Suppressions audio intermittentes, gel et plantages du pilote vidéo – Bien choisir son serveur d impression

Author: Titanfall — 9 mai 2020

Short summary: Au cours des 1 à 2 dernières semaines, j'ai rencontré ce problème sur trois ordinateurs différents de ma maison. Tous exécutent Win 7 Pro x64. Pendant le jeu, l'audio s'interrompt périodiquement. Ceci est parfois accompagné du gel du programme. Les opérations de fichiers impliquant l'Explorateur de fichiers Windows gèlent également, par exemple enregistrer une image […]

Quick overview

Site: Tutos GameServer
Canonical URL: https://tutos-gameserver.fr/2020/05/09/suppressions-audio-intermittentes-gel-et-plantages-du-pilote-video-bien-choisir-son-serveur-d-impression/
LLM HTML version: https://tutos-gameserver.fr/2020/05/09/suppressions-audio-intermittentes-gel-et-plantages-du-pilote-video-bien-choisir-son-serveur-d-impression/llm
LLM JSON version: https://tutos-gameserver.fr/2020/05/09/suppressions-audio-intermittentes-gel-et-plantages-du-pilote-video-bien-choisir-son-serveur-d-impression/llm.json
Manifest: https://tutos-gameserver.fr/llm-endpoints-manifest.json
Estimated reading time: 101 minutes (6008 seconds)
Word count: 20024

Key points

Au cours des 1 à 2 dernières semaines, j'ai rencontré ce problème sur trois ordinateurs différents de ma maison.
Tous exécutent Win 7 Pro x64.
Pendant le jeu, l'audio s'interrompt périodiquement.
Ceci est parfois accompagné du gel du programme.

Primary visual

Suppressions audio intermittentes, gel et plantages du pilote vidéo

– Bien choisir son serveur d impression — Main illustration associated with the content.

Structured content

Au cours des 1 à 2 dernières semaines, j'ai rencontré ce problème sur trois ordinateurs différents de ma maison. Tous exécutent Win 7 Pro x64. Pendant le jeu, l'audio s'interrompt périodiquement. Ceci est parfois accompagné du gel du programme. Les opérations de fichiers impliquant l'Explorateur de fichiers Windows gèlent également, par exemple enregistrer une image de Firefox, puis après quelques secondes, ils continueront. Parfois, les gels sont accompagnés d'un écran noir un peu, puis l'affichage revient et Windows affiche un message indiquant que le pilote vidéo a cessé de fonctionner, mais s'est rétabli.

J'ai essayé de mettre à jour les pilotes vidéo, mais cela n'a pas aidé. J'ai également essayé de garder le Gestionnaire des tâches ouvert afin que lorsqu'il se fige, je puisse essayer de voir quel processus utilisait le processeur à ce moment-là. Finalement, je suis devenu suspect d'audiodg.exe, car il semblait utiliser constamment une petite quantité de CPU (~ 4%), et après quelques recherches, j'ai décidé de mettre à niveau les pilotes audio Realtek à partir du site Web du fabricant. Les trois machines ayant des problèmes ont l'audio Realtek. Les pilotes les plus récents que j'ai pu trouver en ligne étaient la version 2.82 de 2017, mais ils étaient plus récents que ce que j'avais, alors je les ai installés. L'amélioration était incroyable. Non seulement le problème a semblé disparaître, mais l'ordinateur a démarré et a fonctionné tellement plus vite! J'étais convaincu que je l'avais compris, et j'ai fait de même pour les deux autres machines.

Depuis ce soir, le saut audio est de retour. Je crains que certains logiciels malveillants n'aient détourné les anciens pilotes audio et laissé quelque chose sur mes ordinateurs. Toute aide serait appréciée. Ces journaux proviennent évidemment d'un seul des trois ordinateurs concernés.

Résultat de l'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020Géré par Kevin (administrateur) sur KEVIN-PC (Gigabyte Technology Co., Ltd. Z170XP-SLI) (03-05-2020 23:03:39)Exécution à partir de C: Users Kevin DownloadsProfils chargés: Kevin (Profils disponibles: Kevin)Plateforme: Windows 7 Professional Service Pack 1 (X64) Langue: anglais (États-Unis)Internet Explorer version 11 (navigateur par défaut: FF)Mode de démarrage: NormalTutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (liste blanche) ================= (Si une entrée est incluse dans la liste de correctifs, le processus sera fermé. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems) C: Program Files (x86) Common Files Adobe ARM 1.0 armsvc.exe(Adobe Systems Incorporated -> Adobe Systems Incorporated) C: Program Files (x86) Common Files Adobe Adobe Desktop Common ElevationManager AdobeUpdateService.exe(Apple Inc. -> Apple Inc.) C: Program Files Fichiers communs Apple Mobile Device Support AppleMobileDeviceService.exe(Apple Inc. -> Apple Inc.) C: Program Files iPod bin iPodService.exe(Apple Inc. -> Apple Inc.) C: Program Files iTunes iTunesHelper.exe(Autodesk, Inc -> Autodesk Inc.) C: Program Files (x86) Common Files Autodesk Shared AppManager R1 AdAppMgrSvc.exe(Autodesk, Inc -> Autodesk, Inc.) C: Program Files (x86) Autodesk Content Service Connect.Service.ContentService.exe(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) Browny02 Brother BrStMonW.exe(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) Browny02 BrYNSvc.exe(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) ControlCenter4 BrCcUxSys.exe(Brother Industries, Ltd.) [File not signed] C: Program Files (x86) ControlCenter4 BrCtrlCntr.exe(Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.) C: Program Files Fichiers communs Future Systems Solutions Services CASPERSVCS.EXE(GOG Sp. Z o.o. -> GOG.com) C: Program Files (x86) GOG Galaxy GalaxyClient Helper.exe (GOG Sp. Z o.o. -> GOG.com) C: Program Files (x86) GOG Galaxy GalaxyClient.exe(GOG Sp. Z o.o. -> GOG.com) C: Program Files (x86) GOG Galaxy GOG Galaxy Notifications Renderer.exe(GOG Sp. Z o.o. -> GOG.com) C: ProgramData GOG.com Galaxy redists GalaxyCommunication.exe(IDRIX -> IDRIX) C: Program Files VeraCrypt VeraCrypt.exe(Intel Corporation – Groupe des sous-systèmes intégrés et blocs IP -> Intel Corporation) C: Program Files (x86) Intel Intel® Management Engine Components LMS LMS.exe(Assistant pilote et support Intel® -> Intel) C: Program Files (x86) Assistant pilote et support Intel DSAService.exe(Assistant pilote et support Intel® -> Intel) C: Program Files (x86) Assistant pilote et support Intel DSATray.exe(Groupe des sous-systèmes et blocs IP intégrés Intel® -> Intel Corporation) C: Program Files (x86) Intel Intel® Management Engine Components DAL jhi_service.exe(Intel® Network Platform Group -> Intel Corporation) C: Windows System32 IPROSetMonitor.exe(Intel® Rapid Storage Technology -> Intel Corporation) C: Program Files Intel Intel® Rapid Storage Technology IAStorDataMgrSvc.exe(Technologie de stockage Intel® Rapid -> Intel Corporation) C: Program Files Intel Intel® Rapid Storage Technology IAStorIcon.exe(Pilotes du contrôleur hôte Intel® USB eXtensible -> Intel Corporation) C: Program Files (x86) Intel Intel® USB 3.0 3.1 Pilote du contrôleur hôte eXtensible Application iusb3mon.exe(Intuit, Inc. -> Intuit Inc.) C: Program Files (x86) Common Files Intuit Update Service v4 IntuitUpdateService.exe(Malwarebytes Inc -> Malwarebytes) C: Program Files Malwarebytes Anti-Malware MBAMService.exe(Malwarebytes Inc -> Malwarebytes) C: Program Files Malwarebytes Anti-Malware mbamtray.exe(Microsoft Corporation -> Microsoft Corporation) C: Program Files Fichiers communs Microsoft Shared ClickToRun OfficeClickToRun.exe(Microsoft Windows -> Microsoft Corporation) C: Windows System32 rundll32.exe(Microsoft Windows -> Microsoft Corporation) C: Windows System32 taskmgr.exe(Mozilla Corporation -> Mozilla Corporation) C: Program Files Mozilla Firefox firefox.exe (NVIDIA Corporation -> Node.js) C: Program Files (x86) NVIDIA Corporation NvNode NVIDIA Web Helper.exe(NVIDIA Corporation -> NVIDIA Corporation) C: Program Files NVIDIA Corporation Display.NvContainer NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C: Program Files NVIDIA Corporation NvContainer nvcontainer.exe (Realtek Semiconductor Corp ->) C: Windows runSW.exe(Realtek Semiconductor Corp -> Realtek) C: Windows SwUSB.exe(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C: Program Files Samsung USB Drivers 27_ssconn conn ss_conn_service.exe(Schäuffelhut Berger GmbH ->) C: Program Files (x86) VPNetwork LLC TorGuard TorGuardDesktopQt.exe(Schäuffelhut Berger GmbH -> Le projet OpenVPN) C: Program Files (x86) VPNetwork LLC TorGuard openvpn_v2_4.exe(Valve -> Valve Corporation) C: Program Files (x86) Common Files Steam SteamService.exe(Valve -> Valve Corporation) C: Program Files (x86) Steam bin cef cef.win7x64 steamwebhelper.exe (Valve -> Valve Corporation) C: Program Files (x86) Steam steam.exe ==================== Registre (liste blanche) =================== (Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM … Run: [IAStorIcon] => C: Program Files Intel Intel® Rapid Storage Technology IAStorIcon.exe [321096 2017-03-29] (Technologie de stockage rapide Intel® -> Intel Corporation)HKLM … Run: [Logitech Download Assistant] => C: Windows System32 LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)HKLM … Run: [AdobeGCInvoker-1.0] => C: Program Files (x86) Common Files Adobe AdobeGCClient AGCInvokerUtility.exe [2872400 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)HKLM … Run: [iTunesHelper] => C: Program Files iTunes iTunesHelper.exe [302904 2020-01-16] (Apple Inc. -> Apple Inc.)HKLM … Run: [RTHDVCPL] => C: Program Files Realtek Audio HDA RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)HKLM-x32 … Exécuter: [USB3MON] => C: Program Files (x86) Intel Intel® USB 3.0 3.1 Pilote du contrôleur hôte extensible Application iusb3mon.exe [299504 2016-08-17] (Pilotes de contrôleur hôte Intel® USB eXtensible -> Intel Corporation)HKLM-x32 … Exécuter: [DSATray] => C: Program Files (x86) Intel Driver and Support Assistant DsaTray.exe [131360 2017-12-05] (Assistant pilote et support Intel® -> Intel)HKLM-x32 … Exécuter: [ControlCenter4] => C: Program Files (x86) ControlCenter4 BrCcBoot.exe [143360 2012-08-28] (Brother Industries, Ltd.) [File not signed]HKLM-x32 … Exécuter: [BrStsMon00] => C: Program Files (x86) Browny02 Brother BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) [File not signed]HKLM-x32 … Exécuter: [SunJavaUpdateSched] => C: Program Files (x86) Fichiers communs Java Java Update jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)HKLM-x32 … Exécuter: [ADSKAppManager] => C: Program Files (x86) Fichiers communs Autodesk Shared AppManager R1 AdAppMgr.exe [529480 2016-02-23] (Autodesk, Inc -> Autodesk Inc.)HKLM-x32 … Exécuter: [TeamsMachineUninstallerLocalAppData] => C: Users Kevin AppData Local Microsoft Teams Update.exe [2324624 2020-02-19] (Composant d'application tiers Microsoft -> Microsoft Corporation)HKLM-x32 … Exécuter: [TeamsMachineUninstallerProgramData] =>% ProgramData% Microsoft Teams Update.exe –uninstall –msiUninstall –source = defaultHKLM … Policies Explorer: [NoStrCmpLogical] 1HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [Steam] => C: Program Files (x86) Steam steam.exe [3372832 2020-04-27] (Valve -> Valve Corporation)HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [Akamai NetSession Interface] => "C: Users Kevin AppData Local Akamai netsession_win.exe"HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [AdobeBridge] => [X]HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [Autodesk Sync] => C: Program Files Autodesk Autodesk Sync AdSync.exe [1193352 2014-02-08] (Autodesk, Inc -> Autodesk, Inc.)HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Run: [GalaxyClient] => [X]HKU S-1-5-21-4250991329-2939192951-560751505-1000 … Policies Explorer: []HKU S-1-5-21-4250991329-2939192951-560751505-1000 … MountPoints2: 0cba1e47-def4-11e7-8cbd-806e6f6e6963 – D: Autorun.exeHKU S-1-5-18 … Run: [Autodesk Sync] => C: Program Files Autodesk Autodesk Sync AdSync.exe [1193352 2014-02-08] (Autodesk, Inc -> Autodesk, Inc.)HKU S-1-5-18 … RunOnce: [SPReview] => "C: Windows System32 SPReview SPReview.exe" / sp: 1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915 "/ build: 7601HKLM Software Microsoft Active Setup Installed Components: [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C: Program Files (x86) Google Chrome Application 81.0.4044.129 Installer chrmstp.exe [2020-04-27] (Google LLC -> Google LLC)GroupPolicy: Restriction? <==== ATTENTION ==================== Tâches planifiées (liste blanche) ============ (Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.) Tâche: 1216E3C4-25CC-4CB9-95AB-834905E6CB67 – System32 Tasks Future Systems Solutions Casper My Data Disk Backup => C: Program Files Future Systems Solutions Casper 8.0 CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)Tâche: 1FDA4070-9F70-4FCE-A63D-67630E40B239 – System32 Tasks NvTmRep_CrashReport3_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvBackend Nt [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: 32AF0A8C-B56A-4BCD-BB0A-FDF82A32A1E3 – System32 Tasks NvTmRep_CrashReport2_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvTend.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: 34E12A00-3C9C-4381-B429-4FEF153F99C8 – System32 Tasks NvNodeLauncher_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files (x86) NVIDIA Corporation NvNode nvnodejsla [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: 38617970-3A85-49EE-B698-77213F22AB41 – System32 Tasks OneDrive Standalone Update Task-S-1-5-21-4250991329-2939192951-560751505-1000 => C: Users Kevin AppData Local Microsoft OneDrive OneDriveStandaloneUpdater.exeTâche: 4252F24D-1930-4C85-9792-2474EF320E12 – System32 Tasks Microsoft Office Office ClickToRun Service Monitor => C: Program Files Common Files Microsoft Shared ClickToRun OfficeC2RClient.exe [27369352 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)Tâche: 4EEEE60E-C423-4CE4-AEF3-69E8BA4441B9 – System32 Tasks Intel PTT EK Recertification => C: Program Files Intel iCLS Client IntelPTTEKRecertification.exe [543536 2016-10-13] (Intel® Trust Services -> Intel® Corporation)Tâche: 51A50C2F-6402-4B8D-80F2-B4D17CA72B50 – Tâche de notification de mise à jour System32 Tasks Future Systems Solutions Casper Casper 8.0 => C: Program Files Future Systems Solutions Casper 8.0 CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)Tâche: 5C95344F-801E-47D3-BC3A-B4B87594C7D3 – System32 Tasks NvBatteryBoostCheckOnLogon_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation Nvcontain NvContain [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: 5FBE4B24-FF47-45CE-8FA1-FEE937BA746B – System32 Tasks NvTmRep_CrashReport4_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvBackend Nt [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: 6047A701-E6FA-432C-8E6D-9C4952183FD6 – System32 Tasks Microsoft Office Office Subscription Maintenance => C: Program Files (x86) Microsoft Office root vfs ProgramFilesCommonx86 Microsoft Shared Office16 OLicenseHeartbeat.exe [1571624 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)Tâche: 697DE98C-A630-464E-838F-4C004C9617EC – System32 Tasks NvProfileUpdaterDaily_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation Update Core NvProfileUpdater.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: 78125752-D932-4EBE-B3C7-038F6BA72ECC – System32 Tasks wufuc. 72EEE38B-9997-42BD-85D3-2DD96DA17307 => C: Windows system32 rundll32.exe "C: Program Files wufuc wufuc.dll", Rundll32EntryTâche: 7ADB205E-D4DD-48A8-A2CC-D4564201F4A8 – System32 Tasks Intel Intel Telemetry 2 => C: Program Files Intel Telemetry 2.0 lrio.exe [1741576 2016-03-17] (Logiciel Intel® -> Intel Corporation)Tâche: 7D18C5FB-079B-46C9-8A8E-895E646E33A2 – System32 Tasks NvDriverUpdateCheckDaily_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvContainer nvcontainer n [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: 882C5E44-CC3D-4A25-9350-F38DCC2FA435 – System32 Tasks BlueStacksHelper => C: ProgramData BlueStacks Client Helper BlueStacksHelper.exeTâche: 8E48650A-A6AB-4EBB-B8AB-191B69E8773A – System32 Tasks USER_ESRV_SVC_QUEENCREEK => "C: Windows System32 Wscript.exe" // B // NoLogo "C: Program Files Intel SUR QUEENCREEK task.vbs "Tâche: 956AD40D-3489-4E70-964C-29BCB7A8103B – System32 Tasks GoogleUpdateTaskMachineCore => C: Program Files (x86) Google Update GoogleUpdate.exe [153168 2018-10-05] (Google Inc -> Google Inc.)Tâche: 957FF134-71B6-4CA7-BE5E-A6C8C6F91074 – System32 Tasks TorGuard Autostart => C: Program Files (x86) VPNetwork LLC TorGuard TorGuardDesktopQt.exe [2582424 2020-01-05] (Schäuffelhut Berger GmbH ->)Tâche: 99E8A24A-F2CE-4287-9C84-76DE06682553 – System32 Tasks Microsoft Office OfficeTelemetryAgentFallBack2016 => C: Program Files (x86) Microsoft Office root Office16 msoia.exe [4460968 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)Tâche: AAF01C3E-2B5A-47C3-8639-DD9ABBE035BA – System32 Tasks Microsoft Office OfficeBackgroundTaskHandlerLogon => C: Program Files (x86) Microsoft Office root Office16 officebackgroundtaskhandler.exe [1421736 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)Tâche: AF5A9331-FEC3-4C2B-A1A8-9C303AF2114A – System32 Tasks Microsoft Office OfficeTelemetryAgentLogOn2016 => C: Program Files (x86) Microsoft Office root Office16 msoia.exe [4460968 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)Tâche: B107F265-1E2E-4327-8970-2691108647DE – Agent de navigateur par défaut System32 Tasks Mozilla Firefox 308046B0AF4A39CB => C: Program Files Mozilla Firefox default-browser-agent.exe [126152 2020-04-21] (Mozilla Corporation -> Fondation Mozilla)Tâche: B4EF5BA4-E057-465C-B6DE-83B010378E6F – System32 Tasks Microsoft Office Office Feature Updates => C: Program Files (x86) Microsoft Office root VFS ProgramFilesCommonX86 Microsoft Shared Office16 sdxhelper.exe [110416 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)Tâche: B781CB09-30D8-4939-8237-3B054CA93331 – Connexion aux mises à jour des fonctionnalités System32 Tasks Microsoft Office Office => C: Program Files (x86) Microsoft Office root VFS ProgramFilesCommonX86 Microsoft Shared Office16 sdxhelper.exe [110416 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)Tâche: BA17D1A8-83A3-40AD-9677-CED8889E1431 – System32 Tasks NVIDIA GeForce Experience SelfUpdate_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NVIDIA GeForce Experience NVIDIA GeForce Experience NVIDIA GeForce Experience Experience.exe [3293168 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: BAB91D1E-6843-4922-AC5F-CDCC9A31AEB5 – System32 Tasks Adobe Flash Player NPAPI Notifier => C: Windows SysWOW64 Macromed Flash FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-19] (Adobe Inc. -> Adobe)Tâche: C0F5BEF1-66B0-4612-91E7-347DC06D2D57 – System32 Tasks Microsoft Office OfficeBackgroundTaskHandlerRegistration => C: Program Files (x86) Microsoft Office root Office16 officebackgroundtaskhandler.exe [1421736 2020-04-23] (Microsoft Corporation -> Microsoft Corporation)Tâche: C1BE9F32-08B2-4948-B6F2-F43E9F614943 – System32 Tasks AdobeGCInvoker-1.0 => C: Program Files (x86) Common Files Adobe AdobeGCClient AGCInvokerUtility.exe [2872400 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)Tâche: C7FAFD87-143D-4828-A1E4-F06D078363F4 – System32 Tasks Microsoft Office Office Automatic Updates 2.0 => C: Program Files Common Files Microsoft Shared ClickToRun OfficeC2RClient.exe [27369352 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)Tâche: D848BE2E-126C-479D-A061-E1879B0F889C – System32 Tasks NvProfileUpdaterOnLogon_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation Update Core NvProf.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: E5A06C37-5C40-490F-B101-F396055B26B9 – System32 Tasks Adobe Acrobat Update Task => C: Program Files (x86) Common Files Adobe ARM 1.0 AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)Tâche: E6A56CD5-839C-4183-B5B2-C757C2A70105 – System32 Tasks GoogleUpdateTaskMachineUA => C: Program Files (x86) Google Update GoogleUpdate.exe [153168 2018-10-05] (Google Inc -> Google Inc.)Tâche: E6AED1F9-456C-4266-AA9E-02D0BAAF52E0 – System32 Tasks Adobe Flash Player Updater => C: Windows SysWOW64 Macromed Flash FlashPlayerUpdateService.exe [335416 2020-04-19] (Adobe Inc. -> Adobe)Tâche: F352F3F9-4CC7-47B2-B752-9473F5AFA44D – System32 Tasks Apple AppleSoftwareUpdate => C: Program Files (x86) Apple Software Update SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)Tâche: F8B9A915-8C30-4E6F-AE86-8F0DC0B0AD84 – System32 Tasks NvTmRep_CrashReport1_ B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C: Program Files NVIDIA Corporation NvTend.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)Tâche: FEA60E6B-C946-464B-996E-2BA30BE18475 – System32 Tasks Future Systems Solutions Casper My System Disk Backup => C: Program Files Future Systems Solutions Casper 8.0 CASPER.EXE [14824008 2017-01-31] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.) (Si une entrée est incluse dans la liste de correctifs, le fichier de tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (liste blanche) ==================== (Si un élément est inclus dans la liste de correctifs, s'il s'agit d'un élément du registre, il sera supprimé ou restauré par défaut.) Winsock: Catalog5 07 C: Program Files (x86) Bonjour mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)Winsock: Catalog5-x64 07 C: Program Files Bonjour mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)Tcpip .. Interfaces 4B3751D1-5D87-4830-BC4C-D842B7621544: [NameServer] 208.67.222.222,208.67.220.220Tcpip .. Interfaces 4B3751D1-5D87-4830-BC4C-D842B7621544: [DhcpNameServer] 192.168.11.1Tcpip .. Interfaces 9E122120-5803-40E2-96EC-361B581C5284: [DhcpNameServer] 192.168.43.1Tcpip .. Interfaces FAF2DFD5-799C-480C-9687-3ECEA10C02D3: [NameServer] 10.9.0.1,10.8.0.1 Internet Explorer:==================HKU S-1-5-21-4250991329-2939192951-560751505-1000 Software Microsoft Internet Explorer Main, page de démarrage = hxxp: //news.google.com/BHO: Skype Entreprise Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C: Program Files (x86) Microsoft Office root VFS ProgramFilesX64 Microsoft Office Office16 OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)BHO: Java ™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C: Program Files Java jre1.8.0_202 bin ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)BHO: VIPRE Search Guard Helper -> 963C8283-AE7F-4AA6-9B3B-847A8FC62C5E -> C: Program Files (x86) VIPRE x64 VSGNx64.dll => Aucun fichierBHO: Gestionnaire de cache de documents Office -> B4F3A835-0E21-4959-BA22-42B3008E02FF -> C: Program Files (x86) Microsoft Office root VFS ProgramFilesX64 Microsoft Office Office16 URLREDIR.DLL [2020-04-23] (Microsoft Corporation -> Microsoft Corporation)BHO: Java ™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C: Program Files Java jre1.8.0_202 bin jp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)BHO-x32: Assistant de navigateur Skype Entreprise -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C: Program Files (x86) Microsoft Office root Office16 OCHelper.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)BHO-x32: Java ™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C: Program Files (x86) Java jre1.8.0_202 bin ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)BHO-x32: classe ArcPluginIEBHO -> 84BFE29A-8139-402a-B2A4-C23AE9E1A75F -> C: Program Files (x86) Arc plugins ArcPluginIE.dll [2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)BHO-x32: VIPRE Search Guard Helper -> 963C8283-AE7F-4AA6-9B3B-847A8FC62C5E -> C: Program Files (x86) VIPRE VSGN.dll => Aucun fichierBHO-x32: Gestionnaire de cache de documents Office -> B4F3A835-0E21-4959-BA22-42B3008E02FF -> C: Program Files (x86) Microsoft Office root Office16 URLREDIR.DLL [2020-04-23] (Microsoft Corporation -> Microsoft Corporation)BHO-x32: Java ™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C: Program Files (x86) Java jre1.8.0_202 bin jp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)Barre d'outils: HKLM – Barre d'outils VIPRE Search Guard – A924C17A-5E94-4E02-BED5-49720BA6F7FA – Aucun fichierBarre d'outils: HKLM-x32 – Barre d'outils VIPRE Search Guard – A924C17A-5E94-4E02-BED5-49720BA6F7FA – Aucun fichierBarre d'outils: HKU S-1-5-21-4250991329-2939192951-560751505-1000 -> Barre d'outils VIPRE Search Guard – A924C17A-5E94-4E02-BED5-49720BA6F7FA – Aucun fichierHandler-x32: mso-minsb-roaming.16 – 83C25742-A9F7-49FB-9138-434302C88D07 – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)Handler-x32: mso-minsb.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)Handler-x32: osf-roaming.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)Handler-x32: osf.16 – 5504BE45-A83B-4808-900A-3A5C36E7F77A – C: Program Files (x86) Microsoft Office root Office16 MSOSB.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)Gestionnaire: vipresg – 47BE2E5B-703B-444F-ABD3-05717D2191C6 – C: Program Files (x86) VIPRE VSGN.dll aucun fichier FireFox:========FF DefaultProfile: 86ew51to.defaultFF ProfilePath: C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default [2020-05-03]Page d'accueil de FF: Mozilla Firefox Profiles 86ew51to.default -> hxxp: //news.google.com/Notifications FF: Mozilla Firefox Profiles 86ew51to.default -> hxxps: //forum.cyanogenmod.org; hxxp: //mail.bigkahunatech.com; hxxps: //forums.t-nation.com; hxxps: //chatsupport.apple.com; hxxps: //www.facebook.comExtension FF: (Conteneur Facebook) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions @ contain-facebook.xpi [2020-04-14]Extension FF: (module complémentaire Ant.com) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions antmark@ant.com.xpi [2018-04-23]Extension FF: (Ant Video downloader) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions anttoolbar@ant.com.xpi [2020-04-21]Extension FF: (Contourner les murs payants) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions bypasspaywalls@bypasspaywalls.weebly.com.xpi [2020-04-27] [UpdateUrl:hxxps://raw.githubusercontent.com/iamadamdev/bypass-paywalls-firefox/master/updates.json]Extension FF: (DuckDuckGo Privacy Essentials) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2020-05-01]Extension FF: (Images similaires Google) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions nishan.naseer.googimagesearch@gmail.com.xpi [2017-08-02] [Legacy]Extension FF: (Imagus) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 00000f2a-7cde-4f20-83ed-434fcb420d71 .xpi [2020-04-13] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]Extension FF: (Afficher l'image) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 287dcf75-bec6-4eec-b4f6-71948a2eea29 .xpi [2020-04-24]Extension FF: (Un puissant outil de recherche d'image inversée, prenant en charge divers moteurs de recherche, tels que Google, Bing, Yandex, Baidu et TinEye.) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to .default Extensions 2e5ff8c8-32fe-46d0-9fc8-6b8986621f3c .xpi [2020-04-21]Extension FF: (module complémentaire de désactivation de Google Analytics (par Google)) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 6d96bb5e-1175-4ebf-8ab5- 5f56f1c79f65 .xpi [2018-05-16] [UpdateUrl:hxxps://tools.google.com/service/update2/ff?guid=%ITEM_ID%&version=%ITEM_VERSION%&application=%APP_ID%&appversion=%APP_VERSION%]Extension FF: (Effacer les données privées maintenant!) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions 7a07e802-6785-4e48-a29e-b81bdd5efbd3 .xpi [2019-08-12]Extension FF: (Video DownloadHelper) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions b9db16a4-6edc-47ec-a1f4-b86292ed211d .xpi [2020-03-30]Extension FF: (Adblock Plus – bloqueur de publicités gratuit) – C: Users Kevin AppData Roaming Mozilla Firefox Profiles 86ew51to.default Extensions d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d .xpi [2020-04-01]Plugin FF: @ adobe.com / FlashPlayer -> C: Windows system32 Macromed Flash NPSWF64_32_0_0_363.dll [2020-04-19] (Adobe Inc. ->)Plugin FF: @ java.com / DTPlugin, version = 11.202.2 -> C: Program Files Java jre1.8.0_202 bin dtplugin npDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)Plugin FF: @ java.com / JavaPlugin, version = 11.202.2 -> C: Program Files Java jre1.8.0_202 bin plugin2 npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)Plugin FF: @ microsoft.com / GENUINE -> désactivé [No File]Plugin FF: @ Microsoft.com / NpCtrl, version = 1.0 -> C: Program Files Microsoft Silverlight 5.1.50918.0 npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)Plugin FF: @ videolan.org / vlc, version = 3.0.8 -> C: Program Files VideoLAN VLC npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)Plugin FF: adobe.com/AdobeAAMDetect -> C: Program Files (x86) Adobe Adobe Creative Cloud Utils npAdobeAAMDetect64.dll [2018-06-22] (Adobe Systems Incorporated -> Adobe Systems)FF Plugin-x32: @ adobe.com / FlashPlayer -> C: Windows SysWOW64 Macromed Flash NPSWF32_32_0_0_363.dll [2020-04-19] (Adobe Inc. ->)FF Plugin-x32: @ DVR / npmedia, version = 3.1.0.4 -> C: Program Files (x86) webrec WEB30 WebPlugin npmedia.dll [2017-10-30] () [File not signed]FF Plugin-x32: @ DVR / npTimeGrid, version = 3.1.0.4 -> C: Program Files (x86) webrec WEB30 WebPlugin npTimeGrid.dll [2017-10-30] (Copie non autorisée) [File not signed]FF Plugin-x32: @ java.com / DTPlugin, version = 11.202.2 -> C: Program Files (x86) Java jre1.8.0_202 bin dtplugin npDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)FF Plugin-x32: @ java.com / JavaPlugin, version = 11.202.2 -> C: Program Files (x86) Java jre1.8.0_202 bin plugin2 npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)FF Plugin-x32: @ microsoft.com / GENUINE -> désactivé [No File]FF Plugin-x32: @ microsoft.com / Lync, version = 15.0 -> C: Program Files (x86) Microsoft Office root VFS ProgramFilesX86 Mozilla Firefox plugins npmeetingjoinpluginoc.dll [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)FF Plugin-x32: @ Microsoft.com / NpCtrl, version = 1.0 -> C: Program Files (x86) Microsoft Silverlight 5.1.50918.0 npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)FF Plugin-x32: @ microsoft.com / SharePoint, version = 14.0 -> C: Program Files (x86) Microsoft Office root Office16 NPSPWRAP.DLL [2020-01-25] (Microsoft Corporation -> Microsoft Corporation)FF Plugin-x32: @ perfectworld.com / npArcPlayNowPlugin -> C: Program Files (x86) Arc plugins npArcPluginFF.dll [2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)FF Plugin-x32: @ videolan.org / vlc, version = 2.2.8 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]FF Plugin-x32: @ videolan.org / vlc, version = 3.0.1 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]FF Plugin-x32: @ videolan.org / vlc, version = 3.0.2 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]FF Plugin-x32: @ videolan.org / vlc, version = 3.0.3 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]FF Plugin-x32: @ videolan.org / vlc, version = 3.0.6 -> C: Program Files (x86) VideoLAN VLC npvlc.dll [No File]FF Plugin-x32: Adobe Reader -> C: Program Files (x86) Adobe Acrobat Reader DC Reader AIR nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.)FF Plugin-x32: adobe.com/AdobeAAMDetect -> C: Program Files (x86) Adobe Adobe Creative Cloud Utils npAdobeAAMDetect32.dll [2018-07-09] (Adobe Systems Incorporated -> Adobe Systems)Plugin FF HKU S-1-5-21-4250991329-2939192951-560751505-1000: @ zoom.us / ZoomVideoPlugin -> C: Users Kevin AppData Roaming Zoom bin npzoomplugin.dll [2018-06-12] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) Chrome:=======Profil CHR: C: Users Kevin AppData Local Google Chrome User Data Default [2020-04-15]Extension CHR: (diapositives) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions aapocclcgogkmnckokdopfmhonfmgoek [2018-10-05]Extension CHR: (Docs) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions aohghmighlieiainnegkcijnfilokake [2018-10-05]Extension CHR: (Google Drive) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions apdfllckaahabafndbhieahigkjlhalf [2018-10-11]Extension CHR: (MEGA) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions bigefpfhnfcobdlfbedofhhaibnlghod [2020-04-15]Extension CHR: (YouTube) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-05]Extension CHR: (Adobe Acrobat) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions efaidnbmnnnibpcajpcglclefindmkaj [2020-03-30]Extension CHR: (Sheets) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions felcaaldnbdncclmgdcncolpebgiejap [2018-10-05]Extension CHR: (Google Docs hors ligne) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-15]Extension CHR: (Paiements Chrome Web Store) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]Extension CHR: (Gmail) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions pjkljhegncpnkpknbcohdijeoejaedia [2019-05-15]Extension CHR: (Chrome Media Router) – C: Users Kevin AppData Local Google Chrome User Data Default Extensions pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-15]CHR HKLM-x32 … Chrome Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (liste blanche) =================== (Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé sauf s'il est répertorié séparément.) R2 AdAppMgrSvc; C: Program Files (x86) Common Files Autodesk Shared AppManager R1 AdAppMgrSvc.exe [1145928 2016-02-23] (Autodesk, Inc -> Autodesk Inc.)R2 AdobeUpdateService; C: Program Files (x86) Fichiers communs Adobe Adobe Desktop Common ElevationManager AdobeUpdateService.exe [818128 2018-07-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)S4 AGMService; C: Program Files (x86) Common Files Adobe AdobeGCClient AGMService.exe [3147344 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)S4 AGSService; C: Program Files (x86) Common Files Adobe AdobeGCClient AGSService.exe [2914896 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated)R2 Apple Mobile Device Service; C: Program Files Common Files Apple Mobile Device Support AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)S3 ArcService; C: Program Files (x86) Arc ArcService.exe [88696 2018-06-06] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)R2 Autodesk Content Service; C:Program Files (x86)AutodeskContent ServiceConnect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)R3 BrYNSvc; C:Program Files (x86)Browny02BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]R2 caspereui; C:Program FilesCommon FilesFuture Systems SolutionsServicesCASPERSVCS.EXE [1168984 2014-09-03] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)R2 casperhpb; C:Program FilesCommon FilesFuture Systems SolutionsServicesCASPERSVCS.EXE [1168984 2014-09-03] (Future Systems Solutions, Inc. -> Future Systems Solutions, Inc.)R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [11600776 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)R2 DSAService; C:Program Files (x86)Intel Driver and Support AssistantDSAService.exe [22304 2017-12-05] (Intel® Driver & Support Assistant -> Intel)S4 ESRV_SVC_QUEENCREEK; C:Program FilesIntelSURQUEENCREEKesrv_svc.exe [824592 2017-03-07] (Intel® Software Development Products -> )S3 GalaxyClientService; C:Program Files (x86)GOG GalaxyGalaxyClientService.exe [1747528 2020-05-01] (GOG Sp. z o.o. -> GOG.com)S3 GalaxyCommunication; C:ProgramDataGOG.comGalaxyredistsGalaxyCommunication.exe [6821960 2020-02-24] (GOG Sp. z o.o. -> GOG.com)S3 Intel® Capability Licensing Service TCP IP Interface; C:Program FilesInteliCLS ClientSocketHeciServer.exe [630048 2016-10-13] (Intel® Trust Services -> Intel® Corporation)R2 jhi_service; C:Program Files (x86)IntelIntel® Management Engine ComponentsDALjhi_service.exe [196200 2017-01-15] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)R2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [6933272 2020-03-08] (Malwarebytes Inc -> Malwarebytes)R2 NvContainerLocalSystem; C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)S3 Origin Client Service; C:Program Files (x86)OriginOriginClientService.exe [2475312 2019-12-23] (Electronic Arts, Inc. -> Electronic Arts)S3 Origin Web Helper Service; C:Program Files (x86)OriginOriginWebHelperService.exe [3352376 2019-12-23] (Electronic Arts, Inc. -> Electronic Arts)R2 RunSwUSB; C:WindowsrunSW.exe [48856 2015-11-05] (Realtek Semiconductor Corp -> )R2 ss_conn_service; C:Program FilesSamsungUSB Drivers27_ssconnconnss_conn_service.exe [752224 2017-01-15] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)S4 SystemUsageReportSvc_QUEENCREEK; C:Program FilesIntel Driver and Support AssistantSURSurSvc.exe [157456 2017-03-07] (Intel® Software Development Products -> )S4 USER_ESRV_SVC_QUEENCREEK; C:Program FilesIntelSURQUEENCREEKesrv_svc.exe [824592 2017-03-07] (Intel® Software Development Products -> )R2 WinDefend; C:Program FilesWindows Defendermpsvc.dll [1011712 2013-05-26] (Microsoft Windows -> Microsoft Corporation)R2 NVDisplay.ContainerLocalSystem; "C:Program FilesNVIDIA CorporationDisplay.NvContainerNVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:ProgramDataNVIDIANVDisplay.ContainerLocalSystem.log" -l 3 -d "C:Program FilesNVIDIA CorporationDisplay.NvContainerpluginsLocalSystem" -r -p 30000 ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 dg_ssudbus; C:WindowsSystem32DRIVERSssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)R3 e1dexpress; C:WindowsSystem32DRIVERSe1d62x64.sys [537080 2017-07-19] (Intel® INTELND1617 -> Intel Corporation)R1 ESProtectionDriver; C:Windowssystem32driversmbae64.sys [153312 2020-04-18] (Malwarebytes Corporation -> Malwarebytes)R0 gfibto; C:WindowsSystem32driversgfibto.sys [37272 2017-11-02] (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)R0 iaStorF; C:WindowsSystem32DRIVERSiaStorF.sys [41472 2017-03-29] (Intel® Rapid Storage Technology -> Intel Corporation)R2 MBAMChameleon; C:WindowsSystem32DriversMbamChameleon.sys [214496 2020-04-18] (Malwarebytes Inc -> Malwarebytes)R3 MBAMFarflt; C:WindowsSystem32DRIVERSfarflt.sys [195432 2020-05-02] (Malwarebytes Inc -> Malwarebytes)R3 MBAMProtection; C:Windowssystem32DRIVERSmbam.sys [73584 2020-05-02] (Malwarebytes Corporation -> Malwarebytes)R3 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [248968 2020-05-02] (Malwarebytes Inc -> Malwarebytes)R3 MBAMWebProtection; C:WindowsSystem32DRIVERSmwac.sys [112752 2020-05-02] (Malwarebytes Inc -> Malwarebytes)R3 MEIx64; C:WindowsSystem32DRIVERSTeeDriverx64.sys [199760 2016-11-29] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)S3 NvStreamKms; C:Program FilesNVIDIA CorporationNvStreamSrvNvStreamKms.sys [30336 2020-03-31] (NVIDIA Corporation -> NVIDIA Corporation)R3 nvvad_WaveExtensible; C:WindowsSystem32driversnvvad64v.sys [69840 2020-03-06] (NVIDIA Corporation -> NVIDIA Corporation)R3 nvvhci; C:WindowsSystem32DRIVERSnvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)S3 RtlWlanu; C:WindowsSystem32DRIVERSrtwlanu.sys [4620048 2016-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )S3 semav6msr64; C:Windowssystem32driverssemav6msr64.sys [21984 2016-10-18] (Intel® Code Signing External -> )S3 ssudmdm; C:WindowsSystem32DRIVERSssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)S3 ss_conn_usb_driver; C:WindowsSystem32Driversss_conn_usb_driver.sys [43920 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)R3 tap0901; C:WindowsSystem32DRIVERStap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project)S3 USBAAPL64; C:WindowsSystem32Driversusbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)R1 veracrypt; C:WindowsSystem32driversveracrypt.sys [828688 2018-05-06] (IDRIX -> IDRIX)S3 gdrv; ??C:Windowsgdrv.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) =================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-05-03 23:03 – 2020-05-03 23:03 – 002283520 _____ (Farbar) C:UsersKevinDownloadsFRST64(1).exe2020-05-03 23:03 – 2020-05-03 23:03 – 000000000 ____D C:FRST2020-05-02 10:05 – 2020-05-02 10:05 – 000248968 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys2020-05-02 10:05 – 2020-05-02 10:05 – 000195432 _____ (Malwarebytes) C:Windowssystem32Driversfarflt.sys2020-05-02 10:05 – 2020-05-02 10:05 – 000112752 _____ (Malwarebytes) C:Windowssystem32Driversmwac.sys2020-05-02 10:05 – 2020-05-02 10:05 – 000073584 _____ (Malwarebytes) C:Windowssystem32Driversmbam.sys2020-05-02 10:04 – 2020-05-02 10:04 – 000000000 ____D C:WindowsSysWOW64RTCOM2020-05-02 10:04 – 2020-05-02 10:04 – 000000000 ____D C:Program FilesRealtek2020-05-02 10:03 – 2017-06-29 18:55 – 015202032 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE3.dll2020-05-02 10:03 – 2017-06-29 18:55 – 013122576 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO3064.dll2020-05-02 10:03 – 2017-06-29 18:55 – 012988336 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO4064.dll2020-05-02 10:03 – 2017-06-29 18:55 – 006410088 _____ (Nahimic Inc) C:Windowssystem32NAHIMICV3apo.dll2020-05-02 10:03 – 2017-06-29 18:55 – 005938904 _____ (Nahimic Inc) C:Windowssystem32NAHIMICV2apo.dll2020-05-02 10:03 – 2017-06-29 18:55 – 005593608 _____ (Nahimic Inc) C:Windowssystem32NAHIMICAPOlfx.dll2020-05-02 10:03 – 2017-06-29 18:55 – 003509256 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RltkAPO64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 003507688 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkApi64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 003410832 _____ (DTS, Inc.) C:Windowssystem32slcnt64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 003299816 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE2.dll2020-05-02 10:03 – 2017-06-29 18:55 – 003122656 _____ (DTS, Inc.) C:Windowssystem32sltech64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 003092336 _____ (Realtek Semiconductor Corp.) C:WindowsSysWOW64RltkAPO.dll2020-05-02 10:03 – 2017-06-29 18:55 – 002190976 _____ (Yamaha Corporation) C:Windowssystem32YamahaAE.dll2020-05-02 10:03 – 2017-06-29 18:55 – 001435136 _____ (Synopsys, Inc.) C:Windowssystem32SRRPTR64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 001382232 _____ (TOSHIBA Corporation) C:Windowssystem32tosade.dll2020-05-02 10:03 – 2017-06-29 18:55 – 001347136 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTCOM64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 001337640 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tossaeapo64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 001016928 _____ (Sound Research, Corp.) C:Windowssystem32SEHDHF64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000984912 _____ (DTS, Inc.) C:Windowssystem32sl3apo64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000965024 _____ (Sony Corporation) C:Windowssystem32SFSS_APO.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000923736 _____ (Sony Corporation) C:Windowssystem32MISS_APO.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000877424 _____ (Sound Research, Corp.) C:WindowsSysWOW64SEHDHF32.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000873456 _____ (TOSHIBA Corporation) C:Windowssystem32tadefxapo264.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000868176 _____ (Sound Research, Corp.) C:Windowssystem32SECOMN64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000866640 _____ (Sound Research, Corp.) C:Windowssystem32SEHDRA64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000852128 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tosasfapo64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000737960 _____ (Sound Research, Corp.) C:WindowsSysWOW64SECOMN32.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000691680 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtDataProc64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000677664 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVolumeSDAPO.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000604792 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32tossaemaxapo64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000568256 _____ (Intel Corporation) C:Windowssystem32tbb_waves.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000532376 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSX64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000525768 _____ (Sound Research, Corp.) C:Windowssystem32SEAPO64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000467152 _____ (Synopsys, Inc.) C:Windowssystem32SRAPO64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000447712 _____ (Dolby Laboratories) C:Windowssystem32R4EED64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000447176 _____ (Toshiba Client Solutions Co., Ltd.) C:Windowssystem32toseaeapo64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000387312 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEP64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000381408 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000343704 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtlCPAPI64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000341144 _____ (Synopsys, Inc.) C:WindowsSysWOW64SRCOM.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000341144 _____ (Synopsys, Inc.) C:Windowssystem32SRCOM.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000321712 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DHT64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000321712 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RP3DAA64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000231912 _____ (Synopsys, Inc.) C:Windowssystem32SFNHK64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000221960 _____ (SRS Labs, Inc.) C:Windowssystem32SRSTSH64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000214832 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEED64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000209528 _____ (SRS Labs, Inc.) C:Windowssystem32SRSHP64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000192976 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCfg64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000166200 _____ (SRS Labs, Inc.) C:Windowssystem32SRSWOW64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000158696 _____ (TOSHIBA Corporation) C:Windowssystem32tadefxapo.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000151784 _____ (Dolby Laboratories) C:Windowssystem32R4EEL64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000134200 _____ (Dolby Laboratories) C:Windowssystem32R4EEA64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000110976 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEL64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000090912 _____ (Synopsys, Inc.) C:Windowssystem32SFCOM64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000088344 _____ (Dolby Laboratories, Inc.) C:Windowssystem32RTEEG64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000088312 _____ (Synopsys, Inc.) C:Windowssystem32SFAPO64.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000084608 _____ (Dolby Laboratories) C:Windowssystem32R4EEG64A.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000083624 _____ (Virage Logic Corporation / Sonic Focus) C:WindowsSysWOW64SFCOM.dll2020-05-02 10:03 – 2017-06-29 18:55 – 000075536 _____ (TOSHIBA CORPORATION.) C:Windowssystem32tepeqapo64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 024608272 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioCapture64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 023863048 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRenderAVX64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 023764392 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRender64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 010536152 _____ (Intel Corporation) C:Windowssystem32IntelSSTAPO.dll2020-05-02 10:03 – 2017-06-29 18:54 – 004059960 _____ (Fortemedia Corporation) C:Windowssystem32FMAPO64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 002291304 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO7064.dll2020-05-02 10:03 – 2017-06-29 18:54 – 001780616 _____ (DTS) C:Windowssystem32DTSS2SpeakerDLL64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 001591056 _____ (DTS) C:Windowssystem32DTSS2HeadphoneDLL64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 001422920 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO6064.dll2020-05-02 10:03 – 2017-06-29 18:54 – 001334376 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxSpeechAPO64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 001213656 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO5064.dll2020-05-02 10:03 – 2017-06-29 18:54 – 001166152 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO4064.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000999848 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxVoiceAPO2064.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000727432 _____ (DTS) C:Windowssystem32DTSSymmetryDLL64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000708312 _____ (DTS) C:Windowssystem32DTSVoiceClarityDLL64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000680544 _____ (ICEpower a/s) C:Windowssystem32ICEsoundAPO64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000678176 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO30.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000618184 _____ (Knowles Acoustics ) C:Windowssystem32KAAPORT64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000514520 _____ (DTS) C:Windowssystem32DTSU2PLFX64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000500552 _____ (DTS) C:Windowssystem32DTSU2PGFX64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000428224 _____ (DTS) C:Windowssystem32DTSU2PREC64.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000406448 _____ (Dolby Laboratories) C:Windowssystem32HiFiDAX2APIPCLL.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000366120 _____ (Windows ® Win 7 DDK provider) C:Windowssystem32HMAPO.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000360344 _____ (Harman) C:Windowssystem32HMClariFi.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000330552 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPO20.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000203840 _____ (Harman) C:Windowssystem32HMHVS.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000190928 _____ (Harman) C:Windowssystem32HMEQ_Voice.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000190928 _____ (Harman) C:Windowssystem32HMEQ.dll2020-05-02 10:03 – 2017-06-29 18:54 – 000179592 _____ (Harman) C:Windowssystem32HMLimiter.dll2020-05-02 10:03 – 2017-06-29 18:53 – 005346992 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOv211.dll2020-05-02 10:03 – 2017-06-29 18:53 – 002444680 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOv201.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001965808 _____ (Dolby Laboratories) C:Windowssystem32DDPD64A.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001959600 _____ (Dolby Laboratories) C:Windowssystem32DDPD64AF3.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001616680 _____ (Conexant Systems Inc.) C:Windowssystem32CX64APO.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001554600 _____ (Dolby Laboratories) C:Windowssystem32DAX3APOProp.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001529136 _____ (Conexant Systems Inc.) C:Windowssystem32CX64Proxy.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001508928 _____ (DTS) C:Windowssystem32DTSBoostDLL64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001326424 _____ (Dolby Laboratories) C:Windowssystem32DAX3APOv251.dll2020-05-02 10:03 – 2017-06-29 18:53 – 001170872 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOvlldp.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000743960 _____ (DTS) C:Windowssystem32DTSBassEnhancementDLL64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000609392 _____ (Conexant Systems, Inc.) C:Windowssystem32CAF64APO2.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000504304 _____ (DTS) C:Windowssystem32DTSNeoPCDLL64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000445392 _____ (DTS) C:Windowssystem32DTSLimiterDLL64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000441264 _____ (DTS) C:Windowssystem32DTSGainCompensatorDLL64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000362048 _____ (Dolby Laboratories) C:Windowssystem32DDPO64AF3.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000327448 _____ (Dolby Laboratories) C:Windowssystem32DDPO64A.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000310416 _____ (Dolby Laboratories) C:Windowssystem32DDPA64F3.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000272712 _____ (Dolby Laboratories) C:Windowssystem32DDPA64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000253896 _____ (DTS) C:Windowssystem32DTSGFXAPO64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000253864 _____ (DTS) C:Windowssystem32DTSLFXAPO64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000252872 _____ (DTS) C:Windowssystem32DTSGFXAPONS64.dll2020-05-02 10:03 – 2017-06-29 18:53 – 000115120 _____ (Conexant System, Inc.) C:Windowssystem32Caf64api.dll2020-05-02 10:03 – 2017-06-29 18:52 – 005826560 _____ (Realtek Semiconductor Corp.) C:Windowssystem32DriversRTKVHD64.sys2020-05-02 10:03 – 2017-06-29 18:52 – 003677160 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RTSnMg64.cpl2020-05-02 10:03 – 2017-06-29 18:52 – 003205120 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtPgEx64.dll2020-05-02 10:03 – 2017-06-29 18:52 – 002993720 _____ (Audyssey Labs) C:Windowssystem32AudysseyEfx.dll2020-05-02 10:03 – 2017-06-29 18:52 – 002110592 _____ (Waves Audio Ltd.) C:Windowssystem32WavesGUILib64.dll2020-05-02 10:03 – 2017-06-29 18:52 – 000574752 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAC64.dll2020-05-02 10:03 – 2017-06-29 18:52 – 000258856 _____ (TODO: ) C:Windowssystem32slprp64.dll2020-05-02 10:03 – 2017-06-29 18:52 – 000118592 _____ (Andrea Electronics Corporation) C:Windowssystem32AERTAR64.dll2020-05-02 10:03 – 2017-06-29 18:51 – 072520712 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoRes64.dat2020-05-02 10:03 – 2017-06-29 18:51 – 014057248 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioRealtek64.dll2020-05-02 10:03 – 2017-06-29 18:51 – 007172912 _____ (Dolby Laboratories) C:Windowssystem32R4EEP64A.dll2020-05-02 10:03 – 2017-06-29 18:51 – 007096184 _____ (Dolby Laboratories) C:Windowssystem32DDPP64A.dll2020-05-02 10:03 – 2017-06-29 18:51 – 006264632 _____ (Dolby Laboratories) C:Windowssystem32DDPP64AF3.dll2020-05-02 10:03 – 2017-06-29 18:51 – 002210304 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RCoInstII64.dll2020-05-02 10:03 – 2017-06-29 18:51 – 002050176 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioEQ64.dll2020-05-02 10:03 – 2017-06-29 18:51 – 001186832 _____ (Intel Corporation) C:Windowssystem32IntelSstCApoPropPage.dll2020-05-02 10:03 – 2017-06-29 18:51 – 001133064 _____ (Dolby Laboratories) C:Windowssystem32DolbyDAX2APOProp.dll2020-05-02 10:03 – 2017-06-29 18:51 – 001003856 _____ (Nahimic Inc) C:Windowssystem32NahimicAPONSControl.dll2020-05-02 10:03 – 2017-06-29 18:51 – 000931616 _____ (Waves Audio Ltd.) C:Windowssystem32MaxxAudioAPOShell64.dll2020-05-02 10:03 – 2017-06-29 18:51 – 000416504 _____ (Harman) C:Windowssystem32HMUI.dll2020-05-02 10:03 – 2017-06-29 18:51 – 000378384 _____ (Dolby Laboratories) C:Windowssystem32HiFiDAX2API.dll2020-05-02 10:03 – 2017-06-29 18:51 – 000154360 _____ (Harman) C:Windowssystem32HarmanAudioInterface.dll2020-05-02 10:03 – 2017-06-29 18:51 – 000023688 _____ (Realtek Semiconductor Corp.) C:Windowssystem32RtkCoLDR64.dll2020-05-02 10:03 – 2017-06-29 18:50 – 000122320 _____ (Real Sound Lab SIA) C:Windowssystem32CONEQMSAPOGUILibrary.dll2020-05-02 10:03 – 2017-06-29 18:50 – 000118584 _____ C:Windowssystem32AcpiServiceVnA64.dll2020-05-02 10:03 – 2017-06-29 18:50 – 000105304 _____ C:Windowssystem32audioLibVc.dll2020-05-02 10:03 – 2017-06-29 03:05 – 012334923 _____ C:Windowssystem32DriversRTAIODAT.DAT2020-05-02 10:03 – 2017-06-29 03:05 – 005804772 _____ C:Windowssystem32Driversrtvienna.dat2020-05-02 10:03 – 2017-06-29 03:05 – 001920870 _____ C:Windowssystem32DriversrtkSSTsetting.dat2020-05-02 10:03 – 2017-06-29 03:05 – 000005604 _____ C:Windowssystem32cxapo.lncs2020-05-02 10:03 – 2017-06-29 03:05 – 000000864 _____ C:Windowssystem32cxapo.prop2020-05-01 22:04 – 2020-05-02 09:53 – 264424269 _____ (Realtek Semiconductor Corp.) C:UsersKevinDownloads009-64bit_Win7_Win8_Win81_Win10_R282.exe2020-05-01 09:55 – 2020-05-01 09:55 – 000000000 ____D C:UsersKevinAppDataLocalTempzxpsign46df4a9b7773fc0b2020-05-01 09:30 – 2020-05-01 09:30 – 000000000 ____D C:UsersKevinAppDataLocalTempzxpsign1e13c401223a96cd2020-04-30 21:31 – 2020-04-30 21:31 – 000000000 ____D C:UsersKevinAppDataLocalLowSony Online Entertainment2020-04-29 18:31 – 2020-04-30 08:47 – 000000000 ____D C:UsersKevinDownloadsAn.American.In.Paris.1951.1080p.BluRay.H264.AAC-RARBG2020-04-29 17:20 – 2020-04-30 08:43 – 000000000 ____D C:UsersKevinDownloadsAn American In Paris2020-04-28 23:09 – 2020-04-28 23:09 – 000000000 ____D C:temp2020-04-28 23:08 – 2020-04-12 15:09 – 001329360 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe2020-04-28 23:08 – 2020-04-12 15:09 – 001329360 _____ C:WindowsSysWOW64vulkaninfo.exe2020-04-28 23:08 – 2020-04-12 15:08 – 132262800 _____ (NVIDIA Corp.) C:Windowssystem32nvoptix.dll2020-04-28 23:08 – 2020-04-12 15:08 – 030669552 _____ (NVIDIA Corporation) C:Windowssystem32nvrtum64.dll2020-04-28 23:08 – 2020-04-12 15:08 – 011945880 _____ (NVIDIA Corporation) C:Windowssystem32nvptxJitCompiler.dll2020-04-28 23:08 – 2020-04-12 15:08 – 010286488 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvptxJitCompiler.dll2020-04-28 23:08 – 2020-04-12 15:08 – 001729232 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe2020-04-28 23:08 – 2020-04-12 15:08 – 001729232 _____ C:Windowssystem32vulkaninfo.exe2020-04-28 23:08 – 2020-04-12 15:08 – 001078992 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll2020-04-28 23:08 – 2020-04-12 15:08 – 001078992 _____ C:Windowssystem32vulkan-1.dll2020-04-28 23:08 – 2020-04-12 15:08 – 000937680 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll2020-04-28 23:08 – 2020-04-12 15:08 – 000937680 _____ C:WindowsSysWOW64vulkan-1.dll2020-04-28 23:08 – 2020-04-12 15:08 – 000446352 _____ (Khronos Group) C:Windowssystem32OpenCL.dll2020-04-28 23:08 – 2020-04-12 15:08 – 000420248 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvumdshim.dll2020-04-28 23:08 – 2020-04-12 15:08 – 000342760 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll2020-04-28 23:08 – 2020-04-12 15:07 – 040450448 _____ (NVIDIA Corporation) C:Windowssystem32nvoglv64.dll2020-04-28 23:08 – 2020-04-12 15:07 – 031024032 _____ (NVIDIA Corporation) C:Windowssystem32nvopencl64.dll2020-04-28 23:08 – 2020-04-12 15:07 – 029695720 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvoglv32.dll2020-04-28 23:08 – 2020-04-12 15:07 – 026343656 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvopencl32.dll2020-04-28 23:08 – 2020-04-12 15:07 – 023052688 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvlddmkm.sys2020-04-28 23:08 – 2020-04-12 15:07 – 002071784 _____ (NVIDIA Corporation) C:Windowssystem32NvFBC64.dll2020-04-28 23:08 – 2020-04-12 15:07 – 001565072 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvFBC.dll2020-04-28 23:08 – 2020-04-12 15:07 – 001483176 _____ (NVIDIA Corporation) C:Windowssystem32nvdispgenco6444587.dll2020-04-28 23:08 – 2020-04-12 15:07 – 001482128 _____ (NVIDIA Corporation) C:Windowssystem32NvIFR64.dll2020-04-28 23:08 – 2020-04-12 15:07 – 001350560 _____ (NVIDIA Corporation) C:Windowssystem32nvfatbinaryLoader.dll2020-04-28 23:08 – 2020-04-12 15:07 – 001141480 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFR.dll2020-04-28 23:08 – 2020-04-12 15:07 – 001048296 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvfatbinaryLoader.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000625384 _____ (NVIDIA Corporation) C:Windowssystem32NvIFROpenGL.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000544160 _____ (NVIDIA Corporation) C:Windowssystem32nvEncodeAPI64.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000516832 _____ (NVIDIA Corporation) C:WindowsSysWOW64NvIFROpenGL.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000471272 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvEncodeAPI.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000427424 _____ C:Windowssystem32nvofapi64.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000378768 _____ C:WindowsSysWOW64nvofapi.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000181152 _____ (NVIDIA Corporation) C:Windowssystem32nvinitx.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000165264 _____ (NVIDIA Corporation) C:Windowssystem32nvoglshim64.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000158096 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvinit.dll2020-04-28 23:08 – 2020-04-12 15:07 – 000143080 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvoglshim32.dll2020-04-28 23:08 – 2020-04-12 15:06 – 040556456 _____ (NVIDIA Corporation) C:Windowssystem32nvcompiler64.dll2020-04-28 23:08 – 2020-04-12 15:06 – 035418352 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcompiler32.dll2020-04-28 23:08 – 2020-04-12 15:06 – 017600240 _____ (NVIDIA Corporation) C:Windowssystem32nvcuda.dll2020-04-28 23:08 – 2020-04-12 15:06 – 015159208 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuda.dll2020-04-28 23:08 – 2020-04-12 15:06 – 005448616 _____ (NVIDIA Corporation) C:Windowssystem32nvcuvid.dll2020-04-28 23:08 – 2020-04-12 15:06 – 004863896 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvcuvid.dll2020-04-28 23:08 – 2020-04-12 15:06 – 001722280 _____ (NVIDIA Corporation) C:Windowssystem32nvdispco6444587.dll2020-04-28 23:08 – 2020-04-12 15:06 – 000633752 _____ (NVIDIA Corporation) C:Windowssystem32nvcbl64.dll2020-04-28 23:08 – 2020-04-12 12:06 – 035464872 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvwgf2um.dll2020-04-28 23:08 – 2020-04-12 12:06 – 022226656 _____ (NVIDIA Corporation) C:Windowssystem32nvd3dumx.dll2020-04-28 23:08 – 2020-04-12 12:05 – 004217464 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvapi.dll2020-04-28 23:08 – 2020-04-11 08:40 – 000223120 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvhda64v.sys2020-04-28 23:08 – 2020-04-11 08:40 – 000039824 _____ (NVIDIA Corporation) C:Windowssystem32nvhdap64.dll2020-04-28 23:08 – 2020-04-03 16:55 – 000000671 _____ C:WindowsSysWOW64nv-vk32.json2020-04-28 23:08 – 2020-04-03 16:55 – 000000671 _____ C:Windowssystem32nv-vk64.json2020-04-28 23:02 – 2020-03-11 12:26 – 000067456 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvhci.sys2020-04-28 23:02 – 2020-03-06 03:03 – 000069840 _____ (NVIDIA Corporation) C:Windowssystem32Driversnvvad64v.sys2020-04-25 16:20 – 2020-04-25 16:21 – 023162880 _____ C:UsersKevinDownloadsAVD-NativeApp-4.7.1-Release(1).msi2020-04-25 16:20 – 2020-04-25 16:20 – 000000000 ____D C:Windowssystem32TasksMozilla2020-04-21 22:47 – 2020-04-28 23:11 – 000000000 ____D C:Program FilesMozilla Firefox2020-04-21 11:16 – 2020-04-21 11:35 – 023162880 _____ C:UsersKevinDownloadsAVD-NativeApp-4.7.1-Release.msi2020-04-17 16:32 – 2020-04-17 18:32 – 000000000 ____D C:UsersKevinDownloadsSingin.in.the.Rain.1952.1080p.BluRay.H264.AAC-RARBG2020-04-16 15:49 – 2020-04-16 15:49 – 107855752 _____ (Open Whisper Systems) C:UsersKevinDownloadssignal-desktop-win-1.33.1.exe ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2020-05-03 23:04 – 2017-04-21 10:45 – 000039183 _____ C:UsersKevinDownloadsFRST.txt2020-05-03 22:38 – 2018-05-18 09:23 – 000007609 _____ C:UsersKevinAppDataLocalResmon.ResmonCfg2020-05-03 12:25 – 2017-12-11 22:17 – 000000000 ____D C:ProgramDataNVIDIA2020-05-03 11:02 – 2009-07-13 21:45 – 000030544 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02020-05-03 11:02 – 2009-07-13 21:45 – 000030544 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02020-05-02 11:54 – 2018-12-19 08:21 – 000000000 ____D C:UsersKevinAppDataRoamingSignal2020-05-02 10:11 – 2009-07-13 22:13 – 000783606 _____ C:Windowssystem32PerfStringBackup.INI2020-05-02 10:11 – 2009-07-13 20:20 – 000000000 ____D C:Windowsinf2020-05-02 10:06 – 2017-12-11 22:35 – 000000000 ____D C:UsersKevinAppDataLocalLowMozilla2020-05-02 10:05 – 2017-12-12 11:10 – 000000000 ____D C:Program Files (x86)Steam2020-05-02 10:05 – 2009-07-13 22:08 – 000032608 _____ C:WindowsTasksSCHEDLGU.TXT2020-05-02 10:05 – 2009-07-13 22:08 – 000000006 ____H C:WindowsTasksSA.DAT2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32RTCOM2020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32DAX32020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:Windowssystem32DAX22020-05-02 10:04 – 2017-12-11 21:50 – 000000000 ____D C:ProgramDataAudyssey Labs2020-05-02 10:04 – 2017-12-11 21:49 – 000000000 ___HD C:Program Files (x86)Temp2020-05-02 10:03 – 2017-12-11 21:49 – 000000000 ___HD C:Program Files (x86)InstallShield Installation Information2020-05-01 21:57 – 2017-12-21 12:09 – 000000000 ____D C:UsersKevinDocumentsOutlook Files2020-05-01 09:55 – 2018-04-27 12:23 – 000000000 ____D C:UsersKevinAppDataLocalCrashDumps2020-05-01 09:30 – 2017-12-31 11:43 – 000000000 ____D C:UsersKevinAppDataLocalNVIDIA2020-05-01 09:00 – 2020-03-25 13:43 – 000000000 ____D C:Program Files (x86)GOG Galaxy2020-04-30 15:14 – 2017-12-17 14:59 – 000000000 ____D C:UsersKevinAppDataRoamingtixati2020-04-28 23:12 – 2020-03-25 14:26 – 000001335 _____ C:UsersPublicDesktopRimWorld.lnk2020-04-28 23:12 – 2020-03-25 14:26 – 000001335 _____ C:ProgramDataDesktopRimWorld.lnk2020-04-28 23:11 – 2018-05-22 09:27 – 000000986 __RSH C:ProgramDatantuser.pol2020-04-28 23:11 – 2017-12-11 22:35 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service2020-04-28 23:09 – 2009-07-13 20:20 – 000000000 ____D C:WindowsHelp2020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport4_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport3_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport2_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2019-11-12 20:11 – 000003704 _____ C:Windowssystem32TasksNvTmRep_CrashReport1_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2018-05-25 13:47 – 000003798 _____ C:Windowssystem32TasksNvNodeLauncher_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2018-05-25 13:47 – 000003790 _____ C:Windowssystem32TasksNVIDIA GeForce Experience SelfUpdate_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2018-05-25 13:46 – 000004146 _____ C:Windowssystem32TasksNvDriverUpdateCheckDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2018-05-25 13:46 – 000003940 _____ C:Windowssystem32TasksNvBatteryBoostCheckOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:ProgramDataNVIDIA Corporation2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:Program FilesNVIDIA Corporation2020-04-28 23:04 – 2017-12-11 22:17 – 000000000 ____D C:Program Files (x86)NVIDIA Corporation2020-04-28 23:03 – 2018-05-25 13:46 – 000003738 _____ C:Windowssystem32TasksNvProfileUpdaterDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:03 – 2018-05-25 13:46 – 000003494 _____ C:Windowssystem32TasksNvProfileUpdaterOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B82020-04-28 23:03 – 2017-12-11 22:19 – 000000000 ____D C:ProgramDataPackage Cache2020-04-27 19:34 – 2018-10-05 09:49 – 000002194 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk2020-04-25 18:57 – 2020-01-24 16:31 – 000000000 ____D C:UsersKevinAppDataLocalLarianLauncher2020-04-23 08:51 – 2017-12-21 11:13 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft2020-04-23 08:50 – 2017-12-21 11:11 – 000000000 ____D C:Program Files (x86)Microsoft Office2020-04-19 20:08 – 2018-07-07 17:50 – 000017450 _____ C:UsersKevinDocumentsHalf life decay.xlsx2020-04-19 10:50 – 2018-04-09 09:19 – 000004462 _____ C:Windowssystem32TasksAdobe Flash Player NPAPI Notifier2020-04-19 10:50 – 2017-12-15 21:17 – 000842296 _____ (Adobe) C:WindowsSysWOW64FlashPlayerApp.exe2020-04-19 10:50 – 2017-12-15 21:17 – 000175160 _____ (Adobe) C:WindowsSysWOW64FlashPlayerCPLApp.cpl2020-04-19 10:50 – 2017-12-15 21:17 – 000004324 _____ C:Windowssystem32TasksAdobe Flash Player Updater2020-04-19 10:50 – 2017-12-15 21:17 – 000000000 ____D C:WindowsSysWOW64Macromed2020-04-19 10:50 – 2017-12-15 21:17 – 000000000 ____D C:Windowssystem32Macromed2020-04-18 23:37 – 2020-02-01 20:59 – 000214496 _____ (Malwarebytes) C:Windowssystem32DriversMbamChameleon.sys2020-04-18 23:37 – 2019-07-07 10:41 – 000153312 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys2020-04-16 15:57 – 2018-12-19 08:21 – 000002451 _____ C:UsersKevinAppDataRoamingMicrosoftWindowsStart MenuProgramsSignal.lnk2020-04-16 15:57 – 2018-12-19 08:21 – 000002443 _____ C:UsersKevinDesktopSignal.lnk2020-04-14 18:19 – 2017-12-31 11:39 – 000000000 ____D C:UsersKevinAppDataRoaming.minecraft2020-04-13 13:38 – 2017-12-17 14:39 – 000000000 ____D C:Program Files (x86)Intel Driver and Support Assistant2020-04-12 15:08 – 2017-11-09 05:33 – 000502680 _____ (NVIDIA Corporation) C:Windowssystem32nvumdshimx.dll2020-04-12 12:06 – 2017-11-09 05:33 – 041111072 _____ (NVIDIA Corporation) C:Windowssystem32nvwgf2umx.dll2020-04-12 12:05 – 2017-11-09 05:32 – 018526608 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvd3dum.dll2020-04-12 12:05 – 2017-11-09 05:32 – 004769584 _____ (NVIDIA Corporation) C:Windowssystem32nvapi64.dll2020-04-11 08:40 – 2017-11-09 06:01 – 001682368 _____ (NVIDIA Corporation) C:Windowssystem32nvhdagenco6420103.dll2020-04-08 14:07 – 2009-07-13 20:20 – 000000000 ____D C:Windowssystem32NDF2020-04-07 10:58 – 2018-05-25 13:48 – 001314792 _____ (NVIDIA Corporation) C:Windowssystem32NvRtmpStreamer64.dll2020-04-07 10:58 – 2018-05-25 13:47 – 002799416 _____ (NVIDIA Corporation) C:Windowssystem32nvspcap64.dll2020-04-07 10:58 – 2018-05-25 13:47 – 002159592 _____ (NVIDIA Corporation) C:WindowsSysWOW64nvspcap.dll2020-04-03 16:55 – 2017-11-09 04:57 – 000053678 _____ C:Windowssystem32nvinfo.pb2020-04-03 14:56 – 2017-12-11 22:18 – 005581808 _____ (NVIDIA Corporation) C:Windowssystem32nvcpl.dll2020-04-03 14:56 – 2017-12-11 22:18 – 002631664 _____ (NVIDIA Corporation) C:Windowssystem32nvsvc64.dll2020-04-03 14:55 – 2017-12-11 22:18 – 001759032 _____ (NVIDIA Corporation) C:Windowssystem32nvsvcr.dll2020-04-03 14:55 – 2017-12-11 22:18 – 001172464 _____ (NVIDIA Corporation) C:Windowssystem32nv3dappshext.dll2020-04-03 14:55 – 2017-12-11 22:18 – 000446264 _____ (NVIDIA Corporation) C:Windowssystem32nvmctray.dll2020-04-03 14:55 – 2017-12-11 22:18 – 000121144 _____ (NVIDIA Corporation) C:Windowssystem32nvshext.dll2020-04-03 14:55 – 2017-12-11 22:18 – 000074736 _____ (NVIDIA Corporation) C:Windowssystem32nv3dappshextr.dll2020-04-03 03:08 – 2017-12-11 22:18 – 009037867 _____ C:Windowssystem32nvcoproc.bin ==================== Files in the root of some directories ======== 2018-09-26 20:51 – 2019-08-09 08:19 – 000005330 _____ () C:UsersKevinAppDataLocaloobelibMkey.log2018-05-18 09:23 – 2020-05-03 22:38 – 000007609 _____ () C:UsersKevinAppDataLocalResmon.ResmonCfg2018-08-21 10:55 – 2017-03-03 01:49 – 000000570 _____ () C:UsersKevinAppDataLocalTroubleshooterConfig.json ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) LastRegBack: 2020-04-27 09:22==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020Ran by Kevin (03-05-2020 23:04:12)Running from C:UsersKevinDownloadsWindows 7 Professional Service Pack 1 (X64) (2017-12-12 04:28:57)Boot Mode: Normal========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-4250991329-2939192951-560751505-500 – Administrator – Disabled)Guest (S-1-5-21-4250991329-2939192951-560751505-501 – Limited – Disabled)HomeGroupUser$ (S-1-5-21-4250991329-2939192951-560751505-1003 – Limited – Enabled)Kevin (S-1-5-21-4250991329-2939192951-560751505-1000 – Administrator – Enabled) => C:UsersKevin ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Malwarebytes (Enabled – Up to date) 23007AD3-69FE-687C-2629-D584AFFAF72BAS: Malwarebytes (Enabled – Up to date) 98619B37-4FC4-67F2-1C99-EEF6D47DBD96AS: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46 ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) . . (HKLM…9C40698F-A953-4658-AFF2-F7BB385A3910) (Version: 7.1 – Intel) Hidden. . . (HKLM-x32…870E5275-5457-4BBC-98C9-BFF4B70AA5D3) (Version: 3.1.0.12 – Intel) Hidden¡“ú‚Ì‚¨‚©‚¸_‚Ó‚½ƒNƒŠ_1 (HKLM-x32…KYOH_0003) (Version: – )Adobe Acrobat Reader DC (HKLM-x32…AC76BA86-7AD7-1033-7B44-AC0F074E4100) (Version: 20.006.20042 – Adobe Systems Incorporated)Adobe Bridge CC 2018 (HKLM-x32…KBRG_8_0_1) (Version: 8.0.1 – Adobe Systems Incorporated)Adobe Creative Cloud (HKLM-x32…Adobe Creative Cloud) (Version: 4.6.0.384 – Adobe Systems Incorporated)Adobe Flash Player 32 ActiveX (HKLM-x32…Adobe Flash Player ActiveX) (Version: 32.0.0.363 – Adobe)Adobe Flash Player 32 NPAPI (HKLM-x32…Adobe Flash Player NPAPI) (Version: 32.0.0.363 – Adobe)Adobe Photoshop CC 2017 (HKLM-x32…PHSP_18_0) (Version: 18.0.0 – Adobe Systems Incorporated)Ant Video downloader (Native messaging host) (HKLM-x32…41A57734-2ED5-449A-BAF0-F0B356417716) (Version: 4.7 – Ant.com)Apple Application Support (32-bit) (HKLM-x32…A7039CC9-4669-4799-92B1-C5CE346DBE3D) (Version: 8.3 – Apple Inc.)Apple Application Support (64-bit) (HKLM…DA78A9DC-3599-4D81-A960-B679687A6C14) (Version: 8.3 – Apple Inc.)Apple Mobile Device Support (HKLM…6CECF0FB-EE71-4FE5-8AE0-FA007408934A) (Version: 13.0.0.38 – Apple Inc.)Apple Software Update (HKLM-x32…A3985C05-7386-411F-A4BF-32A73F37EB44) (Version: 2.6.3.1 – Apple Inc.)Arc (HKLM-x32…CED8E25B-122A-4E80-B612-7F99B93284B3) (Version: 1.1.0.17816 – Perfect World Entertainment)Asmedia USB Host Controller Driver (HKLM-x32…E4FB0B39-C991-4EE7-95DD-1A1A7857D33D) (Version: 1.16.38.1 – Asmedia Technology)AutoCAD LT 2015 – English (HKLM…5783F2D7-E009-0000-0102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) HiddenAutoCAD LT 2015 – English (HKLM…5783F2D7-E009-0409-2102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) HiddenAutoCAD LT 2015 Language Pack – English (HKLM…5783F2D7-E009-0409-1102-0060B0CE6BBA) (Version: 20.0.51.0 – Autodesk) HiddenAutodesk 360 (HKLM…556966D9-F7F6-421B-9707-D07901604DDF) (Version: 5.0.27.1100 – Autodesk)Autodesk Application Manager (HKLM-x32…Autodesk Application Manager) (Version: 5.0.142.14 – Autodesk)Autodesk AutoCAD LT 2015 – English (HKLM…AutoCAD LT 2015 – English) (Version: 20.0.51.0 – Autodesk)Autodesk Content Service (HKLM-x32…A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F) (Version: 3.2.0.0 – Autodesk) HiddenAutodesk Content Service (HKLM-x32…Autodesk Content Service) (Version: 3.2.0.0 – Autodesk)Autodesk Content Service Language Pack (HKLM-x32…A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F) (Version: 3.2.0.0 – Autodesk) HiddenAutodesk Material Library 2015 (HKLM-x32…427F733F-4D6C-45BC-9324-EB743104C321) (Version: 5.2.9.100 – Autodesk)Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32…ABE2F70B-8D94-44E9-AA04-F0DB35063D62) (Version: 5.2.9.100 – Autodesk)Avidemux 2.7 – 64 bits (HKLM-x32…Avidemux 2.7 – 64 bits (64-bit)) (Version: 2.7.1.180604 – )Bonjour (HKLM…56DDDFB8-7F79-4480-89D5-25E1F52AB28F) (Version: 3.1.0.1 – Apple Inc.)Brother MFL-Pro Suite MFC-J825DW (HKLM-x32…A1B36B88-AF90-43A3-8906-6DBEE89B4FBD) (Version: 1.1.6.0 – Brother Industries, Ltd.)Casper 8.0 (HKLM…7D52E017-F5C3-4DD0-922F-C0B2EC6AD573) (Version: 8.0.46120 – Future Systems Solutions, Inc.)Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32…519C4DB6-B53B-4F5C-8297-89B2BE949FA5_is1) (Version: – Western Digital Corporation)DC Universe Online (HKUS-1-5-21-4250991329-2939192951-560751505-1000…DGC-DC Universe Online) (Version: 1.0.3.195 – Daybreak Game Company)DC Universe Online Live (HKUS-1-5-21-4250991329-2939192951-560751505-1000…DG0-DC Universe Online Live) (Version: – Sony Online Entertainment)EPSON Scan (HKLM-x32…EPSON Scanner) (Version: – )Folder Size 3.4.0.0 (HKLM-x32…2DFA85ED-588F-4CE3-A175-29E52C3804A8_is1) (Version: 3.4.0.0 – MindGems, Inc.)GOG Galaxy (HKLM-x32…7258BA11-600C-430E-A759-27E2C691A335_is1) (Version: – GOG.com)Google Chrome (HKLM-x32…Google Chrome) (Version: 81.0.4044.129 – Google LLC)Google Update Helper (HKLM-x32…60EC980A-BDA2-4CB6-A427-B07A5498B4CA) (Version: 1.3.35.451 – Google LLC) HiddenHelium (HKLM-x32…9A781940-AC41-4D5E-8E1E-76A04B916FB9) (Version: 1.0.0 – ClockworkMod)Intel® Management Engine Components (HKLM…1CEAC85D-2590-4760-800F-8DE5E91F3700) (Version: 11.6.0.1050 – Intel Corporation)Intel® Network Connections 21.1.29.0 (HKLM…PROSetDX) (Version: 21.1.29.0 – Intel)Intel® Rapid Storage Technology (HKLM…409CB30E-E457-4008-9B1A-ED1B9EA21140) (Version: 15.5.0.1051 – Intel Corporation)Intel® USB 3.03.1 eXtensible Host Controller Driver (HKLM-x32…240C3DDD-C5E9-4029-9DF7-95650D040CF2) (Version: 5.0.0.32 – Intel Corporation)Intel® Driver & Support Assistant (HKLM-x32…2550a40e-aac6-4d21-9361-744d33bec573) (Version: 3.1.0.12 – Intel)iTunes (HKLM…49F48AA2-DEA7-453A-8735-9C862E7C8467) (Version: 12.10.4.2 – Apple Inc.)Java 8 Update 201 (64-bit) (HKLM…26A24AE4-039D-4CA4-87B4-2F64180201F0) (Version: 8.0.2010.9 – Oracle Corporation)Java 8 Update 201 (HKLM-x32…26A24AE4-039D-4CA4-87B4-2F32180201F0) (Version: 8.0.2010.9 – Oracle Corporation)Java 8 Update 202 (64-bit) (HKLM…26A24AE4-039D-4CA4-87B4-2F64180202F0) (Version: 8.0.2020.8 – Oracle Corporation)Java 8 Update 202 (HKLM-x32…26A24AE4-039D-4CA4-87B4-2F32180202F0) (Version: 8.0.2020.8 – Oracle Corporation)K-Lite Mega Codec Pack 9.6.5 (HKLM-x32…KLiteCodecPack_is1) (Version: 9.6.5 – )Malwarebytes version 4.1.0.56 (HKLM…35065F43-4BB2-439A-BFF7-0F1014F2E0CD_is1) (Version: 4.1.0.56 – Malwarebytes)Mass Effect™ 2 (HKLM-x32…75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB) (Version: 1.2.1604.0 – Electronic Arts)Microsoft .NET Framework 4.7.2 (HKLM…92FB6C44-E685-45AD-9B20-CADF4CABA132 – 1033) (Version: 4.7.03062 – Microsoft Corporation)Microsoft Office 365 ProPlus – en-us (HKLM…O365ProPlusRetail – en-us) (Version: 16.0.11929.20708 – Microsoft Corporation)Microsoft OneDrive (HKU.DEFAULT…OneDriveSetup.exe) (Version: 17.3.6743.1212 – Microsoft Corporation)Microsoft OneDrive (HKUS-1-5-21-4250991329-2939192951-560751505-1000…OneDriveSetup.exe) (Version: 18.065.0329.0002 – Microsoft Corporation)Microsoft Silverlight (HKLM…89F4137D-6C26-4A84-BDB8-2E5A4BB71E00) (Version: 5.1.50918.0 – Microsoft Corporation)Microsoft Visio Viewer 2016 (HKLM…95160000-0052-0409-1000-0000000FF1CE) (Version: 16.0.4339.1001 – Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32…710f4c1c-cc18-4c49-8cbf-51240c89a1a2) (Version: 8.0.61001 – Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32…7299052b-02a4-4627-81f2-1818da5d550d) (Version: 8.0.56336 – Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32…837b34e3-7c30-493c-8f6a-2b0f04e2912c) (Version: 8.0.59193 – Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…71c9b48-7c32-4621-a0ac-3f809523288f) (Version: 8.0.56336 – Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…ad8a2fa1-06e7-4b0d-927d-6e54b3d31028) (Version: 8.0.61000 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x64 9.0.21022 (HKLM…350AA351-21FA-3270-8B7A-835434E766AD) (Version: 9.0.21022 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 (HKLM…8220EEFE-38CD-377E-8595-13398D740ACE) (Version: 9.0.30729 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.4148 (HKLM…4B6C7001-C7D6-3710-913E-5BC23FCE91E6) (Version: 9.0.30729.4148 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4) (Version: 9.0.30729.6161 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x86 9.0.21022 (HKLM-x32…FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4) (Version: 9.0.21022 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…9A25302D-30C0-39D9-BD6F-21E6EC160475) (Version: 9.0.30729 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148 (HKLM-x32…1F1C2DFC-2D24-3E06-BCB8-725134ADF989) (Version: 9.0.30729.4148 – Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…9BE518E6-ECC6-35A9-88E4-87755C07200F) (Version: 9.0.30729.6161 – Microsoft Corporation)Microsoft Visual C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…1D8E6291-B0D5-35EC-8441-6616F567A0F7) (Version: 10.0.40219 – Microsoft Corporation)Microsoft Visual C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…F0C3E5D1-1ADE-321E-8167-68EF0DE699A5) (Version: 10.0.40219 – Microsoft Corporation)Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…ca67548a-5ebe-413a-b50c-4b9ceb6d66c6) (Version: 11.0.61030.0 – Microsoft Corporation)Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.60610 (HKLM-x32…95716cce-fc71-413f-8ad5-56c2892d4b3a) (Version: 11.0.60610.1 – Microsoft Corporation)Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…33d1fd90-4274-48a1-9bc1-97e33d9c2d6f) (Version: 11.0.61030.0 – Microsoft Corporation)Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…50d4fc8-5d48-4b8f-8972-47c82c46020f) (Version: 12.0.30501.0 – Microsoft Corporation)Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…f65db027-aff3-4070-886a-0d87064aabb1) (Version: 12.0.30501.0 – Microsoft Corporation)Microsoft Visual C++ 2017 Redistributable (x64) – 14.13.26020 (HKLM-x32…7474cd6e-76cc-4257-837e-5b9261e526af) (Version: 14.13.26020.0 – Microsoft Corporation)Microsoft Visual C++ 2017 Redistributable (x86) – 14.13.26020 (HKLM-x32…5c045b7f-e561-4794-91f8-c6cda0893107) (Version: 14.13.26020.0 – Microsoft Corporation)Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32…D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F) (Version: 4.0.30901.0 – Microsoft Corporation)Minecraft (HKLM-x32…1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872) (Version: 1.0.3.0 – Mojang)Movavi Video Converter 18 Premium (HKLM-x32…Movavi Video Converter 18 Premium) (Version: 18.4.0 – Movavi)Mozilla Firefox 75.0 (x64 en-US) (HKLM…Mozilla Firefox 75.0 (x64 en-US)) (Version: 75.0 – Mozilla)Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 65.0 – Mozilla)NVAPI Monitor plugin for NvContainer (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_NvContainer.NvapiMonitor) (Version: 1.19 – NVIDIA Corporation) HiddenNVIDIA GeForce Experience 3.20.3.63 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.GFExperience) (Version: 3.20.3.63 – NVIDIA Corporation)NVIDIA Graphics Driver 445.87 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.Driver) (Version: 445.87 – NVIDIA Corporation)NVIDIA HD Audio Driver 1.3.38.26 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_HDAudio.Driver) (Version: 1.3.38.26 – NVIDIA Corporation)NVIDIA PhysX System Software 9.19.0218 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.PhysX) (Version: 9.19.0218 – NVIDIA Corporation)Office 16 Click-to-Run Extensibility Component (HKLM-x32…90160000-008C-0000-0000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) HiddenOffice 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM…90160000-00DD-0000-1000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) HiddenOffice 16 Click-to-Run Licensing Component (HKLM…90160000-008F-0000-1000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) HiddenOffice 16 Click-to-Run Localization Component (HKLM-x32…90160000-008C-0409-0000-0000000FF1CE) (Version: 16.0.11929.20708 – Microsoft Corporation) HiddenOrigin (HKLM-x32…Origin) (Version: 10.5.57.35162 – Electronic Arts, Inc.)Realtek High Definition Audio Driver (HKLM-x32…F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC) (Version: 6.0.1.8186 – Realtek Semiconductor Corp.)RimWorld (HKLM-x32…1094900565_is1) (Version: 1.1.2618 rev713 – GOG.com)Samsung USB Driver for Mobile Phones (HKLM…D0795B21-0CDA-4a92-AB9E-6E92D8111E44) (Version: 1.5.63.0 – Samsung Electronics Co., Ltd.)Signal 1.33.1 (HKUS-1-5-21-4250991329-2939192951-560751505-1000…7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.33.1 – Open Whisper Systems)Skype version 8.33 (HKLM-x32…Skype_is1) (Version: 8.33 – Skype Technologies S.A.)Smart Player 3.37.2 (HKLM-x32…Smart Player) (Version: 3.37.2 – )SmartPSS 2.0 (HKLM-x32…SmartPSS) (Version: 2.0 – )Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)Syncios Data Transfer 3.0.4 (HKLM-x32…Syncios Data Transfer) (Version: 3.0.4 – Anvsoft)TAP-Windows 9.9.2 (HKLM…TAP-Windows) (Version: 9.9.2 – )The Lord of the Rings Online™ v1903.0058.2732.4095 (HKLM-x32…12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 1903.0058.2732.4095 – Standing Stone Games, LLC)The Sims™ 4 (HKLM-x32…48EBEBBF-B9F8-4520-A3CF-89A730721917) (Version: 1.59.73.1020 – Electronic Arts Inc.)Tixati (HKLM-x32…tixati) (Version: – )TP-LINK Archer T4U Driver (HKLM-x32…1672C2A7-911A-45D5-84C4-263B771C50AE) (Version: 1.3.1 – TP-LINK)TP-LINK Wireless Configuration Utility (HKLM-x32…319D91C6-3D44-436C-9F79-36C0D22372DC) (Version: 1.3.1 – TP-LINK)TurboTax 2016 (HKLM-x32…TurboTax 2016) (Version: 2016.0 – Intuit, Inc)TurboTax 2017 (HKLM-x32…TurboTax 2017) (Version: 2017.0 – Intuit, Inc)Uplay (HKLM-x32…Uplay) (Version: 4.0 – Ubisoft)VdhCoApp 1.2.4 (HKLM…weh-iss-net.downloadhelper.coapp_is1) (Version: – DownloadHelper)VeraCrypt (HKLM-x32…VeraCrypt) (Version: 1.22 – IDRIX)VisiPics V1.31 (HKLM-x32…VisiPics_is1) (Version: – Ozone)VLC media player (HKLM…VLC media player) (Version: 3.0.8 – VideoLAN)VLC media player (HKLM-x32…VLC media player) (Version: 3.0.6 – VideoLAN)VPNetwork LLC – TorGuard – Online Privacy Protection Services (HKLM-x32…VPNetwork LLC TorGuard) (Version: "3.97.4" – "VPNetwork LLC")WinCDEmu (HKLM-x32…WinCDEmu) (Version: 4.1 – Sysprogs)WinMerge 2.14.0 (HKLM-x32…WinMerge_is1) (Version: 2.14.0 – Thingamahoochie Software)WinRAR 5.61 (64-bit) (HKLM…WinRAR archiver) (Version: 5.61.0 – win.rar GmbH)wufuc (HKLM…AF23CE93-4FB0-4A8A-A8D6-7A97151BCC14) (Version: 0.7.1.81 – zeffy)Zoom (HKUS-1-5-21-4250991329-2939192951-560751505-1000…ZoomUMX) (Version: 4.1 – Zoom Video Communications, Inc.) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID149DD748-EA85-45A6-93C5-AC50D0260C98localserver32 -> C:Program FilesAutodeskAutoCAD LT 2015acadlt.exe (Autodesk, Inc -> Autodesk, Inc.)CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID162C6FB5-44D3-435B-903D-E613FA093FB5InprocServer32 -> C:UsersKevinAppDataLocalMicrosoftOneDrive17.3.6743.1212amd64FileCoAuthLib64.dll => No FileCustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSID74F5CC00-49A9-11CF-A2F9-444553540000InprocServer32 -> C:Program FilesAutodeskAutoCAD LT 2015en-USacadltficn.dll (Autodesk, Inc -> Autodesk, Inc.)CustomCLSID: HKUS-1-5-21-4250991329-2939192951-560751505-1000_ClassesCLSIDe8c77137-e224-5791-b6e9-ff0305797a13InprocServer32 -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)ShellIconOverlayIdentifiers: [ AccExtIco1] -> AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )ShellIconOverlayIdentifiers: [ AccExtIco2] -> 853B7E05-C47D-4985-909A-D0DC5C6D7303 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )ShellIconOverlayIdentifiers: [ AccExtIco3] -> 42D38F2E-98E9-4382-B546-E24E4D6D04BB => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> 36A21736-36C2-4C11-8ACB-D4136F2B57BD => C:Windowssystem32AcSignIcon.dll [2014-02-07] (Autodesk, Inc -> Autodesk, Inc.)ContextMenuHandlers1: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> 2E7A2C6C-B938-40a4-BA1C-C7EC982DC202 => C:Program FilesCommon FilesAutodesk SharedAcShellExAcShellExtension.dll [2014-02-07] (Autodesk, Inc -> Autodesk)ContextMenuHandlers1: [WinCDEmu] -> D0E37FD2-F675-426F-B09A-2CF37BA46FD5 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]ContextMenuHandlers1: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]ContextMenuHandlers1: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)ContextMenuHandlers1-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)ContextMenuHandlers2: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]ContextMenuHandlers2: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]ContextMenuHandlers3: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)ContextMenuHandlers4: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]ContextMenuHandlers4: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)ContextMenuHandlers4-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)ContextMenuHandlers5: [NvCplDesktopContext] -> 3D1975AF-48C6-4f8e-A182-BE0E08FA86A9 => C:Windowssystem32nvshext.dll [2020-04-03] (NVIDIA Corporation -> NVIDIA Corporation)ContextMenuHandlers5: [WinMerge] -> 4E716236-AA30-4C65-B225-D68BBA81E9C2 => C:Program Files (x86)WinMergeShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org) [File not signed]ContextMenuHandlers6: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-07-07] (Adobe Systems Incorporated -> )ContextMenuHandlers6: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)ContextMenuHandlers6: [WinCDEmu] -> A9901FCD-B4DF-43A1-BD5D-6C9F88679497 => C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]ContextMenuHandlers6: [WinRAR] -> B41DB860-64E4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)ContextMenuHandlers6-x32: [WinRAR32] -> B41DB860-8EE4-11D2-9906-E49FADC173CA => C:Program FilesWinRARrarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM…Drivers32: [VIDC.XVID] => C:WindowsSysWOW64xvidvfw.dll [243200 2011-06-24] () [File not signed]HKLM…Drivers32: [VIDC.LAGS] => C:WindowsSysWOW64lagarith.dll [216064 2011-12-07] ( ) [File not signed]HKLM…Drivers32: [VIDC.FFDS] => C:WindowsSysWOW64ff_vfw.dll [112640 2012-12-24] () [File not signed]HKLM…Drivers32: [msacm.ac3acm] => C:WindowsSysWOW64ac3acm.acm [151552 2011-12-21] (fccHandler) [File not signed]HKLM…Drivers32: [vidc.VP60] => C:WindowsSysWOW64vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)HKLM…Drivers32: [vidc.VP61] => C:WindowsSysWOW64vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) ==================== Shortcuts & WMI ======================== ==================== Loaded Modules (Whitelisted) ============= 2018-03-26 13:58 – 2018-03-26 13:58 – 000112128 _____ ( (Microsoft Corporation) [File not signed]) [File is in use ] C:WindowsMicrosoft.NetassemblyGAC_32System.EnterpriseServicesv4.0_4.0.0.0__b03f5f7f11d50a3aSystem.EnterpriseServices.Wrapper.dll2017-12-22 13:02 – 2009-02-27 17:38 – 000139264 ____R () [File not signed] C:Program Files (x86)BrotherBrUtilitiesBrLogAPI.dll2019-12-13 04:18 – 2019-12-13 04:18 – 000511987 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibgcc_s_sjlj-1.dll2018-09-28 08:02 – 2018-09-28 08:02 – 000128239 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardliblzo2-2.dll2019-12-13 04:18 – 2019-12-13 04:18 – 003311313 _____ () [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibunbound-8.dll2017-12-22 13:02 – 2005-04-21 21:36 – 000143360 _____ () [File not signed] C:Windowssystem32BrSNMP64.dll2017-12-22 13:02 – 2012-07-02 09:24 – 000007168 _____ (Brother Industries Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRLFXA5C.DLL2017-12-22 13:02 – 2012-07-02 09:24 – 000231936 _____ (Brother Industries Ltd.) [File not signed] C:Windowssystem32spoolDRIVERSx643BRUFXA5C.dll2017-12-22 13:02 – 2012-04-23 16:03 – 000380928 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrMonitor.dll2017-12-22 13:02 – 2010-09-29 18:07 – 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BroSNMP.dll2017-12-22 13:02 – 2011-02-28 12:32 – 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrFirmUpdateCheck.dll2017-12-22 13:02 – 2012-01-11 15:39 – 000626688 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)Browny02BrotherBrStMonWRes.dll2017-12-22 13:02 – 2012-08-28 12:51 – 000155648 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcAssoc.dll2017-12-22 13:02 – 2012-07-06 14:33 – 000098304 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcDlgRc.dll2017-12-22 13:02 – 2012-07-06 14:33 – 017694720 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcGrImg.dll2017-12-22 13:02 – 2012-07-17 14:36 – 000090112 ____N (Brother Industries, Ltd.) [File not signed] C:Program Files (x86)ControlCenter4BrCcLUsa.dll2017-12-22 13:02 – 2012-07-05 04:32 – 000084480 _____ (Brother Industries, Ltd.) [File not signed] C:Windowssystem32BrNetSti.dll2020-01-03 16:29 – 2007-02-14 10:21 – 000231424 _____ (Hewlett-Packard Corporation) [File not signed] C:Windowssystem32spoolPRTPROCSx64hpzpp4wm.DLL2017-12-17 14:44 – 2013-02-02 16:41 – 000079360 _____ (hxxp://winmerge.org) [File not signed] C:Program Files (x86)WinMergeShellExtensionX64.dll2017-12-22 13:05 – 2017-12-22 13:05 – 000065536 _____ (Microsoft Corporation) [File not signed] C:WindowsWinSxSx86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774vcomp.dll2019-12-13 04:18 – 2019-12-13 04:18 – 000242489 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardlibwinpthread-1.dll2015-09-25 14:34 – 2015-09-28 11:08 – 000255488 _____ (Sysprogs OU) [File not signed] C:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll2019-12-13 04:18 – 2019-12-13 04:18 – 002274558 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardLIBEAY32.dll2019-12-13 04:18 – 2019-12-13 04:18 – 000573933 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardSSLEAY32.dll2016-12-01 03:44 – 2016-12-01 03:44 – 000039424 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardbearerqgenericbearer.dll2016-12-01 03:44 – 2016-12-01 03:44 – 000041984 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardbearerqnativewifibearer.dll2016-12-01 07:28 – 2016-12-01 07:28 – 000040960 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqdds.dll2016-12-01 03:43 – 2016-12-01 03:43 – 000026112 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqgif.dll2016-12-01 07:28 – 2016-12-01 07:28 – 000033280 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqicns.dll2016-12-01 03:43 – 2016-12-01 03:43 – 000027648 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqico.dll2016-12-01 03:43 – 2016-12-01 03:43 – 000245760 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqjpeg.dll2016-12-01 06:38 – 2016-12-01 06:38 – 000021504 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqsvg.dll2016-12-01 07:29 – 2016-12-01 07:29 – 000020992 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqtga.dll2016-12-01 07:29 – 2016-12-01 07:29 – 000316416 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqtiff.dll2016-12-01 07:29 – 2016-12-01 07:29 – 000019968 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqwbmp.dll2016-12-01 07:30 – 2016-12-01 07:30 – 000370688 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardimageformatsqwebp.dll2016-12-01 03:44 – 2016-12-01 03:44 – 001066496 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardplatformsqwindows.dll2020-01-05 12:09 – 2020-01-05 12:09 – 004633088 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Core.dll2016-12-01 03:35 – 2016-12-01 03:35 – 004865024 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Gui.dll2016-12-01 03:31 – 2016-12-01 03:31 – 000847872 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Network.dll2016-12-01 06:38 – 2016-12-01 06:38 – 000255488 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Svg.dll2016-12-01 08:43 – 2016-12-01 08:43 – 000110592 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5WebSockets.dll2016-12-01 03:40 – 2016-12-01 03:40 – 004448768 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)VPNetwork LLCTorGuardQt5Widgets.dll2017-07-16 00:47 – 2017-07-16 00:47 – 000148480 _____ (zeffy) [File not signed] C:Program Fileswufucwufuc.dll ==================== Alternate Data Streams (Whitelisted) ======== (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:WindowsSwUSB.exe:AGC [0]AlternateDataStreams: C:UsersKevinDownloadsAdobe Illustrator CS6 16.0.0 (32-64 bit) [ChingLiu]:Shareaza.GUID [16]AlternateDataStreams: C:UsersKevinDownloadsAdobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]:Shareaza.GUID [16]AlternateDataStreams: C:UsersKevinDownloadsAdobe Photoshop CS6 13.1.2 Extended Multilanguage [ChingLiu]:Shareaza.GUID [16]AlternateDataStreams: C:UsersKevinDownloadsAnt Videos:Shareaza.GUID [16]AlternateDataStreams: C:UsersKevinDownloadsavidemux_2.7.0_win64.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsavidemux_2.7.1_win64.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsBefore.Sunset.2004.1080p.BRrip.HEVC.x265-GIRAYS:Shareaza.GUID [16]AlternateDataStreams: C:UsersKevinDownloadsCASPER_SE_SETUP_10_1_6704.EXE:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsCASPER_SE_SETUP_8_0_4612.EXE:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsDCUO_setup.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsddfbusty.com – siterip:Shareaza.GUID [16]AlternateDataStreams: C:UsersKevinDownloadsDropboxInstaller.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsepson13829(1).exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsFolderSize.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsiTunes64Setup.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsjre-8u151-windows-x64.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadslotrolive.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsmb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsMFC-J825DW-inst-C1-usa.EXE:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsMovaviVideoConverterSetupF.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsOriginSetup.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsOriginThinSetup.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsSetup.X86.en-us_O365ProPlusRetail_0c5e4a56-ee61-43ec-b381-d41a712612ed_TX_PR_b_64_.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadssetuplanguagepack.x64.ja-jp_.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsSRTa.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsStar-trek-online_ArcSetup.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsSteamSetup.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadssyncios_data_transfer.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadstixati-2.55-1.win64-install.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadstorbrowser-install-7.5.6_en-US.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-latest.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-v0.3.78.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadstorguard-setup-v3.86.1.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.1.1.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.2.3.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsVdhCoAppSetup-1.2.4.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsVeraCrypt Setup 1.22.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsvipre_defcleaner.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsvlc-2.2.8-win32.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsWinCDEmu-4.1.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadswinxpvirtualcdcontrolpanel_21.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadswpsetup.exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloadsZoomInstaller(1).exe:BDU [0]AlternateDataStreams: C:UsersKevinDownloads[2005] All Of Me (Greatest Hits) – Anne Murray @ 320kbs [only1joe]:Shareaza.GUID [16]AlternateDataStreams: C:UsersKevinDownloads[nextorrent.net] Adobe Photoshop CC 2017 18.0 x64:Shareaza.GUID [34] ==================== Safe Mode (Whitelisted) ================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => ""="Service"HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => ""="Service"HKLMSYSTEMCurrentControlSetControlSafeBootNetworkVipreEdgeProtection => ""="service"HKLMSYSTEMCurrentControlSetControlSafeBootNetworkWebExaminer => ""="Driver" ==================== Association (Whitelisted) ================= (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKUS-1-5-21-4250991329-2939192951-560751505-1000SoftwareClasses.scr: AutoCADLTScriptFile => C:Windowssystem32notepad.exe "%1" ==================== Internet Explorer trusted/restricted ========== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKUS-1-5-21-4250991329-2939192951-560751505-1000…sharepoint.com -> hxxps://mycicsuci-files.sharepoint.com ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 19:34 – 2018-10-11 08:21 – 000000824 _____ C:Windowssystem32driversetchosts ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)Common FilesOracleJavajavapath;C:ProgramDataOracleJavajavapath;C:Program Files (x86)InteliCLS Client;C:Program FilesInteliCLS Client;C:Windowssystem32;C:Windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:Program Files (x86)IntelUCRT;C:Program FilesIntelUCRT;C:Program Files (x86)IntelIntel® Management Engine ComponentsDAL;C:Program FilesIntelIntel® Management Engine ComponentsDAL;C:Program Files (x86)IntelIntel® Management Engine ComponentsIPT;C:Program FilesIntelIntel® Management Engine ComponentsIPT;C:Program FilesNVIDIA CorporationNVIDIA NvDLISR;C:Program Files (x86)NVIDIA CorporationPhysXCommonHKUS-1-5-21-4250991329-2939192951-560751505-1000Control PanelDesktop\Wallpaper -> C:UsersKevinAppDataRoamingMicrosoftWindowsThemesTranscodedWallpaper.jpgDNS Servers: 10.9.0.1 – 10.8.0.1HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) MSCONFIGServices: Apple Mobile Device Service => 2MSCONFIGServices: Bonjour Service => 2MSCONFIGServices: ESRV_SVC_QUEENCREEK => 2MSCONFIGServices: iPod Service => 3MSCONFIGServices: SystemUsageReportSvc_QUEENCREEK => 2MSCONFIGServices: USER_ESRV_SVC_QUEENCREEK => 3MSCONFIGstartupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:WindowspssTP-LINK Wireless Configuration Utility.lnk.CommonStartupMSCONFIGstartupreg: Adobe Creative Cloud => "C:Program Files (x86)AdobeAdobe Creative CloudACCCreative Cloud.exe" –showwindow=false –onOSstartup=trueMSCONFIGstartupreg: AdobeAAMUpdater-1.0 => "C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe"MSCONFIGstartupreg: BlueStacks Agent => C:Program Files (x86)BlueStacksHD-Agent.exeMSCONFIGstartupreg: com.squirrel.Teams.Teams => C:UsersKevinAppDataLocalMicrosoftTeamsUpdate.exe –processStart "Teams.exe" –process-start-args "–system-initiated"MSCONFIGstartupreg: com.squirrel.WhatsApp.WhatsApp => C:UsersKevinAppDataLocalWhatsAppUpdate.exe –processStart "WhatsApp.exe"MSCONFIGstartupreg: Dropbox => "C:Program Files (x86)DropboxClientDropbox.exe" /systemstartupMSCONFIGstartupreg: iTunesHelper => "C:Program FilesiTunesiTunesHelper.exe"MSCONFIGstartupreg: TeamsMachineInstaller => %ProgramFiles%Teams InstallerTeams.exe –checkInstall –source=PROPLUS ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%system32sppsvc.exe No FileFirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%system32sppsvc.exe No FileFirewallRules: [846E4602-E7B6-4243-B9DD-5EA7061C69AB] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]FirewallRules: [67D6ACC3-664B-465C-9ECF-6BE32F660877] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]FirewallRules: [D95F651D-1002-4E5F-B7D6-0AE399D15308] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]FirewallRules: [D8FB9509-7270-40AF-B5C4-8140223155AE] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]FirewallRules: [517D608A-7568-4064-B124-969C4ADE1D54] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]FirewallRules: [8A969959-8387-4915-87B5-8126290DB92D] => (Allow) C:Program Files (x86)TP-LINKTP-LINK Wireless Configuration UtilityRTLDHCP.exe (Realtek) [File not signed]FirewallRules: [A068161F-A4EA-4F80-9B41-34437756A37A] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)FirewallRules: [E179E702-1723-418E-BF3C-0B9108936D24] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)FirewallRules: [E54F8E38-EB3A-4E38-BA90-AA9FC31D0F76] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)FirewallRules: [7785D835-361A-4357-AEA5-0F86BB01D545] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)FirewallRules: [FBF047D4-996A-4757-9AB5-6C9AF6EC4E42] => (Allow) C:Program Files (x86)SteamsteamappscommonRome Total War Alexandertestappa.exe No FileFirewallRules: [4A02A123-0B77-4906-A0AF-CAB333B1B9F6] => (Allow) C:Program Files (x86)SteamsteamappscommonRome Total War Alexandertestappa.exe No FileFirewallRules: [B01BC6C6-A84F-4F08-B033-E029A2F68D85] => (Allow) C:Program Files (x86)SteamsteamappscommonOri DEoriDE.exe No FileFirewallRules: [088D858D-DE79-42AB-8D8D-87CDC5FDB44D] => (Allow) C:Program Files (x86)SteamsteamappscommonOri DEoriDE.exe No FileFirewallRules: [52CA5507-2191-4385-BA16-A038E3C6EDC3] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of Nationspatriots.exe No FileFirewallRules: [621A1269-E00F-45A1-8B78-4256FCFB224E] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of Nationspatriots.exe No FileFirewallRules: [9345FE84-4148-4747-911D-9620E0254139] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No FileFirewallRules: [A27D43EB-D5DF-44AA-9A34-45494FDBC4EB] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No FileFirewallRules: [79F01A62-9793-48D8-AEB0-739A2F2303D1] => (Allow) C:Program Files (x86)SteamsteamappscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]FirewallRules: [93B5509E-2980-41AF-A6E7-09C65E8DAE20] => (Allow) C:Program Files (x86)SteamsteamappscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]FirewallRules: [FDBD51E5-FB00-4730-8708-94F791D99923] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Witcher 3binx64witcher3.exe (CD Projekt Red) [File not signed]FirewallRules: [3726E4C0-6ECB-48C4-B909-14DF2600C5DC] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Witcher 3binx64witcher3.exe (CD Projekt Red) [File not signed]FirewallRules: [62212345-1D57-452F-A41B-80AC58B86439] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_SkylinesCities.exe () [File not signed]FirewallRules: [A4E14026-94F0-48FD-A0AC-3BFC2C37631F] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_SkylinesCities.exe () [File not signed]FirewallRules: [CB44877C-CB9D-491E-83EB-F60675CFD737] => (Allow) C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)FirewallRules: [BAB20944-B6BA-493B-BA4C-CB59429E7057] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)FirewallRules: [071E4B88-973C-4F08-AC18-33B1D2A6A558] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)FirewallRules: [328B0493-9AF9-4AA2-A88A-1F17B497E805] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)FirewallRules: [7FEF3CE5-A019-48A1-9404-9BBA278A8BEC] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)FirewallRules: [531E6327-C961-4F5A-904B-DF3924473D08] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVeu4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)FirewallRules: [AE4FCF2C-9A55-43CD-8876-EA500B0D9843] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVeu4.exe (Paradox Interactive AB (publ) -> Paradox Interactive)FirewallRules: [0A5BFF7A-3E64-4879-A0B8-A1D78B6618D1] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No FileFirewallRules: [A5F0B236-C290-41A4-8BF7-05E1610BB288] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No FileFirewallRules: [07165169-E806-46EF-806D-5F7470AB9AE4] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No FileFirewallRules: [5E416C1D-4D01-460D-B729-F52609AE1640] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No FileFirewallRules: [62788860-FB1C-409F-90E2-63706E71151A] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No FileFirewallRules: [B0D09008-B595-40AA-A078-44DDB6C04B52] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No FileFirewallRules: [90289718-D60D-488B-9AAD-4E0675C5FD3B] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No FileFirewallRules: [99D1D56C-A4F2-4A5F-A81B-AD65BA9FBD97] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No FileFirewallRules: [B73013D2-4D19-4F1D-B506-3318C52BE0CF] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No FileFirewallRules: [56A87FCE-9681-4566-AE08-5EFECADF33B5] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No FileFirewallRules: [047A23EF-43D8-4989-BFFE-EA454468F4D7] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2MassEffect2Launcher.exe No FileFirewallRules: [1477B1FF-07EC-497A-82A6-252306710EE0] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2MassEffect2Launcher.exe No FileFirewallRules: [BC32DCA6-0DFC-4DAA-8F1B-0CDB1573A265] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No FileFirewallRules: [54FB0439-2C5E-4916-B0F2-A898BC997D36] => (Allow) C:Program Files (x86)SteamsteamappscommonMass Effect 2BinariesMassEffect2.exe No FileFirewallRules: [DF7FB258-4112-4B9F-8386-895E3011B77B] => (Allow) C:Program Files (x86)SteamsteamappscommonEndless LegendEndlessLegend.exe () [File not signed]FirewallRules: [95BAD206-9832-450E-AF67-BE57D6B48DBB] => (Allow) C:Program Files (x86)SteamsteamappscommonEndless LegendEndlessLegend.exe () [File not signed]FirewallRules: [E0ADBE76-76D0-4034-A535-F6B2C174FAF3] => (Allow) C:Program Files (x86)SteamsteamappscommonHalf-Life 2hl2.exe No FileFirewallRules: [89F5CDB1-525A-4031-B2B6-29ECBB46223C] => (Allow) C:Program Files (x86)SteamsteamappscommonHalf-Life 2hl2.exe No FileFirewallRules: [EEACD82D-4A29-4C5E-9DF1-EEE441F3E627] => (Allow) C:Program Files (x86)SteamsteamappscommonPortalhl2.exe No FileFirewallRules: [56148D36-5592-4A6A-BD9A-0511D33B1558] => (Allow) C:Program Files (x86)SteamsteamappscommonPortalhl2.exe No FileFirewallRules: [82CD4A69-A515-4F39-8FBA-99125E8A1617] => (Allow) C:Program Files (x86)SteamsteamappscommonPortal 2portal2.exe No FileFirewallRules: [A62199B1-E081-44A2-9BA8-856B961A8D56] => (Allow) C:Program Files (x86)SteamsteamappscommonPortal 2portal2.exe No FileFirewallRules: [83BA3315-2754-4DA8-AC60-32BD308E80F5] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of the Tomb RaiderROTTR.exe (Square Enix LTD -> Eidos Inc.)FirewallRules: [A1B67EF9-AC58-4EA9-84BC-064A04C97524] => (Allow) C:Program Files (x86)SteamsteamappscommonRise of the Tomb RaiderROTTR.exe (Square Enix LTD -> Eidos Inc.)FirewallRules: [BAAC7E77-5A11-459D-BE6B-4A6EEF517C31] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout New VegasFalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)FirewallRules: [EBE747B2-A3FA-4D3D-A580-2CD2D253A855] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout New VegasFalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)FirewallRules: [5C0BEAB6-6822-47F5-920C-653F9CCC3C84] => (Allow) C:Program Files (x86)SteamsteamappscommonTransistorx64Transistor.exe No FileFirewallRules: [BB47EE73-F1E8-4577-B80F-16751CB5F8A2] => (Allow) C:Program Files (x86)SteamsteamappscommonTransistorx64Transistor.exe No FileFirewallRules: [0EFDEE5E-FB7B-46A6-8C88-748586877174] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)FirewallRules: [4BD58CFB-5590-4681-9A66-8C518C8C788D] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)FirewallRules: [90B37D59-FF32-49FA-81AE-4380C982833F] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)FirewallRules: [AEFCBAE9-DED9-42EB-B885-89E8CF2AB7ED] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)FirewallRules: [04FB09B0-6751-4281-AD90-0493C6F5AA83] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)FirewallRules: [6381F013-3725-4C84-B801-A375835C9211] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)FirewallRules: [A5F1F507-00ED-4C58-B1B5-A5BE1FF9971B] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)FirewallRules: [B320E367-4915-4CC8-8F15-F45B6397BC70] => (Allow) C:ProgramDataVIPREPatchManagementVIPRE.PMAgent.exe (VIPRE Security (ThreatTrack Security, Inc.) -> VIPRE Security)FirewallRules: [969E7919-2A50-4D03-85F8-5B6987B41F08] => (Allow) C:Program Files (x86)BrotherBrmfl11aFAXRX.exe (Brother Industries, Ltd.) [File not signed]FirewallRules: [DA101ED0-CF83-45EC-B9EC-042D9CB665CF] => (Allow) C:Program Files (x86)BrotherBrmfl11aFAXRX.exe (Brother Industries, Ltd.) [File not signed]FirewallRules: [9A8BEFB1-8A7E-4BCB-AAEB-3FD7AFC8A3D5] => (Allow) LPort=161FirewallRules: [C788C3B8-AEAA-4122-BCD7-D084EEB0D651] => (Allow) C:Program Files (x86)SteamsteamappscommonPreyBinariesDaniellex64ReleasePrey.exe (Arkane Studios) [File not signed]FirewallRules: [AB613C3D-9DC1-4CCC-B4CA-37460E0B5CB7] => (Allow) C:Program Files (x86)SteamsteamappscommonPreyBinariesDaniellex64ReleasePrey.exe (Arkane Studios) [File not signed]FirewallRules: [112D8DBF-C662-4E9C-BE3B-A0E9E22FCD1A] => (Allow) C:Program Files (x86)SteamsteamappscommonDDDADDDA.exe (Capcom U.S.A., Inc.) [File not signed]FirewallRules: [48718C37-AA30-485D-A156-B0E5580E2C4E] => (Allow) C:Program Files (x86)SteamsteamappscommonDDDADDDA.exe (Capcom U.S.A., Inc.) [File not signed]FirewallRules: [8D6311D2-304A-4EA6-B5F5-8A8BF7C0F16D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadow TacticsShadow Tactics.exe () [File not signed]FirewallRules: [4C8ED993-EFB9-4658-B760-02F246BE7E85] => (Allow) C:Program Files (x86)SteamsteamappscommonShadow TacticsShadow Tactics.exe () [File not signed]FirewallRules: [3D163632-2CE9-499D-8813-1B2144186CA0] => (Allow) C:Program Files (x86)SteamsteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe No FileFirewallRules: [3C1FC11C-4B5A-4374-BF5F-55286B86A02A] => (Allow) C:Program Files (x86)SteamsteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe No FileFirewallRules: [TCP Query User4508AEE9-DCE9-4D53-81C0-BE08AC84DC2CC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No FileFirewallRules: [UDP Query User4DBADB1E-818A-4CD8-B5A0-67B325E047EBC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No FileFirewallRules: [TCP Query User03D4CFCD-CD49-4CDC-AA2F-E82E3E3FE11FC:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No FileFirewallRules: [UDP Query UserA4D34AEF-8C86-4753-A80D-D51344814130C:userskevinappdatalocalakamainetsession_win.exe] => (Allow) C:userskevinappdatalocalakamainetsession_win.exe No FileFirewallRules: [4D5960B1-2A01-4907-8883-407D176702C5] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)FirewallRules: [A772A869-1017-4FDB-A43E-C6D789243F74] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)FirewallRules: [902921B2-F900-486A-A465-894EF3F3BB7D] => (Allow) C:Program Files (x86)SteamsteamappscommonHacknetHacknet.exe () [File not signed]FirewallRules: [417848CF-D774-4295-8C63-64A1F596AAD2] => (Allow) C:Program Files (x86)SteamsteamappscommonHacknetHacknet.exe () [File not signed]FirewallRules: [0782BB30-6F73-4D8E-A6E1-BE4A979AB297] => (Allow) C:UsersKevinAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)FirewallRules: [A770D07B-4AF6-458E-918A-00F79965B4FB] => (Allow) C:UsersKevinAppDataRoamingZoombinairhost.exe No FileFirewallRules: [EC211640-2740-4835-81DD-75522A664FDD] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4.exe No FileFirewallRules: [F5F5FE02-87FB-412A-BCC8-3A1B4861826C] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4.exe No FileFirewallRules: [35C4BF3E-90E4-4A32-9E25-63BBFF21D7FA] => (Allow) C:Program Files (x86)BlueStacksHD-Player.exe No FileFirewallRules: [FC97D62B-6523-40F4-9A38-27564E69548E] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)FirewallRules: [B22C71EB-20E7-45D7-B479-2F28E4A5560B] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)FirewallRules: [1D8F747D-EB05-4836-8859-DEAAF8A4D58F] => (Allow) C:Program Files (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)FirewallRules: [3F353260-D351-4F2E-9D79-54BB01F867E8] => (Allow) C:Program Files (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)FirewallRules: [D5FA710F-6F47-4BD1-9513-C45F885C25DC] => (Allow) C:Program Files (x86)AnvSoftSyncios Data TransferSynciosTransfer.exe No FileFirewallRules: [88F3C470-7523-4291-A65D-5BED49529A0D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No FileFirewallRules: [510E3107-8724-465E-B11F-6627DF3495FC] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No FileFirewallRules: [A595D386-53E1-4512-A257-845364B12791] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No FileFirewallRules: [A1F4ECE8-D9B0-4146-86EB-7C73B7DA10FD] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos.exe No FileFirewallRules: [D2D4521B-6B99-46FC-AE09-729E31C2ACD6] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No FileFirewallRules: [7B7310A2-3731-419F-B1B4-DFCFA1EF880C] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinTalos_Unrestricted.exe No FileFirewallRules: [98C42D62-F884-4386-B316-7152B0C059F4] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exeFirewallRules: [0D84FB84-202E-455E-B244-9C689583F1A6] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exeFirewallRules: [9DBD86AA-300F-4F52-9DED-155BF7D1A2EC] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exeFirewallRules: [852F6D96-B05A-4808-AEEF-AD5A37C110F9] => (Allow) C:Program FilesJavajre1.8.0_202binjavaw.exeFirewallRules: [E6FF8591-FA65-475D-A4DB-31C48FEE9A32] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No FileFirewallRules: [8F14B9C9-AA65-4034-9C98-6A9F0B988067] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No FileFirewallRules: [93DE2622-D487-4306-881C-E496AB512735] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No FileFirewallRules: [5FB84764-6A08-4AC2-9C34-E2D21234B73F] => (Allow) C:Program Files (x86)Minecraftruntimejre-x641.8.0_51binjavaw.exe No FileFirewallRules: [2A14805D-3555-4FBB-B8F9-A617518DFD83] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No FileFirewallRules: [122A0B86-7755-40D1-B7EE-78D8C5F6595D] => (Allow) C:Program Files (x86)SteamsteamappscommonShadowOfMordorx64ShadowOfMordor.exe No FileFirewallRules: [TCP Query UserF341763C-ACE6-4220-8C92-688D67B115CDC:program filestixatitixati.exe] => (Allow) C:program filestixatitixati.exe (Tixati Software Inc. -> Tixati Software Inc.)FirewallRules: [UDP Query User3B7625DC-9943-4037-81B0-55272F94BBD5C:program filestixatitixati.exe] => (Allow) C:program filestixatitixati.exe (Tixati Software Inc. -> Tixati Software Inc.)FirewallRules: [TCP Query User282A8303-157D-42F8-B0AC-18B3A9703A1AC:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe] => (Allow) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]FirewallRules: [UDP Query UserBF51C937-976B-4E29-9843-FC1E6302D529C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe] => (Allow) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]FirewallRules: [D454DFC3-6314-4510-9052-72465EE53173] => (Block) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]FirewallRules: [2108201E-8AFB-4ED9-B87A-CBC3E4092F85] => (Block) C:program files (x86)smart professional surveillance systemsmartpsssmartpss.exe () [File not signed]FirewallRules: [5DA0F714-A817-49BD-82CA-4066A606E0AD] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]FirewallRules: [DFDF01E9-4299-4009-8850-8B98F83BC89F] => (Allow) C:Program Files (x86)SteamsteamappscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]FirewallRules: [B8E888BE-E97F-4015-AF72-A282AE862076] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No FileFirewallRules: [3CE57107-2551-4A5F-B744-BE1959B1E4A9] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos.exe No FileFirewallRules: [F12B9CA7-7242-41A1-971A-5E02698646DB] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No FileFirewallRules: [85DB2CF2-1683-4F97-82BE-45546BBA61EC] => (Allow) C:Program Files (x86)SteamsteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe No FileFirewallRules: [D1303D80-27D6-4995-8FA5-E40FCA50DDF2] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdater.exe (Intuit, Inc. -> Intuit Inc.)FirewallRules: [EE5EAFB1-524C-4404-AC0B-27F9E9EC23A1] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)FirewallRules: [6A106A7B-EB1D-454C-B97B-73DE8D992644] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)FirewallRules: [7C8D43C6-433C-4005-92BA-0C2BE53352A8] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)FirewallRules: [668E2671-74BD-4BE8-BF7F-29AF7F04042C] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)FirewallRules: [BE15BF0E-D526-44FD-8CCC-1BFD3B1BFCB7] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)FirewallRules: [A382F4B0-D1A0-4653-9049-4A7BF8C0400F] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVdowser.exe (Paradox Interactive Ab (Publ) -> )FirewallRules: [29B4C330-C935-44CB-99A8-157F093961FC] => (Allow) C:Program Files (x86)SteamsteamappscommonEuropa Universalis IVdowser.exe (Paradox Interactive Ab (Publ) -> )FirewallRules: [FAB657F4-F3EA-4101-AC8B-A85F9054BB86] => (Allow) LPort=50248FirewallRules: [3B322613-D262-413D-9845-A2B6A039FDDD] => (Allow) H:Steam GamessteamappscommonHalf-Life 2hl2.exe (Valve -> )FirewallRules: [BCB57B96-81CD-4976-AC55-55798126114C] => (Allow) H:Steam GamessteamappscommonHalf-Life 2hl2.exe (Valve -> )FirewallRules: [5A58CDA7-2614-4060-A01A-C0A8C9797215] => (Allow) H:Steam GamessteamappscommonPortalhl2.exe (Valve -> )FirewallRules: [BC4D40A1-9638-4778-98CD-AEC95EDED230] => (Allow) H:Steam GamessteamappscommonPortalhl2.exe (Valve -> )FirewallRules: [4B4A8D66-4248-4D1E-88DF-AC209AAEC995] => (Allow) H:Steam GamessteamappscommonPortal 2portal2.exe () [File not signed]FirewallRules: [D42BCEB7-0D9C-4D87-ADF9-1D7878E5B1AF] => (Allow) H:Steam GamessteamappscommonPortal 2portal2.exe () [File not signed]FirewallRules: [C2A5C781-F91D-404D-8906-DDB81E2B37B5] => (Allow) H:Steam GamessteamappscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)FirewallRules: [D45479D2-40DB-4360-B1B9-5F06ADB0A124] => (Allow) H:Steam GamessteamappscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)FirewallRules: [A020A3FF-57DC-4479-BA31-3010AEBA98ED] => (Allow) H:Steam GamessteamappscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)FirewallRules: [F0B1CEB9-1810-4EF3-9C78-B7B70B0F6623] => (Allow) H:Steam GamessteamappscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)FirewallRules: [A962CBB2-908A-40FE-9D2A-8C7732714FD6] => (Allow) H:Steam GamessteamappscommonTransistorx64Transistor.exe (Supergiant Games, LLC) [File not signed]FirewallRules: [3EEAD57F-DC09-4642-B367-0FDD06AC411C] => (Allow) H:Steam GamessteamappscommonTransistorx64Transistor.exe (Supergiant Games, LLC) [File not signed]FirewallRules: [7B1DE141-AC19-48F0-AED5-910203920A45] => (Allow) H:Steam GamessteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe (Ubisoft Entertainment -> )FirewallRules: [63C0D939-D179-4683-B935-6DA131B1DC96] => (Allow) H:Steam GamessteamappscommonAssassin's Creed IV Black FlagAC4BFSP.exe (Ubisoft Entertainment -> )FirewallRules: [88CCD2F5-E8C5-4DD8-A518-7A69FEF0EE03] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos.exe (GHI Media LLC -> Croteam)FirewallRules: [AC6C793A-96CB-44F9-A7A0-723B0E69A922] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos.exe (GHI Media LLC -> Croteam)FirewallRules: [92C00313-5375-4367-8034-D4F5EE0B6713] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe (GHI Media LLC -> Croteam)FirewallRules: [A5C99289-3667-4738-978E-A662CE1418DA] => (Allow) H:Steam GamessteamappscommonThe Talos PrincipleBinx64Talos_Unrestricted.exe (GHI Media LLC -> Croteam)FirewallRules: [A2B503CF-F754-49F9-961B-711C5726D37A] => (Allow) H:Steam GamessteamappscommonOri DEoriDE.exe () [File not signed]FirewallRules: [6581BA0E-2513-42D8-ACB5-E0862185C9B4] => (Allow) H:Steam GamessteamappscommonOri DEoriDE.exe () [File not signed]FirewallRules: [3A752978-246F-4DFB-B8F3-8800A3DE30FD] => (Allow) C:Program Files (x86)SteamsteamappscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)FirewallRules: [431ED6F3-C751-4AD1-A60F-5848B618890F] => (Allow) C:Program Files (x86)SteamsteamappscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)FirewallRules: [EF73EA5A-1774-44D1-AC26-E7B7D889E2F2] => (Allow) H:Steam GamessteamappscommonOpus MagnumLightning.exe () [File not signed]FirewallRules: [31A0CCA5-877A-4C5C-833F-087CC10B4679] => (Allow) H:Steam GamessteamappscommonOpus MagnumLightning.exe () [File not signed]FirewallRules: [82EE471F-665E-41DB-B5B1-546202F4ED52] => (Allow) H:Steam GamessteamappscommonDon't Starve Togetherbindontstarve_steam.exe No FileFirewallRules: [65963D6E-1307-4D0D-99C4-BE8E30BCF078] => (Allow) H:Steam GamessteamappscommonDon't Starve Togetherbindontstarve_steam.exe No FileFirewallRules: [10B93F89-D659-4F15-9595-E93B0EEE5515] => (Allow) H:Steam GamessteamappscommonShadowOfMordorx64ShadowOfMordor.exe (WB Games, Inc.) [File not signed]FirewallRules: [353E2741-C0E1-44D5-9398-058E09B083EE] => (Allow) H:Steam GamessteamappscommonShadowOfMordorx64ShadowOfMordor.exe (WB Games, Inc.) [File not signed]FirewallRules: [6A76D028-C503-409A-A8D4-20177FD4AE32] => (Allow) H:Steam GamessteamappscommonRise of Nationspatriots.exe (TODO: ) [File not signed]FirewallRules: [2AFAE238-4F23-4550-A2D4-2C7C4BA5A8D1] => (Allow) H:Steam GamessteamappscommonRise of Nationspatriots.exe (TODO: ) [File not signed]FirewallRules: [1F45493A-5CBA-48BA-B890-0E2B6CE59AEF] => (Allow) H:Steam GamessteamappscommonTomb RaiderTombRaider.exe (Square Enix) [File not signed]FirewallRules: [D06CED37-982B-44F7-B9D9-F83C4C8BC1AA] => (Allow) H:Steam GamessteamappscommonTomb RaiderTombRaider.exe (Square Enix) [File not signed]FirewallRules: [5F35B8EC-3864-4E8D-A8BD-1C852CF08CAC] => (Allow) H:Steam GamessteamappscommonDishonoredBinariesWin32Dishonored.exe (Bethesda Softworks -> ZeniMax Media Inc.)FirewallRules: [63C7659B-1430-4E25-8970-01A7CF98C0EB] => (Allow) H:Steam GamessteamappscommonDishonoredBinariesWin32Dishonored.exe (Bethesda Softworks -> ZeniMax Media Inc.)FirewallRules: [82D9E476-4A6F-42CF-B8BB-7C453DE534A2] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBin_LETS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)FirewallRules: [27F43EC4-0EA2-42F0-B4C2-5C6E5BD350F6] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBin_LETS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)FirewallRules: [9604041D-AE4A-433D-905A-7D71FE4B49D6] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)FirewallRules: [5851A150-6484-4DA8-9A3E-B1DE33D3B458] => (Allow) C:Program Files (x86)Origin GamesThe Sims 4GameBinTS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)FirewallRules: [298F3BDB-EAE0-4777-88EF-E640BF7A1C36] => (Allow) C:Program Files (x86)AnvsoftSyncios Data TransferSyncios Data Transfer.exe (Anvsoft Inc. -> Anvsoft)FirewallRules: [AEE5EAF8-E5F5-4657-BFA8-60D2BDEFEE13] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive Ab (Publ) -> )FirewallRules: [8BF9E306-BB85-4254-B9B7-B0174BA1B18A] => (Allow) C:Program Files (x86)SteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive Ab (Publ) -> )FirewallRules: [09233D4C-4425-42E0-BA35-AD0C10B9CA47] => (Allow) H:Steam GamessteamappscommonDivinity Original Sin 2binSupportTool.exe (Larian Studios -> Larian Studios)FirewallRules: [67E7AC73-08A7-4FDE-9777-BBBE1D67CBC4] => (Allow) H:Steam GamessteamappscommonDivinity Original Sin 2binSupportTool.exe (Larian Studios -> Larian Studios)FirewallRules: [TCP Query UserB57CB413-8591-4427-A575-07765666B1E2H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe] => (Allow) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )FirewallRules: [UDP Query User09216822-2E66-48F7-9D14-059BB59857A2H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe] => (Allow) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )FirewallRules: [8B54B3FA-0222-4949-9C6A-94EDC91FEBCA] => (Block) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )FirewallRules: [41A84CDC-0CD1-4D99-B461-7CB5B334CFE9] => (Block) H:steam gamessteamappscommondivinity original sin 2defedbineocapp.exe (Larian Studios -> )FirewallRules: [D74D5CE3-070B-46CD-87B2-8121ECAD3228] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)FirewallRules: [EFB7483F-FBDD-4095-96F4-EBC8E5DA0216] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)FirewallRules: [3E485EBA-B191-4CF4-B401-09E62D74DB3E] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)FirewallRules: [TCP Query User4178CE08-4E12-4960-9CDD-CC2F60DD33A8C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )FirewallRules: [UDP Query User13EF9D5E-F3CF-4725-B28A-68A1984BA51AC:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )FirewallRules: [TCP Query UserE1223002-27B2-4CD4-9EAB-B596CA862754C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )FirewallRules: [UDP Query UserBB71AB01-BFBC-426D-8B31-3C660D1ECD11C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe] => (Allow) C:program files (x86)vpnetwork llctorguardtorguarddesktopqt.exe (Schäuffelhut Berger GmbH -> )FirewallRules: [TCP Query UserFFCC26E8-C9F9-4CC5-A24B-9DDD3517AEE8C:program files (x86)minecraftruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraftruntimejre-x64binjavaw.exeFirewallRules: [UDP Query UserCD3407D7-28D6-4C34-B297-D59DCC47FF3AC:program files (x86)minecraftruntimejre-x64binjavaw.exe] => (Allow) C:program files (x86)minecraftruntimejre-x64binjavaw.exeFirewallRules: [E5EEEB5D-7F5F-45B9-8D2C-E37ED3B5B2EB] => (Block) C:program files (x86)minecraftruntimejre-x64binjavaw.exeFirewallRules: [66E43BB3-2023-4753-847F-96BF0563991B] => (Block) C:program files (x86)minecraftruntimejre-x64binjavaw.exeFirewallRules: [07412082-A2B9-4D33-BA39-B5F03C13479A] => (Allow) C:Program FilesiTunesiTunes.exe (Apple Inc. -> Apple Inc.)FirewallRules: [6DCC8B15-F6E0-4545-A0C5-30C794867217] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)FirewallRules: [9E71390D-439A-4CC9-83BE-20F1C32A5C66] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)FirewallRules: [FC4FD25D-6FE6-4A7E-8B6B-CF6219FB6965] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)FirewallRules: [B5E5AB54-2F3F-49EA-B081-44F22A142E68] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)FirewallRules: [DACC25E6-E2C1-436A-9A01-6FFA1B598965] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) ==================== Restore Points ========================= 02-05-2020 00:00:01 Scheduled Checkpoint02-05-2020 09:59:50 Removed Realtek High Definition Audio Driver02-05-2020 10:03:25 Installed Realtek High Definition Audio Driver03-05-2020 10:58:23 Windows Update ==================== Faulty Device Manager Devices ============ Name: PCI Memory ControllerDescription: PCI Memory ControllerClass Guid:Fabricant:Service:Problem: : The drivers for this device are not installed. (Code 28)Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Microsoft PS/2 MouseDescription: Microsoft PS/2 MouseClass Guid: 4d36e96f-e325-11ce-bfc1-08002be10318Manufacturer: MicrosoftService: i8042prtProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Base System DeviceDescription: Base System DeviceClass Guid:Fabricant:Service:Problem: : The drivers for this device are not installed. (Code 28)Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: SM Bus ControllerDescription: SM Bus ControllerClass Guid:Fabricant:Service:Problem: : The drivers for this device are not installed. (Code 28)Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Standard PS/2 KeyboardDescription: Standard PS/2 KeyboardClass Guid: 4d36e96b-e325-11ce-bfc1-08002be10318Manufacturer: (Standard keyboards)Service: i8042prtProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ======================== Application errors:==================Error: (05/03/2020 02:09:37 PM) (Source: SideBySide) (EventID: 35) (User: )Description: Activation context generation failed for "C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest".Error in manifest or policy file "C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL" on line 1.Component identity found in manifest does not match the identity of the component requested.Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".Please use sxstrace.exe for detailed diagnosis. Error: (05/03/2020 02:09:37 PM) (Source: SideBySide) (EventID: 35) (User: )Description: Activation context generation failed for "C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest".Error in manifest or policy file "C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL" on line 1.Component identity found in manifest does not match the identity of the component requested.Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".Please use sxstrace.exe for detailed diagnosis. Error: (05/01/2020 09:54:54 AM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Adobe Spaces Helper.exe, version: 0.0.0.0, time stamp: 0x57fde35dFaulting module name: libcef.dll, version: 3.2526.1347.0, time stamp: 0x572d0cf0Exception code: 0xc0000005Fault offset: 0x0000000002656a12Faulting process id: 0x2360Faulting application start time: 0x01d61fd5ddfb6e96Faulting application path: C:Program FilesAdobeAdobe Photoshop CC 2017RequiredPlug-InsSpacesAdobe Spaces Helper.exeFaulting module path: C:Program FilesAdobeAdobe Photoshop CC 2017RequiredPlug-InsSpaceslibcef.dllReport Id: 7a720f16-8bcc-11ea-a891-001bdc0fc646 Error: (05/01/2020 09:53:21 AM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Photoshop.exe, version: 18.0.0.53, time stamp: 0x57fde9fdFaulting module name: nvoglv64.DLL, version: 26.21.14.4587, time stamp: 0x5e879687Exception code: 0x40000015Fault offset: 0x0000000000f8b15fFaulting process id: 0xa78Faulting application start time: 0x01d61fd5da46cb06Faulting application path: C:Program FilesAdobeAdobe Photoshop CC 2017Photoshop.exeFaulting module path: C:Windowssystem32nvoglv64.DLLReport Id: 436c0f76-8bcc-11ea-a891-001bdc0fc646 Error: (05/01/2020 09:53:21 AM) (Source: NVIDIA OpenGL Driver) (EventID: 1) (User: )Description: Unable to recover from a kernel exception. The application must close. Error code: 3 (subcode 2) (pid=2680 tid=10760 photoshop.exe 64bit) Visit http://www.nvidia.com/page/support.html for more information. Error: (04/30/2020 09:31:30 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Uninstaller-9828.exe, version: 1.0.3.159, time stamp: 0x4f07bdefFaulting module name: Uninstaller-9828.exe, version: 1.0.3.159, time stamp: 0x4f07bdefException code: 0x40000015Fault offset: 0x0002dd8fFaulting process id: 0x29f0Faulting application start time: 0x01d61f7161383f50Faulting application path: C:UsersKevinAppDataLocalTempUninstaller-9828.exeFaulting module path: C:UsersKevinAppDataLocalTempUninstaller-9828.exeReport Id: a09e2290-8b64-11ea-a891-001bdc0fc646 Error: (04/30/2020 09:31:27 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Uninstaller-9720.exe, version: 1.0.3.159, time stamp: 0x4f07bdefFaulting module name: Uninstaller-9720.exe, version: 1.0.3.159, time stamp: 0x4f07bdefException code: 0x40000015Fault offset: 0x0002dd8fFaulting process id: 0x1298Faulting application start time: 0x01d61f7159747c20Faulting application path: C:UsersKevinAppDataLocalTempUninstaller-9720.exeFaulting module path: C:UsersKevinAppDataLocalTempUninstaller-9720.exeReport Id: 9e977d20-8b64-11ea-a891-001bdc0fc646 Error: (04/29/2020 01:21:08 PM) (Source: SideBySide) (EventID: 35) (User: )Description: Activation context generation failed for "C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest".Error in manifest or policy file "C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL" on line 1.Component identity found in manifest does not match the identity of the component requested.Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".Please use sxstrace.exe for detailed diagnosis. System errors:=============Error: (05/02/2020 01:08:52 PM) (Source: BROWSER) (EventID: 8032) (User: )Description: The browser service has failed to retrieve the backup list too many times on transport DeviceNetBT_Tcpip_4B3751D1-5D87-4830-BC4C-D842B7621544.The backup browser is stopping. Error: (05/02/2020 10:05:20 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)Description: The following fatal alert was received: 70. Error: (05/02/2020 10:03:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Steam Client Service service failed to start due to the following error:The service did not respond to the start or control request in a timely fashion. Error: (05/02/2020 10:03:01 AM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect. Error: (05/02/2020 10:02:48 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)Description: The following fatal alert was received: 70. Error: (05/02/2020 10:01:39 AM) (Source: DCOM) (EventID: 10010) (User: )Description: The server 1A1F4206-0688-4E7F-BE03-D82EC69DF9A5 did not register with DCOM within the required timeout. Error: (05/02/2020 10:01:36 AM) (Source: DCOM) (EventID: 10010) (User: )Description: The server F9717507-6651-4EDB-BFF7-AE615179BCCF did not register with DCOM within the required timeout. Error: (05/01/2020 10:08:01 PM) (Source: bowser) (EventID: 8003) (User: )Description: The master browser has received a server announcement from the computer ROSA-PCthat believes that it is the master browser for the domain on transport NetBT_Tcpip_4B3751D1-5D87-4830-BC4C-D842B7621544.The master browser is stopping or an election is being forced. Windows Defender:===================================Date: 2019-08-02 02:20:57.294La description:Windows Defender scan has encountered an error and terminated.Scan ID:A958ABF6-2B52-47B4-9E03-07AB8DD5DF4AScan Type:AntiSpywareScan Parameters:Quick ScanError Code:0x8050800dError description:Some history items could not be displayed. Please wait a few minutes and try again. If that doesn't work, clear the history and then try again. CodeIntegrity:=================================== Date: 2020-03-31 11:21:45.803La description:Code Integrity is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32l3codeca.acm because the set of per-page image hashes could not be found on the system. Date: 2020-02-17 19:39:33.669La description:Code Integrity is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32l3codeca.acm because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== BIOS: American Megatrends Inc. F7 07/07/2017Motherboard: Gigabyte Technology Co., Ltd. Z270XP-SLI-CFProcessor: Intel® Core™ i5-7600K CPU @ 3.80GHzPercentage of memory in use: 50%Total physical RAM: 16338.27 MBAvailable physical RAM: 8055.04 MBTotal Virtual: 66674.69 MBAvailable Virtual: 54398.87 MB ==================== Drives ================================ Drive c: (Local Disk) (Fixed) (Total:931.22 GB) (Free:43.11 GB) NTFSDrive e: (Data Disk) (Fixed) (Total:1862.92 GB) (Free:343.55 GB) NTFSDrive f: (Local Disk) (Fixed) (Total:931.38 GB) (Free:91.05 GB) NTFSDrive g: (Data Disk) (Fixed) (Total:1862.98 GB) (Free:366.17 GB) NTFSDrive h: (Games Disk) (Fixed) (Total:931.32 GB) (Free:710.94 GB) NTFSDrive x: () (Fixed) (Total:8.98 GB) (Free:5.93 GB) FAT32 \?Volume0cba1e43-def4-11e7-8cbd-806e6f6e6963 (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS\?Volume60e0020e-203a-11e9-ba7b-e0d55e03309d (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS\?Volume0b20b2f4-e42b-11e7-bc9c-e0d55e03309d (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Partition Table ==================== ==========================================================Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 39D95AD5)Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)Partition 2: (Not Active) – (Size=931.2 GB) – (Type=07 NTFS) ==========================================================Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 3B710C0C)Partition 1: (Not Active) – (Size=1862.9 GB) – (Type=07 NTFS) ==========================================================Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2D3CD337)Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)Partition 2: (Not Active) – (Size=931.3 GB) – (Type=07 NTFS) ==========================================================Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 305E0EF1)Partition 1: (Not Active) – (Size=1863 GB) – (Type=07 NTFS) ==========================================================Disk: 4 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2A230810)Partition 1: (Active) – (Size=100 MB) – (Type=07 NTFS)Partition 2: (Not Active) – (Size=931.4 GB) – (Type=07 NTFS) ==================== End of Addition.txt =======================

Click to rate this post! [Total: 0 Average: 0]

Topics and keywords

Themes: Serveur d'impression

License & attribution

License: CC BY-ND 4.0.

Attribution required: yes.

Manifest: https://tutos-gameserver.fr/llm-endpoints-manifest.json

LLM Endpoints plugin version 1.1.2.