Hello.
I imagine my conhost could also be contaminated. I’ve finished some looking out and what I discovered is that folks whose conhost is both contaminated or malware all collectively have a number of processes of it working directly. I, nevertheless, don’t (that I’ve seen). Once I search the file title in explorer I get many outcomes. One is the presumably protected one in System32, most are within the winsxs/amd64_microsoft-windows-consolehost31b(numerous strings of numbers and letters right here), one is a file in C:/programdata/sectaskman, and so forth.
I’ve run Roguekiller, Rkill, Malwarebytes, SAS, TDSSkiller, and my common AV/Firewall in each protected mode and regular home windows mode numerous instances. None of them point out malware any extra. What worries me are the graph outcomes from Virustotal (see footage). Additionally when simply working firefox with these tabs you see within the pic (11 youtube, 1 fb) my processor utilization lies between 15-25%, and my reminiscence utilization is pretty regular round 10Gb. For one program working this appears very excessive to me. When hovering over the varied crimson icons (seen in one of many footage) for more information on the detections, it tells me they’re a slew of various malicious recordsdata below the DynamicDragon umbrella, reminiscent of Gen:Variant.Barys.50422, Win32:DropperX-gen [DRP], Gen:Variant.Mikey.113963 and Trojan.GenericKD.43767443.
What goes one right here? Please assist.
Thanks on your time.
FARBAR FRST LOG BELOW
______________________________________
Scan results of Farbar Restoration Scan Software (FRST) (x64) Model: 10-10-2020
Ran by Oliver (administrator) on IDWDTAM (MSI MS-7821) (10-10-2020 17:28:50)
Working from C:UsersOliverDesktop
Loaded Profiles: Oliver
Platform: Home windows 7 Dwelling Premium Service Pack 1 (X64) Language: Svenska (Sverige)
Default browser: FF
Boot Mode: Regular
Tutorial for Farbar Restoration Scan Software: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included within the fixlist, the method will probably be closed. The file won’t be moved.)
() [File not signed] C:Program Information (x86)MSICommand CenterMSIControlService.exe
(Adobe Methods, Integrated -> Adobe Methods Integrated) C:Program Information (x86)Widespread FilesAdobeARM1.0armsvc.exe
(Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.) E:Program (x86)CheckPointICMICM-Service-NET.exe
(Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.) E:Program (x86)CheckPointZoneAlarmvsmon.exe
(Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.) E:Program (x86)CheckPointZoneAlarmzatray.exe
(Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences, Ltd.) E:Program (x86)CheckPointZoneAlarmZAPrivacyService.exe
(Digital Arts, Inc. -> Digital Arts) E:Program (x86)OriginOriginWebHelperService.exe
(Focusrite Audio Engineering Ltd.) [File not signed] E:ProgramFocusriteFocusrite ControlServerControlServer.exe
(Focusrite Audio Engineering, Ltd.) [File not signed] E:ProgramFocusriteUSBFocusrite Notifier.exe
(Google LLC -> Google LLC) E:Program (x86)GoogleUpdate1.3.35.452GoogleCrashHandler.exe
(Google LLC -> Google LLC) E:Program (x86)GoogleUpdate1.3.35.452GoogleCrashHandler64.exe
(Intel Company – Intel® Administration Engine Firmware -> Intel Company) C:Program Information (x86)IntelIntel® Built-in Clock Controller ServiceICCProxy.exe
(Intel Company – Intel® Administration Engine Firmware -> Intel Company) C:Program Information (x86)IntelIntel® Administration Engine ComponentsDALjhi_service.exe
(Intel Company – Intel® Administration Engine Firmware -> Intel Company) C:Program Information (x86)IntelIntel® Administration Engine ComponentsLMSLMS.exe
(Intel® Software program -> Intel® Company) C:Program Information (x86)IntelExtreme Tuning UtilityXtuService.exe
(Intel® USB eXtensible Host Controller Drivers -> Intel Company) E:Program (x86)IntelIntel® USB 3.0 3.1 eXtensible Host Controller DriverApplicationiusb3mon.exe
(Microsoft Company -> Microsoft Corp.) C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE
(Microsoft Company -> Microsoft Corp.) C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVCM.EXE
(Microsoft Company -> Microsoft Company) C:WindowsMicrosoft.NETFramework64v4.0.30319aspnet_state.exe
(Microsoft Company -> Microsoft Company) E:ProgramMicrosoft Xbox 360 AccessoriesXBoxStat.exe
(Microsoft Home windows -> Microsoft Company) C:WindowsSystem32rundll32.exe
(Microsoft Home windows {Hardware} Compatibility Writer -> AMD) C:WindowsSystem32atieclxx.exe
(Microsoft Home windows {Hardware} Compatibility Writer -> AMD) C:WindowsSystem32atiesrxx.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Worldwide) C:MSISmart UtilitiesSuperRAIDSvc.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Worldwide) C:Program Information (x86)MSILive UpdateMSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:Program Information (x86)MSIFast BootFastBootService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:Program Information (x86)MSISuper ChargerChargeService.exe
(Mozilla Company -> Mozilla Company) E:ProgramMozilla Firefoxfirefox.exe <13>
(NVIDIA Company -> Node.js) E:Program (x86)NVIDIA CorporationNvNodeNVIDIA Internet Helper.exe
(NVIDIA Company -> NVIDIA Company) E:ProgramNVIDIA CorporationDisplay.NvContainerNVDisplay.Container.exe <2>
(NVIDIA Company -> NVIDIA Company) E:ProgramNVIDIA CorporationNvContainernvcontainer.exe <3>
(NVIDIA Company -> NVIDIA Company) E:ProgramNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA Share.exe <3>
(NVIDIA Company -> NVIDIA Company) E:ProgramNVIDIA CorporationShadowPlaynvsphelper64.exe
(Qualcomm Atheros) [File not signed] C:Program FilesQualcomm AtherosNetwork ManagerKillerService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) E:ProgramRealtekAudioHDARtkNGUI64.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) E:ProgramSUPERAntiSpywareSASCore64.exe
(Tersys Group OÜ -> Belief.Zone VPN Challenge) E:ProgramTrust.Zone VPN Clienttzclient_x64.exe <2>
==================== Registry (Whitelisted) ===================
(If an entry is included within the fixlist, the registry merchandise will probably be restored to default or eliminated. The file won’t be moved.)
HKLM…Run: [RTHDVCPL] => E:ProgramRealtekAudioHDARtkNGUI64.exe [9277736 2019-08-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM…Run: [XboxStat] => E:ProgramMicrosoft Xbox 360 AccessoriesXboxStat.exe [825184 2009-09-30] (Microsoft Company -> Microsoft Company)
HKLM…Run: [Focusrite Notifier] => E:ProgramFocusriteUSBFocusrite Notifier.exe [3949568 2019-08-02] (Focusrite Audio Engineering, Ltd.) [File not signed]
HKLM…Run: [Trust.Zone VPN Client UI Helper] => E:ProgramTrust.Zone VPN Clienttzclient_x64.exe [6421240 2020-09-15] (Tersys Group OÜ -> Belief.Zone VPN Challenge)
HKLM-x32…Run: [USB3MON] => E:Program (x86)IntelIntel® USB 3.0 3.1 eXtensible Host Controller DriverApplicationiusb3mon.exe [299520 2017-05-11] (Intel® USB eXtensible Host Controller Drivers -> Intel Company)
HKLM-x32…Run: [ZoneAlarm] => E:Program (x86)CheckPointZoneAlarmzatray.exe [325856 2020-07-22] (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
HKUS-1-5-19…Run: [Sidebar] => %ProgramFilespercentWindows SidebarSidebar.exe /autoRun
HKUS-1-5-20…Run: [Sidebar] => %ProgramFilespercentWindows SidebarSidebar.exe /autoRun
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…Run: [SUPERAntiSpyware] => E:ProgramSUPERAntiSpywareSUPERAntiSpyware.exe [11224496 2020-08-27] (Assist.com Inc -> SUPERAntiSpyware)
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: G – G:autorun.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {08760239-be80-11e4-8a11-448a5bcd18e9} – G:autorun.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {14405767-d1c2-11e6-97e6-448a5bcd18e9} – G:HiSuiteDownLoader.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {68e7300d-5ebe-11ea-b480-6677276afb6f} – V:autorun.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {68e73018-5ebe-11ea-b480-6677276afb6f} – V:autorun.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {8284ce92-af1e-11e6-be4d-448a5bcd18e9} – G:HiSuiteDownLoader.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {87e195bf-8a16-11e6-b5bb-448a5bcd18e9} – D:HiSuiteDownLoader.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {87e19747-8a16-11e6-b5bb-448a5bcd18e9} – D:HiSuiteDownLoader.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {e06fdc5c-4cdd-11e7-b77a-448a5bcd18e9} – G:HiSuiteDownLoader.exe
HKUS-1-5-21-3505117106-1870260506-4167957161-1000…MountPoints2: {ebc9dcaa-ecc8-11e9-9d48-de10d3d2375c} – V:setup.exe
HKUS-1-5-18…RunOnce: [SPReview] => C:WindowsSystem32SPReviewSPReview.exe [301568 2015-02-18] (Microsoft Home windows -> Microsoft Company)
HKLMSoftwareMicrosoftActive SetupInstalled Parts: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> E:ProgramWindows MailWinMail.exe [2019-08-26] (Microsoft Home windows -> Microsoft Company)
HKLMSoftwareMicrosoftActive SetupInstalled Parts: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> E:Program (x86)GoogleChromeApplication85.0.4183.121Installerchrmstp.exe [2020-09-23] (Google LLC -> Google LLC)
HKLMSoftwareMicrosoftActive SetupInstalled Parts: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> E:Program (x86)MicrosoftEdgeApplication86.0.622.38Installersetup.exe [2020-10-10] (Microsoft Company -> Microsoft Company)
HKLMSoftwareWow6432NodeMicrosoftActive SetupInstalled Parts: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> E:Program (x86)Home windows MailWinMail.exe [2019-08-26] (Microsoft Home windows -> Microsoft Company)
HKLMSoftwareWow6432NodeMicrosoftActive SetupInstalled Parts: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> “E:Program (x86)GoogleChromeApplication55.0.2883.87Installerchrmstp.exe” –configure-user-settings –verbose-logging –system-level –multi-install –chrome
HKLMSoftware…AuthenticationCredential Suppliers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDCREDPROV.DLL [2012-07-17] (Microsoft Company -> Microsoft Corp.)
GroupPolicy: Restriction ? <==== ATTENTION
CHR HKLMSOFTWAREPoliciesGoogle: Restriction <==== ATTENTION
==================== Scheduled Duties (Whitelisted) ============
(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved until listed individually.)
Process: {027EA6FE-A79C-4C12-85B5-BF482991B16F} – System32TasksAdobe Acrobat Replace Process => E:Program Information (x86)Widespread FilesAdobeARM1.0AdobeARM.exe
Process: {12D742B0-E1CF-4830-AC24-3E398BC0FC4E} – System32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-10-01] (NVIDIA Company -> NVIDIA Company)
Process: {17118A8F-DACB-479B-B7A2-9EE418818A4B} – System32Tasks{FE67B7F1-5ACC-4D3D-A706-211B29ABD40A} => C:Windowssystem32pcalua.exe -a “G:InstallPCSuperior2 Sound Installer.exe” -d G:InstallPC
Process: {1A9EECF6-3F71-427A-BC24-700B2C21845F} – System32TasksAppleAppleSoftwareUpdate => E:Program (x86)Apple Software program UpdateSoftwareUpdate.exe
Process: {234D1EB4-6C34-4C6D-B232-D40219B63C25} – System32Tasks{80277BE9-D484-4AF4-A43B-D83DFEABB7AE} => C:Windowssystem32pcalua.exe -a “E:Hämtade Filerdxwebsetup (1).exe” -d “E:Hämtade Filer”
Process: {235CDFC1-5379-48F2-9F42-2D1B7C92B18D} – System32TasksGoogleUpdateTaskMachineCore => E:Program (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-05-26] (Google LLC -> Google LLC)
Process: {24C5054B-295A-4241-80A0-5C8386B460E3} – System32Tasks{5A5D44D5-8F6C-42D0-B13B-4164698C9E6C} => C:Windowssystem32pcalua.exe -a “G:Superior2 Sound Installer.exe” -d G:
Process: {2B494575-5A9C-4C7E-8FC9-7121480B74D2} – System32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:Program (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe [647656 2020-10-01] (NVIDIA Company -> NVIDIA Company)
Process: {2E53F8DD-1FFC-4756-AAFE-4A755806A805} – System32TasksMicrosoftWindows LiveSOXEExtractor Definitions Replace Process => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Process: {303CD77E-4EDD-408D-AC3D-55B56C92CF3C} – System32TasksGoogleUpdateTaskMachineUA => E:Program (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-05-26] (Google LLC -> Google LLC)
Process: {3C5F8D95-C273-4CE5-89B9-8F08ADC49A2D} – System32TasksMozillaFirefox Default Browser Agent 47C46A8D0A5A144 => E:ProgramMozilla Firefoxdefault-browser-agent.exe [664784 2020-10-06] (Mozilla Company -> Mozilla Basis)
Process: {4AAC3FB9-92E1-48A9-9C64-BD68D5B48A4C} – System32TasksCCleanerSkipUAC => E:ProgramCCleanerCCleaner.exe
Process: {58884561-CE7F-4598-A755-0C452460E573} – System32TasksNorton Web SecurityNorton Error Processor => C:Program Information (x86)Norton Web SecurityEngine21.7.0.11SymErr.exe
Process: {5EB80C31-BA2C-4C20-A553-A337B19EF797} – System32TasksPhoenix360ActiveMessenger-SystemMechanic => E:Program (x86)Widespread FilesPhoenix360ActiveCoreActiveBridge.exe [524080 2019-02-08] (iolo applied sciences, LLC -> iolo applied sciences, LLC)
Process: {61B6FE76-FB5F-407C-A8E2-87F37D9DFAAB} – System32TasksNorton Web SecurityNorton Error Analyzer => C:Program Information (x86)Norton Web SecurityEngine21.7.0.11SymErr.exe
Process: {61EA6415-0904-4953-ABED-90C00D305E3E} – System32Tasks{6CE05D9F-A49B-47FA-A6C8-EEA86638FC30} => C:Windowssystem32pcalua.exe -a “F:FilerSpelChzo Mythos5 Days A Strangerwinsetup.exe” -d “F:FilerSpelChzo Mythos5 Days A Stranger”
Process: {6241759A-F820-4405-9E8D-72235A41B5A7} – System32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-10-01] (NVIDIA Company -> NVIDIA Company) -> -d “E:ProgramNVIDIA CorporationNvDriverUpdateCheck” -l 3 -f C:ProgramDataNVIDIANvContainerDriverUpdateCheck.log
Process: {62C0EFAA-D024-4235-8591-9BE1E864524F} – System32TasksAvast Emergency Replace => E:Program FilesAVAST SoftwareAvastAvEmUpdate.exe
Process: {69E15055-EF3E-45D8-BBB1-F8D6952F2B4C} – System32TasksMicrosoftEdgeUpdateTaskMachineUA => E:Program (x86)MicrosoftEdgeUpdateMicrosoftEdgeUpdate.exe [224152 2020-06-30] (Microsoft Company -> Microsoft Company)
Process: {6BCACDBF-9970-49B4-81FD-AE6515FB052B} – System32Tasks{B3C20843-26D0-449B-A575-1F8171E07FF5} => C:Windowssystem32pcalua.exe -a “D:OtherDriverIntel SCTSetup.exe” -d “D:OtherDriverIntel SCT” -c -s
Process: {6D5C02BB-AF68-4A47-A1E7-C085C83B20DE} – System32TasksOpera scheduled Autoupdate 1560278479 => C:UsersOliverAppDataLocalProgramsOperalauncher.exe [1712152 2020-10-06] (Opera Software program AS -> Opera Software program)
Process: {753C47AE-EC5E-44B3-95A9-2C8E553F0E39} – System32TasksMicrosoftWindowsWindows Media SharingUpdateLibrary => E:ProgramWindows Media Playerwmpnscfg.exe [70656 2019-08-26] (Microsoft Home windows -> Microsoft Company)
Process: {76F40308-5C71-4732-B340-2A5713DE6931} – System32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [907240 2020-10-01] (NVIDIA Company -> NVIDIA Company)
Process: {8270872B-492E-4153-ABAD-C4DBFBE50263} – System32Tasks{202C4111-E5E7-41CD-A077-34AEDE180710} => C:Windowssystem32pcalua.exe -a D:DriverSetup_Afterburner.exe -d D:Driver -c /BOXGAMINGAPP
Process: {84216FD8-E273-436E-A77D-7DADCD3CEB5F} – System32TasksAvast SoftwareOverseer => E:Program FilesCommon FilesAVAST SoftwareOverseeroverseer.exe
Process: {8DDCF4CE-BD4E-410B-917A-C9996411BA21} – System32TasksAdobe Flash Participant NPAPI Notifier => C:WindowsSysWOW64MacromedFlashFlashUtil32_32_0_0_433_Plugin.exe [1502264 2020-09-09] (Adobe Inc. -> Adobe)
Process: {9077660D-34C1-4ADA-9A32-ADDF10B91F00} – System32TasksMicrosoftEdgeUpdateTaskMachineCore => E:Program (x86)MicrosoftEdgeUpdateMicrosoftEdgeUpdate.exe [224152 2020-06-30] (Microsoft Company -> Microsoft Company)
Process: {9A7A23CD-7021-418B-93BC-BED84727DEDC} – System32TasksAdobe Flash Participant PPAPI Notifier => C:WindowsSysWOW64MacromedFlashFlashUtil32_32_0_0_433_pepper.exe [1497656 2020-09-09] (Adobe Inc. -> Adobe)
Process: {A23A4D8C-8283-47CE-AC01-0CD0675E1B03} – System32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-10-01] (NVIDIA Company -> NVIDIA Company) -> -d “E:ProgramNVIDIA CorporationNvBackendNvBatteryBoostCheck” -l 3 -f C:ProgramDataNVIDIANvContainerBatteryBoostCheck.log
Process: {A70B1605-A67C-461A-AE82-E4878EBCB7D2} – System32TasksNorton WSC Integration => C:Program Information (x86)Norton Web SecurityEngine21.7.0.11WSCStub.exe
Process: {AA4AEB67-0637-4503-BD6E-E74F90ECDDEE} – System32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-10-01] (NVIDIA Company -> NVIDIA Company)
Process: {ABF5FD31-B2ED-4252-8F8B-2F13F8B46436} – System32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-10-01] (NVIDIA Company -> NVIDIA Company)
Process: {B0B66A8F-46AB-4AE5-BED1-4CFE6352C749} – System32TasksNVIDIA GeForce Expertise SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Expertise.exe [3294184 2020-10-01] (NVIDIA Company -> NVIDIA Company)
Process: {B3F5AB59-DD3D-429D-9E4C-05A1FEEB7D5E} – System32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [907240 2020-10-01] (NVIDIA Company -> NVIDIA Company)
Process: {BEFB9863-F77E-42FF-B086-3688AFF514AD} – System32TasksOpera scheduled assistant Autoupdate 1581068086 => C:UsersOliverAppDataLocalProgramsOperalauncher.exe [1712152 2020-10-06] (Opera Software program AS -> Opera Software program) -> –scheduledautoupdate –component-name=assistant –component-path=”C:UsersOliverAppDataLocalProgramsOperaassistant” $(Arg0)
Process: {D1252C2E-1402-40E8-B1BD-E9422E38DD36} – System32TasksAdobe Flash Participant Updater => C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
Process: {ED72D237-D2A1-4C79-BEFB-638D220B616C} – System32TasksJava Platform SE Auto Updater => E:Program Information (x86)Widespread FilesJavaJava Updatejusched.exe
Process: {F9A410FA-3F16-48F5-AFC1-225D4B43EA58} – System32TasksPhoenix360ActiveSync-SystemMechanic => E:Program (x86)Widespread FilesPhoenix360ActiveCoreactivebridge.exe [524080 2019-02-08] (iolo applied sciences, LLC -> iolo applied sciences, LLC)
Process: {FB4AF1D8-0887-459B-84AF-7E4A09376F5A} – System32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => E:ProgramNVIDIA CorporationNvBackendNvTmRep.exe [1126888 2020-10-01] (NVIDIA Company -> NVIDIA Company)
(If an entry is included within the fixlist, the duty (.job) file will probably be moved. The file which is working by the duty won’t be moved.)
==================== Web (Whitelisted) ====================
(If an merchandise is included within the fixlist, if it’s a registry merchandise it is going to be eliminated or restored to default.)
Winsock: Catalog5 07 C:Program Information (x86)Widespread FilesMicrosoft SharedWindows LiveWLIDNSP.DLL [145648 2012-07-17] (Microsoft Company -> Microsoft Corp.)
Winsock: Catalog5 08 C:Program Information (x86)Widespread FilesMicrosoft SharedWindows LiveWLIDNSP.DLL [145648 2012-07-17] (Microsoft Company -> Microsoft Corp.)
Winsock: Catalog5 09 E:Program (x86)BonjourmdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDNSP.DLL [171760 2012-07-17] (Microsoft Company -> Microsoft Corp.)
Winsock: Catalog5-x64 08 C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDNSP.DLL [171760 2012-07-17] (Microsoft Company -> Microsoft Corp.)
Winsock: Catalog5-x64 09 E:ProgramBonjourmdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
TcpipParameters: [DhcpNameServer] 83.255.255.2 83.255.255.1
Tcpip..Interfaces{79152351-3AC4-4FEF-89F9-3D168398CAEC}: [NameServer] 109.236.87.2,144.217.75.55
Tcpip..Interfaces{79152351-3AC4-4FEF-89F9-3D168398CAEC}: [DhcpNameServer] 83.255.255.2 83.255.255.1
Tcpip..Interfaces{8E757875-11B2-45BD-B7C1-990CF9D5049C}: [NameServer] 109.236.87.2,144.217.75.55
Tcpip..Interfaces{B7E1DC14-E4BC-483B-9C32-EFD8FC113F59}: [NameServer] 109.236.87.2,144.217.75.55
HKLMSOFTWAREPoliciesMicrosoftInternet Explorer: Restriction <==== ATTENTION
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:UsersOliverAppDataLocalMicrosoftEdgeUser DataDefault [2020-10-06]
FireFox:
========
FF DefaultProfile: mkhxz7n8.default-1557217505858
FF DefaultProfile: d0sbz5ch.default
FF ProfilePath: C:UsersOliverAppDataRoamingMozillaFirefoxProfilesmkhxz7n8.default-1557217505858 [2020-10-10]
FF DownloadDir: E:Hämtade Filer
FF Homepage: MozillaFirefoxProfilesmkhxz7n8.default-1557217505858 -> hxxps://www.youtube.com/|hxxps://www.fb.com/|hxxps://wiki.fractalaudio.com/axefx2/index.php?title=Amplifier_models_list|hxxps://mail.google.com/mail/u/0/#inbox|hxxps://radiooooo.com/
FF Extension: (Grammarly for Firefox) – C:UsersOliverAppDataRoamingMozillaFirefoxProfilesmkhxz7n8.default-1557217505858Extensions87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2020-09-15]
FF Extension: (Fb Container) – C:UsersOliverAppDataRoamingMozillaFirefoxProfilesmkhxz7n8.default-1557217505858Extensions@contain-facebook.xpi [2020-09-29]
FF Extension: (AdBlock — den bästa annonsblockeraren) – C:UsersOliverAppDataRoamingMozillaFirefoxProfilesmkhxz7n8.default-1557217505858Extensionsjid1-NIfFY2CA8fy1tg@jetpack.xpi [2020-10-02]
FF Extension: (DuckDuckGo Privateness Necessities) – C:UsersOliverAppDataRoamingMozillaFirefoxProfilesmkhxz7n8.default-1557217505858Extensionsjid1-ZAdIEUB7XOzOJw@jetpack.xpi [2020-10-05]
FF Extension: (Tab Session Supervisor) – C:UsersOliverAppDataRoamingMozillaFirefoxProfilesmkhxz7n8.default-1557217505858ExtensionsTab-Session-Supervisor@sienori.xpi [2019-05-09]
FF Extension: (DOOM) – C:UsersOliverAppDataRoamingMozillaFirefoxProfilesmkhxz7n8.default-1557217505858Extensions{a591e037-5a5e-41bc-9034-644cd423d262}.xpi [2019-05-15]
FF ProfilePath: C:UsersOliverAppDataRoamingMoonchild ProductionsPale MoonProfilesd0sbz5ch.default [2020-10-09]
FF Homepage: Moonchild ProductionsPale MoonProfilesd0sbz5ch.default -> hxxp://begin.palemoon.org/
FF Extension: (Adblock Latitude) – C:UsersOliverAppDataRoamingMoonchild ProductionsPale MoonProfilesd0sbz5ch.defaultExtensionsadblocklatitude@addons.palemoon.org.xpi [2020-02-02] [Legacy] [not signed]
FF Extension: (Darkish Moon) – C:UsersOliverAppDataRoamingMoonchild ProductionsPale MoonProfilesd0sbz5ch.defaultExtensionsdarkmoon@lootyhoof-pm.xpi [2020-03-23] [Legacy] [not signed]
FF Extension: (DoH Roll-Out) – E:ProgramMozilla Firefoxbrowserfeaturesdoh-rollout@mozilla.org.xpi [2020-08-28] [not signed]
FF Extension: (Type Autofill) – E:ProgramMozilla Firefoxbrowserfeaturesformautofill@mozilla.org.xpi [2020-09-25] [not signed]
FF Extension: (Firefox Screenshots) – E:ProgramMozilla Firefoxbrowserfeaturesscreenshots@mozilla.org.xpi [2020-07-31] [not signed]
FF Extension: (WebCompat Reporter) – E:ProgramMozilla Firefoxbrowserfeatureswebcompat-reporter@mozilla.org.xpi [2020-09-25] [not signed]
FF Extension: (Internet Compat) – E:ProgramMozilla Firefoxbrowserfeatureswebcompat@mozilla.org.xpi [2020-09-25] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:Windowssystem32MacromedFlashNPSWF64_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,model=1.0 -> e:ProgramMicrosoft Silverlight5.1.50918.0npctrl.dll [2018-10-23] (Microsoft Company -> Microsoft Company)
FF Plugin: @videolan.org/vlc,model=3.0.7.1 -> E:ProgramVideoLANVLCnpvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,model=3.0.8 -> E:ProgramVideoLANVLCnpvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,model=4.0.0-dev -> E:ProgramVideoLANVLCnpvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:WindowsSysWOW64MacromedFlashNPSWF32_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;model=4.0.5 -> C:Program Information (x86)IntelIntel® Administration Engine ComponentsIPTnpIntelWebAPIIPT.dll [2014-04-03] (Intel® Identification Safety Know-how Software program -> Intel Company)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:Program Information (x86)IntelIntel® Administration Engine ComponentsIPTnpIntelWebAPIUpdater.dll [2014-04-03] (Intel® Identification Safety Know-how Software program -> Intel Company)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,model=1.0 -> e:Program (x86)Microsoft Silverlight5.1.50918.0npctrl.dll [2018-10-23] (Microsoft Company -> Microsoft Company)
FF Plugin-x32: @microsoft.com/WLPG,model=16.4.3528.0331 -> E:Program (x86)Home windows LivePhoto GalleryNPWLPG.dll [No File]
FF Plugin-x32: @videolan.org/vlc,model=2.2.3 -> E:Program (x86)VideoLANVLCnpvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,model=2.2.6 -> E:Program (x86)VideoLANVLCnpvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,model=3.0.3 -> E:Program (x86)VideoLANVLCnpvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> E:Program (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2018-12-19] (Adobe Methods, Integrated -> Adobe Methods Inc.)
Chrome:
=======
CHR HKLM…ChromeExtension: [eblihieomkjeiobglmnbmidkajdcfkpa] – <no Path/update_url>
CHR HKLM…ChromeExtension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM…ChromeExtension: [mkfokfffehpeedafpekjeddnmnjhmcmk]
CHR HKUS-1-5-21-3505117106-1870260506-4167957161-1000SOFTWAREGoogleChromeExtensions…ChromeExtension: [kphondbfkocnmbigbmfbkeefeoacnlad]
CHR HKLM-x32…ChromeExtension: [eblihieomkjeiobglmnbmidkajdcfkpa] – <no Path/update_url>
CHR HKLM-x32…ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32…ChromeExtension: [flljooaijgdgaaogmfhakpojmddcjjmj]
CHR HKLM-x32…ChromeExtension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32…ChromeExtension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM-x32…ChromeExtension: [mkfokfffehpeedafpekjeddnmnjhmcmk]
CHR HKLM-x32…ChromeExtension: [npdicihegicnhaangkdmcgbjceoemeoo]
Opera:
=======
OPR DownloadDir: E:Hämtade Filer
==================== Providers (Whitelisted) ===================
(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved until listed individually.)
R2 !SASCORE; E:ProgramSUPERAntiSpywareSASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:Program Information (x86)Widespread FilesAdobeARM1.0armsvc.exe [83984 2018-08-14] (Adobe Methods, Integrated -> Adobe Methods Integrated)
S3 AdobeFlashPlayerUpdateSvc; C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
S4 Bonjour Service; E:ProgramBonjourmDNSResponder.exe [462096 2015-08-12] (Apple Inc. -> Apple Inc.)
S2 edgeupdate; E:Program (x86)MicrosoftEdgeUpdateMicrosoftEdgeUpdate.exe [224152 2020-06-30] (Microsoft Company -> Microsoft Company)
S3 edgeupdatem; E:Program (x86)MicrosoftEdgeUpdateMicrosoftEdgeUpdate.exe [224152 2020-06-30] (Microsoft Company -> Microsoft Company)
R2 Focusrite Management Server; E:ProgramFocusriteFocusrite ControlServerControlServer.exe [1534976 2020-01-08] (Focusrite Audio Engineering Ltd.) [File not signed]
S3 GalaxyClientService; E:Program (x86)GOG GalaxyGalaxyClientService.exe [1208392 2020-01-16] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:ProgramDataGOG.comGalaxyredistsGalaxyCommunication.exe [6617160 2020-01-16] (GOG Sp. z o.o. -> GOG.com)
S4 gobblerproxy; E:Program (x86)Media Gobbler, IncDownstream Proxydownstreamproxyservice.exe [15872 2017-06-09] (Media Gobbler, Inc) [File not signed]
S3 GoogleChromeElevationService; E:Program (x86)GoogleChromeApplication85.0.4183.121elevation_service.exe [1322992 2020-09-19] (Google LLC -> Google LLC)
S2 gupdate; E:Program (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-05-26] (Google LLC -> Google LLC)
S3 gupdatem; E:Program (x86)GoogleUpdateGoogleUpdate.exe [156104 2020-05-26] (Google LLC -> Google LLC)
S3 MBAMService; E:ProgramMalwarebytesAnti-MalwareMBAMService.exe [7185288 2020-10-06] (Malwarebytes Inc -> Malwarebytes)
S3 MicrosoftEdgeElevationService; E:Program (x86)MicrosoftEdgeApplication86.0.622.38elevation_service.exe [1535376 2020-10-08] (Microsoft Company -> Microsoft Company)
S3 MozillaMaintenance; E:Program (x86)Mozilla Upkeep Servicemaintenanceservice.exe [238544 2019-05-05] (Mozilla Company -> Mozilla Basis)
S3 MSIBIOSData_CC; C:Program Information (x86)MSICommand CenterBIOSDataMSIBIOSDataService.exe [2100736 2014-06-04] (MSI) [File not signed]
S3 MSIClock_CC; C:Program Information (x86)MSICommand CenterClockGenMSIClockService.exe [4023296 2014-06-03] (MSI) [File not signed]
S3 MSICOMM_CC; C:Program Information (x86)MSICommand CenterMSICommService.exe [2118144 2014-06-03] () [File not signed]
S3 MSICPU_CC; C:Program Information (x86)MSICommand CenterCPUMSICPUService.exe [4157440 2014-06-04] () [File not signed]
R2 MSICTL_CC; C:Program Information (x86)MSICommand CenterMSIControlService.exe [1990144 2014-06-03] () [File not signed]
S3 MSIDDR_CC; C:Program Information (x86)MSICommand CenterDDRMSIDDRService.exe [2250240 2014-06-06] () [File not signed]
S3 MSISMB_CC; C:Program Information (x86)MSICommand CenterSMBusMSISMBService.exe [2063360 2014-06-04] () [File not signed]
S3 MSISuperIO_CC; C:Program Information (x86)MSICommand CenterSuperIOMSISuperIOService.exe [544256 2014-06-06] () [File not signed]
R2 MSI_FastBoot; C:Program Information (x86)MSIFast BootFastBootService.exe [103992 2012-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:Program Information (x86)MSILive UpdateMSI_LiveUpdate_Service.exe [83952 2014-03-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Worldwide)
R2 MSI_SuperCharger; C:Program Information (x86)MSISuper ChargerChargeService.exe [162800 2014-03-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S4 NGS; C:WindowsNGService.exe [2994248 2018-10-29] (NEXON Korea Company. -> NEXON Korea Company)
R2 NvContainerLocalSystem; E:ProgramNVIDIA CorporationNvContainernvcontainer.exe [874472 2020-10-01] (NVIDIA Company -> NVIDIA Company)
R2 NVDisplay.ContainerLocalSystem; E:ProgramNVIDIA CorporationDisplay.NvContainerNVDisplay.Container.exe [885224 2020-10-01] (NVIDIA Company -> NVIDIA Company)
S3 Origin Shopper Service; E:Program (x86)OriginOriginClientService.exe [2298688 2019-04-05] (Digital Arts, Inc. -> Digital Arts)
R2 Origin Internet Helper Service; E:Program (x86)OriginOriginWebHelperService.exe [3171144 2019-04-05] (Digital Arts, Inc. -> Digital Arts)
R2 Qualcomm Atheros Killer Service V2; C:Program FilesQualcomm AtherosNetwork ManagerKillerService.exe [344576 2014-04-17] (Qualcomm Atheros) [File not signed]
S2 rkrtservice; E:ProgramRogueKillerRogueKillerSvc.exe [13610040 2020-09-15] (Adlice -> )
S3 Steam Shopper Service; E:Program Information (x86)Widespread FilesSteamSteamService.exe [1832224 2020-09-04] (Valve -> Valve Company)
R2 SuperRAIDSvc; C:MSISmart UtilitiesSuperRAIDSvc.exe [27632 2014-04-30] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Worldwide)
R2 TZVPNCLIENT; E:ProgramTrust.Zone VPN Clienttzclient_x64.exe [6421240 2020-09-15] (Tersys Group OÜ -> Belief.Zone VPN Challenge)
R2 vsmon; E:Program (x86)CheckPointZoneAlarmvsmon.exe [4528344 2020-07-22] (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
S2 WinDefend; E:ProgramWindows Defendermpsvc.dll [1011712 2019-08-26] (Microsoft Home windows -> Microsoft Company)
R2 wlidsvc; C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE [2292480 2012-07-17] (Microsoft Company -> Microsoft Corp.)
R2 ZA NET ICM Service; E:Program (x86)CheckPointICMICM-Service-NET.exe [40304 2019-02-07] (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
R2 ZAPrivacyService; E:Program (x86)CheckPointZoneAlarmZaPrivacyService.exe [114936 2020-07-22] (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences, Ltd.)
S4 PaceLicenseDServices; “E:Program Information (x86)Widespread FilesPACEServicesLicenseServicesLDSvc.exe” -u hxxps://activation.paceap.com/InitiateActivation
===================== Drivers (Whitelisted) ===================
(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved until listed individually.)
S3 AcpiCtlDrv; C:WindowsSystem32DRIVERSAcpiCtlDrv.sys [25880 2012-07-17] (Intel® Software program -> Intel Company)
S3 axefx2load; C:WindowsSystem32Driversaxefx2load.sys [55600 2013-07-12] (Fractal Audio Methods -> Cypress Semiconductor)
R1 BfLwf; C:WindowsSystem32DRIVERSbflwfx64.sys [82096 2014-04-10] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
S3 ew_usbccgpfilter; C:WindowsSystem32DRIVERSew_usbccgpfilter.sys [18816 2016-11-25] (Microsoft Home windows {Hardware} Compatibility Writer -> Huawei Applied sciences Co., Ltd.)
R3 fasusbaudio; C:WindowsSystem32DRIVERSfasusbaudio_x64.sys [254464 2014-05-16] (Fractal Audio Methods -> )
R3 fasusbaudioks; C:WindowsSystem32DRIVERSfasusbaudioks_x64.sys [46080 2014-05-16] (Fractal Audio Methods -> )
S3 FocusriteUSB; C:WindowsSystem32DRIVERSFocusriteUSB.sys [112624 2019-08-02] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBSwRoot; C:WindowsSystem32DRIVERSFocusriteUSBSwRoot.sys [92048 2019-08-02] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_AUDIO; C:WindowsSystem32driversFocusriteUSBAudio.sys [53944 2019-08-02] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_MIDI; C:WindowsSystem32driversFocusriteUSBMidi.sys [40536 2019-08-02] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R1 HWiNFO32; C:WindowsSysWOW64driversHWiNFO64A.SYS [26528 2015-12-30] (Martin Malik – REALiX -> REALiX)
U5 hw_usbdev; C:WindowsSystem32Drivershw_usbdev.sys [116864 2016-11-25] (Microsoft Home windows {Hardware} Compatibility Writer -> Huawei Applied sciences Co., Ltd.)
S3 Ke2200; C:WindowsSystem32DRIVERSe22w7x64.sys [129200 2014-03-27] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
R0 kl1; C:WindowsSystem32DRIVERSkl1.sys [531280 2020-07-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klfltsdk; C:WindowsSystem32DRIVERSklfltsdk.sys [252544 2019-07-25] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:WindowsSystem32DRIVERSklgse.sys [521336 2020-07-22] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:WindowsSystem32DRIVERSklhk.sys [1107064 2020-07-22] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klifsdk; C:WindowsSystem32DRIVERSklifsdk.sys [1105536 2019-07-25] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:WindowsSystem32DRIVERSklwtp.sys [212304 2020-07-22] (Kaspersky Lab -> AO Kaspersky Lab)
S3 L6PODHD5SE; C:WindowsSystem32DriversL6PODHD5SE64.sys [772864 2015-04-07] (Line 6) [File not signed]
S0 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [248968 2020-10-06] (Malwarebytes Inc -> Malwarebytes)
S3 Neo_VPN; C:WindowsSystem32DRIVERSneo_vpn.sys [22784 2017-11-29] (Tersys Group OÜ -> Belief.Zone VPN Challenge)
R3 NIWinCDEmu; C:WindowsSystem32DRIVERSNIWinCDEmu.sys [112408 2015-08-24] (NATIVE INSTRUMENTS GmbH -> )
R3 NTIOLib_1_0_3; C:Program Information (x86)MSISuper ChargerNTIOLib_X64.sys [13368 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_1_0_4; C:Program Information (x86)MSILive UpdateNTIOLib_X64.sys [14136 2010-10-22] (Micro-Star Int’l Co. Ltd. -> MSI)
S3 NTIOLib_MSIClock_CC; C:Program Information (x86)MSICommand CenterClockGenNTIOLib_X64.sys [13368 2012-11-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MSICOMM_CC; C:Program Information (x86)MSICommand CenterNTIOLib_X64.sys [13368 2012-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MSICPU_CC; C:Program Information (x86)MSICommand CenterCPUNTIOLib_X64.sys [13368 2012-11-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MSIDDR_CC; C:Program Information (x86)MSICommand CenterDDRNTIOLib_X64.sys [13368 2012-11-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MSIRatio_CC; C:Program Information (x86)MSICommand CenterCPUCPU_RatioNTIOLib_X64.sys [13368 2012-11-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MSISMB_CC; C:Program Information (x86)MSICommand CenterSMBusNTIOLib_X64.sys [13368 2012-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 NTIOLib_MSISuperIO_CC; C:Program Information (x86)MSICommand CenterSuperIONTIOLib_X64.sys [13368 2012-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MSI_RAID; C:MSISmart UtilitiesNTIOLib_X64.sys [13808 2014-03-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R1 SASDIFSV; E:ProgramSUPERAntiSpywareSASDIFSV64.SYS [14928 2011-07-22] (Assist.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; E:ProgramSUPERAntiSpywareSASKUTIL64.SYS [12368 2011-07-12] (Assist.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 sonarworks_VirtualDevice; C:WindowsSystem32DRIVERSsonarworks.sys [442416 2020-07-14] (SIA Sonarworks -> Sonarworks)
R3 tap0901; C:WindowsSystem32DRIVERStap0901.sys [27136 2018-12-06] (OpenVPN Applied sciences, Inc. -> The OpenVPN Challenge)
S3 tapSF0901; C:WindowsSystem32DRIVERStapSF0901.sys [39104 2015-01-23] (Spotflux, Inc -> Spotflux, Inc.)
R3 usbglcs1100302; C:WindowsSystem32driversusbglcs1100302.sys [25600 2012-04-24] (Microsoft Home windows {Hardware} Compatibility Writer -> Home windows ® Win 7 DDK supplier)
S3 VBoxNetAdp; C:WindowsSystem32DRIVERSVBoxNetAdp6.sys [235832 2019-01-28] (Oracle Company -> Oracle Company)
R1 Vsdatant; C:WindowsSystem32DRIVERSvsdatant.sys [461240 2019-07-25] (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
U5 VWiFiFlt; C:WindowsSystem32DriversVWiFiFlt.sys [59904 2009-07-14] (Microsoft Home windows -> Microsoft Company)
S3 xb1usb; C:WindowsSystem32DRIVERSxb1usb.sys [42760 2016-02-21] (Home windows Central Construct Account – X -> Microsoft Company)
U1 aswbdisk; no ImagePath
U1 avgbdisk; no ImagePath
U3 iswSvc; no ImagePath
S3 MSICDSetup; ??D:CDriver64.sys [X]
S3 NAVENG; ??C:Program Information (x86)Norton Web SecurityNortonData21.1.0.18DefinitionsVirusDefs20150326.016ENG64.SYS [X]
S3 NAVEX15; ??C:Program Information (x86)Norton Web SecurityNortonData21.1.0.18DefinitionsVirusDefs20150326.016EX64.SYS [X]
S3 NTIOLib_1_0_C; ??D:NTIOLib_X64.sys [X]
S3 VBAudioVACMME; system32DRIVERSvbaudio_cable64_win7.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved until listed individually.)
==================== One month (created) ===================
(If an entry is included within the fixlist, the file/folder will probably be moved.)
2020-10-10 17:28 – 2020-10-10 17:29 – 000039147 _____ C:UsersOliverDesktopFRST.txt
2020-10-10 17:27 – 2020-10-10 17:27 – 000000000 ____D C:UsersOliverDesktopFRST-OlderVersion
2020-10-10 14:24 – 2020-10-10 14:24 – 000000000 ____D C:UsersOliverAppDataLocalmbam
2020-10-10 13:48 – 2020-10-10 13:48 – 000000000 ____D C:UsersOliverAppDataLocalCEF
2020-10-09 21:30 – 2020-10-09 21:30 – 000233472 _____ C:TDSSKiller.3.1.0.28_09.10.2020_21.30.39_log.txt
2020-10-09 13:19 – 2020-10-09 13:20 – 000689490 _____ C:TDSSKiller.3.1.0.28_09.10.2020_13.19.44_log.txt
2020-10-09 00:45 – 2020-10-09 00:45 – 000000759 _____ C:UsersPublicDesktopDefraggler.lnk
2020-10-09 00:45 – 2020-10-09 00:45 – 000000759 _____ C:ProgramDataDesktopDefraggler.lnk
2020-10-09 00:45 – 2020-10-09 00:45 – 000000000 ____D E:ProgramDefraggler
2020-10-09 00:45 – 2020-10-09 00:45 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsDefraggler
2020-10-08 19:39 – 2020-10-09 21:31 – 000002234 _____ C:UsersOliverDesktopRkill.txt
2020-10-08 19:37 – 2020-10-08 19:39 – 000236392 _____ C:TDSSKiller.3.1.0.28_08.10.2020_19.37.54_log.txt
2020-10-08 18:58 – 2020-10-08 19:02 – 000000000 ____D C:ProgramDataADiag
2020-10-08 18:58 – 2020-10-08 18:58 – 000000000 ____D E:ProgramDiag
2020-10-08 18:58 – 2020-10-08 18:58 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsDiag
2020-10-08 18:21 – 2020-10-08 18:21 – 000236870 _____ C:TDSSKiller.3.1.0.28_08.10.2020_18.21.12_log.txt
2020-10-08 16:22 – 2020-10-10 17:29 – 000000000 ____D C:FRST
2020-10-08 16:07 – 2020-10-08 18:45 – 000000000 ____D C:ProgramDataRogueKiller
2020-10-08 16:07 – 2020-10-08 16:07 – 000000689 _____ C:UsersPublicDesktopRogueKiller.lnk
2020-10-08 16:07 – 2020-10-08 16:07 – 000000689 _____ C:ProgramDataDesktopRogueKiller.lnk
2020-10-08 16:07 – 2020-10-08 16:07 – 000000000 ____D E:ProgramRogueKiller
2020-10-08 16:07 – 2020-10-08 16:07 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsRogueKiller
2020-10-08 16:06 – 2020-10-08 16:07 – 000234642 _____ C:TDSSKiller.3.1.0.28_08.10.2020_16.06.42_log.txt
2020-10-08 16:04 – 2020-10-08 16:04 – 000000909 _____ C:UsersOliverDesktopiExplore.exe – genväg.lnk
2020-10-08 16:03 – 2020-10-10 17:27 – 002299392 _____ (Farbar) C:UsersOliverDesktopFRST64.exe
2020-10-08 16:03 – 2020-10-08 16:02 – 040327848 _____ (Adlice Software program ) C:UsersOliverDesktopRogueKiller_setup_ref3.exe
2020-10-08 16:03 – 2020-10-08 16:02 – 005054744 _____ (AO Kaspersky Lab) C:UsersOliverDesktoptdsskiller.exe
2020-10-08 13:16 – 2020-10-08 13:16 – 000001232 _____ C:UsersOliverAppDataRoamingMicrosoftWindowsStart MenuProgramsInternet Explorer.lnk
2020-10-08 13:10 – 2020-10-08 13:10 – 000000000 ____D C:WindowsSysWOW64BestPractices
2020-10-08 13:10 – 2020-10-08 13:10 – 000000000 ____D C:Windowssystem32msmq
2020-10-08 13:10 – 2020-10-08 13:10 – 000000000 ____D C:Windowssystem32BestPractices
2020-10-08 13:10 – 2020-10-08 13:10 – 000000000 ____D C:inetpub
2020-10-07 20:02 – 2020-10-07 20:02 – 000000000 ____D C:WindowsPanther
2020-10-07 17:23 – 2020-10-07 17:23 – 000001115 _____ C:UsersPublicDesktopGeForce Expertise.lnk
2020-10-07 17:23 – 2020-10-07 17:23 – 000001115 _____ C:ProgramDataDesktopGeForce Expertise.lnk
2020-10-07 17:22 – 2020-10-07 17:22 – 000003774 _____ C:Windowssystem32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:22 – 2020-10-07 17:22 – 000003766 _____ C:Windowssystem32TasksNVIDIA GeForce Expertise SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:22 – 2020-10-07 17:22 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNVIDIA Company
2020-10-07 17:22 – 2020-10-01 08:54 – 002754024 _____ (NVIDIA Company) C:Windowssystem32nvspcap64.dll
2020-10-07 17:22 – 2020-10-01 08:54 – 002121016 _____ (NVIDIA Company) C:WindowsSysWOW64nvspcap.dll
2020-10-07 17:22 – 2020-10-01 08:54 – 001295848 _____ (NVIDIA Company) C:Windowssystem32NvRtmpStreamer64.dll
2020-10-07 17:21 – 2020-10-07 17:21 – 000004110 _____ C:Windowssystem32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000003904 _____ C:Windowssystem32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000003714 _____ C:Windowssystem32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000003680 _____ C:Windowssystem32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000003680 _____ C:Windowssystem32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000003680 _____ C:Windowssystem32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000003680 _____ C:Windowssystem32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000003470 _____ C:Windowssystem32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-10-07 17:21 – 2020-10-07 17:21 – 000000000 ____D C:Windowssystem32DriversNVIDIA Company
2020-10-07 17:21 – 2020-10-01 08:54 – 000169456 _____ (NVIDIA Company) C:Windowssystem32nvaudcap64v.dll
2020-10-07 17:21 – 2020-10-01 08:54 – 000145392 _____ (NVIDIA Company) C:WindowsSysWOW64nvaudcap32v.dll
2020-10-07 17:21 – 2020-10-01 08:54 – 000001951 _____ C:WindowsNvContainerRecovery.bat
2020-10-07 17:21 – 2020-10-01 07:19 – 005510968 _____ (NVIDIA Company) C:Windowssystem32nvcpl.dll
2020-10-07 17:21 – 2020-10-01 07:19 – 002635064 _____ (NVIDIA Company) C:Windowssystem32nvsvc64.dll
2020-10-07 17:21 – 2020-10-01 07:19 – 001759032 _____ (NVIDIA Company) C:Windowssystem32nvsvcr.dll
2020-10-07 17:21 – 2020-10-01 07:19 – 000992232 _____ (NVIDIA Company) C:Windowssystem32nv3dappshext.dll
2020-10-07 17:21 – 2020-10-01 07:19 – 000195560 _____ (NVIDIA Company) C:Windowssystem32nvmctray.dll
2020-10-07 17:21 – 2020-10-01 07:19 – 000122344 _____ (NVIDIA Company) C:Windowssystem32nvshext.dll
2020-10-07 17:21 – 2020-10-01 07:19 – 000083256 _____ (NVIDIA Company) C:Windowssystem32nv3dappshextr.dll
2020-10-07 17:21 – 2020-09-30 12:06 – 009339287 _____ C:Windowssystem32nvcoproc.bin
2020-10-07 17:19 – 2020-10-02 02:59 – 001769688 _____ C:Windowssystem32vulkaninfo-1-999-0-0-0.exe
2020-10-07 17:19 – 2020-10-02 02:59 – 001769688 _____ C:Windowssystem32vulkaninfo.exe
2020-10-07 17:19 – 2020-10-02 02:59 – 001370328 _____ C:WindowsSysWOW64vulkaninfo-1-999-0-0-0.exe
2020-10-07 17:19 – 2020-10-02 02:59 – 001370328 _____ C:WindowsSysWOW64vulkaninfo.exe
2020-10-07 17:19 – 2020-10-02 02:59 – 001054944 _____ C:Windowssystem32vulkan-1-999-0-0-0.dll
2020-10-07 17:19 – 2020-10-02 02:59 – 001054944 _____ C:Windowssystem32vulkan-1.dll
2020-10-07 17:19 – 2020-10-02 02:59 – 000917728 _____ C:WindowsSysWOW64vulkan-1-999-0-0-0.dll
2020-10-07 17:19 – 2020-10-02 02:59 – 000917728 _____ C:WindowsSysWOW64vulkan-1.dll
2020-10-07 17:19 – 2020-10-02 02:59 – 000573336 _____ (NVIDIA Company) C:Windowssystem32nvumdshimx.dll
2020-10-07 17:19 – 2020-10-02 02:59 – 000467864 _____ (NVIDIA Company) C:WindowsSysWOW64nvumdshim.dll
2020-10-07 17:19 – 2020-10-02 02:59 – 000449264 _____ (Khronos Group) C:Windowssystem32OpenCL.dll
2020-10-07 17:19 – 2020-10-02 02:59 – 000346352 _____ (Khronos Group) C:WindowsSysWOW64OpenCL.dll
2020-10-07 17:19 – 2020-10-02 02:58 – 155446168 _____ (NVIDIA Company) C:Windowssystem32nvoptix.dll
2020-10-07 17:19 – 2020-10-02 02:58 – 053194136 _____ (NVIDIA Company) C:Windowssystem32nvrtum64.dll
2020-10-07 17:19 – 2020-10-02 02:58 – 009085680 _____ (NVIDIA Company) C:Windowssystem32nvptxJitCompiler64.dll
2020-10-07 17:19 – 2020-10-02 02:58 – 008485272 _____ (NVIDIA Company) C:WindowsSysWOW64nvptxJitCompiler32.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 043004144 _____ (NVIDIA Company) C:Windowssystem32nvoglv64.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 039591320 _____ (NVIDIA Company) C:Windowssystem32nvopencl64.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 033980312 _____ (NVIDIA Company) C:WindowsSysWOW64nvopencl32.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 032660888 _____ (NVIDIA Company) C:WindowsSysWOW64nvoglv32.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 031970200 _____ (NVIDIA Company) C:Windowssystem32Driversnvlddmkm.sys
2020-10-07 17:19 – 2020-10-02 02:57 – 000426904 _____ C:Windowssystem32nvofapi64.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 000377584 _____ C:WindowsSysWOW64nvofapi.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 000220056 _____ (NVIDIA Company) C:Windowssystem32nvinitx.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 000197872 _____ (NVIDIA Company) C:Windowssystem32nvoglshim64.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 000187800 _____ (NVIDIA Company) C:WindowsSysWOW64nvinit.dll
2020-10-07 17:19 – 2020-10-02 02:57 – 000167832 _____ (NVIDIA Company) C:WindowsSysWOW64nvoglshim32.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 007295384 _____ (NVIDIA Company) C:Windowssystem32nvcuvid.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 006561688 _____ (NVIDIA Company) C:WindowsSysWOW64nvcuvid.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 002098584 _____ (NVIDIA Company) C:Windowssystem32NvFBC64.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 001731824 _____ (NVIDIA Company) C:Windowssystem32nvdispco6445671.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 001583344 _____ (NVIDIA Company) C:WindowsSysWOW64NvFBC.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 001506200 _____ (NVIDIA Company) C:Windowssystem32NvIFR64.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 001482992 _____ (NVIDIA Company) C:Windowssystem32nvdispgenco6445671.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 001161112 _____ (NVIDIA Company) C:WindowsSysWOW64NvIFR.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 000670616 _____ (NVIDIA Company) C:Windowssystem32NvIFROpenGL.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 000556440 _____ (NVIDIA Company) C:WindowsSysWOW64NvIFROpenGL.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 000545176 _____ (NVIDIA Company) C:Windowssystem32nvEncodeAPI64.dll
2020-10-07 17:19 – 2020-10-02 02:56 – 000473496 _____ (NVIDIA Company) C:WindowsSysWOW64nvEncodeAPI.dll
2020-10-07 17:19 – 2020-10-02 02:55 – 040633752 _____ (NVIDIA Company) C:Windowssystem32nvcompiler64.dll
2020-10-07 17:19 – 2020-10-02 02:55 – 035490200 _____ (NVIDIA Company) C:WindowsSysWOW64nvcompiler32.dll
2020-10-07 17:19 – 2020-10-02 02:55 – 022058736 _____ (NVIDIA Company) C:Windowssystem32nvcuda.dll
2020-10-07 17:19 – 2020-10-02 02:55 – 019277552 _____ (NVIDIA Company) C:WindowsSysWOW64nvcuda.dll
2020-10-07 17:19 – 2020-10-02 02:55 – 000684440 _____ (NVIDIA Company) C:Windowssystem32nvcbl64.dll
2020-10-07 17:19 – 2020-10-02 02:51 – 044217064 _____ (NVIDIA Company) C:Windowssystem32nvwgf2umx.dll
2020-10-07 17:19 – 2020-10-02 02:51 – 039240616 _____ (NVIDIA Company) C:WindowsSysWOW64nvwgf2um.dll
2020-10-07 17:19 – 2020-10-02 02:51 – 027474024 _____ (NVIDIA Company) C:Windowssystem32nvd3dumx.dll
2020-10-07 17:19 – 2020-10-02 02:51 – 023235408 _____ (NVIDIA Company) C:WindowsSysWOW64nvd3dum.dll
2020-10-07 17:19 – 2020-10-02 02:51 – 007210296 _____ (NVIDIA Company) C:Windowssystem32nvapi64.dll
2020-10-07 17:19 – 2020-10-02 02:51 – 006086976 _____ (NVIDIA Company) C:WindowsSysWOW64nvapi.dll
2020-10-07 17:19 – 2020-10-01 08:54 – 001682368 _____ (NVIDIA Company) C:Windowssystem32nvhdagenco6420103.dll
2020-10-07 17:19 – 2020-10-01 08:54 – 000222112 _____ (NVIDIA Company) C:Windowssystem32Driversnvhda64v.sys
2020-10-07 17:19 – 2020-10-01 08:54 – 000069840 _____ (NVIDIA Company) C:Windowssystem32Driversnvvad64v.sys
2020-10-07 17:19 – 2020-10-01 08:54 – 000067456 _____ (NVIDIA Company) C:Windowssystem32Driversnvvhci.sys
2020-10-07 17:19 – 2020-10-01 08:54 – 000056543 _____ C:Windowssystem32nvinfo.pb
2020-10-07 17:19 – 2020-10-01 08:54 – 000038816 _____ (NVIDIA Company) C:Windowssystem32nvhdap64.dll
2020-10-07 17:19 – 2020-10-01 08:54 – 000000671 _____ C:WindowsSysWOW64nv-vk32.json
2020-10-07 17:19 – 2020-10-01 08:54 – 000000671 _____ C:Windowssystem32nv-vk64.json
2020-10-07 17:15 – 2020-10-07 20:40 – 000000000 ____D C:UsersOliverAppDataRoamingplaystation-now
2020-10-07 17:15 – 2020-10-07 17:15 – 000000819 _____ C:UsersPublicDesktopPlayStation™Now.lnk
2020-10-07 17:15 – 2020-10-07 17:15 – 000000819 _____ C:ProgramDataDesktopPlayStation™Now.lnk
2020-10-07 17:15 – 2020-10-07 17:15 – 000000000 ____D C:UsersOliverAppDataLocalSony Interactive Leisure Community America LLC
2020-10-07 17:14 – 2020-10-07 20:40 – 000000000 ____D E:Program (x86)PlayStationNow
2020-10-07 17:14 – 2020-10-07 17:15 – 000000000 ____D C:UsersOliverAppDataRoamingSony Interactive Leisure Community America LLC
2020-10-07 17:14 – 2020-10-07 17:15 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPlayStation™Now
2020-10-07 17:14 – 2020-10-07 17:14 – 000000000 ____D E:ProgramDIFX
2020-10-06 07:05 – 2020-10-10 13:48 – 000000000 ____D E:ProgramMozilla Firefox
2020-10-06 06:31 – 2020-10-08 19:35 – 000000000 ____D C:ProgramDataSecTaskMan
2020-10-06 06:31 – 2020-10-06 06:31 – 000000953 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsSpy Protector.lnk
2020-10-06 06:31 – 2020-10-06 06:31 – 000000952 _____ C:UsersPublicDesktopSecurity Process Supervisor.lnk
2020-10-06 06:31 – 2020-10-06 06:31 – 000000952 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsSecurity Process Supervisor.lnk
2020-10-06 06:31 – 2020-10-06 06:31 – 000000952 _____ C:ProgramDataDesktopSecurity Process Supervisor.lnk
2020-10-06 06:31 – 2020-10-06 06:31 – 000000000 ____D E:Program (x86)Safety Process Supervisor
2020-10-06 03:44 – 2020-10-06 03:44 – 000000000 ____D C:UsersOliverAppDataRoamingSUPERAntiSpyware.com
2020-10-06 03:43 – 2020-10-09 17:22 – 000000000 ____D E:ProgramSUPERAntiSpyware
2020-10-06 03:43 – 2020-10-06 03:43 – 000000823 _____ C:UsersPublicDesktopSUPERAntiSpyware Free Version.lnk
2020-10-06 03:43 – 2020-10-06 03:43 – 000000823 _____ C:ProgramDataDesktopSUPERAntiSpyware Free Version.lnk
2020-10-06 03:43 – 2020-10-06 03:43 – 000000000 ____D C:ProgramDataSUPERSetup
2020-10-06 03:43 – 2020-10-06 03:43 – 000000000 ____D C:ProgramDataSUPERAntiSpyware.com
2020-10-06 03:43 – 2020-10-06 03:43 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSUPERAntiSpyware
2020-10-06 03:26 – 2020-10-06 03:27 – 175205552 _____ (Sophos Restricted) C:UsersOliverDownloadsSophos Virus Removing Software.exe
2020-10-06 02:18 – 2020-10-06 02:18 – 159997536 _____ (SUPERAntiSpyware) C:UsersOliverDesktopSUPERAntiSpyware.exe
2020-10-06 02:07 – 2020-10-06 02:07 – 000248968 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys
2020-10-06 02:04 – 2020-10-06 02:04 – 000050688 _____ (Atribune.org) C:UsersOliverDesktopATF-Cleaner.exe
2020-10-06 02:00 – 2020-10-06 02:07 – 000000969 _____ C:UsersPublicDesktopMalwarebytes.lnk
2020-10-06 02:00 – 2020-10-06 02:07 – 000000969 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk
2020-10-06 02:00 – 2020-10-06 02:07 – 000000969 _____ C:ProgramDataDesktopMalwarebytes.lnk
2020-10-06 02:00 – 2020-10-06 02:06 – 000153312 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys
2020-10-06 02:00 – 2020-10-06 02:00 – 000000000 ____D C:ProgramDataMalwarebytes
2020-10-06 01:59 – 2020-10-06 01:59 – 002041448 _____ (Malwarebytes) C:UsersOliverDownloadsMBSetup.exe
2020-10-06 01:59 – 2020-10-06 01:59 – 000000000 ____D E:ProgramMalwarebytes
2020-10-06 01:12 – 2020-10-09 21:30 – 002018692 _____ C:Windowsntbtlog.txt
2020-10-02 21:24 – 2020-10-02 21:25 – 000000000 ____D C:UsersOliverAppDataLocalSonarworks
2020-10-02 21:24 – 2020-10-02 21:24 – 000002111 _____ C:UsersPublicDesktopSonarworks Reference 4 Systemwide.lnk
2020-10-02 21:24 – 2020-10-02 21:24 – 000002111 _____ C:ProgramDataDesktopSonarworks Reference 4 Systemwide.lnk
2020-10-02 21:24 – 2020-10-02 21:24 – 000000000 ____D E:ProgramCommon FilesSonarworks
2020-10-02 21:24 – 2020-10-02 21:24 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSonarworks
2020-10-01 15:07 – 2020-10-01 15:07 – 000000622 _____ C:UsersPublicDesktopZoneAlarm Safety.lnk
2020-10-01 15:07 – 2020-10-01 15:07 – 000000622 _____ C:ProgramDataDesktopZoneAlarm Safety.lnk
2020-09-29 03:57 – 2020-09-29 03:57 – 000001006 _____ C:UsersOliverDesktopakasssatext.txt
2020-09-24 20:19 – 2020-09-24 20:19 – 000001115 _____ C:UsersPublicDesktopSkype.lnk
2020-09-24 20:19 – 2020-09-24 20:19 – 000001115 _____ C:ProgramDataDesktopSkype.lnk
2020-09-24 20:19 – 2020-09-24 20:19 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSkype
2020-09-22 21:03 – 2020-09-23 03:18 – 000000074 _____ C:UsersOliverDesktopPÅminn alex och andy och slut i EA.txt
2020-09-18 16:02 – 2020-09-18 16:02 – 000000069 _____ C:UsersOliverDesktopPersonligtB.txt
2020-09-15 13:51 – 2020-09-15 13:51 – 000001128 _____ C:UsersPublicDesktopTrust.Zone VPN Shopper.lnk
2020-09-15 13:51 – 2020-09-15 13:51 – 000001128 _____ C:ProgramDataMicrosoftWindowsStart MenuTrust.Zone VPN Shopper.lnk
2020-09-15 13:51 – 2020-09-15 13:51 – 000001128 _____ C:ProgramDataDesktopTrust.Zone VPN Shopper.lnk
2020-09-15 13:51 – 2020-09-15 13:51 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsTrust.Zone VPN Shopper
2020-09-14 15:41 – 2020-09-14 15:41 – 000000016 _____ C:UsersOliverDesktopuniversityadmissions move.txt
2020-09-11 20:20 – 2020-09-11 20:20 – 000000000 ____D C:UsersOliverAppDataLocalLowYasuka Taira, Chilla’s Artwork
2020-09-10 16:59 – 2020-09-14 16:25 – 000000979 _____ C:UsersOliverDesktopAKTIVITETSRAPPORTERA.txt
==================== One month (modified) ==================
(If an entry is included within the fixlist, the file/folder will probably be moved.)
2020-10-10 14:16 – 2009-07-14 06:45 – 000027104 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-10-10 14:16 – 2009-07-14 06:45 – 000027104 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-10-10 13:57 – 2020-06-30 10:53 – 000001218 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2020-10-10 13:54 – 2020-06-30 10:53 – 000003510 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineUA
2020-10-10 13:54 – 2020-06-30 10:53 – 000003382 _____ C:Windowssystem32TasksMicrosoftEdgeUpdateTaskMachineCore
2020-10-10 13:53 – 2009-07-14 09:43 – 000694680 _____ C:Windowssystem32perfh01D.dat
2020-10-10 13:53 – 2009-07-14 09:43 – 000151618 _____ C:Windowssystem32perfc01D.dat
2020-10-10 13:53 – 2009-07-14 07:13 – 001656840 _____ C:Windowssystem32PerfStringBackup.INI
2020-10-10 13:53 – 2009-07-14 05:20 – 000000000 ____D C:Windowsinf
2020-10-10 13:49 – 2019-04-25 19:25 – 000000000 ____D C:ProgramDataNVIDIA
2020-10-10 13:48 – 2019-01-22 15:44 – 000000000 ____D E:ProgramTrust.Zone VPN Shopper
2020-10-10 13:48 – 2017-01-06 16:00 – 000000000 ____D C:UsersOliverAppDataLocalLowMozilla
2020-10-10 13:47 – 2009-07-14 07:08 – 000000006 ____H C:WindowsTasksSA.DAT
2020-10-09 18:32 – 2009-07-14 05:20 – 000000000 ____D C:Windowsrescache
2020-10-08 22:59 – 2015-02-17 09:33 – 000000000 ____D C:UsersOliver
2020-10-08 22:04 – 2015-02-18 00:13 – 000007632 _____ C:UsersOliverAppDataLocalresmon.resmoncfg
2020-10-08 18:23 – 2019-04-19 17:17 – 000000000 ____D E:Program (x86)Steinberg
2020-10-08 18:23 – 2019-04-19 17:17 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsiZotope
2020-10-08 17:51 – 2019-09-10 23:17 – 000000000 ____D E:Program (x86)GnuPG
2020-10-08 13:28 – 2019-06-11 20:41 – 000004058 _____ C:Windowssystem32TasksOpera scheduled Autoupdate 1560278479
2020-10-08 13:10 – 2009-07-14 05:20 – 000000000 ____D C:WindowsSysWOW64inetsrv
2020-10-08 13:10 – 2009-07-14 05:20 – 000000000 ____D C:Windowssystem32inetsrv
2020-10-07 20:05 – 2019-08-17 18:47 – 000000000 ____D C:UsersOliverAppDataLocalNVIDIA Company
2020-10-07 20:01 – 2017-09-22 19:10 – 000000000 ____D E:ProgramDVD Maker
2020-10-07 20:01 – 2009-07-14 05:20 – 000000000 ____D C:WindowsPolicyDefinitions
2020-10-07 19:13 – 2018-11-14 14:26 – 000000000 ____D C:UsersOliverAppDataLocalSpotify
2020-10-07 17:40 – 2018-12-30 15:52 – 000000000 ____D E:Program (x86)Steam
2020-10-07 17:24 – 2019-11-15 11:25 – 000000000 ____D C:UsersOliverAppDataLocalNVIDIA
2020-10-07 17:24 – 2018-04-30 19:22 – 000000000 ____D C:ProgramDataNVIDIA Company
2020-10-07 17:22 – 2018-04-30 19:22 – 000000000 ____D E:Program (x86)NVIDIA Company
2020-10-07 17:22 – 2018-04-30 19:21 – 000000000 ____D E:ProgramNVIDIA Company
2020-10-07 17:17 – 2018-11-14 14:26 – 000000000 ____D C:UsersOliverAppDataRoamingSpotify
2020-10-07 17:12 – 2019-09-09 18:05 – 000000000 ____D C:UsersOliverAppDataRoamingvlc
2020-10-07 15:27 – 2020-02-07 11:34 – 000004292 _____ C:Windowssystem32TasksOpera scheduled assistant Autoupdate 1581068086
2020-10-05 23:10 – 2019-07-10 01:57 – 000000000 ____D C:UsersOliverAppDataRoamingqBittorrent
2020-10-05 22:43 – 2018-10-27 16:32 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNative Devices
2020-10-05 21:02 – 2018-10-27 16:37 – 000000000 ____D C:UsersOliverDocumentsNative Devices
2020-10-02 21:24 – 2017-12-25 18:04 – 000000000 ____D E:Program (x86)VstPlugIns
2020-10-02 21:24 – 2017-12-25 18:02 – 000000000 ____D E:ProgramVstPlugIns
2020-10-02 07:06 – 2020-09-06 21:09 – 000000000 ____D C:UsersOliverAppDataRoamingMicrosoftWindowsStart MenuProgramsSteam
2020-10-01 15:07 – 2019-08-26 19:58 – 000441035 _____ C:Windowssystem32Driversvsconfig.xml
2020-10-01 14:18 – 2009-07-14 07:08 – 000032514 _____ C:WindowsTasksSCHEDLGU.TXT
2020-09-29 00:15 – 2009-07-14 05:20 – 000000000 ____D C:Windowssystem32NDF
2020-09-27 15:09 – 2019-03-10 13:31 – 000000000 ____D C:UsersOliverAppDataRoamingTIDAL
2020-09-27 01:37 – 2020-06-14 00:20 – 000000000 ____D E:Program (x86)Elaborate Bytes
2020-09-25 13:14 – 2019-02-04 03:01 – 000000000 ____D C:ProgramDataMozilla
2020-09-23 23:04 – 2020-05-26 17:57 – 000001215 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2020-09-23 21:22 – 2019-11-17 17:43 – 000000000 ____D C:UsersOliverAppDataLocalLowDefaultCompany
==================== Information within the root of some directories ========
2018-08-20 22:28 – 2018-08-20 22:28 – 000000023 _____ () E:Programplugins.dat
2008-06-12 14:32 – 2008-06-12 14:32 – 000564985 _____ () E:ProgramSuperior Drummer FX Information.pdf
2012-11-19 19:22 – 2012-11-19 19:22 – 003973261 _____ () E:ProgramSuperiorDrummer2Manual.pdf
2018-04-30 00:41 – 2008-03-09 07:25 – 000000236 _____ () E:Program Information (x86)Widespread Filesdx.reg
2015-02-18 15:19 – 2020-06-27 22:26 – 000000048 _____ () C:UsersOliverAppDataRoamingmsregsvv.dll
2020-01-14 13:25 – 2020-01-14 14:43 – 000015452 _____ () C:UsersOliverAppDataLocalPlariumPlay.log
2020-02-13 13:06 – 2020-02-13 13:06 – 000000749 _____ () C:UsersOliverAppDataLocalrecently-used.xbel
2015-02-18 00:13 – 2020-10-08 22:04 – 000007632 _____ () C:UsersOliverAppDataLocalresmon.resmoncfg
==================== SigCheck ============================
(There isn’t any automated repair for recordsdata that don’t move verification.)
LastRegBack: 2020-10-04 18:24
==================== Finish of FRST.txt ========================
FARBAR ADDITION LOG BELOW
_______________________________________
Further scan results of Farbar Restoration Scan Software (x64) Model: 10-10-2020
Ran by Oliver (10-10-2020 17:29:25)
Working from C:UsersOliverDesktop
Home windows 7 Dwelling Premium Service Pack 1 (X64) (2015-02-17 07:33:27)
Boot Mode: Regular
==========================================================
==================== Accounts: =============================
Administratör (S-1-5-21-3505117106-1870260506-4167957161-500 – Administrator – Disabled)
Gäst (S-1-5-21-3505117106-1870260506-4167957161-501 – Restricted – Disabled)
HomeGroupUser$ (S-1-5-21-3505117106-1870260506-4167957161-1006 – Restricted – Enabled)
Oliver (S-1-5-21-3505117106-1870260506-4167957161-1000 – Administrator – Enabled) => C:UsersOliver
==================== Safety Heart ========================
(If an entry is included within the fixlist, it is going to be eliminated.)
AV: ZoneAlarm Antivirus (Enabled – Updated) {1947BAEA-75D2-7D68-8F78-84241FBC7C90}
AV: Malwarebytes (Disabled – Updated) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled – Updated) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: ZoneAlarm Anti-Adware (Enabled – Updated) {A2265B0E-53E8-72E6-B5C8-BF56643B362D}
AS: Home windows Defender (Disabled – Outdated) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ZoneAlarm Firewall (Enabled) {217C3BCF-3FBD-7C30-A427-2D11E16F3BEB}
==================== Put in Packages ======================
(Solely the adware packages with “Hidden” flag could possibly be added to the fixlist to unhide them. The adware packages ought to be uninstalled manually.)
7-Zip 18.05 (x64) (HKLM…7-Zip) (Model: 18.05 – Igor Pavlov)
Adobe Acrobat Reader DC – Svenska (HKLM-x32…{AC76BA86-7AD7-1053-7B44-AC0F074E4100}) (Model: 19.010.20069 – Adobe Methods Integrated)
Adobe Flash Participant 32 ActiveX (HKLM-x32…Adobe Flash Participant ActiveX) (Model: 32.0.0.433 – Adobe)
Adobe Flash Participant 32 NPAPI (HKLM-x32…Adobe Flash Participant NPAPI) (Model: 32.0.0.433 – Adobe)
Adobe Flash Participant 32 PPAPI (HKLM-x32…Adobe Flash Participant PPAPI) (Model: 32.0.0.433 – Adobe)
AMD Catalyst Set up Supervisor (HKLM…{1BA994F2-88D8-D18E-AA07-595FE026C54E}) (Model: 8.0.915.0 – Superior Micro Units, Inc.)
Amped – Roots model 1.2.2 (HKLM…Amped – Roots_is1) (Model: 1.2.2 – )
Apple Software program Replace (HKLM-x32…{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Model: 2.2.0.150 – Apple Inc.)
Apple-programstöd (32-bitar) (HKLM-x32…{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Model: 7.0.2 – Apple Inc.)
Apple-programstöd (64-bitar) (HKLM…{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Model: 7.0.2 – Apple Inc.)
Axe-Edit 3.14.5 (HKLM-x32…{0B2FECD3-B4EF-4071-9546-7529D90BAA99}_is1) (Model: – Fractal Audio)
Bonjour (HKLM…{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Model: 3.1.0.1 – Apple Inc.)
Cab-Lab 3.3.1 Lite (HKLM-x32…{FC7A1BA0-3C1E-4577-80C5-77C83BB284B0}_is1) (Model: – Fractal Audio)
Customized Store model 1.8.0 (HKLM-x32…{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Model: 1.8.0 – IK Multimedia)
D3DX10 (HKLM-x32…{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Model: 15.4.2368.0902 – Microsoft) Hidden
Defraggler (HKLM…Defraggler) (Model: 2.22 – Piriform)
Diag model 1.10.2.0 (HKLM…10DBD048-433A-4BC3-951F-055296F077B3_is1) (Model: 1.10.2.0 – Adlice Software program)
DirectX10 RC2 Pre Repair 3 (HKLM-x32…DirectX10 for Home windows XP – Win2000, 2003,…_is1) (Model: – )
Electrum (HKUS-1-5-21-3505117106-1870260506-4167957161-1000…Electrum) (Model: 3.3.8 – Electrum Applied sciences GmbH)
eLicenser Management (HKLM-x32…eLicenser Management) (Model: 6.11.6.1253 – Steinberg Media Applied sciences GmbH)
Epic Video games Launcher (HKLM-x32…{A398FCC0-8E8B-409E-90E9-ACF4671633F2}) (Model: 1.1.183.0 – Epic Video games, Inc.)
Epic Video games Launcher Stipulations (x64) (HKLM…{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Model: 1.0.0.0 – Epic Video games, Inc.) Hidden
FabFilter Whole Bundle (64-bit) (HKLM-x32…FabFilter Whole Bundle (64-bit)) (Model: – )
FastStone Picture Viewer 6.1 (HKLM-x32…FastStone Picture Viewer) (Model: 6.1 – FastStone Smooth)
FluxCenter-64-bit (HKLM…{79F34619-7B53-40E5-8CDC-A9D7379C9FA3}) (Model: 1.2.11.47267 – Flux:: sound and film growth)
Focusrite Management 3.5.0.1754 (HKLM…Focusrite Control_is1) (Model: 3.5.0.1754 – Focusrite Audio Engineering Ltd.)
Focusrite USB 4.63.24.564 (HKLM…Focusrite USB_is1) (Model: 4.63.24.564 – Focusrite Audio Engineering, Ltd.)
Fotogalleriet (HKLM-x32…{5FF3045E-4A36-4B98-9F7F-48B49F4469C7}) (Model: 16.4.3528.0331 – Microsoft Company) Hidden
Fractal Audio Methods USB Audio Driver v2.23.0 (HKLM-x32…Fractal Audio Methods USB Audio Driver v2.23.0) (Model: 2.23.0 – Fractal Audio Methods)
Fractal Audio Methods USB Driver Package deal 2014.06.06 (HKLM…{E992CC59-71FD-4199-B04E-6274F7439EA0}_is1) (Model: 2014.06.06 – Fractal Audio Methods)
Fractal-Bot 3.0.4 (HKLM-x32…{6DBF83F6-BE11-414D-82DC-58C414CACF35}_is1) (Model: – Fractal Audio)
Free RAR Extract Frog (HKLM-x32…Free RAR Extract Frog) (Model: 7 – Philipp Winterberg)
Acquire Discount model 2.0.8 (HKLM…Acquire Reduction_is1) (Model: 2.0.8 – )
Gobbler (HKLM…{49C3123D-9497-434D-A988-A9B389B1E189}) (Model: 2.2.2.263 – Media Gobbler, Inc.) Hidden
Gobbler (HKLM-x32…{1a80729d-d49d-4d81-9991-b785c110295b}) (Model: 2.2.2.263 – Media Gobbler, Inc.)
GOG Galaxy (HKLM-x32…{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Model: – GOG.com)
Google Chrome (HKLM-x32…Google Chrome) (Model: 85.0.4183.121 – Google LLC)
Google Replace Helper (HKLM-x32…{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Model: 1.3.35.451 – Google LLC) Hidden
Gpg4win (3.1.10) (HKLM-x32…Gpg4win) (Model: 3.1.10 – The Gpg4win Challenge)
Grammarly (HKUS-1-5-21-3505117106-1870260506-4167957161-1000…GrammarlyForWindows) (Model: 1.5.61 – Grammarly)
HitFilm Categorical (HKLM…{695EBA08-5295-4472-901D-7A435E88D55F}) (Model: 9.0.7813.07206 – FXHOME)
HitmanPro 3.8 (HKLM…HitmanPro38) (Model: 3.8.15.306 – SurfRight B.V.)
IK Multimedia Authorization Supervisor model 1.0.19 (HKLM…{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Model: 1.0.19 – IK Multimedia)
Intel® C++ Redistributables on IA-32 (HKLM-x32…{317059CB-7642-4F2E-89C0-62E69D4074B7}) (Model: 15.0.148 – Intel Company)
Intel® C++ Redistributables on Intel® 64 (HKLM-x32…{2DD3C090-2986-4970-B3CB-87BB4C8AC4A5}) (Model: 15.0.148 – Intel Company)
Intel® Administration Engine Parts (HKLM…{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Model: 10.0.31.1000 – Intel Company)
Intel® Good Join Know-how (HKLM…{1D4A118A-92DE-42D3-A3C8-1B9B96628FF0}) (Model: 5.0.10.2850 – Intel Company)
Intel® USB 3.03.1 eXtensible Host Controller Driver (HKLM-x32…{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Model: 5.0.4.43 – Intel Company)
Intel® Chipset Machine Software program (HKLM-x32…{bb0592a7-5772-4736-9d55-2402740085db}) (Model: 10.1.1.38 – Intel® Company) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32…{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Model: – Intel Company)
iTunes (HKLM…{7D2EACE4-682A-498F-B64E-F8BAA2ED1657}) (Model: 12.7.5.9 – Apple Inc.)
JST Clip model 1.0.4 (HKLM…JST Clip_is1) (Model: 1.0.4 – )
Launcher Stipulations (x64) (HKLM-x32…{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Model: 1.0.0.0 – Epic Video games, Inc.) Hidden
Malwarebytes model 4.2.1.89 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Model: 4.2.1.89 – Malwarebytes)
Microsoft .NET Framework 4.8 (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} – 1033) (Model: 4.8.03761 – Microsoft Company)
Microsoft .NET Framework 4.8 (svenska) (HKLM…{92FB6C44-E685-45AD-9B20-CADF4CABA132} – 1053) (Model: 4.8.03761 – Microsoft Company)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Model: 86.0.622.38 – Microsoft Company)
Microsoft Edge Replace (HKLM-x32…Microsoft Edge Replace) (Model: 1.3.135.41 – )
Microsoft Video games for Home windows – LIVE Redistributable (HKLM-x32…{59E4543A-D49D-4489-B445-473D763C79AF}) (Model: 2.0.672.0 – Microsoft Company)
Microsoft Workplace Phrase Viewer 2003 (HKLM-x32…{9085041D-6000-11D3-8CFE-0150048383C9}) (Model: 11.0.8173.0 – Microsoft Company)
Microsoft Silverlight (HKLM…{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Model: 5.1.50918.0 – Microsoft Company)
Microsoft SQL Server 2005 Compact Version [ENU] (HKLM-x32…{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Model: 3.1.0000 – Microsoft Company)
Microsoft Visible C++ 2005 Redistributable (HKLM-x32…{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Model: 8.0.61001 – Microsoft Company)
Microsoft Visible C++ 2005 Redistributable (HKLM-x32…{7299052b-02a4-4627-81f2-1818da5d550d}) (Model: 8.0.56336 – Microsoft Company)
Microsoft Visible C++ 2005 Redistributable (HKLM-x32…{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Model: 8.0.59193 – Microsoft Company)
Microsoft Visible C++ 2005 Redistributable (x64) (HKLM…{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Model: 8.0.61000 – Microsoft Company)
Microsoft Visible C++ 2008 Redistributable – x64 9.0.30729.4148 (HKLM…{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Model: 9.0.30729.4148 – Microsoft Company)
Microsoft Visible C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Model: 9.0.30729.6161 – Microsoft Company)
Microsoft Visible C++ 2008 Redistributable – x86 9.0.21022 (HKLM-x32…{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Model: 9.0.21022 – Microsoft Company)
Microsoft Visible C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Model: 9.0.30729 – Microsoft Company)
Microsoft Visible C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Model: 9.0.30729.6161 – Microsoft Company)
Microsoft Visible C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Model: 10.0.40219 – Microsoft Company)
Microsoft Visible C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Model: 10.0.40219 – Microsoft Company)
Microsoft Visible C++ 2012 Redistributable (x64) – 11.0.51106 (HKLM-x32…{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Model: 11.0.51106.1 – Microsoft Company)
Microsoft Visible C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Model: 11.0.61030.0 – Microsoft Company)
Microsoft Visible C++ 2012 Redistributable (x86) – 11.0.51106 (HKLM-x32…{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Model: 11.0.51106.1 – Microsoft Company)
Microsoft Visible C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Model: 11.0.61030.0 – Microsoft Company)
Microsoft Visible C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Model: 12.0.30501.0 – Microsoft Company)
Microsoft Visible C++ 2013 Redistributable (x64) – 12.0.40660 (HKLM-x32…{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Model: 12.0.40660.0 – Microsoft Company)
Microsoft Visible C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Model: 12.0.30501.0 – Microsoft Company)
Microsoft Visible C++ 2015-2019 Redistributable (x64) – 14.24.28127 (HKLM-x32…{282975d8-55fe-4991-bbbb-06a72581ce58}) (Model: 14.24.28127.4 – Microsoft Company)
Microsoft Visible C++ 2015-2019 Redistributable (x86) – 14.24.28127 (HKLM-x32…{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Model: 14.24.28127.4 – Microsoft Company)
Microsoft Xbox 360 Equipment 1.2 (HKLM…{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Model: 1.20.146.0 – Microsoft)
Film Maker (HKLM-x32…{38F03569-A636-4CF3-BDDE-032C8C251304}) (Model: 16.4.3528.0331 – Microsoft Company) Hidden
Film Maker (HKLM-x32…{5D3B997B-DF28-4BC1-82E6-E6C29A53AF6E}) (Model: 16.4.3528.0331 – Microsoft Company) Hidden
Film Maker (HKLM-x32…{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Model: 16.4.3528.0331 – Microsoft Company) Hidden
Mozilla Firefox 66.0.4 (x64 sv-SE) (HKLM…Mozilla Firefox 66.0.4 (x64 sv-SE)) (Model: 66.0.4 – Mozilla)
Mozilla Firefox 81.0.1 (x64 sv-SE) (HKUS-1-5-21-3505117106-1870260506-4167957161-1000…Mozilla Firefox 81.0.1 (x64 sv-SE)) (Model: 81.0.1 – Mozilla)
Mozilla Upkeep Service (HKLM…MozillaMaintenanceService) (Model: 66.0.4 – Mozilla)
MSI Command Heart (HKLM-x32…{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Model: 1.0.0.67 – MSI)
MSI Quick Boot (HKLM-x32…{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Model: 1.0.1.3 – MSI)
MSI Intel Excessive Tuning Utility (HKLM-x32…{BF51EEA5-56A0-4AC8-BCE5-0E3E20C1516F}) (Model: 4.4.0.103 – Intel Company) Hidden
MSI Intel Excessive Tuning Utility (HKLM-x32…{fbd55c4e-e884-4210-a79b-5f158834b133}) (Model: 4.4.0.103 – Intel Company)
MSI Good Utilities (HKLM-x32…{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Model: 2.0.0.06 – MSI)
MSI Tremendous Charger (HKLM-x32…{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Model: 1.2.025 – MSI)
mvMeter2 1.0.26 (HKLM…{97D23C74-E340-4E1E-8306-184BC7FB8C68}}_is1) (Model: 1.0.26 – TBProAudio)
Nexus Mod Supervisor (HKLM…6af12c54-643b-4752-87d0-8335503010de_is1) (Model: 0.65.2 – Black Tree Gaming)
NoVirusThanks MAC Handle Changer v1.0 (HKLM…NoVirusThanks MAC Handle Changer_is1) (Model: 1.0.0.0 – NoVirusThanks Firm Srl)
NVAPI Monitor plugin for NvContainer (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Model: 1.27 – NVIDIA Company) Hidden
NVIDIA GeForce Expertise 3.20.4.15 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Model: 3.20.4.15 – NVIDIA Company)
NVIDIA Grafikdrivrutin 456.71 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Model: 456.71 – NVIDIA Company)
NVIDIA HD audiodrivrutin 1.3.38.35 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Model: 1.3.38.35 – NVIDIA Company)
NVIDIA PhysX systemprogramvara 9.19.0218 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Model: 9.19.0218 – NVIDIA Company)
NvModuleTracker (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Model: 6.14.24033.38719 – NVIDIA Company) Hidden
OBS Studio (HKLM-x32…OBS Studio) (Model: 24.0.3 – OBS Challenge)
OpenOffice 4.1.3 (HKLM-x32…{78EE7944-E65F-466C-A720-6410F432708D}) (Model: 4.13.9783 – Apache Software program Basis)
Opera Steady 71.0.3770.228 (HKUS-1-5-21-3505117106-1870260506-4167957161-1000…Opera 71.0.3770.228) (Model: 71.0.3770.228 – Opera Software program)
Origin (HKLM-x32…Origin) (Model: 10.5.36.23506 – Digital Arts, Inc.)
Pixelator model 1.0.4 (HKLM…Pixelator_is1) (Model: 1.0.4 – )
PlayStation™Now (HKLM-x32…{E323B713-AD3B-4C12-B152-DC26EA489A47}) (Model: 11.2.2 – Sony Interactive Leisure Community America LLC)
qBittorrent 4.0.3 (HKLM-x32…qBittorrent) (Model: 4.0.3 – The qBittorrent mission)
Qualcomm Atheros Bandwidth Management Filter Driver (HKLM…{CCD797F1-171F-4B3A-BD30-4F59F653E1A0}) (Model: 1.1.42.1045 – Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM…{F45761DC-2470-47FF-9E9B-F4016568C29A}) (Model: 1.1.42.1045 – Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Community Supervisor Suite (HKLM-x32…{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Model: 1.1.42.1045 – Qualcomm Atheros)
Qualcomm Atheros Community Supervisor (HKLM…{4692B750-DE88-4DCF-9163-745AF5604B24}) (Model: 1.1.42.1045 – Qualcomm Atheros) Hidden
Realtek Excessive Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Model: 6.0.8773.1 – Realtek Semiconductor Corp.)
REAPER (x64) (HKLM…REAPER) (Model: – )
Reference 4 AAX plugin for ProTools 10 (HKLM-x32…{CA9B417F-2CF2-4550-84F1-225E431866C7}) (Model: 4.4.5.51 – Sonarworks)
Reference 4 AAX plugin for ProTools 11/12 (HKLM…{C91B2968-E6D7-44EC-8A51-477F10BD108D}) (Model: 4.4.5.51 – Sonarworks)
Reference 4 RTAS plugin (HKLM-x32…{C5ADB05C-F758-4C70-998F-900C693CB29E}) (Model: 4.4.5.51 – Sonarworks)
Reference 4 VST plugin (32-bit) (HKLM-x32…{73ACEEC0-AB51-4CF3-A2E2-DE4A2445CC15}) (Model: 4.4.5.51 – Sonarworks)
Reference 4 VST plugin (64-bit) (HKLM…{2EE42C9A-AC45-4F27-AA70-BFE112A6E76D}) (Model: 4.4.5.51 – Sonarworks)
RogueKiller model 14.7.3.0 (HKLM…8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Model: 14.7.3.0 – Adlice Software program)
Safety Process Supervisor 2.4 (HKLM-x32…Safety Process Supervisor) (Model: 2.4 – Neuber Software program)
Skype Click on to Name (HKLM-x32…{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Model: 8.5.0.9167 – Microsoft Company)
Skype model 8.64 (HKLM-x32…Skype_is1) (Model: 8.64 – Skype Applied sciences S.A.)
Softube Saturation Knob (HKLM…Softube Saturation Knob) (Model: 2.4.83 – Softube AB)
Sonarworks Reference 4 Systemwide (HKLM…{FAEE6372-ED5F-48A0-B560-5B073A316C16}) (Model: 4.4.5.51 – Sonarworks)
Sound Blaster Cinema (HKLM-x32…{8801CA65-921A-4CCC-9D63-879D1D0BAA97}) (Model: 1.00.05 – Inventive Know-how Restricted)
South Park – The Fractured however Entire (HKLM-x32…Uplay Set up 3088) (Model: – Ubisoft)
Speccy (HKLM…Speccy) (Model: 1.31 – Piriform)
Spotify (HKUS-1-5-21-3505117106-1870260506-4167957161-1000…Spotify) (Model: 1.1.43.700.g20acee0f – Spotify AB)
Stamp ID3 Tag Editor (HKLM-x32…Stamp) (Model: 2.39 – NCH Software program)
Steam (HKLM-x32…Steam) (Model: 2.10.91.91 – Valve Company)
Steinberg Obtain Assistant (HKLM-x32…Steinberg Obtain Assistant) (Model: 1.16.2 – Steinberg Media Applied sciences GmbH)
Steinberg Generic Decrease Latency ASIO Driver 64bit (HKLM…{16D5A798-10BE-4FF3-BB71-54C012CD0D7D}) (Model: 1.0.12 – Steinberg Media Applied sciences GmbH)
STL Ignite – Emissary Plug-In Bundle (HKLM…STL Ignite – Emissary Plug-In Bundle_is1) (Model: – )
SubDestroyer model 1.0.3 (HKLM…SubDestroyer_is1) (Model: 1.0.3 – )
SUPERAntiSpyware (HKLM…{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Model: 10.0.1208 – SUPERAntiSpyware.com)
Superior Drummer 32-bit (HKLM-x32…{8752CE2D-F312-499D-AE46-4AD80506A890}) (Model: 2.4.4 – Toontrack)
Superior Drummer 64-bit (HKLM…{0E54CF79-AE40-409E-9253-9563418C730C}) (Model: 2.4.4 – Toontrack)
Swap Sound File Converter (HKLM-x32…Swap) (Model: 6.43 – NCH Software program)
TDR Kotelnikov model 1.5.2 (HKLM…TDR Kotelnikov_is1) (Model: 1.5.2 – Tokyo Daybreak Labs)
TIDAL (HKUS-1-5-21-3505117106-1870260506-4167957161-1000…TIDAL) (Model: 2.17.0 – TIDAL Music AS)
Toontrack Product Supervisor (HKLM-x32…{5BAE101A-4AF5-4FBA-99E6-1CE2825F8993}) (Model: 1.0.1 – Toontrack)
T-RackS 5 model 5.0.1 (HKLM…{7609F15A-5EF0-49B8-A6B4-4BBB5FFB9021}_is1) (Model: 5.0.1 – IK Multimedia)
T-RackS CS model 4.10.0 (HKLM…{E931EBCC-55F9-4D67-BA0E-D57C4A893A44}_is1) (Model: 4.10.0 – IK Multimedia)
Belief.Zone VPN Shopper (HKLM…trustzone_tztzclient) (Model: 1.1.0 construct 1073 – Belief.Zone VPN Challenge)
TSE BOD v3.0.0 (HKLM-x32…{8530D1BB-CE31-42A1-8935-7708C6DCEB74}_is1) (Model: v3.0.0 – TSE Audio)
TSE X50 v2.4.8 (HKLM-x32…{BC071462-9C5E-415D-844E-211DCFFBFFAD}_is1) (Model: v2.4.8 – TSE Audio)
TuxGuitar (HKLM-x32…TuxGuitar 1.4) (Model: 1.4 – TuxGuitar)
Uplay (HKLM-x32…Uplay) (Model: 47.0 – Ubisoft)
Waves Full V9r15 (HKLM-x32…{91000001-C561-4E32-99EB-3C5AD3683A70}) (Model: 9.1.15 – Waves)
Home windows 7 USB/DVD Obtain Software (HKLM-x32…{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Model: 1.0.30 – Microsoft Company)
Home windows Stay Necessities (HKLM-x32…WinLiveSuite) (Model: 16.4.3528.0331 – Microsoft Company)
Home windows-drivrutinspaket – Sony Laptop Leisure Inc. Wi-fi controller for PLAYSTATION®3 Driver Package deal (01/20/2012 1.4.0.0) (HKLM…D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Model: 01/20/2012 1.4.0.0 – Sony Laptop Leisure Inc.)
VLC media participant (HKLM…VLC media participant) (Model: 3.0.8 – VideoLAN)
VLC media participant (HKLM-x32…VLC media participant) (Model: 3.0.3 – VideoLAN)
Voxengo SPAN (HKLM…Voxengo SPAN_is1) (Model: 3.2 – Voxengo)
ZoneAlarm Antivirus (HKLM-x32…{DF19AA36-B342-4187-9DB5-5C19C0CFDA43}) (Model: 15.8.125.18466 – Verify Level Software program Applied sciences Ltd.) Hidden
ZoneAlarm Antivirus (HKLM-x32…ZoneAlarm Antivirus) (Model: 15.8.125.18466 – Verify Level)
ZoneAlarm Firewall (HKLM-x32…{4F2FE9C8-183F-4099-A5BF-5C40C9ED61D3}) (Model: 15.8.125.18466 – Verify Level Software program Applied sciences Ltd.) Hidden
ZoneAlarm Safety (HKLM-x32…{694B6C07-D488-4074-91EB-4524BC2764DF}) (Model: 15.8.125.18466 – Verify Level Software program Applied sciences Ltd.) Hidden
==================== Customized CLSID (Whitelisted): ==============
(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved until listed individually.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => E:Program7-Zip7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => E:ProgramDefragglerDefragglerShell64.dll [2020-08-03] (Piriform Software program Ltd -> Piriform Software program Ltd)
ContextMenuHandlers1: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => E:Program (x86)Gpg4winbin_64gpgex.dll [2019-07-14] (g10 Code GmbH) [File not signed]
ContextMenuHandlers1: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} => -> No File
ContextMenuHandlers1: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> No File
ContextMenuHandlers1: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => E:Program (x86)CheckPointZoneAlarmzlavscan.dll [2020-07-22] (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
ContextMenuHandlers2: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => E:ProgramMalwarebytesAnti-Malwarembshlext.dll [2020-10-06] (Malwarebytes Company -> Malwarebytes)
ContextMenuHandlers3: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => E:Program7-Zip7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
ContextMenuHandlers4: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => E:Program (x86)Gpg4winbin_64gpgex.dll [2019-07-14] (g10 Code GmbH) [File not signed]
ContextMenuHandlers4: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} => -> No File
ContextMenuHandlers4: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:Program Information (x86)ATI TechnologiesATI.ACECore-Staticatiacm64.dll [2013-12-06] (Superior Micro Units, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:Windowssystem32nvshext.dll [2020-10-01] (NVIDIA Company -> NVIDIA Company)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => E:Program7-Zip7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => E:ProgramDefragglerDefragglerShell64.dll [2020-08-03] (Piriform Software program Ltd -> Piriform Software program Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => E:ProgramMalwarebytesAnti-Malwarembshlext.dll [2020-10-06] (Malwarebytes Company -> Malwarebytes)
ContextMenuHandlers6: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> No File
ContextMenuHandlers6: [ZLAVShExt] -> {D9872D13-7651-4471-9EEE-F0A00218BEBB} => E:Program (x86)CheckPointZoneAlarmzlavscan.dll [2020-07-22] (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
==================== Codecs (Whitelisted) ====================
(If an entry is included within the fixlist, the registry merchandise will probably be restored to default or eliminated. The file won’t be moved.)
HKLM…Drivers32: [msacm.voxacm160] => C:Windowssystem32vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM…Drivers32: [msacm.scg726] => C:Windowssystem32scg726.acm [13239 2000-03-14] (SHARP Company) [File not signed]
HKLM…Drivers32: [msacm.alf2cd] => C:Windowssystem32alf2cd.acm [38912 2003-05-21] (NCT Firm) [File not signed]
HKLM…Drivers32: [msacm.ac3acm] => C:Windowssystem32AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
HKLM…Drivers32: [msacm.lame] => C:Windowssystem32lame.ax [245760 2005-08-01] () [File not signed]
HKLM…Drivers32: [vidc.dvsd] => C:Windowssystem32mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM…Drivers32: [vidc.mpg4] => C:Windowssystem32mpg4c32.dll [413760 2002-08-19] (Microsoft Company) [File not signed]
HKLM…Drivers32: [vidc.mp42] => C:Windowssystem32mpg4c32.dll [413760 2002-08-19] (Microsoft Company) [File not signed]
HKLM…Drivers32: [vidc.mp43] => C:Windowssystem32mpg4c32.dll [413760 2002-08-19] (Microsoft Company) [File not signed]
HKLM…Drivers32: [vidc.xvid] => C:Windowssystem32xvidvfw.dll [139264 2004-07-03] () [File not signed]
HKLM…Drivers32: [vidc.DIVX] => C:Windowssystem32DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM…Drivers32: [vidc.VP60] => C:Windowssystem32vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM…Drivers32: [vidc.VP61] => C:Windowssystem32vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM…Drivers32: [vidc.VP62] => C:Windowssystem32vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM…Drivers32: [vidc.LAGS] => C:Windowssystem32lagarith.dll [216064 2011-12-07] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could possibly be listed to be restored or eliminated.)
ShortcutWithArgument: C:UsersOliverAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedTaskBarMicrosoft Edge.lnk -> E:Program (x86)MicrosoftEdgeApplicationmsedge.exe (Microsoft Company) -> –profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2013-12-06 16:56 – 2013-12-06 16:56 – 000004608 _____ (Superior Micro Units, Inc.) [File not signed] C:Program Information (x86)ATI TechnologiesATI.ACECore-Staticatiamsve.dll
2020-07-22 00:43 – 2020-07-22 00:43 – 000986112 _____ (Microsoft Company) [File not signed] E:Program (x86)CheckPointZoneAlarmdbghelp.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 001548288 _____ (The OpenSSL Challenge, hxxp://www.openssl.org/) [File not signed] E:Program (x86)OriginLIBEAY32.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 000395776 _____ (The OpenSSL Challenge, hxxp://www.openssl.org/) [File not signed] E:Program (x86)Originssleay32.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 001611264 _____ (The Qt Firm Ltd) [File not signed] E:Program (x86)Originplatformsqwindows.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 005487104 _____ (The Qt Firm Ltd) [File not signed] E:Program (x86)OriginQt5Core.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 005841920 _____ (The Qt Firm Ltd) [File not signed] E:Program (x86)OriginQt5Gui.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 001177600 _____ (The Qt Firm Ltd) [File not signed] E:Program (x86)OriginQt5Network.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 005089792 _____ (The Qt Firm Ltd) [File not signed] E:Program (x86)OriginQt5Widgets.dll
2019-04-05 18:28 – 2019-04-05 18:28 – 000184832 _____ (The Qt Firm Ltd) [File not signed] E:Program (x86)OriginQt5Xml.dll
==================== Alternate Knowledge Streams (Whitelisted) ========
(If an entry is included within the fixlist, solely the ADS will probably be eliminated.)
AlternateDataStreams: C:ProgramDataPACE:A9A8821D7EB73CAB [217]
==================== Protected Mode (Whitelisted) ==================
(If an entry is included within the fixlist, it is going to be faraway from the registry. The “AlternateShell” will probably be restored.)
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMSwissArmy => “”=”Driver”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMSwissArmy => “”=”Driver”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkvsmon => “”=”Service”
==================== Affiliation (Whitelisted) =================
==================== Web Explorer (Model 11) (Whitelisted) ==========
HKUS-1-5-21-3505117106-1870260506-4167957161-1000SoftwareMicrosoftInternet ExplorerMain,Begin Web page = hxxps://se.yahoo.com/?fr=yset_ie_syc_oracle&sort=orcl_hpset
HKUS-1-5-21-3505117106-1870260506-4167957161-1000SoftwareMicrosoftInternet ExplorerMain,Begin Web page Redirect Cache = hxxp://www.msn.com/sv-se/?ocid=iehp
SearchScopes: HKUS-1-5-21-3505117106-1870260506-4167957161-1000 -> {AF80BFE3-A587-4EBD-9784-9205DC21F058} URL = hxxps://se.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&sort=orcl_default
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> E:Program (x86)MicrosoftEdgeApplication86.0.622.38BHOie_to_edge_bho_64.dll [2020-10-08] (Microsoft Company -> Microsoft Company)
BHO: Home windows Stay ID Signal-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:Program FilesCommon FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll [2012-07-17] (Microsoft Company -> Microsoft Corp.)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> E:Program (x86)MicrosoftEdgeApplication86.0.622.38BHOie_to_edge_bho.dll [2020-10-08] (Microsoft Company -> Microsoft Company)
BHO-x32: Inloggningshjälp för Microsoft-konto -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:Program Information (x86)Widespread FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll [2012-07-17] (Microsoft Company -> Microsoft Corp.)
Toolbar: HKUS-1-5-21-3505117106-1870260506-4167957161-1000 -> No Title – {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} – No File
Handler: wlpg – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} – No File
==================== Hosts content material: =========================
(If wanted Hosts: directive could possibly be included within the fixlist to reset Hosts.)
2009-07-14 04:34 – 2018-07-29 16:27 – 000000824 _____ C:Windowssystem32driversetchosts
==================== Different Areas ===========================
(At present there is no such thing as a automated repair for this part.)
HKLMSystemCurrentControlSetControlSession ManagerEnvironmentPath -> C:Program Information (x86)Widespread FilesIntelShared Librariesredistintel64compiler;C:Program Information (x86)Widespread FilesIntelShared Librariesredistia32compiler;C:Program FilesCommon FilesMicrosoft SharedWindows Stay;C:Program Information (x86)Widespread FilesMicrosoft SharedWindows Stay;C:ProgramDataOracleJavajavapath;C:Program Information (x86)InteliCLS Shopper;C:Program FilesInteliCLS Shopper;C:Windowssystem32;C:Home windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:Program Information (x86)ATI TechnologiesATI.ACECore-Static;C:Program FilesIntelIntel® Administration Engine ComponentsDAL;C:Program Information (x86)IntelIntel® Administration Engine ComponentsDAL;C:Program FilesIntelIntel® Administration Engine ComponentsIPT;C:Program Information (x86)IntelIntel® Administration Engine ComponentsIPT;E:Program (x86)Home windows LiveShared;E:Program (x86)NVIDIA CorporationPhysXCommon;E:ProgramNVIDIA CorporationNVIDIA NvDLISR
HKUS-1-5-21-3505117106-1870260506-4167957161-1000Control PanelDesktopWallpaper -> C:UsersOliverAppDataRoamingMicrosoftWindowsThemesTranscodedWallpaper.jpg
DNS Servers: 109.236.87.2 – 144.217.75.55
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Home windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled objects ==
(If an entry is included within the fixlist, it is going to be eliminated.)
MSCONFIGServices: AdobeFlashPlayerUpdateSvc => 3
MSCONFIGServices: Apple Cellular Machine Service => 2
MSCONFIGServices: Bonjour Service => 2
MSCONFIGServices: DirMngr => 2
MSCONFIGServices: GalaxyClientService => 3
MSCONFIGServices: GalaxyCommunication => 3
MSCONFIGServices: gobblerproxy => 2
MSCONFIGServices: iPod Service => 3
MSCONFIGServices: NGS => 3
MSCONFIGServices: PaceLicenseDServices => 2
MSCONFIGstartupfolder: C:^ProgramData^Microsoft^Home windows^Begin Menu^Packages^Startup^FASUSBAudio Management Panel Autostart.lnk => C:WindowspssFASUSBAudio Management Panel Autostart.lnk.CommonStartup
MSCONFIGstartupfolder: C:^ProgramData^Microsoft^Home windows^Begin Menu^Packages^Startup^Killer Community Supervisor.lnk => C:WindowspssKiller Community Supervisor.lnk.CommonStartup
MSCONFIGstartupreg: Command Heart => C:Program Information (x86)MSICommand CenterStartCommandCenter.exe
MSCONFIGstartupreg: Discord => C:ProgramDataSquirrelMachineInstallsDiscord.exe –checkInstall
MSCONFIGstartupreg: Quick Boot => C:Program Information (x86)MSIFast BootStartFastBoot.exe
MSCONFIGstartupreg: Focusrite Notifier => “E:ProgramFocusriteUSBFocusrite Notifier.exe”
MSCONFIGstartupreg: MBCfg64 => C:Windowssystem32RunDLL32.exe C:Windowssystem32MBCfg64.dll,RunDLLEntry MBCfg64
MSCONFIGstartupreg: Opera Browser Assistant => C:UsersOliverAppDataLocalProgramsOperaassistantbrowser_assistant.exe
MSCONFIGstartupreg: RESTART_STICKY_NOTES => C:WindowsSystem32StikyNot.exe
MSCONFIGstartupreg: RTHDVCPL => “C:Program FilesRealtekAudioHDARtkNGUI64.exe” -s
MSCONFIGstartupreg: Sound Blaster Cinema => “C:Program Information (x86)CreativeSound Blaster CinemaSound Blaster CinemaSBCinema.exe” /r
MSCONFIGstartupreg: StartCCC => “C:Program Information (x86)ATI TechnologiesATI.ACECore-Staticamd64CLIStart.exe” MSRun
MSCONFIGstartupreg: Steam => “E:Program (x86)Steamsteam.exe” -silent
MSCONFIGstartupreg: SunJavaUpdateSched => “E:Program Information (x86)Widespread FilesJavaJava Updatejusched.exe”
MSCONFIGstartupreg: Tremendous Charger => C:Program Information (x86)MSISuper ChargerSuper Charger.exe
MSCONFIGstartupreg: Belief.Zone VPN Shopper UI Helper => “E:ProgramTrust.Zone VPN Clienttzclient_x64.exe” /uihelp
MSCONFIGstartupreg: USB3MON => “C:Program Information (x86)IntelIntel® USB 3.0 eXtensible Host Controller DriverApplicationiusb3mon.exe”
MSCONFIGstartupreg: Wondershare Helper Compact.exe => E:Program (x86)Widespread FilesWondershareWondershare Helper CompactWSHelper.exe
==================== FirewallRules (Whitelisted) ================
(If an entry is included within the fixlist, it is going to be faraway from the registry. The file won’t be moved until listed individually.)
FirewallRules: [{76421863-76F0-4D11-85F2-A8F3371482F1}] => (Permit) C:Program Information (x86)IntelExtreme Tuning UtilityClientPerfTune.exe (Intel® Software program -> Intel® Company)
FirewallRules: [{3315830F-9F80-443B-9965-3FA4DE4321C4}] => (Permit) LPort=2869
FirewallRules: [{E5638A63-7F6F-4CF8-82CA-6EAC98612CA5}] => (Permit) LPort=1900
FirewallRules: [{FF37CC79-F099-452E-9182-07FF3CAC13B5}] => (Permit) E:ProgramBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{003CAE95-AF6C-4099-B70E-4B556E0FEB6B}] => (Permit) E:ProgramBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4BFC21DB-D012-45B4-BDAA-1D1766BCF712}] => (Permit) E:Program (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7D1EAB24-34AA-409E-B061-10145376E2A1}] => (Permit) E:Program (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{03B9E05C-487F-4C14-B4BB-F072DEB1A5D2}] => (Permit) E:Program (x86)SteamSteam.exe (Valve -> Valve Company)
FirewallRules: [{9C7FA00C-2488-416D-8C7E-89546C37954B}] => (Permit) E:Program (x86)SteamSteam.exe (Valve -> Valve Company)
FirewallRules: [{C9436772-CBDE-4FBF-BC99-021D5C10ADC3}] => (Permit) E:Program (x86)Steambincefcef.win7steamwebhelper.exe (Valve -> Valve Company)
FirewallRules: [{64F32F71-C3C2-417B-AC79-3E9067AB8E58}] => (Permit) E:Program (x86)Steambincefcef.win7steamwebhelper.exe (Valve -> Valve Company)
FirewallRules: [TCP Query User{DF7C20B9-C8AE-4BFC-9D4D-9659E96DB6A6}C:usersoliverappdataroamingspotifyspotify.exe] => (Permit) C:usersoliverappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{42A8DE34-2B4C-432A-A938-5B928802EC56}C:usersoliverappdataroamingspotifyspotify.exe] => (Permit) C:usersoliverappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E4212AE0-A1BC-490E-8AAA-62FBC135F868}] => (Block) C:usersoliverappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{457B7B97-51B0-44A6-8C83-ED4F88FE813E}] => (Block) C:usersoliverappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EA9F4B9B-3D5D-4A8A-B724-D2F9E04E1021}] => (Permit) E:Program (x86)SteamsteamappscommonDark Souls Put together to Die EditionDATADARKSOULS.exe => No File
FirewallRules: [{ED405F5D-757A-4005-A62C-1C3D5ECF132A}] => (Permit) E:Program (x86)SteamsteamappscommonDark Souls Put together to Die EditionDATADARKSOULS.exe => No File
FirewallRules: [{CAB6BC1C-BFDC-45C5-AD1B-9173A6432984}] => (Permit) E:ProgramTrust.Zone VPN Clienttrustzone.exe (Tersys Group OÜ -> Belief.Zone VPN Challenge)
FirewallRules: [{F38EA66A-EDB4-4FE4-B0F5-80821988FC8B}] => (Permit) E:ProgramTrust.Zone VPN Clienttzclient.exe (Tersys Group OÜ -> Belief.Zone VPN Challenge)
FirewallRules: [{25198A5D-8895-4743-A376-69E8287E09D3}] => (Permit) E:ProgramTrust.Zone VPN Clienttrustzone_x64.exe (Tersys Group OÜ -> Belief.Zone VPN Challenge)
FirewallRules: [{C7080D2C-F8FA-4DB7-B3C0-2E9506A2E734}] => (Permit) E:ProgramTrust.Zone VPN Clienttzclient_x64.exe (Tersys Group OÜ -> Belief.Zone VPN Challenge)
FirewallRules: [{AD595DED-35BB-488A-80E2-819DF26FF4D9}] => (Permit) E:Program (x86)SteamsteamappscommonPurgationPurgation.exe () [File not signed]
FirewallRules: [{A89E613E-AF8A-408C-9AA5-7668380FDAAD}] => (Permit) E:Program (x86)SteamsteamappscommonPurgationPurgation.exe () [File not signed]
FirewallRules: [{497A2818-883F-4D24-B77A-20F0AFA1E0AB}] => (Permit) E:Program Information (x86)Widespread FilesAppleApple Utility SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60C732FA-D417-4847-A7D6-2C6E7B20ADC3}] => (Permit) E:Program (x86)SteamsteamappscommonBendy and the Ink MachineBATIM.exe => No File
FirewallRules: [{2E30BF4B-DB4A-4608-AFF8-5B273E39F0F8}] => (Permit) E:Program (x86)SteamsteamappscommonBendy and the Ink MachineBATIM.exe => No File
FirewallRules: [{2CDD4DB0-6C38-42B6-B124-7DEB341FCE0C}] => (Permit) E:ProgramiTunesiTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D2F4C345-36FE-45E6-B2D3-501B12D2E506}] => (Permit) E:Program (x86)SteamsteamappscommonLimbolimbo.exe (Playdead) [File not signed]
FirewallRules: [{4E69DB12-B087-4C49-8484-478A0C80582C}] => (Permit) E:Program (x86)SteamsteamappscommonLimbolimbo.exe (Playdead) [File not signed]
FirewallRules: [{39B1FDC8-8252-4C39-808C-8210CA4C2D60}] => (Permit) E:Program (x86)SteamsteamappscommonAlan WakeAlanWake.exe => No File
FirewallRules: [{6D6078CD-BAD6-48BD-B318-009AD24DA3E0}] => (Permit) E:Program (x86)SteamsteamappscommonAlan WakeAlanWake.exe => No File
FirewallRules: [{2106A0B5-E601-4F1B-923D-9467FC4716FF}] => (Permit) E:Program (x86)qBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{A18160FA-F519-43ED-B0A8-D176CB539E94}] => (Permit) E:Program (x86)qBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{B80F76E3-F0AC-4024-A715-23CA00261815}] => (Permit) E:Program (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Company)
FirewallRules: [{2A5DE8F7-7F80-4762-8C17-E19CE2D92466}] => (Permit) E:Program (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Company)
FirewallRules: [{97E7E0C2-BCFB-4357-A22B-6952738ABE03}] => (Permit) E:Program (x86)SteamsteamappscommonBioshockBuildsReleaseBioshock.exe => No File
FirewallRules: [{E390DC5C-AD82-4F50-9A65-C345CC998521}] => (Permit) E:Program (x86)SteamsteamappscommonBioshockBuildsReleaseBioshock.exe => No File
FirewallRules: [{A4BC69D6-C7D3-43D1-9983-9A8377346F7E}] => (Permit) E:Program (x86)SteamsteamappscommonARAYA DemoAraya.exe => No File
FirewallRules: [{AE8E38F2-55CF-4740-9B7D-2DC9F1A48299}] => (Permit) E:Program (x86)SteamsteamappscommonARAYA DemoAraya.exe => No File
FirewallRules: [{F2FC5E5F-DD3B-4DF5-85C3-260808E305CD}] => (Permit) E:Program (x86)SteamsteamappscommonBioShock 2SPBuildsBinariesBioshock2Launcher.exe => No File
FirewallRules: [{70A6BBA2-D669-4645-B101-5E1CC4790212}] => (Permit) E:Program (x86)SteamsteamappscommonBioShock 2SPBuildsBinariesBioshock2Launcher.exe => No File
FirewallRules: [{A8CCAE9D-2A75-4849-A666-F6FB7BE95DCC}] => (Permit) E:Program (x86)SteamsteamappscommonBioShock 2MPBuildsBinariesBioshock2Launcher.exe => No File
FirewallRules: [{1E117091-FC2F-48C0-84C0-8AAC0AAFC6B1}] => (Permit) E:Program (x86)SteamsteamappscommonBioShock 2MPBuildsBinariesBioshock2Launcher.exe => No File
FirewallRules: [{3A84DC44-4437-4390-BEE1-6091414E0EA7}] => (Permit) E:Program (x86)SteamsteamappscommonPlug & Playpnp.exe (Unity Applied sciences SF -> ) [File not signed]
FirewallRules: [{D99C7939-94B8-47A7-B785-59C29186E59A}] => (Permit) E:Program (x86)SteamsteamappscommonPlug & Playpnp.exe (Unity Applied sciences SF -> ) [File not signed]
FirewallRules: [{D0B2D506-14A9-4E33-98E1-F929A0B77140}] => (Permit) E:Program (x86)AVGAVG TuneUpTUNEUpdate.exe => No File
FirewallRules: [{388E7D06-49AB-4078-B1F2-F438A56EE25E}] => (Permit) E:Program (x86)AVGAVG TuneUpTUNEUpdate.exe => No File
FirewallRules: [{3F72FAB4-F804-4007-96CA-E6FD174ED19D}] => (Permit) E:Program (x86)SteamsteamappscommonResident Evil 4Bin32bio4.exe => No File
FirewallRules: [{1144E081-2286-40F7-9D6B-AA97912E9AF8}] => (Permit) E:Program (x86)SteamsteamappscommonResident Evil 4Bin32bio4.exe => No File
FirewallRules: [{9A2A01F8-C85D-47D3-A566-2A5A2E7B2E46}] => (Permit) E:ProgramBlueStacksHD-Participant.exe => No File
FirewallRules: [{ADA86E34-960F-4ED9-ABA5-DEB72F89B6B0}] => (Permit) E:Program (x86)SteamsteamappscommonYearWalkyearwalk.exe () [File not signed]
FirewallRules: [{BA6EE1FD-E84E-4290-8940-A5E7390A351D}] => (Permit) E:Program (x86)SteamsteamappscommonYearWalkyearwalk.exe () [File not signed]
FirewallRules: [{D2F8FEE0-F338-4D56-9FE0-C5571461A56B}] => (Permit) E:Program (x86)SteamsteamappscommonDark Souls II Scholar of the First SinGameDarkSoulsII.exe => No File
FirewallRules: [{1BF45F94-59A6-4A1E-A65C-D7C52ACCC173}] => (Permit) E:Program (x86)SteamsteamappscommonDark Souls II Scholar of the First SinGameDarkSoulsII.exe => No File
FirewallRules: [{D3DD5CF9-F44D-4237-83A1-01A2A832E583}] => (Permit) E:Program (x86)SteamsteamappscommonDARK SOULS IIIGameDarkSoulsIII.exe => No File
FirewallRules: [{6C719663-856F-4AE5-9458-CF5F5BFC2B2D}] => (Permit) E:Program (x86)SteamsteamappscommonDARK SOULS IIIGameDarkSoulsIII.exe => No File
FirewallRules: [{A7D85085-AEA4-4D7C-A0C0-CEC5F0EAE8D3}] => (Permit) E:ProgramMozilla Firefoxfirefox.exe (Mozilla Company -> Mozilla Company)
FirewallRules: [{89889542-1AC2-414D-B01E-735E2D1F9143}] => (Permit) E:ProgramMozilla Firefoxfirefox.exe (Mozilla Company -> Mozilla Company)
FirewallRules: [{AB0A899E-6F3B-4C17-9169-711C9EF7EF56}] => (Permit) E:Program (x86)SteamsteamappscommonWhen the Darkness comesWhenTheDarknessComes.exe () [File not signed]
FirewallRules: [{ED718752-843B-4F3F-A92F-1354E01BC8DB}] => (Permit) E:Program (x86)SteamsteamappscommonWhen the Darkness comesWhenTheDarknessComes.exe () [File not signed]
FirewallRules: [{F648AFCF-8586-4256-B2D8-78B849FAE29F}] => (Permit) E:Program (x86)SteamsteamappscommonLife Is StrangeBinariesWin32LifeIsStrange.exe => No File
FirewallRules: [{05AA9BE0-5FAF-4A12-B609-8C881C1569A6}] => (Permit) E:Program (x86)SteamsteamappscommonLife Is StrangeBinariesWin32LifeIsStrange.exe => No File
FirewallRules: [{3C8BF542-BD71-4C06-B8C1-486E61A2B42C}] => (Permit) E:Program (x86)qBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{FC44690B-7714-4264-95A9-A3464C7657CB}] => (Permit) E:Program (x86)qBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{C342954D-49C9-42E4-9FC0-9A98E45DAEE3}] => (Permit) E:Program (x86)SteamsteamappscommonOutlastOutlastLauncher.exe (Purple Barrels Inc.) [File not signed]
FirewallRules: [{91557A6B-F126-41B1-89D0-30E4C16119D1}] => (Permit) E:Program (x86)SteamsteamappscommonOutlastOutlastLauncher.exe (Purple Barrels Inc.) [File not signed]
FirewallRules: [{4C8A427C-621A-46B6-A262-82561E3EC929}] => (Permit) E:ProgramEasewareDriverEasyDriverEasy.exe (Easeware Know-how Restricted -> Easeware)
FirewallRules: [{84872CC6-FEE6-4834-A5B2-AD457CC47179}] => (Permit) E:Program (x86)SteamsteamappscommonCurse of Anabelle DemoCurseofAnabelle.exe (Epic Video games, Inc.) [File not signed]
FirewallRules: [{CFDFE0E0-E2A2-45ED-84E7-AA220DD45172}] => (Permit) E:Program (x86)SteamsteamappscommonCurse of Anabelle DemoCurseofAnabelle.exe (Epic Video games, Inc.) [File not signed]
FirewallRules: [{4155D768-3C2C-437E-B4EA-C37FAC6CD1F9}] => (Permit) E:ProgramFocusriteFocusrite ControlServerControlServer.exe (Focusrite Audio Engineering Ltd.) [File not signed]
FirewallRules: [{AB84D752-4D17-4BB0-9BB0-24ABB2CE715F}] => (Permit) E:Program (x86)SteamsteamappscommonMachine for Pigsaamfp.exe () [File not signed]
FirewallRules: [{F076BBEF-3DF5-4DF4-8FBA-04E1E5B2FDDE}] => (Permit) E:Program (x86)SteamsteamappscommonMachine for Pigsaamfp.exe () [File not signed]
FirewallRules: [{68E1109D-83CD-4BC7-80D3-EDA31797055F}] => (Permit) E:Program (x86)SteamsteamappscommonMachine for PigsLauncher.exe () [File not signed]
FirewallRules: [{F7738DCB-9657-4E64-91CC-C8997F5465C5}] => (Permit) E:Program (x86)SteamsteamappscommonMachine for PigsLauncher.exe () [File not signed]
FirewallRules: [{F953BD13-BFD9-4DC6-BC25-629C9540C63F}] => (Permit) E:Program (x86)SteamsteamappscommonKHOLATKholat.exe () [File not signed]
FirewallRules: [{4C007607-BABA-4D5E-AB91-A05575B880BB}] => (Permit) E:Program (x86)SteamsteamappscommonKHOLATKholat.exe () [File not signed]
FirewallRules: [{2C298D2E-9FAF-46A2-89EA-D907CDDBDE35}] => (Permit) E:Program (x86)SteamsteamappscommonThe 111th SoulThe 111th Soul.exe () [File not signed]
FirewallRules: [{BCBB76F9-4080-4D50-A0F6-CDB8A3D91D8B}] => (Permit) E:Program (x86)SteamsteamappscommonThe 111th SoulThe 111th Soul.exe () [File not signed]
FirewallRules: [{B69352E8-DBA6-484B-9697-9A3E50AB1461}] => (Permit) E:Program (x86)SteamsteamappscommonA Place, ForbiddenOuroboros.exe (Epic Video games, Inc.) [File not signed]
FirewallRules: [{2AC3B9DE-6F52-4006-AF82-AED4B69D1CF4}] => (Permit) E:Program (x86)SteamsteamappscommonA Place, ForbiddenOuroboros.exe (Epic Video games, Inc.) [File not signed]
FirewallRules: [{6404BD0F-FD8B-4E5E-8BAF-6180E43EC76C}] => (Permit) E:Program (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)
FirewallRules: [{CEF815A3-B8C2-45F0-924E-74AC240B65F6}] => (Permit) E:Program (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)
FirewallRules: [{BF772BCB-9916-4FED-BE79-8459D2725BB9}] => (Permit) E:Program (x86)MicrosoftSkype for DesktopSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)
FirewallRules: [{D40ACAB6-290A-4366-851D-5FDB674662AB}] => (Permit) E:Program (x86)CheckPointZoneAlarmvsmon.exe (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
FirewallRules: [{67E5945C-D8A5-4667-A0F1-5D49106EFCB0}] => (Permit) E:Program (x86)CheckPointZoneAlarmvsmon.exe (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
FirewallRules: [{8B8BB2EA-113A-4737-80D7-7F42913E75BA}] => (Permit) E:Program (x86)CheckPointZoneAlarmvsmon.exe (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
FirewallRules: [{29C98A85-6FE4-4AAD-B8DD-924A6BD97AC9}] => (Permit) E:Program (x86)CheckPointZoneAlarmvsmon.exe (Verify Level Software program Applied sciences Ltd. -> Verify Level Software program Applied sciences Ltd.)
FirewallRules: [{5E84FDF6-350D-4C03-98EA-BE6E082FAFFB}] => (Permit) E:Program (x86)PlayStationNowpsnowlauncher.exe (Sony Interactive Leisure LLC -> Sony Interactive Leisure Community America LLC)
FirewallRules: [{840EFEA9-006B-434E-BFF1-710D788AFFBD}] => (Permit) E:Program (x86)PlayStationNowunidater.exe (Sony Interactive Leisure LLC -> Sony Interactive Leisure)
FirewallRules: [{2B6199B8-8ED9-4148-9C0F-266ED7137F96}] => (Permit) E:ProgramNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{A4C2BCC4-59E2-4315-9CEA-BBA363DDA694}] => (Permit) E:ProgramNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{A200DDEB-A453-482D-B6CA-474FDF38A376}] => (Permit) E:ProgramNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{0FF87DAF-4004-4FE2-A2A3-CA7555503161}] => (Permit) E:ProgramNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{016D7E8E-4007-44D9-8CE5-B610782FE4B5}] => (Permit) E:ProgramNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{50BB00C0-008F-4662-AF44-4A26E382A277}] => (Permit) E:ProgramNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{CAE31012-2FC7-4DA0-BD6E-5B210F6F8B1D}] => (Permit) E:Program (x86)MicrosoftEdgeApplicationmsedge.exe (Microsoft Company -> Microsoft Company)
==================== Restore Factors =========================
09-10-2020 18:32:46 Schemalagd kontrollpunkt
==================== Defective Machine Supervisor Units ============
Title: Microsoft Loopback Adapter
Description: Microsoft Loopback Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Producer: Microsoft
Service: msloop
Drawback: : This system is disabled. (Code 22)
Decision: In Machine Supervisor, click on “Motion”, after which click on “Allow Machine”. This begins the Allow Machine wizard. Comply with the directions.
==================== Occasion log errors: ========================
Utility errors:
==================
Error: (10/09/2020 06:32:46 PM) (Supply: Microsoft-Home windows-CAPI2) (EventID: 513) (Person: )
Description: Anropet OnIdentity() i systemskrivarobjektet misslyckades för tjänsten Cryptographic Providers.
Particulars:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.
System Error:
0xC0000039 (unresolvable).
Error: (10/09/2020 06:32:46 PM) (Supply: Microsoft-Home windows-CAPI2) (EventID: 513) (Person: )
Description: Anropet OnIdentity() i systemskrivarobjektet misslyckades för tjänsten Cryptographic Providers.
Particulars:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.
System Error:
0xC0000039 (unresolvable).
Error: (10/09/2020 01:33:14 AM) (Supply: Utility Error) (EventID: 1000) (Person: )
Description: Felet uppstod i programmet med namn: ActiveBridge.exe, model 4.0.1.278, tidsstämpel 0x5c5dad07
, felet uppstod i modulen med namn: unknown, model 0.0.0.0, tidsstämpel 0x00000000
Undantagskod: 0xc0000005
Felförskjutning: 0x000007fe9676286c
Course of-ID: 0x23b0
Programmets starttid: 0x01d69dca523f3ef5
Sökväg until program: E:Program (x86)Widespread FilesPhoenix360ActiveCoreActiveBridge.exe
Sökväg until modul: unknown
Rapport-ID: a21a2c8f-09be-11eb-a9b0-448a5bcd18e9
Error: (10/09/2020 01:33:12 AM) (Supply: .NET Runtime) (EventID: 1026) (Person: )
Description: Tillämpningsprogram: ActiveBridge.exe
Framework-version: v4.0.30319
Beskrivning: Processen avslutades på grund av ett ohanterat undantag.
Undantagsinformation: System.NullReferenceException
vid iolo.Controller.Utils.GetRequest(Int32)
vid iolo.Controller.Utils.GetHintsToasterContent(Int32)
vid P360.ActiveBridge.AMessengerMainWindow..ctor()
vid P360.ActiveBridge.AMessengerMode.RunMode(System.Home windows.StartupEventArgs)
vid System.Home windows.Utility.<.ctor>b__1_0(System.Object)
vid System.Home windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
vid System.Home windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
vid System.Home windows.Threading.DispatcherOperation.InvokeImpl()
vid System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
vid System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
vid System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
vid MS.Inner.CulturePreservingExecutionContext.Run(MS.Inner.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)
vid System.Home windows.Threading.DispatcherOperation.Invoke()
vid System.Home windows.Threading.Dispatcher.ProcessQueue()
vid System.Home windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
vid MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
vid MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
vid System.Home windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
vid System.Home windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
vid System.Home windows.Threading.Dispatcher.LegacyInvokeImpl(System.Home windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
vid MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
vid MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Home windows.Interop.MSG ByRef)
vid System.Home windows.Threading.Dispatcher.PushFrameImpl(System.Home windows.Threading.DispatcherFrame)
vid System.Home windows.Utility.RunDispatcher(System.Object)
vid System.Home windows.Utility.RunInternal(System.Home windows.Window)
vid P360.ActiveBridge.App.Predominant()
Error: (10/09/2020 01:11:44 AM) (Supply: Utility Error) (EventID: 1000) (Person: )
Description: Felet uppstod i programmet med namn: MBAMService.exe, model 3.2.0.920, tidsstämpel 0x5f4fe669
, felet uppstod i modulen med namn: MBAMShim.dll_unloaded, model 0.0.0.0, tidsstämpel 0x5f402315
Undantagskod: 0xc0000005
Felförskjutning: 0x000007fee68e7d00
Course of-ID: 0x1438
Programmets starttid: 0x01d69dc39db80c46
Sökväg until program: E:ProgramMalwarebytesAnti-MalwareMBAMService.exe
Sökväg until modul: MBAMShim.dll
Rapport-ID: a10b15b9-09bb-11eb-a9b0-448a5bcd18e9
Error: (10/09/2020 12:38:21 AM) (Supply: Microsoft-Home windows-CAPI2) (EventID: 513) (Person: )
Description: Anropet OnIdentity() i systemskrivarobjektet misslyckades för tjänsten Cryptographic Providers.
Particulars:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.
System Error:
0xC0000039 (unresolvable).
Error: (10/09/2020 12:38:21 AM) (Supply: Microsoft-Home windows-CAPI2) (EventID: 513) (Person: )
Description: Anropet OnIdentity() i systemskrivarobjektet misslyckades för tjänsten Cryptographic Providers.
Particulars:
AddCoreCsiFiles : RtlConvertNtFilePathToWin32Path() failed.
System Error:
0xC0000039 (unresolvable).
Error: (10/09/2020 12:36:22 AM) (Supply: Utility Error) (EventID: 1005) (Person: )
Description: Det går inte att komma åt filen på grund av något av följande:
det finns ett downside med nätverksanslutningen, med disken där filen lagras eller med de lagringsdrivrutiner
som finns installerade på den här datorn, eller så finns inte disken.
Felet gjorde att Home windows stängde programmet NVIDIA Container.
Program: NVIDIA Container
Fil:
Felvärdet visas i avsnittet Ytterligare information.
Användaråtgärd
1. Öppna filen igen.
Den här situationen kan bero på ett tillfälligt downside som rättar until sig automatiskt nästa gång programmet körs.
2.
Om det fortfarande inte går att komma åt filen och
– Den finns i nätverket,
bör nätverksadministratören kontrollera att det inte är fel på nätverket och att det går att kontakta servern.
– Den finns på en flyttbar disk, until exempel en diskett eller en CD-ROM-skiva, kontrollerar du att disken är ordentligt isatt i datorn.
3. Kontrollera och reparera filsystemet genom att köra CHKDSK. Du kan köra CHKDSK genom att klicka på Begin och sedan på Kör. Skriv CMD och klicka på OK. På kommandoraden skriver du CHKDSK /F och trycker sedan på Retur.
4. Om problemet kvarstår kan du återställa filen från en säkerhetskopia.
5. Kontrollera om det går att öppna andra filer på samma disk. Om det inte går, kan disken vara skadad. Om det är en hårddisk kontaktar du administratören eller din datorleverantör
för att få hjälp.
Ytterligare information
Felvärde: C000026E
Disktyp: 0
System errors:
=============
Error: (10/10/2020 01:52:45 PM) (Supply: Microsoft-Home windows-WindowsUpdateClient) (EventID: 20) (Person: NT instans)
Description: Installationsfel: Det gick inte att installera följande uppdatering på grund av fel 0x80070643: Uppdatering av säkerhetsinsikter för Home windows Defender Antivirus – KB915597 (model 1.325.414.0).
Error: (10/10/2020 01:52:35 PM) (Supply: Microsoft-Home windows-WindowsUpdateClient) (EventID: 20) (Person: NT instans)
Description: Installationsfel: Det gick inte att installera följande uppdatering på grund av fel 0x80070643: Uppdatering av säkerhetsinsikter för Home windows Defender Antivirus – KB915597 (model 1.325.414.0).
Error: (10/10/2020 01:52:25 PM) (Supply: Microsoft-Home windows-WindowsUpdateClient) (EventID: 20) (Person: NT instans)
Description: Installationsfel: Det gick inte att installera följande uppdatering på grund av fel 0x80070643: Uppdatering av säkerhetsinsikter för Home windows Defender Antivirus – KB915597 (model 1.325.414.0).
Error: (10/10/2020 01:52:15 PM) (Supply: Microsoft-Home windows-WindowsUpdateClient) (EventID: 20) (Person: NT instans)
Description: Installationsfel: Det gick inte att installera följande uppdatering på grund av fel 0x80070643: Uppdatering av säkerhetsinsikter för Home windows Defender Antivirus – KB915597 (model 1.325.414.0).
Error: (10/10/2020 01:52:05 PM) (Supply: Microsoft-Home windows-WindowsUpdateClient) (EventID: 20) (Person: NT instans)
Description: Installationsfel: Det gick inte att installera följande uppdatering på grund av fel 0x80070643: Uppdatering av säkerhetsinsikter för Home windows Defender Antivirus – KB915597 (model 1.325.414.0).
Error: (10/10/2020 01:52:05 PM) (Supply: Microsoft-Home windows-WindowsUpdateClient) (EventID: 20) (Person: NT instans)
Description: Installationsfel: Det gick inte att installera följande uppdatering på grund av fel 0x80070643: Uppdatering av säkerhetsinsikter för Home windows Defender Antivirus – KB915597 (model 1.325.414.0).
Error: (10/10/2020 01:52:05 PM) (Supply: Microsoft-Home windows-WindowsUpdateClient) (EventID: 20) (Person: NT instans)
Description: Installationsfel: Det gick inte att installera följande uppdatering på grund av fel 0x80070643: Uppdatering av säkerhetsinsikter för Home windows Defender Antivirus – KB915597 (model 1.325.414.0).
Error: (10/10/2020 01:49:52 PM) (Supply: Service Management Supervisor) (EventID: 7023) (Person: )
Description: Tjänsten WinDefend avbröts med följande fel:
Det går inte att hitta den angivna modulen.
Home windows Defender:
===================================
Date: 2016-07-16 07:01:54.434
Description:
N/A
Date: 2016-05-22 02:43:49.171
Description:
N/A
==================== Reminiscence data ===========================
BIOS: American Megatrends Inc. V2.9 02/16/2016
Motherboard: MSI Z97-G45 GAMING (MS-7821)
Processor: Intel® Core i7-4790K CPU @ 4.00GHz
Share of reminiscence in use: 72%
Whole bodily RAM: 16332.62 MB
Out there bodily RAM: 4548.27 MB
Whole Digital: 32663.39 MB
Out there Digital: 16762.12 MB
==================== Drives ================================
Drive c: (OS/Program) (Mounted) (Whole:111.79 GB) (Free:47.45 GB) NTFS
Drive e: (Diskjefel) (Mounted) (Whole:931.41 GB) (Free:356.29 GB) NTFS
?Quantity{8a9057c4-b711-11e4-8479-806e6f6e6963} (Reserverad av systemet) (Mounted) (Whole:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Desk ====================
==========================================================
Disk: 0 (MBR Code: Home windows 7/8/10) (Measurement: 931.5 GB) (Disk ID: E7FDCE0F)
Partition 1: (Energetic) – (Measurement=100 MB) – (Sort=07 NTFS)
Partition 2: (Not Energetic) – (Measurement=931.4 GB) – (Sort=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Home windows 7/8/10) (Measurement: 111.8 GB) (Disk ID: E7FDCE17)
Partition 1: (Energetic) – (Measurement=111.8 GB) – (Sort=07 NTFS)
==================== Finish of Addition.txt =======================
