Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
18.cprmatix.com
Message
<blockquote data-quote="Stephen Butler" data-source="post: 765810" data-attributes="member: 75137"><p>Hello again:</p><p></p><p>This is the file <strong>ADDITION.txt </strong>from my previous post:</p><p></p><p><strong>Addition.txt:</strong></p><p></p><p>Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.09.2018</p><p>Ran by StephenDJButler (21-09-2018 16:40:50)</p><p>Running from D:\Downloads</p><p>Windows 7 Professional Service Pack 1 (X64) (2015-12-09 22:57:16)</p><p>Boot Mode: Normal</p><p>==========================================================</p><p></p><p></p><p>==================== Accounts: =============================</p><p></p><p>Administrator (S-1-5-21-410353808-276946841-1970485010-500 - Administrator - Disabled)</p><p>Gaming (S-1-5-21-410353808-276946841-1970485010-1007 - Administrator - Enabled) => C:\Users\Gaming</p><p>Guest (S-1-5-21-410353808-276946841-1970485010-501 - Limited - Disabled) => C:\Users\Guest</p><p>HomeGroupUser$ (S-1-5-21-410353808-276946841-1970485010-1002 - Limited - Enabled)</p><p>Recording (S-1-5-21-410353808-276946841-1970485010-1008 - Administrator - Enabled) => C:\Users\Recording</p><p>StephenDJButler (S-1-5-21-410353808-276946841-1970485010-1001 - Administrator - Enabled) => C:\Users\StephenDJButler</p><p></p><p>==================== Security Center ========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed.)</p><p></p><p>AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}</p><p>AV: ZoneAlarm Extreme Security Antivirus (Enabled - Up to date) {23B6D20A-C2DE-B3F5-C67D-07ECD854E6A9}</p><p>AS: ZoneAlarm Extreme Security Anti-Spyware (Enabled - Up to date) {98D733EE-E4E4-BC7B-FCCD-3C9EA3D3AC14}</p><p>AS: Spybot - Search and Destroy (Enabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}</p><p>AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}</p><p>AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}</p><p>FW: ZoneAlarm Extreme Security Firewall (Enabled) {1B8D532F-88B1-B2AD-ED22-AED92687A1D2}</p><p></p><p>==================== Installed Programs ======================</p><p></p><p>(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)</p><p></p><p>µTorrent (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\uTorrent) (Version: 3.5.3.44428 - BitTorrent Inc.)</p><p>Ableton Live 9 Suite (HKLM\...\{7597F2DC-003A-476E-9281-774AB112B7BE}) (Version: 9.0.0.0 - Ableton)</p><p>Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)</p><p>AllShare Framework DMS (HKLM\...\{83232C27-8C3F-44A5-9EB2-BB7161228ADD}) (Version: 1.3.23 - Samsung)</p><p>Apple Application Support (64-bit) (HKLM\...\{BB109E24-EE90-485B-A28B-ADDEFB40540B}) (Version: 5.6 - Apple Inc.)</p><p>Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.)</p><p>Art Effects for PDR10 (HKLM\...\NewBlue Art Effects for PDR10) (Version: 2.0 - NewBlue)</p><p>Autodesk 3ds Max 2016 (HKLM\...\{52B37EC7-D836-0410-0464-3C24BCED2010}) (Version: 18.0.873.0 - Autodesk) Hidden</p><p>Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)</p><p>Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk)</p><p>Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk)</p><p>Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk)</p><p>Autodesk Revit Interoperability for 3ds Max (HKLM\...\{0BB716E0-1600-0610-0000-097DC2F354DF}) (Version: 16.0.394.0 - Autodesk) Hidden</p><p>Autodesk Revit Interoperability for 3ds Max (HKLM\...\Autodesk Revit Interoperability for 3ds Max ) (Version: 16.0.394.0 - Autodesk)</p><p>Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)</p><p>calibre 64bit (HKLM\...\{54EFBCD2-A4FB-4C37-A720-9A8195EFC7B4}) (Version: 2.45.0 - Kovid Goyal)</p><p>calibre 64bit (HKLM\...\{D7D0A0C9-6728-4FA3-B611-04FFDB739F97}) (Version: 2.83.0 - Kovid Goyal)</p><p>CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)</p><p>CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.1129a - CyberLink Corp.) Hidden</p><p>DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)</p><p>DirectX for Managed Code (HKLM\...\{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1) (Version: 1.0.0.0 - Sereby Corporation)</p><p>DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.07 - NVIDIA Corporation) Hidden</p><p>Driver Easy 5.5.6 (HKLM\...\DriverEasy_is1) (Version: 5.5.6 - Easeware)</p><p>dupeGuru (HKLM\...\{C11DACBD-8863-4AA4-94AD-708602F6F7EF}) (Version: 3.9.1 - Hardcoded Software)</p><p>EPSON XP-600 Series Printer Uninstall (HKLM\...\EPSON XP-600 Series) (Version: - SEIKO EPSON Corporation)</p><p>Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)</p><p>HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.0.295 - SurfRight B.V.)</p><p>iCloud (HKLM\...\{724A887F-2B55-4306-B6F9-8F0E7A04B1B5}) (Version: 5.2.2.87 - Apple Inc.)</p><p>iTunes (HKLM\...\{02F95875-9527-49CC-B32F-970ADAEBD1EF}) (Version: 12.6.2.20 - Apple Inc.)</p><p>Java 8 Update 172 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180172F0}) (Version: 8.0.1720.11 - Oracle Corporation)</p><p>LatencyMon 6.51 (HKLM\...\LatencyMon_is1) (Version: - Resplendence Software Projects Sp.)</p><p>Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)</p><p>MediaInfo 0.7.99 (HKLM\...\MediaInfo) (Version: 0.7.99 - MediaArea.net)</p><p>MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)</p><p>Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - )</p><p>Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )</p><p>Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)</p><p>Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)</p><p>Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.10730.20102 - Microsoft Corporation)</p><p>Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)</p><p>Microsoft OneDrive (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0006 - Microsoft Corporation)</p><p>Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)</p><p>Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)</p><p>Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)</p><p>Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)</p><p>Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)</p><p>Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)</p><p>Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)</p><p>Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation)</p><p>MusicBee 3.2 (HKLM-x32\...\MusicBee) (Version: 3.2 - Steven Mayall)</p><p>MusicLab RealGuitar (64-bit) (HKLM\...\{C8B26887-0463-4441-8788-68496891D213}) (Version: 3.1.0.7127 - MusicLab, Inc.) Hidden</p><p>MusicLab RealLPC (HKLM\...\{38209080-8888-4418-8117-D190FC71BF58}) (Version: 3.0 - MusicLab, Inc.)</p><p>MusicLab Virtual Midi Driver (64-bit) (HKLM\...\{2B019162-86C7-4D14-AED0-2CB5110BA4FF}) (Version: 2.0.2.0 - MusicLab, Inc.)</p><p>NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden</p><p>NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)</p><p>NVIDIA 3D Vision Driver 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.07 - NVIDIA Corporation)</p><p>NVIDIA GeForce Experience 3.15.0.164 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.164 - NVIDIA Corporation)</p><p>NVIDIA Graphics Driver 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.07 - NVIDIA Corporation)</p><p>NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)</p><p>NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)</p><p>Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden</p><p>Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden</p><p>Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden</p><p>Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden</p><p>OpenIV (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\OpenIV) (Version: 3.0.1004 - .black/OpenIV Team)</p><p>PowerDirector (HKLM\...\{E8C64028-08E5-4BF0-B1C0-DBAAC6A77DF1}) (Version: 10.00.0000 - CyberLink Corp.) Hidden</p><p>REAPER (x64) (HKLM\...\REAPER) (Version: - )</p><p>Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)</p><p>Revo Uninstaller Pro 3.1.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.8 - VS Revo Group, Ltd.)</p><p>Samsung Link 2.0.0.1603091618 (HKLM\...\8474-7877-9059-0204) (Version: 2.0.0.1603091618 - Samsung Electronics Co.,Ltd)</p><p>Spotify (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\Spotify) (Version: 1.0.80.474.gef6b503e - Spotify AB)</p><p>UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden</p><p>Universal CRT Tools x64 (HKLM\...\{4EE952FC-2888-39E8-75D5-E07FA9557985}) (Version: 10.1.10586.15 - Microsoft Corporation) Hidden</p><p>Universe (HKLM\...\Universe Premium_is1) (Version: 1.6.0 CE - Team V.R)</p><p>WebM Project Directshow Filters (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\webmdshow) (Version: - )</p><p>WhoCrashed 5.50 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)</p><p>Windows Media Player 64-bit Plug-in Fix (HKLM\...\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb) (Version: - )</p><p>WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)</p><p>WinZip 20.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EF}) (Version: 20.0.11659 - WinZip Computing, S.L. )</p><p>ZAR X (HKLM\...\{85DA9B81-D7F9-4165-8E62-F776B57213F8}_is1) (Version: - <a href="http://www.z-a-recovery.com" target="_blank">www.z-a-recovery.com</a>)</p><p>ZoneAlarm Parental Controls (HKLM\...\{9D0D6B72-4C5C-498D-9A8A-DA53341E8BC1}) (Version: 7.2.6.1 - ContentWatch) Hidden</p><p></p><p>==================== Custom CLSID (Whitelisted): ==========================</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\StephenDJButler\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => No File</p><p>CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{22A8794C-E808-52FA-40C1-F0D8F63A947A}\InprocServer32 -> no filepath</p><p>CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{24734139-2E14-88F8-FDDF-194FDB2B19C4}\InprocServer32 -> no filepath</p><p>CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{A2BF0F6E-3C7E-DEAE-4166-C94EDE356866}\InprocServer32 -> no filepath</p><p>CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{F57AEC8E-0F8D-F866-ABE0-8EC6A26B5B17}\InprocServer32 -> no filepath</p><p>ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)</p><p>ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2015-04-15] ()</p><p>ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File</p><p>ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.)</p><p>ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2016-07-08] (Apple Inc.)</p><p>ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)</p><p>ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)</p><p>ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)</p><p>ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)</p><p>ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-10-23] (WinZip Computing, S.L.)</p><p>ContextMenuHandlers1-x32: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zlavscan.dll [2016-12-13] (Check Point Software Technologies Ltd.)</p><p>ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)</p><p>ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File</p><p>ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.)</p><p>ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()</p><p>ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)</p><p>ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-10-23] (WinZip Computing, S.L.)</p><p>ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-08-21] (NVIDIA Corporation)</p><p>ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)</p><p>ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File</p><p>ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.)</p><p>ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)</p><p>ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)</p><p>ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => D:\Program Files\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)</p><p>ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)</p><p>ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)</p><p>ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)</p><p>ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)</p><p>ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-10-23] (WinZip Computing, S.L.)</p><p>ContextMenuHandlers6-x32: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zlavscan.dll [2016-12-13] (Check Point Software Technologies Ltd.)</p><p></p><p>==================== Scheduled Tasks (Whitelisted) =============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>Task: {00AA7AE5-4309-42E8-8043-F4DFAAD78CF0} - System32\Tasks\{59457D45-B68B-45CF-8266-9E7B3F5B58C9} => C:\Windows\system32\pcalua.exe -a "H:\Install\PC\Superior2 Sound Installer.exe" -d H:\Install\PC</p><p>Task: {026DC887-D0FB-405D-BCCA-C55945C7CB04} - \Kodjumho -> No File <==== ATTENTION</p><p>Task: {079735A0-6521-4690-A96F-AAF0B44EBA37} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {0CC98B24-517B-47A8-88C4-D4DD5C8DE47D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)</p><p>Task: {1435724C-6FFA-4B03-AD05-A3B62261D3B2} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {1E240503-CC39-4E0F-B8F5-8D8C46715E4D} - System32\Tasks\{236335D2-3A55-42E4-A971-837296759A21} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\01 SXS_SHORT-NOTES.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone"</p><p>Task: {210C4210-AA22-442E-86CF-6F687D70C239} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {28442908-5506-430D-9FB3-75E47F434471} - \{047D0C47-780A-080F-0511-7A7F050F110A} -> No File <==== ATTENTION</p><p>Task: {2B84A9D3-C807-4593-98DE-2822AFF3ABCB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {2C6486BB-592D-4AF0-A927-D7C2028AFC69} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {31061FDF-91C8-4CA3-923C-6101161EF77D} - System32\Tasks\{ABA1E552-6574-4FF3-BC03-28D39C7539D7} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\20 SXS_PERF-LEGATO.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone"</p><p>Task: {375E39F3-5623-421F-AC48-CF0BF1C581B9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)</p><p>Task: {3792F492-07D4-4EF6-AB8C-62738D899274} - System32\Tasks\{EE8FF74A-9B2C-4495-821B-8DE3DD145A67} => C:\Windows\system32\pcalua.exe -a H:\Autorun.exe -d H:\</p><p>Task: {39F56DDD-4D9E-4904-90F3-CC26B6128D90} - \{E208AF12-66D7-432F-9045-B0FD50ECD83A} -> No File <==== ATTENTION</p><p>Task: {3B205672-E76B-4716-BD81-EF9396E075FC} - System32\Tasks\{DD5DBC33-9D37-40FC-97B1-2D165BBDE246} => C:\Windows\system32\pcalua.exe -a "G:\Programs\DAMN NFO Viewer v2.10.0032\DAMN_NFO_Viewer_v2.10.0032-RC3-SETUP.exe" -d "G:\Programs\DAMN NFO Viewer v2.10.0032"</p><p>Task: {3BE8F574-E839-497F-B75F-822D996C9A02} - System32\Tasks\{653E7597-3391-45CE-800D-8A80C9E1C388} => C:\Windows\system32\pcalua.exe -a "K:\Programs & Applications\Studio Hardware & Software\mp3gain-win-full-1_2_5.exe" -d "K:\Programs & Applications\Studio Hardware & Software"</p><p>Task: {4549D647-718A-4B2C-AF7B-9FD26ECC30ED} - System32\Tasks\{E11DA0A3-9760-4DC0-AC1C-2CC0667475F8} => C:\Program Files (x86)\Toontrack\Toontrack solo\Toontrack solo.exe [2008-06-09] ()</p><p>Task: {53CFDBC2-922C-44A3-9BA1-5AE0E2ADF197} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)</p><p>Task: {54FC67E2-C676-41FB-A70E-8BF2DE5C71AA} - System32\Tasks\{C4E1566B-2C80-4F53-9A3F-5DAD14BBC5DD} => G:\Programs\Microsoft_Office_2016_Professional_Plus_X64-CYGiSO\setup.exe</p><p>Task: {58FAB717-5A52-478A-B04E-52B3C48BA2B6} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe</p><p>Task: {604A7C65-A4B0-40BB-94BA-2D11EF6B8FF6} - System32\Tasks\{2587172E-AABC-4630-AD18-E30ED5CDC2AD} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://<a href="http://www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=12002" target="_blank">www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=12002</a></p><p>Task: {684DE866-A4BC-45FB-972A-B1206D29081A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {68F0681E-4364-47A2-A649-B64D2860F3B6} - System32\Tasks\Games\UpdateCheck_S-1-5-21-410353808-276946841-1970485010-1001</p><p>Task: {6A391AAF-63DF-4F5F-BFBF-497F27124C58} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-16] (Microsoft Corporation)</p><p>Task: {6E8452CC-BE21-43D3-ABC7-2C94FA197AA5} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe</p><p>Task: {7B986C97-60BC-4360-ACFC-86DCF4F28767} - \{22F1EA4C-C05C-4DC8-A11B-A18168359FE0} -> No File <==== ATTENTION</p><p>Task: {7F3D7981-765B-45C2-BF3D-3B662F472CF8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-10] (Google Inc.)</p><p>Task: {85C7506D-8DB6-464F-8095-744B5DC39B1B} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-09-16] (Microsoft Corporation)</p><p>Task: {85FFE57D-F98B-4787-899F-D3A502BE145F} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG)</p><p>Task: {87F9125B-9362-4D75-9F84-8198004CA07A} - \{A3ECDC93-1E93-05F7-12DA-7BC870255262} -> No File <==== ATTENTION</p><p>Task: {89537E23-B5DF-4A3B-851F-10FA8BCFF758} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {8B7F597A-FED3-451F-8DDA-40F933F71409} - System32\Tasks\Games\UpdateCheck_S-1-5-21-410353808-276946841-1970485010-1007</p><p>Task: {8CBC47FF-F947-43E5-914B-0A43C4FC849F} - System32\Tasks\{DA7E6DAB-D52E-4BE6-B6D8-639A57AB24EA} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\00 SXS_BASIC_SET.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone"</p><p>Task: {8E3629E3-0480-478A-8886-B08DF473A10A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)</p><p>Task: {92938B5C-885D-4948-930F-8719DBA2EC6E} - System32\Tasks\{AF5B4091-E048-4B12-9F05-5F8DBA30ACE2} => C:\Windows\system32\pcalua.exe -a "D:\Program Files\Uninstall.exe" -c "D:\Program Files\install.log" -u</p><p>Task: {958DDA92-4345-46F1-93E8-5A6281809939} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-08] (Microsoft Corporation)</p><p>Task: {97D351B4-2BBD-4996-9140-EB3290185D51} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {99176077-4CCB-4F3A-9892-9B5E5F7C502C} - System32\Tasks\{272E233C-7F40-4E61-A706-976DEAC9E2C8} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD2\Windows\Setup.exe" -d "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD2\Windows"</p><p>Task: {998107AF-F4A6-4FDC-A888-1C77C380CEA4} - System32\Tasks\{8ED19CC9-F77E-4BFE-B054-73D3DF538B86} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\02 SXS_LONG-NOTES.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone"</p><p>Task: {9BEBA379-338D-4DA2-BF2A-A0F9BA91EB19} - System32\Tasks\{2D637B00-9B4E-4B92-A20F-BB0580421494} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\STEINB~1\VSTPLU~1\\GROOVE~1\UNWISE.EXE -c C:\PROGRA~2\STEINB~1\VSTPLU~1\\GROOVE~1\INSTALL.LOG</p><p>Task: {A0A7F8E6-30A9-49D8-9F04-06EF358D8CCB} - System32\Tasks\{CED6B9FB-54D5-428B-8255-75DD83A2C4E4} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD1\Windows\Setup.exe" -d "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD1\Windows"</p><p>Task: {A2123DF6-0494-4040-A5E7-927768D1978C} - System32\Tasks\{9C651694-524F-4C9F-8391-5BCE7BA1735F} => C:\Windows\system32\pcalua.exe -a "D:\Temp\wzfaaf\Brooks Wackerman Grooves SD2\Brooks Wackerman Grooves MIDI Library Installer TT.exe" -d "I:\Programs\Studio Hardware\ToonTrack Superior Drummer" <==== ATTENTION</p><p>Task: {A41550CD-3B7B-4F84-A384-69DD272D581B} - System32\Tasks\WiseCleaner\WDCSkipUAC => D:\Program Files\Wise Disk Cleaner\WiseDiskCleaner.exe [2017-07-28] (WiseCleaner.com)</p><p>Task: {A484FE3B-80DB-4192-9FC3-F53A75F2B6ED} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)</p><p>Task: {A4917308-D421-4F4C-82E0-AFF5C3396A53} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {A63C6DE4-945B-42AF-A610-A2E2FCF68FD9} - System32\Tasks\FreeFileViewerUpdateChecker => C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe [2015-12-30] (Bitberry Software) <==== ATTENTION</p><p>Task: {A78A2D83-AB24-402F-B491-E89191F2D6E9} - System32\Tasks\{6CAEE919-7C0A-4430-B65C-01D4750B8ACA} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\Spectrasonics Omnisphere 1.0\Omn CD1\Windows\setup.exe" -d "G:\Programs\Studio Hardware\Spectrasonics Omnisphere 1.0\Omn CD1\Windows"</p><p>Task: {AE14BC9C-2AA8-40DE-8153-ED234F1502C0} - System32\Tasks\{A00650AD-3906-4E61-B76C-EB8E125E37D1} => C:\Installer\{90160000-0011-0000-1000-0000000FF1CE}\accicons.exe <==== ATTENTION</p><p>Task: {B14E6CB2-25E4-45DB-BD40-5927FDD7F966} - \{59C80A6B-1D6A-4D8C-8D43-598C599A3BB1} -> No File <==== ATTENTION</p><p>Task: {B914130D-A555-428C-B7ED-910777C68BCD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)</p><p>Task: {B9311606-F1FD-49AF-9AEB-1054A326C954} - System32\Tasks\Red Giant Link => C:\Program Files\Red Giant Link\Red Giant Link.exe</p><p>Task: {B9476EE5-22D3-45F8-8FD4-B0ED4F77294A} - System32\Tasks\AdobeAAMUpdater-1.0-StephenButler-StephenDJButler => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)</p><p>Task: {BA42DA6E-5B78-4B75-ABF7-569E3501CF88} - System32\Tasks\{D13FF914-A5AC-4334-947A-748F58BB0BDC} => C:\Windows\system32\pcalua.exe -a "G:\Programs\WinAVI iPod PSP 3GP MP4 Video Converter\winavi_ipod_video_converter.exe" -d "G:\Programs\WinAVI iPod PSP 3GP MP4 Video Converter"</p><p>Task: {BB2AFEC2-7BCB-4134-ABD3-A1A6ADE7E1F2} - \SMDCDPVEUTMSAHBG -> No File <==== ATTENTION</p><p>Task: {C0B1603B-768A-4F39-B801-3665E7C96273} - \{3B795F3C-9CDC-4C8A-B336-C2BF69055898} -> No File <==== ATTENTION</p><p>Task: {D048549C-FF5F-4DBB-939B-7947FCECEFE0} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {D18B05C4-9C6C-4D63-A323-B714422F6497} - System32\Tasks\{8DC8517C-4498-4B84-9834-CCCC941181C1} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\MagicISO\MagicISO.exe -d "K:\Games\The Movies" -c K:\Games\The Movies\The Movies.iso</p><p>Task: {D2346F50-6969-4980-AC4A-64E7F731D4C1} - System32\Tasks\{284E4932-522E-4C17-AD3F-CF93395A0F51} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\DeskthemepackInstaller.exe" -d "C:\Program Files"</p><p>Task: {D421E98F-5680-44C5-8DAE-BF9D2437F893} - System32\Tasks\{F70A9E80-9D32-48BF-AFE8-E60CCBB72286} => C:\Windows\system32\pcalua.exe -a D:\Downloads\ASIO4ALL_2_14_English.exe -d D:\Downloads</p><p>Task: {D641C94F-29FA-480F-8D41-61C1FF5BAE40} - System32\Tasks\{F60C56C6-78A4-4748-A63A-3B50ED2B537F} => C:\Windows\system32\pcalua.exe -a C:\Users\StephenDJButler\AppData\Roaming\Modinstaller\MCModinstaller.exe -d C:\Users\StephenDJButler\AppData\Roaming\Modinstaller</p><p>Task: {DB193BC4-9918-4497-AF2B-F52A2F1D4EFE} - System32\Tasks\{0F88EB0B-608D-4B1E-888F-A26B0672C3D2} => C:\Windows\system32\pcalua.exe -a D:\Downloads\WM9Codecs.exe -d D:\Downloads</p><p>Task: {DF96CCC8-2F59-42E0-8003-AF2F5BF98790} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-10] (Google Inc.)</p><p>Task: {E34BC5D0-E9C2-4756-89DA-961779E211FB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)</p><p>Task: {E4DCE070-B1FA-4443-B912-FF71C8C0DC66} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-16] (Microsoft Corporation)</p><p>Task: {E6EC356F-C895-4116-AA53-23743E61B1E3} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe</p><p>Task: {E790E07D-925E-463F-99F0-93EE464EF931} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-08] (Microsoft Corporation)</p><p>Task: {F61631DF-A27D-4968-A902-EEFB48BE5968} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2017-11-24] (Easeware)</p><p>Task: {FC68C3C1-E148-4BE4-B56E-763B1EA11ED9} - System32\Tasks\{02CEB6CD-82A0-4C79-8B9D-32DD08CDB707} => C:\Windows\system32\pcalua.exe -a "D:\Downloads\MC Modinstaller 5.0.8.exe" -d D:\Downloads</p><p>Task: {FE57AC17-3349-44B7-9BDF-226DE12EA266} - System32\Tasks\{68329553-A5CC-414E-A6F3-BC50D8716DD0} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\MusicLab\MusicLab Virtual MIDI Driver\Uninstall.exe" -c "C:\Program Files\MusicLab\MusicLab Virtual MIDI Driver\install.log" -u</p><p>Task: {FF2EDAEA-5F18-44AA-8C51-2578A265561B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-16] (Microsoft Corporation)</p><p></p><p>(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)</p><p></p><p>Task: C:\Windows\Tasks\AdobeAAMUpdater-1.0-StephenButler-StephenDJButler.job => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe</p><p>Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe</p><p>Task: C:\Windows\Tasks\FreeFileViewerUpdateChecker.job => C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe <==== ATTENTION</p><p></p><p>==================== Shortcuts & WMI ========================</p><p></p><p>(The entries could be listed to be restored or removed.)</p><p></p><p></p><p>ShortcutWithArgument: C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Amazon Storywriter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmcnhpcghhifadgblhkonelnmbenkeep</p><p>ShortcutWithArgument: C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\FLV Player.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=dhogabmliblgpadclikpkjfnnipeebjm</p><p>ShortcutWithArgument: C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\MyMusicCloud.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=plaelelbkmommhmjlepigoiepmdaihbk</p><p></p><p>==================== Loaded Modules (Whitelisted) ==============</p><p></p><p>2017-07-13 20:50 - 2017-07-13 20:50 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll</p><p>2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll</p><p>2016-10-25 12:46 - 2018-09-12 12:45 - 001315024 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll</p><p>2017-08-08 10:05 - 2010-08-19 17:43 - 000386344 ____C () C:\Program Files\Cyberlink\Shared files\RichVideo64.exe</p><p>2016-07-24 16:43 - 2016-03-09 17:18 - 000025088 _____ () D:\Program Files\Samsung Link\JniSys.dll</p><p>2016-07-24 16:43 - 2016-03-09 17:18 - 002513920 _____ () D:\Program Files\Samsung Link\scone_proxy.dll</p><p>2016-07-24 16:43 - 2016-03-09 17:18 - 002436096 _____ () D:\Program Files\Samsung Link\scone_stub.dll</p><p>2013-12-21 11:25 - 2013-12-21 11:25 - 000036864 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\JNIInterface.dll</p><p>2013-12-21 11:26 - 2013-12-21 11:26 - 000144384 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\ASFAPI.dll</p><p>2013-12-21 11:27 - 2013-12-21 11:27 - 000018944 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\MediaDB_Manager.dll</p><p>2013-10-22 09:52 - 2013-10-22 09:52 - 000030720 _____ () C:\Windows\system32\MediaDB64.dll</p><p>2013-10-22 09:52 - 2013-10-22 09:52 - 000908800 _____ () C:\Windows\system32\ContentDirectoryPresenter64.dll</p><p>2013-12-21 11:27 - 2013-12-21 11:27 - 000521728 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\DMS_Manager.dll</p><p>2013-07-23 19:19 - 2013-07-23 19:19 - 000049152 _____ () C:\Windows\system32\boost_date_time-vc90-mt-1_47.dll</p><p>2013-07-23 19:19 - 2013-07-23 19:19 - 000016896 _____ () C:\Windows\system32\boost_system-vc90-mt-1_47.dll</p><p>2013-07-23 19:19 - 2013-07-23 19:19 - 000058880 _____ () C:\Windows\system32\boost_thread-vc90-mt-1_47.dll</p><p>2013-07-23 19:19 - 2013-07-23 19:19 - 000299520 _____ () C:\Windows\system32\boost_serialization-vc90-mt-1_47.dll</p><p>2018-09-15 15:06 - 2018-08-06 14:20 - 002769768 ____C () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll</p><p>2018-09-15 15:06 - 2018-07-24 12:32 - 002681424 ____C () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll</p><p>2017-10-18 22:51 - 2017-10-18 22:51 - 000598528 ____N () C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll</p><p>2015-04-15 21:13 - 2015-04-15 21:13 - 000222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll</p><p>2018-06-27 07:03 - 2018-09-12 12:45 - 101252304 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll</p><p>2018-06-27 07:03 - 2018-09-12 12:45 - 002673360 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll</p><p>2018-06-27 07:03 - 2018-09-12 12:45 - 000138960 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll</p><p>2018-09-18 05:04 - 2018-09-15 09:26 - 005110616 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll</p><p>2018-09-18 05:04 - 2018-09-15 09:26 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll</p><p>2018-09-11 16:26 - 2018-09-11 16:26 - 031305728 _____ () C:\Users\StephenDJButler\AppData\Local\Google\Chrome\User Data\PepperFlash\31.0.0.108\pepflashplayer.dll</p><p>2016-08-02 02:24 - 2016-08-02 02:24 - 000865232 _____ () C:\Program Files (x86)\CheckPoint\ZoneAlarm\avsys\kpcengine.2.3.dll</p><p>2016-05-14 15:26 - 2016-03-23 11:02 - 000061968 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll</p><p>2016-05-14 15:26 - 2016-03-23 11:02 - 000110608 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll</p><p>2013-12-11 16:46 - 2013-12-11 16:46 - 001114624 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll</p><p>2013-10-22 09:48 - 2013-10-22 09:48 - 000707072 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll</p><p>2013-10-24 16:53 - 2013-10-24 16:53 - 000107008 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll</p><p>2013-12-11 16:46 - 2013-12-11 16:46 - 000102400 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll</p><p>2013-12-11 16:46 - 2013-12-11 16:46 - 000077312 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000520234 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000450560 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 005717504 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000028672 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000147456 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000012288 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 004671488 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000070656 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000686080 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000152064 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll</p><p>2013-10-25 19:49 - 2013-10-25 19:49 - 000028160 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000064000 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000366592 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000289792 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000023040 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll</p><p>2013-12-11 16:45 - 2013-12-11 16:45 - 000017920 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll</p><p>2013-10-25 19:53 - 2013-10-25 19:53 - 000117248 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll</p><p>2013-10-25 19:53 - 2013-10-25 19:53 - 001033728 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll</p><p>2013-12-11 16:45 - 2013-12-11 16:45 - 000134144 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000290816 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000024064 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll</p><p>2013-10-25 19:53 - 2013-10-25 19:53 - 000012288 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000024064 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000399826 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll</p><p>2013-10-25 19:48 - 2013-10-25 19:48 - 000013824 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll</p><p>2013-10-24 16:53 - 2013-10-24 16:53 - 000032768 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll</p><p>2013-04-19 16:38 - 2013-04-19 16:38 - 000055808 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll</p><p>2013-07-23 19:18 - 2013-07-23 19:18 - 000227840 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll</p><p>2013-07-23 19:18 - 2013-07-23 19:18 - 000038912 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll</p><p>2013-07-23 19:18 - 2013-07-23 19:18 - 000012800 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll</p><p>2013-07-23 19:18 - 2013-07-23 19:18 - 000046592 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll</p><p>2013-02-14 19:42 - 2013-02-14 19:42 - 000044032 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll</p><p>2017-01-27 17:57 - 2014-05-13 13:04 - 000109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl</p><p>2017-01-27 17:57 - 2014-05-13 13:04 - 000416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl</p><p>2017-01-27 17:57 - 2014-05-13 13:04 - 000167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl</p><p>2017-01-27 17:57 - 2012-08-23 11:38 - 000574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll</p><p>2017-01-27 17:58 - 2012-04-03 18:06 - 000565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll</p><p>2016-10-25 12:46 - 2018-09-12 12:45 - 001032912 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll</p><p></p><p>==================== Alternate Data Streams (Whitelisted) =========</p><p></p><p>(If an entry is included in the fixlist, only the ADS will be removed.)</p><p></p><p>AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]</p><p>AlternateDataStreams: C:\ProgramData\TEMP:C8B8CEBD [122]</p><p></p><p>==================== Safe Mode (Whitelisted) ===================</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)</p><p></p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Fuunwyd => ""="service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"</p><p>HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"</p><p></p><p>==================== Association (Whitelisted) ===============</p><p></p><p>(If an entry is included in the fixlist, the registry item will be restored to default or removed.)</p><p></p><p></p><p>==================== Internet Explorer trusted/restricted ===============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry.)</p><p></p><p></p><p>==================== Hosts content: ==========================</p><p></p><p>(If needed Hosts: directive could be included in the fixlist to reset Hosts.)</p><p></p><p>2009-07-14 03:34 - 2017-08-18 11:14 - 000001272 _____ C:\Windows\system32\Drivers\etc\hosts</p><p></p><p>127.0.0.1 activate.adobe.com</p><p>127.0.0.1 practivate.adobe.com</p><p>127.0.0.1 lmlicenses.wip4.adobe.com</p><p>127.0.0.1 lm.licenses.adobe.com</p><p>127.0.0.1 lmlicenses.wip4.adobe.com</p><p>127.0.0.1 lm.licenses.adobe.com</p><p>127.0.0.1 down.baidu2016.com</p><p>127.0.0.1 123.sogou.com</p><p>127.0.0.1 <a href="http://www.czzsyzgm.com" target="_blank">www.czzsyzgm.com</a></p><p>127.0.0.1 <a href="http://www.czzsyzxl.com" target="_blank">www.czzsyzxl.com</a></p><p>127.0.0.1 license.piriform.com</p><p></p><p>==================== Other Areas ============================</p><p></p><p>(Currently there is no automatic fix for this section.)</p><p></p><p>HKU\S-1-5-21-410353808-276946841-1970485010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg</p><p>DNS Servers: 8.8.8.8 - 8.8.4.4</p><p>HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)</p><p>Windows Firewall is disabled.</p><p></p><p>==================== MSCONFIG/TASK MANAGER disabled items ==</p><p></p><p>MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FAH.lnk => C:\Windows\pss\FAH.lnk.CommonStartup</p><p>MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Drive Manager Real-Time.lnk => C:\Windows\pss\Samsung Drive Manager Real-Time.lnk.CommonStartup</p><p>MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Update Notifier.lnk => C:\Windows\pss\Update Notifier.lnk.CommonStartup</p><p>MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Preloader.lnk => C:\Windows\pss\WinZip Preloader.lnk.CommonStartup</p><p>MSCONFIG\startupfolder: C:^Users^StephenDJButler^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup</p><p>MSCONFIG\startupfolder: C:^Users^StephenDJButler^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^RemotePC.lnk => C:\Windows\pss\RemotePC.lnk.Startup</p><p>MSCONFIG\startupfolder: C:^Users^StephenDJButler^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Send to OneNote.lnk => C:\Windows\pss\Send to OneNote.lnk.Startup</p><p>MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"</p><p>MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"</p><p>MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin</p><p>MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray</p><p>MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon</p><p>MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR</p><p>MSCONFIG\startupreg: Clarus Drive Manager => D:\Program Files (x86)\Drive Manager.exe -Hide</p><p>MSCONFIG\startupreg: Dropbox => </p><p>MSCONFIG\startupreg: EPLTarget => </p><p>MSCONFIG\startupreg: GoogleChromeAutoLaunch_AFE13420CF4FA7B6C35B1BB4F8D5F3CD => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5</p><p>MSCONFIG\startupreg: iCloudServices => "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"</p><p>MSCONFIG\startupreg: IJNetworkScannerSelectorEX => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE</p><p>MSCONFIG\startupreg: ISW => "C:\Program Files (x86)\CheckPoint\AKL\AkSA.exe" /icon="hidden"</p><p>MSCONFIG\startupreg: iTunesHelper => "D:\Program Files\iTunesHelper.exe"</p><p>MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"</p><p>MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey</p><p>MSCONFIG\startupreg: OneDrive => "C:\Users\StephenDJButler\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background</p><p>MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime</p><p>MSCONFIG\startupreg: RemoteView5 Tray => "D:\Program Files (x86)\Remote PC\rvagtray.exe" /background</p><p>MSCONFIG\startupreg: Samsung Link => "D:\Program Files\Samsung Link\Samsung Link Tray Agent.exe"</p><p>MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"</p><p>MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart</p><p>MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun</p><p>MSCONFIG\startupreg: Spotify => "C:\Users\StephenDJButler\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized</p><p>MSCONFIG\startupreg: Spotify Web Helper => C:\Users\StephenDJButler\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart</p><p>MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"</p><p>MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent</p><p>MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"</p><p>MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe</p><p>MSCONFIG\startupreg: uTorrent => "C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED</p><p></p><p>==================== FirewallRules (Whitelisted) ===============</p><p></p><p>(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)</p><p></p><p>FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe</p><p>FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe</p><p>FirewallRules: [{5870EDF4-12D5-406B-99DC-E53D7B0656C5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe</p><p>FirewallRules: [{7F7503D7-5B42-4C3E-959A-695BC744BDA7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe</p><p>FirewallRules: [{43D959FD-3824-4C90-8104-BE054A1C2B55}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe</p><p>FirewallRules: [{03C05545-DB85-4568-B0DD-41BD1B26F404}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe</p><p>FirewallRules: [{606B1C6D-D12D-4B1B-B7FA-0CEE0775A6C8}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe</p><p>FirewallRules: [{D5440EA7-1177-4C7B-9F93-0EA16CD3AB6B}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe</p><p>FirewallRules: [{1DB47914-895C-4064-94DE-0106D75C887F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe</p><p>FirewallRules: [{005820A5-2F4F-4B2F-B7FB-91A6C511FA3E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe</p><p>FirewallRules: [{73479C39-4E4E-4A87-914A-6AA8896DA0BD}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe</p><p>FirewallRules: [{E73252A7-4745-4150-92DE-FAB8127A1C34}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe</p><p>FirewallRules: [{50EF1966-A63C-4259-ADC9-B36466EEC917}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe</p><p>FirewallRules: [{B262E06D-BB6A-494D-A0EC-5AC5B40DFFCE}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe</p><p>FirewallRules: [{7191BFBA-7F9D-4879-80E8-D03BCDD049AF}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe</p><p>FirewallRules: [{0CE811B4-9188-4F47-A4A6-CFE927135EC2}] => (Allow) LPort=7935</p><p>FirewallRules: [{9F99C7C1-F44B-4867-902B-0FAA9EB156F9}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe</p><p>FirewallRules: [{CCF7E9EA-2413-4D60-B532-2E4365E7CBD2}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe</p><p>FirewallRules: [{BE48206E-0271-45AB-80F1-04F27E249EF9}] => (Allow) LPort=7935</p><p>FirewallRules: [{B804A056-DF7E-4C4C-A3CD-956045978806}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\RegTool.exe</p><p>FirewallRules: [{E0D9188C-7B51-47A2-8729-73155FB79338}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\RegTool.exe</p><p>FirewallRules: [{78DB2176-194F-49DA-95C0-57B0CC081BE4}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\Sibelius.exe</p><p>FirewallRules: [{882CCE61-575B-4FB1-92E9-3ADE722F1313}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\Sibelius.exe</p><p>FirewallRules: [{07CF4D3B-F080-4188-897C-115A4572C563}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{876DB049-B241-4458-958E-85A925FFF0B6}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{AAAA4292-E3D4-4C0B-8256-4BC300B92CD2}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{B94FD6EB-471F-4673-8DF1-B7E014B77F5B}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{786ED8F6-C628-4156-BE85-3407FB3D6D41}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{063DC7C0-926D-4E48-9E5C-AB0D4C67B3CD}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{4465BBD9-9C36-423D-AEBF-3AF0B029DED3}] => (Allow) D:\Program Files\Common7\IDE\devenv.exe</p><p>FirewallRules: [{74F4A12F-8EFC-48A7-AA24-5C2CB8C3515D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [{AD2E3BFE-01E2-48C9-BE31-285D26096FD0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [{068FE23A-A13B-4FFA-A891-C51DABB2F6FA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [{E451E385-0D2A-4ACA-962D-9CC1A2814FFE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe</p><p>FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe</p><p>FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe</p><p>FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe</p><p>FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe</p><p>FirewallRules: [{DE576EB4-9F38-40A3-BA7D-97BD106D60F2}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe</p><p>FirewallRules: [{F62F13B4-899E-4951-9CA9-DDE35DB2D8A8}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe</p><p>FirewallRules: [{4597D40E-2816-47E8-9573-8A6FC6183432}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe</p><p>FirewallRules: [{C46037A4-9540-4E1C-9FBA-237A7AB49742}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe</p><p>FirewallRules: [{6600E596-D686-4411-BCA3-9D45A94BDFDE}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe</p><p>FirewallRules: [{B621AF86-41D9-499C-855D-6A5962DB72C9}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe</p><p>FirewallRules: [{4773CC73-C81E-4771-BB40-8EB336991803}] => (Allow) C:\Windows\SysWOW64\rundll32.exe</p><p>FirewallRules: [{8A9E3923-B731-4C62-B062-DF8D9B079D78}] => (Allow) C:\Windows\SysWOW64\rundll32.exe</p><p>FirewallRules: [{E9B0E072-981D-4D79-86E0-8072C28CF1A3}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe</p><p>FirewallRules: [{2F909F99-8A84-4451-AF36-F082791C8B93}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe</p><p>FirewallRules: [{5E495571-346C-4DF5-9615-32845EE14AE0}] => (Allow) D:\Program Files\Samsung Link\Samsung Link.exe</p><p>FirewallRules: [{E3AA751A-9F4A-460E-A57A-468F6141A449}] => (Allow) D:\Program Files\Samsung Link\Samsung Link Tray Agent.exe</p><p>FirewallRules: [{44D611A6-30A0-4883-939C-87B259FD7979}] => (Allow) D:\Program Files\Samsung Link\Samsung Link.exe</p><p>FirewallRules: [{0251E134-2431-4AD8-9165-DB5F50BF019F}] => (Allow) D:\Program Files\Samsung Link\Samsung Link Tray Agent.exe</p><p>FirewallRules: [{FD40B76E-E7D4-42B2-9817-10C7CF8F44FC}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe</p><p>FirewallRules: [{67F47649-9ACE-4C1F-A938-1E15018B5CC4}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe</p><p>FirewallRules: [{9230F8D5-8FB5-4A94-8AAB-FDACE3641885}] => (Allow) LPort=8743</p><p>FirewallRules: [{4E763FB2-4E84-4F1C-A3D2-BD19CE91329A}] => (Allow) LPort=8643</p><p>FirewallRules: [{DDBF9CFE-E682-4A67-A607-F3CA1D2B894F}] => (Allow) LPort=7676</p><p>FirewallRules: [{23E29820-8A21-49FD-9369-A5CDE6AA22AB}] => (Allow) LPort=7679</p><p>FirewallRules: [{DD10C6C5-B06E-4FAF-8118-C4AB23F1B77F}] => (Allow) LPort=24234</p><p>FirewallRules: [{62740960-2816-4570-AC9D-307A8C567C55}] => (Allow) LPort=7900</p><p>FirewallRules: [{B011DE0C-B6D6-453B-A866-4C682187B1EE}] => (Allow) LPort=1900</p><p>FirewallRules: [{FDCD8080-7C5C-4976-8402-513190BC2837}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe</p><p>FirewallRules: [{93682770-1DCC-4B2A-B2F6-9AFF4EAC7F95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe</p><p>FirewallRules: [{D7278831-126C-4E6A-A97A-8C81C4C8B257}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe</p><p>FirewallRules: [{D763509F-483E-4CA8-93CF-FA43241ADD10}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe</p><p>FirewallRules: [{002E78D6-6744-441F-A962-FCB4A84E787D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe</p><p>FirewallRules: [{924A0A3F-6A89-44D8-8101-4F62BBCFC8C3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe</p><p>FirewallRules: [{0549CFA7-8427-4D5F-BD3B-311FF135D83F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe</p><p>FirewallRules: [{442945B3-B6C2-47F1-9710-47211C08615B}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe</p><p>FirewallRules: [{ED7CAE45-1175-4625-8CDD-C47B3BBCE521}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe</p><p>FirewallRules: [{17D9E8A9-380C-429F-9605-3F030613DDF8}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe</p><p>FirewallRules: [{B3645B20-CA0C-45B6-A04A-3B5F77244361}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe</p><p>FirewallRules: [{D199C8EA-9BBC-4B22-ACC9-2E9F9CD51322}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe</p><p>FirewallRules: [{C9A3009B-ECCF-496A-ACC5-E9A0F422358E}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe</p><p>FirewallRules: [{E7253858-1600-4D8A-9ABD-2026139A31A7}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe</p><p>FirewallRules: [{559D1635-BD1E-42EE-ABF7-3B5BD2ADE6EC}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe</p><p>FirewallRules: [{9FA57F27-EB5A-4A14-8CE8-4CA754786774}] => (Allow) D:\Program Files\iTunes.exe</p><p>FirewallRules: [{6316E686-5EF7-4A7D-A6AC-127AA1A29CF0}] => (Allow) D:\Program Files\PowerDirector10\PDR10.EXE</p><p>FirewallRules: [{02A6048A-C1F9-45F4-8AB8-4A3BD1174B51}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Fernbus Simulator\Fernbus\Binaries\Win64\Fernbus-Win64-Shipping.exe</p><p>FirewallRules: [{C16111E4-51D8-423C-AA9E-D1EA7C4FD2E4}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Fernbus Simulator\Fernbus\Binaries\Win64\Fernbus-Win64-Shipping.exe</p><p>FirewallRules: [{8093957B-5554-4AC4-AB14-CABA88684867}] => (Allow) D:\Program Files\Lightworks\lightworks.exe</p><p>FirewallRules: [{AAB33636-7B92-43AA-A68D-5341ACE7FC25}] => (Allow) D:\Program Files\Lightworks\lightworks.exe</p><p>FirewallRules: [{BCEBCAEB-6FB7-4A49-B2F5-F0FAF7D973A7}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe</p><p>FirewallRules: [{12831134-6200-465A-A39F-EC0E425FB7C7}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe</p><p>FirewallRules: [{5C61A747-A367-4363-8F62-BE0B996023CD}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe</p><p>FirewallRules: [{6AAF160C-DE1F-4AD5-93D0-DCF4F8473ED6}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe</p><p>FirewallRules: [{CCC00415-403F-4480-A392-B4ECC0D590F4}] => (Allow) C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe</p><p>FirewallRules: [{71D1D4EE-3B09-4F0C-B177-671E2EE2F699}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe</p><p>FirewallRules: [{69C03C8B-EE64-49E2-AB57-3730A09DBD9A}] => (Allow) K:\SteamLibrary\steamapps\common\FSX\fsx.exe</p><p>FirewallRules: [{FB4E6F38-D6B2-4A1A-987A-277A4E62A080}] => (Allow) K:\SteamLibrary\steamapps\common\FSX\fsx.exe</p><p>FirewallRules: [{284AEA07-A5FA-46ED-A73A-FD6D45D4295A}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\FSX\fsx.exe</p><p>FirewallRules: [{250C3E90-4725-4F99-885B-CFC99FE21BAE}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\FSX\fsx.exe</p><p>FirewallRules: [{354F7DFD-84F8-492A-80F6-0DBC9F711154}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\SCS Workshop Uploader\bin\win_x86\mod_tools.exe</p><p>FirewallRules: [{5F365FB6-B5C9-426D-BF4E-85DB6CE2D63A}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\SCS Workshop Uploader\bin\win_x86\mod_tools.exe</p><p>FirewallRules: [{CE3A7B06-C620-4406-801E-99316AB69318}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{AD77D355-7265-42D7-AA84-94DC30F7E0F4}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe</p><p>FirewallRules: [{7A282F70-2293-4309-819A-65A68FC4AA04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe</p><p>FirewallRules: [{1F9A2715-F5FE-43DC-8329-768D3228C2D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe</p><p>FirewallRules: [{71E432F1-BF4F-478F-9F1A-87740D143B6E}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe</p><p>FirewallRules: [{7A68DD59-7622-4DB9-B66D-C7346918E043}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe</p><p>FirewallRules: [{F70DCAD4-84D0-4D8B-B672-D08002ABB1A2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe</p><p>FirewallRules: [{F683F9F6-BD61-446A-95EB-86C5B5EF6830}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe</p><p>FirewallRules: [{777B26A1-AF1A-43B3-A208-91EDCC07D5C5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe</p><p>FirewallRules: [{3035ED98-F541-4EB9-B957-B42CB96B798B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe</p><p>FirewallRules: [{6313F37A-9CE9-4048-B44B-31FD48D63B74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe</p><p>FirewallRules: [{D6627B84-A3B1-490C-9E4C-A567BDB17272}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe</p><p>FirewallRules: [{DDF33E1B-7641-4EA9-BECA-29D30F366AB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe</p><p>FirewallRules: [{688491FE-A2A1-40E1-982E-E1CDA83A3B47}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe</p><p>FirewallRules: [{FC7B31EA-2AD4-465D-B8A0-DC9B03A98891}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe</p><p>FirewallRules: [{0C801797-33F9-4C1D-A1A4-FB3B66934B00}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe</p><p>FirewallRules: [{6F3B10B5-E7BB-4D28-8D3C-01A0B2906531}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe</p><p>FirewallRules: [{082228CC-3160-42E5-B42F-64E1DBF47B38}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe</p><p>FirewallRules: [{5B0A2006-725B-46C7-A30A-00F7228E3757}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe</p><p>FirewallRules: [{0E1ABAEA-A1E4-4361-BBD3-9E38219EE58F}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe</p><p>StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access</p><p>StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service</p><p>StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater</p><p>StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service</p><p></p><p>==================== Restore Points =========================</p><p></p><p>19-09-2018 20:05:27 Windows Update</p><p>20-09-2018 19:36:09 Windows Update</p><p>21-09-2018 15:59:19 Checkpoint by HitmanPro</p><p>21-09-2018 16:00:52 Checkpoint by HitmanPro</p><p></p><p>==================== Faulty Device Manager Devices =============</p><p></p><p>Name: 802.11n Wireless LAN Card</p><p>Description: 802.11n Wireless LAN Card</p><p>Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}</p><p>Manufacturer: Ralink Technology, Corp.</p><p>Service: netr28x</p><p>Problem: : This device is disabled. (Code 22)</p><p>Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.</p><p></p><p>Name: PS/2 Compatible Mouse</p><p>Description: PS/2 Compatible Mouse</p><p>Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}</p><p>Manufacturer: Microsoft</p><p>Service: i8042prt</p><p>Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)</p><p>Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.</p><p>Devices stay in this state if they have been prepared for removal.</p><p>After you remove the device, this error disappears.Remove the device, and this error should be resolved.</p><p></p><p>Name: High Definition Audio Device</p><p>Description: High Definition Audio Device</p><p>Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}</p><p>Manufacturer: Microsoft</p><p>Service: HdAudAddService</p><p>Problem: : This device is disabled. (Code 22)</p><p>Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.</p><p></p><p>Name: Standard PS/2 Keyboard</p><p>Description: Standard PS/2 Keyboard</p><p>Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}</p><p>Manufacturer: (Standard keyboards)</p><p>Service: i8042prt</p><p>Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)</p><p>Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.</p><p>Devices stay in this state if they have been prepared for removal.</p><p>After you remove the device, this error disappears.Remove the device, and this error should be resolved.</p><p></p><p>Name: MusicLab Virtual MIDI Device</p><p>Description: MusicLab Virtual MIDI Device</p><p>Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}</p><p>Manufacturer: MusicLab,Inc.</p><p>Service: mlkumidi</p><p>Problem: : This device is disabled. (Code 22)</p><p>Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.</p><p></p><p></p><p>==================== Event log errors: =========================</p><p></p><p>Application errors:</p><p>==================</p><p>Error: (09/21/2018 04:34:15 PM) (Source: SideBySide) (EventID: 80) (User: )</p><p>Description: Activation context generation failed for "D:\Program Files\Audacity\audacity.exe".Error in manifest or policy file "" on line .</p><p>A component version required by the application conflicts with another component version already active.</p><p>Conflicting components are:.</p><p>Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.</p><p>Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.</p><p></p><p>Error: (09/21/2018 04:14:29 PM) (Source: SideBySide) (EventID: 80) (User: )</p><p>Description: Activation context generation failed for "D:\Program Files\Audacity\audacity.exe".Error in manifest or policy file "" on line .</p><p>A component version required by the application conflicts with another component version already active.</p><p>Conflicting components are:.</p><p>Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.</p><p>Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.</p><p></p><p>Error: (09/21/2018 04:05:14 PM) (Source: Application Error) (EventID: 1000) (User: )</p><p>Description: Faulting application name: SDUpdate.exe, version: 2.4.40.94, time stamp: 0x53ad3eee</p><p>Faulting module name: KERNELBASE.dll, version: 6.1.7601.24231, time stamp: 0x5b6db2d4</p><p>Exception code: 0x0eedfade</p><p>Fault offset: 0x0000c54f</p><p>Faulting process id: 0x41b8</p><p>Faulting application start time: 0x01d451bc7f86dc12</p><p>Faulting application path: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe</p><p>Faulting module path: C:\Windows\syswow64\KERNELBASE.dll</p><p>Report Id: bdfd8050-bdaf-11e8-897b-2c41389bbf7c</p><p></p><p>Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: )</p><p>Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000003f4,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssvcPublisher,0,REG_BINARY,0000000001FCEF50.72). hr = 0x80070005, Access is denied.</p><p>.</p><p></p><p>Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: )</p><p>Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000015cc,(null),0,REG_BINARY,000000000B6AE2A0.72). hr = 0x80070005, Access is denied.</p><p>.</p><p></p><p></p><p>Operation:</p><p> BackupShutdown Event</p><p></p><p>Context:</p><p> Execution Context: Writer</p><p> Writer Class Id: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}</p><p> Writer Name: MSSearch Service Writer</p><p> Writer Instance ID: {4bceb2d0-52fe-4977-841c-598a8e06c69f}</p><p></p><p>Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: )</p><p>Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000118,(null),0,REG_BINARY,000000000236E200.72). hr = 0x80070005, Access is denied.</p><p>.</p><p></p><p></p><p>Operation:</p><p> BackupShutdown Event</p><p></p><p>Context:</p><p> Execution Context: Writer</p><p> Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}</p><p> Writer Name: System Writer</p><p> Writer Instance ID: {69cf6434-c521-4a38-b895-6a8a4b07f8a1}</p><p></p><p>Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: )</p><p>Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000880,(null),0,REG_BINARY,000000000475E540.72). hr = 0x80070005, Access is denied.</p><p>.</p><p></p><p></p><p>Operation:</p><p> BackupShutdown Event</p><p></p><p>Context:</p><p> Execution Context: Writer</p><p> Writer Class Id: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}</p><p> Writer Name: WMI Writer</p><p> Writer Instance ID: {97be7f1b-e3bc-4206-89a5-0167f9ffb22d}</p><p></p><p>Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: )</p><p>Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000200,SYSTEM\CurrentControlSet\Services\VSS\Diag\Shadow Copy Optimization Writer,0,REG_BINARY,0000000002B8EBD0.72). hr = 0x80070005, Access is denied.</p><p>.</p><p></p><p></p><p>Operation:</p><p> BackupShutdown Event</p><p></p><p>Context:</p><p> Execution Context: Writer</p><p> Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}</p><p> Writer Name: Shadow Copy Optimization Writer</p><p> Writer Instance ID: {2591f64c-fd1e-4a55-b053-437578d2d768}</p><p></p><p></p><p>System errors:</p><p>=============</p><p>Error: (09/21/2018 04:19:40 PM) (Source: SNMP) (EventID: 1500) (User: )</p><p>Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.</p><p></p><p>Error: (09/21/2018 04:16:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )</p><p>Description: The Windows Media Player Network Sharing Service service failed to start due to the following error: </p><p>The service did not start due to a logon failure.</p><p></p><p>Error: (09/21/2018 04:16:33 PM) (Source: Service Control Manager) (EventID: 7038) (User: )</p><p>Description: The WMPNetworkSvc service was unable to log on as NT AUTHORITY\NetworkService with the currently configured password due to the following error: </p><p>The request is not supported.</p><p></p><p></p><p>To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).</p><p></p><p>Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )</p><p>Description: The Software Protection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.</p><p></p><p>Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )</p><p>Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.</p><p></p><p>Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )</p><p>Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.</p><p></p><p>Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )</p><p>Description: The Spybot-S&D 2 Security Center Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.</p><p></p><p>Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )</p><p>Description: The SNMP Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.</p><p></p><p></p><p>Windows Defender:</p><p>===================================</p><p>Date: 2018-09-03 12:35:40.266</p><p>Description: </p><p>Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.</p><p>Signatures Attempted:Current</p><p>Error Code:0x80070002</p><p>Error description:The system cannot find the file specified. </p><p>Signature version:0.0.0.0</p><p>Engine version:0.0.0.0</p><p></p><p>Date: 2018-09-03 05:47:54.841</p><p>Description: </p><p>Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.</p><p>Signatures Attempted:Current</p><p>Error Code:0x80070002</p><p>Error description:The system cannot find the file specified. </p><p>Signature version:0.0.0.0</p><p>Engine version:0.0.0.0</p><p></p><p>Date: 2018-09-02 06:51:47.230</p><p>Description: </p><p>Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.</p><p>Signatures Attempted:Current</p><p>Error Code:0x80070002</p><p>Error description:The system cannot find the file specified. </p><p>Signature version:0.0.0.0</p><p>Engine version:0.0.0.0</p><p></p><p>CodeIntegrity:</p><p>===================================</p><p></p><p>Date: 2017-01-16 11:42:17.073</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>Date: 2017-01-16 11:42:17.041</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>Date: 2017-01-16 11:42:16.999</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>Date: 2017-01-16 11:42:16.966</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>Date: 2017-01-16 11:42:16.931</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>Date: 2017-01-16 11:40:52.074</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>Date: 2017-01-16 11:40:52.042</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>Date: 2017-01-16 11:40:51.995</p><p>Description: </p><p>Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.</p><p></p><p>==================== Memory info =========================== </p><p></p><p>Processor: Intel(R) Xeon(R) CPU W3565 @ 3.20GHz</p><p>Percentage of memory in use: 37%</p><p>Total physical RAM: 12271.22 MB</p><p>Available physical RAM: 7657.7 MB</p><p>Total Virtual: 24540.59 MB</p><p>Available Virtual: 18965.15 MB</p><p></p><p>==================== Drives ================================</p><p></p><p>Drive c: (WINDOWS) (Fixed) (Total:107.23 GB) (Free:3.48 GB) NTFS</p><p>Drive d: (Stephen Butler) (Fixed) (Total:931.51 GB) (Free:166.82 GB) NTFS</p><p>Drive e: (Repair disc Windows 7 64-bit) (CDROM) (Total:0.16 GB) (Free:0 GB) UDF</p><p>Drive f: (SAMSUNG) (Fixed) (Total:596.02 GB) (Free:119.72 GB) FAT32</p><p>Drive g: (SAMSUNG) (Fixed) (Total:2794.51 GB) (Free:16.35 GB) NTFS</p><p>Drive i: (TOSHIBA EXT) (Fixed) (Total:1863.01 GB) (Free:1671.63 GB) NTFS</p><p>Drive j: (Maxtor) (Fixed) (Total:931.51 GB) (Free:689.8 GB) NTFS</p><p>Drive k: (Maxtor) (Fixed) (Total:3725.9 GB) (Free:658.9 GB) NTFS</p><p></p><p>\\?\Volume{b24946ad-9ec6-11e5-baef-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.24 GB) NTFS</p><p>\\?\Volume{b24946ac-9ec6-11e5-baef-806e6f6e6963}\ (RECOVERY) (Fixed) (Total:11.72 GB) (Free:0.28 GB) NTFS</p><p></p><p>==================== MBR & Partition Table ==================</p><p></p><p>========================================================</p><p>Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: FD48F03B)</p><p>Partition 1: (Not Active) - (Size=11.7 GB) - (Type=27)</p><p>Partition 2: (Active) - (Size=300 MB) - (Type=07 NTFS)</p><p>Partition 3: (Not Active) - (Size=107.2 GB) - (Type=07 NTFS)</p><p></p><p>========================================================</p><p>Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 7C972B0F)</p><p>Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)</p><p></p><p>========================================================</p><p>Disk: 2 (Size: 931.5 GB) (Disk ID: 34AD9374)</p><p>Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)</p><p>Attempted reading MBR returned 0 bytes.</p><p> Could not read MBR for disk 3.</p><p></p><p>========================================================</p><p>Disk: 4 (Size: 596.2 GB) (Disk ID: B26DC721)</p><p>Partition 1: (Not Active) - (Size=596.2 GB) - (Type=0C)</p><p></p><p>========================================================</p><p>Disk: 5 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: C0EC1FA9)</p><p>Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)</p><p></p><p>========================================================</p><p>Disk: 6 (Size: 3726 GB) (Disk ID: 6A07B77A)</p><p></p><p>Partition: GPT.</p><p></p><p>==================== End of Addition.txt ============================</p></blockquote><p></p>
[QUOTE="Stephen Butler, post: 765810, member: 75137"] Hello again: This is the file [B]ADDITION.txt [/B]from my previous post: [B]Addition.txt:[/B] Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.09.2018 Ran by StephenDJButler (21-09-2018 16:40:50) Running from D:\Downloads Windows 7 Professional Service Pack 1 (X64) (2015-12-09 22:57:16) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-410353808-276946841-1970485010-500 - Administrator - Disabled) Gaming (S-1-5-21-410353808-276946841-1970485010-1007 - Administrator - Enabled) => C:\Users\Gaming Guest (S-1-5-21-410353808-276946841-1970485010-501 - Limited - Disabled) => C:\Users\Guest HomeGroupUser$ (S-1-5-21-410353808-276946841-1970485010-1002 - Limited - Enabled) Recording (S-1-5-21-410353808-276946841-1970485010-1008 - Administrator - Enabled) => C:\Users\Recording StephenDJButler (S-1-5-21-410353808-276946841-1970485010-1001 - Administrator - Enabled) => C:\Users\StephenDJButler ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AV: ZoneAlarm Extreme Security Antivirus (Enabled - Up to date) {23B6D20A-C2DE-B3F5-C67D-07ECD854E6A9} AS: ZoneAlarm Extreme Security Anti-Spyware (Enabled - Up to date) {98D733EE-E4E4-BC7B-FCCD-3C9EA3D3AC14} AS: Spybot - Search and Destroy (Enabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: ZoneAlarm Extreme Security Firewall (Enabled) {1B8D532F-88B1-B2AD-ED22-AED92687A1D2} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\uTorrent) (Version: 3.5.3.44428 - BitTorrent Inc.) Ableton Live 9 Suite (HKLM\...\{7597F2DC-003A-476E-9281-774AB112B7BE}) (Version: 9.0.0.0 - Ableton) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation) AllShare Framework DMS (HKLM\...\{83232C27-8C3F-44A5-9EB2-BB7161228ADD}) (Version: 1.3.23 - Samsung) Apple Application Support (64-bit) (HKLM\...\{BB109E24-EE90-485B-A28B-ADDEFB40540B}) (Version: 5.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.) Art Effects for PDR10 (HKLM\...\NewBlue Art Effects for PDR10) (Version: 2.0 - NewBlue) Autodesk 3ds Max 2016 (HKLM\...\{52B37EC7-D836-0410-0464-3C24BCED2010}) (Version: 18.0.873.0 - Autodesk) Hidden Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk) Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk) Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk) Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk) Autodesk Revit Interoperability for 3ds Max (HKLM\...\{0BB716E0-1600-0610-0000-097DC2F354DF}) (Version: 16.0.394.0 - Autodesk) Hidden Autodesk Revit Interoperability for 3ds Max (HKLM\...\Autodesk Revit Interoperability for 3ds Max ) (Version: 16.0.394.0 - Autodesk) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) calibre 64bit (HKLM\...\{54EFBCD2-A4FB-4C37-A720-9A8195EFC7B4}) (Version: 2.45.0 - Kovid Goyal) calibre 64bit (HKLM\...\{D7D0A0C9-6728-4FA3-B611-04FFDB739F97}) (Version: 2.83.0 - Kovid Goyal) CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform) CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.1129a - CyberLink Corp.) Hidden DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation) DirectX for Managed Code (HKLM\...\{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1) (Version: 1.0.0.0 - Sereby Corporation) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.07 - NVIDIA Corporation) Hidden Driver Easy 5.5.6 (HKLM\...\DriverEasy_is1) (Version: 5.5.6 - Easeware) dupeGuru (HKLM\...\{C11DACBD-8863-4AA4-94AD-708602F6F7EF}) (Version: 3.9.1 - Hardcoded Software) EPSON XP-600 Series Printer Uninstall (HKLM\...\EPSON XP-600 Series) (Version: - SEIKO EPSON Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.) HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.0.295 - SurfRight B.V.) iCloud (HKLM\...\{724A887F-2B55-4306-B6F9-8F0E7A04B1B5}) (Version: 5.2.2.87 - Apple Inc.) iTunes (HKLM\...\{02F95875-9527-49CC-B32F-970ADAEBD1EF}) (Version: 12.6.2.20 - Apple Inc.) Java 8 Update 172 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180172F0}) (Version: 8.0.1720.11 - Oracle Corporation) LatencyMon 6.51 (HKLM\...\LatencyMon_is1) (Version: - Resplendence Software Projects Sp.) Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes) MediaInfo 0.7.99 (HKLM\...\MediaInfo) (Version: 0.7.99 - MediaArea.net) MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.) Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - ) Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation) Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.10730.20102 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0006 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation) MusicBee 3.2 (HKLM-x32\...\MusicBee) (Version: 3.2 - Steven Mayall) MusicLab RealGuitar (64-bit) (HKLM\...\{C8B26887-0463-4441-8788-68496891D213}) (Version: 3.1.0.7127 - MusicLab, Inc.) Hidden MusicLab RealLPC (HKLM\...\{38209080-8888-4418-8117-D190FC71BF58}) (Version: 3.0 - MusicLab, Inc.) MusicLab Virtual Midi Driver (64-bit) (HKLM\...\{2B019162-86C7-4D14-AED0-2CB5110BA4FF}) (Version: 2.0.2.0 - MusicLab, Inc.) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA 3D Vision Driver 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.07 - NVIDIA Corporation) NVIDIA GeForce Experience 3.15.0.164 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.164 - NVIDIA Corporation) NVIDIA Graphics Driver 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.07 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation) NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden OpenIV (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\OpenIV) (Version: 3.0.1004 - .black/OpenIV Team) PowerDirector (HKLM\...\{E8C64028-08E5-4BF0-B1C0-DBAAC6A77DF1}) (Version: 10.00.0000 - CyberLink Corp.) Hidden REAPER (x64) (HKLM\...\REAPER) (Version: - ) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Revo Uninstaller Pro 3.1.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.8 - VS Revo Group, Ltd.) Samsung Link 2.0.0.1603091618 (HKLM\...\8474-7877-9059-0204) (Version: 2.0.0.1603091618 - Samsung Electronics Co.,Ltd) Spotify (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\Spotify) (Version: 1.0.80.474.gef6b503e - Spotify AB) UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden Universal CRT Tools x64 (HKLM\...\{4EE952FC-2888-39E8-75D5-E07FA9557985}) (Version: 10.1.10586.15 - Microsoft Corporation) Hidden Universe (HKLM\...\Universe Premium_is1) (Version: 1.6.0 CE - Team V.R) WebM Project Directshow Filters (HKU\S-1-5-21-410353808-276946841-1970485010-1001\...\webmdshow) (Version: - ) WhoCrashed 5.50 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.) Windows Media Player 64-bit Plug-in Fix (HKLM\...\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb) (Version: - ) WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) WinZip 20.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EF}) (Version: 20.0.11659 - WinZip Computing, S.L. ) ZAR X (HKLM\...\{85DA9B81-D7F9-4165-8E62-F776B57213F8}_is1) (Version: - [URL="http://www.z-a-recovery.com"]www.z-a-recovery.com[/URL]) ZoneAlarm Parental Controls (HKLM\...\{9D0D6B72-4C5C-498D-9A8A-DA53341E8BC1}) (Version: 7.2.6.1 - ContentWatch) Hidden ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\StephenDJButler\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => No File CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{22A8794C-E808-52FA-40C1-F0D8F63A947A}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{24734139-2E14-88F8-FDDF-194FDB2B19C4}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{A2BF0F6E-3C7E-DEAE-4166-C94EDE356866}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-410353808-276946841-1970485010-1001_Classes\CLSID\{F57AEC8E-0F8D-F866-ABE0-8EC6A26B5B17}\InprocServer32 -> no filepath ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2015-04-15] () ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2016-07-08] (Apple Inc.) ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.) ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-10-23] (WinZip Computing, S.L.) ContextMenuHandlers1-x32: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zlavscan.dll [2016-12-13] (Check Point Software Technologies Ltd.) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-10-23] (WinZip Computing, S.L.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-08-21] (NVIDIA Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.) ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-23] (MagicISO, Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => D:\Program Files\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group) ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.) ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal) ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2015-10-23] (WinZip Computing, S.L.) ContextMenuHandlers6-x32: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zlavscan.dll [2016-12-13] (Check Point Software Technologies Ltd.) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {00AA7AE5-4309-42E8-8043-F4DFAAD78CF0} - System32\Tasks\{59457D45-B68B-45CF-8266-9E7B3F5B58C9} => C:\Windows\system32\pcalua.exe -a "H:\Install\PC\Superior2 Sound Installer.exe" -d H:\Install\PC Task: {026DC887-D0FB-405D-BCCA-C55945C7CB04} - \Kodjumho -> No File <==== ATTENTION Task: {079735A0-6521-4690-A96F-AAF0B44EBA37} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation) Task: {0CC98B24-517B-47A8-88C4-D4DD5C8DE47D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {1435724C-6FFA-4B03-AD05-A3B62261D3B2} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation) Task: {1E240503-CC39-4E0F-B8F5-8D8C46715E4D} - System32\Tasks\{236335D2-3A55-42E4-A971-837296759A21} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\01 SXS_SHORT-NOTES.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone" Task: {210C4210-AA22-442E-86CF-6F687D70C239} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation) Task: {28442908-5506-430D-9FB3-75E47F434471} - \{047D0C47-780A-080F-0511-7A7F050F110A} -> No File <==== ATTENTION Task: {2B84A9D3-C807-4593-98DE-2822AFF3ABCB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation) Task: {2C6486BB-592D-4AF0-A927-D7C2028AFC69} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation) Task: {31061FDF-91C8-4CA3-923C-6101161EF77D} - System32\Tasks\{ABA1E552-6574-4FF3-BC03-28D39C7539D7} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\20 SXS_PERF-LEGATO.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone" Task: {375E39F3-5623-421F-AC48-CF0BF1C581B9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd) Task: {3792F492-07D4-4EF6-AB8C-62738D899274} - System32\Tasks\{EE8FF74A-9B2C-4495-821B-8DE3DD145A67} => C:\Windows\system32\pcalua.exe -a H:\Autorun.exe -d H:\ Task: {39F56DDD-4D9E-4904-90F3-CC26B6128D90} - \{E208AF12-66D7-432F-9045-B0FD50ECD83A} -> No File <==== ATTENTION Task: {3B205672-E76B-4716-BD81-EF9396E075FC} - System32\Tasks\{DD5DBC33-9D37-40FC-97B1-2D165BBDE246} => C:\Windows\system32\pcalua.exe -a "G:\Programs\DAMN NFO Viewer v2.10.0032\DAMN_NFO_Viewer_v2.10.0032-RC3-SETUP.exe" -d "G:\Programs\DAMN NFO Viewer v2.10.0032" Task: {3BE8F574-E839-497F-B75F-822D996C9A02} - System32\Tasks\{653E7597-3391-45CE-800D-8A80C9E1C388} => C:\Windows\system32\pcalua.exe -a "K:\Programs & Applications\Studio Hardware & Software\mp3gain-win-full-1_2_5.exe" -d "K:\Programs & Applications\Studio Hardware & Software" Task: {4549D647-718A-4B2C-AF7B-9FD26ECC30ED} - System32\Tasks\{E11DA0A3-9760-4DC0-AC1C-2CC0667475F8} => C:\Program Files (x86)\Toontrack\Toontrack solo\Toontrack solo.exe [2008-06-09] () Task: {53CFDBC2-922C-44A3-9BA1-5AE0E2ADF197} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {54FC67E2-C676-41FB-A70E-8BF2DE5C71AA} - System32\Tasks\{C4E1566B-2C80-4F53-9A3F-5DAD14BBC5DD} => G:\Programs\Microsoft_Office_2016_Professional_Plus_X64-CYGiSO\setup.exe Task: {58FAB717-5A52-478A-B04E-52B3C48BA2B6} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe Task: {604A7C65-A4B0-40BB-94BA-2D11EF6B8FF6} - System32\Tasks\{2587172E-AABC-4630-AD18-E30ED5CDC2AD} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://[URL="http://www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=12002"]www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=12002[/URL] Task: {684DE866-A4BC-45FB-972A-B1206D29081A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-09-12] (NVIDIA Corporation) Task: {68F0681E-4364-47A2-A649-B64D2860F3B6} - System32\Tasks\Games\UpdateCheck_S-1-5-21-410353808-276946841-1970485010-1001 Task: {6A391AAF-63DF-4F5F-BFBF-497F27124C58} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-16] (Microsoft Corporation) Task: {6E8452CC-BE21-43D3-ABC7-2C94FA197AA5} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe Task: {7B986C97-60BC-4360-ACFC-86DCF4F28767} - \{22F1EA4C-C05C-4DC8-A11B-A18168359FE0} -> No File <==== ATTENTION Task: {7F3D7981-765B-45C2-BF3D-3B662F472CF8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-10] (Google Inc.) Task: {85C7506D-8DB6-464F-8095-744B5DC39B1B} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-09-16] (Microsoft Corporation) Task: {85FFE57D-F98B-4787-899F-D3A502BE145F} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG) Task: {87F9125B-9362-4D75-9F84-8198004CA07A} - \{A3ECDC93-1E93-05F7-12DA-7BC870255262} -> No File <==== ATTENTION Task: {89537E23-B5DF-4A3B-851F-10FA8BCFF758} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-09-12] (NVIDIA Corporation) Task: {8B7F597A-FED3-451F-8DDA-40F933F71409} - System32\Tasks\Games\UpdateCheck_S-1-5-21-410353808-276946841-1970485010-1007 Task: {8CBC47FF-F947-43E5-914B-0A43C4FC849F} - System32\Tasks\{DA7E6DAB-D52E-4BE6-B6D8-639A57AB24EA} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\00 SXS_BASIC_SET.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone" Task: {8E3629E3-0480-478A-8886-B08DF473A10A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) Task: {92938B5C-885D-4948-930F-8719DBA2EC6E} - System32\Tasks\{AF5B4091-E048-4B12-9F05-5F8DBA30ACE2} => C:\Windows\system32\pcalua.exe -a "D:\Program Files\Uninstall.exe" -c "D:\Program Files\install.log" -u Task: {958DDA92-4345-46F1-93E8-5A6281809939} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-08] (Microsoft Corporation) Task: {97D351B4-2BBD-4996-9140-EB3290185D51} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation) Task: {99176077-4CCB-4F3A-9892-9B5E5F7C502C} - System32\Tasks\{272E233C-7F40-4E61-A706-976DEAC9E2C8} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD2\Windows\Setup.exe" -d "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD2\Windows" Task: {998107AF-F4A6-4FDC-A888-1C77C380CEA4} - System32\Tasks\{8ED19CC9-F77E-4BFE-B054-73D3DF538B86} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone\02 SXS_LONG-NOTES.exe" -d "G:\Programs\Studio Hardware\VSL.Horizon.Series.Saxophones.Giga.DVDR-DELiRiUM\Soprano Saxophone" Task: {9BEBA379-338D-4DA2-BF2A-A0F9BA91EB19} - System32\Tasks\{2D637B00-9B4E-4B92-A20F-BB0580421494} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\STEINB~1\VSTPLU~1\\GROOVE~1\UNWISE.EXE -c C:\PROGRA~2\STEINB~1\VSTPLU~1\\GROOVE~1\INSTALL.LOG Task: {A0A7F8E6-30A9-49D8-9F04-06EF358D8CCB} - System32\Tasks\{CED6B9FB-54D5-428B-8255-75DD83A2C4E4} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD1\Windows\Setup.exe" -d "G:\Programs\Studio Hardware\Spectrasonics Stylus RMX\DVD1\Windows" Task: {A2123DF6-0494-4040-A5E7-927768D1978C} - System32\Tasks\{9C651694-524F-4C9F-8391-5BCE7BA1735F} => C:\Windows\system32\pcalua.exe -a "D:\Temp\wzfaaf\Brooks Wackerman Grooves SD2\Brooks Wackerman Grooves MIDI Library Installer TT.exe" -d "I:\Programs\Studio Hardware\ToonTrack Superior Drummer" <==== ATTENTION Task: {A41550CD-3B7B-4F84-A384-69DD272D581B} - System32\Tasks\WiseCleaner\WDCSkipUAC => D:\Program Files\Wise Disk Cleaner\WiseDiskCleaner.exe [2017-07-28] (WiseCleaner.com) Task: {A484FE3B-80DB-4192-9FC3-F53A75F2B6ED} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.) Task: {A4917308-D421-4F4C-82E0-AFF5C3396A53} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation) Task: {A63C6DE4-945B-42AF-A610-A2E2FCF68FD9} - System32\Tasks\FreeFileViewerUpdateChecker => C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe [2015-12-30] (Bitberry Software) <==== ATTENTION Task: {A78A2D83-AB24-402F-B491-E89191F2D6E9} - System32\Tasks\{6CAEE919-7C0A-4430-B65C-01D4750B8ACA} => C:\Windows\system32\pcalua.exe -a "G:\Programs\Studio Hardware\Spectrasonics Omnisphere 1.0\Omn CD1\Windows\setup.exe" -d "G:\Programs\Studio Hardware\Spectrasonics Omnisphere 1.0\Omn CD1\Windows" Task: {AE14BC9C-2AA8-40DE-8153-ED234F1502C0} - System32\Tasks\{A00650AD-3906-4E61-B76C-EB8E125E37D1} => C:\Installer\{90160000-0011-0000-1000-0000000FF1CE}\accicons.exe <==== ATTENTION Task: {B14E6CB2-25E4-45DB-BD40-5927FDD7F966} - \{59C80A6B-1D6A-4D8C-8D43-598C599A3BB1} -> No File <==== ATTENTION Task: {B914130D-A555-428C-B7ED-910777C68BCD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.) Task: {B9311606-F1FD-49AF-9AEB-1054A326C954} - System32\Tasks\Red Giant Link => C:\Program Files\Red Giant Link\Red Giant Link.exe Task: {B9476EE5-22D3-45F8-8FD4-B0ED4F77294A} - System32\Tasks\AdobeAAMUpdater-1.0-StephenButler-StephenDJButler => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated) Task: {BA42DA6E-5B78-4B75-ABF7-569E3501CF88} - System32\Tasks\{D13FF914-A5AC-4334-947A-748F58BB0BDC} => C:\Windows\system32\pcalua.exe -a "G:\Programs\WinAVI iPod PSP 3GP MP4 Video Converter\winavi_ipod_video_converter.exe" -d "G:\Programs\WinAVI iPod PSP 3GP MP4 Video Converter" Task: {BB2AFEC2-7BCB-4134-ABD3-A1A6ADE7E1F2} - \SMDCDPVEUTMSAHBG -> No File <==== ATTENTION Task: {C0B1603B-768A-4F39-B801-3665E7C96273} - \{3B795F3C-9CDC-4C8A-B336-C2BF69055898} -> No File <==== ATTENTION Task: {D048549C-FF5F-4DBB-939B-7947FCECEFE0} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-09-12] (NVIDIA Corporation) Task: {D18B05C4-9C6C-4D63-A323-B714422F6497} - System32\Tasks\{8DC8517C-4498-4B84-9834-CCCC941181C1} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\MagicISO\MagicISO.exe -d "K:\Games\The Movies" -c K:\Games\The Movies\The Movies.iso Task: {D2346F50-6969-4980-AC4A-64E7F731D4C1} - System32\Tasks\{284E4932-522E-4C17-AD3F-CF93395A0F51} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\DeskthemepackInstaller.exe" -d "C:\Program Files" Task: {D421E98F-5680-44C5-8DAE-BF9D2437F893} - System32\Tasks\{F70A9E80-9D32-48BF-AFE8-E60CCBB72286} => C:\Windows\system32\pcalua.exe -a D:\Downloads\ASIO4ALL_2_14_English.exe -d D:\Downloads Task: {D641C94F-29FA-480F-8D41-61C1FF5BAE40} - System32\Tasks\{F60C56C6-78A4-4748-A63A-3B50ED2B537F} => C:\Windows\system32\pcalua.exe -a C:\Users\StephenDJButler\AppData\Roaming\Modinstaller\MCModinstaller.exe -d C:\Users\StephenDJButler\AppData\Roaming\Modinstaller Task: {DB193BC4-9918-4497-AF2B-F52A2F1D4EFE} - System32\Tasks\{0F88EB0B-608D-4B1E-888F-A26B0672C3D2} => C:\Windows\system32\pcalua.exe -a D:\Downloads\WM9Codecs.exe -d D:\Downloads Task: {DF96CCC8-2F59-42E0-8003-AF2F5BF98790} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-10] (Google Inc.) Task: {E34BC5D0-E9C2-4756-89DA-961779E211FB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation) Task: {E4DCE070-B1FA-4443-B912-FF71C8C0DC66} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-09-16] (Microsoft Corporation) Task: {E6EC356F-C895-4116-AA53-23743E61B1E3} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe Task: {E790E07D-925E-463F-99F0-93EE464EF931} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-08] (Microsoft Corporation) Task: {F61631DF-A27D-4968-A902-EEFB48BE5968} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2017-11-24] (Easeware) Task: {FC68C3C1-E148-4BE4-B56E-763B1EA11ED9} - System32\Tasks\{02CEB6CD-82A0-4C79-8B9D-32DD08CDB707} => C:\Windows\system32\pcalua.exe -a "D:\Downloads\MC Modinstaller 5.0.8.exe" -d D:\Downloads Task: {FE57AC17-3349-44B7-9BDF-226DE12EA266} - System32\Tasks\{68329553-A5CC-414E-A6F3-BC50D8716DD0} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\MusicLab\MusicLab Virtual MIDI Driver\Uninstall.exe" -c "C:\Program Files\MusicLab\MusicLab Virtual MIDI Driver\install.log" -u Task: {FF2EDAEA-5F18-44AA-8C51-2578A265561B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-16] (Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\AdobeAAMUpdater-1.0-StephenButler-StephenDJButler.job => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: C:\Windows\Tasks\FreeFileViewerUpdateChecker.job => C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe <==== ATTENTION ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Amazon Storywriter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmcnhpcghhifadgblhkonelnmbenkeep ShortcutWithArgument: C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\FLV Player.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=dhogabmliblgpadclikpkjfnnipeebjm ShortcutWithArgument: C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\MyMusicCloud.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=plaelelbkmommhmjlepigoiepmdaihbk ==================== Loaded Modules (Whitelisted) ============== 2017-07-13 20:50 - 2017-07-13 20:50 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-10-25 12:46 - 2018-09-12 12:45 - 001315024 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-08-08 10:05 - 2010-08-19 17:43 - 000386344 ____C () C:\Program Files\Cyberlink\Shared files\RichVideo64.exe 2016-07-24 16:43 - 2016-03-09 17:18 - 000025088 _____ () D:\Program Files\Samsung Link\JniSys.dll 2016-07-24 16:43 - 2016-03-09 17:18 - 002513920 _____ () D:\Program Files\Samsung Link\scone_proxy.dll 2016-07-24 16:43 - 2016-03-09 17:18 - 002436096 _____ () D:\Program Files\Samsung Link\scone_stub.dll 2013-12-21 11:25 - 2013-12-21 11:25 - 000036864 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\JNIInterface.dll 2013-12-21 11:26 - 2013-12-21 11:26 - 000144384 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\ASFAPI.dll 2013-12-21 11:27 - 2013-12-21 11:27 - 000018944 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\MediaDB_Manager.dll 2013-10-22 09:52 - 2013-10-22 09:52 - 000030720 _____ () C:\Windows\system32\MediaDB64.dll 2013-10-22 09:52 - 2013-10-22 09:52 - 000908800 _____ () C:\Windows\system32\ContentDirectoryPresenter64.dll 2013-12-21 11:27 - 2013-12-21 11:27 - 000521728 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\DMS_Manager.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 000049152 _____ () C:\Windows\system32\boost_date_time-vc90-mt-1_47.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 000016896 _____ () C:\Windows\system32\boost_system-vc90-mt-1_47.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 000058880 _____ () C:\Windows\system32\boost_thread-vc90-mt-1_47.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 000299520 _____ () C:\Windows\system32\boost_serialization-vc90-mt-1_47.dll 2018-09-15 15:06 - 2018-08-06 14:20 - 002769768 ____C () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2018-09-15 15:06 - 2018-07-24 12:32 - 002681424 ____C () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-10-18 22:51 - 2017-10-18 22:51 - 000598528 ____N () C:\Users\StephenDJButler\AppData\Local\MEGAsync\ShellExtX64.dll 2015-04-15 21:13 - 2015-04-15 21:13 - 000222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2018-06-27 07:03 - 2018-09-12 12:45 - 101252304 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2018-06-27 07:03 - 2018-09-12 12:45 - 002673360 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll 2018-06-27 07:03 - 2018-09-12 12:45 - 000138960 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll 2018-09-18 05:04 - 2018-09-15 09:26 - 005110616 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll 2018-09-18 05:04 - 2018-09-15 09:26 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll 2018-09-11 16:26 - 2018-09-11 16:26 - 031305728 _____ () C:\Users\StephenDJButler\AppData\Local\Google\Chrome\User Data\PepperFlash\31.0.0.108\pepflashplayer.dll 2016-08-02 02:24 - 2016-08-02 02:24 - 000865232 _____ () C:\Program Files (x86)\CheckPoint\ZoneAlarm\avsys\kpcengine.2.3.dll 2016-05-14 15:26 - 2016-03-23 11:02 - 000061968 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll 2016-05-14 15:26 - 2016-03-23 11:02 - 000110608 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll 2013-12-11 16:46 - 2013-12-11 16:46 - 001114624 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll 2013-10-22 09:48 - 2013-10-22 09:48 - 000707072 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll 2013-10-24 16:53 - 2013-10-24 16:53 - 000107008 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll 2013-12-11 16:46 - 2013-12-11 16:46 - 000102400 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll 2013-12-11 16:46 - 2013-12-11 16:46 - 000077312 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000520234 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000450560 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 005717504 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000028672 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000147456 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000012288 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 004671488 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000070656 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000686080 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000152064 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll 2013-10-25 19:49 - 2013-10-25 19:49 - 000028160 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000064000 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000366592 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000289792 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000023040 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll 2013-12-11 16:45 - 2013-12-11 16:45 - 000017920 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll 2013-10-25 19:53 - 2013-10-25 19:53 - 000117248 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll 2013-10-25 19:53 - 2013-10-25 19:53 - 001033728 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll 2013-12-11 16:45 - 2013-12-11 16:45 - 000134144 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000290816 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000024064 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll 2013-10-25 19:53 - 2013-10-25 19:53 - 000012288 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000024064 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000399826 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll 2013-10-25 19:48 - 2013-10-25 19:48 - 000013824 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll 2013-10-24 16:53 - 2013-10-24 16:53 - 000032768 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll 2013-04-19 16:38 - 2013-04-19 16:38 - 000055808 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 000227840 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 000038912 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 000012800 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 000046592 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll 2013-02-14 19:42 - 2013-02-14 19:42 - 000044032 ____C () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll 2017-01-27 17:57 - 2014-05-13 13:04 - 000109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2017-01-27 17:57 - 2014-05-13 13:04 - 000416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2017-01-27 17:57 - 2014-05-13 13:04 - 000167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2017-01-27 17:57 - 2012-08-23 11:38 - 000574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2017-01-27 17:58 - 2012-04-03 18:06 - 000565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2016-10-25 12:46 - 2018-09-12 12:45 - 001032912 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0] AlternateDataStreams: C:\ProgramData\TEMP:C8B8CEBD [122] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Fuunwyd => ""="service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2017-08-18 11:14 - 000001272 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 lmlicenses.wip4.adobe.com 127.0.0.1 lm.licenses.adobe.com 127.0.0.1 lmlicenses.wip4.adobe.com 127.0.0.1 lm.licenses.adobe.com 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 [URL="http://www.czzsyzgm.com"]www.czzsyzgm.com[/URL] 127.0.0.1 [URL="http://www.czzsyzxl.com"]www.czzsyzxl.com[/URL] 127.0.0.1 license.piriform.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-410353808-276946841-1970485010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\StephenDJButler\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FAH.lnk => C:\Windows\pss\FAH.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Drive Manager Real-Time.lnk => C:\Windows\pss\Samsung Drive Manager Real-Time.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Update Notifier.lnk => C:\Windows\pss\Update Notifier.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Preloader.lnk => C:\Windows\pss\WinZip Preloader.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^StephenDJButler^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup MSCONFIG\startupfolder: C:^Users^StephenDJButler^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^RemotePC.lnk => C:\Windows\pss\RemotePC.lnk.Startup MSCONFIG\startupfolder: C:^Users^StephenDJButler^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Send to OneNote.lnk => C:\Windows\pss\Send to OneNote.lnk.Startup MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: Clarus Drive Manager => D:\Program Files (x86)\Drive Manager.exe -Hide MSCONFIG\startupreg: Dropbox => MSCONFIG\startupreg: EPLTarget => MSCONFIG\startupreg: GoogleChromeAutoLaunch_AFE13420CF4FA7B6C35B1BB4F8D5F3CD => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 MSCONFIG\startupreg: iCloudServices => "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" MSCONFIG\startupreg: IJNetworkScannerSelectorEX => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE MSCONFIG\startupreg: ISW => "C:\Program Files (x86)\CheckPoint\AKL\AkSA.exe" /icon="hidden" MSCONFIG\startupreg: iTunesHelper => "D:\Program Files\iTunesHelper.exe" MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe" MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey MSCONFIG\startupreg: OneDrive => "C:\Users\StephenDJButler\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: RemoteView5 Tray => "D:\Program Files (x86)\Remote PC\rvagtray.exe" /background MSCONFIG\startupreg: Samsung Link => "D:\Program Files\Samsung Link\Samsung Link Tray Agent.exe" MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Spotify => "C:\Users\StephenDJButler\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized MSCONFIG\startupreg: Spotify Web Helper => C:\Users\StephenDJButler\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe" MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe MSCONFIG\startupreg: uTorrent => "C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{5870EDF4-12D5-406B-99DC-E53D7B0656C5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7F7503D7-5B42-4C3E-959A-695BC744BDA7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{43D959FD-3824-4C90-8104-BE054A1C2B55}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe FirewallRules: [{03C05545-DB85-4568-B0DD-41BD1B26F404}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe FirewallRules: [{606B1C6D-D12D-4B1B-B7FA-0CEE0775A6C8}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe FirewallRules: [{D5440EA7-1177-4C7B-9F93-0EA16CD3AB6B}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe FirewallRules: [{1DB47914-895C-4064-94DE-0106D75C887F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe FirewallRules: [{005820A5-2F4F-4B2F-B7FB-91A6C511FA3E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe FirewallRules: [{73479C39-4E4E-4A87-914A-6AA8896DA0BD}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe FirewallRules: [{E73252A7-4745-4150-92DE-FAB8127A1C34}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe FirewallRules: [{50EF1966-A63C-4259-ADC9-B36466EEC917}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{B262E06D-BB6A-494D-A0EC-5AC5B40DFFCE}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe FirewallRules: [{7191BFBA-7F9D-4879-80E8-D03BCDD049AF}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe FirewallRules: [{0CE811B4-9188-4F47-A4A6-CFE927135EC2}] => (Allow) LPort=7935 FirewallRules: [{9F99C7C1-F44B-4867-902B-0FAA9EB156F9}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe FirewallRules: [{CCF7E9EA-2413-4D60-B532-2E4365E7CBD2}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe FirewallRules: [{BE48206E-0271-45AB-80F1-04F27E249EF9}] => (Allow) LPort=7935 FirewallRules: [{B804A056-DF7E-4C4C-A3CD-956045978806}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\RegTool.exe FirewallRules: [{E0D9188C-7B51-47A2-8729-73155FB79338}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\RegTool.exe FirewallRules: [{78DB2176-194F-49DA-95C0-57B0CC081BE4}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\Sibelius.exe FirewallRules: [{882CCE61-575B-4FB1-92E9-3ADE722F1313}] => (Allow) C:\Program Files (x86)\Sibelius Software\Sibelius 6\Sibelius.exe FirewallRules: [{07CF4D3B-F080-4188-897C-115A4572C563}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{876DB049-B241-4458-958E-85A925FFF0B6}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AAAA4292-E3D4-4C0B-8256-4BC300B92CD2}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B94FD6EB-471F-4673-8DF1-B7E014B77F5B}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{786ED8F6-C628-4156-BE85-3407FB3D6D41}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{063DC7C0-926D-4E48-9E5C-AB0D4C67B3CD}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4465BBD9-9C36-423D-AEBF-3AF0B029DED3}] => (Allow) D:\Program Files\Common7\IDE\devenv.exe FirewallRules: [{74F4A12F-8EFC-48A7-AA24-5C2CB8C3515D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{AD2E3BFE-01E2-48C9-BE31-285D26096FD0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{068FE23A-A13B-4FFA-A891-C51DABB2F6FA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E451E385-0D2A-4ACA-962D-9CC1A2814FFE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [{DE576EB4-9F38-40A3-BA7D-97BD106D60F2}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{F62F13B4-899E-4951-9CA9-DDE35DB2D8A8}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{4597D40E-2816-47E8-9573-8A6FC6183432}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe FirewallRules: [{C46037A4-9540-4E1C-9FBA-237A7AB49742}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe FirewallRules: [{6600E596-D686-4411-BCA3-9D45A94BDFDE}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe FirewallRules: [{B621AF86-41D9-499C-855D-6A5962DB72C9}] => (Allow) D:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe FirewallRules: [{4773CC73-C81E-4771-BB40-8EB336991803}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{8A9E3923-B731-4C62-B062-DF8D9B079D78}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{E9B0E072-981D-4D79-86E0-8072C28CF1A3}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe FirewallRules: [{2F909F99-8A84-4451-AF36-F082791C8B93}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Grand Theft Auto V\GTA5.exe FirewallRules: [{5E495571-346C-4DF5-9615-32845EE14AE0}] => (Allow) D:\Program Files\Samsung Link\Samsung Link.exe FirewallRules: [{E3AA751A-9F4A-460E-A57A-468F6141A449}] => (Allow) D:\Program Files\Samsung Link\Samsung Link Tray Agent.exe FirewallRules: [{44D611A6-30A0-4883-939C-87B259FD7979}] => (Allow) D:\Program Files\Samsung Link\Samsung Link.exe FirewallRules: [{0251E134-2431-4AD8-9165-DB5F50BF019F}] => (Allow) D:\Program Files\Samsung Link\Samsung Link Tray Agent.exe FirewallRules: [{FD40B76E-E7D4-42B2-9817-10C7CF8F44FC}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe FirewallRules: [{67F47649-9ACE-4C1F-A938-1E15018B5CC4}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe FirewallRules: [{9230F8D5-8FB5-4A94-8AAB-FDACE3641885}] => (Allow) LPort=8743 FirewallRules: [{4E763FB2-4E84-4F1C-A3D2-BD19CE91329A}] => (Allow) LPort=8643 FirewallRules: [{DDBF9CFE-E682-4A67-A607-F3CA1D2B894F}] => (Allow) LPort=7676 FirewallRules: [{23E29820-8A21-49FD-9369-A5CDE6AA22AB}] => (Allow) LPort=7679 FirewallRules: [{DD10C6C5-B06E-4FAF-8118-C4AB23F1B77F}] => (Allow) LPort=24234 FirewallRules: [{62740960-2816-4570-AC9D-307A8C567C55}] => (Allow) LPort=7900 FirewallRules: [{B011DE0C-B6D6-453B-A866-4C682187B1EE}] => (Allow) LPort=1900 FirewallRules: [{FDCD8080-7C5C-4976-8402-513190BC2837}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{93682770-1DCC-4B2A-B2F6-9AFF4EAC7F95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{D7278831-126C-4E6A-A97A-8C81C4C8B257}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D763509F-483E-4CA8-93CF-FA43241ADD10}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{002E78D6-6744-441F-A962-FCB4A84E787D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{924A0A3F-6A89-44D8-8101-4F62BBCFC8C3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{0549CFA7-8427-4D5F-BD3B-311FF135D83F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{442945B3-B6C2-47F1-9710-47211C08615B}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe FirewallRules: [{ED7CAE45-1175-4625-8CDD-C47B3BBCE521}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe FirewallRules: [{17D9E8A9-380C-429F-9605-3F030613DDF8}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe FirewallRules: [{B3645B20-CA0C-45B6-A04A-3B5F77244361}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe FirewallRules: [{D199C8EA-9BBC-4B22-ACC9-2E9F9CD51322}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{C9A3009B-ECCF-496A-ACC5-E9A0F422358E}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{E7253858-1600-4D8A-9ABD-2026139A31A7}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{559D1635-BD1E-42EE-ABF7-3B5BD2ADE6EC}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{9FA57F27-EB5A-4A14-8CE8-4CA754786774}] => (Allow) D:\Program Files\iTunes.exe FirewallRules: [{6316E686-5EF7-4A7D-A6AC-127AA1A29CF0}] => (Allow) D:\Program Files\PowerDirector10\PDR10.EXE FirewallRules: [{02A6048A-C1F9-45F4-8AB8-4A3BD1174B51}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Fernbus Simulator\Fernbus\Binaries\Win64\Fernbus-Win64-Shipping.exe FirewallRules: [{C16111E4-51D8-423C-AA9E-D1EA7C4FD2E4}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Fernbus Simulator\Fernbus\Binaries\Win64\Fernbus-Win64-Shipping.exe FirewallRules: [{8093957B-5554-4AC4-AB14-CABA88684867}] => (Allow) D:\Program Files\Lightworks\lightworks.exe FirewallRules: [{AAB33636-7B92-43AA-A68D-5341ACE7FC25}] => (Allow) D:\Program Files\Lightworks\lightworks.exe FirewallRules: [{BCEBCAEB-6FB7-4A49-B2F5-F0FAF7D973A7}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe FirewallRules: [{12831134-6200-465A-A39F-EC0E425FB7C7}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe FirewallRules: [{5C61A747-A367-4363-8F62-BE0B996023CD}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe FirewallRules: [{6AAF160C-DE1F-4AD5-93D0-DCF4F8473ED6}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe FirewallRules: [{CCC00415-403F-4480-A392-B4ECC0D590F4}] => (Allow) C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe FirewallRules: [{71D1D4EE-3B09-4F0C-B177-671E2EE2F699}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe FirewallRules: [{69C03C8B-EE64-49E2-AB57-3730A09DBD9A}] => (Allow) K:\SteamLibrary\steamapps\common\FSX\fsx.exe FirewallRules: [{FB4E6F38-D6B2-4A1A-987A-277A4E62A080}] => (Allow) K:\SteamLibrary\steamapps\common\FSX\fsx.exe FirewallRules: [{284AEA07-A5FA-46ED-A73A-FD6D45D4295A}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\FSX\fsx.exe FirewallRules: [{250C3E90-4725-4F99-885B-CFC99FE21BAE}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\FSX\fsx.exe FirewallRules: [{354F7DFD-84F8-492A-80F6-0DBC9F711154}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\SCS Workshop Uploader\bin\win_x86\mod_tools.exe FirewallRules: [{5F365FB6-B5C9-426D-BF4E-85DB6CE2D63A}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\SCS Workshop Uploader\bin\win_x86\mod_tools.exe FirewallRules: [{CE3A7B06-C620-4406-801E-99316AB69318}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{AD77D355-7265-42D7-AA84-94DC30F7E0F4}] => (Allow) C:\Users\StephenDJButler\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7A282F70-2293-4309-819A-65A68FC4AA04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{1F9A2715-F5FE-43DC-8329-768D3228C2D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{71E432F1-BF4F-478F-9F1A-87740D143B6E}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{7A68DD59-7622-4DB9-B66D-C7346918E043}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{F70DCAD4-84D0-4D8B-B672-D08002ABB1A2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{F683F9F6-BD61-446A-95EB-86C5B5EF6830}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{777B26A1-AF1A-43B3-A208-91EDCC07D5C5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{3035ED98-F541-4EB9-B957-B42CB96B798B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{6313F37A-9CE9-4048-B44B-31FD48D63B74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{D6627B84-A3B1-490C-9E4C-A567BDB17272}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{DDF33E1B-7641-4EA9-BECA-29D30F366AB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{688491FE-A2A1-40E1-982E-E1CDA83A3B47}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FC7B31EA-2AD4-465D-B8A0-DC9B03A98891}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe FirewallRules: [{0C801797-33F9-4C1D-A1A4-FB3B66934B00}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe FirewallRules: [{6F3B10B5-E7BB-4D28-8D3C-01A0B2906531}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{082228CC-3160-42E5-B42F-64E1DBF47B38}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{5B0A2006-725B-46C7-A30A-00F7228E3757}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{0E1ABAEA-A1E4-4361-BBD3-9E38219EE58F}] => (Allow) D:\Euro Truck Simulator 2\Euro Truck Simulator 2\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Restore Points ========================= 19-09-2018 20:05:27 Windows Update 20-09-2018 19:36:09 Windows Update 21-09-2018 15:59:19 Checkpoint by HitmanPro 21-09-2018 16:00:52 Checkpoint by HitmanPro ==================== Faulty Device Manager Devices ============= Name: 802.11n Wireless LAN Card Description: 802.11n Wireless LAN Card Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Ralink Technology, Corp. Service: netr28x Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: PS/2 Compatible Mouse Description: PS/2 Compatible Mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Standard PS/2 Keyboard Description: Standard PS/2 Keyboard Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: MusicLab Virtual MIDI Device Description: MusicLab Virtual MIDI Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: MusicLab,Inc. Service: mlkumidi Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (09/21/2018 04:34:15 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "D:\Program Files\Audacity\audacity.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (09/21/2018 04:14:29 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Activation context generation failed for "D:\Program Files\Audacity\audacity.exe".Error in manifest or policy file "" on line . A component version required by the application conflicts with another component version already active. Conflicting components are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (09/21/2018 04:05:14 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: SDUpdate.exe, version: 2.4.40.94, time stamp: 0x53ad3eee Faulting module name: KERNELBASE.dll, version: 6.1.7601.24231, time stamp: 0x5b6db2d4 Exception code: 0x0eedfade Fault offset: 0x0000c54f Faulting process id: 0x41b8 Faulting application start time: 0x01d451bc7f86dc12 Faulting application path: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Faulting module path: C:\Windows\syswow64\KERNELBASE.dll Report Id: bdfd8050-bdaf-11e8-897b-2c41389bbf7c Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000003f4,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssvcPublisher,0,REG_BINARY,0000000001FCEF50.72). hr = 0x80070005, Access is denied. . Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x000015cc,(null),0,REG_BINARY,000000000B6AE2A0.72). hr = 0x80070005, Access is denied. . Operation: BackupShutdown Event Context: Execution Context: Writer Writer Class Id: {cd3f2362-8bef-46c7-9181-d62844cdc0b2} Writer Name: MSSearch Service Writer Writer Instance ID: {4bceb2d0-52fe-4977-841c-598a8e06c69f} Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000118,(null),0,REG_BINARY,000000000236E200.72). hr = 0x80070005, Access is denied. . Operation: BackupShutdown Event Context: Execution Context: Writer Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220} Writer Name: System Writer Writer Instance ID: {69cf6434-c521-4a38-b895-6a8a4b07f8a1} Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000880,(null),0,REG_BINARY,000000000475E540.72). hr = 0x80070005, Access is denied. . Operation: BackupShutdown Event Context: Execution Context: Writer Writer Class Id: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0} Writer Name: WMI Writer Writer Instance ID: {97be7f1b-e3bc-4206-89a5-0167f9ffb22d} Error: (09/21/2018 04:03:47 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine RegSetValueExW(0x00000200,SYSTEM\CurrentControlSet\Services\VSS\Diag\Shadow Copy Optimization Writer,0,REG_BINARY,0000000002B8EBD0.72). hr = 0x80070005, Access is denied. . Operation: BackupShutdown Event Context: Execution Context: Writer Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Writer Name: Shadow Copy Optimization Writer Writer Instance ID: {2591f64c-fd1e-4a55-b053-437578d2d768} System errors: ============= Error: (09/21/2018 04:19:40 PM) (Source: SNMP) (EventID: 1500) (User: ) Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. Error: (09/21/2018 04:16:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Media Player Network Sharing Service service failed to start due to the following error: The service did not start due to a logon failure. Error: (09/21/2018 04:16:33 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: The WMPNetworkSvc service was unable to log on as NT AUTHORITY\NetworkService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Software Protection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service. Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service. Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Spybot-S&D 2 Security Center Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service. Error: (09/21/2018 04:16:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The SNMP Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service. Windows Defender: =================================== Date: 2018-09-03 12:35:40.266 Description: Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted:Current Error Code:0x80070002 Error description:The system cannot find the file specified. Signature version:0.0.0.0 Engine version:0.0.0.0 Date: 2018-09-03 05:47:54.841 Description: Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted:Current Error Code:0x80070002 Error description:The system cannot find the file specified. Signature version:0.0.0.0 Engine version:0.0.0.0 Date: 2018-09-02 06:51:47.230 Description: Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures. Signatures Attempted:Current Error Code:0x80070002 Error description:The system cannot find the file specified. Signature version:0.0.0.0 Engine version:0.0.0.0 CodeIntegrity: =================================== Date: 2017-01-16 11:42:17.073 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2017-01-16 11:42:17.041 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2017-01-16 11:42:16.999 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2017-01-16 11:42:16.966 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2017-01-16 11:42:16.931 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2017-01-16 11:40:52.074 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2017-01-16 11:40:52.042 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2017-01-16 11:40:51.995 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Xeon(R) CPU W3565 @ 3.20GHz Percentage of memory in use: 37% Total physical RAM: 12271.22 MB Available physical RAM: 7657.7 MB Total Virtual: 24540.59 MB Available Virtual: 18965.15 MB ==================== Drives ================================ Drive c: (WINDOWS) (Fixed) (Total:107.23 GB) (Free:3.48 GB) NTFS Drive d: (Stephen Butler) (Fixed) (Total:931.51 GB) (Free:166.82 GB) NTFS Drive e: (Repair disc Windows 7 64-bit) (CDROM) (Total:0.16 GB) (Free:0 GB) UDF Drive f: (SAMSUNG) (Fixed) (Total:596.02 GB) (Free:119.72 GB) FAT32 Drive g: (SAMSUNG) (Fixed) (Total:2794.51 GB) (Free:16.35 GB) NTFS Drive i: (TOSHIBA EXT) (Fixed) (Total:1863.01 GB) (Free:1671.63 GB) NTFS Drive j: (Maxtor) (Fixed) (Total:931.51 GB) (Free:689.8 GB) NTFS Drive k: (Maxtor) (Fixed) (Total:3725.9 GB) (Free:658.9 GB) NTFS \\?\Volume{b24946ad-9ec6-11e5-baef-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.24 GB) NTFS \\?\Volume{b24946ac-9ec6-11e5-baef-806e6f6e6963}\ (RECOVERY) (Fixed) (Total:11.72 GB) (Free:0.28 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: FD48F03B) Partition 1: (Not Active) - (Size=11.7 GB) - (Type=27) Partition 2: (Active) - (Size=300 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=107.2 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 7C972B0F) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 931.5 GB) (Disk ID: 34AD9374) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) Attempted reading MBR returned 0 bytes. Could not read MBR for disk 3. ======================================================== Disk: 4 (Size: 596.2 GB) (Disk ID: B26DC721) Partition 1: (Not Active) - (Size=596.2 GB) - (Type=0C) ======================================================== Disk: 5 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: C0EC1FA9) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 6 (Size: 3726 GB) (Disk ID: 6A07B77A) Partition: GPT. ==================== End of Addition.txt ============================ [/QUOTE]
Insert quotes…
Verification
Post reply
Top