASPER_SE_SETUP_10_1_6704.EXE:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsCASPER_SE_SETUP_8_0_4612.EXE:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsDCUO_setup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsddfbusty.com – siterip:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloadsDropboxInstaller.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsepson13829(1).exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsFolderSize.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsiTunes64Setup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsjre-8u151-windows-x64.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadslotrolive.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsmb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsMFC-J825DW-inst-C1-usa.EXE:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsMovaviVideoConverterSetupF.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsOriginSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsOriginThinSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsSetup.X86.en-us_O365ProPlusRetail_0c5e4a56-ee61-43ec-b381-d41a712612ed_TX_PR_b_64_.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadssetuplanguagepack.x64.ja-jp_.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsSRTa.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsStar-trek-online_ArcSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsSteamSetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadssyncios_data_transfer.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstixati-2.55-1.win64-install.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorbrowser-install-7.5.6_en-US.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-latest.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-v0.3.78.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-v3.86.1.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.1.1.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.2.3.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.2.4.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsVeraCrypt Setup 1.22.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsvipre_defcleaner.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsvlc-2.2.8-win32.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsWinCDEmu-4.1.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadswinxpvirtualcdcontrolpanel_21.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadswpsetup.exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloadsZoomInstaller(1).exe:BDU [0]
AlternateDataStreams: C:UsersKevinDownloads[2005] All Of Me (Greatest Hits) – Anne Murray @ 320kbs [only1joe]:Shareaza.GUID [16]
AlternateDataStreams: C:UsersKevinDownloads[nextorrent.net] Adobe Photoshop CC 2017 18.0 x64:Shareaza.GUID [34]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => ""="Service"
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => ""="Service"
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkVipreEdgeProtection => ""="service"
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkWebExaminer => ""="Driver"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKUS-1-5-21-4250991329-2939192951-560751505-1000SoftwareClasses.scr: AutoCADLTScriptFile => C:Windowssystem32notepad.exe "%1"

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKUS-1-5-21-4250991329-2939192951-560751505-1000…sharepoint.com -> hxxps://mycicsuci-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 – 2018-10-11 08:21 – 000000824 _____ C:Windowssystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)Common FilesOracleJavajavapath;C:ProgramDataOracleJavajavapath;C:Program Files (x86)InteliCLS Client;C:Program FilesInteliCLS Client;C:Windowssystem32;C:Windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:Program Files (x86)IntelUCRT;C:Program FilesIntelUCRT;C:Program Files (x86)IntelIntel® Management Engine ComponentsDAL;C:Program FilesIntelIntel® Management Engine ComponentsDAL;C:Program Files (x86)IntelIntel® Management Engine ComponentsIPT;C:Program FilesIntelIntel® Management Engine ComponentsIPT;C:Program FilesNVIDIA CorporationNVIDIA NvDLISR;C:Program Files (x86)NVIDIA CorporationPhysXCommon
HKUS-1-5-21-4250991329-2939192951-560751505-1000Control PanelDesktop\Wallpaper -> C:UsersKevinAppDataRoamingMicrosoftWindowsThemesTranscodedWallpaper.jpg
DNS Servers: 10.9.0.1 – 10.8.0.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIGServices: Apple Mobile Device Service => 2
MSCONFIGServices: Bonjour Service => 2
MSCONFIGServices: ESRV_SVC_QUEENCREEK => 2
MSCONFIGServices: iPod Service => 3
MSCONFIGServices: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIGServices: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIGstartupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:WindowspssTP-LINK Wireless Configuration Utility.lnk.CommonStartup
MSCONFIGstartupreg: Adobe Creative Cloud => "C:Program Files (x86)AdobeAdobe Creative CloudACCCreative Cloud.exe" –showwindow=false –onOSstartup=true
MSCONFIGstartupreg: AdobeAAMUpdater-1.0 => "C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe"
MSCONFIGstartupreg: BlueStacks Agent => C:Program Files (x86)BlueStacksHD-Agent.exe
MSCONFIGstartupreg: com.squirrel.Teams.Teams => C:UsersKevinAppDataLocalMicrosoftTeamsUpdate.exe –processStart "Teams.exe" –process-start-args "–system-initiated"
MSCONFIGstartupreg: com.squirrel.WhatsApp.WhatsApp => C:UsersKevinAppDataLocalWhatsAppUpdate.exe –processStart "WhatsApp.exe"
MSCONFIGstartupreg: Dropbox => "C:Program Files (x86)DropboxClientDropbox.exe" /systemstartup
MSCONFIGstartupreg: iTunesHelper => "C:Program FilesiTunesiTunesHelper.exe"
MSCONFIGstartupreg: TeamsMachineInstaller => %ProgramFiles%Teams InstallerTeams.exe –checkInstall –source=PROPLUS

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%system32sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%system32sppsvc.exe No File
FirewallRules: [846E4602-E7B6-4243-B9DD-5EA7061C69AB] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [67D6ACC3-664B-465C-9ECF-6BE32F660877] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [D95F651D-1002-4E5F-B7D6-0AE399D15308] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [D8FB9509-7270-40AF-B5C4-8140223155AE] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [517D608A-7568-4064-B124-969C4ADE1D54] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [8A969959-8387-4915-87B5-8126290DB92D] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]
FirewallRules: [A068161F-A4EA-4F80-9B41-34437756A37A] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [E179E702-1723-418E-BF3C-0B9108936D24] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [E54F8E38-EB3A-4E38-BA90-AA9FC31D0F76] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [7785D835-361A-4357-AEA5-0F86BB01D545] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [FBF047D4-996A-4757-9AB5-6C9AF6EC4E42] => (Allow) C:Program Files (x86)SteamsteamappscommonRome Total War Alexandertestappa.exe No File
FirewallRules: [4A02A123-0B77-4906-A0AF-CAB333B1B9F6] => (Allow) C:Program Files (x86)SteamsteamappscommonRome Total War Alexandertestappa.exe No File
FirewallRules: [B01BC6C6-A84F-4F08-B033-E029A2F68D85] => (Allow) C:Program Files (x86)SteamsteamappscommonOri DEoriDE.exe No File
FirewallRules: [088D858D-DE79-42AB-8D8D-87CDC5FDB44D] => (Allow) C:Program Files (x86)SteamsteamappscommonOri DEoriDE.exe No File
FirewallRules: [52CA5507-2191-4385-BA16-A038E3C6EDC3] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of Nationspatriots.exe No File
FirewallRules: [621A1269-E00F-45A1-8B78-4256FCFB224E] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of Nationspatriots.exe No File
FirewallRules: [9345FE84-4148-4747-911D-9620E0254139] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No File
FirewallRules: [A27D43EB-D5DF-44AA-9A34-45494FDBC4EB] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No File
FirewallRules: [79F01A62-9793-48D8-AEB0-739A2F2303D1] => (Allow) C:Program Files (x86)SteamsteamappscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [93B5509E-2980-41AF-A6E7-09C65E8DAE20] => (Allow) C:Program Files (x86)SteamsteamappscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [FDBD51E5-FB00-4730-8708-94F791D99923] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Witcher 3binx64witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [3726E4C0-6ECB-48C4-B909-14DF2600C5DC] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Witcher 3binx64witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [62212345-1D57-452F-A41B-80AC58B86439] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_SkylinesCities.exe () [File not signed]
FirewallRules: [A4E14026-94F0-48FD-A0AC-3BFC2C37631F] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_SkylinesCities.exe () [File not signed]
FirewallRules: [CB44877C-CB9D-491E-83EB-F60675CFD737] => (Allow) C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [BAB20944-B6BA-493B-BA4C-CB59429E7057] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [071E4B88-973C-4F08-AC18-33B1D2A6A558] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [328B0493-9AF9-4AA2-A88A-1F17B497E805] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [7FEF3CE5-A019-48A1-9404-9BBA278A8BEC] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [531E6327-C961-4F5A-904B-DF3924473D08] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVeu4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [AE4FCF2C-9A55-43CD-8876-EA500B0D9843] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVeu4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [0A5BFF7A-3E64-4879-A0B8-A1D78B6618D1] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [A5F0B236-C290-41A4-8BF7-05E1610BB288] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [07165169-E806-46EF-806D-5F7470AB9AE4] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [5E416C1D-4D01-460D-B729-F52609AE1640] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [62788860-FB1C-409F-90E2-63706E71151A] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [B0D09008-B595-40AA-A078-44DDB6C04B52] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [90289718-D60D-488B-9AAD-4E0675C5FD3B] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [99D1D56C-A4F2-4A5F-A81B-AD65BA9FBD97] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [B73013D2-4D19-4F1D-B506-3318C52BE0CF] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [56A87FCE-9681-4566-AE08-5EFECADF33B5] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [047A23EF-43D8-4989-BFFE-EA454468F4D7] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2MassEffect2Launcher.exe No File
FirewallRules: [1477B1FF-07EC-497A-82A6-252306710EE0] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2MassEffect2Launcher.exe No File
FirewallRules: [BC32DCA6-0DFC-4DAA-8F1B-0CDB1573A265] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [54FB0439-2C5E-4916-B0F2-A898BC997D36] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No File
FirewallRules: [DF7FB258-4112-4B9F-8386-895E3011B77B] => (Allow) C:Program Files (x86)SteamsteamappscommonEndless LegendEndlessLegend.exe () [File not signed]
FirewallRules: [95BAD206-9832-450E-AF67-BE57D6B48DBB] => (Allow) C:Program Files (x86)SteamsteamappscommonEndless LegendEndlessLegend.exe () [File not signed]
FirewallRules: [E0ADBE76-76D0-4034-A535-F6B2C174FAF3] => (Allow) C:Program Files (x86)SteamsteamappscommonHalf-Life 2hl2.exe No File
FirewallRules: [89F5CDB1-525A-4031-B2B6-29ECBB46223C] => (Allow) C:Program Files (x86)SteamsteamappscommonHalf-Life 2hl2.exe No File
FirewallRules: [EEACD82D-4A29-4C5E-9DF1-EEE441F3E627] => (Allow) C:Program Files (x86)SteamsteamappscommonPortalhl2.exe No File
FirewallRules: [56148D36-5592-4A6A-BD9A-0511D33B1558] => (Allow) C:Program Files (x86)SteamsteamappscommonPortalhl2.exe No File
FirewallRules: [82CD4A69-A515-4F39-8FBA-99125E8A1617] => (Allow) C:Program Files (x86)SteamsteamappscommonPortal 2portal2.exe No File
FirewallRules: [A62199B1-E081-44A2-9BA8-856B961A8D56] => (Allow) C:Program Files (x86)SteamsteamappscommonPortal 2portal2.exe No File
FirewallRules: [83BA3315-2754-4DA8-AC60-32BD308E80F5] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of the Tomb RaiderROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [A1B67EF9-AC58-4EA9-84BC-064A04C97524] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of the Tomb RaiderROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [BAAC7E77-5A11-459D-BE6B-4A6EEF517C31] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout New VegasFalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [EBE747B2-A3FA-4D3D-A580-2CD2D253A855] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout New VegasFalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [5C0BEAB6-6822-47F5-920C-653F9CCC3C84] => (Allow) C:Program Files (x86)SteamsteamappscommonTransistorx64Transistor.exe No File
FirewallRules: [BB47EE73-F1E8-4577-B80F-16751CB5F8A2] => (Allow) C:Program Files (x86)SteamsteamappscommonTransistorx64Transistor.exe No File
FirewallRules: [0EFDEE5E-FB7B-46A6-8C88-748586877174] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [4BD58CFB-5590-4681-9A66-8C518C8C788D] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [90B37D59-FF32-49FA-81AE-4380C982833F] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [AEFCBAE9-DED9-42EB-B885-89E8CF2AB7ED] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [04FB09B0-6751-4281-AD90-0493C6F5AA83] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [6381F013-3725-4C84-B801-A375835C9211] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [A5F1F507-00ED-4C58-B1B5-A5BE1FF9971B] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [B320E367-4915-4CC8-8F15-F45B6397BC70] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)
FirewallRules: [969E7919-2A50-4D03-85F8-5B6987B41F08] => (Allow) C:Program Files (x86)BrotherBrmfl11aFAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [DA101ED0-CF83-45EC-B9EC-042D9CB665CF] => (Allow) C:Program Files (x86)BrotherBrmfl11aFAXRX.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [9A8BEFB1-8A7E-4BCB-AAEB-3FD7AFC8A3D5] => (Allow) LPort=161
FirewallRules: [C788C3B8-AEAA-4122-BCD7-D084EEB0D651] => (Allow) C:Program Files (x86)SteamsteamappscommonPreyBinariesDaniellex64ReleasePrey.exe (Arkane Studios) [File not signed]
FirewallRules: [AB613C3D-9DC1-4CCC-B4CA-37460E0B5CB7] => (Allow) C:Program Files (x86)SteamsteamappscommonPreyBinariesDaniellex64ReleasePrey.exe (Arkane Studios) [File not signed]
FirewallRules: [112D8DBF-C662-4E9C-BE3B-A0E9E22FCD1A] => (Allow) C:Program Files (x86)SteamsteamappscommonDDDADDDA.exe (Capcom U.S.A., Inc.) [File not signed]
FirewallRules: [48718C37-AA30-485D-A156-B0E5580E2C4E] => (Allow) C:Program Files (x86)SteamsteamappscommonDDDADDDA.exe (Capcom U.S.A., Inc.) [File not signed]
FirewallRules: [8D6311D2-304A-4EA6-B5F5-8A8BF7C0F16D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadow TacticsShadow Tactics.exe () [File not signed]
FirewallRules: [4C8ED993-EFB9-4658-B760-02F246BE7E85] => (Allow) C:Program Files (x86)SteamsteamappscommonShadow TacticsShadow Tactics.exe () [File not signed]
FirewallRules: [3D163632-2CE9-499D-8813-1B2144186CA0] => (Allow) C:Program Files (x86)SteamsteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe No File
FirewallRules: [3C1FC11C-4B5A-4374-BF5F-55286B86A02A] => (Allow) C:Program Files (x86)SteamsteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe No File
FirewallRules: [TCP Query User4508AEE9-DCE9-4D53-81C0-BE08AC84DC2CC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [UDP Query User4DBADB1E-818A-4CD8-B5A0-67B325E047EBC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [TCP Query User03D4CFCD-CD49-4CDC-AA2F-E82E3E3FE11FC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [UDP Query UserA4D34AEF-8C86-4753-A80D-D51344814130C:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No File
FirewallRules: [4D5960B1-2A01-4907-8883-407D176702C5] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [A772A869-1017-4FDB-A43E-C6D789243F74] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [902921B2-F900-486A-A465-894EF3F3BB7D] => (Allow) C:Program Files (x86)SteamsteamappscommonHacknetHacknet.exe () [File not signed]
FirewallRules: [417848CF-D774-4295-8C63-64A1F596AAD2] => (Allow) C:Program Files (x86)SteamsteamappscommonHacknetHacknet.exe () [File not signed]
FirewallRules: [0782BB30-6F73-4D8E-A6E1-BE4A979AB297] => (Allow) C:UsersKevinAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [A770D07B-4AF6-458E-918A-00F79965B4FB] => (Allow) C:UsersKevinAppDataRoamingZoombinairhost.exe No File
FirewallRules: [EC211640-2740-4835-81DD-75522A664FDD] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4.exe No File
FirewallRules: [F5F5FE02-87FB-412A-BCC8-3A1B4861826C] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4.exe No File
FirewallRules: [35C4BF3E-90E4-4A32-9E25-63BBFF21D7FA] => (Allow) C:Program Files (x86)BlueStacksHD-Player.exe No File
FirewallRules: [FC97D62B-6523-40F4-9A38-27564E69548E] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [B22C71EB-20E7-45D7-B479-2F28E4A5560B] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [1D8F747D-EB05-4836-8859-DEAAF8A4D58F] => (Allow) C:Program Files (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [3F353260-D351-4F2E-9D79-54BB01F867E8] => (Allow) C:Program Files (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [D5FA710F-6F47-4BD1-9513-C45F885C25DC] => (Allow) C:Program Files (x86)AnvSoftSyncios Data TransferSynciosTransfer.exe No File
FirewallRules: [88F3C470-7523-4291-A65D-5BED49529A0D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [510E3107-8724-465E-B11F-6627DF3495FC] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [A595D386-53E1-4512-A257-845364B12791] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [A1F4ECE8-D9B0-4146-86EB-7C73B7DA10FD] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No File
FirewallRules: [D2D4521B-6B99-46FC-AE09-729E31C2ACD6] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [7B7310A2-3731-419F-B1B4-DFCFA1EF880C] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No File
FirewallRules: [98C42D62-F884-4386-B316-7152B0C059F4] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [0D84FB84-202E-455E-B244-9C689583F1A6] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [9DBD86AA-300F-4F52-9DED-155BF7D1A2EC] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [852F6D96-B05A-4808-AEEF-AD5A37C110F9] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exe
FirewallRules: [E6FF8591-FA65-475D-A4DB-31C48FEE9A32] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [8F14B9C9-AA65-4034-9C98-6A9F0B988067] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [93DE2622-D487-4306-881C-E496AB512735] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [5FB84764-6A08-4AC2-9C34-E2D21234B73F] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No File
FirewallRules: [2A14805D-3555-4FBB-B8F9-A617518DFD83] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [122A0B86-7755-40D1-B7EE-78D8C5F6595D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No File
FirewallRules: [TCP Query UserF341763C-ACE6-4220-8C92-688D67B115CDC:program filestixatitixati.exe] => (Allow) C:program filestixatitixati.exe (Tixati Software Inc. -> Tixati Software Inc.)
FirewallRules: [UDP Query User3B7625DC-9943-4037-81B0-55272F94BBD5C:program filestixatitixati.exe] => (Allow) C:program filestixatitixati.exe (Tixati Software Inc. -> Tixati Software Inc.)
FirewallRules: [TCP Query User282A8303-157D-42F8-B0AC-18B3A9703A1AC:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe] => (Allow) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [UDP Query UserBF51C937-976B-4E29-9843-FC1E6302D529C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe] => (Allow) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [D454DFC3-6314-4510-9052-72465EE53173] => (Block) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [2108201E-8AFB-4ED9-B87A-CBC3E4092F85] => (Block) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]
FirewallRules: [5DA0F714-A817-49BD-82CA-4066A606E0AD] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [DFDF01E9-4299-4009-8850-8B98F83BC89F] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [B8E888BE-E97F-4015-AF72-A282AE862076] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [3CE57107-2551-4A5F-B744-BE1959B1E4A9] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No File
FirewallRules: [F12B9CA7-7242-41A1-971A-5E02698646DB] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [85DB2CF2-1683-4F97-82BE-45546BBA61EC] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No File
FirewallRules: [D1303D80-27D6-4995-8FA5-E40FCA50DDF2] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdater.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [EE5EAFB1-524C-4404-AC0B-27F9E9EC23A1] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [6A106A7B-EB1D-454C-B97B-73DE8D992644] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [7C8D43C6-433C-4005-92BA-0C2BE53352A8] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [668E2671-74BD-4BE8-BF7F-29AF7F04042C] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [BE15BF0E-D526-44FD-8CCC-1BFD3B1BFCB7] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [A382F4B0-D1A0-4653-9049-4A7BF8C0400F] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [29B4C330-C935-44CB-99A8-157F093961FC] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [FAB657F4-F3EA-4101-AC8B-A85F9054BB86] => (Allow) LPort=50248
FirewallRules: [3B322613-D262-413D-9845-A2B6A039FDDD] => (Allow) H:Steam GamessteamappscommonHalf-Life 2hl2.exe (Valve -> )
FirewallRules: [BCB57B96-81CD-4976-AC55-55798126114C] => (Allow) H:Steam GamessteamappscommonHalf-Life 2hl2.exe (Valve -> )
FirewallRules: [5A58CDA7-2614-4060-A01A-C0A8C9797215] => (Allow) H:Steam GamessteamappscommonPortalhl2.exe (Valve -> )
FirewallRules: [BC4D40A1-9638-4778-98CD-AEC95EDED230] => (Allow) H:Steam GamessteamappscommonPortalhl2.exe (Valve -> )
FirewallRules: [4B4A8D66-4248-4D1E-88DF-AC209AAEC995] => (Allow) H:Steam GamessteamappscommonPortal 2portal2.exe () [File not signed]
FirewallRules: [D42BCEB7-0D9C-4D87-ADF9-1D7878E5B1AF] => (Allow) H:Steam GamessteamappscommonPortal 2portal2.exe () [File not signed]
FirewallRules: [C2A5C781-F91D-404D-8906-DDB81E2B37B5] => (Allow) H:Steam GamessteamappscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)
FirewallRules: [D45479D2-40DB-4360-B1B9-5F06ADB0A124] => (Allow) H:Steam GamessteamappscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)
FirewallRules: [A020A3FF-57DC-4479-BA31-3010AEBA98ED] => (Allow) H:Steam GamessteamappscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)
FirewallRules: [F0B1CEB9-1810-4EF3-9C78-B7B70B0F6623] => (Allow) H:Steam GamessteamappscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)
FirewallRules: [A962CBB2-908A-40FE-9D2A-8C7732714FD6] => (Allow) H:Steam GamessteamappscommonTransistorx64Transistor.exe (Supergiant Games, LLC) [File not signed]
FirewallRules: [3EEAD57F-DC09-4642-B367-0FDD06AC411C] => (Allow) H:Steam GamessteamappscommonTransistorx64Transistor.exe (Supergiant Games, LLC) [File not signed]
FirewallRules: [7B1DE141-AC19-48F0-AED5-910203920A45] => (Allow) H:Steam GamessteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [63C0D939-D179-4683-B935-6DA131B1DC96] => (Allow) H:Steam GamessteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [88CCD2F5-E8C5-4DD8-A518-7A69FEF0EE03] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos.exe (GHI Media LLC -> Croteam)
FirewallRules: [AC6C793A-96CB-44F9-A7A0-723B0E69A922] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos.exe (GHI Media LLC -> Croteam)
FirewallRules: [92C00313-5375-4367-8034-D4F5EE0B6713] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe (GHI Media LLC -> Croteam)
FirewallRules: [A5C99289-3667-4738-978E-A662CE1418DA] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe (GHI Media LLC -> Croteam)
FirewallRules: [A2B503CF-F754-49F9-961B-711C5726D37A] => (Allow) H:Steam GamessteamappscommonOri DEoriDE.exe () [File not signed]
FirewallRules: [6581BA0E-2513-42D8-ACB5-E0862185C9B4] => (Allow) H:Steam GamessteamappscommonOri DEoriDE.exe () [File not signed]
FirewallRules: [3A752978-246F-4DFB-B8F3-8800A3DE30FD] => (Allow) C:Program Files (x86)SteamsteamappscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [431ED6F3-C751-4AD1-A60F-5848B618890F] => (Allow) C:Program Files (x86)SteamsteamappscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [EF73EA5A-1774-44D1-AC26-E7B7D889E2F2] => (Allow) H:Steam GamessteamappscommonOpus MagnumLightning.exe () [File not signed]
FirewallRules: [31A0CCA5-877A-4C5C-833F-087CC10B4679] => (Allow) H:Steam GamessteamappscommonOpus MagnumLightning.exe () [File not signed]
FirewallRules: [82EE471F-665E-41DB-B5B1-546202F4ED52] => (Allow) H:Steam GamessteamappscommonDon't Starve Togetherbindontstarve_steam.exe No File
FirewallRules: [65963D6E-1307-4D0D-99C4-BE8E30BCF078] => (Allow) H:Steam GamessteamappscommonDon't Starve Togetherbindontstarve_steam.exe No File
FirewallRules: [10B93F89-D659-4F15-9595-E93B0EEE5515] => (Allow) H:Steam GamessteamappscommonShadowOfMordorx64ShadowOfMordor.exe (WB Games, Inc.) [File not signed]
FirewallRules: [353E2741-C0E1-44D5-9398-058E09B083EE] => (Allow) H:Steam GamessteamappscommonShadowOfMordorx64ShadowOfMordor.exe (WB Games, Inc.) [File not signed]
FirewallRules: [6A76D028-C503-409A-A8D4-20177FD4AE32] => (Allow) H:Steam GamessteamappscommonRise of Nationspatriots.exe (TODO: ) [File not signed]
FirewallRules: [2AFAE238-4F23-4550-A2D4-2C7C4BA5A8D1] => (Allow) H:Steam GamessteamappscommonRise of Nationspatriots.exe (TODO: ) [File not signed]
FirewallRules: [1F45493A-5CBA-48BA-B890-0E2B6CE59AEF] => (Allow) H:Steam GamessteamappscommonTomb RaiderTombRaider.exe (Square Enix) [File not signed]
FirewallRules: [D06CED37-982B-44F7-B9D9-F83C4C8BC1AA] => (Allow) H:Steam GamessteamappscommonTomb RaiderTombRaider.exe (Square Enix) [File not signed]
FirewallRules: [5F35B8EC-3864-4E8D-A8BD-1C852CF08CAC] => (Allow) H:Steam GamessteamappscommonDishonoredBinariesWin32Dishonored.exe (Bethesda Softworks -> ZeniMax Media Inc.)
FirewallRules: [63C7659B-1430-4E25-8970-01A7CF98C0EB] => (Allow) H:Steam GamessteamappscommonDishonoredBinariesWin32Dishonored.exe (Bethesda Softworks -> ZeniMax Media Inc.)
FirewallRules: [82D9E476-4A6F-42CF-B8BB-7C453DE534A2] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBin_LETS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [27F43EC4-0EA2-42F0-B4C2-5C6E5BD350F6] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBin_LETS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [9604041D-AE4A-433D-905A-7D71FE4B49D6] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [5851A150-6484-4DA8-9A3E-B1DE33D3B458] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [298F3BDB-EAE0-4777-88EF-E640BF7A1C36] => (Allow) C:Program Files (x86)AnvsoftSyncios Data TransferSyncios Data Transfer.exe (Anvsoft Inc. -> Anvsoft)
FirewallRules: [AEE5EAF8-E5F5-4657-BFA8-60D2BDEFEE13] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [8BF9E306-BB85-4254-B9B7-B0174BA1B18A] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [09233D4C-4425-42E0-BA35-AD0C10B9CA47] => (Allow) H:Steam GamessteamappscommonDivinity Original Sin 2binSupportTool.exe (Larian Studios -> Larian Studios)
FirewallRules: [67E7AC73-08A7-4FDE-9777-BBBE1D67CBC4] => (Allow) H:Steam GamessteamappscommonDivinity Original Sin 2binSupportTool.exe (Larian Studios -> Larian Studios)
FirewallRules: [TCP Query UserB57CB413-8591-4427-A575-07765666B1E2H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe] => (Allow) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [UDP Query User09216822-2E66-48F7-9D14-059BB59857A2H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe] => (Allow) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [8B54B3FA-0222-4949-9C6A-94EDC91FEBCA] => (Block) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [41A84CDC-0CD1-4D99-B461-7CB5B334CFE9] => (Block) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )
FirewallRules: [D74D5CE3-070B-46CD-87B2-8121ECAD3228] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [EFB7483F-FBDD-4095-96F4-EBC8E5DA0216] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [3E485EBA-B191-4CF4-B401-09E62D74DB3E] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User4178CE08-4E12-4960-9CDD-CC2F60DD33A8C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [UDP Query User13EF9D5E-F3CF-4725-B28A-68A1984BA51AC:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [TCP Query UserE1223002-27B2-4CD4-9EAB-B596CA862754C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [UDP Query UserBB71AB01-BFBC-426D-8B31-3C660D1ECD11C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )
FirewallRules: [TCP Query UserFFCC26E8-C9F9-4CC5-A24B-9DDD3517AEE8C:program files (x86)minecraftruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [UDP Query UserCD3407D7-28D6-4C34-B297-D59DCC47FF3AC:program files (x86)minecraftruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [E5EEEB5D-7F5F-45B9-8D2C-E37ED3B5B2EB] => (Block) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [66E43BB3-2023-4753-847F-96BF0563991B] => (Block) C:program files (x86)minecraftruntimejre-x64binjavaw.exe
FirewallRules: [07412082-A2B9-4D33-BA39-B5F03C13479A] => (Allow) C:Program FilesiTunesiTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [6DCC8B15-F6E0-4545-A0C5-30C794867217] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)
FirewallRules: [9E71390D-439A-4CC9-83BE-20F1C32A5C66] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [FC4FD25D-6FE6-4A7E-8B6B-CF6219FB6965] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [B5E5AB54-2F3F-49EA-B081-44F22A142E68] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [DACC25E6-E2C1-436A-9A01-6FFA1B598965] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

02-05-2020 00:00:01 Scheduled Checkpoint
02-05-2020 09:59:50 Removed Realtek High Definition Audio Driver
02-05-2020 10:03:25 Installed Realtek High Definition Audio Driver
03-05-2020 10:58:23 Windows Update

==================== Faulty Device Manager Devices ============

Name: PCI Memory Controller
Description: PCI Memory Controller
Class Guid:
Fabricant:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: 4d36e96f-e325-11ce-bfc1-08002be10318
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Base System Device
Description: Base System Device
Class Guid:
Fabricant:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Fabricant:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: 4d36e96b-e325-11ce-bfc1-08002be10318
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: ========================

Application errors:
==================
Error: (05/03/2020 02:09:37 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest".Error in manifest or policy file "C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (05/03/2020 02:09:37 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest".Error in manifest or policy file "C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (05/01/2020 09:54:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Adobe Spaces Helper.exe, version: 0.0.0.0, time stamp: 0x57fde35d
Faulting module name: libcef.dll, version: 3.2526.1347.0, time stamp: 0x572d0cf0
Exception code: 0xc0000005
Fault offset: 0x0000000002656a12
Faulting process id: 0x2360
Faulting application start time: 0x01d61fd5ddfb6e96
Faulting application path: C:Program FilesAdobeAdobe Photoshop CC 2017RequiredPlug-InsSpacesAdobe Spaces Helper.exe
Faulting module path: C:Program FilesAdobeAdobe Photoshop CC 2017RequiredPlug-InsSpaceslibcef.dll
Report Id: 7a720f16-8bcc-11ea-a891-001bdc0fc646

Error: (05/01/2020 09:53:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Photoshop.exe, version: 18.0.0.53, time stamp: 0x57fde9fd
Faulting module name: nvoglv64.DLL, version: 26.21.14.4587, time stamp: 0x5e879687
Exception code: 0x40000015
Fault offset: 0x0000000000f8b15f
Faulting process id: 0xa78
Faulting application start time: 0x01d61fd5da46cb06
Faulting application path: C:Program FilesAdobeAdobe Photoshop CC 2017Photoshop.exe
Faulting module path: C:Windowssystem32nvoglv64.DLL
Report Id: 436c0f76-8bcc-11ea-a891-001bdc0fc646

Error: (05/01/2020 09:53:21 AM) (Source: NVIDIA OpenGL Driver) (EventID: 1) (User: )
Description: Unable to recover from a kernel exception. The application must close.

Error code: 3 (subcode 2)
(pid=2680 tid=10760 photoshop.exe 64bit)

Visit http://www.nvidia.com/page/support.html for more information.

Error: (04/30/2020 09:31:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Uninstaller-9828.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Faulting module name: Uninstaller-9828.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Exception code: 0x40000015
Fault offset: 0x0002dd8f
Faulting process id: 0x29f0
Faulting application start time: 0x01d61f7161383f50
Faulting application path: C:UsersKevinAppDataLocalTempUninstaller-9828.exe
Faulting module path: C:UsersKevinAppDataLocalTempUninstaller-9828.exe
Report Id: a09e2290-8b64-11ea-a891-001bdc0fc646

Error: (04/30/2020 09:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Uninstaller-9720.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Faulting module name: Uninstaller-9720.exe, version: 1.0.3.159, time stamp: 0x4f07bdef
Exception code: 0x40000015
Fault offset: 0x0002dd8f
Faulting process id: 0x1298
Faulting application start time: 0x01d61f7159747c20
Faulting application path: C:UsersKevinAppDataLocalTempUninstaller-9720.exe
Faulting module path: C:UsersKevinAppDataLocalTempUninstaller-9720.exe
Report Id: 9e977d20-8b64-11ea-a891-001bdc0fc646

Error: (04/29/2020 01:21:08 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest".Error in manifest or policy file "C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

System errors:
=============
Error: (05/02/2020 01:08:52 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport DeviceNetBT_Tcpip_4B3751D1-5D87-4830-BC4C-D842B7621544.
The backup browser is stopping.

Error: (05/02/2020 10:05:20 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (05/02/2020 10:03:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/02/2020 10:03:01 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (05/02/2020 10:02:48 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (05/02/2020 10:01:39 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server 1A1F4206-0688-4E7F-BE03-D82EC69DF9A5 did not register with DCOM within the required timeout.

Error: (05/02/2020 10:01:36 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server F9717507-6651-4EDB-BFF7-AE615179BCCF did not register with DCOM within the required timeout.

Error: (05/01/2020 10:08:01 PM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer ROSA-PC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_4B3751D1-5D87-4830-BC4C-D842B7621544.
The master browser is stopping or an election is being forced.

Windows Defender:
===================================
Date: 2019-08-02 02:20:57.294
La description:
Windows Defender scan has encountered an error and terminated.
Scan ID:A958ABF6-2B52-47B4-9E03-07AB8DD5DF4A
Scan Type:AntiSpyware
Scan Parameters:Quick Scan
Error Code:0x8050800d
Error description:Some history items could not be displayed. Please wait a few minutes and try again. If that doesn't work, clear the history and then try again.

CodeIntegrity:
===================================

Date: 2020-03-31 11:21:45.803
La description:
Code Integrity is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32l3codeca.acm because the set of per-page image hashes could not be found on the system.

Date: 2020-02-17 19:39:33.669
La description:
Code Integrity is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32l3codeca.acm because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F7 07/07/2017
Motherboard: Gigabyte Technology Co., Ltd. Z270XP-SLI-CF
Processor: Intel® Core™ i5-7600K CPU @ 3.80GHz
Percentage of memory in use: 50%
Total physical RAM: 16338.27 MB
Available physical RAM: 8055.04 MB
Total Virtual: 66674.69 MB
Available Virtual: 54398.87 MB

==================== Drives ================================

Drive c: (Local Disk) (Fixed) (Total:931.22 GB) (Free:43.11 GB) NTFS
Drive e: (Data Disk) (Fixed) (Total:1862.92 GB) (Free:343.55 GB) NTFS
Drive f: (Local Disk) (Fixed) (Total:931.38 GB) (Free:91.05 GB) NTFS
Drive g: (Data Disk) (Fixed) (Total:1862.98 GB) (Free:366.17 GB) NTFS
Drive h: (Games Disk) (Fixed) (Total:931.32 GB) (Free:710.94 GB) NTFS
Drive x: () (Fixed) (Total:8.98 GB) (Free:5.93 GB) FAT32

\?Volume0cba1e43-def4-11e7-8cbd-806e6f6e6963 (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\?Volume60e0020e-203a-11e9-ba7b-e0d55e03309d (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\?Volume0b20b2f4-e42b-11e7-bc9c-e0d55e03309d (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 39D95AD5)
Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)
Partition 2: (Not Active) – (Size=931.2 GB) – (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 3B710C0C)
Partition 1: (Not Active) – (Size=1862.9 GB) – (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2D3CD337)
Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)
Partition 2: (Not Active) – (Size=931.3 GB) – (Type=07 NTFS)

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 305E0EF1)
Partition 1: (Not Active) – (Size=1863 GB) – (Type=07 NTFS)

==========================================================
Disk: 4 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2A230810)
Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)
Partition 2: (Not Active) – (Size=931.4 GB) – (Type=07 NTFS)

==================== End of Addition.txt =======================

Commentaires

Laisser un commentaire

Votre commentaire sera révisé par les administrateurs si besoin.