Task: {46F4A76D-5E21-4F12-85CA-D2D2B9105C5C} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION CustomCLSID: HKU\S-1-5-21-868416080-2989333274-3097345444-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\modes\AppData\Local\Microsoft\OneDrive\19.123.0624.0005\amd64\FileSyncShell64.dll => No File CustomCLSID: HKU\S-1-5-21-868416080-2989333274-3097345444-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\modes\AppData\Local\Microsoft\OneDrive\19.123.0624.0005\amd64\FileSyncShell64.dll => No File ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File FirewallRules: [{C32A390D-07FC-4D67-9F89-DF763E465C33}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe => No File FirewallRules: [{D45CAE3F-A625-42A9-98BC-A2D683622008}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{279143C8-DDC3-464F-A68F-F3F81C0F3C29}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe => No File FirewallRules: [{A8F4CD5B-FF62-4D12-8D79-27C4C7653EBC}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File FirewallRules: [{2FAD8EA1-A3BE-496F-B7D3-7E169C6E8C11}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File FirewallRules: [{DCC299CA-2781-40C5-B55B-6B219F09C82E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File FirewallRules: [{98471B40-0E5D-4B3E-B463-8001833B8D98}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File FirewallRules: [{134A6B6B-2FD0-4E88-BBA6-34275267B2F4}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File FirewallRules: [{79F04496-479F-4CD4-BEA5-2A8B6CE90893}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File FirewallRules: [{6AF6C46F-BD1C-48FE-9641-19727A325394}] => (Allow) C:\Program Files\Avid\Application Manager\jre\bin\java.exe => No File FirewallRules: [{B40C78A9-0986-4ED0-910F-042C5CBE9FF6}] => (Allow) C:\Program Files\Avid\Application Manager\AvidApplicationManager.exe => No File FirewallRules: [{71B2D83D-9C7A-485E-A408-102DB5E9678E}] => (Allow) C:\Program Files\Avid\Application Manager\AvidAppManHelper.exe => No File FirewallRules: [{1B904211-3A1F-4C07-BF45-8BF55CA4254A}] => (Allow) C:\Program Files\Avid\Pro Tools FirstProToolsFirst.exe => No File CMD: mkdir C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer CMD: mkdir C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database CMD: DISM /Online /Cleanup-Image /RestoreHealth CMD: type C:\Windows\Logs\DISM\dism.log C:\Windows\Logs\DISM\dism.log CMD: SFC /scannow CMD: findstr /c:"[SR]" \windows\logs\cbs\cbs.log CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" Reboot: