Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

FRST64.exe


  • Please log in to reply

#1
bartfarkle

bartfarkle

    New Member

  • Member
  • Pip
  • 3 posts

Hi guys, and thank you RKinner for pointing me in the correct direction. One clue, I think, I could be wrong, is I set the "guest account" to disabled and put a 

password on it. I read through the FRST text files and I can see where someone re-opened the Guest account to be able to login remotely. I may be reading

that wrong, so that's why I would like the experts to give it a read since they know what they're looking at. I know just enough to get myself into trouble. I have built

computers for myself and friends since the early '90s back when we ran dual Voodoo video cards SLI and 133MHz CPU and 16MB Ram! Anyways, what i'm trying

to say is I'm a hardware guy and software was a little easier to figure out back then, but now, one has to research every System file with Microsoft to see if it's legit

or Bogus and there are thousands. I'm just glad I found you experts and this tattletail program that you know what you're looking for. I will take to heart any advice

you see fit to send my way. You may find nothing, but we will see. Thanks again for all the help. It doesn't go unappreciated. Thank you.

Files next:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.07.2018
Ran by Killer (15-07-2018 19:26:38)
Running from C:\Users\Killer\Downloads
Windows 7 Professional Service Pack 1 (X64) (2017-06-03 11:07:53)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3381375812-2662650081-4155099547-500 - Administrator - Enabled) => C:\Users\Administrator
Guest (S-1-5-21-3381375812-2662650081-4155099547-501 - Limited - Disabled)
Killer (S-1-5-21-3381375812-2662650081-4155099547-1001 - Administrator - Enabled) => C:\Users\Killer
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton Security (Enabled - Up to date) {E3FDBD9F-8140-1400-F32B-8B58923F7C4D}
AS: Norton Security (Enabled - Up to date) {589C5C7B-A77A-1B8E-C99B-B02AE9B836F0}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {DBC63CBA-CB2F-1558-D874-226D6CEC3B36}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
. . (HKLM\...\{569F29BA-2D46-439B-8B7C-01D999B9201D}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{9F460796-0348-4B11-BCA0-714C4B85E3D7}) (Version: 3.1.2.2 - Intel) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Acronis True Image WD Edition (HKLM-x32\...\{CEAC6D9F-944A-40F7-AB5D-A7412AF9CED9}) (Version: 19.0.33 - Acronis)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
aspi (HKLM-x32\...\{015E4B8A-29B5-4AE3-BD08-38220FADFF4C}) (Version: 3.00.0008.0000 - Eastman Kodak Company) Hidden
ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.6.0.5 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.6.0.5 - ASUSTek COMPUTER INC.)
ASUS Wireless Router Device Discovery Utility (HKLM-x32\...\{09CDCA35-23FF-4ED6-AFDA-BBD55235CE4B}) (Version: 1.4.8.0 - ASUS)
audiosamples (HKLM-x32\...\{2ADD318F-B560-4D64-9A2B-0196FCF103BD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamsamples (HKLM-x32\...\{E35466C4-2C85-4718-801E-761E18ACDD91}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamtools_ia64fre (HKLM-x32\...\{B875D436-48A7-42CE-A105-23A7F65B9A60}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamtools_x64fre (HKLM-x32\...\{BD33DB46-D5EE-4529-8854-7161F4A87720}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
avstreamtools_x86fre (HKLM-x32\...\{62BEC6D1-0287-4272-BFC4-C7C1A422B718}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Bing Rewards Client Installer (HKLM-x32\...\{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}) (Version: 16.0.345.0 - Microsoft Corporation) Hidden
biometricsamples (HKLM-x32\...\{49B35B72-04FF-478D-842E-DBC7A5E68285}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
biometrictools_x64fre (HKLM-x32\...\{DC0B9B4B-3198-4F0F-8A2D-1235ED539D53}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
biometrictools_x86fre (HKLM-x32\...\{5B86F724-E2A0-47B6-805A-88D873175EFB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothsamples (HKLM-x32\...\{28E0E806-0461-4E12-B272-465766FF94FB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothtools_ia64fre (HKLM-x32\...\{E6E836AB-EC50-48EA-9208-374A982F28F2}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothtools_x64fre (HKLM-x32\...\{4FBF748A-AF57-487E-8A74-A32710938A7C}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bluetoothtools_x86fre (HKLM-x32\...\{AB99CA8E-0BA0-4AE7-A9AF-26D97D70A570}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bpd_scan (HKLM-x32\...\{0E52A52C-E120-461C-AA1B-21B045BEE842}) (Version: 3.00.0000 - Hewlett-Packard) Hidden
buildsamples (HKLM-x32\...\{99870CAE-4D57-42F2-9427-AC88F33FC8C3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
buildtools_ia64fre (HKLM-x32\...\{D1ABCCBA-5525-48B2-9D13-F6D4B6CE4749}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
buildtools_x64fre (HKLM-x32\...\{E5052212-DAF0-4BD2-A28E-EF9B9A1D3D81}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
buildtools_x86fre (HKLM-x32\...\{34600C75-5EF7-476C-A897-531078A304C3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
bussamples (HKLM-x32\...\{5BF31BC3-EA1C-4905-9FF1-0FFBE5C4099B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
cancelsample (HKLM-x32\...\{4DF9AF39-93A8-45BD-AB41-6577969C4AE0}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
CCHelp (HKLM-x32\...\{9D1CF8B6-17B3-4832-B062-2C2DD0B57B04}) (Version: 3.00.0010.0000 - Easlman Kodak Company) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.40 - Piriform)
CCScore (HKLM-x32\...\{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}) (Version: 3.00.0020.0001 - Eastman Kodak) Hidden
chkinftool_x86fre (HKLM-x32\...\{5008655B-381C-4C45-BF2F-E1998DDED2C5}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID CPU-Z 1.82.1 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.82.1 - ) <==== ATTENTION
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.4105.01 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
debugfiles_win7 (HKLM-x32\...\{3ECC5DE9-FF75-4EDD-8D46-6E4A59603E16}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden
Device Simulation Framework 1.0.1 (HKLM\...\{C7966AB3-A8D9-48D5-B7DF-922674C40098}) (Version: 1.0.1 - Microsoft)
DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
dfx_ia64fre (HKLM-x32\...\{7ED7AA72-49BE-40FB-89C4-F1DBAAC16F01}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
dfx_x64fre (HKLM-x32\...\{984E6987-6A7E-4F2D-AF7F-68BBB3BD68AD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
dfx_x86fre (HKLM-x32\...\{86DE5D5D-7F44-4D9E-803C-4298732C16A3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.11 - NVIDIA Corporation) Hidden
displaysamples (HKLM-x32\...\{A541122D-7159-40B6-991D-A8A89006DB91}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
DocMgr (HKLM-x32\...\{92A51949-EE4C-466D-AAF0-99E74A49A63F}) (Version: 140.0.65.000 - Hewlett-Packard) Hidden
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 140.0.100.000 - Hewlett-Packard) Hidden
drvtools_ia64fre (HKLM-x32\...\{725943A7-97C3-4E7D-841E-7E6FBAABF64B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
drvtools_x64fre (HKLM-x32\...\{B086FEC7-E6B5-4E03-B7DC-60D5D0787174}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
drvtools_x86fre (HKLM-x32\...\{8BF161B5-1065-4457-8C7C-76366914033A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
DSF-KitSetup (HKLM-x32\...\{BFBDD199-81A2-4BFA-9581-D2EA1716B546}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
dsfsamples (HKLM-x32\...\{1231849C-2D95-46C5-BC1B-A7A4481A279F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
eBay Worldwide (HKLM-x32\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESSAdpt (HKLM-x32\...\{D15E9DB5-6BEB-4534-901E-80C0A29BAB97}) (Version: 3.00.0011.0000 - Eastman Kodak Company) Hidden
ESSANUP (HKLM-x32\...\{A6F18A67-B771-4191-8A33-36D2E742D6D9}) (Version: 3.00.0004.0000 - Eastman Kodak Company) Hidden
ESSCAM (HKLM-x32\...\{469730CC-78DF-4CD3-B286-562D459EA619}) (Version: 3.00.0010.0000 - Eastman Kodak Company) Hidden
ESSCDBK (HKLM-x32\...\{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}) (Version: 3.00.0012.0000 - Eastman Kodak Company) Hidden
ESScore (HKLM-x32\...\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}) (Version: 3.00.0019.0000 - Eastman Kodak) Hidden
ESSgui (HKLM-x32\...\{91517631-A9F3-4B7C-B482-43E0068FD55A}) (Version: 3.00.0017.0000 - Eastman Kodak) Hidden
ESShelp (HKLM-x32\...\{87843A41-7808-4F2E-B13F-25C1E67CF2FD}) (Version: 3.00.0011.0000 - Eastman Kodak Company) Hidden
ESSini (HKLM-x32\...\{8E92D746-CD9F-4B90-9668-42B74C14F765}) (Version: 3.00.0017.0001 - Eastman Kodak) Hidden
ESSPCD (HKLM-x32\...\{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}) (Version: 3.00.0020.0001 - Eastman Kodak Company) Hidden
ESSvpaht (HKLM-x32\...\{A5B3EB8A-4071-42F0-8E8E-7A8342AA8E69}) (Version: 3.00.0017.0000 - Eastman Kodak) Hidden
ESSvpot (HKLM-x32\...\{48C82F7A-F100-4DAB-A310-8E18BF2159E1}) (Version: 3.00.0017.0002 - Eastman Kodak) Hidden
eventsample (HKLM-x32\...\{493028C3-0EC5-4FBF-B3D3-F4A934AB8801}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
evntdrvsample (HKLM-x32\...\{80CFB54B-2C2C-4513-9B90-923F7F850074}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Far Cry (Patch 1) (HKLM-x32\...\{D792A069-B96B-40BA-BCB4-E5651A6E5926}) (Version: 1.00.0000 - Ubisoft) Hidden
Far Cry (Patch 1.3) (HKLM-x32\...\{21A127AE-2DAF-40B7-8374-34C3E629521C}) (Version: 1.00.0000 - Ubisoft) Hidden
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)
Fax (HKLM-x32\...\{9294F169-72EE-4D74-AE92-CA25F64B4FF8}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
fireflysample (HKLM-x32\...\{4908FC86-4753-40EB-99CD-1F1EB30E6F84}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
FurMark ROG Edition 0.5.0 (32-bit) (HKLM-x32\...\{F3D3CC6B-9AD7-4F43-8C69-40D5902FDC5C}}_is1) (Version:  - ASUS / Geeks3D)
Gear 360 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Gear 360 ActionDirector (HKLM-x32\...\{1F01D6CB-E445-405b-84D1-75B8EB5237D0}) (Version: 2.0.0.1807 - CyberLink Corp.) Hidden
Gear 360 Live Broadcast (HKLM-x32\...\{9A99DE5B-8A05-4E61-9804-E148B53A00CA}) (Version: 1.0.0524.0 - CyberLink Corp.) Hidden
generalsamples (HKLM-x32\...\{4649A430-BC01-4C9E-9846-50FC56A9D00E}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
generaltools_ia64fre (HKLM-x32\...\{315A928B-2B99-4E22-A066-14CD901F9C0B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
generaltools_x64fre (HKLM-x32\...\{9E6C6A09-A71E-45A4-8DBE-68C64DFC451B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
generaltools_x86fre (HKLM-x32\...\{D058CD28-634C-4EF1-A47D-669FD6BE0C55}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Chrome (HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
headers (HKLM-x32\...\{1F20DE69-167B-4F69-8D99-10DA59D92D10}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Hewlett-Packard ACLM.NET v1.1.0.0 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
hid_inputsamples (HKLM-x32\...\{9096B2CA-170B-4696-AB43-AF5DD8D539E6}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
hidsampleinput (HKLM-x32\...\{984AD1E9-A775-40F8-9A43-70908593B247}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
hidsamples (HKLM-x32\...\{C521D5BA-BAE4-43E7-9250-6436E0502948}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
HP Photosmart 7520 series Basic Device Software (HKLM\...\{27ABA988-D480-4F44-B0FD-45E5656D2CFE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 7520 series Help (HKLM-x32\...\{08295D09-E002-48F8-905D-34E4B08509BA}) (Version: 28.0.0 - Hewlett Packard)
HP Photosmart 7520 series Product Improvement Study (HKLM\...\{16B872EE-C458-41BD-BEAE-52758A3F3168}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Product Detection (HKLM-x32\...\{A436F67F-687E-4736-BD2B-537121A804CF}) (Version: 11.14.0001 - HP)
HP Universal Fax Driver (HKLM\...\{C2B45120-48BB-41FC-A1A7-4FF24DA5CDA3}) (Version: 1.0.246.0 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
ifssamples (HKLM-x32\...\{C0742F98-1E35-4755-A32D-9F9DAE97CBF3}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
imagingtools_ia64fre (HKLM-x32\...\{4C9C47E8-C79E-4A3B-BD87-5088916F67BC}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
imagingtools_x64fre (HKLM-x32\...\{ACAF97EB-7C5B-4C13-84E2-656FD8F2AE08}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
imagingtools_x86fre (HKLM-x32\...\{197AB90B-2CE8-4098-B8DC-A8C7ACBBEAD9}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
ImagXpress (HKLM-x32\...\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}) (Version: 7.0.74.0 - Nero AG) Hidden
infsample_ia64fre (HKLM-x32\...\{A74123D0-28F2-431A-8C9A-864CD6F2F900}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
infsample_x64fre (HKLM-x32\...\{0A68FF18-07E3-4D28-BFDC-8F51ECE8A011}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
infsample_x86fre (HKLM-x32\...\{7CA89ADF-C212-4D5A-85EC-79BAA250A656}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
installhelp (HKLM-x32\...\{E6343838-6EFE-4528-90ED-8D9258CA4584}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{86E97DE6-158D-4BD4-962C-810AD95991A6}) (Version: 6.1.2.13 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{c84b73da-5267-4f93-8dfc-2bed63f6ff49}) (Version: 6.1.2.13 - Intel Corporation)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{A3135913-E080-45FD-9301-5995B1BAF1C5}) (Version: 4.1.0.24 - Intel Corporation)
Intel® Computing Improvement Program (HKLM\...\{699E6891-25C3-443A-9B8E-80C74F0172C8}) (Version: 2.1.03413 - Intel Corporation)
Intel® Platform Controller Hub EG20T Driver (HKLM-x32\...\{BA9422F0-FF61-4393-AA74-B01E461286C8}) (Version: 1.05.0000 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.0.1037 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{e7adbf16-34ad-490a-a4e8-feb60fb99973}) (Version: 3.1.2.2 - Intel)
ioctlsample (HKLM-x32\...\{9269E4BE-0607-488B-9BFD-9E54FEADB17B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
irsamples (HKLM-x32\...\{66D6D87F-D616-408F-9AD1-70D4D744DC29}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kodak EasyShare software (HKLM-x32\...\{D32470A1-B10C-4059-BA53-CF0486F68EBC}) (Version:  - Eastman Kodak Company)
KSU (HKLM-x32\...\{B997C2A0-4383-41BF-B76E-9B8B7ECFB267}) (Version: 612.7.0008.0000 - Eastman Kodak Compnay) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LeadTool (HKLM-x32\...\{050ED764-D5FD-4D33-8FCD-AC48250C0798}) (Version: 3.00.0001.0000 - Eastman Kodak Company) Hidden
libs_ia64fre (HKLM-x32\...\{D4E7A54A-4124-49A7-835B-F3BB3B501475}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
libs_x64fre (HKLM-x32\...\{4C3B13F6-7CA2-47FD-9A47-C542BA730EF7}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
libs_x86fre (HKLM-x32\...\{B66819C1-8FA4-4456-A12C-E8C6555DC2E2}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
LucidSound Updater 1.7 (HKLM-x32\...\{393F72B5-278D-4229-B773-9712815A6B8C}) (Version: 1.7.0000 - LucidSound)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 3.0.337.0 - Microsoft Corporation)
Microsoft Office 2003 Primary Interop Assemblies (HKLM-x32\...\{91490409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.6553.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{91E30409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OpenType Font File Properties Extension (HKLM-x32\...\{45EA11B5-874D-480E-89B9-2545505BBE3E}) (Version: 2.30.0000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B2-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Windows Driver Kit 7.1.0.7600 (HKLM-x32\...\KitSetup Registration {B4285279-1846-49B4-B8FD-B9EAF0FF17DA}:{68656B6B-555E-5459-5E5D-6363635E5F61}) (Version: 7.1.0.7600 - Microsoft Corporation)
modemtools (HKLM-x32\...\{E6847FF6-C825-4739-814D-8758A9B30A9A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
MSI Interceptor DS200 Gaming Mouse (HKLM-x32\...\{9CE89B74-59E2-4215-98B1-7A9913E33600}_is1) (Version: 1.2 - MSI Co., LTD)
MyHarmony (HKLM-x32\...\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}) (Version: 1.0.300 - Logitech)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 3.18.5.667499 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Nero 2018 (HKLM-x32\...\{33A9A61C-4C88-4F25-8B94-A0687DABC394}) (Version: 19.0.08300 - Nero AG)
Nero 2018 Content Pack 1 (HKLM-x32\...\{ED2B4941-349B-4E16-B339-0D1FF2B7A788}) (Version: 19.0.01300 - Nero AG)
Nero 2018 Content Pack 2 (HKLM-x32\...\{4E3C72F5-9FEF-4380-ABA3-BA670F995538}) (Version: 19.0.01400 - Nero AG)
Nero 9 Essentials (HKLM-x32\...\{2780426f-1317-4a0f-9814-352d9a04ab98}) (Version:  - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 19.0.1003 - Nero AG)
Nero TuneItUp (HKLM-x32\...\Nero_tuneitup_is1) (Version: 2.6.0.134 - Nero AG)
networklibraries_ia64fre (HKLM-x32\...\{0A026ED9-D774-4008-B62C-7565E5626371}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
networklibraries_x64fre (HKLM-x32\...\{F573FC3C-4149-4FE7-B189-7E5DD3281927}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
networklibraries_x86fre (HKLM-x32\...\{0AD94592-05F9-4E96-9418-D50FEE317342}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
networksamples (HKLM-x32\...\{53C53D37-CA3C-4C32-B1B5-3BCC594144C2}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Norton Security (HKLM-x32\...\NGC) (Version: 22.14.2.13 - Symantec Corporation)
Notifier (HKLM-x32\...\{0008546E-DF6E-4CC1-AFD0-2CB8E16C95A2}) (Version: 3.00.0006.0000 - Eastman Kodak Company) Hidden
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.11 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Graphics Driver 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.11 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
oacr_x86fre (HKLM-x32\...\{CBE08674-3776-4578-9992-46FAEF528F15}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
offreg_ia64fre (HKLM-x32\...\{35546EB8-2D2F-4AAD-9FE5-9574520F4AD8}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
offreg_x64fre (HKLM-x32\...\{E754BD2E-5F64-4D38-A1C6-8B8143A09985}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
offreg_x86fre (HKLM-x32\...\{6F9AD5EF-EF6A-4548-B797-2543F0D1F28F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenCL™ runtime for Intel® Core™ and Xeon® Processors (HKLM\...\{1F6CF248-9A18-4740-BD09-281DBC8A2051}) (Version: 6.4.0.25 - Intel Corporation)
OTtBP (HKLM-x32\...\{F71760CD-0F8B-4DCC-B7B7-6B223CC3843C}) (Version: 3.00.0007.0000 - Eastman Kodak Company) Hidden
PCDADDIN (HKLM-x32\...\{65D85050-5610-4A91-A3B1-D5C744291AD4}) (Version: 3.00.0001.0008 - Eastman Kodak Company) Hidden
PCDHELP (HKLM-x32\...\{C99DCDA4-7407-4F72-A77E-C81C551D0C4E}) (Version: 3.00.0001.0000 - Eastman Kodak Company) Hidden
PCDLNCH (HKLM-x32\...\{69BD6399-3D8F-45B7-81D9-819361F5101D}) (Version: 3.00.0001.0002 - Eastman Kodak Company) Hidden
PCDrdsho (HKLM-x32\...\{C42C10A8-F2F4-4846-B772-ABD1912A2E85}) (Version: 3.00.0001.0001 - Eastman Kodak Company) Hidden
pcidrvsample (HKLM-x32\...\{FDAA0CD7-930D-4E16-B3A2-66FAA2EEF3AD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pfd_ia64fre (HKLM-x32\...\{D982C565-EE25-4E1D-8581-95ABDF637032}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pfd_x64fre (HKLM-x32\...\{4DD3FE4D-1D81-44F4-9FCC-BB8F861C6E21}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pfd_x86fre (HKLM-x32\...\{82B341CB-D57D-4286-BE54-FB86BAAD23EB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnpportssample (HKLM-x32\...\{BEC25D5C-2CD4-4518-8061-4D97D61C710F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnptools_ia64fre (HKLM-x32\...\{DC6B7F7C-20F7-4D40-9735-957752CE5F53}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnptools_x64fre (HKLM-x32\...\{198C0A8A-5E8D-4CF5-BE66-9D0E1FFBC217}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
pnptools_x86fre (HKLM-x32\...\{670CAF31-78EA-4A8B-9F8D-32EC018B1345}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
portiosample (HKLM-x32\...\{5B66B4F6-D913-4D8D-B997-2E208ABECA73}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
powermanagement_ia64fre (HKLM-x32\...\{1E8FC55E-F212-4B80-A0F7-A0D178C2FE4A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
powermanagement_x64fre (HKLM-x32\...\{B4665EAE-6733-4978-8757-629C7D8DD6A5}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
powermanagement_x86fre (HKLM-x32\...\{9936A6C2-0C21-49D8-8AB1-92384259D214}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Prerequisite installer (HKLM-x32\...\{AD240F1A-3102-492E-B657-17969A9D5E9A}) (Version: 19.0.0004 - Nero AG) Hidden
printsamples (HKLM-x32\...\{E1423BD0-AAAE-4291-B220-863AEDF873D7}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
printtools_ia64fre (HKLM-x32\...\{38AD20B9-0433-45D5-86D6-C76BAE151892}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
printtools_x64fre (HKLM-x32\...\{3A2F0C18-0F0B-44BF-80F0-CB4204565573}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
printtools_x86fre (HKLM-x32\...\{B533A27C-3B5D-42AB-B397-A817F154CC22}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
rcud (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
readme (HKLM-x32\...\{5193B1FC-FC33-4CBA-9B9F-85F3D8F7CD87}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8237 - Realtek Semiconductor Corp.)
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.203 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
sdv (HKLM-x32\...\{D721152B-35EB-44F3-AB58-D0AE8882813F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
sensorsamples (HKLM-x32\...\{05A6F765-D749-45E6-A157-2E5ADE8F8FF0}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital)
setupsamples (HKLM-x32\...\{1321CC95-FB73-4437-8F77-B179432F8857}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
setuptools_ia64fre (HKLM-x32\...\{B2B60AF9-E82A-453D-AB79-B4103614FF7E}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
setuptools_x64fre (HKLM-x32\...\{17349339-D8E7-4394-805E-E2346C19BA82}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
setuptools_x86fre (HKLM-x32\...\{8AFD8D85-FF4D-4DA7-B1A0-14C6A1BA1F59}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
SFR (HKLM-x32\...\{C354C9B6-A4E0-4BB0-A368-6DC6BCA0E314}) (Version: 3.01.0002.0001 - Eastman Kodak Company) Hidden
SFR2 (HKLM-x32\...\{ABE068DF-8DC4-4947-ABFC-DD2B40850225}) (Version: 3.00.0004.0000 - Eastman Kodak Company) Hidden
sideshowsamples (HKLM-x32\...\{5058FE9A-CF62-48B5-9AA2-48C536827880}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
smartcardsamples (HKLM-x32\...\{5E38A4B3-E50B-4E05-AC66-CDA806B12D10}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
SmartWebPrinting (HKLM-x32\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.256.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
storagesamples (HKLM-x32\...\{5BE72DAD-15B7-4B1D-808D-9C66DF8E691D}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
streammediasamples (HKLM-x32\...\{6F1B3EC0-1182-4AA6-9E08-C4D7A05E1B7C}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
swtuner (HKLM-x32\...\{C1620364-5718-43DD-B6B7-104A0A41EACC}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
THX TruStudio PC (HKLM-x32\...\{F1F5C7EE-23BB-47A3-943E-9F290DD267F0}) (Version: 1.0 - Creative Technology Limited)
toastermetadatapackagesample (HKLM-x32\...\{0A049327-DE93-4098-B573-AAC71E0E6FA4}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
toastersample (HKLM-x32\...\{48402841-6F46-464D-8FA1-3A4460C8399D}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
toolindex (HKLM-x32\...\{3B31D97A-7CF4-4ED2-8593-535AE7C0FB92}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
tracingtool_ia64fre (HKLM-x32\...\{3C9E736F-8436-41D2-87F3-1468A59CA866}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
tracingtool_x64fre (HKLM-x32\...\{37E0996B-CD8D-46C9-A801-9EE67276DF9A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
tracingtool_x86fre (HKLM-x32\...\{4077C73A-C623-40B9-8D0A-B9D501AF3046}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.213.000 - Hewlett-Packard) Hidden
umdfsamples (HKLM-x32\...\{A072218B-9353-4FAA-A969-64E64568B431}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
usbsamples (HKLM-x32\...\{71E96A45-FE54-4AF6-B208-A3F860EF1063}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
vistalibs_ia64fre (HKLM-x32\...\{329335E6-0A4B-42B9-9230-5CAC83B04649}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
vistalibs_x64fre (HKLM-x32\...\{085AC6CC-3716-4C62-8965-FF94296BCC26}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
vistalibs_x86fre (HKLM-x32\...\{FB2EEF6E-00A7-4863-A44A-227EB927A589}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
wcoinstallers (HKLM-x32\...\{EBD729CC-602A-4D12-896B-4FBEBE1B6C4F}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wdftools_ia64fre (HKLM-x32\...\{091DDD71-FA98-4FF6-8E6F-07C9D09E29B8}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wdftools_x64fre (HKLM-x32\...\{F5F16DEF-5F74-46C8-95E3-AC2FEB04A9DD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wdftools_x86fre (HKLM-x32\...\{502A382B-6A1F-41C3-A370-A085182EEA91}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
wmisamples (HKLM-x32\...\{B66D9EAC-DDAE-4477-93B2-A946438D97B6}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wnetlibs_ia64fre (HKLM-x32\...\{63B405FD-A763-4F88-8844-1673AA5F00AB}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wnetlibs_x64fre (HKLM-x32\...\{4DD6CC58-ED0B-46F1-8A23-4661D7DA60DD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wnetlibs_x86fre (HKLM-x32\...\{D80B8A95-3DC7-428C-B216-70251A4296DD}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Wondershare Dr.Fone for Android(Build 4.0.1.60) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 4.0.1.60 - Wondershare Software Co.,Ltd.)
wpdsamples (HKLM-x32\...\{B121B2B4-867E-4389-AC58-0AEC72C37F47}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wpdtools_ia64fre (HKLM-x32\...\{FCFE5318-77F7-4661-A526-418C431A48B5}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wpdtools_x64fre (HKLM-x32\...\{E761E173-81A4-4C12-A28D-322952C4F31B}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wpdtools_x86fre (HKLM-x32\...\{85701256-4CFE-4144-A831-4D03DB2C830A}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wsdtool_ia64fre (HKLM-x32\...\{EDE33D47-848D-4BAE-8399-01D4457D8F64}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wsdtool_x64fre (HKLM-x32\...\{EE1E82F8-E538-4B5A-952B-6252DEFA5D06}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wsdtool_x86fre (HKLM-x32\...\{AEDC22CF-1590-4095-8053-4B724A5BA7A8}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
wxplibs_x86fre (HKLM-x32\...\{9D668C99-AEED-472A-98C0-65D8865150F6}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\ChromeHTML: -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis)
ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-06] (Cyberlink)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NavShExt.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers1-x32: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\versions_page.dll [2015-11-11] (Acronis)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-06] (Cyberlink)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NavShExt.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-06-01] (NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\buShell.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NavShExt.dll [2018-05-29] (Symantec Corporation)
ContextMenuHandlers6-x32: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\versions_page.dll [2015-11-11] (Acronis)
ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0394B700-18E0-4874-BFE8-2F909228BA23} - System32\Tasks\{752041A2-61A9-4EE4-9D5B-818F61E1FF5C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TM2MGUUZ\cmVtb3RlcGMzLnJ2aWV3LmNvbTo4MDs4YTgwODA4NDRmYzdiMzVmMDE1MDUwMjMxMDRjNDU5Mw==.exe" -d C:\Users\Killer\Desktop
Task: {06F90FF4-13F8-4D25-B5E5-E2B20D6B9F86} - System32\Tasks\Nero TuneItUp PRO (Autopilot.exe) => C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe [2017-09-12] (Nero AG)
Task: {09616B75-46EC-4DB7-8224-1F20A73DE0C9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {0A03754E-BE54-4663-8D05-01CE2BF8E37C} - System32\Tasks\{C2B217A5-0FEC-4622-A56A-3B76293AD940} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\Discovery.exe -d C:\Users\Killer\Desktop
Task: {0E938DE5-8A41-492B-81BE-3596D57B44C7} - System32\Tasks\{9EEBAEBD-6A21-4968-B69A-FEBC55C81AA9} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Downloads\MODI2003.exe -d C:\Users\Killer\Downloads
Task: {0F12D758-2067-4CF8-93F1-2E47C12E069F} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2017-06-13] (Microsoft Corporation)
Task: {110F7EF1-7CF4-48E1-9818-FFBF5C17C30D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {12D00631-5BF6-4DBD-A21B-0EB12EBD43A7} - System32\Tasks\{B1485024-64BE-4F89-8ADF-0CCC069EAA6C} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\Printer\Printer.exe -d C:\Users\Killer\Desktop\Printer
Task: {13D219C9-3CAD-4D93-B5A5-8FFD30DB3E31} - System32\Tasks\{752E26A2-D2F1-48C7-B8E6-630BCFBD7125} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\setup (1).exe" -d "C:\Users\Killer\Documents\Microsoft update catalog\sms" -c "C:\Users\Killer\Documents\Microsoft update catalog\sms\SCR3XX2K.sys"
Task: {17475058-DC2F-49CA-AFA4-ED1268558A3A} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {17715A95-F434-424C-B3F0-05B4E4F7C802} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-20] (NVIDIA Corporation)
Task: {1A07EA19-F4EF-4D0C-8A74-B7BC75CACFFB} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation)
Task: {1B0DE524-475A-42E4-BCC3-7FF5C9CA7C87} - System32\Tasks\{5E627C08-BE63-437E-92EB-DC1A4E42100F} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Task: {1CF98F44-BAF3-4C55-99B8-523D678CEF9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {2412638B-1F7B-4C8D-875A-F77889DE6F4A} - System32\Tasks\{4CA42120-0A15-4C34-B942-05FCD848588E} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {259A7D1E-80AD-48C2-B64D-0B09D3142E1C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {26875D4A-E590-42FD-962D-99E7D110C0C9} - System32\Tasks\{AFDBD80F-15E1-43F2-8D0F-9D0FC14D0CB7} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\AHCI_Intel_8.9.4.1004_W7x64_A\AHCI_Intel_8.9.4.1004_Win7x64\Intel Matrix Storage Manager\iata_enu.exe" -d "C:\Users\Killer\Downloads\AHCI_Intel_8.9.4.1004_W7x64_A\AHCI_Intel_8.9.4.1004_Win7x64\Intel Matrix Storage Manager"
Task: {2B45F167-CE2B-45D2-8DB4-87570C441AA7} - System32\Tasks\{880329E1-0D04-4730-BF83-FE4806554C2B} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\Editor.exe
Task: {2B932677-590D-49E1-9A80-79694E0D3103} - \TweakBit\FixMyPC\Start FixMyPC automatic scanning -> No File <==== ATTENTION
Task: {31C7CD5F-738A-4E6C-A070-BAB35B1373B5} - System32\Tasks\{35CD82A4-99BF-4B7C-9E5A-186017F5D754} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {32A07A32-B7F9-463D-A1B6-B7CC3C76B1E3} - System32\Tasks\SkipUAC Optimize Windows Services => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {32D0A099-C781-4B1E-B118-2A279EA84FA6} - System32\Tasks\{74B21A64-546C-4A3C-AFDD-DA298A6108AD} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {3332D488-4A5F-4AEF-9144-C52C6C066E12} - System32\Tasks\ASUS Live Update Task Schedule => C:\Program Files (x86)\ASUS\GPU Tweak\ASUSLiveUpdate.exe
Task: {3881AA2A-F65B-43C3-9A97-DF039F81DC96} - System32\Tasks\{38BF43F4-E38E-41C0-98C3-49EBFE676984} => C:\Windows\system32\pcalua.exe -a D:\Utility\Printer.exe -d D:\Utility
Task: {39CFF288-8953-4F77-86BF-E781EC4340C2} - System32\Tasks\{64E4DDC6-9F06-4E8D-B39B-874E132AF5A3} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {3CC78C9F-B865-4A52-BC79-57D65235ADE9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-20] (NVIDIA Corporation)
Task: {45C07B9E-D72B-4EE9-AEB2-F6ADFCFC1745} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-20] (NVIDIA Corporation)
Task: {495585E4-674B-4215-82F9-C78C76F2A83D} - System32\Tasks\Nero TuneItUp PRO => C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe [2017-09-12] (Nero AG)
Task: {4DCCA774-41E5-4B30-8FA5-983CE7335221} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {4FBD642F-97F8-442D-B5F2-4653BF126A8A} - System32\Tasks\{2E9DADC3-4D30-42B8-A507-8DE53ED56175} => C:\OEM\Preload\utility\OOBEOffer\OnlyBackGround.exe
Task: {567EC19B-D9BD-4916-B785-6886E38BB6C5} - System32\Tasks\{7F6F2A19-BFA8-412D-8693-99E30F56B9F9} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive\setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive"
Task: {5EE5382E-C5B9-444C-8F8F-B7E33CEC1845} - System32\Tasks\SkipUAC Optimize autorun => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {5F0259B9-4754-4292-AF61-D9E1EB9A89CD} - System32\Tasks\{EFAB2DBD-C245-421C-BCDB-4718F5BCE449} => C:\Windows\system32\pcalua.exe -a D:\Setup\SETUP.EXE -d D:\Setup
Task: {627C5C37-A239-4A4E-A66D-5FA417458A09} - System32\Tasks\{870F1199-BD59-48D3-86C8-ADF20CECCF48} => C:\Users\Killer\Desktop\setup.exe
Task: {650B5C36-1508-435F-8BDC-02A15BF1AF1B} - System32\Tasks\SkipUAC Defragment drives => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {66BA12B3-8808-4DF9-97E5-54D48DD638F6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-02-07] (Piriform Ltd)
Task: {6D71FE2F-57FB-4CB6-BA06-1CC17DDCDE0A} - System32\Tasks\GPU Tweak II => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [2017-09-22] (TODO: <Company name>)
Task: {6E6F9CA8-BC57-4D67-9252-6EFAA4C24F42} - System32\Tasks\{A0446F04-2DF1-4585-AFFB-D4BF188341CC} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCCInstall.exe" -d "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static"
Task: {6F50745E-B383-44BC-8860-1F2F7680A0F4} - System32\Tasks\{90A2F2F6-7E99-4DBC-9D2C-86562313AB09} => C:\Windows\system32\pcalua.exe -a D:\DAO35\DISK1\UNINST.EXE -d D:\DAO35\DISK1
Task: {707917F2-24A9-4001-9EE0-39C720EA4F90} - System32\Tasks\{8E80806F-B662-4C7F-914E-E869B02E6190} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Creative\THX TruStudio PC\APOIM\APOIM64.exe" -d "C:\Program Files (x86)\Creative\THX TruStudio PC\APOIM"
Task: {72916D91-6E49-4A6C-9F3A-9D5BE6AEE80A} - System32\Tasks\{BEF5D079-3C8E-4BF8-BE89-5C6DF747CE3D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Creative\SBAudigy2ZS\THX Console\THXConsole.exe" -d "C:\Program Files (x86)\Creative\SBAudigy2ZS\THX Console"
Task: {7382D9EE-368B-472E-A623-E35FC9AEF191} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe
Task: {7920A3A2-B6FC-463F-829F-AF317D323536} - System32\Tasks\{99306045-360C-47C9-8CA5-3E480C84471B} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup\Setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup"
Task: {7B5EC739-2BD8-4ECF-A91C-BF8EC8C04D6E} - System32\Tasks\{5D23526E-B4B8-434B-A47E-826F3BDB5D5B} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {7BF81A51-E16A-4A01-A15A-ABCF527819DD} - System32\Tasks\{141F6003-A64A-4ACE-80E4-CCF550FC66F0} => C:\Users\Killer\Desktop\setup.exe
Task: {802C4A40-EEFD-453D-98FC-F5A84C75DA36} - System32\Tasks\{B2E5FA21-E8D7-4E5B-92EC-A55AE0747985} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\Setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup"
Task: {824D50F6-E5CD-43C8-9417-448CACB9E682} - System32\Tasks\SkipUAC Save power => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {84471C77-1CDA-4301-A1B7-F17FAB0B4EF4} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2017-06-13] (Microsoft Corporation)
Task: {8667AC2A-CBEF-4DBF-BC37-9BDE8FEFB967} - System32\Tasks\{0DD97613-D96A-475E-9D9D-B3D227D49260} => C:\Windows\system32\pcalua.exe -a "C:\Swsetup\Monitors\HP_2709_1.0\HP Display Installer.exe" -d C:\Swsetup\Monitors\HP_2709_1.0
Task: {877849BD-D2EE-4A3E-A24F-5BD939E4311A} - System32\Tasks\{674EEC6C-384E-4885-ABFB-D247B83C2872} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Creative\ALchemy\ScsInstall.exe" -d "C:\Program Files (x86)\Creative\ALchemy"
Task: {88E134BD-CA82-41CB-BF7A-E9C2E20EA4DE} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {8A76FF2E-3C53-467F-BD8E-F3D06EDB4867} - System32\Tasks\{B4079735-9CBD-45D5-9116-27DD82218571} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\DriverUpdate\UninstallStub.exe" -c --log {daaa600a-9f08-4bc8-abe2-6763f93957c6}
Task: {8B7C7A90-2132-4C1A-81F2-D4E65B0D35F2} - System32\Tasks\{F73DBE57-31D8-4D6C-AA87-F0C3534A7FC2} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{82730AAC-04BA-4684-A63F-286FB9847C15}\setup.exe" -c -runfromtemp
Task: {8F722F5A-D505-4246-B0B4-C326ABA02EFF} - System32\Tasks\{D81FFA4E-C277-4BCA-8341-49E65144667C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\setup (1).exe" -d "C:\Users\Killer\Documents\Microsoft update catalog\sms" -c "C:\Users\Killer\Documents\Microsoft update catalog\sms\S3XXx64.sys"
Task: {9035482A-D63F-4B93-B449-A95EC2B08D39} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {95AD77C5-5C56-48B3-B3B0-CFF8D18728D6} - System32\Tasks\{8412501D-6E3A-42FE-9B02-B731CD53A2B2} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{82730AAC-04BA-4684-A63F-286FB9847C15}\setup.exe" -c -runfromtemp -l0x0409  -removeonly
Task: {97436089-2FFA-45CE-B74F-3BD3AE01B32F} - System32\Tasks\{059CD66B-C217-4656-AC90-A6F7ED3CF7E9} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\sp45579 (1).exe" -d C:\Users\Killer\Downloads
Task: {9B0CFA8D-4231-446B-A929-D0F8B929EDDE} - System32\Tasks\{E7180CFA-E8D5-4152-990A-E666C92EF8A7} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Temp\Temp1_Printer (1).zip\Printer.exe" <==== ATTENTION
Task: {9B7FCFB4-909A-47D3-A411-39BE3BBFFA6F} - System32\Tasks\{B5F40C00-FB9B-47A5-B83D-0D85E7BC904C} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\Printer.exe -d C:\Users\Killer\Desktop
Task: {9EF406FE-47EA-488D-8F63-38CE52076EC7} - System32\Tasks\{A9819B74-98D6-40E6-8DED-63212230E222} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -c /M{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC} /l2057
Task: {9F3DC17A-401C-4EE9-B605-D1360F102124} - System32\Tasks\{F4FA5749-BC18-4ED6-AA80-46DB960B4EF9} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Temp\Temp1_WinVista7_64_41324 (1).zip\Intel Control Center\SetupICC.exe" <==== ATTENTION
Task: {9F776DA2-A8B8-4FDC-9E21-D5AD47548388} - System32\Tasks\{ACDA6D48-CB50-4576-9F0E-EB813E13492B} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0KG5ZY1P\setupsr1.exe" -d C:\Users\Killer\Desktop
Task: {A0DDF131-E1A3-47C6-835D-B99FB974709A} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\SymErr.exe [2018-05-29] (Symantec Corporation)
Task: {A1E452A0-142E-4F62-AB44-DD603E58E114} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2017-06-13] (Microsoft)
Task: {A67E939D-0576-450A-9B91-F318F0E200CF} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\SymErr.exe [2018-05-29] (Symantec Corporation)
Task: {A6B463D8-7F97-4C4D-8020-7556EED9FDB3} - System32\Tasks\{7ABC6F91-6DA7-414B-959C-3D491533BBBF} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {A87699D1-2EDB-4786-9EED-42D40E96BDC8} - System32\Tasks\SkipUAC Securely empty recycle bin => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {A8B4ACF8-48F3-4850-AC73-3CEB65D06BF1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-02-07] (Piriform Ltd)
Task: {AA38C4BF-342D-4C09-9361-CA74D7FA8C4A} - System32\Tasks\{56A1230D-1AF6-45E0-BBB7-BF1B46F027DC} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive\x86.en-US\Setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.7.38 en-US Setup\MacDrive\x86.en-US"
Task: {AAF329CF-6FB5-4CCC-9F6F-2793AFD0A9FC} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2018-05-29] (Symantec Corporation)
Task: {ADCAB91F-5E96-4BA9-9A87-A58180C280DE} - System32\Tasks\{730282DF-4958-4053-A7E0-15A1A46309B4} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Downloads\MicrosoftTranslatorInstallerForOffice.exe -d C:\Users\Killer\Downloads
Task: {AFA967C9-CB8F-43A9-9200-95385B925200} - System32\Tasks\{70F52901-8BE8-4FE0-9330-61960BFB60D0} => C:\Users\Killer\Desktop\setup.exe
Task: {B286EEBA-ACF2-4646-9BE8-3C9BE76A0A25} - System32\Tasks\ScanToPCActivationApp.exe_{41031457-56F4-44A8-8CD1-B69416DDDCFC} => C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {B6EFB1F7-DFB7-4DBF-B7EA-9B3731C053FA} - System32\Tasks\{BBB3E315-BC6D-4EEE-8362-4ADF8EB61820} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup\MacDrive\setup.exe" -d "C:\Program Files (x86)\Mediafour\MacDrive 8\MacDrive 8.0.6.52 en-US Setup\MacDrive"
Task: {B8349E32-3AD2-4418-9E56-E1E0FDA3F0E2} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2017-08-10] (Nero AG)
Task: {BC58FB86-1D89-43F4-99C3-0106B8189612} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\WSCStub.exe [2018-05-29] (Symantec Corporation)
Task: {C3C3FFEF-966A-4046-9B06-C0FE6FBAEF59} - System32\Tasks\{02B25E0F-80EE-4F12-976C-485B1519A527} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\
Task: {D13EE52E-EF0B-4A66-840D-7AAD56061A30} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2017-06-13] (Microsoft Corporation)
Task: {D7A8263A-D047-4281-89AC-C7690BCD0F03} - System32\Tasks\SkipUAC Clean registry => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {DBC3DAE9-CF0A-4C7E-A282-A07D62E777F8} - System32\Tasks\{09EA5BE7-AEB1-4586-A398-C5840FC447DA} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\Desktop\setup.exe -d C:\Users\Killer\Desktop
Task: {DD39ECAC-FCC8-423C-98B3-4687A8D9B7D7} - System32\Tasks\{E568111B-473F-4135-8C75-3AA4D073F22D} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {DDD8D68B-B42E-47A0-846A-0E40278C19B3} - System32\Tasks\{47173FFF-A23B-430F-AAD5-94990A27277B} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Task: {DFBDB548-5A21-40A3-83DF-34E4ECAB9347} - System32\Tasks\SkipUAC Delete Internet tracks => C:\Program Files (x86)\Nero\Nero TuneItUp\tuneitupStart.exe [2017-09-12] (Nero AG)
Task: {DFE3CC27-9C54-4F22-A7E9-C2346BDE42C7} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2017-06-13] (Microsoft Corporation)
Task: {E050F066-CCE8-4ECD-8985-257B5D847CE3} - System32\Tasks\{52D9AA83-56A0-44D7-BBED-127FD62E613E} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {E3BFDFE1-BF1F-4801-8672-97967E6CE06F} - System32\Tasks\{6D65E97C-4730-4A8F-8F2E-6DB9A7EEE0ED} => K:\Program Files (x86)\Prey\prey.exe
Task: {E7B1A066-D721-4178-9954-C62407C4B64D} - System32\Tasks\{E7F0DBD9-5A7B-4914-8A5C-4EC059759B43} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\installShell.exe" -d "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static"
Task: {EEBB708A-0CE6-4046-8915-8607FDF5E4F9} - System32\Tasks\{0556F744-599A-47FD-99E5-EA4EF7D09760} => C:\Windows\system32\pcalua.exe -a C:\Users\Killer\AppData\Local\Temp\Temp1_Printer_1055.zip\Printer.exe <==== ATTENTION
Task: {EF826A27-FBB8-4D7F-972F-49A8749C7DE0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {F15BF6B6-240C-4EA1-A210-3F9363E0D5C6} - System32\Tasks\{ACB467F0-2549-4003-88BB-7974A805CCE3} => K:\Program Files (x86)\Ubisoft\Crytek\Far Cry\Bin32\FarCry.exe
Task: {F59CBA43-FE70-4732-9B93-76760758B82F} - System32\Tasks\{AC66EADC-A964-4C4E-833C-42BCAFFD5D88} => C:\Windows\system32\pcalua.exe -a "C:\Users\Killer\Downloads\AHCI_Intel_9.5.0.1037_W7x64_A (1)\AHCI_Intel_9.5.0.1037_Win7x64\iata_cd\setup.exe" -d "C:\Users\Killer\Downloads\AHCI_Intel_9.5.0.1037_W7x64_A (1)\AHCI_Intel_9.5.0.1037_Win7x64\iata_cd"
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\Nero TuneItUp PRO (Autopilot.exe).job => C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe C:\Program Files (x86)\Nero\Nero TuneItUp\KillerNero TuneItUp PRO (Autopilot.exe
Task: C:\Windows\Tasks\Nero TuneItUp PRO.job => C:\Program Files (x86)\Nero\Nero TuneItUp\TuneItUp.exe
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
 
ShortcutWithArgument: C:\Users\Public\Desktop\Netflix.lnk -> C:\ProgramData\OEM_E471269A730D\Netflix\StartURL.exe () -> hxxp://homepage.gateway.com/redirect.aspx?rid=09000002
 
==================== Loaded Modules (Whitelisted) ==============
 
2018-06-10 01:07 - 2018-05-20 10:36 - 001315296 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2003-02-04 08:22 - 2003-02-04 08:22 - 000181312 _____ () C:\Windows\SysWOW64\ScsiAccess.EXE
2009-12-13 19:19 - 2009-12-09 02:24 - 000076320 _____ () C:\OEM\USBDECTION\USBS3S4Detection.exe
2018-05-04 19:59 - 2010-08-10 21:37 - 000334848 _____ () C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
2016-12-15 17:41 - 2016-12-15 17:41 - 000497824 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2017-09-08 15:16 - 2016-03-03 13:29 - 003712512 _____ () C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSIMon.exe
2018-06-10 01:08 - 2018-05-20 10:36 - 095437792 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-06-10 01:08 - 2018-05-20 10:36 - 003029472 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-06-10 01:08 - 2018-05-20 10:36 - 000149984 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2018-06-26 18:38 - 2018-06-22 12:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-06-26 18:38 - 2018-06-22 12:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2017-09-12 18:05 - 2017-09-12 18:05 - 000065536 _____ () C:\Program Files (x86)\ASUS\GPU TweakII\Exeio.dll
2017-09-12 18:04 - 2017-09-12 18:04 - 001757184 _____ () C:\Program Files (x86)\ASUS\GPU TweakII\Vender.dll
2017-09-08 15:16 - 2011-01-27 00:53 - 000028160 _____ () C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\uiHook.dll
2018-07-11 03:40 - 2018-07-11 03:40 - 000170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\8fb9a146976a1b48c7c02760107c8735\IsdiInterop.ni.dll
2017-03-22 20:58 - 2010-06-08 10:44 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2018-04-07 21:38 - 2018-05-20 10:36 - 001033184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-15 18:15 - 2016-12-15 18:15 - 000693272 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\aol.com -> hxxp://free.aol.com
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\caremark.com -> hxxps://remoteaccess.caremark.com
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\driversupport.com -> hxxp://apps.driversupport.com
IE trusted site: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\driversupport.com -> hxxps://apps.driversupport.com
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 19:34 - 2018-05-22 23:20 - 000000054 ____N C:\Windows\system32\Drivers\etc\hosts
 
127.0.0.1       localhost
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
MSCONFIG\Services: AdobeARMservice => 3
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Creative Audio Engine Licensing Service => 3
MSCONFIG\Services: DSAService => 3
MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: Intel® SUR QC SAM => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: Nero BackItUp Scheduler 4.0 => 3
MSCONFIG\Services: NeroBackItUpBackgroundService2018 => 2
MSCONFIG\Services: RemotePC Agent => 3
MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2
MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3
MSCONFIG\startupreg: 220D66CA859F37BBCE99F39F9492C1198F2EFC60._service_run => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
MSCONFIG\startupreg: AsioReg => REGSVR32 /S CTASIO.DLL
MSCONFIG\startupreg: AsioThk32Reg => REGSVR32.EXE /S CTASIO.DLL
MSCONFIG\startupreg: DSATray => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: InstalledTime => 6-2-2017
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: THX Audio Control Panel => "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{051CD135-315B-4161-B7CE-3F21C120F58B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1A83B435-CF1C-468E-AED0-40F29FFC3066}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5ADB4B10-41C2-422A-87EC-FF22FD2EC890}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{45934E80-1914-4FA7-9032-56BAE1A58C72}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A51D77E7-D513-4BDC-BDAE-1759E36EBC60}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{83F236A8-95D1-4256-9A90-DF9E3C3AEDBC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{1DD726E8-2E12-4BC5-A3A9-0D23CF4CA0D6}] => (Allow) C:\Program Files\HP\HP Universal Fax Driver\bin\FaxPrinterUtility.exe
FirewallRules: [{DE8ABB7A-7113-424D-9D57-A0ACACFBF803}] => (Allow) C:\Program Files\HP\HP Universal Fax Driver\bin\SendAFax.exe
FirewallRules: [{C1B54125-DE99-4F51-BF7A-DC8FAF2150A6}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{14A4B763-9831-4270-BAF0-3D10BD482716}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{FA54448A-7671-48A4-A283-13959597BE0C}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{20768AB8-0943-47BA-834A-6F68F95BD2B9}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{D5D61EEA-5EDC-44A4-B2C9-CF988CD8AC9B}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{98A470A2-33DD-458F-A338-DBE7ABCB48A5}] => (Allow) K:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{B6CE6697-297A-4100-BBC3-B14BC8274D97}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Line of Sight\Binaries\Win32\LSGame_BE.exe
FirewallRules: [{B107097B-D53D-4E5F-BC4E-AF74178DC2A5}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Line of Sight\Binaries\Win32\LSGame_BE.exe
FirewallRules: [{A1DEA930-1F9D-438B-885B-E23E7A1F8D2F}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{A0841DC1-271B-4ED4-B9BF-9DE55A48988E}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6F78ECC1-E232-4D76-8DE7-E6F4606729A6}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetup.exe
FirewallRules: [{40B2F32F-EAA2-403A-A594-DFAD32B49381}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\SendAFax.exe
FirewallRules: [{2FB421B7-6C3A-40CA-8B9E-AF41F8210CFF}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\DigitalWizards.exe
FirewallRules: [{19597FAD-E075-4B86-9001-794C3E026DAC}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\FaxApplications.exe
FirewallRules: [{5DB53329-A6C1-4D2F-B083-577831CF33EC}] => (Allow) K:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{00DD58D1-D91D-4BF5-A649-6B5D4EB14784}] => (Allow) K:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{DEE54AE9-A74A-4F87-B9D1-EB0492A1D779}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9CB18645-9442-4DC8-8BFA-438213111EBC}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{0F518788-BFFE-4FEC-B652-A749CA4C33AC}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [TCP Query User{AADD469B-8D53-41F8-AED6-77D19F8730D9}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [UDP Query User{48621B38-45E9-4B0F-B036-31B3D47480C6}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [TCP Query User{726ADFAA-9011-488A-9B60-B0EDE5D8A867}C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe] => (Block) C:\program files (x86)\kodak\kodak software updater\7288971\program\backweb-7288971.exe
FirewallRules: [{668F84FB-CCD0-48C9-82FE-BF0B1E16AADA}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\f.e.a.r. 3\F.E.A.R. 3.exe
FirewallRules: [{B8D5F659-5507-4D61-B42F-C614258B0DCE}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\f.e.a.r. 3\F.E.A.R. 3.exe
FirewallRules: [{0D4E8102-65B0-4301-8F61-8EF59E48CAD5}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AE0DEC3F-B13C-4888-8F92-003FA9F5D238}] => (Allow) K:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FFE6DC5C-1499-42F0-86D0-0E9D4C3A1DA9}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{BF201586-8E6B-45BD-AA80-A48686993C95}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{36DA5852-F3BA-435F-90EA-E4B84F41DFBA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{757AC730-D463-4367-9983-8078AA67115E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{8D1E4142-7F75-427B-A3E4-8FD229E13462}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{A5D49B07-49D4-440E-B410-EB03F0144AE6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{25BB72C7-3488-4E7D-AD18-C6B66C813794}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{4AEDBFDE-6725-482A-80FE-37AFE52E63EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{D24D7A83-2B22-4C9E-A67C-BFAC1D273A44}] => (Allow) LPort=1900
FirewallRules: [{92FE4D4F-2440-4F9F-8578-C0BDCBCF90D4}] => (Allow) LPort=2869
FirewallRules: [{CEC7C18D-A761-47C2-A2E5-76317A86AC08}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{EBA12F52-F297-4C85-88F7-16ADE8BCB3F6}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{DE0DA76C-EF4C-45C3-9B8D-E42B2D1179D9}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{BC72CFF7-B5D9-4BA8-8CBC-276911FAA70A}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{B87F9424-262B-486A-8961-EA4B28A8E361}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [{3BB04624-34BE-46C1-BE55-6625DAB8CE1D}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [{81E60C57-01B7-4209-9195-0E18E0E5BDC4}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\quakechampions\client\bin\pc\QuakeChampions.exe
FirewallRules: [{D113B030-9F3F-4852-83BC-9FC8A9E33A44}] => (Allow) K:\Program Files (x86)\Steam\SteamApps\common\quakechampions\client\bin\pc\QuakeChampions.exe
FirewallRules: [{461D0DE8-82BA-4CAA-92F5-42ADC7E9B3B5}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
FirewallRules: [{08467BEA-0102-4E9F-97E4-39BCA667A5C4}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
FirewallRules: [{01C1F0AB-BF52-4CBA-8534-4CDD29AA9605}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament\System\UnrealTournament.exe
FirewallRules: [{5AE9EDAF-56E7-4098-A7D8-0E3F01FFDD40}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament\System\UnrealTournament.exe
FirewallRules: [{EE2E8FD8-D136-4645-B812-68819D31068B}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Gold\System\Unreal.exe
FirewallRules: [{9040BFD0-D16F-42FE-A187-96B11F2D398B}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Gold\System\Unreal.exe
FirewallRules: [{10218B12-76D6-4ABE-A151-76DF31092020}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal II The Awakening\System\Unreal2.exe
FirewallRules: [{0F9D89B4-078B-4F41-8799-4BCDF995A23E}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal II The Awakening\System\Unreal2.exe
FirewallRules: [{E965D602-C014-4F8E-A361-D7F64B1C69A8}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 3\Binaries\UT3.exe
FirewallRules: [{1A179B1A-879B-42FB-B716-41E9138158B7}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 3\Binaries\UT3.exe
FirewallRules: [{31D01800-7D5C-4EC3-B774-62B6709046DF}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 2004\System\UT2004.exe
FirewallRules: [{6D006755-D728-447D-8373-971CFF1D6907}] => (Allow) F:\SteamLibrary\steamapps\common\Unreal Tournament 2004\System\UT2004.exe
FirewallRules: [{F7306557-1E52-465B-A659-31F99F4D368C}] => (Allow) F:\SteamLibrary\steamapps\common\MechWarrior Online\Bin64\MWOClient.exe
FirewallRules: [{96535027-0C24-41BF-B304-DFFA49474CA5}] => (Allow) F:\SteamLibrary\steamapps\common\MechWarrior Online\Bin64\MWOClient.exe
FirewallRules: [{CD46F3B9-02BA-4FEA-91E9-E4746B139AD1}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{726856E3-EACD-4E16-A80A-786319713C74}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{15A3202D-0926-43DC-B588-F4939177BB7D}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{6F39C96F-BB75-4C3F-917F-02426C86EE7A}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{1DEB83C8-D68B-4EF7-B282-D0ECED768F04}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\StartNBR.exe
FirewallRules: [{250D3A28-237E-42A6-AF89-BE1FC26FDC5F}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\NBService.exe
FirewallRules: [{A83977EE-B94B-42A3-A032-B4F38C930307}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe
FirewallRules: [{99CE0217-BCEC-4E2F-BE45-BB478345B2FC}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\nero.exe
FirewallRules: [{E1B8F462-96AC-4787-AE6F-7A1443EDE42C}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\StartNBR.exe
FirewallRules: [{42E2B9D3-FE73-4C04-A1BB-3FCF08FA12A6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\nero.exe
FirewallRules: [{945521CE-F7D7-4696-A13E-1DB13E1416A8}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\NMDllHost.exe
FirewallRules: [{D7048BF5-0552-4C55-AC48-3F0BE70BE3F6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaHome.exe
FirewallRules: [{34527E56-D473-4511-AD60-3B5CC82D63F5}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe
FirewallRules: [{A5E378CF-6845-46C0-A83B-9A495FC9E1AD}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\NBService.exe
FirewallRules: [{F317B0C5-DD54-4595-A2D0-4810EA3BF2E3}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{0E8F70BC-6607-49F7-9EE0-195EF040392F}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{BAE5966E-AC03-4285-A18A-1EA8CB830A39}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{5A7E2F6B-13A1-4B07-AF03-7916EFABB78F}] => (Allow) C:\Program Files (x86)\Nero\Nero TuneItUp\Autopilot.exe
FirewallRules: [{423C38E7-66B3-4368-A043-3601C003D8E6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\NMDllHost.exe
FirewallRules: [{4A90CE5E-93E7-496E-9A9B-73E429F69446}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaHome.exe
FirewallRules: [{6561EAAD-056F-47CC-A6E5-2FED741E638B}] => (Allow) C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
FirewallRules: [{7D6B616C-B9F7-4B62-92BA-F0798442017E}] => (Allow) C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
FirewallRules: [{76F196C0-7F67-46FE-9E82-57BCA449F6C7}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [{DD97148D-DC5E-4E3F-9EB0-64E10AA0E239}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe
FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe
FirewallRules: [{46A908B0-6471-4C8F-8EEA-4492E24C4E54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{340E9BA9-56DE-448B-8EF3-2ACB6BCBE69C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E4F33BC4-6C2C-4DF5-8957-3AAE39411920}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{20C0365F-0079-4213-8227-A1C64EE1B8AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{75D00D69-8B45-41EB-823A-3F346FED52A9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FB612F30-6326-46B6-A8EB-596119B7D058}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{507E9CE2-0810-4352-B260-4265D16E8029}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
09-07-2018 19:24:18 Scheduled Checkpoint
11-07-2018 03:00:12 Windows Update
15-07-2018 00:11:28 Windows Update
15-07-2018 01:33:56 Windows Update
 
==================== Faulty Device Manager Devices =============
 
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/15/2018 05:53:35 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/15/2018 05:52:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (07/15/2018 12:54:52 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/15/2018 12:54:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (07/14/2018 05:02:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
Error: (07/11/2018 05:44:14 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/11/2018 05:44:14 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (07/11/2018 03:28:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
 
 
System errors:
=============
Error: (07/15/2018 05:58:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {9E175B6D-F52A-11D8-B9A5-505054503030} did not register with DCOM within the required timeout.
 
Error: (07/15/2018 05:57:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Media Center Extender Service service depends on the Remote Desktop Services service which failed to start because of the following error: 
The account specified for this service is different from the account specified for other services running in the same process.
 
Error: (07/15/2018 05:57:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Remote Desktop Services service failed to start due to the following error: 
The account specified for this service is different from the account specified for other services running in the same process.
 
Error: (07/15/2018 05:56:56 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: The server {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} did not register with DCOM within the required timeout.
 
Error: (07/15/2018 05:54:47 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Diagnostic Service Host service hung on starting.
 
Error: (07/15/2018 05:53:20 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The World Wide Web Publishing Service service depends on the Windows Process Activation Service service which failed to start because of the following error: 
The system cannot find the file specified.
 
Error: (07/15/2018 05:53:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
 and APPID 
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
 
Error: (07/15/2018 05:53:16 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
 and APPID 
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
 
 
CodeIntegrity:
===================================
 
Date: 2017-06-16 12:28:48.567
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.525
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.464
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.420
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:28:48.376
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:25:13.977
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:25:13.932
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
Date: 2017-06-16 12:25:13.872
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
 
==================== Memory info =========================== 
 
Processor: Intel® Xeon® CPU X3480 @ 3.07GHz
Percentage of memory in use: 22%
Total physical RAM: 16375.11 MB
Available physical RAM: 12674.32 MB
Total Virtual: 32748.39 MB
Available Virtual: 28351.92 MB
 
==================== Drives ================================
 
Drive c: (WD Black 1TB C Drive) (Fixed) (Total:912.41 GB) (Free:788.55 GB) NTFS
Drive f: (Toshiba 1TB) (Fixed) (Total:930.91 GB) (Free:676.8 GB) NTFS
Drive k: (K Drive) (Fixed) (Total:931.39 GB) (Free:802.25 GB) NTFS
 
\\?\Volume{5e0aaba3-513e-11df-b48e-806e6f6e6963}\ (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{5e0aaba2-513e-11df-b48e-806e6f6e6963}\ (PQSERVICE) (Fixed) (Total:19 GB) (Free:6.64 GB) NTFS
\\?\Volume{551bb350-27c6-4d74-90c7-5645ecbdbee3}\ (Windows RE tools) (Fixed) (Total:0.49 GB) (Free:0.19 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: AE266D78)
Partition 1: (Not Active) - (Size=19 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=912.4 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 26FD5886)
 
Partition: GPT.
 
========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of Addition.txt ============================
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.07.2018
Ran by Killer (administrator) on KILLER-PC (15-07-2018 19:26:14)
Running from C:\Users\Killer\Downloads
Loaded Profiles: Killer (Available Profiles: Killer & Administrator)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\nortonsecurity.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\ScsiAccess.EXE
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
() C:\OEM\USBDECTION\USBS3S4Detection.exe
() C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
() C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSIMon.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\nortonsecurity.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\conathst.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
"Path" (C:\;C:\windows\inf;C:\windows\system;C:\windows\program files;C:\Windows\system32;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common -> C:\;C:\windows\inf;C:\windows\system;C:\windows\program files;C:\Windows\system32;C:\Windows;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common) <==== Repaired successfully
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18382824 2017-09-01] (Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [497824 2016-12-15] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [MsiDS200gmmouseRun] => C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\msimon.exe [3712512 2016-03-03] ()
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [651560 2015-11-10] (Acronis International GmbH)
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Run: [GPU Tweak Main] => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [10980816 2017-09-22] (TODO: <Company name>)
HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Policies\Explorer: [NoInstrumentation] 0
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1AFA12D4-0C5E-42D2-8C31-8B6B47CA8AF3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{4BB82FEB-45E8-4D16-9077-31F057F397A6}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW_enUS391US393
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW_enUS391US393
SearchScopes: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NGC&chn=1000&geo=US&ver=22.14.2.13&locale=en_US&guid=D83E7110-A362-11DF-86BA-4487FC9240FA&doi=2016-09-01&gct=kwd&qsrc=2869
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-28] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-28] (Oracle Corporation)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine32\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
Toolbar: HKLM-x32 - No Name - {5911488E-9D1E-40ec-8CBB-06B231CC153F} -  No File
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKU\S-1-5-21-3381375812-2662650081-4155099547-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\coIEPlg.dll [2018-05-29] (Symantec Corporation)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://remoteaccess.caremark.com/dana-cached/sc/JuniperSetupClient.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
 
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 => not found
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_113.dll [2018-06-16] ()
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_113.dll [2018-06-16] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-06-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-06-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-05-10] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3381375812-2662650081-4155099547-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Killer\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife, LLP)
FF Plugin HKU\S-1-5-21-3381375812-2662650081-4155099547-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Killer\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-3381375812-2662650081-4155099547-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Killer\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [No File]
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxp://www.ebay.com/","hxxps://mail.google.com/mail/u/0/#inbox"
CHR Profile: C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default [2018-07-15]
CHR Extension: (Norton Identity Safe) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\admmjipmmciaobhojoghlmleefbicajg [2018-07-11]
CHR Extension: (Norton Security Toolbar) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2018-04-28]
CHR Extension: (Adobe Acrobat) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-06-03]
CHR Extension: (securyBrowse) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmkfgaddfibheaoldcpaajllidfknfam [2018-05-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-10]
CHR Profile: C:\Users\Killer\AppData\Local\Google\Chrome\User Data\System Profile [2018-05-06]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3381375812-2662650081-4155099547-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [incfcgceegpikennjoplhfghaaikdgei] - C:\Users\Killer\AppData\Roaming\StartNow Toolbar\CR\zcrx.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1135600 2016-12-15] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6988296 2017-12-08] ()
S4 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-04-26] (Creative Labs) [File not signed]
S4 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [22304 2018-01-17] (Intel)
S4 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [886032 2018-01-11] ()
S4 Intel® SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel Corporation)
R2 iprip; C:\Windows\System32\iprip.dll [35328 2009-07-13] (Microsoft Corporation)
S4 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis)
S4 NeroBackItUpBackgroundService2018; C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\NBService.exe [287096 2017-12-15] (Nero AG)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NortonSecurity; C:\Program Files (x86)\Norton Security\Engine\22.14.2.13\NortonSecurity.exe [328648 2018-05-30] (Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764896 2018-05-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764896 2018-05-20] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S4 RemotePC Agent; C:\Program Files (x86)\Samsung\Remote PC\rvagent.exe [813448 2014-05-07] (Rsupport Co., Ltd.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2017-01-05] (CyberLink)
R2 ScsiAccess; C:\Windows\SysWOW64\ScsiAccess.EXE [181312 2003-02-04] () [File not signed]
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-15] (DEVGURU Co., LTD.)
S4 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [182544 2018-01-11] ()
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
R2 UsbService; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [334848 2010-08-10] () [File not signed]
S4 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [886032 2018-01-11] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
S2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe [18256 2016-09-30] (Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\BASHDefs\20180711.005\BHDrvx64.sys [1919568 2018-06-22] (Symantec Corporation)
R1 CBDisk; C:\Windows\system32\drivers\CBDisk.sys [70344 2010-01-13] (EldoS Corporation)
R1 ccSet_NGC; C:\Windows\system32\drivers\NGCx64\160E020.00D\ccSetx64.sys [187520 2018-05-29] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-03-23] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153168 2018-03-24] (Symantec Corporation)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [339808 2017-04-03] (Acronis International GmbH)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2017-01-21] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\IPSDefs\20180713.062\IDSvia64.sys [1298000 2018-05-22] (Symantec Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37072 2016-08-03] (Intel Corporation)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24728 2017-05-02] (ASUSTeK Computer Inc.)
R0 MDFSYSNT; C:\Windows\System32\Drivers\MDFSYSNT.sys [307888 2010-10-07] (Mediafour Corporation)
R0 MDPMGRNT; C:\Windows\System32\DRIVERS\MDPMGRNT.SYS [32424 2010-10-21] (Mediafour Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31200 2018-05-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [67432 2018-03-15] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [68112 2018-04-27] (NVIDIA Corporation)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [413912 2015-12-22] (Realsil Semiconductor Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [27440 2017-03-08] () [File not signed]
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [41512 2018-01-11] ()
R1 SRTSP; C:\Windows\System32\Drivers\NGCx64\160E020.00D\SRTSP64.SYS [838224 2018-05-29] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NGCx64\160E020.00D\SRTSPX64.SYS [49232 2018-05-29] (Symantec Corporation)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13920 2017-01-27] ()
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\160E020.00D\SYMEFASI64.SYS [1942096 2018-05-29] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [99920 2018-06-10] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NGCx64\160E020.00D\Ironx64.SYS [307792 2018-05-29] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NGCx64\160E020.00D\SYMNETS.SYS [566912 2018-05-29] (Symantec Corporation)
S3 tap0901cn; C:\Windows\System32\DRIVERS\tap0901cn.sys [36224 2015-10-19] (The OpenVPN Project)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1049432 2017-04-03] (Acronis International GmbH)
R2 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [202592 2017-04-03] (Acronis International GmbH)
S3 tnd; C:\Windows\System32\DRIVERS\tnd.sys [581464 2017-04-03] (Acronis International GmbH)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-11] (Microsoft Corporation)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [301408 2017-04-03] (Acronis International GmbH)
S3 vrvd5; C:\Windows\System32\DRIVERS\vrvd5.sys [13344 2017-06-03] (Rsupport Corporation)
R3 vuhub; C:\Windows\System32\DRIVERS\vuhub.sys [47616 2007-12-17] ()
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-13] (Microsoft Corporation)
S3 WirelessKeyboardFilter; C:\Windows\System32\DRIVERS\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\Windows\System32\Drivers\NGCx64\160E020.00D\wpCtrlDrv.sys [1015592 2018-05-29] (Symantec Corporation)
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
U3 aswbdisk; no ImagePath
S3 CMUAC; system32\DRIVERS\CMUAC.SYS [X]
S3 cmudaxp; system32\drivers\cmudaxp.sys [X]
S3 COMMONFX.DLL; system32\COMMONFX.DLL [X]
S3 CTAUDFX.DLL; system32\CTAUDFX.DLL [X]
S3 CTERFXFX.DLL; system32\CTERFXFX.DLL [X]
S3 CTSBLFX.DLL; system32\CTSBLFX.DLL [X]
S3 dcdbas; system32\DRIVERS\dcdbas64.sys [X]
 
========================== Drivers MD5 =======================
 
C:\Windows\System32\DRIVERS\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys DCA5495CA17AEB2F4FD8AC60812C3999
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 0DC2A9882540DEA4A55B08785E09D8FC
C:\Windows\system32\drivers\agp440.sys 466BF4170DC41BB939F1F9AB8F97F8F5
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atikmpag.sys 04DAA0F922017FD94157717E7AC6B474
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys 28879F924D021D56431DD142155A9644
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\system32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\drivers\AtiHdmi.sys FB7602C5C508BE281368AAE0B61B51C6
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\BASHDefs\20180711.005\BHDrvx64.sys 75EC95A13A174FED3DF7D5A5EE522516
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ABA3984C822E4D3F889699912D85D6C5
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B
C:\Windows\System32\DRIVERS\bridge.sys 5C2F352A4E961D72518261257AAE204B
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\system32\drivers\CBDisk.sys B99D91E4CD9017F213645AA2E80EB425
C:\Windows\system32\drivers\NGCx64\160E020.00D\ccSetx64.sys EF0BD4BC5BD9431156DBB38B30D6D718
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys B5D7A0638CA817BA7D8A4DFD3499BA2A
C:\Windows\System32\DRIVERS\CLVirtualDrive.sys 5C646CAC91E086F7FF53C7F2E857F263
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys 9DE8D00626F01DBD1879A6655D7A752D
C:\Windows\System32\drivers\COMMONFX.SYS F38ACFF40E9EDC2B3476EDD724CEA4A0
C:\Windows\System32\drivers\COMMONFX.SYS F38ACFF40E9EDC2B3476EDD724CEA4A0
C:\Windows\system32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\CT20XUT.DLL 01BBD5CB85423B12E445209D243A49A9
C:\Windows\System32\drivers\ctac32k.sys 095C566746217CD1482EDE40A70D87D2
C:\Windows\System32\drivers\ctaud2k.sys 157E2196FCCD002A2EDF3B06DF7B0C9A
C:\Windows\System32\drivers\CTAUDFX.SYS 17979EE857E930CBFDF24A12E89D77A1
C:\Windows\System32\drivers\CTAUDFX.SYS 17979EE857E930CBFDF24A12E89D77A1
C:\Windows\System32\CTEAPSFX.DLL 06300545BEDF49B6A51FDFE1861F9CAF
C:\Windows\System32\CTEDSPFX.DLL 2D902F8EC247F0ED0D458CDCAF786544
C:\Windows\System32\CTEDSPIO.DLL 0D3F99CDA2BEA14E4911A698441F1A29
C:\Windows\System32\CTEDSPSY.DLL 9D26AA450AC1CAADDE25F1621BA89842
C:\Windows\System32\drivers\CTERFXFX.SYS FE3EAE37536C02D087E5C5D339663779
C:\Windows\System32\drivers\CTERFXFX.SYS FE3EAE37536C02D087E5C5D339663779
C:\Windows\System32\CTEXFIFX.DLL FA6DCA331835997D2F7C83B9AAABC4BB
C:\Windows\System32\CTHWIUT.DLL 9E6A0A3CA3825BB568D42F5F3CB09453
C:\Windows\System32\drivers\ctprxy2k.sys 4E4FDAB4A7CF5AF56E3FA1FE35E8AD3C
C:\Windows\System32\drivers\CTSBLFX.SYS 4A7DE2E30B2B9253933A157401EC76D5
C:\Windows\System32\drivers\CTSBLFX.SYS 4A7DE2E30B2B9253933A157401EC76D5
C:\Windows\System32\drivers\ctsfm2k.sys 065ADE032A044D518AB1407D3586B7D5
C:\Windows\System32\DRIVERS\dc3d.sys A4700D1F78539C0ED32FA50E64F9C692
C:\Windows\System32\Drivers\dfsc.sys 63705A08981F7EDD376241D6E0A9C2AC
C:\Windows\System32\DRIVERS\ssudbus.sys 5F78930AAB3900102EA8ACDD38F97324
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys 616387BBD83372220B09DE95F4E67BBC
C:\Windows\system32\drivers\dmvsc.sys 5DB085A8A6600BE6401F2B24EECB5415
C:\Windows\system32\drivers\drmkaud.sys 26FE888505E5A945B0536AF9A2A27A6F
C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS 8407DDFAB85AE664E507C30314090385
C:\Windows\System32\drivers\dxgkrnl.sys 5CEF80AE869336376F550ECAE91E424A
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys 03D20FD0DE4CA674F5F10FC78AB146C1
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\emupia2k.sys F380FF5D6D80CECC6DBBC15569757613
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys A841E787369DEAABEFBA5C9D6204422C
C:\Windows\system32\drivers\errdev.sys 9002EED07FD7FCFF6B8C5C06B454AC19
C:\Windows\System32\Drivers\exfat.sys 7E45F8B117419ABA3BB26579F6E70324
C:\Windows\System32\Drivers\fastfat.sys 6EDFA237D25433C03F42FBFDB16BDD24
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\file_tracker.sys 3362EFB9ECE40CF85B0A729F23BAEB7D
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys DC591A7A196E99EFB5A48D708CB989FD
C:\Windows\System32\DRIVERS\fltsrv.sys 48E43456C95CE0D73D09CE8FA3E5978A
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\drivers\ha10kx2k.sys 82B68F585110AE8500A6D23623AE1F74
C:\Windows\System32\drivers\hap16v2k.sys 83F647F9ACE9192556F758E528024F68
C:\Windows\System32\drivers\hap17v2k.sys E815D29361DE89D24C8DBE3E5A7006C9
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidusb.sys 90D91013D16A15B22A4B4EB6D4140A5B
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys 93C367EA831FB39DEE3BA96539A187FB
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\iaStor.sys D7921D5A870B11CC1ADAB198A519D50A
C:\Windows\System32\drivers\iaStorA.sys 25555186E4FBDF0E30A5DBFC9B9A73F9
C:\Windows\System32\drivers\iaStorF.sys 10E79E366FA255318F5D1D0ED07F947D
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\IPSDefs\20180713.062\IDSvia64.sys 34C4914DC9FD4E9209367C1B2FD7D5A8
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\drivers\RTKVHD64.sys 8AC425F57972DEC6C2BBE7FC5F2A7534
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys 58BC5C1389AB5498B6D78F6429CB6B31
C:\Windows\system32\drivers\IOMap64.sys DA7CDE931BC85D76CC6AB95E80613AAC
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys 905E9D664F38B93B53FA05422165F5B5
C:\Windows\System32\DRIVERS\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys B16D8FEC7EE13C8575B4B8BD8F4F6405
C:\Windows\System32\Drivers\ksecpkg.sys 968F43D731E8FBC2E75BBA07EE0FC086
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\L8042Kbd.sys 3447DD130A0F7ED9377878C7A0635BBD
C:\Windows\System32\DRIVERS\L8042mou.Sys 543C6619CEE79D0AFD0F89D929FBA10A
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\LMouKE.Sys B705D98F8FF847D270098DE6CE6EE1B4
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys 5416CEB2916BBE635288C4D1075B045E
C:\Windows\System32\Drivers\MDFSYSNT.sys 99875732A0C1373316AF28ED79C168CC
C:\Windows\System32\DRIVERS\MDPMGRNT.SYS 8D3B834090836A01F49B97F22AE9C83C
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys 072D8646E23ECF8A3F5F0157017B4DB6
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys 94FE5C648F51D093630AE1CD33284C23
C:\Windows\system32\drivers\mrxdav.sys 98DB1790F0A584E0A2528B92B052417F
C:\Windows\System32\DRIVERS\mrxsmb.sys A21C2034FC556EBCA6478E434B5AF693
C:\Windows\System32\DRIVERS\mrxsmb10.sys 2DAA11557AD647010C2CC09202DD6C0B
C:\Windows\System32\DRIVERS\mrxsmb20.sys 640456A9D6EBCD3BC25C64CA8D38B5F5
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys 6FE3DBEEA730A857CA3DF603B7DEADA2
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys 94275393BB85D1E2B74BFEFEC386B4A0
C:\Windows\system32\drivers\mssmbios.sys 1FC0BF25FFCB9F751BCBC6C6AC577078
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys 9FB2A095B1166CB3C9A06651863B3452
C:\Windows\System32\drivers\ndis.sys 261F27367EB6EA6478B940811F0A6F03
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys 3F217F77899654833B650ED6A1372BE4
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys E46AF308E96F7730F59B0F250A884CD6
C:\Windows\System32\DRIVERS\netbios.sys 2E19EB10185992AB08BC3688AACA4CE2
C:\Windows\System32\DRIVERS\netbt.sys 734837208CAFD6E0959A7A0333C95C9D
C:\Windows\System32\DRIVERS\netr28x.sys 254AF6DF67EAFA8C6E0AA0D316487673
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys BE313E566EEA2A4B7F9AAC9782A567D4
C:\Windows\System32\Drivers\Ntfs.sys 8422AFBD1C2D30FFC913309D7F1A366D
C:\Windows\system32\drivers\NTIDrvr.sys 64DDD0DEE976302F4BD93E5EFCC2F013
C:\Windows\System32\DRIVERS\NuidFltr.sys 4B73AA3ACE2B512FB33E03147430E082
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\drivers\nvhda64v.sys 4FD4739B359C2923965FE99B03AFD090
C:\Windows\System32\DRIVERS\nvlddmkm.sys D9D8559108EB48163DB9E83078FAACA6
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys F98291305A625C74F297D30F8234C2DD
C:\Windows\System32\drivers\nvvad64v.sys C8DA3CC1980C0B7695C3B87562C78BA4
C:\Windows\System32\DRIVERS\nvvhci.sys E880D79F0EF4C349D734274AD8A7DFC0
C:\Windows\system32\drivers\nv_agp.sys 7425A6B64F5D37D0565F2581B886E5E3
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\System32\drivers\ctoss2k.sys 85EA378116E2C4385993BA5124536FFC
C:\Windows\system32\drivers\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys 481DADB90C1D4E9F19328079C7A9E63D
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys EA4D67448BE493D543F1730D6CD04694
C:\Windows\System32\DRIVERS\point64.sys 2842E59E2A5281D1A9ABD939E9E35721
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys 4CE827A5433451551E99C2C1D20E4A43
C:\Windows\System32\Drivers\PxHlpa64.sys 87B04878A6D59D6C79251DC960C674C1
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys FB45727105E27756B3252572A138FA19
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys FE571E088C2D83619D2D48D4E961BF41
C:\Windows\System32\drivers\rdyboost.sys F4287A980C0AA41DE3073F053E5EA73C
C:\Windows\System32\DRIVERS\RMCAST.sys 5BD6B1EC997FF3DD779D62E05D2079A8
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RtsUStor.sys 9CF8593B62102545CB1652A1D8748FDD
C:\Windows\System32\DRIVERS\Rt64win7.sys C4E5C8F88A6332089FD22625B23F5902
C:\Windows\System32\DRIVERS\Rtlh64.sys D74FE7DFA031FA2C6F96A26123814D3D
C:\Windows\System32\Drivers\RtsUer.sys AE4607D7C7AA83A863BFA214483E8EE4
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\semav6msr64.sys 32B159FE12047F7526303D0F30949645
C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\snapman.sys 8C048728D8D4F3B204C18C5379BE7645
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NGCx64\160E020.00D\SRTSP64.SYS 5E641EEE3F4279984D10E00B3ED98AD4
C:\Windows\system32\drivers\NGCx64\160E020.00D\SRTSPX64.SYS 5322CDED33342BD8856AA88EAE94FC11
C:\Windows\System32\DRIVERS\srv.sys 1145EC013B72D4E6C60497707BB1A4B6
C:\Windows\System32\DRIVERS\srv2.sys 2D8FFA3B636368130F909E0CD935B555
C:\Windows\System32\DRIVERS\srvnet.sys 4B1C343E11065819F687EAC68A5E13F3
C:\Windows\System32\DRIVERS\ssudmdm.sys F0B59ADCD06BCEB9D47311B7041CA2C9
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\serscan.sys DECACB6921DED1A38642642685D77DAC
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\SWDUMon.sys 04CF20310145DEC63D5387BEAFF77D9A
C:\Windows\system32\drivers\swenum.sys 10DCD3BDFA785E1482EC02304A7E9B96
C:\Windows\System32\drivers\NGCx64\160E020.00D\SYMEFASI64.SYS 9FBBBCE5B870C7E4948C012F752E99F1
C:\Windows\system32\Drivers\SYMEVENT64x86.SYS BC193D9066B2BA4F22A42829290A9D9A
C:\Windows\system32\drivers\NGCx64\160E020.00D\Ironx64.SYS DD543931EF3940A2B201B12021EC9383
C:\Windows\System32\Drivers\NGCx64\160E020.00D\SYMNETS.SYS 138531EB369E77AEF5F9373FD093BCE7
C:\Windows\System32\DRIVERS\tap0901cn.sys AEA833ED785FDAB126A3AE721B51FD90
C:\Windows\System32\drivers\tcpip.sys C2B2F27629913C7DC1239E90F9A3D107
C:\Windows\System32\DRIVERS\tcpip.sys C2B2F27629913C7DC1239E90F9A3D107
C:\Windows\System32\drivers\tcpipreg.sys 7FE5586314EE7D6AA8483264A089E5AF
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys 4DD986720F7CB7A8A5D1226793097B9A
C:\Windows\system32\drivers\termdd.sys AC24D7A7D9EEDE11E2926F9001BEAFB5
C:\Windows\System32\DRIVERS\tib.sys 3F656867E983E8D9E71E57354383C23A
C:\Windows\System32\DRIVERS\tib_mounter.sys DA3BF6E315D2FC2681CB7AE1E745DFDB
C:\Windows\System32\DRIVERS\tnd.sys A6C7255A6C95B05E6551538F54248A7F
C:\Windows\System32\DRIVERS\tssecsrv.sys 2CF58216424757ED29605B4F18EC443C
C:\Windows\System32\drivers\tsusbflt.sys E9981ECE8D894CEF7038FD1D040EB426
C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\system32\drivers\UBHelper.sys 2E22C1FD397A5A9FFEF55E9D1FC96C00
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys B70E26A57F35ECA5199E6D6B9592A67C
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\drivers\usbaudio.sys B0435098C81D04CAFFF80DDB746CD3A2
C:\Windows\system32\drivers\usbccgp.sys E6DFE1F33B1250A6E26EA6F6CE10B09C
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 234F9E56606CE5D1549DE7D4CCA4DE0C
C:\Windows\system32\drivers\usbhub.sys 0A33C9EC6822B24E26687F1EC6346922
C:\Windows\system32\drivers\usbohci.sys 9C456BFD0FF50CB5B7ECDA7B7529F63B
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usb80236.sys 2C42E595E7E381596B9A14F88F5AE027
C:\Windows\System32\DRIVERS\usbscan.sys 9661DA76B4531B2DA272ECCE25A8AF24
C:\Windows\System32\DRIVERS\USBSTOR.SYS D029DD09E22EB24318A8FC3D8138BA43
C:\Windows\system32\drivers\usbuhci.sys 3C1D50EBDC6F531C0AA905D71956E106
C:\Windows\System32\DRIVERS\usb8023x.sys 7B28E2FBE75115660FAB31079C0A9F29
C:\Windows\System32\drivers\vdrvroot.sys 7BDCE021786C3DCCFD2C22EBF643EE36
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\virtual_file.sys 0C987C7C5A0B710AB2881B3F19DF72F5
C:\Windows\system32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys 8EDE91FBAC7BF7605323C517C717A253
C:\Windows\System32\drivers\volmgrx.sys 85C5468BC395819AE2A0C747334BA14C
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vrvd5.sys DDF7522FBEF8D50E015E743813595801
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vuhub.sys E07D31EE76EE18BFCA49AD9A89782D43
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys DC4CB3626E7423B9D83CF1B4857FDF15
C:\Windows\System32\DRIVERS\wanarp.sys DC4CB3626E7423B9D83CF1B4857FDF15
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\System32\DRIVERS\WirelessKeyboardFilter.sys 6E5FE85FC15590EF509A6D217C65F9BE
C:\Windows\system32\drivers\wmiacpi.sys 43471A750D4F3918AC92F5131AE252D3
C:\Windows\System32\Drivers\NGCx64\160E020.00D\wpCtrlDrv.sys 30418546D1D5C49639DC7ACEAF66FF5C
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WSDPrint.sys 8D918B1DB190A4D9B1753A66FA8C96E8
C:\Windows\System32\DRIVERS\WSDScan.sys 4A2A5C50DD1A63577D3ACA94269FBC7F
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-07-15 19:23 - 2018-07-15 19:23 - 000000241 _____ C:\Users\Killer\Downloads\Search.txt
2018-07-15 19:20 - 2018-07-15 19:20 - 000093736 _____ C:\Users\Killer\Downloads\Shortcut.txt
2018-07-15 19:18 - 2018-07-15 19:18 - 000000000 ____D C:\Users\Killer\Downloads\FRST-OlderVersion
2018-07-15 19:09 - 2018-07-15 19:26 - 000048362 _____ C:\Users\Killer\Downloads\FRST.txt
2018-07-15 19:09 - 2018-07-15 19:20 - 000091729 _____ C:\Users\Killer\Downloads\Addition.txt
2018-07-15 19:08 - 2018-07-15 19:26 - 000000000 ____D C:\FRST
2018-07-15 19:08 - 2018-07-15 19:18 - 002412544 _____ (Farbar) C:\Users\Killer\Downloads\FRST64.exe
2018-07-15 18:18 - 2018-07-15 18:18 - 000000000 ____D C:\Windows\System32\Tasks\Remediation
2018-07-15 18:10 - 2018-07-15 18:10 - 001107968 _____ C:\Users\Killer\Downloads\RSIT.exe
2018-07-15 18:10 - 2018-07-15 18:10 - 000000000 ____D C:\rsit
2018-07-15 18:10 - 2018-07-15 18:10 - 000000000 ____D C:\Program Files (x86)\trend micro
2018-07-14 18:50 - 2018-07-14 18:51 - 050046976 _____ C:\Users\Killer\Downloads\speedtestbyookla_x64.msi
2018-07-11 17:40 - 2017-05-02 13:47 - 000024728 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2018-07-10 11:59 - 2018-06-20 17:58 - 000398376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-07-10 11:59 - 2018-06-20 17:00 - 000348824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-07-10 11:59 - 2018-06-16 10:07 - 025743872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-07-10 11:59 - 2018-06-16 09:46 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-07-10 11:59 - 2018-06-16 09:46 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-07-10 11:59 - 2018-06-16 09:36 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-07-10 11:59 - 2018-06-16 09:33 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-07-10 11:59 - 2018-06-16 09:32 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-07-10 11:59 - 2018-06-16 09:31 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-07-10 11:59 - 2018-06-16 09:31 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-07-10 11:59 - 2018-06-16 09:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-07-10 11:59 - 2018-06-16 09:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-07-10 11:59 - 2018-06-16 09:27 - 005779968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-07-10 11:59 - 2018-06-16 09:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-07-10 11:59 - 2018-06-16 09:23 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-07-10 11:59 - 2018-06-16 09:20 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-07-10 11:59 - 2018-06-16 09:19 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-07-10 11:59 - 2018-06-16 09:19 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-07-10 11:59 - 2018-06-16 09:19 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-07-10 11:59 - 2018-06-16 09:19 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-07-10 11:59 - 2018-06-16 09:19 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-07-10 11:59 - 2018-06-16 09:12 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-07-10 11:59 - 2018-06-16 09:08 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-07-10 11:59 - 2018-06-16 09:06 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-07-10 11:59 - 2018-06-16 09:06 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-07-10 11:59 - 2018-06-16 09:05 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-07-10 11:59 - 2018-06-16 09:05 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-07-10 11:59 - 2018-06-16 09:04 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-07-10 11:59 - 2018-06-16 09:02 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-07-10 11:59 - 2018-06-16 09:02 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-07-10 11:59 - 2018-06-16 09:02 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-07-10 11:59 - 2018-06-16 09:01 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-07-10 11:59 - 2018-06-16 08:59 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-07-10 11:59 - 2018-06-16 08:59 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-07-10 11:59 - 2018-06-16 08:58 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-07-10 11:59 - 2018-06-16 08:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-07-10 11:59 - 2018-06-16 08:57 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-07-10 11:59 - 2018-06-16 08:56 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-07-10 11:59 - 2018-06-16 08:56 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-07-10 11:59 - 2018-06-16 08:55 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-07-10 11:59 - 2018-06-16 08:55 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-07-10 11:59 - 2018-06-16 08:53 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-07-10 11:59 - 2018-06-16 08:47 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-07-10 11:59 - 2018-06-16 08:46 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-07-10 11:59 - 2018-06-16 08:44 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-07-10 11:59 - 2018-06-16 08:42 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-07-10 11:59 - 2018-06-16 08:42 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-07-10 11:59 - 2018-06-16 08:42 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-07-10 11:59 - 2018-06-16 08:42 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-10 11:59 - 2018-06-16 08:41 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-07-10 11:59 - 2018-06-16 08:40 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-07-10 11:59 - 2018-06-16 08:39 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-07-10 11:59 - 2018-06-16 08:39 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-07-10 11:59 - 2018-06-16 08:38 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-07-10 11:59 - 2018-06-16 08:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-07-10 11:59 - 2018-06-16 08:36 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-07-10 11:59 - 2018-06-16 08:34 - 004496384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-07-10 11:59 - 2018-06-16 08:32 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-07-10 11:59 - 2018-06-16 08:30 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-07-10 11:59 - 2018-06-16 08:29 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-07-10 11:59 - 2018-06-16 08:28 - 002060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-07-10 11:59 - 2018-06-16 08:27 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-07-10 11:59 - 2018-06-16 08:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-07-10 11:59 - 2018-06-16 08:16 - 001545216 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-07-10 11:59 - 2018-06-16 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-07-10 11:59 - 2018-06-16 08:05 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-07-10 11:59 - 2018-06-16 08:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-07-10 11:59 - 2018-06-16 08:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-07-10 11:59 - 2018-06-13 09:23 - 000140992 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-07-10 11:59 - 2018-06-13 09:20 - 014185984 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-07-10 11:59 - 2018-06-13 09:19 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2018-07-10 11:59 - 2018-06-13 09:18 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-07-10 11:59 - 2018-06-13 08:55 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-07-10 11:59 - 2018-06-13 08:54 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2018-07-10 11:59 - 2018-06-13 08:40 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-07-10 11:59 - 2018-06-08 09:27 - 005577408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-07-10 11:59 - 2018-06-08 09:27 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-07-10 11:59 - 2018-06-08 09:27 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-07-10 11:59 - 2018-06-08 09:27 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-07-10 11:59 - 2018-06-08 09:27 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-07-10 11:59 - 2018-06-08 09:23 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-07-10 11:59 - 2018-06-08 09:22 - 001665344 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000369664 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-07-10 11:59 - 2018-06-08 09:21 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-07-10 11:59 - 2018-06-08 09:20 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-07-10 11:59 - 2018-06-08 09:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 09:02 - 004050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-07-10 11:59 - 2018-06-08 09:02 - 003962048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-07-10 11:59 - 2018-06-08 08:57 - 001314072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000330240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-07-10 11:59 - 2018-06-08 08:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:54 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:44 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-07-10 11:59 - 2018-06-08 08:44 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-07-10 11:59 - 2018-06-08 08:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2018-07-10 11:59 - 2018-06-08 08:44 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-07-10 11:59 - 2018-06-08 08:43 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-07-10 11:59 - 2018-06-08 08:39 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-07-10 11:59 - 2018-06-08 08:38 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-07-10 11:59 - 2018-06-08 08:38 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-07-10 11:59 - 2018-06-08 08:34 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-07-10 11:59 - 2018-06-08 08:34 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-07-10 11:59 - 2018-06-08 08:34 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-07-10 11:59 - 2018-06-08 08:33 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-07-10 11:59 - 2018-06-08 08:33 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-07-10 11:59 - 2018-06-08 08:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-07-10 11:59 - 2018-06-08 08:28 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2018-07-10 11:59 - 2018-06-08 08:27 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-07-10 11:59 - 2018-06-08 08:21 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-07-10 11:59 - 2018-06-08 08:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-07-10 11:59 - 2018-06-08 08:21 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-07-10 11:59 - 2018-06-08 08:21 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-07-10 11:59 - 2018-06-08 08:19 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 08:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 002860032 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-07-10 11:59 - 2018-06-08 06:05 - 001602048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000783872 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000612352 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000443392 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-07-10 11:59 - 2018-06-08 06:05 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-07-10 11:59 - 2018-06-07 09:20 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2018-07-10 11:59 - 2018-06-07 09:19 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-07-10 11:59 - 2018-06-07 09:19 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-07-10 11:59 - 2018-06-07 09:19 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-07-10 11:59 - 2018-06-07 08:57 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-07-10 11:59 - 2018-06-07 08:49 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2018-07-10 11:59 - 2018-06-07 08:34 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2018-07-10 11:59 - 2018-05-31 09:28 - 001893568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-07-10 11:59 - 2018-05-31 09:28 - 000377024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2018-07-10 11:59 - 2018-05-31 09:28 - 000287936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2018-07-05 15:00 - 2018-07-05 15:00 - 000003712 _____ C:\Windows\System32\Tasks\ASUS Live Update Task Schedule
2018-06-28 19:37 - 2018-06-28 19:37 - 000000000 ____D C:\Users\Public\CyberLink
2018-06-27 21:06 - 2018-05-02 08:32 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2018-06-27 21:06 - 2018-05-02 08:32 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2018-06-27 21:06 - 2018-04-26 06:05 - 000998912 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000918296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000065880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000063832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000021848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000020824 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000019288 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000018776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000017240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000016216 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000015704 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000015192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000014168 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000013152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012632 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000012120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-06-27 21:06 - 2018-04-26 06:05 - 000011096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-06-27 21:06 - 2018-04-25 09:02 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2018-06-27 21:06 - 2018-04-25 08:18 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2018-06-21 20:36 - 2018-06-21 20:36 - 000000000 ____D C:\Windows\SysWOW64\BestPractices
2018-06-21 20:36 - 2018-06-21 20:36 - 000000000 ____D C:\Windows\system32\BestPractices
2018-06-18 21:54 - 2018-06-27 20:58 - 000000000 ____D C:\Users\Killer\AppData\Local\ElevatedDiagnostics
2018-06-17 14:51 - 2018-07-15 18:34 - 000533830 _____ C:\Windows\ntbtlog.txt
2018-06-17 14:45 - 2018-06-17 14:45 - 000008468 _____ C:\Users\Killer\Documents\cc_20180617_144524.reg
2018-06-16 15:14 - 2018-06-16 15:14 - 000000000 ____D C:\Users\Killer\AppData\Local\Microsoft_Corporation
2018-06-16 08:38 - 2018-06-16 08:38 - 001204720 _____ (Adobe Systems Incorporated) C:\Users\Killer\Downloads\aceddfc3-967d-446f-886e-f02f6445137c.tmp
2018-06-16 01:23 - 2018-06-16 01:23 - 000045674 _____ C:\Users\Killer\Documents\cc_20180616_012317.reg
2018-06-16 01:20 - 2018-06-16 01:20 - 000017960 _____ C:\Users\Killer\Documents\install1.txt
2018-06-16 01:15 - 2018-06-16 01:15 - 000003312 _____ C:\Users\Killer\Documents\cc_20180616_011551.reg
2018-06-16 01:14 - 2018-06-16 01:14 - 000004220 _____ C:\Users\Killer\Documents\cc_20180616_011403.reg
2018-06-16 01:12 - 2018-06-16 01:12 - 000023660 _____ C:\Users\Killer\Documents\cc_20180616_011234.reg
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2018-07-15 19:12 - 2009-07-13 21:45 - 000028224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-15 19:12 - 2009-07-13 21:45 - 000028224 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-15 17:55 - 2018-05-07 19:11 - 000002982 _____ C:\Windows\System32\Tasks\GPU Tweak II
2018-07-15 17:55 - 2017-06-03 00:39 - 000000000 ____D C:\ProgramData\NVIDIA
2018-07-15 17:54 - 2018-02-01 21:35 - 000000422 _____ C:\Windows\Tasks\Nero TuneItUp PRO (Autopilot.exe).job
2018-07-15 17:51 - 2017-12-25 11:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-07-15 17:51 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\registration
2018-07-15 00:15 - 2017-06-03 00:42 - 000964082 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-07-15 00:15 - 2009-07-13 22:13 - 000964082 _____ C:\Windows\system32\PerfStringBackup.INI
2018-07-15 00:15 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\inf
2018-07-11 03:27 - 2009-07-13 21:45 - 000397664 _____ C:\Windows\system32\FNTCACHE.DAT
2018-07-11 03:24 - 2017-06-03 18:16 - 000000000 ____D C:\Windows\system32\appraiser
2018-07-11 03:03 - 2013-07-26 16:26 - 000000000 ____D C:\Windows\system32\MRT
2018-07-11 03:00 - 2017-06-03 10:31 - 134675576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-07-09 19:24 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\rescache
2018-07-05 16:41 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\system32\NDF
2018-06-30 00:17 - 2011-02-26 09:03 - 000000000 ____D C:\Users\Public\Downloads\Norton
2018-06-29 22:22 - 2016-03-17 21:52 - 000001945 _____ C:\Windows\epplauncher.mif
2018-06-28 19:39 - 2010-09-13 07:59 - 000000000 ____D C:\Users\Killer\AppData\Local\CrashDumps
2018-06-28 19:06 - 2010-04-10 08:19 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-06-28 19:03 - 2009-07-13 20:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-06-28 18:38 - 2009-07-13 22:08 - 000032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-06-26 18:38 - 2016-06-23 00:31 - 000002281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-26 18:38 - 2016-04-15 23:28 - 000002240 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-06-25 20:52 - 2017-06-03 00:42 - 000000000 ____D C:\Users\Killer
2018-06-25 20:42 - 2018-02-20 09:16 - 000000000 ____D C:\Users\Administrator
2018-06-24 14:30 - 2018-06-10 01:39 - 000003218 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2018-06-23 11:49 - 2018-02-01 21:34 - 000003362 _____ C:\Windows\System32\Tasks\SkipUAC Save power
2018-06-23 11:49 - 2018-02-01 21:34 - 000003358 _____ C:\Windows\System32\Tasks\SkipUAC Optimize Windows Services
2018-06-23 11:43 - 2018-01-01 15:48 - 000002796 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-06-23 11:40 - 2009-07-13 22:09 - 000000000 ____D C:\Windows\System32\Tasks\WPD
2018-06-22 22:27 - 2018-06-10 01:07 - 000003794 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:27 - 2018-06-10 01:07 - 000003794 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:27 - 2018-06-10 01:07 - 000003740 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-06-10 01:08 - 000003800 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-06-10 01:07 - 000003740 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-06-10 01:07 - 000003732 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:26 - 2018-04-07 21:38 - 000003496 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:25 - 2018-06-10 01:08 - 000004148 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:25 - 2018-06-10 01:08 - 000003942 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-06-22 22:21 - 2018-01-01 15:48 - 000004130 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-06-22 22:21 - 2010-08-08 20:28 - 000003206 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-06-22 22:18 - 2015-10-23 17:11 - 000003036 _____ C:\Windows\System32\Tasks\{02B25E0F-80EE-4F12-976C-485B1519A527}
2018-06-21 23:26 - 2017-06-09 17:35 - 000007676 _____ C:\Users\Killer\AppData\Local\resmon.resmoncfg
2018-06-21 20:36 - 2016-02-04 16:15 - 000000000 ____D C:\inetpub
2018-06-21 20:36 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2018-06-21 20:36 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\system32\inetsrv
2018-06-21 20:33 - 2010-04-26 07:31 - 000000000 ____D C:\Program Files (x86)\Windows Live
2018-06-21 20:14 - 2018-05-07 00:43 - 000000337 _____ C:\Users\Killer\AppData\Local\Perfmon.PerfmonCfg
2018-06-17 13:39 - 2018-03-11 21:50 - 000060416 ___SH C:\Users\Killer\Desktop\Thumbs.db
2018-06-17 13:37 - 2018-02-10 03:40 - 000000000 ____D C:\Users\Killer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-06-17 13:37 - 2018-02-10 03:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-06-17 13:37 - 2017-10-05 01:47 - 000000000 ____D C:\Windows\Minidump
2018-06-17 13:37 - 2015-06-27 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2018-06-16 18:25 - 2017-06-01 17:38 - 000000000 ____D C:\Users\Killer\AppData\Local\NVIDIA Corporation
2018-06-16 09:13 - 2012-10-10 15:47 - 000273920 ___SH C:\Users\Killer\Downloads\Thumbs.db
2018-06-16 08:42 - 2014-08-24 18:00 - 000000000 ____D C:\Users\Killer\AppData\Local\Adobe
2018-06-16 08:41 - 2012-05-08 16:38 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-06-16 08:41 - 2011-05-13 21:06 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-16 08:41 - 2010-10-15 15:55 - 000000000 ____D C:\Windows\system32\Macromed
2018-06-16 08:41 - 2010-04-10 08:30 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-06-16 01:22 - 2012-05-15 17:32 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2018-06-16 01:18 - 2018-02-01 21:34 - 000000364 _____ C:\Windows\Tasks\Nero TuneItUp PRO.job
2018-06-15 00:25 - 2018-02-20 09:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
 
==================== Files in the root of some directories =======
 
2017-07-12 12:22 - 2017-05-18 22:17 - 000328168 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI (7).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 000328168 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI (8).dll
2017-07-12 12:58 - 2017-05-18 22:18 - 000714216 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI (9).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 000534504 _____ (Microsoft Corporation) C:\Users\Killer\DIFxAPI.dll
2018-04-01 15:02 - 2011-06-15 02:20 - 000180504 _____ () C:\Users\Killer\Drv64.exe
2018-04-01 15:03 - 2011-06-15 02:20 - 000961304 _____ (Intel Corporation) C:\Users\Killer\Setup.exe
2017-07-12 12:22 - 2017-05-18 22:18 - 001121000 _____ (Microsoft Corporation) C:\Users\Killer\WdfCoInstaller01007 (5).dll
2017-07-12 12:57 - 2017-05-18 22:18 - 001121000 _____ (Microsoft Corporation) C:\Users\Killer\WdfCoInstaller01007 (6).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 001499368 _____ (Microsoft Corporation) C:\Users\Killer\WdfCoInstaller01007.dll
2017-07-12 12:22 - 2017-05-18 22:18 - 000589904 _____ (Microsoft Corporation) C:\Users\Killer\WinUSBCoInstaller (6).dll
2017-07-12 12:57 - 2017-05-18 22:18 - 000589904 _____ (Microsoft Corporation) C:\Users\Killer\WinUSBCoInstaller (7).dll
2017-07-12 12:22 - 2017-05-18 22:17 - 000716880 _____ (Microsoft Corporation) C:\Users\Killer\WinUSBCoInstaller.dll
2011-03-25 18:31 - 2012-06-27 21:47 - 000000697 _____ () C:\Users\Killer\AppData\Roaming\ConvAPIPlugin.log
2010-08-09 15:03 - 2017-05-08 15:55 - 000000920 _____ () C:\Users\Killer\AppData\Roaming\wklnhst.dat
2018-05-07 00:43 - 2018-06-21 20:14 - 000000337 _____ () C:\Users\Killer\AppData\Local\Perfmon.PerfmonCfg
2017-06-09 17:35 - 2018-06-21 23:26 - 000007676 _____ () C:\Users\Killer\AppData\Local\resmon.resmoncfg
 
Some files in TEMP:
====================
2018-07-15 17:53 - 2018-06-08 08:55 - 001114112 _____ (Microsoft Corporation) C:\Users\Killer\AppData\Local\Temp\kernel32.dll
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== BCD ================================
 
Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=\Device\HarddiskVolume2
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {e2ab7398-48c9-11df-bad5-ecb6e8e627be}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 15
 
Windows Boot Loader
-------------------
identifier              {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {e2e2ec3e-484c-11e7-ae10-4487fc9240fa}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {e2ab7398-48c9-11df-bad5-ecb6e8e627be}
nx                      OptOut
bootlog                 Yes
 
Windows Boot Loader
-------------------
identifier              {e2e2ec3e-484c-11e7-ae10-4487fc9240fa}
device                  ramdisk=[C:]\Recovery\e2e2ec3e-484c-11e7-ae10-4487fc9240fa\Winre.wim,{e2e2ec3f-484c-11e7-ae10-4487fc9240fa}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\e2e2ec3e-484c-11e7-ae10-4487fc9240fa\Winre.wim,{e2e2ec3f-484c-11e7-ae10-4487fc9240fa}
systemroot              \windows
nx                      OptIn
winpe                   Yes
 
Resume from Hibernate
---------------------
identifier              {e2ab7398-48c9-11df-bad5-ecb6e8e627be}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No
 
Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=\Device\HarddiskVolume2
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes
 
EMS Settings
------------
identifier              {emssettings}
bootems                 Yes
 
Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200
 
RAM Defects
-----------
identifier              {badmemory}
 
Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}
 
Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}
 
Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200
 
Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}
 
Device options
--------------
identifier              {e2e2ec3f-484c-11e7-ae10-4487fc9240fa}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\e2e2ec3e-484c-11e7-ae10-4487fc9240fa\boot.sdi
 
 
LastRegBack: 2018-07-09 19:17
 
==================== End of FRST.txt ============================
 

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP