-
Junior Member
Dyre spambot ???
My computer keeps getting listed in the spamhaus cbl where they claim I have a dyre spambot. I am unable to send any emails as they are listed as suspected spam.. It is a nightmare that I have been unable to solve for several months... I have been ripped off by several anti virus companies who claimed they could remove the bot but didn't. I even had a so called expert from Telstra come out to my computer at great expense, ran malwarebytes in safe mode said he couldn't find a virus or spambot or anything else and promptly left... I am beyond desperate at this point.. I have followed the instructions and backed up my registry then ran the Farbar program as pasted below ... Please help if you are able as I don't want to have to throw the computer overboard (I live on a boat) ... Midge
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
Ran by PjSue (23-11-2016 13:34:41)
Running from C:\Users\PjSue\Downloads
Windows 10 Home Version 1607 (X64) (2016-10-02 01:18:22)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-649218570-585308798-3976316672-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-649218570-585308798-3976316672-503 - Limited - Disabled)
Guest (S-1-5-21-649218570-585308798-3976316672-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-649218570-585308798-3976316672-1003 - Limited - Enabled)
PjSue (S-1-5-21-649218570-585308798-3976316672-1001 - Administrator - Enabled) => C:\Users\PjSue
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Avast Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3D Vision Video Player v1.5.5a (HKLM-x32\...\3D Vision Video Player v1.5.5a) (Version: - )
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Advanced Uninstaller PRO - Version 12 (HKLM-x32\...\AU11_is1) (Version: 12.15.0.70 - Innovative Solutions)
Akamai NetSession Interface (HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.1.142.60386 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.1.142.60386 - Alcor Micro Corp.) Hidden
Angry Birds (HKLM-x32\...\{01509AB1-84BB-4AB9-A142-38AFA0BBDA25}) (Version: 4.0.0 - Rovio Entertainment Ltd.)
Angry Birds Rio (HKLM-x32\...\{B4C29016-8195-4D07-80F1-6DFB5437C0B6}) (Version: 2.2.0 - Rovio Entertainment Ltd.)
Angry Birds Seasons (HKLM-x32\...\{E52AA845-C780-4CE4-A040-840073FFA12D}) (Version: 4.1.0 - Rovio Entertainment Ltd.)
Angry Birds Space (HKLM-x32\...\{FA4E4BC2-335B-4453-A381-0D111937E748}) (Version: 2.0.0 - Rovio Entertainment Ltd.)
Angry Birds Star Wars (HKLM-x32\...\{84389C53-9D0B-4417-AA5A-211BEE64BEC7}) (Version: 1.5.0 - Rovio Entertainment Ltd.)
Angry Birds Star Wars II (HKLM-x32\...\{F2901A5D-DB84-4E40-AD63-F8DFB239DD86}) (Version: 1.5.1 - Rovio Entertainment Ltd.)
Ansel (Version: 368.81 - NVIDIA Corporation) Hidden
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS Fan Filter Checker (HKLM-x32\...\{2B0E8920-47D0-4F4D-BE03-76397409B837}) (Version: 1.0.0001 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.29 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.7 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.50 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0040 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.25 - ASUS)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.)
AsusScr_G75 Series_ENG (HKLM-x32\...\AsusScr_G75 Series_ENG) (Version: 1.0.0001 - ASUS)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.311 - ASUSTEK)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.115 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0026 - ASUS)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
BurnAware Free 8.7 (HKLM-x32\...\BurnAware Free_is1) (Version: - Burnaware)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Canon MG4100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4100_series) (Version: - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Canon Utilities Digital Photo Professional (HKLM-x32\...\Digital Photo Professional) (Version: 3.13.0.1 - Canon Inc.)
Canon Utilities EOS Sample Music (HKLM-x32\...\EOS Sample Music) (Version: 1.0.1.1 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.13.0.0 - Canon Inc.)
Canon Utilities ImageBrowser EX (HKLM-x32\...\ImageBrowser EX) (Version: 1.5.0.6 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.13.0.0 - Canon Inc.)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Creative Centrale (HKLM-x32\...\Creative Centrale) (Version: 1.17.01 - Creative Technology Ltd.)
Creative Centrale (x32 Version: 1.17.01 - Creative Technology Ltd.) Hidden
Creative Software Update (x32 Version: 1.03.01 - Creative Technology Ltd.) Hidden
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
CyberLink Holiday Pack Vol.6 for YouCam (HKLM-x32\...\InstallShield_{B17D6DAB-FA82-4e06-AB92-001D4F76869B}) (Version: Holiday Pack 6 for YouCam - CyberLink Corp.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1126 - CyberLink Corp.)
CyberLink PowerDVD 11 (HKLM-x32\...\InstallShield_{F232C87C-6E92-4775-8210-DFE90B7777D9}) (Version: 11.0.2218.53 - CyberLink Corp.)
CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.0824.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dashlane (HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\Dashlane) (Version: 4.6.3.20593 - Dashlane SAS)
DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden
Download App (HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\Download App) (Version: 1.6.6 - CBS Interactive)
DVDFab 9.2.2.8 (02/02/2016) (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
DVDFab Passkey 8.2.6.1 (15/02/2016) (HKLM-x32\...\DVDFab Passkey 8_is1) (Version: - Fengtao Software Inc.)
Elevated Installer (x32 Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden
e-tax 2015 (HKLM-x32\...\{9D19C250-CE9A-4BF0-91C8-031665D54D16}) (Version: 2.7.488 - Australian Taxation Office)
Eyefi Mobi Desktop Transfer (HKLM-x32\...\{33CE49ED-5BD4-4921-AC59-29D46938693B}) (Version: 5.12.0.131 - Eye-Fi, Inc)
ffdshow v1.1.3892 [2011-06-20] (HKLM-x32\...\ffdshow_is1) (Version: 1.1.3892.0 - )
ffdshow x64 v1.3.4531 [2014-06-28] (HKLM\...\ffdshow64_is1) (Version: 1.3.4531.0 - )
Free Hide Folder (HKLM-x32\...\Free Hide Folder) (Version: - )
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.27.822 - Digital Wave Ltd)
FUJIFILM MyFinePix Studio 1.2 (HKLM-x32\...\FinePix Genie_is1) (Version: - )
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GameFast (HKLM\...\GameFast_is1) (Version: 1.0.1.1 - ASUSTEK Computer Inc)
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{d74c733b-9216-49f5-ae3a-14bf3a3d66f5}) (Version: 4.2.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.2.0.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\{CF0B9EF4-0584-3F6B-A7E1-4CEEF4169895}) (Version: 66.19.16506 - Google, Inc.)
Google Drive (HKLM-x32\...\{3D7AB4D4-2E45-4986-BAC5-5B3CEED21FAA}) (Version: 1.32.3592.6117 - Google, Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk (remove only) (HKLM-x32\...\{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk) (Version: - )
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
Homestead SiteBuilder (HKLM-x32\...\Homestead SiteBuilder) (Version: - Homestead)
HTC BMP USB Driver (HKLM-x32\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync (HKLM-x32\...\{1F9E5C64-165D-4679-BBB3-498D216D017B}) (Version: 3.3.7 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC)
IncrediMail (x32 Version: 6.6.0.5328 - IncrediMail) Hidden
IncrediMail 2.5 (HKLM-x32\...\IncrediMail) (Version: 6.6.0.5328 - IncrediMail Ltd.)
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.2.0 - ASUS)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
Intuit SiteBuilder (HKLM-x32\...\Intuit SiteBuilder) (Version: - Intuit)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
James Cameron's AVATAR(tm): THE GAME (HKLM-x32\...\{7E19B002-4CA3-4C9F-BA92-91D101B97219}) (Version: 1.02.00 - Ubisoft)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Leawo Blu-ray Player version 1.9.2.3 (HKLM-x32\...\{CF7F52BF-DEE0-44CD-A7E1-AADD5CCECCDD}_is1) (Version: 1.9.2.3 - leawo Software)
Malwarebytes Anti-Exploit version 1.9.1.1261 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.9.1.1261 - Malwarebytes)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 50.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.0 (x86 en-US)) (Version: 50.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.0.6152 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8206 - MyHeritage.com)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 368.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.81 - NVIDIA Corporation)
NVIDIA 3D Vision PowerPack - Batman Arkham Asylum (HKLM-x32\...\NVIDIA 3D Vision PowerPack - Batman Arkham Asylum_is1) (Version: - NVIDIA Corporation)
NVIDIA 3D Vision Video Player (HKLM-x32\...\{244FB715-13C4-4C85-BEB6-6C1ABB29D8B1}) (Version: 1.7.5 - NVIDIA Corporation)
NVIDIA Apollo 11 Demo (HKLM-x32\...\Apollo 11) (Version: 1.03 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Graphics Driver 368.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.81 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Supersonic Sled demo (HKLM-x32\...\Supersonic Sled) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
Philips Songbird (HKLM-x32\...\Philips Songbird) (Version: 6.1.2265 (2265) - Koninklijke Philips Electronics N.V.)
Photo Notifier and Animation Creator (HKLM-x32\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
RAF (HKLM-x32\...\{E6B43401-E818-4961-AFED-118DD8E87642}) (Version: 1.00.0001 - FUJIFILM Corporation)
Rotation Desktop for G Series (HKLM\...\Rotation Desktop for G Series_is1) (Version: 1.1.3.2 - ASUSTEK Computer Inc)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.)
Stardock ObjectDock (HKLM-x32\...\Stardock ObjectDock) (Version: 2.10 - Stardock Software, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteamVR Performance Test (HKLM-x32\...\Steam App 323910) (Version: - Valve)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.43.0 - Synaptics Incorporated)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36244 - TeamViewer)
Telstra Broadband Assistant (HKLM-x32\...\Telstra-Telstra Broadband Assistant) (Version: 1.0.0.2 - Telstra Corporation Ltd.)
USB Game Controller (HKLM-x32\...\{D3DF3D05-DE2A-476A-A384-08FCD58D9FE7}) (Version: 2007.01.01 - )
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
War Thunder Launcher 1.0.1.522 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/11/2009 2.0.0010.00002) (HKLM\...\B81055EA372C9E3EA5000B4BD9585D992D51F1DE) (Version: 08/11/2009 2.0.0010.00002 - Google, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.0 - ASUS)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinX DVD Ripper Platinum 7.5.11 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
WinX HD Video Converter Deluxe 5.5.2 (HKLM-x32\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
Zumas Revenge (HKLM-x32\...\{0B153CAB-792B-4CA2-B2A5-AB0BBAF2FFA9}) (Version: 1.0.5.600 - PopCap Games)
用于远程连接的 Windows Live Mesh ActiveX 控件(简体中文) (HKLM-x32\...\{F992409C-9D10-4AE2-BAEB-B5409AD3785E}) (Version: 15.4.5722.2 - Microsoft Corporation)
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0349F974-C53F-42A0-B7C6-C1E051A1C2FA} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-10-25] ()
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {0BC1C31D-DC09-45F3-91E9-43CE18684FE0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {0CDAD8D1-8A18-4751-B75B-EE7027F3A492} - System32\Tasks\SafeZone scheduled Autoupdate 1450422863 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {13392A0D-6B82-45EF-94B9-789390E87A92} - System32\Tasks\{07044654-8413-49E2-8B6D-1402C6941C46} => Chrome.exe hxxp://ui.skype.com/ui/0/7.4.64.102/en/go/help.faq.installer?LastError=1638
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1FD31D27-985A-46D6-98D7-43A0A3C39E33} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {249F3049-92CC-47E0-A6B3-110B08539307} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {251AA5FE-24B3-4BDD-9AD6-389E8572B3B4} - System32\Tasks\Health-Check => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe [2016-11-03] (Innovative Solutions)
Task: {282E6B04-CCAE-4DDA-984A-047BFDC19649} - System32\Tasks\AupAvUpdate => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\updAvTask.exe [2016-06-01] ()
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2A6E172C-C11E-4B99-A42B-75B97AD0D207} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-08-30] (AVAST Software)
Task: {2B4257EA-3171-4706-B156-CEDD1512D598} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {474DA740-EDDE-4F41-902D-BBC2681C5F2C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {4D4C3CBA-549D-4A45-B171-64CA843874D9} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {55FFF6C1-F500-404D-9B72-BB481BB67454} - System32\Tasks\UninstallMonitor => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe [2016-11-03] (Innovative Solutions GRUP SRL)
Task: {56BBE9CF-81A6-4840-91A7-AF777F37B745} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {5728BAC6-102E-41E0-8AF0-DEAB03B6407B} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-03-01] (ASUSTek Computer Inc.)
Task: {5D398BA0-899C-4310-9CAE-D04145AB1924} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {67B4A700-8DB6-4F7A-A19E-79832EBACFF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {71C56698-1FD8-4E39-8B91-CCFE3E4B306B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {71E74F7B-4DAB-4B33-A451-8AF6CE381AC3} - System32\Tasks\BOTREVOLT_STARTUP_TASK_918CB0F9_1EF8_4c60_8205_7AAB364CD162 => C:\Program Files\BotRevoltFree\botrevoltfree.exe
Task: {73F72A93-B159-43E4-9638-80219DF01253} - System32\Tasks\Health-Check-deep => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe [2016-11-03] (Innovative Solutions)
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7CD159A2-BCE1-4408-A5F3-8C7DF78950C8} - System32\Tasks\{65B901F6-56BE-46D7-B4F3-9BCE1501DB53} => C:\Users\PjSue\Desktop\nzd_Avatar_TheGame_Demo.exe
Task: {7D97DAD3-EE2F-47D0-83C4-AF75DD94F46D} - System32\Tasks\{0C994082-99C5-4969-80AE-468CF40F2A79} => pcalua.exe -a "C:\Users\PjSue\Downloads\B2CAppSetup (3).exe" -d C:\Users\PjSue\Downloads
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85928573-E9BB-490D-9FE0-B7626B2D4877} - System32\Tasks\{828D3D50-C40D-44B2-B92E-F56F6FAFC76B} => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [2012-11-26] (ASUSTek Computer Inc.)
Task: {89CB7494-AF55-43F8-BA61-6392232A7C0C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {8E68BB19-988F-46D1-B003-17B1BF33BE0E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-26] (Intel Corporation)
Task: {921932E1-DDD1-4081-845A-C45B0689F6BF} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe
Task: {9658543B-3897-4261-928D-44D277252353} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {97A23270-CE9E-4C97-ABAA-8C76F867B1F8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9FBAEDD8-F82F-4259-816F-BF14D9FCAFA6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {A47C0FA5-D486-468A-BD45-148563614A07} - System32\Tasks\{4551DD98-76AA-40DD-8AFD-65889EB62982} => pcalua.exe -a C:\Users\PjSue\Desktop\nzd_Avatar_TheGame_Demo.exe -d C:\Users\PjSue\Desktop
Task: {A69895A6-F111-4394-9EEF-D1F8C75724C7} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-05-29] ()
Task: {AA7EA33F-52CB-464C-8972-28616107121E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-10] (Adobe Systems Incorporated)
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0A29273-911F-4069-9271-FF866DB5823C} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-26] (Intel Corporation)
Task: {B5260A31-A79E-46E7-A2ED-E702C5DBAFBA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {B7B658EE-7BBF-41B8-8095-B577C8BCFEFA} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-06-20] (ASUSTeK Computer Inc.)
Task: {B869B06C-5B6A-44C9-BE86-86C55B1251A2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B8D1A5A8-16E1-4270-8CB6-B0FAA07A1BBB} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-09-14] (ASUSTek Computer Inc.)
Task: {BAC4B78D-A096-4B9D-839B-DD125C03EEBB} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2013-12-11] ()
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D8257178-EDBA-4396-9BB9-BE9F32524455} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E517D877-30E5-47E3-9CBC-EF86392C8054} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F8B0EB7C-363A-403B-ABBA-F481CD8C150B} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2011-11-16] (ASUS)
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FD102E3E-7234-41CF-88EA-4014D9FC2159} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {FE1ABE7E-7AF7-47B6-90DE-54D8AB3A2361} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {FFA30135-7B45-4653-A214-4450BEF06CF2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Health-Check-deep.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: C:\WINDOWS\Tasks\Health-Check.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\PjSue\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_mijlebbfndhelmdpmllgcfadlkankhok\Quick Note.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=mijlebbfndhelmdpmllgcfadlkankhok
ShortcutWithArgument: C:\Users\PjSue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Calculator.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" --app-id=decmldkknaaemlafplkkdmmmelbdnlja
ShortcutWithArgument: C:\Users\PjSue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Pixlr Touch Up.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" --app-id=jklljiahjgoglchglekebfljnmbaleig
ShortcutWithArgument: C:\Users\PjSue\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Pj - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 3"
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 21:42 - 2016-07-16 21:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-03 03:35 - 2016-10-03 03:35 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-02 09:53 - 2016-08-01 22:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-07-13 13:56 - 2011-09-14 23:48 - 00083240 _____ () C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
2014-06-07 02:50 - 2011-03-28 06:23 - 00113840 _____ () C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe
2016-02-23 08:21 - 2016-06-15 06:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-12-30 17:56 - 2016-06-15 06:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-03-29 06:32 - 2016-06-15 06:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-23 08:21 - 2016-06-15 06:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2014-06-07 02:38 - 2012-02-22 05:29 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2016-03-29 06:32 - 2016-06-15 06:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-03-29 06:32 - 2016-06-15 06:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-03-29 06:32 - 2016-06-15 06:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-02-17 16:48 - 2016-06-15 06:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2010-07-15 09:11 - 2010-07-15 09:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2016-03-29 06:32 - 2016-06-15 06:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-03-29 06:32 - 2016-06-15 06:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2016-10-03 03:35 - 2016-10-03 03:35 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-02 11:30 - 2016-10-02 11:30 - 00959168 _____ () C:\Users\PjSue\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-10-03 03:35 - 2016-10-03 03:35 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-09 09:06 - 2016-11-02 20:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-09 09:05 - 2016-11-02 20:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 09:06 - 2016-11-02 20:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 09:06 - 2016-11-02 20:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 09:06 - 2016-11-02 20:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-09 09:06 - 2016-11-02 20:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 09:06 - 2016-11-02 20:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-19 04:14 - 2016-11-19 04:15 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-19 04:14 - 2016-11-19 04:15 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-19 04:14 - 2016-11-19 04:15 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-08-19 07:35 - 2016-11-10 23:52 - 00536960 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-11-17 04:30 - 2016-11-17 04:32 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1111.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-11-17 04:30 - 2016-11-17 04:32 - 20433920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1111.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-04 07:06 - 2016-06-04 07:07 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1111.10000.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-11-17 04:30 - 2016-11-17 04:32 - 01047552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1111.10000.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-11-17 04:30 - 2016-11-17 04:32 - 00353792 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1111.10000.0_x64__8wekyb3d8bbwe\Photos.Inking.dll
2016-08-28 12:14 - 2016-08-28 12:16 - 00117920 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16092.10311.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL
2016-11-15 09:21 - 2016-11-09 07:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-15 09:21 - 2016-11-09 07:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-18 04:17 - 2016-11-18 04:24 - 00743424 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
2016-08-30 08:53 - 2016-08-30 08:53 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-11-23 06:58 - 2016-11-23 06:58 - 03129808 _____ () C:\Program Files\AVAST Software\Avast\defs\16112201\algo.dll
2016-08-30 08:53 - 2016-08-30 08:53 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2014-07-13 13:57 - 2011-08-26 14:57 - 00260096 _____ () C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\sqlite3.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00030720 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2015-07-14 15:36 - 2015-07-14 15:36 - 00059392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00035864 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2015-07-14 15:36 - 2015-07-14 15:36 - 00079888 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2015-07-14 15:37 - 2015-07-14 15:37 - 00129016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2015-07-14 15:39 - 2015-07-14 15:39 - 00223240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2016-10-25 11:36 - 2016-10-25 11:36 - 00073216 _____ () C:\Program Files (x86)\Garmin\Device Interaction Service\FixBootSector.dll
2016-08-29 14:43 - 2016-08-24 16:53 - 00114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-08-29 14:43 - 2016-08-24 16:56 - 00108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-08-29 14:43 - 2016-08-24 16:56 - 00024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-08-29 14:43 - 2016-08-24 16:56 - 00048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-08-06 07:12 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-08-06 07:12 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-10-26 08:55 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-10-26 08:55 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2016-02-14 14:23 - 2014-03-07 09:23 - 00565827 _____ () C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\sqlite3.dll
2016-06-30 14:47 - 2016-11-03 11:52 - 00010792 _____ () C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\memmgrset.dll
2014-06-07 02:38 - 2012-02-22 05:09 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-03-18 05:59 - 2014-03-18 05:59 - 00091544 _____ () C:\Program Files (x86)\Stardock\ObjectDock\Docklets\Calendar\Calendar.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 00346496 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 00441216 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 00471424 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 63181696 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 00292736 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 06322048 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 07602560 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 13827456 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 02285440 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.3.20593.dll
2016-11-10 23:52 - 2016-11-10 23:52 - 00334208 _____ () C:\Users\PjSue\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.3.20593.dll
2016-11-18 04:17 - 2016-11-18 04:25 - 00013312 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\WP8MSVCCommon.dll
2016-11-18 04:17 - 2016-11-18 04:25 - 00382464 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\WP8MSVCBridge.dll
2016-11-18 04:17 - 2016-11-18 04:24 - 00079872 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\WinPhoneBridge_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:23 - 00992768 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\System_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 00641536 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\CrossPortability_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:23 - 00107520 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\pthreadVC_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:23 - 00210432 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\system_malloc_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:23 - 57798432 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 00152576 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\exif_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 00702464 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\ffmpeg_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:25 - 00153088 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\z_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:23 - 00081422 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\unwind_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 01111040 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\c++_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:23 - 00411136 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\SystemResources_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:25 - 01530880 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\WRTBridge_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:24 - 00163840 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\WinMediaFoundation_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 00126976 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\EGL_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 01155072 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\GLESv2_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 175901488 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\App.dll
2016-11-18 04:17 - 2016-11-18 04:24 - 27973398 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\WebCore_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 01085440 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\iconv_osmeta.dll
2016-11-18 04:17 - 2016-11-18 04:21 - 00397312 _____ () C:\Program Files\WindowsApps\Facebook.Facebook_71.671.11731.0_x86__8xx8rvfyw5nnt\OpenAL_osmeta.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\04803893.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\04803893.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMR501 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMR501.SYS => ""="Driver"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 12:34 - 2009-06-11 07:00 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\PE_C_DEFAULTAPPPOOL\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-649218570-585308798-3976316672-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PjSue\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupfolder: C:^Users^PjSue^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Download App.lnk => C:\Windows\pss\Download App.lnk.Startup
MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "HTC Sync Loader"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "YouCam Service7"
HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\StartupApproved\StartupFolder: => "OneNote 2010 Screen Clipper and Launcher.lnk"
HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\StartupApproved\Run: => "DashlanePlugin"
HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\StartupApproved\Run: => "GarminExpressTrayApp"
HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\StartupApproved\Run: => "Sidebar"
HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\StartupApproved\Run: => "Spybot-S&D Cleaning"
HKU\S-1-5-21-649218570-585308798-3976316672-1001\...\StartupApproved\Run: => "GoogleDriveSync"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{C41EF73F-4CD6-4437-A4E1-2D0B9F925019}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{36B34017-10D3-449E-9758-3EFDA041E43A}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{1DB8B516-B7F4-4DA0-B6D5-9B6D280B547A}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{9ABFBFD0-FBBC-4871-8D37-EF68EE9369C6}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{3DE854EC-9AC6-4049-BFEB-8A24D58DD553}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [{04E6B6BD-5B92-4B2E-A111-919A98AD9F51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [UDP Query User{4ECEBE5D-0939-4D3F-9FE4-7C0C836F7D2B}C:\users\pjsue\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pjsue\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{50D54331-67FA-4094-A1D7-63173C73FC5B}C:\users\pjsue\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pjsue\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{2A1F263A-F14E-4A62-87ED-86FBA837268B}C:\users\pjsue\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\pjsue\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{2B773058-ED51-4EEE-9175-217D150D3617}C:\users\pjsue\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\pjsue\appdata\local\akamai\netsession_win.exe
FirewallRules: [{31A1E63C-37AC-4E67-B183-37A5E88CC141}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
FirewallRules: [{CBB164DC-520E-4F53-BFFC-41D49961EF08}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
FirewallRules: [{DA0354C7-8D88-403C-A657-2196EC561C48}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B89BFACC-3AFA-4E00-B217-D601E1A35654}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8E282CCC-98FD-4F74-BE54-22001FCABB11}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{3A3F98EF-042E-4F15-B711-14187BDEE32F}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
FirewallRules: [{D729690C-9B2E-455A-A7CE-458245F67A95}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
FirewallRules: [{B707C4DC-B534-4369-8F6E-440CEB4985A4}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{155C7B04-F343-481E-BD30-4D42EF274F29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0A2FE0B0-FE3B-4DB3-816D-3ACF4982D7B1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E743D6EC-33B0-464C-8C71-623F5FC02C02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{01175038-361D-49C0-9D2F-D37559FF9A4C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{2495B37A-2C8C-4C02-8B1D-04B3F9E17EB3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{494E815C-3193-4BB9-B2B2-BFF967915FDE}] => (Allow) C:\Program Files (x86)\Ubisoft\James Cameron's AVATAR - THE GAME\bin\AvatarLauncher.exe
FirewallRules: [{FAD8BF29-1269-43A2-BF09-EFE548E7A79D}] => (Allow) C:\Program Files (x86)\Ubisoft\James Cameron's AVATAR - THE GAME\bin\AvatarLauncher.exe
FirewallRules: [{30A5C969-7D46-4F94-AEB8-0DD422269E2B}] => (Allow) C:\Program Files (x86)\Ubisoft\James Cameron's AVATAR - THE GAME\bin\Avatar.exe
FirewallRules: [{BB89648D-FAE1-4DA5-9A68-E84D1393FCD7}] => (Allow) C:\Program Files (x86)\Ubisoft\James Cameron's AVATAR - THE GAME\bin\Avatar.exe
FirewallRules: [{AF68B1FC-FAA1-4ED6-9457-B5EAAB466D48}] => (Allow) C:\Program Files (x86)\Origin Games\Zuma's Revenge\ZumasRevenge.exe
FirewallRules: [{D0F74856-E901-4016-895D-7D4745DF8F73}] => (Allow) C:\Program Files (x86)\Origin Games\Zuma's Revenge\ZumasRevenge.exe
FirewallRules: [{4721A28D-EC0A-450C-81B3-F6906971B0BA}] => (Allow) C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{C38BA3C8-B419-4886-BEB3-383D389A18AF}] => (Allow) C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{96BFF1FD-4115-4B89-823F-15833891C524}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5382BC6E-9B76-4C89-957A-A347095411A7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{10BE39C3-D905-438E-B67D-2C2065986DB9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B3ABEC66-25F7-4848-997A-C244E6C4E6CC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4CD2D970-DA7C-4E8D-88D5-D48B43109195}] => (Allow) C:\Program Files (x86)\Eye-Fi\EyeFiActivation.exe
FirewallRules: [{3E15FCC3-E18D-4BAF-B62C-D3149044B758}] => (Allow) C:\Program Files (x86)\Eye-Fi\EyeFiActivation.exe
FirewallRules: [{43EE8EF2-333F-4DB1-B68F-31EA853822FE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A0FFA543-D295-4908-9C24-8EF3DF458231}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{C3B4FD35-93A9-409C-A181-1B1DC36A9D3D}C:\warthunder\launcher.exe] => (Block) C:\warthunder\launcher.exe
FirewallRules: [TCP Query User{9EB69385-6440-4B12-A4DB-9EFAFFBEEE4E}C:\warthunder\launcher.exe] => (Block) C:\warthunder\launcher.exe
FirewallRules: [UDP Query User{D17FA033-F465-4E2E-B9F5-B1B559EE5E17}C:\warthunder\aces.exe] => (Allow) C:\warthunder\aces.exe
FirewallRules: [TCP Query User{53CC592B-5419-4836-9EF6-58A3A35E6DBF}C:\warthunder\aces.exe] => (Allow) C:\warthunder\aces.exe
FirewallRules: [{5103382C-D2A6-4A0E-92D3-AA21C9A9DA9E}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{0CF15B6E-362D-42E9-AF31-DA158CD5BB2A}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{E6FC5B34-293B-4373-9D59-7335DD018368}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{D24D1F4E-6195-4FEB-908F-A32E4CEC9AA9}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{991F3469-3D6C-48D4-80DD-175C12117F06}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BEF5E7F9-A221-476A-A157-4A2123A2848D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{7105D83E-D1CE-4AC8-869F-EBA65969B57F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{277743C2-EBCA-4149-AFA1-708509A43C62}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{F9AF2FD8-482D-4AC3-9513-B034957B1E2F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{A10357A8-7865-42B9-A4EA-3056C5D0F8A6}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1E1EAB8F-D73F-439D-98AA-0131088A7E86}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{871FB14F-4A51-42C4-A4AE-D966E6235101}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{26202750-7497-4E4D-B8AF-161595F22DD2}] => (Allow) C:\Program Files (x86)\Philips\Philips Songbird\Philips-Songbird.exe
FirewallRules: [{5BC1ACD0-A3C0-4C3E-8D01-7B2A34B829B2}] => (Allow) C:\Program Files (x86)\Philips\Philips Songbird\Philips-Songbird.exe
FirewallRules: [{8FE60985-F127-4020-8831-9D14D016E847}] => (Allow) C:\Program Files (x86)\Philips\Philips Songbird\Philips-Songbird.exe
FirewallRules: [{9C61811D-0D75-4CFC-8E61-C44487A11D72}] => (Allow) C:\Program Files (x86)\Philips\Philips Songbird\Philips-Songbird.exe
FirewallRules: [{8A271A3B-0E1F-46D1-8DFD-FA58E7083A5F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{06A4F1F3-A24F-4355-893C-8159A3DF3EC1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F9B6BDE1-D1AC-422E-9A58-1EDA1C100B95}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{734DB897-2EBC-47ED-A4ED-F8EC4B057DD5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{793E044F-C114-49F9-B10D-44A4C723DDA1}] => (Allow) C:\Users\PjSue\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{AAC028BB-2DC1-4414-8101-ADB650C1EE26}] => (Allow) C:\Users\PjSue\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{A576AC58-9D1C-4D3F-A198-14EB093D689D}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{309AE277-27DD-4550-B888-0D3307637D78}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{D9E5D18F-71E4-4D75-8806-85281ED2421F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{EE5B9511-2EA7-4CB1-842D-1A20BCA979CF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{29468B25-B9C2-4AE1-B4F0-FFEFDD48F97F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{44A94B10-F5D5-4969-99CA-8D975ABD3AA4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3F0ABFD6-5A61-4BBE-8AB1-2E5541F6A9B7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A1809A19-DB6A-41B5-B573-82224E54C529}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\Movie\MovieModule.exe
FirewallRules: [{16219ED4-30C3-41EA-A19A-72808ED33722}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
FirewallRules: [{6A5A0031-63EF-40FA-B6D5-6EBF77BF0DDF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
FirewallRules: [{CBAE941D-3E81-459E-8F00-442C232FAF79}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11.exe
FirewallRules: [{A63D13D2-6668-4807-B0F4-BF6D47697AF4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD11\Movie\PowerDVD Cinema\PowerDVDCinema11.exe
FirewallRules: [{C133311E-7788-4DAA-85B6-A751223B174A}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{F08F3B3F-506B-482C-92BF-14A517A2713D}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{75445921-F43D-4C9F-BA92-9850B532672A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{0F9948C9-95C0-471B-A0CA-9E1FB493D93B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{5FAEA3D0-04C4-48D8-B56A-804C62FC48FA}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{739D8E39-AC66-4445-A1F3-2F2365EF372A}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{12B16596-73B6-4E60-B731-1DD065A9719C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{D6FE0EBA-88A3-4C70-9983-045FA617FF33}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{3702CCD1-6B24-47C3-B746-E9B7B12D39F8}] => (Allow) LPort=1900
FirewallRules: [{5A91AC63-3975-4121-8662-306E9525B30E}] => (Allow) LPort=2869
FirewallRules: [{C0590ADF-92EC-43D3-9E17-09DBE85F6C57}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{49868BF0-D3D6-4970-91EB-44579779DCDF}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
FirewallRules: [{7A97418A-E174-4B18-A490-D704C3CB3ADC}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
FirewallRules: [{94366B90-A943-4C73-B429-AD2070EA6575}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
FirewallRules: [{2DBF4837-2596-4CBC-A83F-23A74D76E1CD}] => (Allow) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
FirewallRules: [{F538A120-6245-4847-9A74-28153B9BACCB}] => (Allow) C:\Program Files (x86)\EyeFiReceiver.exe
FirewallRules: [{35925D60-1A08-4232-9D49-E03D55D01C1A}] => (Allow) C:\Program Files (x86)\EyeFiReceiver.exe
FirewallRules: [TCP Query User{DBFA4F0A-9701-4A2B-87C3-0B6AF3FDAA25}C:\users\pjsue\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\pjsue\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [UDP Query User{B68E4E47-6D95-4CC9-913A-859A0BBB5143}C:\users\pjsue\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\pjsue\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [{75843653-672A-42B0-ABFF-E08556314C1B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Restore Points =========================
04-11-2016 18:19:17 Windows Update
09-11-2016 09:42:47 Windows Update
16-11-2016 17:49:13 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/23/2016 10:53:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 10.0.14393.447, time stamp: 0x5819bde0
Faulting module name: windows.immersiveshell.serviceprovider.dll, version: 10.0.14393.0, time stamp: 0x57899873
Exception code: 0x80270233
Fault offset: 0x0000000000033c25
Faulting process id: 0x143c
Faulting application start time: 0x01d24523cce34b03
Faulting application path: C:\WINDOWS\Explorer.EXE
Faulting module path: C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
Report Id: 68efb713-8bd8-42fb-96d9-b3b8a71826d8
Faulting package full name:
Faulting package-relative application ID:
Error: (11/23/2016 10:48:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: startup.exe, version: 0.0.0.0, time stamp: 0x4ac4893c
Faulting module name: MSVCR80.dll, version: 8.0.50727.9268, time stamp: 0x573d297f
Exception code: 0xc0000005
Fault offset: 0x000149d1
Faulting process id: 0x8d0
Faulting application start time: 0x01d245234121ea87
Faulting application path: C:\Users\PjSue\Desktop\VirusBotHelp\DE-Cleaner powered by Kaspersky\de_cleaner_kaspersky\startup.exe
Faulting module path: C:\WINDOWS\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.9268_none_d08e1538442a243e\MSVCR80.dll
Report Id: 7e462ec7-098d-449b-b824-b17b85df1645
Faulting package full name:
Faulting package-relative application ID:
Error: (11/23/2016 10:44:48 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Failed to create restore point (Process = C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe" -Embedding; Description = Configured Microsoft Office Home and Student 2010; Error = 0x8007043c).
Error: (11/23/2016 10:25:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvStreamNetworkService.exe, version: 7.1.2084.9592, time stamp: 0x57605ac0
Faulting module name: MessageBus.dll, version: 0.0.0.0, time stamp: 0x5760534f
Exception code: 0xc0000005
Fault offset: 0x0000000000010f73
Faulting process id: 0x1a40
Faulting application start time: 0x01d2451ffd69a647
Faulting application path: C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
Faulting module path: C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
Report Id: 896c3549-5dd4-4189-90df-b249b8e0791c
Faulting package full name:
Faulting package-relative application ID:
Error: (11/23/2016 09:18:41 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PJANDSUSIEQ)
Description: Activation of app Microsoft.Getstarted_4.1.15.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (11/23/2016 09:15:16 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PJANDSUSIEQ)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
Error: (11/23/2016 07:00:36 AM) (Source: MsiInstaller) (EventID: 1041) (User: NT AUTHORITY)
Description: Failed to begin a Windows Installer transaction ASU_MSI_TRAN. Error 1603 occurred while beginning the transaction.
Error: (11/23/2016 06:17:42 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "C:\Windows\System32\sdnclean64.exe".Error in manifest or policy file "C:\Windows\System32\sdnclean64.exe" on line 2.
The manifest file root element must be assembly.
Error: (11/23/2016 06:17:42 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Spybot - Search & Destroy 2\Tools.dll".Error in manifest or policy file "C:\Program Files (x86)\Spybot - Search & Destroy 2\Tools.dll" on line 2.
The manifest file root element must be assembly.
Error: (11/23/2016 06:17:42 AM) (Source: SideBySide) (EventID: 9) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWinLogon.dll".Error in manifest or policy file "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWinLogon.dll" on line 2.
The manifest file root element must be assembly.
System errors:
=============
Error: (11/23/2016 10:51:59 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (11/23/2016 10:51:59 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (11/23/2016 10:51:52 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (11/23/2016 10:50:45 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Error: (11/23/2016 10:50:41 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The blinksvc service depends on the BlinkRM service which failed to start because of the following error:
The system cannot find the file specified.
Error: (11/23/2016 10:50:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The BlinkRM service failed to start due to the following error:
The system cannot find the file specified.
Error: (11/23/2016 10:49:18 AM) (Source: DCOM) (EventID: 10005) (User: PJANDSUSIEQ)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (11/23/2016 10:49:18 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1084" attempting to start the service dps with arguments "Unavailable" in order to run the server:
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Error: (11/23/2016 10:49:18 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "1084" attempting to start the service dps with arguments "Unavailable" in order to run the server:
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Error: (11/23/2016 10:49:11 AM) (Source: DCOM) (EventID: 10005) (User: PJANDSUSIEQ)
Description: DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "Unavailable" in order to run the server:
{DD522ACC-F821-461A-A407-50B198B896DC}
CodeIntegrity:
===================================
Date: 2016-11-23 12:04:52.090
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 12:04:52.086
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 12:04:52.082
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 12:04:52.075
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 09:37:18.903
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 09:37:18.899
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 09:37:18.896
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 09:37:18.892
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 09:37:18.888
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-11-23 09:37:18.885
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MicrosoftAccountCloudAP(10270).dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Percentage of memory in use: 36%
Total physical RAM: 16343.91 MB
Available physical RAM: 10301.32 MB
Total Virtual: 24517.91 MB
Available Virtual: 17565.25 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:672.85 GB) (Free:355.61 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:468.62 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: C1C3AA4D)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: BBC58B91)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Tags for this Thread
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
