Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

FRST64.exe


  • Please log in to reply

#1
bartfarkle

bartfarkle

    New Member

  • Member
  • Pip
  • 3 posts

Hi guys, and thank you RKinner for pointing me in the correct direction. One clue, I think, I could be wrong, is I set the "guest account" to disabled and put a 

password on it. I read through the FRST text files and I can see where someone re-opened the Guest account to be able to login remotely. I may be reading

that wrong, so that's why I would like the experts to give it a read since they know what they're looking at. I know just enough to get myself into trouble. I have built

computers for myself and friends since the early '90s back when we ran dual Voodoo video cards SLI and 133MHz CPU and 16MB Ram! Anyways, what i'm trying

to say is I'm a hardware guy and software was a little easier to figure out back then, but now, one has to research every System file with Microsoft to see if it's legit

or Bogus and there are thousands. I'm just glad I found you experts and this tattletail program that you know what you're looking for. I will take to heart any advice

you see fit to send my way. You may find nothing, but we will see. Thanks again for all the help. It doesn't go unappreciated. Thank you.

Files next:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.07.2018
Ran by Killer (15-07-2018 19:26:38)
Running from C:\Users\Killer\Downloads
Windows 7 Professional Service Pack 1 (X64) (2017-06-03 11:07:53)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3381375812-2662650081-4155099547-500 - Administrator - Enabled) => C:\Users\Administrator
Guest (S-1-5-21-3381375812-2662650081-4155099547-501 - Limited - Disabled)
Killer (S-1-5-21-3381375812-2662650081-4155099547-1001 - Administrator - Enabled) => C:\Users\Killer
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton Security (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}
AS: Norton Security (Enabled - Up to date) {589C5C7B-A77A-1B8E-C99B-B02AE9B836F0}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
. . (HKLM\...\{569F29BA-2D46-439B-8B7C-01D999B9201D}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{9F460796-0348-4B11-BCA0-714C4B85E3D7}) (Version: 3.1.2.2 - Intel) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Acronis True Image WD Edition (HKLM-x32\...\{CEAC6D9F-944A-40F7-AB5D-A7412AF9CED9}) (Version: 19.0.33 - Acronis)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
aspi (HKLM-x32\...\{015E4B8A-29B5-4AE3-BD08-38220FADFF4C}) (Version: 3.00.0008.0000 - Eastman Kodak Company) Hidden
ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.6.0.5 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.6.0.5 - ASUSTek COMPUTER INC.)
ASUS Wireless Router Device Discovery Utility (HKLM-x32\...\{09CDCA35-23FF-4ED6-AFDA-BBD55235CE4B}) (Version: 1.4.8.0 - ASUS)
audiosamples (HKLM-x32\...\{2ADD318F-B560-4D64-9A2B-0196FCF103BD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamsamples (HKLM-x32\...\{E35466C4-2C85-4718-801E-761E18ACDD91}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamtools_ia64fre (HKLM-x32\...\{B875D436-48A7-42CE-A105-23A7F65B9A60}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamtools_x64fre (HKLM-x32\...\{BD33DB46-D5EE-4529-8854-7161F4A87720}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamtools_x86fre (HKLM-x32\...\{62BEC6D1-0287-4272-BFC4-C7C1A422B718}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Bing Rewards Client Installer (HKLM-x32\...\{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}) (Version: 16.0.345.0 - Microsoft Corporation) Hidden
biometricsamples (HKLM-x32\...\{49B35B72-04FF-478D-842E-DBC7A5E68285}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
biometrictools_x64fre (HKLM-x32\...\{DC0B9B4B-3198-4F0F-8A2D-1235ED539D53}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
biometrictools_x86fre (HKLM-x32\...\{5B86F724-E2A0-47B6-805A-88D873175EFB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothsamples (HKLM-x32\...\{28E0E806-0461-4E12-B272-465766FF94FB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothtools_ia64fre (HKLM-x32\...\{E6E836AB-EC50-48EA-9208-374A982F28F2}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothtools_x64fre (HKLM-x32\...\{4FBF748A-AF57-487E-8A74-A32710938A7C}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothtools_x86fre (HKLM-x32\...\{AB99CA8E-0BA0-4AE7-A9AF-26D97D70A570}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bpd_scan (HKLM-x32\...\{0E52A52C-E120-461C-AA1B-21B045BEE842}) (Version: 3.00.0000 - Hewlett-Packard) Hidden
buildsamples (HKLM-x32\...\{99870CAE-4D57-42F2-9427-AC88F33FC8C3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
buildtools_ia64fre (HKLM-x32\...\{D1ABCCBA-5525-48B2-9D13-F6D4B6CE4749}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
buildtools_x64fre (HKLM-x32\...\{E5052212-DAF0-4BD2-A28E-EF9B9A1D3D81}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
buildtools_x86fre (HKLM-x32\...\{34600C75-5EF7-476C-A897-531078A304C3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bussamples (HKLM-x32\...\{5BF31BC3-EA1C-4905-9FF1-0FFBE5C4099B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
cancelsample (HKLM-x32\...\{4DF9AF39-93A8-45BD-AB41-6577969C4AE0}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
CCHelp (HKLM-x32\...\{9D1CF8B6-17B3-4832-B062-2C2DD0B57B04}) (Version: 3.00.0010.0000 - Easlman Kodak Company) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.40 - Piriform)
CCScore (HKLM-x32\...\{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}) (Version: 3.00.0020.0001 - Eastman Kodak) Hidden
chkinftool_x86fre (HKLM-x32\...\{5008655B-381C-4C45-BF2F-E1998DDED2C5}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID CPU-Z 1.82.1 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.82.1 - ) <==== ATTENTION
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.4105.01 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
debugfiles_win7 (HKLM-x32\...\{3ECC5DE9-FF75-4EDD-8D46-6E4A59603E16}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden
Device Simulation Framework 1.0.1 (HKLM\...\{C7966AB3-A8D9-48D5-B7DF-922674C40098}) (Version: 1.0.1 - Microsoft)
DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
dfx_ia64fre (HKLM-x32\...\{7ED7AA72-49BE-40FB-89C4-F1DBAAC16F01}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
dfx_x64fre (HKLM-x32\...\{984E6987-6A7E-4F2D-AF7F-68BBB3BD68AD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
dfx_x86fre (HKLM-x32\...\{86DE5D5D-7F44-4D9E-803C-4298732C16A3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.11 - NVIDIA Corporation) Hidden
displaysamples (HKLM-x32\...\{A541122D-7159-40B6-991D-A8A89006DB91}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
DocMgr (HKLM-x32\...\{92A51949-EE4C-466D-AAF0-99E74A49A63F}) (Version: 140.0.65.000 - Hewlett-Packard) Hidden
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 140.0.100.000 - Hewlett-Packard) Hidden
drvtools_ia64fre (HKLM-x32\...\{725943A7-97C3-4E7D-841E-7E6FBAABF64B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
drvtools_x64fre (HKLM-x32\...\{B086FEC7-E6B5-4E03-B7DC-60D5D0787174}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
drvtools_x86fre (HKLM-x32\...\{8BF161B5-1065-4457-8C7C-76366914033A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
DSF-KitSetup (HKLM-x32\...\{BFBDD199-81A2-4BFA-9581-D2EA1716B546}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
dsfsamples (HKLM-x32\...\{1231849C-2D95-46C5-BC1B-A7A4481A279F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
eBay Worldwide (HKLM-x32\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESSAdpt (HKLM-x32\...\{D15E9DB5-6BEB-4534-901E-80C0A29BAB97}) (Version: 3.00.0011.0000 - Eastman Kodak Company) Hidden
ESSANUP (HKLM-x32\...\{A6F18A67-B771-4191-8A33-36D2E742D6D9}) (Version: 3.00.0004.0000 - Eastman Kodak Company) Hidden
ESSCAM (HKLM-x32\...\{469730CC-78DF-4CD3-B286-562D459EA619}) (Version: 3.00.0010.0000 - Eastman Kodak Company) Hidden
ESSCDBK (HKLM-x32\...\{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}) (Version: 3.00.0012.0000 - Eastman Kodak Company) Hidden
ESScore (HKLM-x32\...\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}) (Version: 3.00.0019.0000 - Eastman Kodak) Hidden
ESSgui (HKLM-x32\...\{91517631-A9F3-4B7C-B482-43E0068FD55A}) (Version: 3.00.0017.0000 - Eastman Kodak) Hidden
ESShelp (HKLM-x32\...\{87843A41-7808-4F2E-B13F-25C1E67CF2FD}) (Version: 3.00.0011.0000 - Eastman Kodak Company) Hidden
ESSini (HKLM-x32\...\{8E92D746-CD9F-4B90-9668-42B74C14F765}) (Version: 3.00.0017.0001 - Eastman Kodak) Hidden
ESSPCD (HKLM-x32\...\{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}) (Version: 3.00.0020.0001 - Eastman Kodak Company) Hidden
ESSvpaht (HKLM-x32\...\{A5B3EB8A-4071-42F0-8E8E-7A8342AA8E69}) (Version: 3.00.0017.0000 - Eastman Kodak) Hidden
ESSvpot (HKLM-x32\...\{48C82F7A-F100-4DAB-A310-8E18BF2159E1}) (Version: 3.00.0017.0002 - Eastman Kodak) Hidden
eventsample (HKLM-x32\...\{493028C3-0EC5-4FBF-B3D3-F4A934AB8801}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
evntdrvsample (HKLM-x32\...\{80CFB54B-2C2C-4513-9B90-923F7F850074}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Far Cry (Patch 1) (HKLM-x32\...\{D792A069-B96B-40BA-BCB4-E5651A6E5926}) (Version: 1.00.0000 - Ubisoft) Hidden
Far Cry (Patch 1.3) (HKLM-x32\...\{21A127AE-2DAF-40B7-8374-34C3E629521C}) (Version: 1.00.0000 - Ubisoft) Hidden
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)
Fax (HKLM-x32\...\{9294F169-72EE-4D74-AE92-CA25F64B4FF8}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
fireflysample (HKLM-x32\...\{4908FC86-4753-40EB-99CD-1F1EB30E6F84}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
FurMark ROG Edition 0.5.0 (32-bit) (HKLM-x32\...\{F3D3CC6B-9AD7-4F43-8C69-40D5902FDC5C}}_is1) (Version:  - ASUS / Geeks3D)
Gear 360 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Gear 360 ActionDirector (HKLM-x32\...\{1F01D6CB-E445-405b-84D1-75B8EB5237D0}) (Version: 2.0.0.1807 - CyberLink Corp.) Hidden
Gear 360 Live Broadcast (HKLM-x32\...\{9A99DE5B-8A05-4E61-9804-E148B53A00CA}) (Version: 1.0.0524.0 - CyberLink Corp.) Hidden
generalsamples (HKLM-x32\...\{4649A430-BC01-4C9E-9846-50FC56A9D00E}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
generaltools_ia64fre (HKLM-x32\...\{315A928B-2B99-4E22-A066-14CD901F9C0B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
generaltools_x64fre (HKLM-x32\...\{9E6C6A09-A71E-45A4-8DBE-68C64DFC451B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
generaltools_x86fre (HKLM-x32\...\{D058CD28-634C-4EF1-A47D-669FD6BE0C55}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Chrome (HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
headers (HKLM-x32\...\{1F20DE69-167B-4F69-8D99-10DA59D92D10}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Hewlett-Packard ACLM.NET v1.1.0.0 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
hid_inputsamples (HKLM-x32\...\{9096B2CA-170B-4696-AB43-AF5DD8D539E6}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
hidsampleinput (HKLM-x32\...\{984AD1E9-A775-40F8-9A43-70908593B247}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
hidsamples (HKLM-x32\...\{C521D5BA-BAE4-43E7-9250-6436E0502948}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
HP Photosmart 7520 series Basic Device Software (HKLM\...\{27ABA988-D480-4F44-B0FD-45E5656D2CFE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 7520 series Help (HKLM-x32\...\{08295D09-E002-48F8-905D-34E4B08509BA}) (Version: 28.0.0 - Hewlett Packard)
HP Photosmart 7520 series Product Improvement Study (HKLM\...\{16B872EE-C458-41BD-BEAE-52758A3F3168}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Product Detection (HKLM-x32\...\{A436F67F-687E-4736-BD2B-537121A804CF}) (Version: 11.14.0001 - HP)
HP Universal Fax Driver (HKLM\...\{C2B45120-48BB-41FC-A1A7-4FF24DA5CDA3}) (Version: 1.0.246.0 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
ifssamples (HKLM-x32\...\{C0742F98-1E35-4755-A32D-9F9DAE97CBF3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
imagingtools_ia64fre (HKLM-x32\...\{4C9C47E8-C79E-4A3B-BD87-5088916F67BC}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
imagingtools_x64fre (HKLM-x32\...\{ACAF97EB-7C5B-4C13-84E2-656FD8F2AE08}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
imagingtools_x86fre (HKLM-x32\...\{197AB90B-2CE8-4098-B8DC-A8C7ACBBEAD9}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
ImagXpress (HKLM-x32\...\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}) (Version: 7.0.74.0 - Nero AG) Hidden
infsample_ia64fre (HKLM-x32\...\{A74123D0-28F2-431A-8C9A-864CD6F2F900}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
infsample_x64fre (HKLM-x32\...\{0A68FF18-07E3-4D28-BFDC-8F51ECE8A011}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
infsample_x86fre (HKLM-x32\...\{7CA89ADF-C212-4D5A-85EC-79BAA250A656}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
installhelp (HKLM-x32\...\{E6343838-6EFE-4528-90ED-8D9258CA4584}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{86E97DE6-158D-4BD4-962C-810AD95991A6}) (Version: 6.1.2.13 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{c84b73da-5267-4f93-8dfc-2bed63f6ff49}) (Version: 6.1.2.13 - Intel Corporation)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{A3135913-E080-45FD-9301-5995B1BAF1C5}) (Version: 4.1.0.24 - Intel Corporation)
Intel® Computing Improvement Program (HKLM\...\{699E6891-25C3-443A-9B8E-80C74F0172C8}) (Version: 2.1.03413 - Intel Corporation)
Intel® Platform Controller Hub EG20T Driver (HKLM-x32\...\{BA9422F0-FF61-4393-AA74-B01E461286C8}) (Version: 1.05.0000 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.0.1037 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{e7adbf16-34ad-490a-a4e8-feb60fb99973}) (Version: 3.1.2.2 - Intel)
ioctlsample (HKLM-x32\...\{9269E4BE-0607-488B-9BFD-9E54FEADB17B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
irsamples (HKLM-x32\...\{66D6D87F-D616-408F-9AD1-70D4D744DC29}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kodak EasyShare software (HKLM-x32\...\{D32470A1-B10C-4059-BA53-CF0486F68EBC}) (Version:  - Eastman Kodak Company)
KSU (HKLM-x32\...\{B997C2A0-4383-41BF-B76E-9B8B7ECFB267}) (Version: 612.7.0008.0000 - Eastman Kodak Compnay) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LeadTool (HKLM-x32\...\{050ED764-D5FD-4D33-8FCD-AC48250C0798}) (Version: 3.00.0001.0000 - Eastman Kodak Company) Hidden
libs_ia64fre (HKLM-x32\...\{D4E7A54A-4124-49A7-835B-F3BB3B501475}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
libs_x64fre (HKLM-x32\...\{4C3B13F6-7CA2-47FD-9A47-C542BA730EF7}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
libs_x86fre (HKLM-x32\...\{B66819C1-8FA4-4456-A12C-E8C6555DC2E2}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
LucidSound Updater 1.7 (HKLM-x32\...\{393F72B5-278D-4229-B773-9712815A6B8C}) (Version: 1.7.0000 - LucidSound)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 3.0.337.0 - Microsoft Corporation)
Microsoft Office 2003 Primary Interop Assemblies (HKLM-x32\...\{91490409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.6553.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{91E30409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OpenType Font File Properties Extension (HKLM-x32\...\{45EA11B5-874D-480E-89B9-2545505BBE3E}) (Version: 2.30.0000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B2-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Windows Driver Kit 7.1.0.7600 (HKLM-x32\...\KitSetup Registration {B4285279-1846-49B4-B8FD-B9EAF0FF17DA}:{68656B6B-555E-5459-5E5D-6363635E5F61}) (Version: 7.1.0.7600 - Microsoft Corporation)
modemtools (HKLM-x32\...\{E6847FF6-C825-4739-814D-8758A9B30A9A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
MSI Interceptor DS200 Gaming Mouse (HKLM-x32\...\{9CE89B74-59E2-4215-98B1-7A9913E33600}_is1) (Version: 1.2 - MSI Co., LTD)
MyHarmony (HKLM-x32\...\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}) (Version: 1.0.300 - Logitech)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 3.18.5.667499 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Nero 2018 (HKLM-x32\...\{33A9A61C-4C88-4F25-8B94-A0687DABC394}) (Version: 19.0.08300 - Nero AG)
Nero 2018 Content Pack 1 (HKLM-x32\...\{ED2B4941-349B-4E16-B339-0D1FF2B7A788}) (Version: 19.0.01300 - Nero AG)
Nero 2018 Content Pack 2 (HKLM-x32\...\{4E3C72F5-9FEF-4380-ABA3-BA670F995538}) (Version: 19.0.01400 - Nero AG)
Nero 9 Essentials (HKLM-x32\...\{2780426f-1317-4a0f-9814-352d9a04ab98}) (Version:  - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 19.0.1003 - Nero AG)
Nero TuneItUp (HKLM-x32\...\Nero_tuneitup_is1) (Version: 2.6.0.134 - Nero AG)
networklibraries_ia64fre (HKLM-x32\...\{0A026ED9-D774-4008-B62C-7565E5626371}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
networklibraries_x64fre (HKLM-x32\...\{F573FC3C-4149-4FE7-B189-7E5DD3281927}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
networklibraries_x86fre (HKLM-x32\...\{0AD94592-05F9-4E96-9418-D50FEE317342}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
networksamples (HKLM-x32\...\{53C53D37-CA3C-4C32-B1B5-3BCC594144C2}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Norton Security (HKLM-x32\...\NGC) (Version: 22.14.2.13 - Symantec Corporation)
Notifier (HKLM-x32\...\{0008546E-DF6E-4CC1-AFD0-2CB8E16C95A2}) (Version: 3.00.0006.0000 - Eastman Kodak Company) Hidden
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.11 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Graphics Driver 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.11 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
oacr_x86fre (HKLM-x32\...\{CBE08674-3776-4578-9992-46FAEF528F15}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
offreg_ia64fre (HKLM-x32\...\{35546EB8-2D2F-4AAD-9FE5-9574520F4AD8}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
offreg_x64fre (HKLM-x32\...\{E754BD2E-5F64-4D38-A1C6-8B8143A09985}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
offreg_x86fre (HKLM-x32\...\{6F9AD5EF-EF6A-4548-B797-2543F0D1F28F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenCL™ runtime for Intel® Core™ and Xeon® Processors (HKLM\...\{1F6CF248-9A18-4740-BD09-281DBC8A2051}) (Version: 6.4.0.25 - Intel Corporation)
OTtBP (HKLM-x32\...\{F71760CD-0F8B-4DCC-B7B7-6B223CC3843C}) (Version: 3.00.0007.0000 - Eastman Kodak Company) Hidden
PCDADDIN (HKLM-x32\...\{65D85050-5610-4A91-A3B1-D5C744291AD4}) (Version: 3.00.0001.0008 - Eastman Kodak Company) Hidden
PCDHELP (HKLM-x32\...\{C99DCDA4-7407-4F72-A77E-C81C551D0C4E}) (Version: 3.00.0001.0000 - Eastman Kodak Company) Hidden
PCDLNCH (HKLM-x32\...\{69BD6399-3D8F-45B7-81D9-819361F5101D}) (Version: 3.00.0001.0002 - Eastman Kodak Company) Hidden
PCDrdsho (HKLM-x32\...\{C42C10A8-F2F4-4846-B772-ABD1912A2E85}) (Version: 3.00.0001.0001 - Eastman Kodak Company) Hidden
pcidrvsample (HKLM-x32\...\{FDAA0CD7-930D-4E16-B3A2-66FAA2EEF3AD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pfd_ia64fre (HKLM-x32\...\{D982C565-EE25-4E1D-8581-95ABDF637032}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pfd_x64fre (HKLM-x32\...\{4DD3FE4D-1D81-44F4-9FCC-BB8F861C6E21}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pfd_x86fre (HKLM-x32\...\{82B341CB-D57D-4286-BE54-FB86BAAD23EB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnpportssample (HKLM-x32\...\{BEC25D5C-2CD4-4518-8061-4D97D61C710F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnptools_ia64fre (HKLM-x32\...\{DC6B7F7C-20F7-4D40-9735-957752CE5F53}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnptools_x64fre (HKLM-x32\...\{198C0A8A-5E8D-4CF5-BE66-9D0E1FFBC217}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnptools_x86fre (HKLM-x32\...\{670CAF31-78EA-4A8B-9F8D-32EC018B1345}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
portiosample (HKLM-x32\...\{5B66B4F6-D913-4D8D-B997-2E208ABECA73}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
powermanagement_ia64fre (HKLM-x32\...\{1E8FC55E-F212-4B80-A0F7-A0D178C2FE4A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
powermanagement_x64fre (HKLM-x32\...\{B4665EAE-6733-4978-8757-629C7D8DD6A5}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
powermanagement_x86fre (HKLM-x32\...\{9936A6C2-0C21-49D8-8AB1-92384259D214}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Prerequisite installer (HKLM-x32\...\{AD240F1A-3102-492E-B657-17969A9D5E9A}) (Version: 19.0.0004 - Nero AG) Hidden
printsamples (HKLM-x32\...\{E1423BD0-AAAE-4291-B220-863AEDF873D7}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
printtools_ia64fre (HKLM-x32\...\{38AD20B9-0433-45D5-86D6-C76BAE151892}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
printtools_x64fre (HKLM-x32\...\{3A2F0C18-0F0B-44BF-80F0-CB4204565573}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
printtools_x86fre (HKLM-x32\...\{B533A27C-3B5D-42AB-B397-A817F154CC22}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
rcud (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
readme (HKLM-x32\...\{5193B1FC-FC33-4CBA-9B9F-85F3D8F7CD87}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8237 - Realtek Semiconductor Corp.)
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.203 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
sdv (HKLM-x32\...\{D721152B-35EB-44F3-AB58-D0AE8882813F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
sensorsamples (HKLM-x32\...\{05A6F765-D749-45E6-A157-2E5ADE8F8FF0}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
setupsamples (HKLM-x32\...\{1321CC95-FB73-4437-8F77-B179432F8857}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
setuptools_ia64fre (HKLM-x32\...\{B2B60AF9-E82A-453D-AB79-B4103614FF7E}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
setuptools_x64fre (HKLM-x32\...\{17349339-D8E7-4394-805E-E2346C19BA82}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
setuptools_x86fre (HKLM-x32\...\{8AFD8D85-FF4D-4DA7-B1A0-14C6A1BA1F59}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
SFR (HKLM-x32\...\{C354C9B6-A4E0-4BB0-A368-6DC6BCA0E314}) (Version: 3.01.0002.0001 - Eastman Kodak Company) Hidden
SFR2 (HKLM-x32\...\{ABE068DF-8DC4-4947-ABFC-DD2B40850225}) (Version: 3.00.0004.0000 - Eastman Kodak Company) Hidden
sideshowsamples (HKLM-x32\...\{5058FE9A-CF62-48B5-9AA2-48C536827880}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
smartcardsamples (HKLM-x32\...\{5E38A4B3-E50B-4E05-AC66-CDA806B12D10}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
SmartWebPrinting (HKLM-x32\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.256.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
storagesamples (HKLM-x32\...\{5BE72DAD-15B7-4B1D-808D-9C66DF8E691D}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
streammediasamples (HKLM-x32\...\{6F1B3EC0-1182-4AA6-9E08-C4D7A05E1B7C}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
swtuner (HKLM-x32\...\{C1620364-5718-43DD-B6B7-104A0A41EACC}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
THX TruStudio PC (HKLM-x32\...\{F1F5C7EE-23BB-47A3-943E-9F290DD267F0}) (Version: 1.0 - Creative Technology Limited)
toastermetadatapackagesample (HKLM-x32\...\{0A049327-DE93-4098-B573-AAC71E0E6FA4}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
toastersample (HKLM-x32\...\{48402841-6F46-464D-8FA1-3A4460C8399D}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
toolindex (HKLM-x32\...\{3B31D97A-7CF4-4ED2-8593-535AE7C0FB92}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
tracingtool_ia64fre (HKLM-x32\...\{3C9E736F-8436-41D2-87F3-1468A59CA866}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
tracingtool_x64fre (HKLM-x32\...\{37E0996B-CD8D-46C9-A801-9EE67276DF9A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
tracingtool_x86fre (HKLM-x32\...\{4077C73A-C623-40B9-8D0A-B9D501AF3046}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
umdfsamples (HKLM-x32\...\{A072218B-9353-4FAA-A969-64E64568B431}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
usbsamples (HKLM-x32\...\{71E96A45-FE54-4AF6-B208-A3F860EF1063}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
vistalibs_ia64fre (HKLM-x32\...\{329335E6-0A4B-42B9-9230-5CAC83B04649}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
vistalibs_x64fre (HKLM-x32\...\{085AC6CC-3716-4C62-8965-FF94296BCC26}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
vistalibs_x86fre (HKLM-x32\...\{FB2EEF6E-00A7-4863-A44A-227EB927A589}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
wcoinstallers (HKLM-x32\...\{EBD729CC-602A-4D12-896B-4FBEBE1B6C4F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wdftools_ia64fre (HKLM-x32\...\{091DDD71-FA98-4FF6-8E6F-07C9D09E29B8}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wdftools_x64fre (HKLM-x32\...\{F5F16DEF-5F74-46C8-95E3-AC2FEB04A9DD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wdftools_x86fre (HKLM-x32\...\{502A382B-6A1F-41C3-A370-A085182EEA91}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
wmisamples (HKLM-x32\...\{B66D9EAC-DDAE-4477-93B2-A946438D97B6}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wnetlibs_ia64fre (HKLM-x32\...\{63B405FD-A763-4F88-8844-1673AA5F00AB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wnetlibs_x64fre (HKLM-x32\...\{4DD6CC58-ED0B-46F1-8A23-4661D7DA60DD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wnetlibs_x86fre (HKLM-x32\...\{D80B8A95-3DC7-428C-B216-70251A4296DD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Wondershare Dr.Fone for Android(Build 4.0.1.60) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 4.0.1.60 - Wondershare Software Co.,Ltd.)
wpdsamples (HKLM-x32\...\{B121B2B4-867E-4389-AC58-0AEC72C37F47}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wpdtools_ia64fre (HKLM-x32\...\{FCFE5318-77F7-4661-A526-418C431A48B5}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wpdtools_x64fre (HKLM-x32\...\{E761E173-81A4-4C12-A28D-322952C4F31B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wpdtools_x86fre (HKLM-x32\...\{85701256-4CFE-4144-A831-4D03DB2C830A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wsdtool_ia64fre (HKLM-x32\...\{EDE33D47-848D-4BAE-8399-01D4457D8F64}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wsdtool_x64fre (HKLM-x32\...\{EE1E82F8-E538-4B5A-952B-6252DEFA5D06}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wsdtool_x86fre (HKLM-x32\...\{AEDC22CF-1590-4095-8053-4B724A5BA7A8}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wxplibs_x86fre (HKLM-x32\...\{9D668C99-AEED-472A-98C0-65D8865150F6}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\ChromeHTML: -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis)
ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-06] (Cyberlink)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NavShExt.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers1-x32: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\versions_page.dll [2015-11-11] (Acronis)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-06] (Cyberlink)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NavShExt.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-06-01] (NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NavShExt.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers6-x32: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\versions_page.dll [2015-11-11] (Acronis)
ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0394B700-18E0-4874-BFE8-2F909228BA23} - System32\Tasks\{752041A2-61A9-4EE4-9D5B-818F61E1FF5C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TM2MGUUZ\cmVtb3RlcGMzLnJ2aWV3LmNvbTo4MDs4YTgwODA4NDRmYzdiMzVmMDE1MDUwMjMxMDRjNDU5Mw==.exe" -d C:\Users\Killer\Desktop
Task: {06F90FF4-13F8-4D25-B5E5-E2B20D6B9F86} - System32\Tasks\Nero TuneItUp PRO (Autopilot.exe) => C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe [2017-09-12] (Nero AG)
Task: {09616B75-46EC-4DB7-8224-1F20A73DE0C9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {0A03754E-BE54-4663-8D05-01CE2BF8E37C} - System32\Tasks\{C2B217A5-0FEC-4622-A56A-3B76293AD940} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\Discovery.exe -d C:\Users\Killer\Desktop
Task: {0E938DE5-8A41-492B-81BE-3596D57B44C7} - System32\Tasks\{9EEBAEBD-6A21-4968-B69A-FEBC55C81AA9} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Downloads\MODI2003.exe -d C:\Users\Killer\Downloads
Task: {0F12D758-2067-4CF8-93F1-2E47C12E069F} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2017-06-13] (Microsoft Corporation)
Task: {110F7EF1-7CF4-48E1-9818-FFBF5C17C30D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {12D00631-5BF6-4DBD-A21B-0EB12EBD43A7} - System32\Tasks\{B1485024-64BE-4F89-8ADF-0CCC069EAA6C} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\Printer\Printer.exe -d C:\Users\Killer\Desktop\Printer
Task: {13D219C9-3CAD-4D93-B5A5-8FFD30DB3E31} - System32\Tasks\{752E26A2-D2F1-48C7-B8E6-630BCFBD7125} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\setup (1).exe" -d "C:\Users\Killer\Documents\Microsoft update catalog\sms" -c "C:\Users\Killer\Documents\Microsoft update catalog\sms\SCR3XX2K.sys"
Task: {17475058-DC2F-49CA-AFA4-ED1268558A3A} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {17715A95-F434-424C-B3F0-05B4E4F7C802} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-20] (NVIDIA Corporation)
Task: {1A07EA19-F4EF-4D0C-8A74-B7BC75CACFFB} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation)
Task: {1B0DE524-475A-42E4-BCC3-7FF5C9CA7C87} - System32\Tasks\{5E627C08-BE63-437E-92EB-DC1A4E42100F} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Task: {1CF98F44-BAF3-4C55-99B8-523D678CEF9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {2412638B-1F7B-4C8D-875A-F77889DE6F4A} - System32\Tasks\{4CA42120-0A15-4C34-B942-05FCD848588E} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {259A7D1E-80AD-48C2-B64D-0B09D3142E1C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {26875D4A-E590-42FD-962D-99E7D110C0C9} - System32\Tasks\{AFDBD80F-15E1-43F2-8D0F-9D0FC14D0CB7} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\AHCI_Intel_8.9.4.1004_W7x64_A\AHCI_Intel_8.9.4.1004_Win7x64\Intel Matrix Storage Manager\iata_enu.exe" -d "C:\Users\Killer\Downloads\AHCI_Intel_8.9.4.1004_W7x64_A\AHCI_Intel_8.9.4.1004_Win7x64\Intel Matrix Storage Manager"
Task: {2B45F167-CE2B-45D2-8DB4-87570C441AA7} - System32\Tasks\{880329E1-0D04-4730-BF83-FE4806554C2B} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\Editor.exe
Task: {2B932677-590D-49E1-9A80-79694E0D3103} - \TweakBit\FixMyPC\Start FixMyPC automatic scanning -> No File <==== ATTENTION
Task: {31C7CD5F-738A-4E6C-A070-BAB35B1373B5} - System32\Tasks\{35CD82A4-99BF-4B7C-9E5A-186017F5D754} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {32A07A32-B7F9-463D-A1B6-B7CC3C76B1E3} - System32\Tasks\SkipUAC Optimize Windows Services => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {32D0A099-C781-4B1E-B118-2A279EA84FA6} - System32\Tasks\{74B21A64-546C-4A3C-AFDD-DA298A6108AD} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {3332D488-4A5F-4AEF-9144-C52C6C066E12} - System32\Tasks\ASUS Live Update Task Schedule => C:\Program Files (x86)\ASUS\GPU Tweak\ASUSLiveUpdate.exe
Task: {3881AA2A-F65B-43C3-9A97-DF039F81DC96} - System32\Tasks\{38BF43F4-E38E-41C0-98C3-49EBFE676984} => C:\Windows\system32\pcalua.exe -a D:\Utility\Printer.exe -d D:\Utility
Task: {39CFF288-8953-4F77-86BF-E781EC4340C2} - System32\Tasks\{64E4DDC6-9F06-4E8D-B39B-874E132AF5A3} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {3CC78C9F-B865-4A52-BC79-57D65235ADE9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-20] (NVIDIA Corporation)
Task: {45C07B9E-D72B-4EE9-AEB2-F6ADFCFC1745} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-20] (NVIDIA Corporation)
Task: {495585E4-674B-4215-82F9-C78C76F2A83D} - System32\Tasks\Nero TuneItUp PRO => C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe [2017-09-12] (Nero AG)
Task: {4DCCA774-41E5-4B30-8FA5-983CE7335221} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {4FBD642F-97F8-442D-B5F2-4653BF126A8A} - System32\Tasks\{2E9DADC3-4D30-42B8-A507-8DE53ED56175} => C:\OEM\Preload\utility\OOBEOffer\OnlyBackGround.exe
Task: {567EC19B-D9BD-4916-B785-6886E38BB6C5} - System32\Tasks\{7F6F2A19-BFA8-412D-8693-99E30F56B9F9} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive\setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive"
Task: {5EE5382E-C5B9-444C-8F8F-B7E33CEC1845} - System32\Tasks\SkipUAC Optimize autorun => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {5F0259B9-4754-4292-AF61-D9E1EB9A89CD} - System32\Tasks\{EFAB2DBD-C245-421C-BCDB-4718F5BCE449} => C:\Windows\system32\pcalua.exe -a D:\Setup\SETUP.EXE -d D:\Setup
Task: {627C5C37-A239-4A4E-A66D-5FA417458A09} - System32\Tasks\{870F1199-BD59-48D3-86C8-ADF20CECCF48} => C:\Users\Killer\Desktop\setup.exe
Task: {650B5C36-1508-435F-8BDC-02A15BF1AF1B} - System32\Tasks\SkipUAC Defragment drives => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {66BA12B3-8808-4DF9-97E5-54D48DD638F6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-02-07] (Piriform Ltd)
Task: {6D71FE2F-57FB-4CB6-BA06-1CC17DDCDE0A} - System32\Tasks\GPU Tweak II => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [2017-09-22] (TODO: <Company name>)
Task: {6E6F9CA8-BC57-4D67-9252-6EFAA4C24F42} - System32\Tasks\{A0446F04-2DF1-4585-AFFB-D4BF188341CC} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCCInstall.exe" -d "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static"
Task: {6F50745E-B383-44BC-8860-1F2F7680A0F4} - System32\Tasks\{90A2F2F6-7E99-4DBC-9D2C-86562313AB09} => C:\Windows\system32\pcalua.exe -a D:\DAO35\DISK1\UNINST.EXE -d D:\DAO35\DISK1
Task: {707917F2-24A9-4001-9EE0-39C720EA4F90} - System32\Tasks\{8E80806F-B662-4C7F-914E-E869B02E6190} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Creative\THX TruStudio PC\APOIM\APOIM64.exe" -d "C:\Program Files (x86)\Creative\THX TruStudio PC\APOIM"
Task: {72916D91-6E49-4A6C-9F3A-9D5BE6AEE80A} - System32\Tasks\{BEF5D079-3C8E-4BF8-BE89-5C6DF747CE3D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Creative\SBAudigy2ZS\THX Console\THXConsole.exe" -d "C:\Program Files (x86)\Creative\SBAudigy2ZS\THX Console"
Task: {7382D9EE-368B-472E-A623-E35FC9AEF191} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe
Task: {7920A3A2-B6FC-463F-829F-AF317D323536} - System32\Tasks\{99306045-360C-47C9-8CA5-3E480C84471B} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup\Setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup"
Task: {7B5EC739-2BD8-4ECF-A91C-BF8EC8C04D6E} - System32\Tasks\{5D23526E-B4B8-434B-A47E-826F3BDB5D5B} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {7BF81A51-E16A-4A01-A15A-ABCF527819DD} - System32\Tasks\{141F6003-A64A-4ACE-80E4-CCF550FC66F0} => C:\Users\Killer\Desktop\setup.exe
Task: {802C4A40-EEFD-453D-98FC-F5A84C75DA36} - System32\Tasks\{B2E5FA21-E8D7-4E5B-92EC-A55AE0747985} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\Setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup"
Task: {824D50F6-E5CD-43C8-9417-448CACB9E682} - System32\Tasks\SkipUAC Save power => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {84471C77-1CDA-4301-A1B7-F17FAB0B4EF4} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2017-06-13] (Microsoft Corporation)
Task: {8667AC2A-CBEF-4DBF-BC37-9BDE8FEFB967} - System32\Tasks\{0DD97613-D96A-475E-9D9D-B3D227D49260} => C:\Windows\system32\pcalua.exe -a "C:\Swsetup\Monitors\HP_2709_1.0\HP Display Installer.exe" -d C:\Swsetup\Monitors\HP_2709_1.0
Task: {877849BD-D2EE-4A3E-A24F-5BD939E4311A} - System32\Tasks\{674EEC6C-384E-4885-ABFB-D247B83C2872} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Creative\ALchemy\ScsInstall.exe" -d "C:\Program Files (x86)\Creative\ALchemy"
Task: {88E134BD-CA82-41CB-BF7A-E9C2E20EA4DE} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {8A76FF2E-3C53-467F-BD8E-F3D06EDB4867} - System32\Tasks\{B4079735-9CBD-45D5-9116-27DD82218571} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\DriverUpdate\UninstallStub.exe" -c --log {daaa600a-9f08-4bc8-abe2-6763f93957c6}
Task: {8B7C7A90-2132-4C1A-81F2-D4E65B0D35F2} - System32\Tasks\{F73DBE57-31D8-4D6C-AA87-F0C3534A7FC2} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{82730AAC-04BA-4684-A63F-286FB9847C15}\setup.exe" -c -runfromtemp
Task: {8F722F5A-D505-4246-B0B4-C326ABA02EFF} - System32\Tasks\{D81FFA4E-C277-4BCA-8341-49E65144667C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\setup (1).exe" -d "C:\Users\Killer\Documents\Microsoft update catalog\sms" -c "C:\Users\Killer\Documents\Microsoft update catalog\sms\S3XXx64.sys"
Task: {9035482A-D63F-4B93-B449-A95EC2B08D39} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {95AD77C5-5C56-48B3-B3B0-CFF8D18728D6} - System32\Tasks\{8412501D-6E3A-42FE-9B02-B731CD53A2B2} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{82730AAC-04BA-4684-A63F-286FB9847C15}\setup.exe" -c -runfromtemp -l0x0409  -removeonly
Task: {97436089-2FFA-45CE-B74F-3BD3AE01B32F} - System32\Tasks\{059CD66B-C217-4656-AC90-A6F7ED3CF7E9} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\sp45579 (1).exe" -d C:\Users\Killer\Downloads
Task: {9B0CFA8D-4231-446B-A929-D0F8B929EDDE} - System32\Tasks\{E7180CFA-E8D5-4152-990A-E666C92EF8A7} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Temp\Temp1_Printer (1).zip\Printer.exe" <==== ATTENTION
Task: {9B7FCFB4-909A-47D3-A411-39BE3BBFFA6F} - System32\Tasks\{B5F40C00-FB9B-47A5-B83D-0D85E7BC904C} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\Printer.exe -d C:\Users\Killer\Desktop
Task: {9EF406FE-47EA-488D-8F63-38CE52076EC7} - System32\Tasks\{A9819B74-98D6-40E6-8DED-63212230E222} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -c /M{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC} /l2057
Task: {9F3DC17A-401C-4EE9-B605-D1360F102124} - System32\Tasks\{F4FA5749-BC18-4ED6-AA80-46DB960B4EF9} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Temp\Temp1_WinVista7_64_41324 (1).zip\Intel Control Center\SetupICC.exe" <==== ATTENTION
Task: {9F776DA2-A8B8-4FDC-9E21-D5AD47548388} - System32\Tasks\{ACDA6D48-CB50-4576-9F0E-EB813E13492B} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0KG5ZY1P\setupsr1.exe" -d C:\Users\Killer\Desktop
Task: {A0DDF131-E1A3-47C6-835D-B99FB974709A} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\SymErr.exe [2018-05-29] (Symantec Corporation)
Task: {A1E452A0-142E-4F62-AB44-DD603E58E114} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2017-06-13] (Microsoft)
Task: {A67E939D-0576-450A-9B91-F318F0E200CF} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\SymErr.exe [2018-05-29] (Symantec Corporation)
Task: {A6B463D8-7F97-4C4D-8020-7556EED9FDB3} - System32\Tasks\{7ABC6F91-6DA7-414B-959C-3D491533BBBF} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {A87699D1-2EDB-4786-9EED-42D40E96BDC8} - System32\Tasks\SkipUAC Securely empty recycle bin => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {A8B4ACF8-48F3-4850-AC73-3CEB65D06BF1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-02-07] (Piriform Ltd)
Task: {AA38C4BF-342D-4C09-9361-CA74D7FA8C4A} - System32\Tasks\{56A1230D-1AF6-45E0-BBB7-BF1B46F027DC} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive\x86.en-US\Setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive\x86.en-US"
Task: {AAF329CF-6FB5-4CCC-9F6F-2793AFD0A9FC} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2018-05-29] (Symantec Corporation)
Task: {ADCAB91F-5E96-4BA9-9A87-A58180C280DE} - System32\Tasks\{730282DF-4958-4053-A7E0-15A1A46309B4} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Downloads\MicrosoftTranslatorInstallerForOffice.exe -d C:\Users\Killer\Downloads
Task: {AFA967C9-CB8F-43A9-9200-95385B925200} - System32\Tasks\{70F52901-8BE8-4FE0-9330-61960BFB60D0} => C:\Users\Killer\Desktop\setup.exe
Task: {B286EEBA-ACF2-4646-9BE8-3C9BE76A0A25} - System32\Tasks\ScanToPCActivationApp.exe_{41031457-56F4-44A8-8CD1-B69416DDDCFC} => C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {B6EFB1F7-DFB7-4DBF-B7EA-9B3731C053FA} - System32\Tasks\{BBB3E315-BC6D-4EEE-8362-4ADF8EB61820} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup\MacDrive\setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup\MacDrive"
Task: {B8349E32-3AD2-4418-9E56-E1E0FDA3F0E2} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2017-08-10] (Nero AG)
Task: {BC58FB86-1D89-43F4-99C3-0106B8189612} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\WSCStub.exe [2018-05-29] (Symantec Corporation)
Task: {C3C3FFEF-966A-4046-9B06-C0FE6FBAEF59} - System32\Tasks\{02B25E0F-80EE-4F12-976C-485B1519A527} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {D13EE52E-EF0B-4A66-840D-7AAD56061A30} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2017-06-13] (Microsoft Corporation)
Task: {D7A8263A-D047-4281-89AC-C7690BCD0F03} - System32\Tasks\SkipUAC Clean registry => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {DBC3DAE9-CF0A-4C7E-A282-A07D62E777F8} - System32\Tasks\{09EA5BE7-AEB1-4586-A398-C5840FC447DA} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\setup.exe -d C:\Users\Killer\Desktop
Task: {DD39ECAC-FCC8-423C-98B3-4687A8D9B7D7} - System32\Tasks\{E568111B-473F-4135-8C75-3AA4D073F22D} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {DDD8D68B-B42E-47A0-846A-0E40278C19B3} - System32\Tasks\{47173FFF-A23B-430F-AAD5-94990A27277B} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Task: {DFBDB548-5A21-40A3-83DF-34E4ECAB9347} - System32\Tasks\SkipUAC Delete Internet tracks => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {DFE3CC27-9C54-4F22-A7E9-C2346BDE42C7} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2017-06-13] (Microsoft Corporation)
Task: {E050F066-CCE8-4ECD-8985-257B5D847CE3} - System32\Tasks\{52D9AA83-56A0-44D7-BBED-127FD62E613E} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {E3BFDFE1-BF1F-4801-8672-97967E6CE06F} - System32\Tasks\{6D65E97C-4730-4A8F-8F2E-6DB9A7EEE0ED} => K:\Program Files (x86)\Prey\prey.exe
Task: {E7B1A066-D721-4178-9954-C62407C4B64D} - System32\Tasks\{E7F0DBD9-5A7B-4914-8A5C-4EC059759B43} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\installShell.exe" -d "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static"
Task: {EEBB708A-0CE6-4046-8915-8607FDF5E4F9} - System32\Tasks\{0556F744-599A-47FD-99E5-EA4EF7D09760} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\AppData\Local\Temp\Temp1_Printer_1055.zip\Printer.exe <==== ATTENTION
Task: {EF826A27-FBB8-4D7F-972F-49A8749C7DE0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {F15BF6B6-240C-4EA1-A210-3F9363E0D5C6} - System32\Tasks\{ACB467F0-2549-4003-88BB-7974A805CCE3} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {F59CBA43-FE70-4732-9B93-76760758B82F} - System32\Tasks\{AC66EADC-A964-4C4E-833C-42BCAFFD5D88} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\AHCI_Intel_9.5.0.1037_W7x64_A (1)\AHCI_Intel_9.5.0.1037_Win7x64\iata_cd\setup.exe" -d "C:\Users\Killer\Downloads\AHCI_Intel_9.5.0.1037_W7x64_A (1)\AHCI_Intel_9.5.0.1037_Win7x64\iata_cd"
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\Nero TuneItUp PRO (Autopilot.exe).job => C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe C:\Program Files (x86)\Nero\Nero TuneItUp\KillerNero TuneItUp PRO (Autopilot.exe
Task: C:\Windows\Tasks\Nero TuneItUp PRO.job => C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
ShortcutWithArgument: C:\Users\Public\Desktop\Netflix.lnk -> C:\ProgramData\OEM_E471269A730D\Netflix\StartURL.exe () -> hxxp://homepage.gateway.com/redirect.aspx?rid=09000002
 
==================== Loaded Modules (Whitelisted) ==============
 
2018-06-10 01:07 - 2018-05-20 10:36 - 001315296 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2003-02-04 08:22 - 2003-02-04 08:22 - 000181312 _____ () C:\Windows\SysWOW64\ScsiAccess.EXE
2009-12-13 19:19 - 2009-12-09 02:24 - 000076320 _____ () C:\OEM\USBDECTION\USBS3S4Detection.exe
2018-05-04 19:59 - 2010-08-10 21:37 - 000334848 _____ () C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
2016-12-15 17:41 - 2016-12-15 17:41 - 000497824 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2017-09-08 15:16 - 2016-03-03 13:29 - 003712512 _____ () C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSIMon.exe
2018-06-10 01:08 - 2018-05-20 10:36 - 095437792 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-06-10 01:08 - 2018-05-20 10:36 - 003029472 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-06-10 01:08 - 2018-05-20 10:36 - 000149984 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2018-06-26 18:38 - 2018-06-22 12:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-06-26 18:38 - 2018-06-22 12:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2017-09-12 18:05 - 2017-09-12 18:05 - 000065536 _____ () C:\Program Files (x86)\ASUS\GPU TweakII\Exeio.dll
2017-09-12 18:04 - 2017-09-12 18:04 - 001757184 _____ () C:\Program Files (x86)\ASUS\GPU TweakII\Vender.dll
2017-09-08 15:16 - 2011-01-27 00:53 - 000028160 _____ () C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\uiHook.dll
2018-07-11 03:40 - 2018-07-11 03:40 - 000170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\8fb9a146976a1b48c7c02760107c8735\IsdiInterop.ni.dll
2017-03-22 20:58 - 2010-06-08 10:44 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2018-04-07 21:38 - 2018-05-20 10:36 - 001033184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-15 18:15 - 2016-12-15 18:15 - 000693272 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\aol.com -> hxxp://free.aol.com
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\caremark.com -> hxxps://remoteaccess.caremark.com
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\driversupport.com -> hxxp://apps.driversupport.com
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\driversupport.com -> hxxps://apps.driversupport.com
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 19:34 - 2018-05-22 23:20 - 000000054 ____N C:\Windows\system32\Drivers\etc\hosts
 
127.0.0.1       localhost
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
MSCONFIG\Services: AdobeARMservice => 3
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Creative Audio Engine Licensing Service => 3
MSCONFIG\Services: DSAService => 3
MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: Intel® SUR QC SAM => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: Nero BackItUp Scheduler 4.0 => 3
MSCONFIG\Services: NeroBackItUpBackgroundService2018 => 2
MSCONFIG\Services: RemotePC Agent => 3
MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIG\startupreg: 220D66CA859F37BBCE99F39F9492C1198F2EFC60._service_run => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
MSCONFIG\startupreg: AsioReg => REGSVR32 /S CTASIO.DLL
MSCONFIG\startupreg: AsioThk32Reg => REGSVR32.EXE /S CTASIO.DLL
MSCONFIG\startupreg: DSATray => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: InstalledTime => 6-2-2017
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: THX Audio Control Panel => "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{051CD135-315B-4161-B7CE-3F21C120F58B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1A83B435-CF1C-468E-AED0-40F29FFC3066}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5ADB4B10-41C2-422A-87EC-FF22FD2EC890}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{45934E80-1914-4FA7-9032-56BAE1A58C72}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A51D77E7-D513-4BDC-BDAE-1759E36EBC60}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{83F236A8-95D1-4256-9A90-DF9E3C3AEDBC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{1DD726E8-2E12-4BC5-A3A9-0D23CF4CA0D6}] => (Allow) C:\Program Files\HP\HP Universal Fax Driver\bin\FaxPrinterUtility.exe
FirewallRules: [{DE8ABB7A-7113-424D-9D57-A0ACACFBF803}] => (Allow) C:\Program Files\HP\HP Universal Fax Driver\bin\SendAFax.exe
FirewallRules: [{C1B54125-DE99-4F51-BF7A-DC8FAF2150A6}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{14A4B763-9831-4270-BAF0-3D10BD482716}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{FA54448A-7671-48A4-A283-13959597BE0C}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{20768AB8-0943-47BA-834A-6F68F95BD2B9}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{D5D61EEA-5EDC-44A4-B2C9-CF988CD8AC9B}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{98A470A2-33DD-458F-A338-DBE7ABCB48A5}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{B6CE6697-297A-4100-BBC3-B14BC8274D97}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Line of Sight\Binaries\Win32\LSGame_BE.exe
FirewallRules: [{B107097B-D53D-4E5F-BC4E-AF74178DC2A5}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Line of Sight\Binaries\Win32\LSGame_BE.exe
FirewallRules: [{A1DEA930-1F9D-438B-885B-E23E7A1F8D2F}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{A0841DC1-271B-4ED4-B9BF-9DE55A48988E}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6F78ECC1-E232-4D76-8DE7-E6F4606729A6}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetup.exe
FirewallRules: [{40B2F32F-EAA2-403A-A594-DFAD32B49381}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\SendAFax.exe
FirewallRules: [{2FB421B7-6C3A-40CA-8B9E-AF41F8210CFF}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\DigitalWizards.exe
FirewallRules: [{19597FAD-E075-4B86-9001-794C3E026DAC}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\FaxApplications.exe
FirewallRules: [{5DB53329-A6C1-4D2F-B083-577831CF33EC}] => (Allow) K:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{00DD58D1-D91D-4BF5-A649-6B5D4EB14784}] => (Allow) K:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{DEE54AE9-A74A-4F87-B9D1-EB0492A1D779}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9CB18645-9442-4DC8-8BFA-438213111EBC}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{0F518788-BFFE-4FEC-B652-A749CA4C33AC}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [TCP Query User{AADD469B-8D53-41F8-AED6-77D19F8730D9}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [UDP Query User{48621B38-45E9-4B0F-B036-31B3D47480C6}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [TCP Query User{726ADFAA-9011-488A-9B60-B0EDE5D8A867}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [{668F84FB-CCD0-48C9-82FE-BF0B1E16AADA}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\f.e.a.r. 3\F.E.A.R. 3.exe
FirewallRules: [{B8D5F659-5507-4D61-B42F-C614258B0DCE}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\f.e.a.r. 3\F.E.A.R. 3.exe
FirewallRules: [{0D4E8102-65B0-4301-8F61-8EF59E48CAD5}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AE0DEC3F-B13C-4888-8F92-003FA9F5D238}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FFE6DC5C-1499-42F0-86D0-0E9D4C3A1DA9}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{BF201586-8E6B-45BD-AA80-A48686993C95}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{36DA5852-F3BA-435F-90EA-E4B84F41DFBA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{757AC730-D463-4367-9983-8078AA67115E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{8D1E4142-7F75-427B-A3E4-8FD229E13462}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{A5D49B07-49D4-440E-B410-EB03F0144AE6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{25BB72C7-3488-4E7D-AD18-C6B66C813794}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{4AEDBFDE-6725-482A-80FE-37AFE52E63EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{D24D7A83-2B22-4C9E-A67C-BFAC1D273A44}] => (Allow) LPort=1900
FirewallRules: [{92FE4D4F-2440-4F9F-8578-C0BDCBCF90D4}] => (Allow) LPort=2869
FirewallRules: [{CEC7C18D-A761-47C2-A2E5-76317A86AC08}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{EBA12F52-F297-4C85-88F7-16ADE8BCB3F6}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{DE0DA76C-EF4C-45C3-9B8D-E42B2D1179D9}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{BC72CFF7-B5D9-4BA8-8CBC-276911FAA70A}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{B87F9424-262B-486A-8961-EA4B28A8E361}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [{3BB04624-34BE-46C1-BE55-6625DAB8CE1D}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [{81E60C57-01B7-4209-9195-0E18E0E5BDC4}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\quakechampions\client\bin\pc\QuakeChampions.exe
FirewallRules: [{D113B030-9F3F-4852-83BC-9FC8A9E33A44}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\quakechampions\client\bin\pc\QuakeChampions.exe
FirewallRules: [{461D0DE8-82BA-4CAA-92F5-42ADC7E9B3B5}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
FirewallRules: [{08467BEA-0102-4E9F-97E4-39BCA667A5C4}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
FirewallRules: [{01C1F0AB-BF52-4CBA-8534-4CDD29AA9605}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament\System\UnrealTournament.exe
FirewallRules: [{5AE9EDAF-56E7-4098-A7D8-0E3F01FFDD40}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament\System\UnrealTournament.exe
FirewallRules: [{EE2E8FD8-D136-4645-B812-68819D31068B}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Gold\System\Unreal.exe
FirewallRules: [{9040BFD0-D16F-42FE-A187-96B11F2D398B}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Gold\System\Unreal.exe
FirewallRules: [{10218B12-76D6-4ABE-A151-76DF31092020}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal II The Awakening\System\Unreal2.exe
FirewallRules: [{0F9D89B4-078B-4F41-8799-4BCDF995A23E}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal II The Awakening\System\Unreal2.exe
FirewallRules: [{E965D602-C014-4F8E-A361-D7F64B1C69A8}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 3\Binaries\UT3.exe
FirewallRules: [{1A179B1A-879B-42FB-B716-41E9138158B7}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 3\Binaries\UT3.exe
FirewallRules: [{31D01800-7D5C-4EC3-B774-62B6709046DF}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 2004\System\UT2004.exe
FirewallRules: [{6D006755-D728-447D-8373-971CFF1D6907}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 2004\System\UT2004.exe
FirewallRules: [{F7306557-1E52-465B-A659-31F99F4D368C}] => (Allow) F:\SteamLibrary\steamapps\common\MechWarrior Online\Bin64\MWOClient.exe
FirewallRules: [{96535027-0C24-41BF-B304-DFFA49474CA5}] => (Allow) F:\SteamLibrary\steamapps\common\MechWarrior Online\Bin64\MWOClient.exe
FirewallRules: [{CD46F3B9-02BA-4FEA-91E9-E4746B139AD1}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{726856E3-EACD-4E16-A80A-786319713C74}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{15A3202D-0926-43DC-B588-F4939177BB7D}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{6F39C96F-BB75-4C3F-917F-02426C86EE7A}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{1DEB83C8-D68B-4EF7-B282-D0ECED768F04}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\StartNBR.exe
FirewallRules: [{250D3A28-237E-42A6-AF89-BE1FC26FDC5F}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\NBService.exe
FirewallRules: [{A83977EE-B94B-42A3-A032-B4F38C930307}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe
FirewallRules: [{99CE0217-BCEC-4E2F-BE45-BB478345B2FC}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\nero.exe
FirewallRules: [{E1B8F462-96AC-4787-AE6F-7A1443EDE42C}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\StartNBR.exe
FirewallRules: [{42E2B9D3-FE73-4C04-A1BB-3FCF08FA12A6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\nero.exe
FirewallRules: [{945521CE-F7D7-4696-A13E-1DB13E1416A8}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\NMDllHost.exe
FirewallRules: [{D7048BF5-0552-4C55-AC48-3F0BE70BE3F6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaHome.exe
FirewallRules: [{34527E56-D473-4511-AD60-3B5CC82D63F5}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe
FirewallRules: [{A5E378CF-6845-46C0-A83B-9A495FC9E1AD}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\NBService.exe
FirewallRules: [{F317B0C5-DD54-4595-A2D0-4810EA3BF2E3}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{0E8F70BC-6607-49F7-9EE0-195EF040392F}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{BAE5966E-AC03-4285-A18A-1EA8CB830A39}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{5A7E2F6B-13A1-4B07-AF03-7916EFABB78F}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{423C38E7-66B3-4368-A043-3601C003D8E6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\NMDllHost.exe
FirewallRules: [{4A90CE5E-93E7-496E-9A9B-73E429F69446}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaHome.exe
FirewallRules: [{6561EAAD-056F-47CC-A6E5-2FED741E638B}] => (Allow) C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
FirewallRules: [{7D6B616C-B9F7-4B62-92BA-F0798442017E}] => (Allow) C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
FirewallRules: [{76F196C0-7F67-46FE-9E82-57BCA449F6C7}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [{DD97148D-DC5E-4E3F-9EB0-64E10AA0E239}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [{46A908B0-6471-4C8F-8EEA-4492E24C4E54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{340E9BA9-56DE-448B-8EF3-2ACB6BCBE69C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E4F33BC4-6C2C-4DF5-8957-3AAE39411920}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{20C0365F-0079-4213-8227-A1C64EE1B8AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{75D00D69-8B45-41EB-823A-3F346FED52A9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FB612F30-6326-46B6-A8EB-596119B7D058}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{507E9CE2-0810-4352-B260-4265D16E8029}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
09-07-2018 19:24:18 Scheduled Checkpoint
11-07-2018 03:00:12 Windows Update
15-07-2018 00:11:28 Windows Update
15-07-2018 01:33:56 Windows Update
 
==================== Faulty Device Manager Devices =============
 
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/15/2018 05:53:35 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/15/2018 05:52:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (07/15/2018 12:54:52 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/15/2018 12:54:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (07/14/2018 05:02:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (07/11/2018 05:44:14 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/11/2018 05:44:14 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/11/2018 03:28:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
 
System errors:
=============
Error: (07/15/2018 05:58:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {9E175B6D-F52A-11D8-B9A5-505054503030} did not register with DCOM within the required timeout.
 
Error: (07/15/2018 05:57:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Media Center Extender Service service depends on the Remote Desktop Services service which failed to start because of the following error: 
The account specified for this service is different from the account specified for other services running in the same process.
 
Error: (07/15/2018 05:57:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Remote Desktop Services service failed to start due to the following error: 
The account specified for this service is different from the account specified for other services running in the same process.
 
Error: (07/15/2018 05:56:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} did not register with DCOM within the required timeout.
 
Error: (07/15/2018 05:54:47 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Diagnostic Service Host service hung on starting.
 
Error: (07/15/2018 05:53:20 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The World Wide Web Publishing Service service depends on the Windows Process Activation Service service which failed to start because of the following error: 
The system cannot find the file specified.
 
Error: (07/15/2018 05:53:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
 and APPID 
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
 
Error: (07/15/2018 05:53:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
 and APPID 
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
 
 
CodeIntegrity:
===================================
 
Date: 2017-06-16 12:28:48.567
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.525
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.464
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.420
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.376
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:25:13.977
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:25:13.932
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:25:13.872
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
==================== Memory info =========================== 
 
Processor: Intel® Xeon® CPU X3480 @ 3.07GHz
Percentage of memory in use: 22%
Total physical RAM: 16375.11 MB
Available physical RAM: 12674.32 MB
Total Virtual: 32748.39 MB
Available Virtual: 28351.92 MB
 
==================== Drives ================================
 
Drive c: (WD Black 1TB C Drive) (Fixed) (Total:912.41 GB) (Free:788.55 GB) NTFS
Drive f: (Toshiba 1TB) (Fixed) (Total:930.91 GB) (Free:676.8 GB) NTFS
Drive k: (K Drive) (Fixed) (Total:931.39 GB) (Free:802.25 GB) NTFS
 
\\?\Volume{5e0aaba3-513e-11df-b48e-806e6f6e6963}\ (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{5e0aaba2-513e-11df-b48e-806e6f6e6963}\ (PQSERVICE) (Fixed) (Total:19 GB) (Free:6.64 GB) NTFS
\\?\Volume{551bb350-27c6-4d74-90c7-5645ecbdbee3}\ (Windows RE tools) (Fixed) (Total:0.49 GB) (Free:0.19 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: AE266D78)
Partition 1: (Not Active) - (Size=19 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=912.4 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 26FD5886)
 
Partition: GPT.
 
========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of Addition.txt ============================
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.07.2018
Ran by Killer (administrator) on KILLER-PC (15-07-2018 19:26:14)
Running from C:\Users\Killer\Downloads
Loaded Profiles: Killer (Available Profiles: Killer & Administrator)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\nortonsecurity.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\ScsiAccess.EXE
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
() C:\OEM\USBDECTION\USBS3S4Detection.exe
() C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
() C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSIMon.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\nortonsecurity.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\conathst.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
"Path" (C:\;C:\windows\inf;C:\windows\system;C:\windows\program files;C:\Windows\system32;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common -> C:\;C:\windows\inf;C:\windows\system;C:\windows\program files;C:\Windows\system32;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common) <==== Repaired successfully
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18382824 2017-09-01] (Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [497824 2016-12-15] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [MsiDS200gmmouseRun] => C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\msimon.exe [3712512 2016-03-03] ()
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [651560 2015-11-10] (Acronis International GmbH)
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Run: [GPU Tweak Main] => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [10980816 2017-09-22] (TODO: <Company name>)
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Policies\Explorer: [NoInstrumentation] 0
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1AFA12D4-0C5E-42D2-8C31-8B6B47CA8AF3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{4BB82FEB-45E8-4D16-9077-31F057F397A6}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW_enUS391US393
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW_enUS391US393
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NGC&chn=1000&geo=US&ver=22.14.2.13&locale=en_US&guid=D83E7110-A362-11DF-86BA-4487FC9240FA&doi=2016-09-01&gct=kwd&qsrc=2869
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-28] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-28] (Oracle Corporation)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine32\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
Toolbar: HKLM-x32 - No Name - {5911488E-9D1E-40ec-8CBB-06B231CC153F} -  No File
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://remoteaccess.caremark.com/dana-cached/sc/JuniperSetupClient.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
 
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 => not found
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-16] ()
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-16] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-06-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-06-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-05-10] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3381375812-2662650081-4155099547-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Killer\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife, LLP)
FF Plugin HKU\S-1-5-21-3381375812-2662650081-4155099547-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Killer\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-3381375812-2662650081-4155099547-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Killer\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [No File]
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxp://www.ebay.com/","hxxps://mail.google.com/mail/u/0/#inbox"
CHR Profile: C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default [2018-07-15]
CHR Extension: (Norton Identity Safe) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\admmjipmmciaobhojoghlmleefbicajg [2018-07-11]
CHR Extension: (Norton Security Toolbar) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2018-04-28]
CHR Extension: (Adobe Acrobat) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-06-03]
CHR Extension: (securyBrowse) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmkfgaddfibheaoldcpaajllidfknfam [2018-05-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-10]
CHR Profile: C:\Users\Killer\AppData\Local\Google\Chrome\User Data\System Profile [2018-05-06]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [incfcgceegpikennjoplhfghaaikdgei] - C:\Users\Killer\AppData\Roaming\StartNow Toolbar\CR\zcrx.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1135600 2016-12-15] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6988296 2017-12-08] ()
S4 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-04-26] (Creative Labs) [File not signed]
S4 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [22304 2018-01-17] (Intel)
S4 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [886032 2018-01-11] ()
S4 Intel® SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel Corporation)
R2 iprip; C:\Windows\System32\iprip.dll [35328 2009-07-13] (Microsoft Corporation)
S4 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis)
S4 NeroBackItUpBackgroundService2018; C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\NBService.exe [287096 2017-12-15] (Nero AG)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NortonSecurity; C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NortonSecurity.exe [328648 2018-05-30] (Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764896 2018-05-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764896 2018-05-20] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S4 RemotePC Agent; C:\Program Files (x86)\Samsung\Remote PC\rvagent.exe [813448 2014-05-07] (Rsupport Co., Ltd.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2017-01-05] (CyberLink)
R2 ScsiAccess; C:\Windows\SysWOW64\ScsiAccess.EXE [181312 2003-02-04] () [File not signed]
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-15] (DEVGURU Co., LTD.)
S4 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [182544 2018-01-11] ()
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
R2 UsbService; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [334848 2010-08-10] () [File not signed]
S4 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [886032 2018-01-11] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
S2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe [18256 2016-09-30] (Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\BASHDefs\20180711.005\BHDrvx64.sys [1919568 2018-06-22] (Symantec Corporation)
R1 CBDisk; C:\Windows\system32\drivers\CBDisk.sys [70344 2010-01-13] (EldoS Corporation)
R1 ccSet_NGC; C:\Windows\system32\drivers\NGCx64\160E020.00D\ccSetx64.sys [187520 2018-05-29] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-03-23] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153168 2018-03-24] (Symantec Corporation)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [339808 2017-04-03] (Acronis International GmbH)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2017-01-21] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\IPSDefs\20180713.062\IDSvia64.sys [1298000 2018-05-22] (Symantec Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37072 2016-08-03] (Intel Corporation)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24728 2017-05-02] (ASUSTeK Computer Inc.)
R0 MDFSYSNT; C:\Windows\System32\Drivers\MDFSYSNT.sys [307888 2010-10-07] (Mediafour Corporation)
R0 MDPMGRNT; C:\Windows\System32\DRIVERS\MDPMGRNT.SYS [32424 2010-10-21] (Mediafour Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31200 2018-05-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [67432 2018-03-15] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [68112 2018-04-27] (NVIDIA Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [413912 2015-12-22] (Realsil Semiconductor Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [27440 2017-03-08] () [File not signed]
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [41512 2018-01-11] ()
R1 SRTSP; C:\Windows\System32\Drivers\NGCx64\160E020.00D\SRTSP64.SYS [838224 2018-05-29] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NGCx64\160E020.00D\SRTSPX64.SYS [49232 2018-05-29] (Symantec Corporation)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13920 2017-01-27] ()
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\160E020.00D\SYMEFASI64.SYS [1942096 2018-05-29] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [99920 2018-06-10] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NGCx64\160E020.00D\Ironx64.SYS [307792 2018-05-29] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NGCx64\160E020.00D\SYMNETS.SYS [566912 2018-05-29] (Symantec Corporation)
S3 tap0901cn; C:\Windows\System32\DRIVERS\tap0901cn.sys [36224 2015-10-19] (The OpenVPN Project)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1049432 2017-04-03] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [202592 2017-04-03] (Acronis International GmbH)
S3 tnd; C:\Windows\System32\DRIVERS\tnd.sys [581464 2017-04-03] (Acronis International GmbH)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-11] (Microsoft Corporation)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [301408 2017-04-03] (Acronis International GmbH)
S3 vrvd5; C:\Windows\System32\DRIVERS\vrvd5.sys [13344 2017-06-03] (Rsupport Corporation)
R3 vuhub; C:\Windows\System32\DRIVERS\vuhub.sys [47616 2007-12-17] ()
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-13] (Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\Windows\System32\DRIVERS\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\Windows\System32\Drivers\NGCx64\160E020.00D\wpCtrlDrv.sys [1015592 2018-05-29] (Symantec Corporation)
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
U3 aswbdisk; no ImagePath
S3 CMUAC; system32\DRIVERS\CMUAC.SYS [X]
S3 cmudaxp; system32\drivers\cmudaxp.sys [X]
S3 COMMONFX.DLL; system32\COMMONFX.DLL [X]
S3 CTAUDFX.DLL; system32\CTAUDFX.DLL [X]
S3 CTERFXFX.DLL; system32\CTERFXFX.DLL [X]
S3 CTSBLFX.DLL; system32\CTSBLFX.DLL [X]
S3 dcdbas; system32\DRIVERS\dcdbas64.sys [X]
 
========================== Drivers MD5 =======================
 
C:\Windows\System32\DRIVERS\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys DCA5495CA17AEB2F4FD8AC60812C3999
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 0DC2A9882540DEA4A55B08785E09D8FC
C:\Windows\system32\drivers\agp440.sys 466BF4170DC41BB939F1F9AB8F97F8F5
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atikmpag.sys 04DAA0F922017FD94157717E7AC6B474
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys 28879F924D021D56431DD142155A9644
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\system32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\drivers\AtiHdmi.sys FB7602C5C508BE281368AAE0B61B51C6
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\BASHDefs\20180711.005\BHDrvx64.sys 75EC95A13A174FED3DF7D5A5EE522516
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ABA3984C822E4D3F889699912D85D6C5
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B
C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\system32\drivers\CBDisk.sys B99D91E4CD9017F213645AA2E80EB425
C:\Windows\system32\drivers\NGCx64\160E020.00D\ccSetx64.sys EF0BD4BC5BD9431156DBB38B30D6D718
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys B5D7A0638CA817BA7D8A4DFD3499BA2A
C:\Windows\System32\DRIVERS\CLVirtualDrive.sys 5C646CAC91E086F7FF53C7F2E857F263
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys 9DE8D00626F01DBD1879A6655D7A752D
C:\Windows\System32\drivers\COMMONFX.SYS F38ACFF40E9EDC2B3476EDD724CEA4A0
C:\Windows\System32\drivers\COMMONFX.SYS F38ACFF40E9EDC2B3476EDD724CEA4A0
C:\Windows\system32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\CT20XUT.DLL 01BBD5CB85423B12E445209D243A49A9
C:\Windows\System32\drivers\ctac32k.sys 095C566746217CD1482EDE40A70D87D2
C:\Windows\System32\drivers\ctaud2k.sys 157E2196FCCD002A2EDF3B06DF7B0C9A
C:\Windows\System32\drivers\CTAUDFX.SYS 17979EE857E930CBFDF24A12E89D77A1
C:\Windows\System32\drivers\CTAUDFX.SYS 17979EE857E930CBFDF24A12E89D77A1
C:\Windows\System32\CTEAPSFX.DLL 06300545BEDF49B6A51FDFE1861F9CAF
C:\Windows\System32\CTEDSPFX.DLL 2D902F8EC247F0ED0D458CDCAF786544
C:\Windows\System32\CTEDSPIO.DLL 0D3F99CDA2BEA14E4911A698441F1A29
C:\Windows\System32\CTEDSPSY.DLL 9D26AA450AC1CAADDE25F1621BA89842
C:\Windows\System32\drivers\CTERFXFX.SYS FE3EAE37536C02D087E5C5D339663779
C:\Windows\System32\drivers\CTERFXFX.SYS FE3EAE37536C02D087E5C5D339663779
C:\Windows\System32\CTEXFIFX.DLL FA6DCA331835997D2F7C83B9AAABC4BB
C:\Windows\System32\CTHWIUT.DLL 9E6A0A3CA3825BB568D42F5F3CB09453
C:\Windows\System32\drivers\ctprxy2k.sys 4E4FDAB4A7CF5AF56E3FA1FE35E8AD3C
C:\Windows\System32\drivers\CTSBLFX.SYS 4A7DE2E30B2B9253933A157401EC76D5
C:\Windows\System32\drivers\CTSBLFX.SYS 4A7DE2E30B2B9253933A157401EC76D5
C:\Windows\System32\drivers\ctsfm2k.sys 065ADE032A044D518AB1407D3586B7D5
C:\Windows\System32\DRIVERS\dc3d.sys A4700D1F78539C0ED32FA50E64F9C692
C:\Windows\System32\Drivers\dfsc.sys 63705A08981F7EDD376241D6E0A9C2AC
C:\Windows\System32\DRIVERS\ssudbus.sys 5F78930AAB3900102EA8ACDD38F97324
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys 616387BBD83372220B09DE95F4E67BBC
C:\Windows\system32\drivers\dmvsc.sys 5DB085A8A6600BE6401F2B24EECB5415
C:\Windows\system32\drivers\drmkaud.sys 26FE888505E5A945B0536AF9A2A27A6F
C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS 8407DDFAB85AE664E507C30314090385
C:\Windows\System32\drivers\dxgkrnl.sys 5CEF80AE869336376F550ECAE91E424A
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys 03D20FD0DE4CA674F5F10FC78AB146C1
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\emupia2k.sys F380FF5D6D80CECC6DBBC15569757613
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys A841E787369DEAABEFBA5C9D6204422C
C:\Windows\system32\drivers\errdev.sys 9002EED07FD7FCFF6B8C5C06B454AC19
C:\Windows\System32\Drivers\exfat.sys 7E45F8B117419ABA3BB26579F6E70324
C:\Windows\System32\Drivers\fastfat.sys 6EDFA237D25433C03F42FBFDB16BDD24
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\file_tracker.sys 3362EFB9ECE40CF85B0A729F23BAEB7D
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys DC591A7A196E99EFB5A48D708CB989FD
C:\Windows\System32\DRIVERS\fltsrv.sys 48E43456C95CE0D73D09CE8FA3E5978A
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\drivers\ha10kx2k.sys 82B68F585110AE8500A6D23623AE1F74
C:\Windows\System32\drivers\hap16v2k.sys 83F647F9ACE9192556F758E528024F68
C:\Windows\System32\drivers\hap17v2k.sys E815D29361DE89D24C8DBE3E5A7006C9
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidusb.sys 90D91013D16A15B22A4B4EB6D4140A5B
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys 93C367EA831FB39DEE3BA96539A187FB
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStor.sys D7921D5A870B11CC1ADAB198A519D50A
C:\Windows\System32\drivers\iaStorA.sys 25555186E4FBDF0E30A5DBFC9B9A73F9
C:\Windows\System32\drivers\iaStorF.sys 10E79E366FA255318F5D1D0ED07F947D
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\IPSDefs\20180713.062\IDSvia64.sys 34C4914DC9FD4E9209367C1B2FD7D5A8
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\drivers\RTKVHD64.sys 8AC425F57972DEC6C2BBE7FC5F2A7534
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys 58BC5C1389AB5498B6D78F6429CB6B31
C:\Windows\system32\drivers\IOMap64.sys DA7CDE931BC85D76CC6AB95E80613AAC
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys 905E9D664F38B93B53FA05422165F5B5
C:\Windows\System32\DRIVERS\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys B16D8FEC7EE13C8575B4B8BD8F4F6405
C:\Windows\System32\Drivers\ksecpkg.sys 968F43D731E8FBC2E75BBA07EE0FC086
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\L8042Kbd.sys 3447DD130A0F7ED9377878C7A0635BBD
C:\Windows\System32\DRIVERS\L8042mou.Sys 543C6619CEE79D0AFD0F89D929FBA10A
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\LMouKE.Sys B705D98F8FF847D270098DE6CE6EE1B4
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys 5416CEB2916BBE635288C4D1075B045E
C:\Windows\System32\Drivers\MDFSYSNT.sys 99875732A0C1373316AF28ED79C168CC
C:\Windows\System32\DRIVERS\MDPMGRNT.SYS 8D3B834090836A01F49B97F22AE9C83C
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys 072D8646E23ECF8A3F5F0157017B4DB6
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys 94FE5C648F51D093630AE1CD33284C23
C:\Windows\system32\drivers\mrxdav.sys 98DB1790F0A584E0A2528B92B052417F
C:\Windows\System32\DRIVERS\mrxsmb.sys A21C2034FC556EBCA6478E434B5AF693
C:\Windows\System32\DRIVERS\mrxsmb10.sys 2DAA11557AD647010C2CC09202DD6C0B
C:\Windows\System32\DRIVERS\mrxsmb20.sys 640456A9D6EBCD3BC25C64CA8D38B5F5
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys 6FE3DBEEA730A857CA3DF603B7DEADA2
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys 94275393BB85D1E2B74BFEFEC386B4A0
C:\Windows\system32\drivers\mssmbios.sys 1FC0BF25FFCB9F751BCBC6C6AC577078
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys 9FB2A095B1166CB3C9A06651863B3452
C:\Windows\System32\drivers\ndis.sys 261F27367EB6EA6478B940811F0A6F03
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys 3F217F77899654833B650ED6A1372BE4
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys E46AF308E96F7730F59B0F250A884CD6
C:\Windows\System32\DRIVERS\netbios.sys 2E19EB10185992AB08BC3688AACA4CE2
C:\Windows\System32\DRIVERS\netbt.sys 734837208CAFD6E0959A7A0333C95C9D
C:\Windows\System32\DRIVERS\netr28x.sys 254AF6DF67EAFA8C6E0AA0D316487673
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys BE313E566EEA2A4B7F9AAC9782A567D4
C:\Windows\System32\Drivers\Ntfs.sys 8422AFBD1C2D30FFC913309D7F1A366D
C:\Windows\system32\drivers\NTIDrvr.sys 64DDD0DEE976302F4BD93E5EFCC2F013
C:\Windows\System32\DRIVERS\NuidFltr.sys 4B73AA3ACE2B512FB33E03147430E082
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\drivers\nvhda64v.sys 4FD4739B359C2923965FE99B03AFD090
C:\Windows\System32\DRIVERS\nvlddmkm.sys D9D8559108EB48163DB9E83078FAACA6
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys F98291305A625C74F297D30F8234C2DD
C:\Windows\System32\drivers\nvvad64v.sys C8DA3CC1980C0B7695C3B87562C78BA4
C:\Windows\System32\DRIVERS\nvvhci.sys E880D79F0EF4C349D734274AD8A7DFC0
C:\Windows\system32\drivers\nv_agp.sys 7425A6B64F5D37D0565F2581B886E5E3
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\System32\drivers\ctoss2k.sys 85EA378116E2C4385993BA5124536FFC
C:\Windows\system32\drivers\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys 481DADB90C1D4E9F19328079C7A9E63D
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys EA4D67448BE493D543F1730D6CD04694
C:\Windows\System32\DRIVERS\point64.sys 2842E59E2A5281D1A9ABD939E9E35721
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys 4CE827A5433451551E99C2C1D20E4A43
C:\Windows\System32\Drivers\PxHlpa64.sys 87B04878A6D59D6C79251DC960C674C1
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys FB45727105E27756B3252572A138FA19
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys FE571E088C2D83619D2D48D4E961BF41
C:\Windows\System32\drivers\rdyboost.sys F4287A980C0AA41DE3073F053E5EA73C
C:\Windows\System32\DRIVERS\RMCAST.sys 5BD6B1EC997FF3DD779D62E05D2079A8
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RtsUStor.sys 9CF8593B62102545CB1652A1D8748FDD
C:\Windows\System32\DRIVERS\Rt64win7.sys C4E5C8F88A6332089FD22625B23F5902
C:\Windows\System32\DRIVERS\Rtlh64.sys D74FE7DFA031FA2C6F96A26123814D3D
C:\Windows\System32\Drivers\RtsUer.sys AE4607D7C7AA83A863BFA214483E8EE4
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\semav6msr64.sys 32B159FE12047F7526303D0F30949645
C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\snapman.sys 8C048728D8D4F3B204C18C5379BE7645
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NGCx64\160E020.00D\SRTSP64.SYS 5E641EEE3F4279984D10E00B3ED98AD4
C:\Windows\system32\drivers\NGCx64\160E020.00D\SRTSPX64.SYS 5322CDED33342BD8856AA88EAE94FC11
C:\Windows\System32\DRIVERS\srv.sys 1145EC013B72D4E6C60497707BB1A4B6
C:\Windows\System32\DRIVERS\srv2.sys 2D8FFA3B636368130F909E0CD935B555
C:\Windows\System32\DRIVERS\srvnet.sys 4B1C343E11065819F687EAC68A5E13F3
C:\Windows\System32\DRIVERS\ssudmdm.sys F0B59ADCD06BCEB9D47311B7041CA2C9
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\serscan.sys DECACB6921DED1A38642642685D77DAC
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\SWDUMon.sys 04CF20310145DEC63D5387BEAFF77D9A
C:\Windows\system32\drivers\swenum.sys 10DCD3BDFA785E1482EC02304A7E9B96
C:\Windows\System32\drivers\NGCx64\160E020.00D\SYMEFASI64.SYS 9FBBBCE5B870C7E4948C012F752E99F1
C:\Windows\system32\Drivers\SYMEVENT64x86.SYS BC193D9066B2BA4F22A42829290A9D9A
C:\Windows\system32\drivers\NGCx64\160E020.00D\Ironx64.SYS DD543931EF3940A2B201B12021EC9383
C:\Windows\System32\Drivers\NGCx64\160E020.00D\SYMNETS.SYS 138531EB369E77AEF5F9373FD093BCE7
C:\Windows\System32\DRIVERS\tap0901cn.sys AEA833ED785FDAB126A3AE721B51FD90
C:\Windows\System32\drivers\tcpip.sys C2B2F27629913C7DC1239E90F9A3D107
C:\Windows\System32\DRIVERS\tcpip.sys C2B2F27629913C7DC1239E90F9A3D107
C:\Windows\System32\drivers\tcpipreg.sys 7FE5586314EE7D6AA8483264A089E5AF
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys 4DD986720F7CB7A8A5D1226793097B9A
C:\Windows\system32\drivers\termdd.sys AC24D7A7D9EEDE11E2926F9001BEAFB5
C:\Windows\System32\DRIVERS\tib.sys 3F656867E983E8D9E71E57354383C23A
C:\Windows\System32\DRIVERS\tib_mounter.sys DA3BF6E315D2FC2681CB7AE1E745DFDB
C:\Windows\System32\DRIVERS\tnd.sys A6C7255A6C95B05E6551538F54248A7F
C:\Windows\System32\DRIVERS\tssecsrv.sys 2CF58216424757ED29605B4F18EC443C
C:\Windows\System32\drivers\tsusbflt.sys E9981ECE8D894CEF7038FD1D040EB426
C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\system32\drivers\UBHelper.sys 2E22C1FD397A5A9FFEF55E9D1FC96C00
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys B70E26A57F35ECA5199E6D6B9592A67C
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\drivers\usbaudio.sys B0435098C81D04CAFFF80DDB746CD3A2
C:\Windows\system32\drivers\usbccgp.sys E6DFE1F33B1250A6E26EA6F6CE10B09C
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 234F9E56606CE5D1549DE7D4CCA4DE0C
C:\Windows\system32\drivers\usbhub.sys 0A33C9EC6822B24E26687F1EC6346922
C:\Windows\system32\drivers\usbohci.sys 9C456BFD0FF50CB5B7ECDA7B7529F63B
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usb80236.sys 2C42E595E7E381596B9A14F88F5AE027
C:\Windows\System32\DRIVERS\usbscan.sys 9661DA76B4531B2DA272ECCE25A8AF24
C:\Windows\System32\DRIVERS\USBSTOR.SYS D029DD09E22EB24318A8FC3D8138BA43
C:\Windows\system32\drivers\usbuhci.sys 3C1D50EBDC6F531C0AA905D71956E106
C:\Windows\System32\DRIVERS\usb8023x.sys 7B28E2FBE75115660FAB31079C0A9F29
C:\Windows\System32\drivers\vdrvroot.sys 7BDCE021786C3DCCFD2C22EBF643EE36
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\virtual_file.sys 0C987C7C5A0B710AB2881B3F19DF72F5
C:\Windows\system32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys 8EDE91FBAC7BF7605323C517C717A253
C:\Windows\System32\drivers\volmgrx.sys 85C5468BC395819AE2A0C747334BA14C
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vrvd5.sys DDF7522FBEF8D50E015E743813595801
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vuhub.sys E07D31EE76EE18BFCA49AD9A89782D43
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys DC4CB3626E7423B9D83CF1B4857FDF15
C:\Windows\System32\DRIVERS\wanarp.sys DC4CB3626E7423B9D83CF1B4857FDF15
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\System32\DRIVERS\WirelessKeyboardFilter.sys 6E5FE85FC15590EF509A6D217C65F9BE
C:\Windows\system32\drivers\wmiacpi.sys 43471A750D4F3918AC92F5131AE252D3
C:\Windows\System32\Drivers\NGCx64\160E020.00D\wpCtrlDrv.sys 30418546D1D5C49639DC7ACEAF66FF5C
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WSDPrint.sys 8D918B1DB190A4D9B1753A66FA8C96E8
C:\Windows\System32\DRIVERS\WSDScan.sys 4A2A5C50DD1A63577D3ACA94269FBC7F
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-07-15 19:23 - 2018-07-15 19:23 - 000000241 _____ C:\Users\Killer\Downloads\Search.txt
2018-07-15 19:20 - 2018-07-15 19:20 - 000093736 _____ C:\Users\Killer\Downloads\Shortcut.txt
2018-07-15 19:18 - 2018-07-15 19:18 - 000000000 ____D C:\Users\Killer\Downloads\FRST-OlderVersion
2018-07-15 19:09 - 2018-07-15 19:26 - 000048362 _____ C:\Users\Killer\Downloads\FRST.txt
2018-07-15 19:09 - 2018-07-15 19:20 - 000091729 _____ C:\Users\Killer\Downloads\Addition.txt
2018-07-15 19:08 - 2018-07-15 19:26 - 000000000 ____D C:\FRST
2018-07-15 19:08 - 2018-07-15 19:18 - 002412544 _____ (Farbar) C:\Users\Killer\Downloads\FRST64.exe
2018-07-15 18:18 - 2018-07-15 18:18 - 000000000 ____D C:\Windows\System32\Tasks\Remediation
2018-07-15 18:10 - 2018-07-15 18:10 - 001107968 _____ C:\Users\Killer\Downloads\RSIT.exe
2018-07-15 18:10 - 2018-07-15 18:10 - 000000000 ____D C:\rsit
2018-07-15 18:10 - 2018-07-15 18:10 - 000000000 ____D C:\Program Files (x86)\trend micro
2018-07-14 18:50 - 2018-07-14 18:51 - 050046976 _____ C:\Users\Killer\Downloads\speedtestbyookla_x64.msi
2018-07-11 17:40 - 2017-05-02 13:47 - 000024728 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2018-07-10 11:59 - 2018-06-20 17:58 - 000398376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-07-10 11:59 - 2018-06-20 17:00 - 000348824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-07-10 11:59 - 2018-06-16 10:07 - 025743872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-07-10 11:59 - 2018-06-16 09:46 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-07-10 11:59 - 2018-06-16 09:46 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-07-10 11:59 - 2018-06-16 09:36 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-07-10 11:59 - 2018-06-16 09:33 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-07-10 11:59 - 2018-06-16 09:32 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-07-10 11:59 - 2018-06-16 09:31 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-07-10 11:59 - 2018-06-16 09:31 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-07-10 11:59 - 2018-06-16 09:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-07-10 11:59 - 2018-06-16 09:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-07-10 11:59 - 2018-06-16 09:27 - 005779968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-07-10 11:59 - 2018-06-16 09:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-07-10 11:59 - 2018-06-16 09:23 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-07-10 11:59 - 2018-06-16 09:20 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-07-10 11:59 - 2018-06-16 09:19 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-07-10 11:59 - 2018-06-16 09:19 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-07-10 11:59 - 2018-06-16 09:19 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-07-10 11:59 - 2018-06-16 09:19 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-07-10 11:59 - 2018-06-16 09:19 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-07-10 11:59 - 2018-06-16 09:12 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-07-10 11:59 - 2018-06-16 09:08 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-07-10 11:59 - 2018-06-16 09:06 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-07-10 11:59 - 2018-06-16 09:06 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-07-10 11:59 - 2018-06-16 09:05 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-07-10 11:59 - 2018-06-16 09:05 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-07-10 11:59 - 2018-06-16 09:04 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-07-10 11:59 - 2018-06-16 09:02 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-07-10 11:59 - 2018-06-16 09:02 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-07-10 11:59 - 2018-06-16 09:02 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-07-10 11:59 - 2018-06-16 09:01 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-07-10 11:59 - 2018-06-16 08:59 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-07-10 11:59 - 2018-06-16 08:59 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-07-10 11:59 - 2018-06-16 08:58 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-07-10 11:59 - 2018-06-16 08:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-07-10 11:59 - 2018-06-16 08:57 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-07-10 11:59 - 2018-06-16 08:56 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-07-10 11:59 - 2018-06-16 08:56 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-07-10 11:59 - 2018-06-16 08:55 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-07-10 11:59 - 2018-06-16 08:55 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-07-10 11:59 - 2018-06-16 08:53 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-07-10 11:59 - 2018-06-16 08:47 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-07-10 11:59 - 2018-06-16 08:46 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-07-10 11:59 - 2018-06-16 08:44 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-07-10 11:59 - 2018-06-16 08:42 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-07-10 11:59 - 2018-06-16 08:42 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-07-10 11:59 - 2018-06-16 08:42 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-07-10 11:59 - 2018-06-16 08:42 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-10 11:59 - 2018-06-16 08:41 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-07-10 11:59 - 2018-06-16 08:40 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-07-10 11:59 - 2018-06-16 08:39 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-07-10 11:59 - 2018-06-16 08:39 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-07-10 11:59 - 2018-06-16 08:38 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-07-10 11:59 - 2018-06-16 08:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-07-10 11:59 - 2018-06-16 08:36 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-07-10 11:59 - 2018-06-16 08:34 - 004496384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-07-10 11:59 - 2018-06-16 08:32 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-07-10 11:59 - 2018-06-16 08:30 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-07-10 11:59 - 2018-06-16 08:29 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-07-10 11:59 - 2018-06-16 08:28 - 002060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-07-10 11:59 - 2018-06-16 08:27 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-07-10 11:59 - 2018-06-16 08:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-07-10 11:59 - 2018-06-16 08:16 - 001545216 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-07-10 11:59 - 2018-06-16 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-07-10 11:59 - 2018-06-16 08:05 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-07-10 11:59 - 2018-06-16 08:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-07-10 11:59 - 2018-06-16 08:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-07-10 11:59 - 2018-06-13 09:23 - 000140992 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-07-10 11:59 - 2018-06-13 09:20 - 014185984 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-07-10 11:59 - 2018-06-13 09:19 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2018-07-10 11:59 - 2018-06-13 09:18 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-07-10 11:59 - 2018-06-13 08:55 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-07-10 11:59 - 2018-06-13 08:54 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2018-07-10 11:59 - 2018-06-13 08:40 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-07-10 11:59 - 2018-06-08 09:27 - 005577408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-07-10 11:59 - 2018-06-08 09:27 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-07-10 11:59 - 2018-06-08 09:27 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-07-10 11:59 - 2018-06-08 09:27 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-07-10 11:59 - 2018-06-08 09:27 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-07-10 11:59 - 2018-06-08 09:23 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-07-10 11:59 - 2018-06-08 09:22 - 001665344 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000369664 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:02 - 004050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-07-10 11:59 - 2018-06-08 09:02 - 003962048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-07-10 11:59 - 2018-06-08 08:57 - 001314072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000330240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:44 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-07-10 11:59 - 2018-06-08 08:44 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-07-10 11:59 - 2018-06-08 08:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2018-07-10 11:59 - 2018-06-08 08:44 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-07-10 11:59 - 2018-06-08 08:43 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-07-10 11:59 - 2018-06-08 08:39 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-07-10 11:59 - 2018-06-08 08:38 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-07-10 11:59 - 2018-06-08 08:38 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-07-10 11:59 - 2018-06-08 08:34 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-07-10 11:59 - 2018-06-08 08:34 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-07-10 11:59 - 2018-06-08 08:34 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-07-10 11:59 - 2018-06-08 08:33 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-07-10 11:59 - 2018-06-08 08:33 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-07-10 11:59 - 2018-06-08 08:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-07-10 11:59 - 2018-06-08 08:28 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2018-07-10 11:59 - 2018-06-08 08:27 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-07-10 11:59 - 2018-06-08 08:21 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-07-10 11:59 - 2018-06-08 08:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-07-10 11:59 - 2018-06-08 08:21 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-07-10 11:59 - 2018-06-08 08:21 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-07-10 11:59 - 2018-06-08 08:19 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 002860032 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-07-10 11:59 - 2018-06-08 06:05 - 001602048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000783872 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000612352 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000443392 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-07-10 11:59 - 2018-06-07 09:20 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2018-07-10 11:59 - 2018-06-07 09:19 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-07-10 11:59 - 2018-06-07 09:19 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-07-10 11:59 - 2018-06-07 09:19 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-07-10 11:59 - 2018-06-07 08:57 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-07-10 11:59 - 2018-06-07 08:49 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2018-07-10 11:59 - 2018-06-07 08:34 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2018-07-10 11:59 - 2018-05-31 09:28 - 001893568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-07-10 11:59 - 2018-05-31 09:28 - 000377024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2018-07-10 11:59 - 2018-05-31 09:28 - 000287936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2018-07-05 15:00 - 2018-07-05 15:00 - 000003712 _____ C:\Windows\System32\Tasks\ASUS Live Update Task Schedule
2018-06-28 19:37 - 2018-06-28 19:37 - 000000000 ____D C:\Users\Public\CyberLink
2018-06-27 21:06 - 2018-05-02 08:32 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2018-06-27 21:06 - 2018-04-26 06:05 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000918296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000065880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000063832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000021848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000020824 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000019288 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000018776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000016216 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000015192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-06-27 21:06 - 2018-04-25 09:02 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2018-06-27 21:06 - 2018-04-25 08:18 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2018-06-21 20:36 - 2018-06-21 20:36 - 000000000 ____D C:\Windows\SysWOW64\BestPractices
2018-06-21 20:36 - 2018-06-21 20:36 - 000000000 ____D C:\Windows\system32\BestPractices
2018-06-18 21:54 - 2018-06-27 20:58 - 000000000 ____D C:\Users\Killer\AppData\Local\ElevatedDiagnostics
2018-06-17 14:51 - 2018-07-15 18:34 - 000533830 _____ C:\Windows\ntbtlog.txt
2018-06-17 14:45 - 2018-06-17 14:45 - 000008468 _____ C:\Users\Killer\Documents\cc_20180617_144524.reg
2018-06-16 15:14 - 2018-06-16 15:14 - 000000000 ____D C:\Users\Killer\AppData\Local\Microsoft_Corporation
2018-06-16 08:38 - 2018-06-16 08:38 - 001204720 _____ (Adobe Systems Incorporated) C:\Users\Killer\Downloads\aceddfc3-967d-446f-886e-f02f6445137c.tmp
2018-06-16 01:23 - 2018-06-16 01:23 - 000045674 _____ C:\Users\Killer\Documents\cc_20180616_012317.reg
2018-06-16 01:20 - 2018-06-16 01:20 - 000017960 _____ C:\Users\Killer\Documents\install1.txt
2018-06-16 01:15 - 2018-06-16 01:15 - 000003312 _____ C:\Users\Killer\Documents\cc_20180616_011551.reg
2018-06-16 01:14 - 2018-06-16 01:14 - 000004220 _____ C:\Users\Killer\Documents\cc_20180616_011403.reg
2018-06-16 01:12 - 2018-06-16 01:12 - 000023660 _____ C:\Users\Killer\Documents\cc_20180616_011234.reg
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-07-15 19:12 - 2009-07-13 21:45 - 000028224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-15 19:12 - 2009-07-13 21:45 - 000028224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-15 17:55 - 2018-05-07 19:11 - 000002982 _____ C:\Windows\System32\Tasks\GPU Tweak II
2018-07-15 17:55 - 2017-06-03 00:39 - 000000000 ____D C:\ProgramData\NVIDIA
2018-07-15 17:54 - 2018-02-01 21:35 - 000000422 _____ C:\Windows\Tasks\Nero TuneItUp PRO (Autopilot.exe).job
2018-07-15 17:51 - 2017-12-25 11:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-07-15 17:51 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\registration
2018-07-15 00:15 - 2017-06-03 00:42 - 000964082 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-07-15 00:15 - 2009-07-13 22:13 - 000964082 _____ C:\Windows\system32\PerfStringBackup.INI
2018-07-15 00:15 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\inf
2018-07-11 03:27 - 2009-07-13 21:45 - 000397664 _____ C:\Windows\system32\FNTCACHE.DAT
2018-07-11 03:24 - 2017-06-03 18:16 - 000000000 ____D C:\Windows\system32\appraiser
2018-07-11 03:03 - 2013-07-26 16:26 - 000000000 ____D C:\Windows\system32\MRT
2018-07-11 03:00 - 2017-06-03 10:31 - 134675576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-07-09 19:24 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\rescache
2018-07-05 16:41 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\system32\NDF
2018-06-30 00:17 - 2011-02-26 09:03 - 000000000 ____D C:\Users\Public\Downloads\Norton
2018-06-29 22:22 - 2016-03-17 21:52 - 000001945 _____ C:\Windows\epplauncher.mif
2018-06-28 19:39 - 2010-09-13 07:59 - 000000000 ____D C:\Users\Killer\AppData\Local\CrashDumps
2018-06-28 19:06 - 2010-04-10 08:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-06-28 19:03 - 2009-07-13 20:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-06-28 18:38 - 2009-07-13 22:08 - 000032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-06-26 18:38 - 2016-06-23 00:31 - 000002281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-26 18:38 - 2016-04-15 23:28 - 000002240 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-06-25 20:52 - 2017-06-03 00:42 - 000000000 ____D C:\Users\Killer
2018-06-25 20:42 - 2018-02-20 09:16 - 000000000 ____D C:\Users\Administrator
2018-06-24 14:30 - 2018-06-10 01:39 - 000003218 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2018-06-23 11:49 - 2018-02-01 21:34 - 000003362 _____ C:\Windows\System32\Tasks\SkipUAC Save power
2018-06-23 11:49 - 2018-02-01 21:34 - 000003358 _____ C:\Windows\System32\Tasks\SkipUAC Optimize Windows Services
2018-06-23 11:43 - 2018-01-01 15:48 - 000002796 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-06-23 11:40 - 2009-07-13 22:09 - 000000000 ____D C:\Windows\System32\Tasks\WPD
2018-06-22 22:27 - 2018-06-10 01:07 - 000003794 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:27 - 2018-06-10 01:07 - 000003794 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:27 - 2018-06-10 01:07 - 000003740 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-06-10 01:08 - 000003800 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-06-10 01:07 - 000003740 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-06-10 01:07 - 000003732 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-04-07 21:38 - 000003496 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:25 - 2018-06-10 01:08 - 000004148 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:25 - 2018-06-10 01:08 - 000003942 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:21 - 2018-01-01 15:48 - 000004130 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-06-22 22:21 - 2010-08-08 20:28 - 000003206 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-06-22 22:18 - 2015-10-23 17:11 - 000003036 _____ C:\Windows\System32\Tasks\{02B25E0F-80EE-4F12-976C-485B1519A527}
2018-06-21 23:26 - 2017-06-09 17:35 - 000007676 _____ C:\Users\Killer\AppData\Local\resmon.resmoncfg
2018-06-21 20:36 - 2016-02-04 16:15 - 000000000 ____D C:\inetpub
2018-06-21 20:36 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2018-06-21 20:36 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\system32\inetsrv
2018-06-21 20:33 - 2010-04-26 07:31 - 000000000 ____D C:\Program Files (x86)\Windows Live
2018-06-21 20:14 - 2018-05-07 00:43 - 000000337 _____ C:\Users\Killer\AppData\Local\Perfmon.PerfmonCfg
2018-06-17 13:39 - 2018-03-11 21:50 - 000060416 ___SH C:\Users\Killer\Desktop\Thumbs.db
2018-06-17 13:37 - 2018-02-10 03:40 - 000000000 ____D C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-06-17 13:37 - 2018-02-10 03:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-06-17 13:37 - 2017-10-05 01:47 - 000000000 ____D C:\Windows\Minidump
2018-06-17 13:37 - 2015-06-27 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2018-06-16 18:25 - 2017-06-01 17:38 - 000000000 ____D C:\Users\Killer\AppData\Local\NVIDIA Corporation
2018-06-16 09:13 - 2012-10-10 15:47 - 000273920 ___SH C:\Users\Killer\Downloads\Thumbs.db
2018-06-16 08:42 - 2014-08-24 18:00 - 000000000 ____D C:\Users\Killer\AppData\Local\Adobe
2018-06-16 08:41 - 2012-05-08 16:38 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-06-16 08:41 - 2011-05-13 21:06 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-16 08:41 - 2010-10-15 15:55 - 000000000 ____D C:\Windows\system32\Macromed
2018-06-16 08:41 - 2010-04-10 08:30 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-06-16 01:22 - 2012-05-15 17:32 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2018-06-16 01:18 - 2018-02-01 21:34 - 000000364 _____ C:\Windows\Tasks\Nero TuneItUp PRO.job
2018-06-15 00:25 - 2018-02-20 09:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
 
==================== Files in the root of some directories =======
 
2017-07-12 12:22 - 2017-05-18 22:17 - 000328168 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI (7).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 000328168 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI (8).dll
2017-07-12 12:58 - 2017-05-18 22:18 - 000714216 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI (9).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 000534504 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI.dll
2018-04-01 15:02 - 2011-06-15 02:20 - 000180504 _____ () C:\Users\Killer\Drv64.exe
2018-04-01 15:03 - 2011-06-15 02:20 - 000961304 _____ (Intel Corporation) C:\Users\Killer\Setup.exe
2017-07-12 12:22 - 2017-05-18 22:18 - 001121000 _____ (Microsoft Corporation) C:\Users\Killer\WdfCoInstaller01007 (5).dll
2017-07-12 12:57 - 2017-05-18 22:18 - 001121000 _____ (Microsoft Corporation) C:\Users\Killer\WdfCoInstaller01007 (6).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 001499368 _____ (Microsoft Corporation) C:\Users\Killer\WdfCoInstaller01007.dll
2017-07-12 12:22 - 2017-05-18 22:18 - 000589904 _____ (Microsoft Corporation) C:\Users\Killer\WinUSBCoInstaller (6).dll
2017-07-12 12:57 - 2017-05-18 22:18 - 000589904 _____ (Microsoft Corporation) C:\Users\Killer\WinUSBCoInstaller (7).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 000716880 _____ (Microsoft Corporation) C:\Users\Killer\WinUSBCoInstaller.dll
2011-03-25 18:31 - 2012-06-27 21:47 - 000000697 _____ () C:\Users\Killer\AppData\Roaming\ConvAPIPlugin.log
2010-08-09 15:03 - 2017-05-08 15:55 - 000000920 _____ () C:\Users\Killer\AppData\Roaming\wklnhst.dat
2018-05-07 00:43 - 2018-06-21 20:14 - 000000337 _____ () C:\Users\Killer\AppData\Local\Perfmon.PerfmonCfg
2017-06-09 17:35 - 2018-06-21 23:26 - 000007676 _____ () C:\Users\Killer\AppData\Local\resmon.resmoncfg
 
Some files in TEMP:
====================
2018-07-15 17:53 - 2018-06-08 08:55 - 001114112 _____ (Microsoft Corporation) C:\Users\Killer\AppData\Local\Temp\kernel32.dll
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== BCD ================================
 
Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume2
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {e2ab7398-48c9-11df-bad5-ecb6e8e627be}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 15
 
Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {e2e2ec3e-484c-11e7-ae10-4487fc9240fa}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {e2ab7398-48c9-11df-bad5-ecb6e8e627be}
nx                      OptOut
bootlog                 Yes
 
Windows Boot Loader
-------------------
identifier              {e2e2ec3e-484c-11e7-ae10-4487fc9240fa}
device                  ramdisk=[C:]\Recovery\e2e2ec3e-484c-11e7-ae10-4487fc9240fa\Winre.wim,{e2e2ec3f-484c-11e7-ae10-4487fc9240fa}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\e2e2ec3e-484c-11e7-ae10-4487fc9240fa\Winre.wim,{e2e2ec3f-484c-11e7-ae10-4487fc9240fa}
systemroot              \windows
nx                      OptIn
winpe                   Yes
 
Resume from Hibernate
---------------------
identifier              {e2ab7398-48c9-11df-bad5-ecb6e8e627be}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No
 
Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes
 
EMS Settings
------------
identifier              {emssettings}
bootems                 Yes
 
Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200
 
RAM Defects
-----------
identifier              {badmemory}
 
Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}
 
Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}
 
Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200
 
Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}
 
Device options
--------------
identifier              {e2e2ec3f-484c-11e7-ae10-4487fc9240fa}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\e2e2ec3e-484c-11e7-ae10-4487fc9240fa\boot.sdi
 
 
LastRegBack: 2018-07-09 19:17
 
==================== End of FRST.txt ============================
 
Here is Shortcut.txt also if it's any help.
 
 
Users shortcut scan result (x64) Version: 15.07.2018
Ran by Killer (15-07-2018 19:26:51)
Running from C:\Users\Killer\Downloads
Boot Mode: Normal
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
 
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility\Wireless Router\Uninstall ASUS Printer Utility.lnk -> C:\Program Files (x86)\ASUS\Wireless Router\Uninstall.bat ()
 
 
Shortcut: C:\Users\Administrator\Links\Desktop.lnk -> C:\Users\Administrator\Desktop ()
Shortcut: C:\Users\Administrator\Links\Downloads.lnk -> C:\Users\Administrator\Downloads ()
Shortcut: C:\Users\Administrator\Links\RecentPlaces.lnk -> [::{22877A6D-37A1-461A-91B0-DBDA5AAEBC99}]
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.1.14\QuickStart\S-1-5-21-3381375812-2662650081-4155099547-1001FolderForUser\CPU-Tweaker.exe.lnk -> C:\Windows\MemSave\CPU-Tweaker.exe ()
Shortcut: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.1.14\QuickStart\FolderForAll\HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Shortcut: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.1.14\QuickStart\FolderForAll\Photo Frame.lnk -> C:\Program Files (x86)\Northstar\Photo Frame\Photo Frame.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}\SC_Reader.ico (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis True Image WD Edition.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gear 360 ActionDirector (64-bit).lnk -> C:\Program Files\Samsung\ActionDirector2\ACD.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR Registration.lnk -> C:\Program Files (x86)\HP\IrisOCR_12.3.4.0\regipe.exe (I.R.I.S. Image Recognition Integarted Systems)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk -> C:\Windows\ehome\ehshell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center.lnk -> C:\Program Files\Microsoft Mouse and Keyboard Center\MouseKeyboardCenter.exe (Microsoft)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Excel Viewer.lnk -> C:\Windows\Installer\{95120000-003F-0409-0000-0000000FF1CE}\xlvwicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk -> C:\Windows\Installer\{90850409-6000-11D3-8CFE-0150048383C9}\wrdvicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk -> C:\Windows\Installer\{95140000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\Windows\System32\WindowsAnytimeUpgradeUI.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk -> C:\Program Files\DVD Maker\DVDMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk -> C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk -> C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit\XSplit Gamecaster.lnk -> C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare\Dr.Fone for Android\HomePage.lnk -> C:\Program Files (x86)\Wondershare\Dr.Fone for Android\Wondershare Dr.Fone for Android.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare\Dr.Fone for Android\How to use.lnk -> C:\Program Files (x86)\Wondershare\Dr.Fone for Android\Wondershare Dr.Fone for AndroidOnlineHelp.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare\Dr.Fone for Android\Order Online.lnk -> C:\Program Files (x86)\Wondershare\Dr.Fone for Android\Wondershare Dr.Fone for AndroidOrder.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare\Dr.Fone for Android\Uninstall Wondershare Dr.Fone for Android.lnk -> C:\Program Files (x86)\Wondershare\Dr.Fone for Android\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare\Dr.Fone for Android\Wondershare Dr.Fone for Android.lnk -> C:\Program Files (x86)\Wondershare\Dr.Fone for Android\DrFoneAndroid.exe (Wondershare)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live\Windows Live Writer.lnk -> C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe (Microsoft Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.lnk -> C:\Windows\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C92.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> K:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Speccy.lnk -> C:\Program Files\Speccy\Speccy64.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung\SideSync\SideSync.lnk -> C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung\Remote PC\Remote PC.lnk -> C:\Program Files (x86)\Samsung\Remote PC\rvagtray.exe (Rsupport Co., Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\PictureViewer.lnk -> C:\Program Files (x86)\QuickTime\PictureViewer.exe (Apple Computer, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Player.lnk -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe (Apple Computer, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\QuickTime Updater.lnk -> C:\Program Files (x86)\QuickTime\QuickTimeUpdater.exe (Apple Computer, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime\ReadMe.lnk -> C:\Program Files (x86)\QuickTime\readme.wri ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic\PHOTOfunSTUDIO 6.1 HD Lite Edition\Operating Instructions.lnk -> C:\Program Files (x86)\Panasonic\PHOTOfunSTUDIO 6.1 HD Lite\Manual\manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic\PHOTOfunSTUDIO 6.1 HD Lite Edition\PHOTOfunSTUDIO 6.1 HD Lite Edition.lnk -> C:\Program Files (x86)\Panasonic\PHOTOfunSTUDIO 6.1 HD Lite\PHOTOfunSTUDIO.exe (Panasonic Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic\PHOTOfunSTUDIO 6.1 HD Lite Edition\Readme.lnk -> C:\Program Files (x86)\Panasonic\PHOTOfunSTUDIO 6.1 HD Lite\Manual\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe (NVIDIA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security\NBRT.lnk -> C:\Program Files (x86)\Norton Security\MUI\22.14.2.13\images\cssbase.dll (Symantec Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security\Norton Security.lnk -> C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\uistub.exe (Symantec Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero 2018.lnk -> C:\Windows\Installer\{3111C98F-E38F-4670-A411-ABA66783FCA5}\NeroLauncher.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero BackItUp.lnk -> C:\Windows\Installer\{B97D8914-B1EA-4BA4-A9C0-50F4177C2D8F}\BackItUp._6DE631547FD24BC5962A4E5F07A1BE20.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero Burning ROM.lnk -> C:\Windows\Installer\{84F11EE9-58EA-431C-9300-3E5E354BA75B}\ARPPRODUCTICON.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero DuplicateManager Photo.lnk -> C:\Windows\Installer\{01EE8B2B-6392-4E15-B221-2E514B3ABAE5}\ScDuplicateStartMenu_39E340792B76493F86929235BAAAEEC8.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero Express.lnk -> C:\Windows\Installer\{5A8CFAD4-9C49-41A4-9117-86ACD52A9090}\ARPPRODUCTICON.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero MediaBrowser.lnk -> C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaBrowser.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero MediaHome.lnk -> C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaHome.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero Recode.lnk -> C:\Windows\Installer\{08191E34-7970-4030-BB33-F66B647D150D}\ScRecodeStartMenu_563A75F05683422E8C558ED3B6DA617D.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero RescueAgent.lnk -> C:\Windows\Installer\{93B7ACC0-068E-434F-83AA-95975EA83E0A}\NeroRescueAgent.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2018\Nero Video.lnk -> C:\Windows\Installer\{12C867A6-7DC7-431D-950D-F0B601A3FB9A}\ScVisionStartMenu_88036A9DCD1D412A84701A23A35FB37B.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero ControlCenter 4.lnk -> C:\Program Files (x86)\Nero\Nero ControlCenter 4\ncc.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero ControlCenter.lnk -> C:\Windows\Installer\{ABC88553-8770-4B97-B43E-5A90647A5B63}\ScControlCenterSta_FC2653898C5047A6A872CAF6433C43A8.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero CoverDesigner.lnk -> C:\Windows\Installer\{D8CCA6A9-E0CA-4589-BA17-54C909B1C8B5}\ARPPRODUCTICON.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero Disc To Device.lnk -> C:\Windows\Installer\{560A79FE-3A3E-474B-BECA-907CE97630CE}\ScDisc2DeviceStart_31C5D7D15DA846FBB6553A0819A0C381.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero TuneItUp.lnk -> C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUpStart.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero StartSmart Essentials.lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Toolkit\Nero DiscSpeed.lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero DiscSpeed\DiscSpeed.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Toolkit\Nero DriveSpeed.lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero DriveSpeed\DriveSpeed.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Toolkit\Nero InfoTool.lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero InfoTool\InfoTool.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero ControlCenter 4 [English Help].lnk -> C:\Program Files (x86)\Nero\Nero ControlCenter 4\NeroControlCenter_ENG.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero DiscSpeed [English Help].lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero DiscSpeed\NeroDiscSpeed_Eng.Chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero DriveSpeed [English Help].lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero DriveSpeed\NeroDriveSpeed_Eng.Chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero Express Essentials SE [English Help].lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero Express\NeroExpress_ENG.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero InfoTool [English Help].lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero InfoTool\NeroInfoTool_Eng.Chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Manuals\Nero StartSmart Essentials [English Help].lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart_ENG.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Interceptor DS200 Gaming Mouse\Start Interceptor DS200 Gaming Mouse.lnk -> C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSICfg.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Interceptor DS200 Gaming Mouse\Uninstall.lnk -> C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Access 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\accicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Excel 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\xlicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office InfoPath 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\inficon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Outlook 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\outicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office PowerPoint 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\pptico.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Publisher 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\pubs.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Word 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\wordicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Digital Certificate for VBA Projects.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Clip Organizer.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\cagicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office 2003 Language Settings.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Access Snapshot Viewer.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Document Imaging.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\mspicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Document Scanning.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\mspicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Picture Manager.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\oisicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucidSound\LucidSound Updater 1.7\Launch LucidSound Updater.exe.lnk -> C:\Windows\Installer\{393F72B5-278D-4229-B773-9712815A6B8C}\LucidSound_Updater_6D544F95BA85466A9CAABFAA2575B9E1.exe (Flexera Software LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodak\KODAK Software Updater\Readme.lnk -> C:\Program Files (x86)\Kodak\KODAK Software Updater\7288971\Program\README\Updater_Readme_1033.HTM ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodak\Kodak EasyShare\Kodak EasyShare software.lnk -> C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\EasyShare.exe (Eastman Kodak Company)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Software Manager\Intel Software Manager.lnk -> C:\Program Files (x86)\Common Files\Intel\Intel Software Manager\ism.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver and Support Assistant\Intel® Driver & Support Assistant Tray.lnk -> C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe (Intel)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation\Intel Processor Diagnostic Tool 64bit\IntelProcessor Diagnostic Tool 64bit.lnk -> C:\Program Files\Intel Corporation\Intel Processor Diagnostic Tool 64bit\Win-IPDT64.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel® Extreme Tuning Utility.lnk -> C:\Windows\Installer\{86E97DE6-158D-4BD4-962C-810AD95991A6}\PerfTuneIcon.B089625E_E454_492E_B2F2_7E934E4807F0.exe (Intel® Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel® Rapid Storage Technology.lnk -> C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUI.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Document Manager.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\Document Manager\hpqdcmgr.exe (Hewlett-Packard Co.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Update.lnk -> C:\Program Files (x86)\HP\HP Software Update\hpwucli.exe (Hewlett-Packard)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\Help.lnk -> C:\Program Files (x86)\HP\HP Photosmart 7520 series\bin\HelpViewer\hpqlpvwr.exe (Hewlett-Packard Co.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\HP Scan.lnk -> C:\Program Files (x86)\HP\HP Photosmart 7520 series\bin\HPScan.exe (Hewlett-Packard Co.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\Printer Setup & Software.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetupLauncher.exe (Hewlett-Packard Co.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\Product Support Website.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\ProductSupportShortcut.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\Shop for Supplies.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\hpqDTSS.exe (Hewlett-Packard Co.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\Wireless Printing Online Help.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\WirelessEasyShortcut.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D\FurMark ROG Edition\FurMark ROG Edition.lnk -> C:\Program Files (x86)\Geeks3D\FurMark ROG Edition\FurMark_ROG_Edition_x32.exe (ASUS / Geeks3D)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D\FurMark ROG Edition\ReadMe.txt.lnk -> C:\Program Files (x86)\Geeks3D\FurMark ROG Edition\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D\FurMark ROG Edition\Uninstall FurMark ROG Edition.lnk -> C:\Program Files (x86)\Geeks3D\FurMark ROG Edition\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy Arcade.lnk -> C:\Program Files (x86)\GameSpy Arcade\Aphex.exe (IGN Entertainment, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\Uninstall GameSpy Arcade.lnk -> C:\Program Files (x86)\GameSpy Arcade\UNWISE.EXE ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Club Penguin.lnk -> C:\Program Files (x86)\Gateway Games\Web Link - Club Penguin\660f1552-0e37-4af5-ae29-1c414a171c65.dll ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\FarCry 4.lnk -> [LF6"pH,R GFSI#;@I3[SFarCry 4(1SPSXFL8C&m]
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\GameExplorer.lnk -> C:\Windows\System32\gameux.dll (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9\CyberLink PowerDVD 9.lnk -> C:\Program Files (x86)\CyberLink\PowerDVD9\PDVDLaunchPolicy.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9\PowerDVD 9 Help file.lnk -> C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Enu\PowerDVD9.CHM ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9\Read Me.lnk -> C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Enu\Readme.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink Media Suite 10.lnk -> C:\Program Files (x86)\CyberLink\Media Suite\PS.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink YouCam 5\CyberLink YouCam 5.lnk -> C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink PowerBackup 2.6\CyberLink PowerBackup 2.6.lnk -> C:\Program Files (x86)\CyberLink\PowerBackup\PowerBackup.exe (CyberLink)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink Power2Go 8\CyberLink Power2Go 8.lnk -> C:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink Power2Go 8\Desktop Burning Gadget.lnk -> C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink Power2Go 8\ISO Viewer.lnk -> C:\Program Files (x86)\CyberLink\Power2Go8\IsoViewer8.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink Power2Go 8\Virtual Drive.lnk -> C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink LabelPrint 2.5\CyberLink LabelPrint 2.5.lnk -> C:\Program Files (x86)\CyberLink\LabelPrint\LabelPrint.exe (CyberLink Corp.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative\THX TruStudio PC\Creative EAX Gadget.lnk -> C:\Program Files (x86)\Creative\THX TruStudio PC\EAX Gadget\EAX.gadget ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative\THX TruStudio PC\Readme.lnk -> C:\Program Files (x86)\Creative\THX TruStudio PC\ReadMe.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative\THX TruStudio PC\THX Audio Control Panel.lnk -> C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe (Creative Technology Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative\THX TruStudio PC\What's EAX ADVANCED HD 5.0.lnk -> C:\Program Files (x86)\Creative\THX TruStudio PC\HTML\eax5info.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\CPU-Z.lnk -> C:\Program Files\CPUID\CPU-Z\cpuz.exe (CPUID)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\Edit CPU-Z Config File.lnk -> C:\Program Files\CPUID\CPU-Z\cpuz.ini ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID\CPU-Z\Uninstall CPU-Z.lnk -> C:\Program Files\CPUID\CPU-Z\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility\Wireless Router\Device Discovery\Device Discovery.lnk -> C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe (ASUSTeK COMPUTER INC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS GPU TweakII.lnk -> C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe (TODO: <Company name>)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Acronis True Image WD Edition.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Acronis System Report.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Bootable Rescue Media Builder.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\displayswitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\NetworkProjection.lnk -> C:\Windows\System32\NetProj.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\Windowspowershell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{660f1552-0e37-4af5-ae29-1c414a171c65}\PlayTasks\0\web.lnk -> C:\Program Files (x86)\Gateway Games\Web Link - Club Penguin\660f1552-0e37-4af5-ae29-1c414a171c65.dll ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\Favorites\Links\Gateway Games.lnk -> C:\Windows\System32\url.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\Favorites\Links\Gateway.lnk -> C:\Windows\System32\url.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\Favorites\Gateway\Gateway Games.lnk -> C:\Windows\System32\url.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\Favorites\Gateway\Gateway.lnk -> C:\Windows\System32\url.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\Desktop\FurMark ROG Edition.lnk -> C:\Program Files (x86)\Geeks3D\FurMark ROG Edition\FurMark_ROG_Edition_x32.exe (ASUS / Geeks3D)
Shortcut: C:\Users\Killer\Desktop\HPPSDr.exe - Shortcut.lnk -> C:\Program Files (x86)\HP\Diagnostics\PSDR\HPPSdr.exe ()
Shortcut: C:\Users\Killer\Desktop\I.R.I.S. Resource Center.lnk -> C:\Program Files (x86)\HP\IrisOCR_12.3.4.0\regipe.exe (I.R.I.S. Image Recognition Integarted Systems)
Shortcut: C:\Users\Killer\Desktop\MS Office Word 2003.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\wordicon.exe ()
Shortcut: C:\Users\Killer\Desktop\MyHarmony.lnk -> C:\Users\Killer\AppData\Roaming\Microsoft\Installer\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}\_9B08EC1D124533F12275CA.exe ()
Shortcut: C:\Users\Killer\Desktop\Naviextras Toolbox.lnk -> C:\Program Files (x86)\Naviextras\Toolbox\toolbox.exe (NNG Kft.)
Shortcut: C:\Users\Killer\Desktop\Norton Installation Files.lnk -> C:\Users\Public\Downloads\Norton\{NS22140054-SHPD-FSD5120112} ()
Shortcut: C:\Users\Killer\Desktop\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\Desktop\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\Desktop\Uplay.lnk -> K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe (Ubisoft)
Shortcut: C:\Users\Killer\Desktop\Windows Live Mail.lnk -> C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\I.R.I.S. Resource Center.lnk -> C:\Program Files (x86)\HP\IrisOCR_12.3.4.0\regipe.exe (I.R.I.S. Image Recognition Integarted Systems)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uninstall.lnk -> K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uplay\Uplay.lnk -> K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe (Ubisoft)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> K:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton\Norton Installation Files.lnk -> C:\Users\Public\Downloads\Norton\{NS22140054-SHPD-FSD5120112} ()
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Naviextras\Naviextras Toolbox.lnk -> C:\Program Files (x86)\Naviextras\Toolbox\toolbox.exe (NNG Kft.)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Naviextras\Uninstall Toolbox.lnk -> C:\Program Files (x86)\Naviextras\Toolbox\uninst.exe (NNG Llc.)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Logitech\MyHarmony\MyHarmony.lnk -> C:\Users\Killer\AppData\Roaming\Microsoft\Installer\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}\_3DCC7C63B877831D1D1C35.exe ()
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KODAK\Camera Connection Software\Camera Connection Help.lnk -> C:\Program Files (x86)\Kodak\Kodak EasyShare software\bin\ESS_Kodak_Camera.chm ()
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP\HP Photo Creations\HP Photo Creations.lnk -> C:\Users\Killer\AppData\Roaming\HP Photo Creations\PhotoProduct.exe (Visan / RocketLife)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP\HP Photo Creations\Uninstall HP Photo Creations.lnk -> C:\Users\Killer\AppData\Roaming\HP Photo Creations\remove.exe ()
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Doom 3â„¢ .lnk -> [LF6"pH,R GFSIO`\=}Lt#Doom 3"! (1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\F.E.A.R Extraction Pointâ„¢.lnk -> [LF6"pH,R GFSI9È¢DB7ApAF.E.A.R: Extraction Point"!(1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\FarCryâ„¢.lnk -> [LF6"pH,R GFSI&Ld0rFarCry"!(1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Microsoft MechWarrior 4  Vengeance .lnk -> [LF6"pH,R GFSI75EVRgQ$Microsoft MechWarrior 4 : Vengeance (1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Preyâ„¢.lnk -> [LF6"pH,R GFSI*LBbFÞ®)Prey"!(1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Steam Sin Episodes Emergenceâ„¢.lnk -> [LF6"pH,R GFSIVK/K?uSteam: Sin Episodes: Emergence"!(1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Unreal Tournament.lnk -> [LF6"pH,R GFSI3r'\@\iuNUnreal Tournament(1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Unrealâ„¢ 2.lnk -> [LF6"pH,R GFSIFRGmSQUnreal"! 2(1SPSXFL8C&m]
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FurMark ROG Edition.lnk -> C:\Program Files (x86)\Geeks3D\FurMark ROG Edition\FurMark_ROG_Edition_x32.exe (ASUS / Geeks3D)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GameSpy Arcade.lnk -> C:\Program Files (x86)\GameSpy Arcade\Aphex.exe (IGN Entertainment, Inc.)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk -> C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe (Apple Computer, Inc.)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\CPUID CPU-Z.lnk -> C:\Program Files\CPUID\CPU-Z\cpuz.exe (CPUID)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet Explorer (64-bit).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Killer\AppData\Local\Microsoft\Windows\GameExplorer\{D896B9F7-4879-4E6F-AC44-47465BA846E1}\PlayTasks\0\Play.lnk -> C:\Windows\System32\bin32\FarCry.exe (Crytek)
Shortcut: C:\Users\Killer\AppData\Local\Microsoft\Windows\GameExplorer\{338FF5E3-2772-405C-9A9D-5CFE69754EEB}\PlayTasks\0\Play.lnk -> F:\SteamLibrary\steamapps\common\Unreal Tournament\System\UnrealTournament.exe ()
Shortcut: C:\Users\Killer\AppData\Local\Microsoft\Windows\GameExplorer\{1D9AD277-29CA-47E2-B4E2-C0FE3A4081FF}\PlayTasks\0\Play.lnk -> F:\SteamLibrary\steamapps\common\Unreal II The Awakening\System\Unreal2.exe ()
Shortcut: C:\Users\Killer\AppData\Links\Desktop.lnk -> C:\Users\Killer\Desktop ()
Shortcut: C:\Users\Killer\AppData\Links\Downloads.lnk -> C:\Users\Killer\Downloads ()
Shortcut: C:\Users\Killer\AppData\Links\My Documents.lnk -> C:\Users\Killer\My Documents ()
Shortcut: C:\Users\Killer\AppData\Links\RecentPlaces.lnk -> [::{22877A6D-37A1-461A-91B0-DBDA5AAEBC99}]
Shortcut: C:\Users\Public\Desktop\Acrobat Reader DC.lnk -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\Acronis True Image WD Edition.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe ()
Shortcut: C:\Users\Public\Desktop\ASUS GPU TweakII.lnk -> C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe (TODO: <Company name>)
Shortcut: C:\Users\Public\Desktop\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
Shortcut: C:\Users\Public\Desktop\CPUID CPU-Z.lnk -> C:\Program Files\CPUID\CPU-Z\cpuz.exe (CPUID)
Shortcut: C:\Users\Public\Desktop\Creative EAX Gadget.lnk -> C:\Program Files (x86)\Creative\THX TruStudio PC\EAX Gadget\EAX.gadget ()
Shortcut: C:\Users\Public\Desktop\CyberLink Media Suite 10.lnk -> C:\Program Files (x86)\CyberLink\Media Suite\PS.exe (CyberLink Corp.)
Shortcut: C:\Users\Public\Desktop\CyberLink PowerDVD 9.lnk -> C:\Program Files (x86)\CyberLink\PowerDVD9\PDVDLaunchPolicy.exe (CyberLink Corp.)
Shortcut: C:\Users\Public\Desktop\eBay.lnk -> c:\Windows\Installer\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}\_0E8B2F452F1DACE8DB0A53.exe ()
Shortcut: C:\Users\Public\Desktop\Gear 360 ActionDirector (64-bit).lnk -> C:\Program Files\Samsung\ActionDirector2\ACD.exe (CyberLink Corp.)
Shortcut: C:\Users\Public\Desktop\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk -> C:\Program Files (x86)\HP\Diagnostics\PSDR\HPPSdr.exe ()
Shortcut: C:\Users\Public\Desktop\Intel® Extreme Tuning Utility.lnk -> C:\Windows\Installer\{86E97DE6-158D-4BD4-962C-810AD95991A6}\PerfTuneIcon.B089625E_E454_492E_B2F2_7E934E4807F0.exe (Intel® Corporation)
Shortcut: C:\Users\Public\Desktop\IntelProcessor Diagnostic Tool 64bit.lnk -> C:\Program Files\Intel Corporation\Intel Processor Diagnostic Tool 64bit\Win-IPDT64.exe (Intel Corporation)
Shortcut: C:\Users\Public\Desktop\Launch LucidSound Updater.exe.lnk -> C:\Windows\Installer\{393F72B5-278D-4229-B773-9712815A6B8C}\LucidSound_Updater_197EDA8178FB447F8051722AEF222610.exe (Flexera Software LLC)
Shortcut: C:\Users\Public\Desktop\Microsoft Word.lnk -> C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\MSI Interceptor DS200 Gaming Mouse.lnk -> C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSICfg.exe ()
Shortcut: C:\Users\Public\Desktop\Nero 2018.lnk -> C:\Program Files (x86)\Nero\Nero 2018\Nero Launcher\NeroLauncher.exe (Nero AG)
Shortcut: C:\Users\Public\Desktop\Nero BackItUp.lnk -> C:\Windows\Installer\{B97D8914-B1EA-4BA4-A9C0-50F4177C2D8F}\BackItUp._AB9F1F47710540918A47B78D2BED5DAD.exe (Flexera Software LLC)
Shortcut: C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe (Nero AG)
Shortcut: C:\Users\Public\Desktop\Nero TuneItUp.lnk -> C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUpStart.exe (Nero AG)
Shortcut: C:\Users\Public\Desktop\Norton Security.lnk -> C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\uistub.exe (Symantec Corporation)
Shortcut: C:\Users\Public\Desktop\PHOTOfunSTUDIO 6.1 HD Lite Edition.lnk -> C:\Program Files (x86)\Panasonic\PHOTOfunSTUDIO 6.1 HD Lite\PHOTOfunSTUDIO.exe (Panasonic Corporation)
Shortcut: C:\Users\Public\Desktop\SideSync.lnk -> C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe ()
Shortcut: C:\Users\Public\Desktop\Smart View.lnk -> C:\Windows\Installer\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}\SmartView2.exe ()
Shortcut: C:\Users\Public\Desktop\Speccy.lnk -> C:\Program Files\Speccy\Speccy64.exe (Piriform Ltd)
Shortcut: C:\Users\Public\Desktop\Steam.lnk -> K:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\Public\Desktop\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
 
 
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows XP\x86 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ chk x86 WXP
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows XP\x86 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ fre x86 WXP
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Vista and Windows Server 2008\ia64 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\  chk ia64 WLH no_oacr
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Vista and Windows Server 2008\ia64 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\  fre ia64 WLH no_oacr
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Vista and Windows Server 2008\x64 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\  chk x64 WLH
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Vista and Windows Server 2008\x64 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\  fre x64 WLH
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Vista and Windows Server 2008\x86 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\  chk x86 WLH
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Vista and Windows Server 2008\x86 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\  fre x86 WLH
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Server 2003\ia64 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ chk ia64 WNET no_oacr
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Server 2003\ia64 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ fre ia64 WNET no_oacr
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Server 2003\x64 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ chk x64 WNET
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Server 2003\x64 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ fre x64 WNET
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Server 2003\x86 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ chk x86 WNET
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows Server 2003\x86 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ fre x86 WNET
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows 7\ia64 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ chk ia64 WIN7 no_oacr
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows 7\ia64 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ fre ia64 WIN7 no_oacr
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows 7\x64 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ chk x64 WIN7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows 7\x64 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ fre x64 WIN7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows 7\x86 Checked Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ chk x86 WIN7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Build Environments\Windows 7\x86 Free Build Environment.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k C:\WinDDK\7600.16385.1\bin\setenv.bat C:\WinDDK\7600.16385.1\ fre x86 WIN7
ShortcutWithArgument: C:\Users\Public\Desktop\Netflix.lnk -> C:\ProgramData\OEM_E471269A730D\Netflix\StartURL.exe () -> hxxp://homepage.gateway.com/redirect.aspx?rid=09000002
 
 
ShortcutWithArgument: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) ->  -extoff
ShortcutWithArgument: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\HP ePrint SW.lnk -> C:\Windows\Installer\{B2CFD444-5088-4ECC-A1F1-28620C082C36}\_HPEPrintIcon.exe (HP) -> /DASLaunch
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation) -> startmenu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\System optimization\Clean registry.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation) -> /run /tn "SkipUAC Clean registry"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\System optimization\Defragment drives.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation) -> /run /tn "SkipUAC Defragment drives"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\System optimization\Delete Internet tracks.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation) -> /run /tn "SkipUAC Delete Internet tracks"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\System optimization\Optimize autorun.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation) -> /run /tn "SkipUAC Optimize autorun"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\System optimization\Optimize Windows Services.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation) -> /run /tn "SkipUAC Optimize Windows Services"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\System optimization\Save power.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation) -> /run /tn "SkipUAC Save power"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\System optimization\Securely empty recycle bin.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation) -> /run /tn "SkipUAC Securely empty recycle bin"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Help\WDK Documentation.lnk -> C:\Program Files (x86)\Common Files\Microsoft Shared\Help 9\dexplore.exe (Microsoft Corporation) -> /helpcol ms-help://ms.WDK.v10.7600.091201 /LaunchNamedUrlTopic HomePage
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Help\WDK Samples Index.lnk -> C:\Program Files (x86)\Common Files\Microsoft Shared\Help 9\dexplore.exe (Microsoft Corporation) -> /helpcol ms-help://ms.WDK.v10.7600.091201 /LaunchNamedUrlTopic KitSamples
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /show
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\Disable 3D Vision.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /disable
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\Enable 3D Vision.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /enable
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security\LiveUpdate.lnk -> C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\uistub.exe (Symantec Corporation) -> /lu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security\Support.lnk -> C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\symerr.exe (Symantec Corporation) -> /support
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security\Uninstall Norton Security.lnk -> C:\Program Files (x86)\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NGC\562C4DD5\22.14.2.13\inststub.exe (Symantec Corporation) -> /X /shortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\1-Click Optimization.lnk -> C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUpStart.exe (Nero AG) ->  /quickattendance
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero Online Upgrade.lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero Online Upgrade\NeroOnlineUpgrade.exe (Nero AG) -> ShowOffer
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 9\Nero Express Essentials SE.lnk -> C:\Program Files (x86)\Nero\Nero 9\Nero Express\NeroExpress.exe (Nero AG) -> /w
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office 2003 Save My Settings Wizard.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\opwicon.exe () -> /u
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Application Recovery.lnk -> C:\Windows\Installer\{91E30409-6000-11D3-8CFE-0150048383C9}\misc.exe () -> -c
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodak\KODAK Software Updater\KODAK Software Updater Setup.lnk -> C:\Program Files (x86)\Kodak\KODAK Software Updater\7288971\Program\EnDisSrv.exe () -> -kdbwsetup
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk -> C:\Program Files\Java\jre1.8.0_171\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation\Intel Processor Diagnostic Tool 64bit\Uninstall Intel Processor Diagnostic Tool 64bit.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {A3135913-E080-45FD-9301-5995B1BAF1C5}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Universal Fax Driver\HP Send Fax.lnk -> C:\Program Files\HP\HP Universal Fax Driver\bin\SendAFax.exe (Hewlett-Packard Development Company, LP) -> /faxprinter "HP Universal Fax Driver" /portname "HPUFD_Fax_Port"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\HP Photosmart 7520 series.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\HP Photosmart 7520 series.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\HP Product Improvement Study.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe (Hewlett-Packard Co.) -> /changesettings /UA 10.5 /DDV 0x0b05
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\Uninstall.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /qb /x {27ABA988-D480-4F44-B0FD-45E5656D2CFE}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photosmart 7520 series\Update IP Address.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetup.exe (Hewlett-Packard Co.) -> /changeip ""
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9\Online registration.lnk -> C:\Program Files (x86)\CyberLink\PowerDVD9\OLRSubmission\OLRSubmission.exe () -> /LANG:Enu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite\CyberLink YouCam 5\CyberLink YouCam Mirror.lnk -> C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe (CyberLink Corp.) -> /m
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative\Product Registration.lnk -> C:\Program Files (x86)\Creative\Product Registration\English\InetReg.exe (Creative Technology Ltd) -> /PreProcess=RegFlash.exe
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility\Wireless Router\Device Discovery\Uninstall ASUS Wireless Router Device Discovery Utility.lnk -> C:\Program Files (x86)\InstallShield Installation Information\{09CDCA35-23FF-4ED6-AFDA-BBD55235CE4B}\setup.exe (Macrovision Corporation) -> -runfromtemp -l0x9 /z"Uninstall"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Activate Acronis Startup Recovery Manager.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe () -> /asz_recovery_manager
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Add New Disk.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe () -> /add_new_disk
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Clone Disk.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe () -> /clone_disk
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\DriveCleanser.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe () -> /drive_cleanser
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Manage Acronis Secure Zone.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe () -> /manage_asz
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\System Clean-up.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe () -> /system_cleanup
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Try&Decide.lnk -> C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe () -> /tnd_tool
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) -> /open
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Killer\Desktop\Ubisoft Product Registration.lnk -> C:\Program Files (x86)\Ubisoft\Register\register.exe (Ubisoft) -> "K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Register\regsetup.exe"
ShortcutWithArgument: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Logitech\MyHarmony\uninstall.lnk -> C:\Users\Killer\AppData\Roaming\Microsoft\Installer\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}\_3E417AFFF6E8D1094EBC1E.exe () -> /x {45F25733-C1DD-45A2-8C95-3004D8D0268C}
ShortcutWithArgument: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) ->  -extoff
ShortcutWithArgument: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Killer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Public\Desktop\1-Click Optimization.lnk -> C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUpStart.exe (Nero AG) ->  /quickattendance
ShortcutWithArgument: C:\Users\Public\Desktop\HP Photosmart 7520 series.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\HP Photosmart 7520 series.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage
 
 
InternetURL: C:\Users\Administrator\Favorites\Links for United States\GobiernoUSA.gov.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129792
InternetURL: C:\Users\Administrator\Favorites\Links for United States\USA.gov.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129791
InternetURL: C:\Users\Administrator\Favorites\Links\Web Slice Gallery.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Driver Kits\WDK 7600.16385.1\Help\Windows Driver Kit.url -> URL: hxxp://www.microsoft.com/whdc/ddk/winddk.mspx
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Speccy Homepage.url -> URL: hxxp://www.piriform.com/speccy
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Get Help.url -> URL: hxxp://java.com/help
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visit Java.com.url -> URL: hxxp://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D\FurMark ROG Edition\Forum.url -> URL: hxxp://www.geeks3d.com/forums/index.php/board,4.0.html
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D\FurMark ROG Edition\Homepage.url -> URL: hxxp://www.geeks3d.com/furmark/rog/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> URL: hxxp://www.ccleaner.com/ccleaner
InternetURL: C:\Users\Killer\Favorites\Add to Wish List.url -> BASEURL: hxxp://www.amazon.com/wishlist/get-button URL: javascript:(function(){var w=window,l=w.location,d=w.document,s=d.createElement('script'),e=encodeURIComponent,o='object',n='AUWLBook',u='hxxps://www.amazon.com/wishlist/add',r='readyState',T=setTimeout,a='setAttribute',g=function(){d[r]&&d[r]!='complete'?T(g,200):!w[n]?(s[a]('charset','UTF-8'),s[a]('src',u+'.js?loc='+e(l)),d.body.appendChild(s),f()):f()},f=function(){!w[n]?T(f,200):w[n].showPopover()};typeof s!=o?l.href=u+'?u='+e(l)+'&t='+e(d.title):g()}())
InternetURL: C:\Users\Killer\Favorites\AnnualCreditReport.url -> BASEURL: hxxps://www.annualcreditreport.com/cra/requestForm?from=landing URL: hxxps://www.annualcreditreport.com/cra/requestForm?from=landing
InternetURL: C:\Users\Killer\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Killer\Favorites\Buy prescription drugs-medicine online, generic drugs, online pharmacy.url -> BASEURL: hxxp://www.alldaychemist.com/ URL: hxxp://www.alldaychemist.com/
InternetURL: C:\Users\Killer\Favorites\craigslist phoenix classifieds for jobs, apartments, personals, for sale, services, community, and events.url -> BASEURL: hxxp://phoenix.craigslist.org/ URL: hxxp://phoenix.craigslist.org/
InternetURL: C:\Users\Killer\Favorites\CVSCaremark SSL VPN Portal.url -> BASEURL: hxxps://remoteaccess.caremark.com/dana-na/auth/url_default/welcome.cgi URL: hxxps://remoteaccess.caremark.com/dana-na/auth/url_default/welcome.cgi
InternetURL: C:\Users\Killer\Favorites\Drivers & Downloads.url -> BASEURL: hxxp://us.gateway.com/gw/en/US/content/drivers-downloads URL: hxxp://us.gateway.com/gw/en/US/content/drivers-downloads
InternetURL: C:\Users\Killer\Favorites\Free AOL & Unlimited Internet.url -> URL: hxxp://free.aol.com/tryaolfree/index.adp?205493
InternetURL: C:\Users\Killer\Favorites\MVPMotorsports.com - Toyota MR2 Page.url -> BASEURL: hxxp://www.mvpmotorsports.com/merchant/mr2.shtml URL: hxxp://www.mvpmotorsports.com/merchant/mr2.shtml#
InternetURL: C:\Users\Killer\Favorites\Payment.url -> BASEURL: hxxps://www.alldaychemist.com/modules/creditcard/payment.php URL: hxxps://www.alldaychemist.com/modules/creditcard/payment.php
InternetURL: C:\Users\Killer\Favorites\PIAA Auto Accessories  PIAA Auto Light Bulbs  PIAA Xtreme White Light Bulbs.url -> BASEURL: hxxp://www.racinglab.com/piaa1.html URL: hxxp://www.racinglab.com/piaa1.html
InternetURL: C:\Users\Killer\Favorites\Register for a Free Account with Property Room.url -> BASEURL: hxxps://www.propertyroom.com/account/register.aspx URL: hxxps://www.propertyroom.com/account/register.aspx
InternetURL: C:\Users\Killer\Favorites\Speed Test  upload and download  DSLReports.com, ISP Information.url -> BASEURL: hxxp://www.dslreports.com/speedtest URL: hxxp://www.dslreports.com/speedtest
InternetURL: C:\Users\Killer\Favorites\Toyota OEM & TRD Parts for MR2.url -> BASEURL: hxxp://www.mvpmotorsports.com/Templates/frmTemplateM7.asp?SubFolderID=4070&SearchYN=N URL: hxxp://www.mvpmotorsports.com/Templates/frmTemplateM7.asp?SubFolderID=4070&SearchYN=N
InternetURL: C:\Users\Killer\Favorites\Vintage Fashion Guild  Labels-V.url -> URL: hxxp://vintagefashionguild.org/labels-v/
InternetURL: C:\Users\Killer\Favorites\Windows Live\Get Windows Live.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=69172
InternetURL: C:\Users\Killer\Favorites\Windows Live\Windows Live Gallery.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=70742
InternetURL: C:\Users\Killer\Favorites\Windows Live\Windows Live Mail.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68925
InternetURL: C:\Users\Killer\Favorites\Windows Live\Windows Live Spaces.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68927
InternetURL: C:\Users\Killer\Favorites\MSN Websites\MSN Autos.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=55143
InternetURL: C:\Users\Killer\Favorites\MSN Websites\MSN Entertainment.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68924
InternetURL: C:\Users\Killer\Favorites\MSN Websites\MSN Money.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68923
InternetURL: C:\Users\Killer\Favorites\MSN Websites\MSN Sports.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68921
InternetURL: C:\Users\Killer\Favorites\MSN Websites\MSN.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=54729
InternetURL: C:\Users\Killer\Favorites\MSN Websites\MSNBC News.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68922
InternetURL: C:\Users\Killer\Favorites\Microsoft Websites\IE Add-on site.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=50893
InternetURL: C:\Users\Killer\Favorites\Microsoft Websites\IE site on Microsoft.com.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=44661
InternetURL: C:\Users\Killer\Favorites\Microsoft Websites\Microsoft At Home.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=55424
InternetURL: C:\Users\Killer\Favorites\Microsoft Websites\Microsoft At Work.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=68920
InternetURL: C:\Users\Killer\Favorites\Microsoft Websites\Microsoft Store.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=140813
InternetURL: C:\Users\Killer\Favorites\Links for United States\GobiernoUSA.gov.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129792
InternetURL: C:\Users\Killer\Favorites\Links for United States\USA.gov.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129791
InternetURL: C:\Users\Killer\Favorites\Links\Free AOL & Unlimited Internet.url -> URL: hxxp://free.aol.com/tryaolfree/index.adp?205493
InternetURL: C:\Users\Killer\Favorites\Links\Suggested Sites.url -> URL: hxxps://ieonline.microsoft.com/#ieslice
InternetURL: C:\Users\Killer\Favorites\Links\Web Slice Gallery.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\Users\Killer\Favorites\Gateway\eBay.url -> URL: hxxp://rover.ebay.com/rover/1/711-66992-17054-1/4
InternetURL: C:\Users\Killer\Favorites\craigslist\craigslist phoenix classifieds for jobs, apartments, personals, for sale, services, community, and events.url -> BASEURL: hxxp://phoenix.craigslist.org/ URL: hxxp://phoenix.craigslist.org/
InternetURL: C:\Users\Killer\Favorites\bills\APS - Electricity, Power, Energy Services for Arizona Homes and Businesses.url -> BASEURL: hxxp://www.aps.com/ URL: hxxp://www.aps.com/
InternetURL: C:\Users\Killer\Favorites\bills\Billing Center.url -> URL: hxxps://www.directv.com/DTVAPP/mydirectv/account/payment/myBillingCenter.jsp
InternetURL: C:\Users\Killer\Favorites\bills\Cell Phones, Mobile Phones & Wireless Calling Plans from Sprint.url -> BASEURL: hxxp://www.sprint.com/index_c.html?context=CC URL: hxxp://www.sprint.com/index_c.html?context=CC#userLogin
InternetURL: C:\Users\Killer\Favorites\bills\Citi® Credit Cards - Incorrect Information Entered.url -> BASEURL: hxxps://www.accountonline.com/cards/svc/OutsideRedirect.do?cxk=0xq9_1etn9eQodn_43sq5Q5SzTypmLFtOcEWSG02YUCMtQuddAYqQ84zNX7ZfZwJ URL: hxxps://www.accountonline.com/cards/svc/OutsideRedirect.do?cxk=0xq9_1etn9eQodn_43sq5Q5SzTypmLFtOcEWSG02YUCMtQuddAYqQ84zNX7ZfZwJ
InternetURL: C:\Users\Killer\Favorites\bills\Credit Card Account Access Log In.url -> BASEURL: hxxps://www.myaccountaccess.com/onlineCard/login.do URL: hxxps://www.myaccountaccess.com/onlineCard/login.do
InternetURL: C:\Users\Killer\Favorites\bills\Credit Cards from Citi® – Compare Citi® Cards & Apply Online - Citibank®.url -> BASEURL: hxxps://creditcards.citi.com/ URL: hxxps://creditcards.citi.com/
InternetURL: C:\Users\Killer\Favorites\bills\Deer Valley Credit Union.url -> BASEURL: hxxp://deervalleycu.org/ URL: hxxp://deervalleycu.org/
InternetURL: C:\Users\Killer\Favorites\bills\Freedom Mortgage - Make Payment Online.url -> BASEURL: hxxps://www.freedommortgage.com/wps/myportal/fhmc/!ut/p/c5/lYs9D4IwFAB_0nuvfJSOrU3pM8RFSGgX08EQEgEHgn9f3FzUmBvvDiLszGkbh7SOy5xu0EMsL8XZdJnzAtFIh6yPbd1YTci0-_DuFUlkLJRlaQXW4s_bKeRKN146JzDPf9wnv0xXCBDlx6okaCGY7xFlr-gA96nrH1ThE1-3S4c!/dl3/d3/L2dJQSEvUUt3QS9ZQnZ3LzZfNVNCVTNGSDIwMEI3RjBJQUpUR0xEQTEwSTE!/ URL: hxxps://www.freedommortgage.com/wps/myportal/fhmc/!ut/p/c5/lYs9D4IwFAB_0nuvfJSOrU3pM8RFSGgX08EQEgEHgn9f3FzUmBvvDiLszGkbh7SOy5xu0EMsL8XZdJnzAtFIh6yPbd1YTci0-_DuFUlkLJRlaQXW4s_bKeRKN146JzDPf9wnv0xXCBDlx6okaCGY7xFlr-gA96nrH1ThE1-3S4c!/dl3/d3/L2dJQSEvUUt3QS9ZQnZ3LzZfNVNCVTNGSDIwMEI3RjBJQUpUR0xEQTEwSTE!/
InternetURL: C:\Users\Killer\Favorites\bills\Qwest  Quick Bill Pay.url -> BASEURL: hxxps://www.qwest.com/MasterWebPortal/freeRange/QuickPay.action URL: hxxps://www.qwest.com/MasterWebPortal/freeRange/QuickPay.action
InternetURL: C:\Users\Killer\Favorites\bills\Southwest Gas - MyAccount Home.url -> BASEURL: hxxps://myaccount.swgas.com/home/logout URL: hxxps://myaccount.swgas.com/home/logout
InternetURL: C:\Users\Killer\Favorites\bills\USAA - My USAA.url -> BASEURL: hxxps://www.usaa.com/inet/ent_home/CpHome?action=INIT&wa_ref=private_global_my_accounts URL: hxxps://www.usaa.com/inet/ent_home/CpHome?action=INIT&wa_ref=private_global_my_accounts
InternetURL: C:\Users\Killer\Favorites\bills\User Account  Patient Services  Sonora Quest Laboratories.url -> BASEURL: hxxps://www.sonoraquest.com/patient-services/user-account/?ReturnUrl=/patient-services/online-bill-pay/ URL: hxxps://www.sonoraquest.com/patient-services/user-account/?ReturnUrl=/patient-services/online-bill-pay/
InternetURL: C:\Users\Killer\Favorites\bills\WATER BILL PAYMENT.url -> BASEURL: hxxp://phoenix.gov/APPINTRO/wtrintro.html URL: hxxp://phoenix.gov/APPINTRO/wtrintro.html
InternetURL: C:\Users\Killer\Desktop\F.E.A.R. 3.url -> URL: steam://rungameid/21100
InternetURL: C:\Users\Killer\Desktop\Fallout 4.url -> URL: steam://rungameid/377160
InternetURL: C:\Users\Killer\Desktop\Line of Sight.url -> URL: steam://rungameid/436520
InternetURL: C:\Users\Killer\Desktop\MechWarrior Online.url -> URL: steam://rungameid/342200
InternetURL: C:\Users\Killer\Desktop\Quake Champions.url -> URL: steam://rungameid/611500
InternetURL: C:\Users\Killer\Desktop\Unreal Gold.url -> URL: steam://rungameid/13250
InternetURL: C:\Users\Killer\Desktop\Unreal II The Awakening.url -> URL: steam://rungameid/13200
InternetURL: C:\Users\Killer\Desktop\Unreal Tournament 2004.url -> URL: steam://rungameid/13230
InternetURL: C:\Users\Killer\Desktop\Unreal Tournament 3 Black Edition.url -> URL: steam://rungameid/13210
InternetURL: C:\Users\Killer\Desktop\Unreal Tournament Game of the Year Edition.url -> URL: steam://rungameid/13240
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Modems.website -> URL: hxxp://internethelp.centurylink.com/internethelp/modems.html
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\F.E.A.R. 3.url -> URL: steam://rungameid/21100
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Fallout 4.url -> URL: steam://rungameid/377160
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Line of Sight.url -> URL: steam://rungameid/436520
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\MechWarrior Online.url -> URL: steam://rungameid/342200
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Quake Champions.url -> URL: steam://rungameid/611500
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Unreal Gold.url -> URL: steam://rungameid/13250
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Unreal II The Awakening.url -> URL: steam://rungameid/13200
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Unreal Tournament 2004.url -> URL: steam://rungameid/13230
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Unreal Tournament 3 Black Edition.url -> URL: steam://rungameid/13210
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Unreal Tournament Game of the Year Edition.url -> URL: steam://rungameid/13240
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy Arcade Help.url -> BASEURL: hxxp://www.gamespyarcade.com/support/ URL: hxxp://www.gamespyarcade.com/support/
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy Arcade Website.url -> BASEURL: hxxp://www.gamespyarcade.com/ URL: hxxp://www.gamespyarcade.com/
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\GameSpy.com Gaming's Homepage.url -> BASEURL: hxxp://www.gamespy.com/ URL: hxxp://www.gamespy.com/
InternetURL: C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade\Register GameSpy Arcade.url -> BASEURL: hxxp://www.gamespyarcade.com/register/ URL: hxxp://www.gamespyarcade.com/register/
 
==================== End of Shortcut.txt =============================
 

Edited by bartfarkle, 15 July 2018 - 11:27 PM.

  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,802 posts
  • MVP

Uninstall:

 

Samsung SideSync

 

it is not working correctly.

 

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   7.8KB   2 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.

Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

Wait a full minute then:

File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.


Copy the next 2 lines:

TASKLIST /SVC  > \junk.txt
notepad \junk.txt

Open an Elevated Command Prompt:
Win 7: Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator
Win 8: http://www.eightforu...indows-8-a.html
win 10: http://www.howtogeek...-in-windows-10/

Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.


Get the free version of Speccy:

http://www.filehippo...ownload_speccy/ 

(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving),
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.

First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.


 


  • 0






Similar Topics

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP