SFC stopped at 15% now at 18%...

[dorcom]

Sorry didn't read all!
Pasted here is: FRST.TXT
----------------------------
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13.02.2019
Ran by Robert (administrator) on MAIN (13-02-2019 12:41:46)
Running from C:\Users\Robert\Desktop
Loaded Profiles: Robert (Available Profiles: Robert & Administrator)
Platform: Windows 10 Pro Version 1809 17763.253 (X64) Language: English (United States)
Default browser: "C:\Program Files\Waterfox\waterfox.exe" -osint -url "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Backblaze\bzserv.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
() C:\Program Files (x86)\NordVPN\nordvpn-service.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Windows\System32\snmp.exe
() C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(EVGA Corp.) C:\Program Files (x86)\EVGA\Precision XOC\PrecisionX_x64.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
(Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe
(Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(EVGA Corp.) C:\Program Files (x86)\EVGA\Precision XOC\PrecisionXServer.exe
(EVGA Corp.) C:\Program Files (x86)\EVGA\Precision XOC\PXSW10_x64.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(GP Software) C:\Program Files\Directory Opus\dopusrt.exe
() C:\Program Files (x86)\Backblaze\bzbui.exe
(NordVPN) C:\Program Files (x86)\NordVPN\NordVPN.exe
(Samsung Electronics Co. Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\AudioSwitch\AudioSwitch.exe
() C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(XRayz Software) C:\Program Files\ClipCache\clipc.exe
(Code Sector) C:\Program Files (x86)\Direct Folders\df.exe
(Code Sector Inc.) C:\Program Files (x86)\Direct Folders\df64.exe
(Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\natspeak.exe
(Neuber Software - www.neuber.com) C:\Program Files (x86)\Security Task Manager\SpyProtector.exe
(Carthago Software) C:\Program Files (x86)\MemInfo\meminfo.exe
() C:\Program Files (x86)\CyberPower PowerPanel Personal\PowerPanel Personal.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Sync.com Inc.) C:\Users\Robert\AppData\Local\Programs\Sync\sync-taskbar.exe
() C:\Users\Robert\AppData\Local\Programs\Sync\sync-worker.exe
() C:\Users\Robert\AppData\Local\Programs\Sync\sync-worker.exe
() C:\Users\Robert\AppData\Local\Programs\Sync\sync-worker.exe
(NTWind Software) C:\Program Files\WindowSpace\wspace64.exe
(NTWind Software) C:\Program Files\WindowSpace\wspace32.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\NaturallySpeaking15\x64\dgnuiasvr_x64.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\NaturallySpeaking15\dragonbar.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Program Files (x86)\CyberPower PowerPanel Personal\ppped.exe
() C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Safer-Networking Ltd\Spybot Anti-Beacon\Spybot3AntiBeacon.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(WordWeb Software) C:\Program Files (x86)\WordWeb\wweb32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
() C:\Program Files\Everything\Everything.exe
(Ipswitch, Inc. 83 Hartwell Avenue Lexington, MA 02421) C:\Program Files (x86)\Ipswitch\WS_FTP 12\WsftpCOMHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [177928 2019-01-03] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [IAStorIcon] => c:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-06-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279520 2019-01-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-07-06] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Fences] => C:\Program Files (x86)\Stardock\Fences\Fences.exe [4854200 2018-05-25] (Stardock Corporation -> Stardock Corporation) [File not signed]
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [588360 2017-06-22] (Acronis International GmbH -> )
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5118656 2017-06-22] (Acronis International GmbH -> )
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe [137464 2018-07-30] (Intel(R) Driver & Support Assistant -> Intel)
HKLM-x32\...\Run: [Spy Protector] => C:\Program Files (x86)\Security Task Manager\SpyProtector.exe [145280 2018-07-12] (A. & M. Neuber Software -> Neuber Software - www.neuber.com)
HKLM-x32\...\Run: [WordWeb] => C:\Program Files (x86)\WordWeb\wweb32.exe [81120 2016-02-12] (WordWeb Software -> WordWeb Software)
HKLM-x32\...\Run: [CyberPower] => C:\Program Files (x86)\CyberPower PowerPanel Personal\PowerPanel Personal.exe [123392 2018-07-17] () [File not signed]
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [125872 2018-11-21] (VMware, Inc. -> VMware, Inc.)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [4810224 2018-12-19] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] C:\Windows\System32\0 [0 2018-09-19] (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> )
HKLM\...\Policies\Explorer: [NoRecentDocsHistory] C:\Windows\System32\0 [0 2018-09-19] (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> )
HKLM\...\Policies\Explorer: [NoRecentDocsNetHood] C:\Windows\System32\0 [0 2018-09-19] (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> )
HKLM\...\Policies\Explorer: [NoChangeStartMenu] C:\Windows\System32\0 [0 2018-09-19] (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> )
HKLM\...\Policies\Explorer: [NoControlPanel] C:\Windows\System32\0 [0 2018-09-19] (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> )
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-14] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-14] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Run: [Directory Opus Desktop Dblclk] => C:\Program Files\Directory Opus\dopusrt.exe [694128 2017-06-09] (GP Software -> GP Software)
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Run: [Backblaze] => C:\Program Files (x86)\Backblaze\bzbui.exe [1061728 2019-02-07] (Backblaze, Inc -> )
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Run: [NordVPN] => C:\Program Files (x86)\NordVPN\NordVPN.exe [2222032 2018-12-04] (TEFINCOM S.A. -> NordVPN)
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Run: [Fences] => c:\program files (x86)\stardock\fences\Fences.exe [4854200 2018-05-25] (Stardock Corporation -> Stardock Corporation)
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Run: [HomeAlarm] => C:\Program Files (x86)\Chameleon Clock\ChamClock.exe [709632 2007-12-11] (Softshape Development)
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [HideSCANetwork] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [HideSCAVolume] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [DisableThumbnails] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoFileMenu] 0
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoToolbarCustomize] 1
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [Backblaze] => C:\Program Files (x86)\Backblaze\bzbui.exe [1061728 2019-02-07] (Backblaze, Inc -> )
HKLM\...\Drivers32-x32: [vidc.tscc] => C:\Windows\SysWOW64\tsccvid.dll [102400 2005-06-15] (TechSmith Corporation)
HKLM\...\Drivers32-x32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.96\Installer\chrmstp.exe [2019-02-07] (Google LLC -> Google Inc.)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
ShellExecuteHooks: Directory Opus Shell Execute Hook - {3CF9ECE0-1A9F-11D2-8C73-00C06C2005DE} - C:\Program Files\Directory Opus\dopuslib.dll [765808 2017-06-09] (GP Software -> GP Software)
ShellExecuteHooks-x32: Directory Opus Shell Execute Hook - {EE761688-C137-4b04-8FAB-3C9CDF0886F0} - C:\Program Files\Directory Opus\dopuslib32.dll [381296 2017-06-09] (GP Software -> GP Software)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AudioSwitch.lnk [2018-10-16]
ShortcutTarget: AudioSwitch.lnk -> C:\Program Files (x86)\AudioSwitch\AudioSwitch.exe ()
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ClipCache Pro.lnk [2019-01-10]
ShortcutTarget: ClipCache Pro.lnk -> C:\Program Files\ClipCache\clipc.exe (XRayz Software)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Direct Folders.lnk [2018-10-18]
ShortcutTarget: Direct Folders.lnk -> C:\Program Files (x86)\Direct Folders\df.exe (Code Sector)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dragon NaturallySpeaking.lnk [2018-11-04]
ShortcutTarget: Dragon NaturallySpeaking.lnk -> C:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\natspeak.exe (Nuance Communications, Inc.)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\meminfo.lnk [2018-10-16]
ShortcutTarget: meminfo.lnk -> C:\Program Files (x86)\MemInfo\meminfo.exe (Carthago Software)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\schedhlp.lnk [2018-10-16]
ShortcutTarget: schedhlp.lnk -> C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe ()
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar551.lnk [2019-02-12]
ShortcutTarget: Sidebar551.lnk -> C:\Program Files (x86)\Windows Sidebar\sidebar.exe (Microsoft Corporation)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sync.lnk [2019-01-12]
ShortcutTarget: Sync.lnk -> C:\Users\Robert\AppData\Local\Programs\Sync\sync-taskbar.exe (Sync.com Inc.)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wspace64.lnk [2018-10-16]
ShortcutTarget: wspace64.lnk -> C:\Program Files\WindowSpace\wspace64.exe (NTWind Software)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\.DEFAULT\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-2536635842-542287166-2959069790-1002\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{088debab-fa3f-4522-be18-eed74e83a81a}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{088debab-fa3f-4522-be18-eed74e83a81a}: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{2643f73e-6fcf-49ed-b1c0-243ab565a6d6}: [DhcpNameServer] 208.67.222.222 208.67.220.220
Tcpip\..\Interfaces\{65450657-b491-4d43-ac56-02632efc959c}: [DhcpNameServer] 208.67.222.222 208.67.220.220

Internet Explorer:
==================
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: No Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> M:\__NEW SYSTEM\OldNewExplorer\OldNewExplorer64.dll [2017-08-16] (www.startisback.com)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
BHO: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> c:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\dgnriaie_x64.dll [2018-01-27] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-30] ()
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-30] ()
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> No File
BHO-x32: No Name -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> M:\__NEW SYSTEM\OldNewExplorer\OldNewExplorer32.dll [2017-08-16] (www.startisback.com)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
BHO-x32: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> c:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\dgnriaie.dll [2018-01-27] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-30] ()
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-30] ()
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> No File
Toolbar: HKLM - TextAloud Toolbar - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - C:\Program Files (x86)\TextAloud\TAForIE64.dll [2017-07-24] (NEXTUP TECHNOLOGIES, LLC -> NextUp.com)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - TextAloud Toolbar - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - C:\Program Files (x86)\TextAloud\TAForIE.dll [2017-07-24] (NEXTUP TECHNOLOGIES, LLC -> NextUp.com)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
IE Session Restore: HKU\S-1-5-21-2536635842-542287166-2959069790-1002 -> is enabled.
Handler-x32: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} - C:\Program Files (x86)\Intuit\QuickBooks 2014\HelpAsyncPluggableProtocol.dll [2014-12-10] (Intuit, Inc. -> Intuit, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\SysWOW64\mscoree.dll [2018-09-14] (Microsoft Windows -> Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2019-01-16]
Edge Extension: (Ghostery – Privacy Ad Blocker) -> EdgeExtension_GhosteryGhostery_kzkqe0pn505dg => C:\Program Files\WindowsApps\Ghostery.Ghostery_8.1.0.0_neutral__kzkqe0pn505dg [2019-01-16]

FireFox:
========
FF DefaultProfile: m2jh29d5.default
FF DefaultProfile: 01gmxgwq.Normal
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Thinstall\RegCleanPro\%AppData%\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746 [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Thinstall\RegCleanPro\%AppData%\Mozilla\Firefox\Profiles\01gmxgwq.Normal [not found] <==== ATTENTION
FF DefaultProfile: i4a2hsup.Default-1504416014746
FF DefaultProfile: qnjlgicb.default
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default [2019-02-13]
FF Homepage: Waterfox\Profiles\m2jh29d5.default -> hxxps://www.startpage.com/
FF NewTab: Waterfox\Profiles\m2jh29d5.default -> www.startpage.com
FF Session Restore: Waterfox\Profiles\m2jh29d5.default -> is enabled.
FF Extension: (Amazon Assistant for Firefox) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\abb@amazon.com.xpi [2018-05-09]
FF Extension: (AIO Search) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\ASToolbar@aiosearch.com.xpi [2018-01-22]
FF Extension: (New Add-on Bar) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\ausaddonbar@teo.pl.xpi [2018-11-04] [Legacy]
FF Extension: (Bookmarks Favicon Images) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\BookmarksFaviconImages@LarrysComputer.xpi [2018-11-03] [Legacy]
FF Extension: (Bookmarks Folder Images) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\BookmarksFolderImages@LarrysComputer.xpi [2018-10-06] [Legacy]
FF Extension: (Bookmarks Title Styles) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\BookmarksTitleStyles@LarrysComputer.xpi [2018-11-03] [Legacy]
FF Extension: (Classic Reload-Stop-Go Button) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\crsg@ArisT2_Noia4dev.xpi [2018-11-03] [Legacy]
FF Extension: (Classic Toolbar Buttons) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\CSTBB@NArisT2_Noia4dev.xpi [2018-07-06] [Legacy]
FF Extension: (Dragon Professional Web Extension) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\dgnria_pro.firefox@nuance.com.xpi [2018-10-08]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\firefox@ghostery.com.xpi [2019-02-01]
FF Extension: (SimilarWeb - Traffic Rank & Website Analysis) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\FirefoxAddon@similarWeb.com.xpi [2018-11-03]
FF Extension: (Webmail Ad Blocker) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\gmailnoads@mywebber.com.xpi [2019-01-03]
FF Extension: (Who stole my pictures?) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\images@wink.su.xpi [2018-04-02]
FF Extension: (PriceBlink Coupons and Price Comparison) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\info@priceblink.com.xpi [2019-01-25]
FF Extension: (Terms of Service; Didn’t Read) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\jid0-3GUEt1r69sQNSrca5p8kx9Ezc3U@jetpack.xpi [2018-08-20]
FF Extension: (Visited) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\jid0-xGZYdxpAkROWMUMfWKINyrXigBA@jetpack.xpi [2018-01-27] [Legacy]
FF Extension: (YouTube™ Flash® Player) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2018-10-03]
FF Extension: (Media Converter and Muxer) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\jid1-kps5PrGBNtzSLQ@jetpack.xpi [2018-02-12] [Legacy]
FF Extension: (Privacy Badger) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2018-09-20]
FF Extension: (Free Memory) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\jid1-n85lxPv1NAWVTQ@jetpack.xpi [2018-11-17] [Legacy]
FF Extension: (Lightweight Themes Manager) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\lwthemes-manager@loucypher.xpi [2018-10-03] [Legacy]
FF Extension: (Memory Restart) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\memoryrestart@teamextension.com.xpi [2018-11-17] [Legacy]
FF Extension: (Menu Icons Plus) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\menuiconsplus@codedawn.com.xpi [2018-05-07] [Legacy]
FF Extension: (Saved Password Editor) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\savedpasswordeditor@daniel.dawson.xpi [2018-11-03] [Legacy]
FF Extension: (Tab Session Manager) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\Tab-Session-Manager@sienori.xpi [2019-02-08]
FF Extension: (The Addon Bar (restored)) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\the-addon-bar@GeekInTraining-GiT.xpi [2018-11-03] [Legacy]
FF Extension: (TinEye Reverse Image Search) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\tineye@ideeinc.com.xpi [2018-10-04]
FF Extension: (TrackMeNot) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\trackmenot@mrl.nyu.edu.xpi [2018-11-03]
FF Extension: (uBlock Origin) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\uBlock0@raymondhill.net.xpi [2019-02-05]
FF Extension: (uMatrix) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\uMatrix@raymondhill.net.xpi [2019-01-03]
FF Extension: (Vertical Toolbar) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\verticaltoolbar@xuldev.org.xpi [2018-11-03] [Legacy]
FF Extension: (Session Manager) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2018-11-03] [Legacy]
FF Extension: (Multirow Bookmarks Toolbar Plus) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{4c7097f7-08f2-4ef2-9b9f-f95fa4cbb064}.xpi [2018-05-19] [Legacy]
FF Extension: (No Coin - Block miners on the web!) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{5657c026-efc3-4860-b43b-16e4eaa8a9aa}.xpi [2019-01-24]
FF Extension: (Google™ Shortcuts - MSG_cj_i18n_01720) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{5C46D283-ABDE-4dce-B83C-08881401921C}.xpi [2019-02-12]
FF Extension: (Download Status Bar) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2018-09-08] [Legacy]
FF Extension: (Bulk Media Downloader) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{72b2e02b-3a71-4895-886c-fd12ebe36ba3}.xpi [2018-02-12]
FF Extension: (blockcoinm) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{74b0af75-8791-44e2-95a6-7f0ab94143ec}.xpi [2019-01-26]
FF Extension: (Download Statusbar) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{76faaba6-3aa1-47a4-bf40-90aa2505e79c}.xpi [2019-01-03]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2019-01-26]
FF Extension: (Video DownloadHelper) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-01-22]
FF Extension: (In My Pocket) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{cd7e22de-2e34-40f0-aeff-cec824cbccac}.xpi [2019-01-03]
FF Extension: (OFFMP4 - Best Video Download Helper) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{cf9bb404-04a5-4329-8764-aae71359f0f8}.xpi [2019-01-22]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-01-23]
FF Extension: (Tab Mix Plus) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2018-09-05] [Legacy]
FF Extension: (SnapTube MP3 for YouTube Music Download) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{e4b3d1b4-3bb2-4df7-ad1b-77534bac5780}.xpi [2018-12-01]
FF Extension: (YouTube Flash Video Player) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2018-05-06]
FF Extension: (Theme Font & Size Changer) - C:\Users\Robert\AppData\Roaming\Waterfox\Profiles\m2jh29d5.default\Extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi [2018-11-03]
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746 [2019-02-11]
FF user.js: detected! => C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\user.js [2018-11-03]
FF Homepage: Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746 -> hxxps://www.startpage.com/
FF NewTab: Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746 -> www.startpage.com
FF NetworkProxy: Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746 -> type", 0
FF Session Restore: Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746 -> is enabled.
FF Extension: (Amazon Assistant for Firefox) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\abb@amazon.com.xpi [2018-05-09]
FF Extension: (AIO Search) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\ASToolbar@aiosearch.com.xpi [2018-01-22]
FF Extension: (New Add-on Bar) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\ausaddonbar@teo.pl.xpi [2018-11-04] [Legacy]
FF Extension: (Bookmarks Favicon Images) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\BookmarksFaviconImages@LarrysComputer.xpi [2018-11-04] [Legacy]
FF Extension: (Bookmarks Folder Images) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\BookmarksFolderImages@LarrysComputer.xpi [2018-10-06] [Legacy]
FF Extension: (Bookmarks Title Styles) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\BookmarksTitleStyles@LarrysComputer.xpi [2018-11-04] [Legacy]
FF Extension: (Classic Toolbar Buttons) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\CSTBB@NArisT2_Noia4dev.xpi [2018-07-06] [Legacy]
FF Extension: (Dragon Professional Web Extension) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\dgnria_pro.firefox@nuance.com.xpi [2018-10-08]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\firefox@ghostery.com.xpi [2019-02-05]
FF Extension: (Webmail Ad Blocker) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\gmailnoads@mywebber.com.xpi [2019-01-13]
FF Extension: (Who stole my pictures?) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\images@wink.su.xpi [2018-04-02]
FF Extension: (PriceBlink Coupons and Price Comparison) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\info@priceblink.com.xpi [2019-01-26]
FF Extension: (Terms of Service; Didn’t Read) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\jid0-3GUEt1r69sQNSrca5p8kx9Ezc3U@jetpack.xpi [2018-08-20]
FF Extension: (Visited) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\jid0-xGZYdxpAkROWMUMfWKINyrXigBA@jetpack.xpi [2018-01-27] [Legacy]
FF Extension: (YouTube™ Flash® Player) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2018-10-03]
FF Extension: (Media Converter and Muxer) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\jid1-kps5PrGBNtzSLQ@jetpack.xpi [2018-02-12] [Legacy]
FF Extension: (Privacy Badger) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2019-02-10]
FF Extension: (Free Memory) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\jid1-n85lxPv1NAWVTQ@jetpack.xpi [2018-11-18] [Legacy]
FF Extension: (Lightweight Themes Manager) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\lwthemes-manager@loucypher.xpi [2018-10-03] [Legacy]
FF Extension: (Menu Icons Plus) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\menuiconsplus@codedawn.com.xpi [2018-05-07] [Legacy]
FF Extension: (Tab Session Manager) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\Tab-Session-Manager@sienori.xpi [2019-02-09]
FF Extension: (TinEye Reverse Image Search) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\tineye@ideeinc.com.xpi [2018-10-04]
FF Extension: (uBlock Origin) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\uBlock0@raymondhill.net.xpi [2019-02-05]
FF Extension: (uMatrix) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\uMatrix@raymondhill.net.xpi [2019-01-13]
FF Extension: (Session Manager) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2018-11-04] [Legacy]
FF Extension: (Multirow Bookmarks Toolbar Plus) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{4c7097f7-08f2-4ef2-9b9f-f95fa4cbb064}.xpi [2018-05-19] [Legacy]
FF Extension: (No Coin - Block miners on the web!) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{5657c026-efc3-4860-b43b-16e4eaa8a9aa}.xpi [2019-01-26]
FF Extension: (Google™ Shortcuts - All services at a glance) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{5C46D283-ABDE-4dce-B83C-08881401921C}.xpi [2019-01-31]
FF Extension: (Download Status Bar) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2018-09-08] [Legacy]
FF Extension: (Bulk Media Downloader) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{72b2e02b-3a71-4895-886c-fd12ebe36ba3}.xpi [2018-02-12]
FF Extension: (blockcoinm) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{74b0af75-8791-44e2-95a6-7f0ab94143ec}.xpi [2019-01-26]
FF Extension: (Download Statusbar) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{76faaba6-3aa1-47a4-bf40-90aa2505e79c}.xpi [2019-01-13]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2019-01-26]
FF Extension: (Video DownloadHelper) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-01-22]
FF Extension: (In My Pocket) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{cd7e22de-2e34-40f0-aeff-cec824cbccac}.xpi [2019-01-13]
FF Extension: (OFFMP4 - Best Video Download Helper) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{cf9bb404-04a5-4329-8764-aae71359f0f8}.xpi [2019-01-26]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-01-26]
FF Extension: (Tab Mix Plus) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2018-09-05] [Legacy]
FF Extension: (SnapTube MP3 for YouTube Music Download) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{e4b3d1b4-3bb2-4df7-ad1b-77534bac5780}.xpi [2018-12-01]
FF Extension: (YouTube Flash Video Player) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\i4a2hsup.Default-1504416014746\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2018-05-06]
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal [2019-02-11]
FF user.js: detected! => C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\user.js [2018-11-03]
FF Homepage: Mozilla\Firefox\Profiles\01gmxgwq.Normal -> hxxp://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\01gmxgwq.Normal -> hxxp://www.google.com
FF NetworkProxy: Mozilla\Firefox\Profiles\01gmxgwq.Normal -> type", 4
FF Session Restore: Mozilla\Firefox\Profiles\01gmxgwq.Normal -> is enabled.
FF Extension: (Grammarly for Firefox) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2017-12-24]
FF Extension: (HLS Stream Detector) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\@m3u8link.xpi [2017-09-21] [Legacy]
FF Extension: (AIO Search) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\ASToolbar@aiosearch.com.xpi [2017-08-19]
FF Extension: (New Add-on Bar) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\ausaddonbar@teo.pl.xpi [2017-08-17] [Legacy]
FF Extension: (Bookmarks Favicon Images) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\BookmarksFaviconImages@LarrysComputer.xpi [2017-11-15] [Legacy]
FF Extension: (Bookmarks Title Styles) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\BookmarksTitleStyles@LarrysComputer.xpi [2017-11-15] [Legacy]
FF Extension: (Add-on Compatibility Reporter) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\compatibility@addons.mozilla.org.xpi [2017-07-18] [Legacy]
FF Extension: (Classic Reload-Stop-Go Button) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\crsg@ArisT2_Noia4dev.xpi [2017-09-17] [Legacy]
FF Extension: (Classic Toolbar Buttons) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\CSTBB@NArisT2_Noia4dev.xpi [2017-12-24] [Legacy]
FF Extension: (Dragon Web Extension) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\dgnria2@nuance.com.xpi [2017-12-09] [Legacy]
FF Extension: (Exif Viewer) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\exif_viewer@mozilla.doslash.org.xpi [2017-12-30]
FF Extension: (Ghostery) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\firefox@ghostery.com.xpi [2017-12-30]
FF Extension: (SimilarWeb - Traffic Rank & Website Analysis) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\FirefoxAddon@similarWeb.com.xpi [2017-12-24]
FF Extension: (Webmail Ad Blocker) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\gmailnoads@mywebber.com.xpi [2017-12-24]
FF Extension: (PriceBlink Coupons and Price Comparison) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\info@priceblink.com.xpi [2017-11-16]
FF Extension: (Turbo Download Manager) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\jid0-dsq67mf5kjjhiiju2dfb6kk8dfw@jetpack.xpi [2017-02-28] [Legacy]
FF Extension: (Media Converter and Muxer) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\jid1-kps5PrGBNtzSLQ@jetpack.xpi [2017-05-30] [Legacy]
FF Extension: (Privacy Badger) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2017-12-24]
FF Extension: (igshortcuts) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\jid1-SVJwkBGCTt4PyQ@jetpack.xpi [2017-08-21]
FF Extension: (visited_enabler) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\jid1-yDnsmkBoiRtgNA@jetpack.xpi [2017-07-06] [Legacy]
FF Extension: (Master Password+) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\masterpasswordtimeoutplus@vano [2018-01-14] [Legacy]
FF Extension: (Saved Password Editor) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\savedpasswordeditor@daniel.dawson.xpi [2017-11-16] [Legacy]
FF Extension: (StickyNotes) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\sticky@filenamezero.dip.jp.xpi [2017-12-30]
FF Extension: (TinEye Reverse Image Search) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\tineye@ideeinc.com.xpi [2017-06-28]
FF Extension: (TrackMeNot) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\trackmenot@mrl.nyu.edu.xpi [2017-12-24]
FF Extension: (uBlock Origin) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\uBlock0@raymondhill.net.xpi [2017-12-24]
FF Extension: (uMatrix) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\uMatrix@raymondhill.net.xpi [2017-12-24]
FF Extension: (Vertical Toolbar) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\verticaltoolbar@xuldev.org.xpi [2017-11-16] [Legacy]
FF Extension: (Flagfox) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2017-11-16] [Legacy]
FF Extension: (Session Manager) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-11-15] [Legacy]
FF Extension: (Extension Options Menu) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{1feca320-6b4d-11df-a08a-0800200c9a66}.xpi [2017-09-02] [Legacy]
FF Extension: (Multirow Bookmarks Toolbar Plus) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{4c7097f7-08f2-4ef2-9b9f-f95fa4cbb064}.xpi [2017-09-07] [Legacy]
FF Extension: (EPUBReader) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}.xpi [2017-08-01]
FF Extension: (Google™ Shortcuts - All services at a glance) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{5C46D283-ABDE-4dce-B83C-08881401921C}.xpi [2017-12-24]
FF Extension: (Download Status Bar) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2017-11-15] [Legacy]
FF Extension: (Bulk Media Downloader) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{72b2e02b-3a71-4895-886c-fd12ebe36ba3}.xpi [2017-11-16]
FF Extension: (Themes Menu) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{84625510-7e5d-11e0-a411-0800200c9a66}.xpi [2017-05-31] [Legacy]
FF Extension: (More Tools Menu) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{9a7a67d3-3048-47fb-acde-d0f7ae51f86a}.xpi [2017-07-19] [Legacy]
FF Extension: (Video DownloadHelper) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-11-15]
FF Extension: (Adblock Plus) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-01-22]
FF Extension: (Tab Mix Plus) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2017-11-15] [Legacy]
FF Extension: (Theme Font & Size Changer) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\01gmxgwq.Normal\Extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi [2017-11-15]
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default [2018-06-09]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-cs@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-de@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (English (US) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-en-US@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Español (España) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-es-ES@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Finnish Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-fi@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Français Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-fr@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Galego (España) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-gl@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Hebrew (IL) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-he@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Magyar (HU) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-hu@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Italiano (IT) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-it@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Japanese Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-ja@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Korean (KR) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-ko@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-nl@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Polski Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-pl@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Russian (RU) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-ru@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Slovenski jezik Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-sl@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (српски (sr) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-sr@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Svenska (SE) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-sv-SE@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-zh-CN@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\Robert\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\qnjlgicb.default\Extensions\langpack-zh-TW@bluegriffon.org.xpi [2018-06-09] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{5e1bc830-4746-11e5-b970-0800200c9a66}] - C:\Program Files (x86)\TextAloud\TAForFirefox.xpi
FF Extension: (TextAloud for Firefox) - C:\Program Files (x86)\TextAloud\TAForFirefox.xpi [2018-03-04]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-10-19]
FF HKLM-x32\...\Firefox\Extensions: [{5e1bc830-4746-11e5-b970-0800200c9a66}] - C:\Program Files (x86)\TextAloud\TAForFirefox.xpi
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_114.dll [2019-01-11] ()
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-30] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-01-24] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin: nuance.com/DgnRia2_x86_64 -> c:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\x64\npDgnRia2_x64.dll [2018-01-27] (Nuance Communications, Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-11] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-01-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-01-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-01-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2018-12-19] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: nuance.com/DgnRia2 -> c:\Program Files (x86)\Nuance\NaturallySpeaking15\Program\npDgnRia2.dll [2018-01-27] (Nuance Communications, Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default [2019-01-30]
CHR Extension: (Slides) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-14]
CHR Extension: (Docs) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-14]
CHR Extension: (Google Drive) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-02-14]
CHR Extension: (YouTube) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-14]
CHR Extension: (uBlock Origin) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-08-28]
CHR Extension: (Sheets) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-14]
CHR Extension: (Google Docs Offline) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-28]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-28]
CHR Extension: (TextAloud for Chrome) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\obcnimnkkpdkbfnnoagjogdollcfnidj [2018-08-28]
CHR Extension: (Amazon Assistant for Chrome) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2018-08-28]
CHR Extension: (Gmail) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-14]
CHR Extension: (Chrome Media Router) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-19]
CHR Profile: C:\Users\Robert\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-06]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [obcnimnkkpdkbfnnoagjogdollcfnidj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S3 AndServMgr; c:\Program Files\AMI\DuOS\AndServMgr.exe [86944 2018-03-07] (American Megatrends Inc -> American Megatrends Inc.)
R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [117280 2017-02-08] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-05-07] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-23] (ASUSTeK Computer Inc. -> ) [File not signed]
S3 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.33\AsusFanControlService.exe [1340376 2017-12-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 bzserv; C:\Program Files (x86)\Backblaze\bzserv.exe [543584 2019-02-07] (Backblaze, Inc -> )
S3 ChamClock Set Time Service for Vista; C:\Program Files (x86)\Chameleon Clock\settime.exe [58880 2007-06-27] () [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9677472 2018-12-30] (Microsoft Corporation -> Microsoft Corporation)
R2 DragonLoggerService; C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe [166288 2018-01-27] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
R2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [23288 2018-07-30] (Intel(R) Driver & Support Assistant -> Intel)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2302160 2019-01-03] (ESET, spol. s r.o. -> ESET)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 Everything; C:\Program Files\Everything\Everything.exe [2199656 2018-02-08] (David Carpenter -> )
S4 GladFileMonSvc; C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [29552 2011-07-26] (Gladinet, Inc. -> Gladinet, INC)
R2 IAStorDataMgrSvc; c:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17992 2017-06-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S4 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [807808 2019-01-31] (ICEpower a/s -> ICEpower)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
S4 mmsminisrv; c:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; c:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; c:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1617520 2017-06-22] (Acronis International GmbH -> )
S3 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [233456 2017-07-03] (Netgear Incorporated -> NETGEAR)
R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [184784 2018-12-04] (TEFINCOM S.A. -> )
S3 Oasis2Service (Intel(R) Device Advisor); C:\Program Files (x86)\DDNi\Oasis2Service (Intel Device Advisor)\Oasis2Service.exe [72472 2016-07-30] (Digital Delivery Networks, Inc. -> Digital Delivery Networks, Inc.)
R2 PowerPanel Personal Service; C:\Program Files (x86)\CyberPower PowerPanel Personal\ppped.exe [11264 2018-07-17] () [File not signed]
S4 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2014-12-10] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [65536 2013-10-10] (Intuit Inc.) [File not signed]
S4 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2013-08-19] (Intuit Inc.) [File not signed]
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-01-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [File not signed]
R2 SNMP; C:\WINDOWS\System32\snmp.exe [53248 2018-10-12] (Microsoft Windows -> Microsoft Corporation)
R2 SNMP; C:\WINDOWS\SysWOW64\snmp.exe [46592 2018-10-12] (Microsoft Windows -> Microsoft Corporation)
S3 SSDkeeper; C:\Program Files\Condusiv Technologies\SSDkeeper\SkService.exe [3112648 2016-12-23] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-01-04] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [289280 2018-10-12] (Microsoft Windows -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-20] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665136 2019-01-16] (TeamViewer GmbH -> TeamViewer GmbH)
S3 vmware-converter-agent; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [503512 2016-02-09] (VMware, Inc. -> VMware, Inc.)
S3 vmware-converter-server; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [503512 2016-02-09] (VMware, Inc. -> VMware, Inc.)
S3 vmware-converter-worker; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [503512 2016-02-09] (VMware, Inc. -> VMware, Inc.)
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [15446960 2018-11-21] (VMware, Inc. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3830488 2018-09-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-14] (Microsoft Corporation -> Microsoft Corporation)
S3 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-09-21] (Intel(R) Software -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 AlpsHidSmb; C:\WINDOWS\system32\DRIVERS\ApSmbDrv.sys [113728 2017-02-08] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [98848 2017-11-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 ampa; C:\WINDOWS\SysWOW64\ampa.sys [38320 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109504 2019-01-31] (Alcorlink Corp. -> )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-08] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> )
S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [303712 2018-11-01] (Bluestack Systems, Inc. -> Bluestack System Inc. )
S3 bmdrvr; C:\Windows\SysWow64\drivers\bmdrvr.sys [75992 2016-02-09] (VMware, Inc. -> VMware, Inc.)
S3 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [25056 2011-12-21] (IVT CORPORATION -> IVT Corporation.)
S3 btnetBUs; C:\WINDOWS\System32\Drivers\btnetBus.sys [31968 2011-12-21] (IVT CORPORATION -> IVT Corporation.)
S3 csravrcp; C:\WINDOWS\System32\drivers\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 CsrBthAudioHF; C:\WINDOWS\system32\DRIVERS\CsrBthAudioHF.sys [39120 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 CsrBtPort; C:\WINDOWS\system32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrhfgcc; C:\WINDOWS\System32\drivers\csrhfgcc.sys [38080 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrpan; C:\WINDOWS\System32\drivers\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrserial; C:\WINDOWS\system32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusb; C:\WINDOWS\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusbfilter; C:\WINDOWS\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csr_bthav; C:\WINDOWS\system32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 ddmdrv; C:\WINDOWS\SysWOW64\ddmdrv.sys [33200 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2017-06-19] (Power Technology -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2018-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 DKDFM; C:\WINDOWS\System32\drivers\DKDFM.sys [41744 2013-05-06] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
S3 DKRtWrt; C:\Windows\system32\drivers\DKRtWrt.sys [48792 2016-01-28] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
R0 DKTLFSMF; C:\WINDOWS\System32\drivers\DKTLFSMF.sys [119536 2014-04-14] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies)
S3 DrvAgent64; C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS [22200 2018-05-24] (eSupport.com, Inc. -> Phoenix Technologies)
R1 DuoVMDrv; C:\WINDOWS\system32\DRIVERS\DuoVMDrv.sys [246720 2016-05-10] (American Megatrends Inc. -> American Megatrends Inc.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [143448 2018-11-08] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107896 2018-11-08] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188832 2018-11-08] (ESET, spol. s r.o. -> ESET)
S4 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50144 2018-11-08] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82304 2018-11-08] (ESET, spol. s r.o. -> ESET)
S1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [44632 2014-08-18] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [109864 2018-11-08] (ESET, spol. s r.o. -> ESET)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34496 2018-10-18] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFlt; C:\WINDOWS\System32\drivers\EPMVolFlt.sys [30416 2018-10-18] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
S3 ESETCleanersDriver; C:\WINDOWS\system32\Drivers\ESETCleanersDriver.sys [181160 2018-08-08] (ESET, spol. s r.o. -> ESET)
S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [31816 2018-10-08] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2018-10-24] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
S3 EverestDriver; M:\__NEW SYSTEM\Everest Ultimate_5.5\EVEREST Ultimate Edition 5.50.2194 Beta ML_Portable\kerneld.amd64 [26752 2010-06-17] (LAVALYS -> )
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [378712 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 FlashBoot; C:\WINDOWS\System32\drivers\FlashBoot.sys [17616 2014-04-03] (Challenger Backup Solutions, LLC -> Challenger Backup Solutions, LLC)
R0 hswultpep; C:\WINDOWS\System32\drivers\hswultpep.sys [62968 2013-02-08] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-10-07] (Martin Malik - REALiX -> REALiX(tm))
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [967696 2018-10-08] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-09-21] (Intel(R) Software -> Intel Corporation)
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [27016 2010-04-06] (IVT SOFTWARE TECHNOLOGY Inc. -> IVT Corporation.)
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5db32447b43ce666\nvlddmkm.sys [20461984 2019-01-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [93960 2019-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (The OpenVPN Project) [File not signed]
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1139848 2019-01-31] (Realtek Semiconductor Corp. -> Realtek )
S3 RTCore64; C:\Program Files (x86)\RMClock\RTCore64.sys [7168 2005-05-25] () [File not signed]
R0 secnvme; C:\WINDOWS\System32\drivers\secnvme.sys [134120 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2008-07-11] (SafeNet, Inc. -> SafeNet, Inc.)
R3 Serial; C:\WINDOWS\system32\DRIVERS\wdfserial.sys [80664 2015-03-06] (LG Electronics Inc. -> LG Electronics Inc.)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (The OpenVPN Project) [File not signed]
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [84432 2017-03-26] (TEFINCOM S.A. -> The OpenVPN Project)
S3 tbhsd; C:\WINDOWS\system32\drivers\tbhsd.sys [57648 2019-01-11] (Audials AG -> RapidSolution Software AG)
R1 tcefs; C:\Windows\system32\drivers\tcefs.sys [26776 2015-08-18] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies Corporation)
R0 tcesd; C:\WINDOWS\System32\drivers\tcesd.sys [238320 2016-07-19] (CONDUSIV TECHNOLOGIES -> Condusiv Technologies Corporation)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 TotRec8; C:\WINDOWS\system32\drivers\TotRec8.sys [126080 2015-10-20] (High Criteria Inc -> High Criteria inc.)
R1 UimBus; C:\WINDOWS\System32\drivers\uimbus.sys [108896 2017-09-12] (Paragon Software GmbH -> Paragon Software GmbH)
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-11-10] (Paragon Software GmbH -> )
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701360 2015-11-10] (Paragon Software GmbH -> )
R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [50224 2017-08-20] (Tomasz Moń -> USBPcap)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [131144 2017-01-16] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [205440 2017-01-16] (Oracle Corporation -> Oracle Corporation)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [324952 2018-08-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R1 vmkbd3; C:\WINDOWS\system32\DRIVERS\vmkbd.sys [52288 2016-11-11] (VMware, Inc. -> VMware, Inc.)
R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [92040 2018-06-22] (VMware, Inc. -> VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [35032 2016-02-09] (VMware, Inc. -> VMware, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-14] (Microsoft Windows -> Microsoft Corporation)
R2 WinRing0_1_2_0; C:\Program Files (x86)\EVGA\Precision XOC\WinRing0\WinRing0x64.sys [14536 2015-10-20] (EVGA -> OpenLibSys.org)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X]
S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-13 12:41 - 2019-02-13 12:42 - 000081067 _ C:\Users\Robert\Desktop\FRST.txt
2019-02-13 12:35 - 2019-02-13 12:35 - 002433536 _ (Farbar) C:\Users\Robert\Desktop\FRST64.exe
2019-02-13 02:59 - 2019-02-13 11:59 - 000000130 C:\Users\Robert\AppData\Roaming\Network Monitor II#0_Traffic.ini
2019-02-13 00:48 - 2019-02-13 00:48 - 000000383 _ C:\Users\Robert\AppData\Roaming\Top Process Monitor_Settings.ini
2019-02-13 00:44 - 2019-02-13 00:44 - 000000266 _ C:\Users\Robert\AppData\Roaming\World Population Monitor_Settings.ini
2019-02-13 00:12 - 2019-02-13 00:15 - 000000521 _ C:\Users\Robert\AppData\Roaming\Weather Monitor_Settings.ini
2019-02-13 00:00 - 2019-02-13 00:41 - 000000604 _ C:\Users\Robert\AppData\Roaming\Drives Monitor_Settings.ini
2019-02-12 23:49 - 2019-02-12 23:49 - 000000985 C:\Users\Robert\AppData\Roaming\Network Monitor II#0_Settings.ini
2019-02-12 22:45 - 2019-02-12 22:45 - 000003074 _ C:\Users\Robert\AppData\Roaming\SAS7_000.DAT
2019-02-12 05:04 - 2019-02-12 05:04 - 000004562 _ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-02-11 18:26 - 2019-02-11 18:26 - 000016612 _ C:\Users\Robert\Desktop\ListChkdskResult.txt
2019-02-11 18:24 - 2019-02-11 18:24 - 000016612 _ C:\Users\Robert\Desktop\ListChkdskResult1.txt
2019-02-11 17:27 - 2019-02-11 17:28 - 000197679 _ C:\Users\Robert\Desktop\ListChkdskResult.exe
2019-02-11 09:29 - 2019-02-11 09:35 - 011942934 _ C:\WINDOWS\system32\Drivers\etc\HOSTS.bak
2019-02-11 09:12 - 2019-02-11 09:12 - 000003825 _ C:\WINDOWS\system32\Drivers\etc\hosts.txt
2019-02-11 08:45 - 2019-02-11 08:45 - 000001687 _ C:\Users\Robert\Desktop\Hosts File Editor+ v.1.5.7.exe.lnk
2019-02-11 07:54 - 2019-02-11 07:57 - 000008628 ____H C:\Users\Robert\Desktop\DELAYER.GID
2019-02-11 07:54 - 2019-02-11 07:54 - 000000000 ____D C:\Users\Robert\AppData\Roaming\Help
2019-02-11 07:52 - 2008-04-14 03:00 - 000283648 _ (Microsoft Corporation) C:\Users\Robert\Desktop\winhlp32.exe
2019-02-11 00:02 - 2001-09-27 16:43 - 000049152 _ (Cottonwood Software) C:\Delayer.exe
2019-02-11 00:02 - 1997-04-03 20:55 - 000016908 _ C:\Users\Robert\Desktop\DELAYER.HLP
2019-02-11 00:01 - 2019-02-11 00:01 - 000000000 ____D C:\Program Files (x86)\delayer11
2019-02-10 16:17 - 2019-02-10 16:17 - 000000840 __RSH C:\ProgramData\ntuser.pol
2019-02-08 17:12 - 2019-02-08 17:12 - 000001444 _ C:\Users\Public\Desktop\Spybot Anti-Beacon.lnk
2019-02-08 17:12 - 2019-02-08 17:12 - 000000000 ____D C:\WINDOWS\SysWOW64\PolicyDefinitions
2019-02-08 17:12 - 2019-02-08 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot Anti-Beacon
2019-02-08 16:37 - 2019-02-08 17:12 - 000000000 ____D C:\Program Files (x86)\Safer-Networking Ltd
2019-02-08 16:37 - 2019-02-08 16:37 - 000000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2019-02-08 09:29 - 2019-02-10 22:32 - 000000117 _ C:\Users\Robert\AppData\Roaming\System Monitor II_UptimeRecord.ini
2019-02-08 06:28 - 2019-02-08 22:32 - 000003978 _ C:\Users\Robert\AppData\Roaming\System Monitor II_CPU0_Settings.ini
2019-02-07 10:14 - 2019-02-07 10:14 - 000001227 _ C:\Users\Public\Desktop\AOMEI Partition Assistant Professional Edition 8.0.lnk
2019-02-07 10:14 - 2019-02-07 10:14 - 000001024 ____H C:\AMTAG.BIN
2019-02-07 10:13 - 2019-02-08 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant
2019-02-07 10:13 - 2019-02-07 10:17 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant
2019-02-07 10:13 - 2019-01-25 20:48 - 002165096 _ C:\WINDOWS\ampa.exe
2019-02-07 10:13 - 2016-12-27 18:45 - 000035760 _ C:\WINDOWS\system32\ddmdrv.sys
2019-02-07 10:13 - 2016-12-27 18:45 - 000033200 _ C:\WINDOWS\SysWOW64\ddmdrv.sys
2019-02-07 10:13 - 2016-12-27 14:15 - 000038320 _ C:\WINDOWS\SysWOW64\ampa.sys
2019-02-07 10:13 - 2016-12-27 14:15 - 000038320 _ C:\WINDOWS\system32\ampa.sys
2019-02-07 10:13 - 2016-09-29 09:44 - 001298584 _ C:\WINDOWS\ddmmain.exe
2019-02-06 17:37 - 2019-02-06 17:38 - 000000128 _ C:\Users\Robert\AppData\Roaming\Earthquakes Meter_Settings.ini
2019-02-06 17:24 - 2019-02-12 22:44 - 000000593 _ C:\Users\Robert\IP_Log_Data.js
2019-02-06 17:19 - 2019-02-07 20:33 - 000000634 _ C:\Users\Robert\AppData\Roaming\All CPU MeterV3_Settings.ini
2019-02-06 17:12 - 2019-02-06 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack
2019-02-06 17:09 - 2019-02-06 17:09 - 000003254 _ C:\WINDOWS\System32\Tasks\SidebarExecute
2019-02-06 17:08 - 2019-02-08 16:51 - 000000000 ____D C:\Program Files\Rainmeter
2019-02-06 15:32 - 2019-02-06 15:32 - 000093960 ____H (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCMON24.SYS
2019-02-06 14:24 - 2019-02-06 14:24 - 000003392 _ C:\WINDOWS\System32\Tasks\EVGAPrecisionX
2019-02-06 13:39 - 2019-02-06 13:39 - 000000000 ____D C:\Tempzxpsign81d248e10da06351
2019-02-06 13:39 - 2019-02-06 13:39 - 000000000 ____D C:\Tempzxpsign1fd4227f11420fcf
2019-02-05 12:43 - 2019-02-05 12:43 - 000002471 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2019-02-05 12:43 - 2019-02-05 12:43 - 000002118 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2019-02-05 12:23 - 2019-02-05 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 64-bit fixes
2019-02-04 12:34 - 2019-02-04 12:34 - 000000139 _ C:\Users\Robert\Desktop\SFCFix.zip
2019-02-04 12:33 - 2019-02-04 12:33 - 002347008 _ (niemiro) C:\Users\Robert\Desktop\SFCFix.exe
2019-02-02 12:19 - 2019-02-02 12:19 - 000774560 _ C:\WINDOWS\system32\FNTCACHE.DAT
2019-02-01 10:39 - 2019-02-01 10:59 - 000000000 ____D C:\Program Files (x86)\Audials 2019
2019-02-01 10:39 - 2019-02-01 10:57 - 000000000 ____D C:\ProgramData\RapidSolution
2019-02-01 09:55 - 2019-02-08 09:56 - 000000000 ____D C:\WINDOWS\System32\Tasks\Abelssoft
2019-02-01 09:55 - 2019-02-01 09:55 - 000001980 _ C:\Users\Public\Desktop\SSDFresh.lnk
2019-02-01 09:55 - 2019-02-01 09:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SSDFresh
2019-02-01 09:55 - 2019-02-01 09:55 - 000000000 ____D C:\ProgramData\Abelssoft
2019-02-01 09:55 - 2019-02-01 09:55 - 000000000 ____D C:\Program Files (x86)\SSDFresh
2019-01-31 20:17 - 2019-01-31 20:17 - 000001160 _ C:\Users\Robert\Desktop\Hard Disk Sentinel.lnk
2019-01-31 20:17 - 2019-01-31 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk Sentinel
2019-01-31 11:41 - 2019-01-31 11:41 - 072520776 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2019-01-31 11:41 - 2019-01-31 11:41 - 023073815 _ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2019-01-31 11:41 - 2019-01-31 11:41 - 007178544 _ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 007101824 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 006270264 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 005347072 _ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 003677224 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2019-01-31 11:41 - 2019-01-31 11:41 - 003418072 _ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 003319480 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 003306896 _ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 003281232 _ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 003159472 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 003128888 _ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 002930216 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 002444760 _ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 002198048 _ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001971448 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001965232 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001788032 _ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001598472 _ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001544328 _ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001516368 _ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001448856 _ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001435216 _ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001396232 _ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001382312 _ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001372472 _ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001353384 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001337720 _ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001318912 _ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001282616 _ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001259808 _ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001180584 _ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001164696 _ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001159264 _ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001073736 _ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 001027888 _ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000994744 _ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000965088 _ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000888616 _ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000873544 _ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000852208 _ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000807808 _ (ICEpower) C:\WINDOWS\system32\ICEsoundService64.exe
2019-01-31 11:41 - 2019-01-31 11:41 - 000751376 _ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000734848 _ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000715720 _ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000692224 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000604872 _ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000541192 _ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000511720 _ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000467232 _ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000453352 _ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000452816 _ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000448680 _ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000447256 _ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000416584 _ (Harman) C:\WINDOWS\system32\HMUI.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000406528 _ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000392936 _ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000381488 _ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000378456 _ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000367688 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000366200 _ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000360424 _ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000343768 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000341224 _ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000341224 _ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000333088 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000327336 _ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000327328 _ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000316080 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000278352 _ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000266616 _ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000261312 _ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000261280 _ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000260288 _ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000231976 _ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000230784 _ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000220448 _ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000218352 _ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000203912 _ (Harman) C:\WINDOWS\system32\HMHVS.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000195763 _ C:\WINDOWS\system32\ICEsoundService.bin
2019-01-31 11:41 - 2019-01-31 11:41 - 000191008 _ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000191008 _ (Harman) C:\WINDOWS\system32\HMEQ.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000179672 _ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000175824 _ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKWMI.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000175016 _ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000158776 _ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000157408 _ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000154440 _ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000139832 _ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000122424 _ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000118664 _ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000116600 _ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000105384 _ C:\WINDOWS\system32\audioLibVc.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000093968 _ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000090976 _ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000090232 _ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000088384 _ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000083688 _ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000075616 _ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2019-01-31 11:41 - 2019-01-31 11:41 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-01-31 11:40 - 2019-01-31 11:40 - 001139848 _ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2019-01-31 11:19 - 2019-01-31 11:19 - 001083424 _ C:\WINDOWS\system32\AmRdrIco.icl
2019-01-31 11:17 - 2019-01-31 11:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Driver Booster PRO
2019-01-31 11:16 - 2019-01-31 11:16 - 000000000 ____D C:\2-click run
2019-01-31 10:45 - 2019-01-31 10:45 - 025117952 _ (StarWind Software ) C:\Users\Robert\Desktop\starwindconverterV9.110.exe
2019-01-30 23:31 - 2019-01-30 23:31 - 363172271 _ C:\Users\Robert\Desktop\An FBI Negotiator’s Secret to Winning Any Exchange _ Inc.mp4
2019-01-30 18:22 - 2019-01-30 18:22 - 008406934 _ C:\Users\Robert\Desktop\COMPONENTS.zip
2019-01-30 18:13 - 2019-02-06 13:15 - 000000000 ____D C:\Users\Robert\AppData\Roaming\epm
2019-01-30 13:22 - 2019-01-30 13:22 - 000001411 _ C:\Users\Public\Desktop\EaseUS Partition Master 13.0.lnk
2019-01-30 13:22 - 2019-01-30 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 13.0
2019-01-30 13:22 - 2018-11-27 12:08 - 005247120 _ C:\WINDOWS\system32\BootMan.exe
2019-01-30 13:22 - 2018-11-27 12:08 - 003551376 _ C:\WINDOWS\SysWOW64\BootMan.exe
2019-01-30 13:22 - 2018-11-27 12:08 - 000022160 _ C:\WINDOWS\SysWOW64\EuEpmGdi.dll
2019-01-30 13:22 - 2018-11-27 12:08 - 000018576 _ C:\WINDOWS\system32\EuEpmGdi.dll
2019-01-30 13:22 - 2018-10-24 13:53 - 000010848 _ C:\WINDOWS\system32\EuGdiDrv.sys
2019-01-30 13:22 - 2018-10-18 13:05 - 000132240 _ C:\WINDOWS\system32\setupempdrvx64.exe
2019-01-30 13:22 - 2018-10-18 04:35 - 000034496 _ C:\WINDOWS\system32\epmntdrv.sys
2019-01-30 13:22 - 2018-10-18 01:38 - 000030416 _ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\EPMVolFlt.sys
2019-01-30 13:22 - 2018-10-18 01:38 - 000030416 _ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\EPMVolFlt.sys
2019-01-29 22:05 - 2019-01-29 22:49 - 000000894 _ C:\Users\Robert\Desktop\Chris Star Trek reference notes.txt
2019-01-29 12:15 - 2019-01-29 12:15 - 000000979 _ C:\Users\Robert\Desktop\Sweet Home 3D.lnk
2019-01-29 12:15 - 2019-01-29 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2019-01-26 18:36 - 2019-02-13 12:41 - 000000000 ____D C:\FRST
2019-01-25 13:49 - 2019-01-25 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\smartmontools
2019-01-25 13:49 - 2019-01-25 13:49 - 000000000 ____D C:\Program Files\smartmontools
2019-01-25 13:41 - 2019-01-25 13:41 - 001265846 _ (www.smartmontools.org) C:\Users\Robert\Desktop\smartmontools-7.0-1.win32-setup.exe
2019-01-25 13:01 - 2019-02-07 09:39 - 000000000 ____D C:\Users\Robert\AppData\Roaming\gsmartcontrol
2019-01-25 13:00 - 2019-02-07 09:39 - 000000000 ____D C:\Users\Robert\Desktop\gsmartcontrol-1.1.3-win32
2019-01-25 12:59 - 2019-01-25 12:59 - 010745236 _ C:\Users\Robert\Desktop\gsmartcontrol-1.1.3-win32.zip
2019-01-24 19:54 - 2019-01-24 19:54 - 000002465 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000002455 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000002454 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000002418 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000002417 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000002411 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000002405 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000002397 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-01-24 19:54 - 2019-01-24 19:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2019-01-24 19:54 - 2019-01-24 19:54 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2019-01-24 19:51 - 2019-01-24 19:51 - 000000000 ____D C:\Program Files\Microsoft Office 15
2019-01-24 19:18 - 2019-01-24 19:18 - 000003340 _ C:\WINDOWS\System32\Tasks\Office 2019 Statique Activation Planificateur
2019-01-24 18:48 - 2019-01-24 18:48 - 000003356 _ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2536635842-542287166-2959069790-1002
2019-01-24 18:48 - 2019-01-24 18:48 - 000002404 _ C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-24 18:21 - 2019-01-24 19:54 - 000000000 ____D C:\Program Files\Microsoft Office
2019-01-18 11:33 - 2019-01-18 11:34 - 000141924 ____R C:\Users\Robert\Desktop\Markup and Margin Sheet.pdf
2019-01-18 01:22 - 2019-02-04 12:35 - 000000000 ____D C:\SFCFix
2019-01-17 15:17 - 2019-02-09 22:32 - 000000000 ____D C:\Users\Robert\Desktop\Hiren's BootCD WinPE10 Premium Edition Build 181211 (Dec. 11, 2018) [CracksNow]
2019-01-17 09:45 - 2019-01-17 09:45 - 000002142 _ C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2019-01-17 09:45 - 2019-01-17 09:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2019-01-17 01:34 - 2019-01-17 01:34 - 000000887 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dr. Folder.lnk
2019-01-16 18:07 - 2019-01-16 18:07 - 000002095 _ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2019-01-16 17:11 - 2019-02-12 22:43 - 141557760 _ C:\WINDOWS\system32\config\SOFTWARE
2019-01-16 17:11 - 2019-02-12 22:43 - 026738688 _ C:\WINDOWS\system32\config\SYSTEM
2019-01-16 17:11 - 2019-02-12 22:43 - 001048576 _ C:\WINDOWS\system32\config\DEFAULT
2019-01-16 17:11 - 2019-02-12 22:43 - 000077824 _ C:\WINDOWS\system32\config\SAM
2019-01-16 17:11 - 2019-02-12 22:43 - 000073728 _ C:\WINDOWS\system32\config\SECURITY
2019-01-15 13:52 - 2019-01-15 13:52 - 000002055 _ C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\NordVPN.lnk
2019-01-15 13:40 - 2019-01-15 13:40 - 000000958 _ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2019-01-15 13:40 - 2019-01-15 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2019-01-15 13:40 - 2016-12-21 14:52 - 000040240 _ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2019-01-15 12:51 - 2019-01-11 01:31 - 000133328 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2019-01-15 12:51 - 2019-01-11 01:22 - 000125320 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-01-15 12:49 - 2019-01-11 20:05 - 000978336 _ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-01-15 12:49 - 2019-01-11 20:05 - 000978336 _ C:\WINDOWS\system32\vulkan-1.dll
2019-01-15 12:49 - 2019-01-11 20:05 - 000845216 _ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-01-15 12:49 - 2019-01-11 20:05 - 000845216 _ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-01-15 12:49 - 2019-01-11 20:05 - 000552536 _ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-01-15 12:49 - 2019-01-11 20:05 - 000456848 _ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-01-15 12:49 - 2019-01-11 20:05 - 000268192 _ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-01-15 12:49 - 2019-01-11 20:05 - 000268192 _ C:\WINDOWS\system32\vulkaninfo.exe
2019-01-15 12:49 - 2019-01-11 20:05 - 000243616 _ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-01-15 12:49 - 2019-01-11 20:05 - 000243616 _ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-01-15 12:49 - 2019-01-11 20:04 - 004946232 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 004316304 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 002018392 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441771.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 002003600 _ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 001512352 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 001467864 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441771.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 001461152 _ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 001126544 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 000750520 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 000631896 _ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 000609368 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2019-01-15 12:49 - 2019-01-11 20:04 - 000521688 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-01-15 12:49 - 2019-01-11 20:03 - 040262912 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-01-15 12:49 - 2019-01-11 20:03 - 035158736 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-01-15 12:49 - 2019-01-11 16:03 - 015911384 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 013205768 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 001471424 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 001462024 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 001167584 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 001151984 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 001145536 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 000914400 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 000822392 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 000794448 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-01-15 12:49 - 2019-01-11 16:02 - 000637664 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-01-15 12:49 - 2019-01-11 16:01 - 019717352 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-01-15 12:49 - 2019-01-11 16:01 - 016993240 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-01-15 12:49 - 2019-01-11 16:01 - 005003032 _ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-01-15 12:49 - 2019-01-11 16:01 - 004260704 _ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-01-15 12:49 - 2019-01-11 03:06 - 000048472 _ C:\WINDOWS\system32\nvinfo.pb
2019-01-15 11:14 - 2019-02-12 22:43 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-01-15 11:14 - 2019-01-22 09:03 - 000001046 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2019-01-15 11:14 - 2019-01-22 09:03 - 000001034 _ C:\Users\Public\Desktop\TeamViewer 14.lnk
2019-01-15 10:38 - 2019-01-15 10:38 - 000000037 _ C:\Users\Robert\Desktop\SBDC Webinar.txt
2019-01-15 09:58 - 2019-01-15 13:32 - 000000000 ____D C:\Users\Robert\AppData\Roaming\Zoom
2019-01-14 14:23 - 2019-01-14 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon
2019-01-14 14:16 - 2019-01-14 14:16 - 000001919 _ C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk
2019-01-14 10:56 - 2019-01-14 10:56 - 000000043 _ C:\WINDOWS\gswin32.ini

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-13 12:42 - 2019-01-03 02:13 - 000000000 ____D C:\Temp
2019-02-13 12:28 - 2018-10-04 03:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-02-13 09:23 - 2018-11-03 07:15 - 000000000 ____D C:\Program Files\Waterfox
2019-02-13 03:00 - 2018-10-04 02:39 - 000000000 ____D C:\WINDOWS\system32\msmq
2019-02-13 00:43 - 2017-01-11 22:55 - 000000000 ____D C:\Users\Robert\AppData\Roaming\Everything
2019-02-13 00:35 - 2017-12-28 08:02 - 000000339 _ C:\Users\Robert\AppData\Roaming\Drives Meter_Settings.ini
2019-02-12 23:49 - 2017-12-28 15:56 - 000000025 _ C:\Users\Robert\AppData\Roaming\Network Meter_Usage.ini
2019-02-12 23:00 - 2017-12-28 11:00 - 000010427 _ C:\Users\Robert\Network_Meter_Data.js
2019-02-12 22:49 - 2018-10-04 03:44 - 000946072 _ C:\WINDOWS\system32\PerfStringBackup.INI
2019-02-12 22:49 - 2018-09-14 23:31 - 000000000 ____D C:\WINDOWS\INF
2019-02-12 22:44 - 2018-10-07 22:39 - 000000000 ____D C:\ProgramData\ProductData
2019-02-12 22:44 - 2018-09-14 23:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-12 22:44 - 2017-08-03 15:50 - 000000000 ____D C:\Program Files (x86)\Chameleon Clock
2019-02-12 22:43 - 2018-10-04 03:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-02-12 22:43 - 2018-10-02 12:14 - 000000000 ____D C:\ProgramData\NVIDIA
2019-02-12 22:43 - 2018-09-14 22:09 - 000524288 _ C:\WINDOWS\system32\config\BBI
2019-02-12 22:43 - 2017-01-12 08:00 - 000000000 ____D C:\ProgramData\VMware
2019-02-12 20:49 - 2017-01-19 15:33 - 000000000 ____D C:\Users\Robert\AppData\Roaming\qBittorrent
2019-02-12 18:05 - 2019-01-03 11:02 - 000004146 _ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8E893A56-B045-48A2-8817-29DB664228F5}
2019-02-11 17:07 - 2017-01-12 22:15 - 000000000 ____D C:\ProgramData\Temp
2019-02-11 12:54 - 2016-07-16 03:47 - 000000180 _ C:\WINDOWS\win.ini
2019-02-11 09:47 - 2017-01-20 08:36 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-02-11 09:25 - 2018-04-17 18:53 - 000000000 ____D C:\Program Files (x86)\Host File Editor
2019-02-11 08:01 - 2017-01-12 19:38 - 000000000 ____D C:\Users\Robert\AppData\Roaming\VMware
2019-02-11 07:54 - 2018-09-14 23:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-02-10 23:26 - 2018-10-04 02:41 - 000000000 ____D C:\Users\Robert
2019-02-10 19:39 - 2018-09-08 12:39 - 000000000 ____D C:\Users\Robert\AppData\Roaming\Photolemur
2019-02-10 17:59 - 2018-11-18 22:52 - 000000000 ____D C:\Users\Robert\AppData\Roaming\MPC-HC
2019-02-10 14:53 - 2017-01-19 12:16 - 000000000 ____D C:\Users\Robert\AppData\Roaming\XnView
2019-02-10 11:53 - 2018-11-16 06:51 - 000526346 _ C:\WINDOWS\system32\Drivers\etc\hosts.020919
2019-02-10 11:22 - 2018-11-17 21:14 - 000001474 _ C:\Users\Robert\Desktop\WaterFox settings mod.txt
2019-02-09 16:02 - 2018-09-14 23:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-02-09 14:35 - 2018-06-16 09:14 - 000000000 ____D C:\ProgramData\ThumbsPlus
2019-02-09 14:35 - 2017-01-13 10:42 - 000000000 ____D C:\Users\Robert\AppData\Roaming\ThumbsPlus
2019-02-08 16:46 - 2018-09-14 23:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-02-07 16:55 - 2017-01-12 22:52 - 000000000 ____D C:\Program Files (x86)\Backblaze
2019-02-07 16:21 - 2018-02-14 08:02 - 000002305 _ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-07 10:02 - 2017-12-28 20:44 - 000001050 _ C:\Users\Robert\AppData\Roaming\Network Meter_Settings.ini
2019-02-07 02:17 - 2018-09-22 00:27 - 000000000 ____D C:\Program Files (x86)\Intel Driver and Support Assistant
2019-02-06 21:14 - 2018-10-26 17:43 - 000000000 ____D C:\Users\Robert\Desktop\comp
2019-02-06 17:13 - 2018-09-14 23:33 - 000000000 ___SD C:\Program Files\Windows Sidebar
2019-02-06 17:13 - 2018-09-14 23:33 - 000000000 ___SD C:\Program Files (x86)\Windows Sidebar
2019-02-06 13:56 - 2017-01-11 17:42 - 000000000 ____D C:\Users\Robert\AppData\LocalLow\Mozilla
2019-02-06 13:53 - 2018-10-19 19:56 - 000017878 _ C:\Users\Robert\Desktop\Markup calculator.xlsx
2019-02-06 13:53 - 2018-07-03 10:03 - 000000000 ____D C:\Users\Robert\AppData\Roaming\XnViewMP
2019-02-06 12:48 - 2019-01-03 13:24 - 000002532 _ C:\WINDOWS\System32\Tasks\SamsungMagician
2019-02-06 12:36 - 2018-07-01 14:10 - 000002548 ____H C:\WINDOWS\EPMBatch.ept
2019-02-05 22:32 - 2017-01-18 22:44 - 000000000 ____D C:\Users\Robert\AppData\Roaming\ObviousIdea
2019-02-05 12:25 - 2017-01-19 09:45 - 000000000 ____D C:\Program Files\CCleaner
2019-02-05 12:25 - 2017-01-14 08:22 - 000000000 ____D C:\Program Files (x86)\Adobe Reader 64-bit fixes
2019-02-05 12:25 - 2017-01-11 17:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-02-05 11:06 - 2018-06-03 10:57 - 000000673 _ C:\WINDOWS\clipc.INI
2019-02-04 21:48 - 2017-01-11 21:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2019-02-02 12:02 - 2018-10-06 19:48 - 000000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\- SYSTEM Test
2019-02-01 11:19 - 2017-01-19 15:48 - 000000000 ____D C:\Program Files\Adobe
2019-01-31 20:17 - 2017-01-17 00:15 - 000000000 ____D C:\Program Files (x86)\Hard Disk Sentinel
2019-01-31 11:43 - 2018-10-07 22:33 - 000000000 ____D C:\Users\Robert\AppData\LocalLow\IObit
2019-01-31 11:43 - 2018-10-07 22:32 - 000000000 ____D C:\ProgramData\IObit
2019-01-31 11:43 - 2018-10-02 17:32 - 000000000 ____D C:\Users\Robert\AppData\Roaming\IObit
2019-01-31 11:41 - 2018-10-30 22:27 - 006400040 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2019-01-31 11:41 - 2018-10-30 22:27 - 003761640 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2019-01-31 11:41 - 2018-10-30 22:27 - 000193040 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2019-01-31 11:41 - 2018-10-30 22:27 - 000023752 _ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2019-01-31 11:41 - 2018-07-21 23:42 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-01-31 11:41 - 2018-07-21 23:38 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2019-01-31 11:41 - 2017-04-12 06:16 - 000000000 ____D C:\WINDOWS\system32\DAX2
2019-01-31 11:19 - 2018-01-22 11:45 - 000109504 _ () C:\WINDOWS\system32\Drivers\AmUStor.sys
2019-01-30 18:35 - 2018-08-28 09:05 - 000000000 ____D C:\Users\Robert\AppData\Roaming\ON1
2019-01-30 13:22 - 2018-07-01 14:04 - 000000000 ____D C:\Program Files (x86)\EaseUS Partition Master
2019-01-30 13:22 - 2017-01-28 10:46 - 000000000 ____D C:\Program Files (x86)\EaseUS
2019-01-29 12:15 - 2017-01-11 22:38 - 000000000 ____D C:\Program Files\Sweet Home 3D
2019-01-28 21:17 - 2018-09-14 23:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-25 00:32 - 2019-01-04 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-01-25 00:32 - 2018-10-02 12:13 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-01-25 00:32 - 2018-10-02 12:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-01-25 00:32 - 2018-10-02 12:13 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-01-24 19:54 - 2018-09-14 23:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-24 18:48 - 2018-07-23 23:10 - 000000000 ___RD C:\Users\Robert\OneDrive
2019-01-24 18:07 - 2018-07-23 23:23 - 000000000 ____D C:\Program Files\Office
2019-01-24 13:37 - 2017-08-24 16:55 - 000042904 _ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2019-01-21 00:49 - 2019-01-13 16:45 - 000004210 _ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-17 14:05 - 2018-12-01 11:08 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2019-01-17 13:40 - 2018-11-03 09:29 - 000000000 ____D C:\Windows10Upgrade
2019-01-17 09:45 - 2018-08-18 03:21 - 000000000 ____D C:\Users\Robert\AppData\Roaming\MyPhoneExplorer
2019-01-17 09:45 - 2018-08-18 03:21 - 000000000 ____D C:\Program Files (x86)\MyPhoneExplorer
2019-01-17 01:34 - 2017-01-19 12:29 - 000000000 ____D C:\Program Files\Dr. Folder
2019-01-16 19:43 - 2018-09-14 23:33 - 000000000 ___HD C:\Program Files\WindowsApps.tmp
2019-01-16 19:02 - 2018-09-14 23:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-16 19:02 - 2018-09-14 23:33 - 000000000 ____D C:\WINDOWS\registration
2019-01-16 17:42 - 2017-07-08 13:20 - 000000000 ____D C:\Program Files (x86)\XnView
2019-01-16 17:12 - 2018-11-12 22:05 - 132120576 _ C:\WINDOWS\system32\config\software.rcbak
2019-01-16 17:12 - 2018-11-12 22:05 - 026214400 _ C:\WINDOWS\system32\config\system.rcbak
2019-01-16 17:12 - 2018-11-12 22:05 - 000786432 _ C:\WINDOWS\system32\config\default.rcbak
2019-01-16 17:12 - 2018-11-12 22:05 - 000155648 _ C:\WINDOWS\system32\config\sam.rcbak
2019-01-16 17:12 - 2018-11-12 22:05 - 000065536 _ C:\WINDOWS\system32\config\security.rcbak
2019-01-16 14:40 - 2018-02-04 18:56 - 000000000 ____D C:\Program Files (x86)\TinyTask
2019-01-16 14:01 - 2018-09-22 10:49 - 000000000 ____D C:\Program Files (x86)\FotoSketcher
2019-01-15 17:36 - 2018-09-14 22:09 - 006533120 _ C:\WINDOWS\system32\config\drivers.rcbak
2019-01-15 13:55 - 2017-02-05 01:32 - 000000000 ____D C:\Program Files\Revo Uninstaller Pro
2019-01-15 13:52 - 2019-01-12 17:38 - 000001986 _ C:\Users\Public\Desktop\NordVPN.lnk
2019-01-15 01:04 - 2018-09-14 23:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-14 22:21 - 2018-08-09 00:16 - 000000000 ____D C:\ProgramData\Packages
2019-01-14 11:17 - 2018-04-11 15:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated

==================== Files in the root of some directories =======

2003-08-07 08:34 - 2003-08-07 08:34 - 000000000 _ () C:\ProgramData\sdpsenv.dat
2016-02-04 10:11 - 2016-02-04 10:11 - 000002045 _ () C:\ProgramData\whlb32g.dll
2019-02-06 17:24 - 2019-02-12 22:44 - 000000593 _ () C:\Users\Robert\IP_Log_Data.js
2017-12-28 11:00 - 2019-02-12 23:00 - 000010427 _ () C:\Users\Robert\Network_Meter_Data.js
2017-01-31 11:57 - 2003-10-30 11:00 - 000353280 _ (Stardust Software) C:\Program Files (x86)\SCMain.exe
2019-02-06 17:19 - 2019-02-07 20:33 - 000000634 _ () C:\Users\Robert\AppData\Roaming\All CPU MeterV3_Settings.ini
2017-12-28 10:10 - 2018-01-07 01:48 - 000000412 _ () C:\Users\Robert\AppData\Roaming\All CPU Meter_Settings.ini
2017-12-28 08:02 - 2019-02-13 00:35 - 000000339 _ () C:\Users\Robert\AppData\Roaming\Drives Meter_Settings.ini
2019-02-13 00:00 - 2019-02-13 00:41 - 000000604 _ () C:\Users\Robert\AppData\Roaming\Drives Monitor_Settings.ini
2019-02-06 17:37 - 2019-02-06 17:38 - 000000128 _ () C:\Users\Robert\AppData\Roaming\Earthquakes Meter_Settings.ini
2018-10-18 09:51 - 2018-10-18 09:51 - 000000312 _ () C:\Users\Robert\AppData\Roaming\license
2017-12-28 20:44 - 2019-02-07 10:02 - 000001050 _ () C:\Users\Robert\AppData\Roaming\Network Meter_Settings.ini
2017-12-28 15:56 - 2019-02-12 23:49 - 000000025 _ () C:\Users\Robert\AppData\Roaming\Network Meter_Usage.ini
2019-02-12 23:49 - 2019-02-12 23:49 - 000000985 () C:\Users\Robert\AppData\Roaming\Network Monitor II#0_Settings.ini
2019-02-13 02:59 - 2019-02-13 11:59 - 000000130 () C:\Users\Robert\AppData\Roaming\Network Monitor II#0_Traffic.ini
2018-10-02 12:36 - 2018-10-16 21:56 - 000000270 _ () C:\Users\Robert\AppData\Roaming\pppe_log.txt
2019-02-12 22:45 - 2019-02-12 22:45 - 000003074 _ () C:\Users\Robert\AppData\Roaming\SAS7_000.DAT
2017-11-05 08:53 - 2017-11-08 09:03 - 000601088 _ () C:\Users\Robert\AppData\Roaming\SharedSettings.ccs
2019-02-08 06:28 - 2019-02-08 22:32 - 000003978 _ () C:\Users\Robert\AppData\Roaming\System Monitor II_CPU0_Settings.ini
2019-02-08 09:29 - 2019-02-10 22:32 - 000000117 _ () C:\Users\Robert\AppData\Roaming\System Monitor II_UptimeRecord.ini
2019-02-13 00:48 - 2019-02-13 00:48 - 000000383 _ () C:\Users\Robert\AppData\Roaming\Top Process Monitor_Settings.ini
2019-02-13 00:12 - 2019-02-13 00:15 - 000000521 _ () C:\Users\Robert\AppData\Roaming\Weather Monitor_Settings.ini
2019-02-13 00:44 - 2019-02-13 00:44 - 000000266 _ () C:\Users\Robert\AppData\Roaming\World Population Monitor_Settings.ini
2019-01-03 02:13 - 2019-01-03 02:13 - 000000000 _ () C:\Users\Robert\AppData\Local\oobelibMkey.log
2018-07-06 08:44 - 2018-08-02 12:57 - 000002963 _ () C:\Users\Robert\AppData\Local\Perfmon.PerfmonCfg
2019-01-25 13:45 - 2019-01-25 13:45 - 000000218 _ () C:\Users\Robert\AppData\Local\recently-used.xbel
2017-01-11 18:07 - 2019-01-14 17:06 - 000007658 _ () C:\Users\Robert\AppData\Local\Resmon.ResmonCfg
2018-06-09 15:02 - 2019-02-13 12:32 - 610763776 _ () C:\Users\Robert\AppData\Local\SageThumbs.db3
2019-01-12 10:49 - 2019-01-12 10:49 - 016040448 _ () C:\Users\Robert\AppData\Local\Sync-1547318938.msi
2019-01-12 10:49 - 2019-01-12 10:49 - 000192518 _ () C:\Users\Robert\AppData\Local\Sync-1547318938.msi.log
2017-09-29 19:09 - 2017-09-29 19:09 - 000000000 _ () C:\Users\Robert\AppData\Local\{890F3F8A-F9BD-4993-A048-4AB71E9986FF}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

 

[dorcom]

Pasted here is: ADDITIONS.TXT
-----------------------------------
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13.02.2019
Ran by Robert (13-02-2019 12:42:51)
Running from C:\Users\Robert\Desktop
Windows 10 Pro Version 1809 17763.253 (X64) (2018-10-04 11:41:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2536635842-542287166-2959069790-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2536635842-542287166-2959069790-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2536635842-542287166-2959069790-1001 - Limited - Disabled)
Guest (S-1-5-21-2536635842-542287166-2959069790-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2536635842-542287166-2959069790-1010 - Limited - Enabled)
Robert (S-1-5-21-2536635842-542287166-2959069790-1002 - Administrator - Enabled) => C:\Users\Robert
Test (S-1-5-21-2536635842-542287166-2959069790-1012 - Administrator - Enabled)
WDAGUtilityAccount (S-1-5-21-2536635842-542287166-2959069790-504 - Limited - Disabled)
VMware_Conv_SA (S-1-5-21-2536635842-542287166-2959069790-1005 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM\...\{5321B911-50E8-4F81-843D-B66E8938579C}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{FD87084D-762B-4B64-B34E-95FEA079327A}) (Version: 3.5.0.3 - Intel) Hidden
8GadgetPack (HKLM-x32\...\{9B9D3CF8-D10A-4A8D-8630-37ED01E9A37D}) (Version: 28.0.0 - 8GadgetPack.net)
A1Click Ultra PC Cleaner 1.01 (Registered Version) (HKLM-x32\...\A1Click Ultra PC Cleaner (Registered Version)_is1) (Version: - Super Win Software, Inc.)
Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}) (Version: 20.0.8058 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}Visible) (Version: 20.0.8058 - Acronis)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.0.941 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated)
Adobe LiveCycle Designer ES4 (HKLM-x32\...\{85785744-60E1-4827-A04A-E8DBCE7D218E}) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop (HKLM\...\{9B08B2EC-C82E-4D24-A3E0-57646E2CE480}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Reader 64-bit fixes (HKLM\...\{6D80AAE7-FF65-4950-B1CA-3A7EA4995574}_is1) (Version: - Leo Davidson / Pretentious Name)
Adobe Reader XI (11.0.23) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Advanced JPEG Compressor 2010 (HKLM-x32\...\Advanced JPEG Compressor_is1) (Version: 2010 - WinSoftMagic Inc.)
Advanced PDF Password Recovery Pro (remove only) (HKLM-x32\...\Advanced PDF Password Recovery Pro) (Version: - )
AFPL Ghostscript 8.54 (HKLM\...\AFPL Ghostscript 8.54) (Version: - )
AFPL Ghostscript Fonts (HKLM\...\AFPL Ghostscript Fonts) (Version: - )
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.13 - ASUSTeK Computer Inc.)
AIDA64 Extreme v5.90 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.90 - FinalWire Ltd.)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\{972355AE-5F5A-4858-AC0F-4E9F62E7B164}) (Version: 20.5.20117.43858 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{972355AE-5F5A-4858-AC0F-4E9F62E7B164}) (Version: 20.5.20117.43858 - Alcor Micro Corp.)
Angry Birds (HKLM-x32\...\{01509AB1-84BB-4AB9-A142-38AFA0BBDA25}) (Version: 4.0.0 - Rovio Entertainment Ltd.)
AnyBurn (HKLM-x32\...\AnyBurn) (Version: 4.3 - Power Software Ltd)
AOMEI Partition Assistant Demo Edition 8.0 (HKLM-x32\...\{04F850ED-FD0F-4ED1-AE1B-4498165BF3D2}_is1) (Version: - AOMEI Technology Co., Ltd.)
App Builder (HKLM-x32\...\{E5AD314B-E52F-4E1A-AE7E-44BA8321B13B}_is1) (Version: - David Esperalta)
ASUS Boot Setting (HKLM-x32\...\{7AAE9187-C24F-4073-A951-36C370E7A3A5}) (Version: 1.00.22 - ASUSTeK Computer Inc.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
ATnotes Version 9.41 (HKLM-x32\...\ATnotes_is1) (Version: 9.41 - Thomas Ascher)
AudioSwitch (HKLM-x32\...\AudioSwitch_is1) (Version: 2.1.3.0 - )
AVS Audio Converter 8.5.1 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 8.5.1.584 - Online Media Technologies Ltd.)
AVS Audio Editor 8.5.1 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 8.5.1.524 - Online Media Technologies Ltd.)
AVS Disc Creator 6.1.1 (HKLM-x32\...\AVS Disc Creator_is1) (Version: 6.1.1.550 - Online Media Technologies Ltd.)
AVS Document Converter 4.1.1 (HKLM-x32\...\AVS Document Converter_is1) (Version: 4.1.1.258 - Online Media Technologies Ltd.)
AVS Image Converter 5.1.1 (HKLM-x32\...\AVS Image Converter_is1) (Version: 5.1.1.296 - Online Media Technologies Ltd.)
AVS Media Player 4.6.1 (HKLM-x32\...\AVS Media Player_is1) (Version: 4.6.1.126 - Online Media Technologies Ltd.)
AVS Photo Editor 3.1.1 (HKLM-x32\...\AVS Photo Editor_is1) (Version: 3.1.1.160 - Online Media Technologies Ltd.)
AVS Registry Cleaner 4.1.1 (HKLM-x32\...\AVS Registry Cleaner_is1) (Version: 4.1.1.286 - Online Media Technologies Ltd.)
AVS Video Converter 10.1.1 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 10.1.1.621 - Online Media Technologies Ltd.)
AVS Video Editor 8.1.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 8.1.1.311 - Online Media Technologies Ltd.)
AVS Video ReMaker 6.1.1 (HKLM-x32\...\AVS Video ReMaker_is1) (Version: 6.1.1.210 - Online Media Technologies Ltd.)
Backblaze (HKLM-x32\...\Backblaze) (Version: - Backblaze, Inc)
Birdfont (HKLM-x32\...\Birdfont) (Version: - )
BleachBit (HKLM-x32\...\BleachBit) (Version: 2.0 - BleachBit)
BlueGriffon version 3.0.1 (HKLM-x32\...\{A9015334-10BE-4D64-A776-203336EFE806}_is1) (Version: 3.0.1 - Disruptive Innovations SAS)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.32.75.1002 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Caesium version 1.7.0 (HKLM-x32\...\{88B0F0DE-6937-440D-B5CA-6E69003E55F7}_is1) (Version: 1.7.0 - Matteo Paonessa)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Chameleon Clock 5.1 (HKLM-x32\...\Chameleon Clock_is1) (Version: 4.0 - Softshape Development)
Chief Architect Premier X9 (64 bit) (HKLM\...\{20AAAFAB-A161-44B0-B92A-0D6925C0C170}) (Version: 19.2.0.0 - Chief Architect)
Classic Menu for Office (HKLM\...\{632D9592-38FC-4561-80A0-A2B4725DCF70}) (Version: 9.25 - Addin Technology Inc.)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Classic Sticky Notes (HKLM\...\Classic Sticky Notes_is1) (Version: 1.0 - Winaero)
CleanMyPC version 1.9.7.1638 (HKLM\...\{90385FF3-6721-4DCD-AD11-FEBA397F4FE9}_is1) (Version: 1.9.7.1638 - MacPaw, Inc.)
ClipCache Pro 3.5.3 (HKLM\...\ClipCache_is1) (Version: - XRayz Software)
CoffeeCup HTML Editor (HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\CoffeeCup HTML Editor) (Version: - )
CoffeeCup Responsive Site Designer (HKLM\...\CoffeeCup Responsive Site Designer 2.5-2379) (Version: 2.5-2379 - CoffeeCup Software, Inc.)
concept/design onlineTV 14 (HKLM-x32\...\{65EB1D38-9DB9-4EFF-B2DE-9218BF31D8F3}_is1) (Version: 14.18.6.1 - concept/design GmbH)
ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version: - DownloadHelper)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CPUID HWMonitor 1.32 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.32 - )
CPUID HWMonitor Pro 1.23 (HKLM\...\CPUID HWMonitorPro_is1) (Version: - )
CPUID PerfMonitor 2.04 (HKLM\...\CPUID PerfMonitor2_is1) (Version: 2.04 - CPUID, Inc.)
CR8tracer (HKLM-x32\...\CR8tracer) (Version: - )
CrystalDiskMark 5.2.1 (HKLM\...\CrystalDiskMark5_is1) (Version: 5.2.1 - Crystal Dew World)
CrystalDiskMark 6.0.0 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.0 - Crystal Dew World)
CutOut 2018 professional (HKLM-x32\...\{850C520A-65DF-42CA-BB7E-EDB13A89B89B}) (Version: 6.1.0.2 - Franzis) Hidden
CutOut 2018 professional (HKLM-x32\...\CutOut 2018 professional 6.1.0.2) (Version: 6.1.0.2 - Franzis)
CyberPower PowerPanel Personal 2.1.2 (HKLM-x32\...\5708-0475-1423-7128) (Version: 2.1.2 - CyberPower Systems, Inc.)
DeepSkyStacker 4.1.1 (64 bit - remove only) (HKLM-x32\...\DeepSkyStacker64) (Version: 4.1.1 - Luc Coiffier)
Direct Folders (HKLM-x32\...\DirectFoldersAppID_is1) (Version: 3.8 - Code Sector)
Directory Compare 2.2 (HKLM-x32\...\Directory Compare_is1) (Version: - )
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.71 - NVIDIA Corporation) Hidden
Dr. Folder version 2.6.6.3 (HKLM\...\{1E989158-7B7C-4A69-9038-B010AF3F775A}_is1) (Version: 2.6.6.3 - YL Computing)
Dragon 15 (HKLM-x32\...\{768AC460-237E-45B6-99B8-1DE6D0F391E8}) (Version: 15.30.000 - Nuance Communications Inc.)
Driver Booster 6 (HKLM-x32\...\Driver Booster_is1) (Version: 6.0.2 - IObit)
DuOS (HKLM\...\{25E5B76A-CA64-4569-B639-0F50CF4FB537}) (Version: 2.0.8.8511 - American Megatrends Inc.)
DuOS (HKLM\...\{5241BE41-27F3-4EF8-98BE-DC1E07CCED19}) (Version: 2.0.9.10342 - American Megatrends Inc.)
Duplicate File Detective 5 (HKLM\...\{758B0D03-5347-4D26-A060-705993D103B4}) (Version: 5.1.52 - Key Metric Software) Hidden
Duplicate File Detective 5 (HKLM-x32\...\Duplicate File Detective 5 5.1.52) (Version: 5.1.52 - Key Metric Software)
Dynamic Auto-Painter PRO 5 version 5.0.3 (HKLM\...\{307AFFC8-E591-491A-B476-A3C83E10246C}_is1) (Version: 5.0.3 - Mediachance.com)
Dynamic Photo HDR 6 version 6.01 (HKLM\...\{8B0A6522-0432-4240-B08B-4C293C9E29B8}_is1) (Version: 6.01 - Mediachance.com)
EaseUS Partition Master 13.0 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
EasyBCD 2.3 (HKLM-x32\...\EasyBCD) (Version: 2.3 - NeoSmart Technologies)
Edraw Max 9.0 (HKLM-x32\...\Edraw Max_is1) (Version: - EdrawSoft)
Efficcess 5.50 (HKLM-x32\...\Efficcess_is1) (Version: - Efficient Software)
Epson Event Manager (HKLM-x32\...\{006C8256-3855-43BF-8BA5-4B4C40F41F71}) (Version: 3.10.0065 - Seiko Epson Corporation)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 2.02.00 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
EPSON Universal Print Driver Printer Uninstall (HKLM\...\EPSON Universal Print Driver) (Version: - SEIKO EPSON Corporation)
EPSON WF-7620 Series Printer Uninstall (HKLM\...\EPSON WF-7620 Series) (Version: - SEIKO EPSON Corporation)
Epson WF-7620 User’s Guide version 1.0 (HKLM-x32\...\UsersGuideEpson WF-7620 User’s Guide_is1) (Version: 1.0 - )
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
ESET Security (HKLM\...\{8B35CE46-1F7C-4B22-815E-AB6DC63EE3AB}) (Version: 11.0.149.0 - ESET, spol. s r.o.)
Everyday Folder Icons v 1.0 (HKLM-x32\...\Everyday Folder Icons_is1) (Version: 1.0 - ArcticLine Software)
Everything 1.4.1.895 (x64) (HKLM\...\Everything) (Version: 1.4.1.895 - David Carpenter)
EVGA Precision XOC (HKLM-x32\...\{86FE72A9-EA90-4AF2-9B0F-EA6FCCE88D50}) (Version: 6.2.7 - EVGA Corporation)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
FileBackupEX (HKLM-x32\...\FileBackupEX) (Version: 1.0.0.7 - GOFF Concepts LLC)
FileBox eXtender (HKLM\...\{23236FC2-648D-4ACF-AD16-68492D0F0AC9}) (Version: 2.1.0 - Hyperionics Technology LLC) Hidden
FileBox eXtender (HKLM-x32\...\FileBox eXtender) (Version: - Hyperionics Technology LLC)
FileMenu Tools 7.5 (HKLM\...\FileMenuTools_is1) (Version: 7.5 - LopeSoft)
FileSearchEX (HKLM-x32\...\FileSearchEX) (Version: 1.1.0.2 - GOFF Concepts LLC)
Folder Marker Home (HKLM\...\Folder Marker Home_is1) (Version: 4.3 - ArcticLine Software)
Folder Marker Pro v 3.2 (HKLM\...\Folder Marker_is1) (Version: 3.2 - ArcticLine Software)
FolderMatch v3.5.0 (HKLM-x32\...\FolderMatch_is1) (Version: - )
Geekbench 4 (HKLM-x32\...\Geekbench 4) (Version: - Primate Labs Inc.)
GnuCash 3.3 (HKLM-x32\...\GnuCash_is1) (Version: - GnuCash Development Team)
GoldWave v6.31 (HKLM\...\GoldWave v6.31) (Version: 6.31 - GoldWave Inc.)
GoldWave v6.32 (HKLM\...\GoldWave v6.32) (Version: 6.32 - GoldWave Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.96 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{BF354C72-AC4C-4A87-8D42-B089862BAE58}) (Version: 7.3.2.5491 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.20) (Version: 9.20 - Artifex Software Inc.)
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.20) (Version: 9.20 - Artifex Software Inc.)
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.21) (Version: 9.21 - Artifex Software Inc.)
GPSoftware Directory Opus (HKLM-x32\...\{0A6AA615-5321-43A0-AFAE-97BF95013EA0}) (Version: 12.6 - GPSoftware)
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.30 - Janos Mathe)
HDR projects 5 elements (64-Bit) (HKLM\...\HDR_PROJECTS_5_1_3BF7CE82_is1) (Version: 5.52 - Franzis Verlag GmbH)
Home Designer Pro 2019 (64 bit) (HKLM\...\{DE74B343-7B08-4489-AB60-98BBC0BCACC4}) (Version: 20.3.0.0 - Chief Architect)
Hot CPU Tester Pro 4.4.1 (HKLM-x32\...\{BEE9DFE1-7CDF-4D1C-A473-3B3DF8FF1431}_is1) (Version: 4.4 - 7Byte Computers)
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
Icaros 3.0.1 (HKLM\...\Icaros_is1) (Version: 3.0.1.0 - Tabibito Technology)
ICL-Icon Extractor (HKLM-x32\...\ICL-Icon Extractor) (Version: 5.12 - Icon Empire)
Icons8 (HKLM-x32\...\{195AC760-D5CE-47B9-99EE-E144CD7BF94A}_is1) (Version: 5.8.0.5 - Icons8)
Intel(R) Chipset Device Software (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{96FD0BEE-6848-48BB-AA99-A2033DB7F4E4}) (Version: 2.2.03942 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 24.20.100.6286 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.1.1015 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{3252578f-e595-4827-a6ed-0a278bbbdae8}) (Version: 3.5.0.3 - Intel)
IObit Driver Booster PRO (HKLM-x32\...\IObit Driver Booster PROv6.2.1.268 Final) (Version: v6.2.1.268 Final - Friends in War)
Ipswitch WS_FTP 12 (HKLM-x32\...\{AD88355B-A4E0-4DA1-BAC3-EA4FEA930691}) (Version: 12.6 - Ipswitch)
iPubsoft Android Desktop Manager (HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\iPubsoft Android Desktop Manager) (Version: 3.7.13 - iPubsoft)
Java 7 Update 21 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.210 - Oracle)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
K-Lite Codec Pack 14.5.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.5.5 - KLCP)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kodi (HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Kodi) (Version: - XBMC-Foundation)
Kutools for Word version 8.7.0.1 (HKLM-x32\...\{E9A0AD37-5BA2-4E60-85F1-8B785CF2FBF5}_is1) (Version: 8.7.0.1 - ExtendOffice)
LenovoUsbDriver 1.1.12 (HKLM-x32\...\LenovoUsbDriver) (Version: 1.1.12 - Lenovo)
LibreOffice 6.0.2.1 (HKLM\...\{673086D4-1E80-4ED2-A68E-2F6AF26F9760}) (Version: 6.0.2.1 - The Document Foundation)
LibreOffice 6.1 Help Pack (English (United States)) (HKLM\...\{EB5124BE-89A5-4CF8-8BED-E25CA7385E6D}) (Version: 6.1.4.2 - The Document Foundation)
LibreOffice 6.1.4.2 (HKLM\...\{080C0C39-B1B5-48BB-85AB-4F9A8768CD10}) (Version: 6.1.4.2 - The Document Foundation)
Light Image Resizer 5.1.3.0 (HKLM-x32\...\{D5C093E0-D3DF-42D3-AFD6-CAAFB6985CBC}_is1) (Version: 5.1.3.0 - ObviousIdea)
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version: 3.8.7.1 - Hermann Schinagl)
MacroMaker (HKLM-x32\...\{49E9E81A-9CA8-4A76-8AD6-BE7E3B2E1E2A}) (Version: 1.0.44 - ARM Software)
MemInfo (remove only) (HKLM-x32\...\MemInfo) (Version: - )
MicroSIP (HKLM-x32\...\MicroSIP) (Version: 3.17.8 - www.microsip.org)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Image Composite Editor (HKLM\...\{B821CDAA-34DE-46FD-87C9-E6EE7158DB5D}) (Version: 1.4.4 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\Proplus2019Volume - en-us) (Version: 16.0.10340.20017 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us.proof (HKLM\...\Proplus2019Volume - en-us.proof) (Version: 16.0.10340.20017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft Project Professional 2019 - en-us (HKLM\...\ProjectPro2019Volume - en-us) (Version: 16.0.10340.20017 - Microsoft Corporation)
Microsoft Project Professional 2019 - en-us.proof (HKLM\...\ProjectPro2019Volume - en-us.proof) (Version: 16.0.10340.20017 - Microsoft Corporation)
Microsoft Robocopy GUI (HKLM-x32\...\{107C666F-63C5-4263-8D40-8B9CFB5FED08}) (Version: 1.0.0 - Microsoft)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{58b3beca-b999-4f6f-a48c-81681136a620}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Assistant (HKLM-x32\...\{79CF5D77-8084-4C59-9899-C96BD9A88EE2}) (Version: 1.4.1.14199 - Lenovo)
MonitorTest V3.2 (HKLM-x32\...\MonitorTest_is1) (Version: 3.2 - PassMark Software)
Movavi Photo Editor 5 (x64) (HKLM\...\Movavi Photo Editor 5 (x64)) (Version: 5.5.1 - Movavi)
Mozilla Firefox 57.0.4 (x64 en-US) (HKLM\...\Mozilla Firefox 57.0.4 (x64 en-US)) (Version: 57.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 60.5.0.6961 - Mozilla)
Mozilla Thunderbird 52.9.1 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 en-US)) (Version: 52.9.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.11 - F.J. Wechselberger)
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.4.48.00 - NETGEAR Inc.)
NetObjects Fusion 2015 (HKLM-x32\...\{323FBB03-AF3B-4635-BC9E-2185901D1649}) (Version: 15.00.0000.1050 - NetObjects) Hidden
NetObjects Fusion 2015 (HKLM-x32\...\{351AD0AB-A090-42DB-9C19-B3D907B24600}) (Version: 15.0 - NetObjects)
NordVPN (HKLM-x32\...\{F11DDED0-213C-41B7-B120-514E402A7B53}) (Version: 6.19.6 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.19.6) (Version: 6.19.6 - NordVPN)
NoteBook (HKLM-x32\...\NoteBook) (Version: NoteBook - Version 5.5 - Gregory Braun -- Software Design)
NoteBook 2000 v5.7 (HKLM-x32\...\{BAFE38F0-1C37-42C3-8889-B848E5A08F79}) (Version: v5.7 - Gregory Braun -- Software Design)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
Nuance Cloud Connector (HKLM-x32\...\{DE7C1B86-27EF-4D02-886E-17CC3458034B}) (Version: 3.2.713 - Nuance Communications, Inc.)
Nuance OmniPage 18 (HKLM-x32\...\{560C6F9C-8D5E-4EAF-B408-98850E5DF49C}) (Version: 18.1.0000 - Nuance Communications, Inc.)
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 417.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 417.71 - NVIDIA Corporation)
NVIDIA Graphics Driver 417.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 417.71 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10340.20017 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10340.20017 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10340.20017 - Microsoft Corporation) Hidden
Office 2016 KMS Activator Ultimate v1.2 Final (HKLM\...\Office 2016 KMS Activator Ultimate v1.2 Final_is1) (Version: v1.2 Final - )
Office Tab Enterprise (HKLM\...\{DE469D65-1DEB-4058-BF95-C642D733668D}_is1) (Version: 13.10 - Addin Technology Inc.)
ON1 Effects 2018 (HKLM\...\ON1 Effects 2018 PE) (Version: 12.5.3.5757 - ON1)
ON1 Photo RAW 2018 (HKLM\...\ON1 Photo RAW 2018 PE) (Version: 12.5.3.5757 - ON1)
ON1 Photo RAW 2019 (HKLM\...\ON1 Photo RAW 2019 PE) (Version: 13.0.0.6139 - ON1)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenGL Extensions Viewer 5.0 (HKLM-x32\...\GLVIEW3) (Version: 511 - )
Oracle VM VirtualBox 5.1.14 (HKLM\...\{6AE61854-0F78-49E3-ABCC-586FB43CE709}) (Version: 5.1.14 - Oracle Corporation)
OSForensics (HKLM\...\OSForensics_is1) (Version: - PassMark Software)
Paragon Alignment Tool™ 4.0 Professional (HKLM-x32\...\{4D83E500-4D0C-11DF-A750-005056C00008}) (Version: 90.00.0003 - Paragon Software)
Paragon Hard Disk Manager™ 15 Suite (HKLM\...\{29258311-EA49-11DE-967C-005056C00008}) (Version: 90.00.0003 - Paragon Software)
ParkControl (HKLM-x32\...\ParkControl) (Version: 1.2.8.4 - Bitsum)
PC Tool For VeryAndroid SMS & MMS Backup 2.1.6 (HKLM-x32\...\PC Tool For VeryAndroid SMS & MMS Backup) (Version: 2.1.6 - VeryAndroid)
PCMark 10 (HKLM\...\{ACE3FF20-4423-40B2-AC00-83134F24BA90}) (Version: 1.0.1275.0 - Futuremark) Hidden
PCMark 10 (HKLM-x32\...\{a5fc954d-24df-456f-be6c-f41917d446d3}) (Version: 1.0.1275.0 - Futuremark)
PDF Compressor (HKLM-x32\...\{258FD632-F6BE-4D5B-9A87-98C6F120A864}_is1) (Version: 2.0 - Abelssoft)
Perfectly Clear Complete V3 (x64) (HKLM\...\{12F639C2-7C36-41FA-BE87-54861E580391}) (Version: 3.1.0.666 - Athentech Imaging)
PerformanceTest v8.0 (HKLM\...\PerformanceTest 8_is1) (Version: 8.0.1054.0 - Passmark Software)
PerformanceTest v9.0 (HKLM\...\PerformanceTest 9_is1) (Version: 9.0.1027.0 - Passmark Software)
Phone Drivers Downloader 1.2 (HKLM\...\{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1) (Version: 1.2.0.0 - COMPELSON Labs)
Photo-Brush 5.30 (HKLM-x32\...\Photo-Brush_is1) (Version: Photo-Brush 5.30 - Mediachance Corp.)
Photolemur (HKLM\...\{F449674A-B2AB-4C85-BF45-E67377DE07B8}) (Version: 2.3.1.1931 - Photolemur) Hidden
Photolemur (HKLM-x32\...\{ff92c9da-ce28-49c3-8f74-032f843e6f00}) (Version: 2.3.1.1931 - Photolemur)
Photo-Reactor 1.6 (HKLM\...\{27ED4410-092A-4CD6-8A31-C1EA43084B40}_is1) (Version: - Mediachance.com)
PhraseExpress v13.6.10 (HKLM-x32\...\PhraseExpress_is1) (Version: 13.6.10 - Bartels Media GmbH)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.0.0.498 - Bitsum)
Pulover's Macro Creator version 5.0.5 (HKLM\...\{223FFB42-2D49-4AF6-9EF2-82B7D0CAF8B4}_is1) (Version: 5.0.5 - Rodolfo U. Batista)
PURE HDR projects (64-Bit) (HKLM\...\PUREHDR_PROJECTS_1_3_DC338FC4_is1) (Version: 1.15 - Franzis Verlag GmbH)
Python 3.5.2 (32-bit) (HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Core Interpreter (32-bit) (HKLM-x32\...\{EB0611B2-7F10-4D97-BCF2-DCAAB1199498}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (HKLM-x32\...\{5DB2183B-62D3-407F-BBC1-EAD2F36283FA}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (HKLM-x32\...\{1FBA5182-78DD-4940-9F06-96E5042B7061}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (HKLM-x32\...\{33B10015-A9B1-4210-B50A-26C6443979B0}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (HKLM-x32\...\{9ADF9987-3327-48C6-91B3-B10900366491}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (HKLM-x32\...\{FCBB04F4-D2CF-4F55-BE92-B3898696B318}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{C1153533-FDC4-4922-892D-B71810F69566}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (HKLM-x32\...\{9D50A6D7-410A-4469-87B7-35FA84CBD479}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (HKLM-x32\...\{E6DEBF43-7ACF-4E88-9BBF-9B5945683281}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
qBittorrent 4.1.5 (HKLM-x32\...\qBittorrent) (Version: 4.1.5 - The qBittorrent project)
QuickBooks (HKLM-x32\...\{424104AD-BEC6-441D-ADE9-F6662FEEA4BA}) (Version: 24.0.4008.2403 - Intuit Inc.) Hidden
QuickBooks Premier: Accountant Edition 2014 (HKLM-x32\...\{48DCE40F-BD78-4EEA-B810-6F371716A5DD}) (Version: 24.0.4008.2403 - Intuit Inc.)
QuickBooks Runtime Redistributable (HKLM\...\{F2A4F809-2DE6-4D27-888B-4D2BB8DAF20E}) (Version: 1.00.0000 - Intuit Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Real Hide IP (HKLM-x32\...\RealHideIP) (Version: 4.5.8.6 - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.125 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.18.526.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8549 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Registrar Registry Manager 8.50 (HKLM\...\Registrar64_is1) (Version: - Resplendence Software Projects Sp.)
RegVac Registry Cleaner 5.02 (Registered Version) (HKLM-x32\...\RegVac Registry Cleaner (Registered Version)_is1) (Version: - Super Win Software, Inc.)
Revo Uninstaller Pro 4.0.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.0 - VS Revo Group, Ltd.)
RMPrepUSB (HKLM-x32\...\RMPrepUSB) (Version: - )
RoboTask (HKLM-x32\...\{BC45995A-7451-430C-9779-5FF455E710D9}_is1) (Version: 7.0.1 - Task Automation Software)
SageThumbs 2.0.0.23 (HKLM\...\SageThumbs) (Version: 2.0.0.23 - Cherubic Software)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.3.0.1910 - Samsung Electronics)
Samsung NVM Express Driver (HKLM-x32\...\{bfb0503a-76b9-415a-b0a3-dd55d2a01ebe}) (Version: 3.0.0.1802 - Samsung Electronics)
Samsung NVM Express Driver 3.0.0.1802 (HKLM\...\{03FE2BA9-9538-4195-83E3-09B43901141E}) (Version: 3.0.0.1802 - Samsung Electronics Co., Ltd) Hidden
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.235 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
SeaTools for Windows 1.4.0.4 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.4 - Seagate Technology)
Security Task Manager 2.3 (HKLM-x32\...\Security Task Manager) (Version: 2.3 - Neuber Software)
Sentinel Protection Installer 7.5.0 (HKLM-x32\...\{A5A63519-F5C2-4F4A-849A-F28A1AB3D522}) (Version: 7.5.0 - SafeNet, Inc.)
Sib Icon Catalog (HKLM-x32\...\Sib Icon Catalog) (Version: 2016.1 - SibCode)
Sib Icon Studio (HKLM-x32\...\Sib Icon Studio) (Version: 4.04 - SibCode)
SketchUp 2017 (HKLM\...\{BCA90A4C-9C6A-49D1-91F9-594A0BE02432}) (Version: 17.1.174 - Trimble, Inc.)
Smart Defrag 6 (HKLM-x32\...\Smart Defrag_is1) (Version: 6.1 - IObit)
smartmontools (HKLM-x32\...\smartmontools) (Version: 7.0 2018-12-30 r4883 (sf-7.0-1) - smartmontools.org)
SoftMaker FreeOffice 2018 (HKLM-x32\...\{02B0F09C-4670-4F32-BB8A-F22606E9E320}) (Version: 1.0.4670 - SoftMaker Software GmbH)
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
Speedtest by Ookla (HKLM\...\{CFF1450F-71E9-4286-82AE-99E6D797CAD3}) (Version: 1.1.23.001 - Ookla)
Spybot Anti-Beacon (HKLM-x32\...\{419A7FCF-93E1-474D-BFE9-987CF3F90C88}_is1) (Version: 2.2 - Safer-Networking Ltd.)
SSD Tweaker version 3.7.1 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 3.7.1 - Elpamsoft.com)
SSDFresh 2019 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 8 - Abelssoft)
SSDkeeper (HKLM\...\{1D1E49A9-D804-4301-B594-41585DB30244}) (Version: 1.0.0.64 - Condusiv Technologies)
Stardock Fences 3 (HKLM-x32\...\Stardock Fences 3) (Version: 3.09 - Stardock Software, Inc.)
StartupSelector (HKLM-x32\...\{1B485419-875B-428D-816B-2F6627815D7A}) (Version: 1.0.0.0 - Mike Lin)
StarWind V2V Image Converter V8.0 (build 20180419) (HKLM-x32\...\StarWind Converter_is1) (Version: - StarWind Software)
Sweet Home 3D version 6.1 (HKLM\...\Sweet Home 3D_is1) (Version: 6.1 - eTeks)
Sync (HKLM-x32\...\{96855E80-23DA-11E2-BDFB-09006188709B}) (Version: 1.3.3.1292 - Sync)
TAP-NordVPN 9.21.2 (HKLM\...\TAP-NordVPN) (Version: 9.21.2 - NordVPN.com)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.9025 - TeamViewer)
Technitium MAC Address Changer v6.0 (HKLM-x32\...\TMACv6.0) (Version: 6.0 - Technitium)
TextAloud 4.0 (HKLM-x32\...\{2d52d1c9-9281-4e32-8bfb-018332abcba7}_is1) (Version: 4.0.17.0 - NextUp.com)
ThumbsPlus 10 (HKLM-x32\...\{4E3BEDC4-E3A1-4211-875D-38B6B921ADCF}) (Version: 10.2.0.4015 - Cerious Software Inc.) Hidden
ThumbsPlus 10 (HKLM-x32\...\ThumbsPlus 10) (Version: - Cerious Software)
TibMounter (HKLM-x32\...\{40DF3F13-59DF-4254-98F6-F6FDB628DAD0}) (Version: 5.0.2637 - Acronis)
TNod User & Password Finder (HKLM\...\TNod) (Version: 1.6.4.0 - Tukero[X]Team)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.20 - Ghisler Software GmbH)
Total Recorder 8.6 Professional Edition (HKLM-x32\...\TotalRecorder) (Version: - )
Tree Notebook version 1.1.0 (HKLM-x32\...\Tree Notebook_is1) (Version: - )
TreeSize V6.3.7 (64 bit) (HKLM\...\TreeSize_is1) (Version: 6.3.7 - JAM Software)
TweakNow PowerPack (HKLM-x32\...\TweakNow PowerPack_is1) (Version: 4.6.0 - TweakNow.com)
Type light 3.2.043 (HKLM-x32\...\{3CC31D3E-369B-4029-A83E-251BB58A144C}_is1) (Version: 043 - CR8 Software Solutions)
UltraCompare (HKLM\...\{07A7AE94-5AAA-468A-9A3C-EF75E73D8EE2}) (Version: 16.00.0.44 - IDM Computer Solutions, Inc.)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Unlocker (HKLM-x32\...\{5577A25D-E4FE-4BFB-A660-E0D766BC4EDD}) (Version: 1.9.2 - ajua Custom Installers)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{479E8CC7-CD68-4EB4-BB04-34A5C2C74102}) (Version: 2.46.0.0 - Microsoft Corporation)
USBPcap 1.2.0.3 (HKLM\...\USBPcap) (Version: 1.2.0.3 - Tomasz Mon)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
VMware ThinApp (HKLM-x32\...\{401D1D88-32E1-4039-B59B-3E0D970E8A9B}) (Version: 5.2.18454 - VMware, Inc.)
VMware vCenter Converter Standalone (HKLM-x32\...\{70487A14-885E-4203-80E6-6FE7AA5FDA8C}) (Version: 6.1.1.3533064 - VMware, Inc.)
VMware Workstation (HKLM\...\{431EEEDD-6D71-4269-8F7F-836CFAF69A17}) (Version: 15.0.2 - VMware, Inc.)
VoipConnect (HKLM-x32\...\VoipConnect_is1) (Version: 4.14 build 776 - Finarea S.A. Switzerland)
Waterfox 56.2.5 (x64 en-US) (HKLM\...\Waterfox 56.2.5 (x64 en-US)) (Version: 56.2.5 - Waterfox Ltd)
WhiteSmoke (HKLM-x32\...\WhiteSmoke) (Version: 1.00.6034.12802 - WhiteSmoke)
Wibu Share 64 Dll (HKLM-x32\...\{3359F638-219D-45DD-87A3-02718F299D8D}) (Version: 1.0.0 - 20-20 Technologies)
WicReset version 5.0.0.40 (HKLM-x32\...\{20379D3A-321B-4830-96A6-37183B713AE8}_is1) (Version: 5.0.0.40 - WWW.WIC.SUPPORT)
Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 0.12.1.0 - Winaero)
WinDirStat 1.1.2 (HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\WinDirStat) (Version: - )
Windows 10 Manager (HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\Windows 10 Manager 2.3.4) (Version: 2.3.4 - Yamicsoft)
Windows 10 Pro Permanent Activator Ultimate v1.6 (HKLM\...\Windows 10 Pro Permanent Activator Ultimate v1.6_is1) (Version: v1.6 - )
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22514 - Microsoft Corporation)
Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
Windows Driver Package - Alcor Micro, Corp. (AmUStor) USB (10/16/2017 2.0.148.10102) (HKLM\...\FA13153A979B842D22549230EB34480B5F77D05F) (Version: 10/16/2017 2.0.148.10102 - Alcor Micro, Corp.)
Windows Driver Package - Alcorlink Corp. (AmUStor) USB (01/20/2017 1.0.147.4503) (HKLM\...\21634BA225733A431463239524164A888344AB1B) (Version: 01/20/2017 1.0.147.4503 - Alcorlink Corp.)
Windows Driver Package - AMD (amdkmpfd) System (10/19/2017 17.50.0.0000) (HKLM\...\03B6CE97C907E6AC5322B429A93FD7F521E139FE) (Version: 10/19/2017 17.50.0.0000 - AMD)
Windows Driver Package - AMD (amdkmpfd) System (12/09/2016 16.60.0.0000) (HKLM\...\D2BE684635541753B7ADEB903A532F1A701A5CB7) (Version: 12/09/2016 16.60.0.0000 - AMD)
Windows Driver Package - ELAN SMBus (ETDSMBus) System (05/31/2016 15.1.2.9) (HKLM\...\F069782784DB514BAC37C846F2CF3B7C1374AFB3) (Version: 05/31/2016 15.1.2.9 - ELAN SMBus)
Windows Driver Package - ELAN SMBus (ETDSMBus) System (11/09/2016 15.1.2.10) (HKLM\...\77D13CB31BA00EAEA7E651CAE7C67F5894E47A0C) (Version: 11/09/2016 15.1.2.10 - ELAN SMBus)
Windows Driver Package - EPSON Printer (01/19/2017 2.67.1.00) (HKLM\...\8145ADE618A8831533F5CE8D29F36D1285966F48) (Version: 01/19/2017 2.67.1.00 - EPSON)
Windows Driver Package - EPSON Printer (08/28/2017 2.68.3.00) (HKLM\...\D4924C3656245D1082BB5E3FE90B44B371693268) (Version: 08/28/2017 2.68.3.00 - EPSON)
Windows Driver Package - EPSON Printer (12/18/2017 2.68.4.00) (HKLM\...\56B4F3FEC927B258E2722B7B5C8B77844FAC2C8C) (Version: 12/18/2017 2.68.4.00 - EPSON)
Windows Driver Package - Intel (ICCWDT) System (03/13/2016 11.0.0.1010) (HKLM\...\262F224EEDD1DB9B9F2CC1808546760F1633498C) (Version: 03/13/2016 11.0.0.1010 - Intel)
Windows Driver Package - Intel (ICCWDT) System (05/04/2017 11.0.0.1013) (HKLM\...\9CF506D37685C47C7B31149795CDFC87A8626A30) (Version: 05/04/2017 11.0.0.1013 - Intel)
Windows Driver Package - Intel (ICCWDT) System (09/19/2017 11.7.0.1000) (HKLM\...\EEBA6EE175220DFB953515EBCFE35388B3811FA5) (Version: 09/19/2017 11.7.0.1000 - Intel)
Windows Driver Package - Intel (MEIx64) System (01/16/2018 1803.12.0.1093) (HKLM\...\92903FEBE6DB7EE9B14CE034036E874FC1057826) (Version: 01/16/2018 1803.12.0.1093 - Intel)
Windows Driver Package - Intel (MEIx64) System (02/12/2017 11.7.0.1002) (HKLM\...\CFE0C1ACAE1D7726183AB0D1E6015EDB65772214) (Version: 02/12/2017 11.7.0.1002 - Intel)
Windows Driver Package - Intel (MEIx64) System (03/14/2017 11.7.0.1011) (HKLM\...\42CE4024958FCB88E58EA5780378C941EF5C4E64) (Version: 03/14/2017 11.7.0.1011 - Intel)
Windows Driver Package - Intel (MEIx64) System (04/04/2017 11.7.0.1014) (HKLM\...\5EA9B5B117D600AFD72966A2D8BFD286F0E7ED2B) (Version: 04/04/2017 11.7.0.1014 - Intel)
Windows Driver Package - Intel (MEIx64) System (05/22/2017 11.7.0.1025) (HKLM\...\A8C5CC427A133A0DDA076716B59C28E4F2EE40DA) (Version: 05/22/2017 11.7.0.1025 - Intel)
Windows Driver Package - Intel (MEIx64) System (06/20/2017 11.7.0.1032) (HKLM\...\BE5C71603596337258706F0B975ADD31786D8460) (Version: 06/20/2017 11.7.0.1032 - Intel)
Windows Driver Package - Intel (MEIx64) System (07/18/2017 11.7.0.1040) (HKLM\...\554F1F66B384B83C8AAFC72C115E80D0C7806453) (Version: 07/18/2017 11.7.0.1040 - Intel)
Windows Driver Package - Intel (MEIx64) System (10/03/2017 11.7.0.1045) (HKLM\...\623E6BEBFE0E32D8AD88825BDC5B643D996BCA93) (Version: 10/03/2017 11.7.0.1045 - Intel)
Windows Driver Package - Intel (MEIx64) System (11/19/2017 11.7.0.1057) (HKLM\...\8E4301FBE2293C6788FF5829C162E4A2D2044866) (Version: 11/19/2017 11.7.0.1057 - Intel)
Windows Driver Package - Intel Corp (hswultpep) System (01/30/2013 1.0.5.591) (HKLM\...\9D406FEE18ADC9C102B04926FB415C1F530F5C77) (Version: 01/30/2013 1.0.5.591 - Intel Corp)
Windows Driver Package - Intel Corporation (iwdbus) System (11/19/2015 4.5.71.0) (HKLM\...\9D4EB711C4AF94968F3CEDAC4D1093AC5496B75B) (Version: 11/19/2015 4.5.71.0 - Intel Corporation)
Windows Driver Package - INTEL System (01/03/2017 10.1.1.40) (HKLM\...\AA2F207C856DCDEEC7E6F2FD6F1B6587260815D9) (Version: 01/03/2017 10.1.1.40 - INTEL)
Windows Driver Package - INTEL System (01/03/2017 10.1.1.40) (HKLM\...\C28D5E7B81654E84105E4E58A2E0B2046D4A6671) (Version: 01/03/2017 10.1.1.40 - INTEL)
Windows Driver Package - INTEL System (10/03/2016 10.1.1.38) (HKLM\...\0D860D04D8BD23FD35067EB99B09A017888DD4B8) (Version: 10/03/2016 10.1.1.38 - INTEL)
Windows Driver Package - INTEL System (10/03/2016 10.1.1.38) (HKLM\...\5C74A765E29D2CD3D8D1024CAF2985F2C606F217) (Version: 10/03/2016 10.1.1.38 - INTEL)
Windows Driver Package - INTEL System (11/11/2017 10.1.1.44) (HKLM\...\2EFF6156ABCA9188AAC235A23A53800CE424B4E1) (Version: 11/11/2017 10.1.1.44 - INTEL)
Windows Driver Package - Intel(R) Corporation (IntcDAud) MEDIA (01/19/2017 10.22.1.99) (HKLM\...\118D0A1C64E545FBCC94CB00962B82F8927186AE) (Version: 01/19/2017 10.22.1.99 - Intel(R) Corporation)
Windows Driver Package - Intel(R) Corporation (IntcDAud) MEDIA (07/24/2017 10.23.0.563) (HKLM\...\F076E149F13AFF04F3FA80A17FD7926F6D344E6A) (Version: 07/24/2017 10.23.0.563 - Intel(R) Corporation)
Windows Driver Package - Intel(R) Corporation (IntcDAud) MEDIA (08/28/2017 10.23.0.566) (HKLM\...\1B71BBE78B825EBE9166C371DC983475C240658F) (Version: 08/28/2017 10.23.0.566 - Intel(R) Corporation)
Windows Driver Package - Intel(R) Corporation (IntcDAud) MEDIA (12/06/2017 10.24.00.3) (HKLM\...\9F8FD413983B564F9B6E21888682BAEDDBF61070) (Version: 12/06/2017 10.24.00.3 - Intel(R) Corporation)
Windows Driver Package - LG Electronics Inc. (AirModeBtn) HIDClass (11/04/2016 1.0.1611.0401) (HKLM\...\FD1DB0C9F96D75B2DBE15DC8D24593B0C671BAB6) (Version: 11/04/2016 1.0.1611.0401 - LG Electronics Inc.)
Windows Driver Package - LG Electronics Inc. (Serial) Ports (03/05/2015 6.3.9600.4) (HKLM\...\23D08292B2639E56E3531B935E22B475F6700AAA) (Version: 03/05/2015 6.3.9600.4 - LG Electronics Inc.)
Windows Driver Package - Logitech (usbccgp) USB (11/04/2010 1.0.2.11) (HKLM\...\8A87028F68EFC3B6D4F26F7EF2DDB31C8F6767EF) (Version: 11/04/2010 1.0.2.11 - Logitech)
Windows Driver Package - MediaTek Inc. (wdm_usb) Ports (01/22/2015 3.0.1504.0) (HKLM\...\BD5E2A628C2263FAEC66A4BFF2E88B897427E4C3) (Version: 01/22/2015 3.0.1504.0 - MediaTek Inc.)
Windows Driver Package - Microsoft SCSIAdapter (12/05/2016 11.0.0.1) (HKLM\...\13EAA782572F7ED31DF187823E83EC1E907F2698) (Version: 12/05/2016 11.0.0.1 - Microsoft)
Windows Driver Package - Paragon Software Group (UimBus) UIM (09/12/2017 0.6.0.0) (HKLM\...\85D1B8AE712FF031C36C8AA419E2FB5E8587EBB2) (Version: 09/12/2017 0.6.0.0 - Paragon Software Group)
Windows Driver Package - Realtek (rt640x64) Net (03/07/2017 10.015.0307.2017) (HKLM\...\928C4A23DE889D54EE067271BED24A1B85AE59C2) (Version: 03/07/2017 10.015.0307.2017 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net (03/23/2017 10.016.0323.2017) (HKLM\...\4E6AAEB8CDCAB84C1FCC741304182CE62786CBD0) (Version: 03/23/2017 10.016.0323.2017 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net (05/26/2017 10.018.0526.2017) (HKLM\...\0B843B2327D5E13C154F424F817302428305C5CC) (Version: 05/26/2017 10.018.0526.2017 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net (06/27/2017 10.019.0627.2017) (HKLM\...\7E6016B1571294655FE6FB3B58098258A9A0B1D7) (Version: 06/27/2017 10.019.0627.2017 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net (08/11/2017 10.021.0811.2017) (HKLM\...\F481D7AB230355A44435D8714386E55C41EC7441) (Version: 08/11/2017 10.021.0811.2017 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net (10/03/2017 10.023.1003.2017) (HKLM\...\9D58EE067B88DF82ECF06A67418EF214B7AEDA62) (Version: 10/03/2017 10.023.1003.2017 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net (12/23/2016 10.013.1223.2016) (HKLM\...\0CAB0A65DF2993DC03855E1A17C1AB2779492D58) (Version: 12/23/2016 10.013.1223.2016 - Realtek)
Windows Driver Package - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (05/15/2017 2.12.5.0) (HKLM\...\BA1AC7D153551A54C358DB8C1BBF9CAA51023C7E) (Version: 05/15/2017 2.12.5.0 - SAMSUNG Electronics Co., Ltd. )
Windows Driver Package - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (05/15/2017 2.12.5.0) (HKLM\...\3FBD98729A47CC3A6F2FE6B6C2D5C9A567BC4E96) (Version: 05/15/2017 2.12.5.0 - SAMSUNG Electronics Co., Ltd. )
Windows Driver Package - Surface SCSIAdapter (03/29/2017 11.0.4.0) (HKLM\...\5D4CA996C8FDDD9A096AE02463686686BA91E275) (Version: 03/29/2017 11.0.4.0 - Surface)
Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
WindowSpace (HKLM-x32\...\WindowSpace) (Version: 2.6.0 - NTWind Software)
WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
WinTools.net Premium version 17.5.1 (HKLM-x32\...\{AA9A6236-EE61-41B7-A7EC-5F4496409D55}_is1) (Version: 17.5.1 - WinTools Software Engineering, Ltd.)
WinUtilities Professional Edition 15.22 (HKLM-x32\...\{FC274982-5AAD-4C20-848D-4424A5043009}_is1) (Version: 15.22 - YL Computing, Inc)
Wireshark 2.6.2 64-bit (HKLM-x32\...\Wireshark) (Version: 2.6.2 - The Wireshark developer community, hxxps://www.wireshark.org)
WM Recorder 16 (HKLM-x32\...\WM Recorder 16) (Version: 16.8.1 - AllAlex, Inc)
WordWeb Pro (HKLM-x32\...\WordWeb) (Version: 8 - WordWeb Software)
WPF Toolkit February 2010 (Version 3.5.50211.1) (HKLM-x32\...\{5EE6E987-1B79-4A93-832B-27472C7D1579}) (Version: 3.5.50211.1 - Microsoft Corporation)
XnConvert 1.75 (HKLM\...\XnConvert_is1) (Version: 1.75 - Gougelet Pierre-e)
XnView 2.45 (HKLM-x32\...\XnView_is1) (Version: 2.45 - Gougelet Pierre-e)
XnViewMP 0.90 (HKLM\...\XnViewMP_is1) (Version: 0.90 - Gougelet Pierre-e)
XTUPackage (HKLM-x32\...\{84D11A20-6E7F-4FBB-A2FB-117FCF871040}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.)
Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.5.2014.3 - URSoft, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{06890172-7cda-4c6e-969b-7186d7a9fd70}\InprocServer32 -> C:\Windows\System32\shdocvw.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Windows\System32\mscoree.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{1AC77AE9-9EC6-405A-9F9B-C06AB3C10B71}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{339FA1D5-707F-4CE4-8291-B2AF27C34A74}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{47aaae13-5116-4698-802f-7ec23bbae3d9}\InprocServer32 -> C:\Windows\System32\shdocvw.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{66552046-400D-4386-B144-C85E05A1C82F}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{75B9C1B0-9981-4DDD-9618-AE99FAD26D2F5}\InprocServer32 -> 0x109A3917DC76D3015030B5F0C27DD301020000000200000000000000 => No File
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{7D10A2E8-540F-4AA8-8DD3-1CAF721317F6}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{8D8BD257-577E-4EE2-968B-DC5B00121954}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{9D9F6158-E2C0-4728-B649-78AB64056033}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{C3B42C03-C1B7-4c1a-B384-BBAE19646333}\InprocServer32 -> C:\Program Files\IDM Computer Solutions\UltraCompare\UC_ShellExt64.dll ()
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{C898E697-84D7-4C39-930B-805FD6649AD0}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{E6435938-4186-4FD2-BBA5-45F567816CA1}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{EFEF7266-5259-46F8-B6AD-22C7398CE38E}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
CustomCLSID: HKU\S-1-5-21-2536635842-542287166-2959069790-1002_Classes\CLSID\{F6F51865-96F8-4AA4-B3C9-0494393EB598}\InprocServer32 -> C:\Program Files\Directory Opus\dopuslib.dll (GP Software -> GP Software)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AAASyncNo] -> {CD0DD5EC-23D2-4AE0-A111-C7B89038E695} => -> No File
ShellIconOverlayIdentifiers: [ AAASyncProg] -> {9A1FA446-6778-4A02-883B-3100549CF193} => -> No File
ShellIconOverlayIdentifiers: [ AAASyncRoot] -> {B57A832B-F40A-4A9D-A0F5-49E7D17B8EE4} => -> No File
ShellIconOverlayIdentifiers: [ AAASyncSkip] -> {AFE40DBB-AB20-4979-B0D2-483B6866C8C9} => -> No File
ShellIconOverlayIdentifiers: [ AAASyncYes] -> {9C569020-57C0-4CE0-9605-8AD42F4B1C7F} => -> No File
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [GladinetIconOverlay] -> {3C3DC57A-7535-48AF-BB9E-C3576A4F34D0} => C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon.dll [2011-07-26] (Gladinet, Inc. -> Gladinet, INC)
ShellIconOverlayIdentifiers: [GladinetUploading] -> {959A18D3-9CC9-41e8-B76F-34ED9A89D4EA} => C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU.dll [2011-07-26] (Gladinet, Inc. -> Gladinet, INC)
ShellIconOverlayIdentifiers: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlayJunction] -> {0A479751-02BC-11d3-A855-0004AC2568FF} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlaySymbolicLink] -> {0A479751-02BC-11d3-A855-0004AC2568EE} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
ShellIconOverlayIdentifiers-x32: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ShellIconOverlayIdentifiers-x32: [IconOverlayJunction] -> {0A479751-02BC-11d3-A855-0004AC2568FF} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ShellIconOverlayIdentifiers-x32: [IconOverlaySymbolicLink] -> {0A479751-02BC-11d3-A855-0004AC2568EE} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1-x32: [AJC] -> {5071CDA5-D3E1-11D5-BFC0-005004A71005} => C:\Program Files (x86)\Advanced JPEG Compressor\ContextMenuExt.dll [2001-11-22] ()
ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-10-14] (Notepad++ -> )
ContextMenuHandlers1-x32: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1-x32: [CMPCContextMenu] -> {1650dc30-2343-498a-b49a-37b90918f611} => -> No File
ContextMenuHandlers1-x32: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-01-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1-x32: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264} => C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2018-05-25] (Stardock Corporation -> Stardock)
ContextMenuHandlers1-x32: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ContextMenuHandlers1-x32: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} => -> No File
ContextMenuHandlers1-x32: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => -> No File
ContextMenuHandlers1-x32: [IXnView] -> {A5D35F9F-6A11-4EAA-B70B-7BB6FE32663A} => C:\Program Files\XnShellEx64\XnViewShellExt64.dll [2015-02-18] ()
ContextMenuHandlers1-x32-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger)
ContextMenuHandlers1-x32-x32: [SageThumbs] -> {4A34B3E3-F50E-4FF6-8979-7E4176466FF2} => C:\Program Files (x86)\SageThumbs\64\SageThumbs.dll [2017-05-08] (CherubicSoft)
ContextMenuHandlers1-x32-x32: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2017-12-18] (Online Media Technologies Ltd. -> Online Media Technologies Ltd.)
ContextMenuHandlers1-x32-x32: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit Information Technology -> IObit)
ContextMenuHandlers1-x32-x32: [SyncComContextShlExt] -> {0dcd9583-eb2f-4e08-a146-885c923c0833} => -> No File
ContextMenuHandlers1-x32-x32: [TextAloud] -> {BF31B0FB-AE0E-488F-BFD6-416FA2F9915F} => C:\Program Files (x86)\TextAloud\TAContextMenu64.dll [2017-03-31] (NEXTUP TECHNOLOGIES, LLC -> NextUp.com)
ContextMenuHandlers1-x32-x32: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org)
ContextMenuHandlers1-x32-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32-x32-x32: [WS_FTP] -> {797F3885-5429-11D4-8823-0050DA59922B} => C:\Program Files\ipswitch\WS_FTP 12\wsftpsi.dll [2017-02-07] (Ipswitch, Inc. -> Ipswitch, Inc. 83 Hartwell Avenue Lexington, MA 02421)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-01-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2018-11-21] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2018-11-21] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-30] (Malwarebytes)
ContextMenuHandlers3-x32: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2018-02-03] (LopeSoft)
ContextMenuHandlers3-x32: [Open With Gladinet] -> {81695C6B-C2CA-492F-951D-5469840B2098} => C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladinetShellProxy.dll [2011-07-26] (Gladinet, Inc. -> Gladinet, INC)
ContextMenuHandlers3-x32: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [DrFolderExtension] -> {4ca4fa65-0669-3a6b-8c16-f5c69eaf9fc9} => C:\Windows\System32\mscoree.dll [2018-09-14] (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers4: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2018-02-03] (LopeSoft)
ContextMenuHandlers4: [SyncComContextShlExt] -> {0dcd9583-eb2f-4e08-a146-885c923c0833} => -> No File
ContextMenuHandlers5: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2018-02-03] (LopeSoft)
ContextMenuHandlers5: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-01-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-01-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [FileMenuTools] -> {C1B2C38F-3DCA-4E3D-BC34-D5B87B636543} => C:\Program Files\LopeSoft\FileMenu Tools\FileMenuTools64.dll [2018-02-03] (LopeSoft)
ContextMenuHandlers6: [FMMenuExt] -> {47C91696-894C-46A1-B196-2C7CA1952F45} => C:\Program Files (x86)\Folder Marker\ShellExt64.dll [2017-04-26] (ArcticLine Software -> ArcticLine Software)
ContextMenuHandlers6: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2018-05-24] (Hermann Schinagl -> Hermann Schinagl)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WS_FTP] -> {797F3885-5429-11D4-8823-0050DA59922B} => C:\Program Files\ipswitch\WS_FTP 12\wsftpsi.dll [2017-02-07] (Ipswitch, Inc. -> Ipswitch, Inc. 83 Hartwell Avenue Lexington, MA 02421)
ContextMenuHandlers1_S-1-5-21-2536635842-542287166-2959069790-1002: [OpusZip] -> {E9FE4040-3C93-11D4-8006-00201860E88A} => C:\Program Files\Directory Opus\dopuslib.dll [2017-06-09] (GP Software -> GP Software)
ContextMenuHandlers1_S-1-5-21-2536635842-542287166-2959069790-1002: [UltraCompare] -> {C3B42C03-C1B7-4c1a-B384-BBAE19646333} => C:\Program Files\IDM Computer Solutions\UltraCompare\UC_ShellExt64.dll [2016-10-26] ()
ContextMenuHandlers4_S-1-5-21-2536635842-542287166-2959069790-1002: [OpusZip] -> {E9FE4040-3C93-11D4-8006-00201860E88A} => C:\Program Files\Directory Opus\dopuslib.dll [2017-06-09] (GP Software -> GP Software)
ContextMenuHandlers5_S-1-5-21-2536635842-542287166-2959069790-1002: [DOpus] -> {B9DD4945-1BED-4CB7-994C-F40B72B7725A} => C:\Program Files\Directory Opus\dopuslib.dll [2017-06-09] (GP Software -> GP Software)
FolderExtensions: [] -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} => M:\__NEW SYSTEM\OldNewExplorer\OldNewExplorer64.dll [2017-08-16] (www.startisback.com)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {001BB65C-99DB-48B4-985A-E6CA5B93AC04} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {0048873E-787E-48CB-8904-477C760424E1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {03A90AC4-4701-4968-B1AA-129474023B9C} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E05FDB1-5D05-4579-A240-AC3CC97D4C4A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {1975FAAE-5A45-4A62-B9CD-46FF22004A3D} - System32\Tasks\AdobeGCInvoker-1.0-MAIN-Robert => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {1B028FFC-651F-4E9E-9D5F-ADC35A0D7977} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {1C8071AC-36F3-41B1-8ECB-3B9A4B938761} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {1F5221CA-3888-4F8C-AB32-351F9D16ACB1} - System32\Tasks\EPSON WF-7620 Series Update {1ECFE6B0-2DCF-4BC8-B398-0952B3F2D628} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {23FC91E1-04FC-480D-AA4A-73406F4CB043} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\Precision XOC\PrecisionX_x64.exe (EVGA Corp. -> EVGA Corp.)
Task: {25E7808A-9B4B-44FC-BE5B-BD874E82C5B2} - System32\Tasks\EPSON WF-7620 Series Update {ED5C3E4B-22B0-4833-8697-70D920ABD5B8} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {2A5A525A-17DD-4D71-BB8F-277E1797C703} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcTrigger
Task: {2B227381-6EC4-4EF9-B585-7868CF530DC6} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (ASUSTeK Computer Inc. -> ) [File not signed]
Task: {371EEF7F-E958-4FC2-8CC5-E9513755D92E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {3AEAB86C-9212-4A4F-9347-2753E6F05D52} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {540C6FBB-402A-454E-866E-90465CC41D76} - System32\Tasks\{FB2E98CB-E61E-4EC8-A8E5-D80B12397F38} => C:\Windows\system32\pcalua.exe -a "D:\System Special\Support Tools System\Diskmon.exe" -d "D:\System Special\Support Tools System"
Task: {5623AD13-148B-4AC4-A1D3-3F21B9693A5C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {59382F95-CBEA-4CEE-B3AC-36380659D73F} - System32\Tasks\Office 2019 Statique Activation Planificateur => M:\_OFFICE [Argument = Apps\Activation Office2019\ActO19.cmd -renewalonly]
Task: {5D27C193-B654-46AD-BE86-424213D7497B} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {5DEE9B36-D6B5-4F1E-B449-D5F44C49F31A} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed]
Task: {5EA3F038-E23C-4703-A17B-A1FE334244EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {64628555-880B-42A5-9592-52E420FBB2AA} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {652EEFCB-CF63-420A-8044-3BB93816EA4D} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe (IObit Information Technology -> IObit)
Task: {6F713E61-2A94-4CFB-9360-90028CA3A7F6} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {6FC5B523-6F46-479A-BF79-0E231A687080} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {7882E98F-49FF-418C-833F-78063E0C3249} - System32\Tasks\CMPCUAC => C:\Program Files\CleanMyPC\CleanMyPC.exe
Task: {7CACE001-AFFB-439D-BDBF-0B892D2BFB2A} - System32\Tasks\EPSON WF-7620 Series Update {D73D3075-DCA2-4ED2-B786-6695A90911A2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {7EC7AFE4-A9A5-4BAE-A30B-C7F21BCB0D12} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80573964-EE05-492E-9E1B-70E5FDD810D1} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe (IObit Information Technology -> IObit)
Task: {811EB68B-ECA3-44FE-952C-0DCA89CA8819} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {943BC38F-08BF-4BCF-9549-BFCB1B7A011E} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Safer-Networking Ltd\Spybot Anti-Beacon\Spybot3AntiBeacon.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {96E918E5-5D71-4A8F-AC1F-5A8695873D51} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {9E4124BA-9648-462F-BA24-5514F268DA1D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9EFD414F-53B7-4C21-A8E4-C7043BA53BA7} - System32\Tasks\ParkControl => C:\Program Files\ParkControl\parkcontrol.exe (Bitsum LLC -> Bitsum LLC) <==== ATTENTION
Task: {9F20C689-57C5-43DD-868D-44AF7F606C81} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {A088F962-E5DE-49A7-BFE7-79CA1091E286} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {A3CD637F-75A4-46F0-B23E-593CF9E0EB55} - System32\Tasks\lenovo mobile auto run => C:\Program Files (x86)\MagicPlus\MagicPlus_helper.exe (LENOVO -> Lenovo) [File not signed]
Task: {A8950AC6-6C30-46D9-A58B-12A85A1BC02F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {B1C0B7D2-5433-4374-BD30-78E36B14BBB6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {B437F51F-F3A8-4E03-8F80-C53F3268A091} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B56094FA-8304-4F3F-BB61-2B72B600CE30} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BAAF34F5-8170-4150-8FF6-AF7EA2F4EE27} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (ASUSTeK Computer Inc. -> )
Task: {BB3A4422-744C-4702-965B-8C24E618286E} - System32\Tasks\S-1-5-21-2536635842-542287166-2959069790-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {C1816DC9-9E10-4800-BF5E-6C841DEB03C0} - System32\Tasks\EPSON WF-7620 Series Invitation {1ECFE6B0-2DCF-4BC8-B398-0952B3F2D628} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {C5FAC558-B86A-41A8-AAA7-7A89B123734A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C9E0E2C2-3C43-45AE-82DE-E5A20FC61F3E} - System32\Tasks\{06AE13BF-F5DB-4046-A4D1-A014AB2EC979} => "c:\program files\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.32.0.104/en/privacy
Task: {CEC2430F-2FAB-4A52-948F-FD9982330AEF} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {CEE8FA2A-EA27-4240-8EE8-88F713E749A4} - System32\Tasks\Abelssoft\Abelssoft SSD Fresh Settings Check_43 => C:\Program Files (x86)\SSDFresh\AbLauncher.exe (Ascora GmbH -> )
Task: {D12AF620-DE1B-48D8-824E-95646DFE4A11} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_114_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {DE4C0897-CD6C-4897-A2E5-B3F13DE7CBE8} - System32\Tasks\ASC12_SkipUac_Robert => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {DF887BB2-988E-4349-BB8B-E8D861BF8956} - System32\Tasks\Process Lasso Core Engine Only => C:\Program Files\Process Lasso\processgovernor.exe (Bitsum LLC -> Bitsum LLC)
Task: {E39420B3-ED44-4D6E-B283-6661F5FC15FB} - System32\Tasks\Listary => C:\Program Files\Listary\Listary.exe <==== ATTENTION
Task: {EADFBECD-F924-49BF-9E02-792F44BFEB9A} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe (IObit Information Technology -> IObit)
Task: {ED9BC2FB-9157-4C65-B830-96F473DF833E} - System32\Tasks\EPSON WF-7620 Series Invitation {D73D3075-DCA2-4ED2-B786-6695A90911A2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {EF206E4C-CC1B-4040-B299-18608DEE51DE} - System32\Tasks\SoftMakerUpdater => C:\Program Files (x86)\SoftMaker FreeOffice 2018\SoftMakerUpdaterTool.exe (SoftMaker Software GmbH -> )
Task: {F3728246-2851-4C1B-8F8E-81D45EC0D7FE} - System32\Tasks\EPSON WF-7620 Series Invitation {ED5C3E4B-22B0-4833-8697-70D920ABD5B8} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {F857985A-4DB6-479B-9875-90AE2AA450BE} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9C6C03B-DB20-4CC6-A497-1AB41E3D32FF} - System32\Tasks\Process Lasso Management Console (GUI) => C:\Program Files\Process Lasso\processlasso.exe (Bitsum LLC -> Bitsum LLC)
Task: {FB567A83-6944-407F-8EB2-F07C55FA579C} - System32\Tasks\AdobeAAMUpdater-1.0-MAIN-Robert => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {1ECFE6B0-2DCF-4BC8-B398-0952B3F2D628}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE
Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {D73D3075-DCA2-4ED2-B786-6695A90911A2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE
Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {ED5C3E4B-22B0-4833-8697-70D920ABD5B8}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE
Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {1ECFE6B0-2DCF-4BC8-B398-0952B3F2D628}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE:/EXE:{1ECFE6B0-2DCF-4BC8-B398-0952B3F2D628} /F:UpdateWORKGROUP\MAIN$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {D73D3075-DCA2-4ED2-B786-6695A90911A2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE:/EXE:{D73D3075-DCA2-4ED2-B786-6695A90911A2} /F:UpdateWORKGROUP\MAIN$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {ED5C3E4B-22B0-4833-8697-70D920ABD5B8}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE:/EXE:{ED5C3E4B-22B0-4833-8697-70D920ABD5B8} /F:UpdateWORKGROUP\MAIN$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\realtech VR\OpenGL Extensions Viewer 5.0\OpenGL Extensions Viewer 5.0 Home Page.lnk -> hxxp://www.realtech-vr.com/glview
Shortcut: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\realtech VR\OpenGL Extensions Viewer 5.0\realtech VR Home Page.lnk -> hxxp://www.realtech-vr.com
Shortcut: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Link Shell Extension\Donate.lnk -> hxxp://schinagl.priv.at/nt/hardlinkshellext/linkshellextension.htm

==================== Loaded Modules (Whitelisted) ==============

2018-09-14 23:28 - 2018-09-14 23:28 - 000449536 _ () c:\windows\system32\SSDM.dll
2017-06-22 12:49 - 2017-06-22 12:49 - 001278720 _ () c:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2018-07-21 23:38 - 2014-04-23 22:29 - 001360016 _ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2019-02-07 16:55 - 2019-02-07 16:55 - 000543584 _ () C:\Program Files (x86)\Backblaze\bzserv.exe
2018-12-04 02:14 - 2018-12-04 02:14 - 000184784 _ () C:\Program Files (x86)\NordVPN\nordvpn-service.exe
2018-08-01 18:32 - 2018-08-01 18:32 - 006086232 _ () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
2018-11-21 01:29 - 2018-11-21 01:29 - 015446960 _ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
2018-10-18 09:06 - 2012-07-29 09:22 - 000072192 _ () C:\Program Files (x86)\Direct Folders\dfh64.dll
2018-09-14 23:28 - 2018-09-14 23:28 - 000834088 _ () C:\Windows\System32\InputHost.dll
2004-09-30 10:15 - 2004-09-30 10:15 - 000192000 _ () C:\Program Files\LinkShellExtension\RockallDLL.dll
2018-05-25 11:46 - 2018-05-25 11:46 - 000062424 _ () c:\program files (x86)\stardock\fences\SdCrashReporter64.dll
2018-09-07 17:07 - 2018-09-07 17:08 - 000095744 _ () C:\WINDOWS\Womtrust.dll
2017-03-02 10:46 - 2017-03-02 10:46 - 005823600 _ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 000491184 _ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2018-09-14 23:28 - 2018-09-14 23:28 - 000474624 _ () C:\Windows\ShellExperiences\TileControl.dll
2019-01-04 09:56 - 2019-01-04 09:56 - 002801152 _ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-05-22 11:05 - 2017-02-07 09:01 - 006537448 _ () C:\Program Files\ipswitch\WS_FTP 12\res0409.dll
2017-09-23 09:05 - 2015-02-18 20:46 - 002383360 _ () C:\Program Files\XnShellEx64\XnViewShellExt64.dll
2018-10-14 10:45 - 2018-10-14 10:45 - 000230064 _ () C:\Program Files\Notepad++\NppShell_06.dll
2018-09-14 23:28 - 2018-09-14 23:28 - 001740288 _ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-05-27 13:51 - 2015-05-27 13:51 - 000156160 _ () C:\Program Files (x86)\EVGA\Precision XOC\FW1FontWrapper_x64.dll
2017-06-22 12:37 - 2017-06-22 12:37 - 000588360 _ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2019-02-07 16:55 - 2019-02-07 16:55 - 001061728 _ () C:\Program Files (x86)\Backblaze\bzbui.exe
2018-10-23 17:24 - 2015-05-27 13:51 - 000156160 _ () C:\WINDOWS\SYSTEM32\FW1FontWrapper_x64.dll
2018-11-28 07:46 - 2018-11-28 07:46 - 000061408 _ () C:\Program Files\CCleaner\branding.dll
2017-06-03 12:06 - 2015-12-04 11:44 - 000136192 _ () C:\Program Files (x86)\AudioSwitch\AudioSwitch.exe
2017-06-22 13:57 - 2017-06-22 13:57 - 005118656 _ () C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
2018-10-16 21:55 - 2018-07-17 01:28 - 000123392 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\PowerPanel Personal.exe
2018-10-19 13:28 - 2018-10-19 13:28 - 007442072 _ () C:\Users\Robert\AppData\Local\Programs\Sync\sync-worker.exe
2018-10-16 21:55 - 2018-07-17 01:28 - 000011264 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ppped.exe
2017-03-07 10:57 - 2017-03-07 10:57 - 007014728 _ () C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
2017-01-20 21:33 - 2018-02-08 20:11 - 002199656 _ () C:\Program Files\Everything\Everything.exe
2018-07-21 23:42 - 2017-12-26 05:26 - 000081368 _ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\ATKEX.dll
2018-07-21 23:42 - 2017-12-26 05:26 - 000229848 _ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\ASUS_WMI.dll
2019-02-12 22:43 - 2019-02-12 22:43 - 000032552 _ () C:\Program Files (x86)\ASUS\AXSP\4.00.01\PEbiosinterface32.dll
2018-11-21 01:24 - 2018-11-21 01:24 - 000091568 _ () C:\Program Files (x86)\VMware\VMware Workstation\zlib1.dll
2018-11-21 01:29 - 2018-11-21 01:29 - 002035120 _ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2018-05-24 04:45 - 2018-05-24 04:45 - 000250368 _ () C:\Program Files (x86)\NordVPN\x86\Liberation.Native.Firewall.dll
2018-11-21 01:29 - 2018-11-21 01:29 - 000141744 _ () C:\Program Files (x86)\VMware\VMware Workstation\expat.dll
2018-10-23 00:03 - 2016-01-11 16:03 - 000899872 _ () C:\Program Files (x86)\IObit\Smart Defrag\webres.dll
2018-10-23 00:03 - 2016-01-11 16:02 - 000630048 _ () C:\Program Files (x86)\IObit\Smart Defrag\ProductStatistics.dll
2018-10-18 09:06 - 2012-07-29 09:23 - 000073728 _ () C:\Program Files (x86)\Direct Folders\dfh32.dll
2015-05-27 13:51 - 2015-05-27 13:51 - 000129536 _ () C:\Program Files (x86)\EVGA\Precision XOC\FW1FontWrapper.dll
2017-06-22 12:35 - 2017-06-22 12:35 - 008055728 _ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_resources.dll
2016-08-15 10:28 - 2016-08-15 10:28 - 000129968 _ () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll
2017-06-22 13:55 - 2017-06-22 13:55 - 020921440 _ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2017-06-22 12:36 - 2017-06-22 12:36 - 000396720 _ () C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll
2016-08-29 20:16 - 2016-08-29 20:16 - 000685488 _ () C:\Program Files (x86)\Common Files\Acronis\Home\sqlite3.dll
2017-06-22 12:35 - 2017-06-22 12:35 - 000049584 _ () C:\Program Files (x86)\Common Files\Acronis\Home\rpc_client.dll
2017-03-07 10:48 - 2017-03-07 10:48 - 000248240 _ () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll
2016-08-29 22:57 - 2016-08-29 22:57 - 000444336 _ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2016-08-29 20:16 - 2016-08-29 20:16 - 000115632 _ () C:\Program Files (x86)\Common Files\Acronis\Home\expat.dll
2018-10-16 21:55 - 2017-12-07 03:05 - 001751040 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\PyQt5\QtCore.pyd
2018-10-16 21:56 - 2017-12-07 03:06 - 000084992 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\sip.pyd
2018-10-16 21:55 - 2017-12-07 03:05 - 001879040 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\PyQt5\QtGui.pyd
2018-10-16 21:55 - 2017-12-07 03:05 - 003814400 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\PyQt5\QtWidgets.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000052224 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\DeviceStatusHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:30 - 000029184 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\System\systemDefine.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000039424 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\i18nTranslater.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:30 - 000033280 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\System\settings.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000099328 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\NotificationHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000067072 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\OAuthManagement.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000248832 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\DataSource2.cp36-win32.pyd
2018-10-16 21:56 - 2017-07-05 07:30 - 000013824 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\sqlalchemy\cprocessors.cp36-win32.pyd
2018-10-16 21:56 - 2017-07-05 07:30 - 000009728 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\sqlalchemy\cutils.cp36-win32.pyd
2018-10-16 21:56 - 2017-07-05 07:30 - 000014848 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\sqlalchemy\cresultproxy.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000034304 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Events\Event.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:30 - 000067584 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\System\systemFunction.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000036864 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\DBSession.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000042496 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\DataCryptor.cp36-win32.pyd
2018-10-16 21:55 - 2017-09-14 21:35 - 000009728 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\cryptography\hazmat\bindings\_padding.pyd
2018-10-16 21:55 - 2017-09-14 21:35 - 000128512 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\_cffi_backend.cp36-win32.pyd
2018-10-16 21:55 - 2017-09-14 21:35 - 000009728 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\cryptography\hazmat\bindings\_constant_time.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000017408 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\major\Command.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000038912 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\DevicePropHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000038400 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\RuntimeHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000034816 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\DeviceConfigHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000062464 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\ScheduleHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000147968 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\Scheduler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000114688 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\EmailSender.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000038912 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\OSOperator.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000032768 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\Hibernate.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000026624 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\Shutdown.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:30 - 000066048 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\controllers\DeviceConfigure.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:30 - 000058880 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\System\ValueId.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000062976 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\controllers\TransactionHelper.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000032256 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\Transaction.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000103424 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\DeviceStatusData.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000036864 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\DriverTransaction.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000035328 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\Statement.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000029696 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\VoltageHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000039936 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\AdvancedHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000063488 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\EnergyHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000048640 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\SelfTestHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000048128 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\SummaryHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000033280 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\AppTrayHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000034816 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientHandler\MenuHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000037376 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\Logger.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000039936 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\ClientModel\DaemonStatus.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000235008 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\major\AppClient.cp36-win32.pyd
2018-10-16 21:55 - 2017-12-07 03:05 - 000513024 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\PyQt5\QtNetwork.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000035328 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\major\Verification.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000107520 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\DevicePropertiesData.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000039424 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\Utility\HelpOpener.cp36-win32.pyd
2018-11-21 01:16 - 2018-11-21 01:16 - 000368056 _ () C:\Program Files (x86)\VMware\VMware Workstation\pcre.dll
2018-10-16 21:55 - 2017-03-13 11:15 - 000033792 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\servicemanager.pyd
2018-10-16 21:55 - 2017-06-20 22:02 - 000111616 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\pywintypes36.dll
2018-10-16 21:56 - 2017-03-13 11:14 - 000021504 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\win32event.pyd
2018-10-16 21:56 - 2017-03-13 11:15 - 000173568 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\win32gui.pyd
2018-10-16 21:56 - 2017-03-13 11:15 - 000046592 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\win32service.pyd
2018-10-16 21:56 - 2017-03-13 11:15 - 000103424 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\win32api.pyd
2018-10-16 21:55 - 2018-07-17 01:30 - 000245760 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\controllers\DeviceMonitor.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000099328 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\controllers\EventAnalyzer.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000063488 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\controllers\EnergyRecorder.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000035328 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\DeviceStatusHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000082432 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\NotificationHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000036864 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\DevicePropHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000033792 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\RuntimeHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000034304 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\VoltageHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000039424 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\AdvancedHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000076800 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\ScheduleHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000034304 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\SelfTestHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000034304 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\EnergyHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000032256 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\SummaryHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000040448 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\handler_refactor\AppTrayHandler.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:32 - 000278016 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\major\AppServer.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000056832 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\model_Json\Device.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:31 - 000171008 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\controllers\DevicePropertiesFetcher.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:30 - 000040960 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\controllers\DesktopInteractiveServer.cp36-win32.pyd
2018-10-16 21:55 - 2018-07-17 01:28 - 000163840 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\bin\ppbedrvc.dll
2018-10-16 21:55 - 2018-07-17 01:28 - 001134592 _ () C:\Program Files (x86)\CyberPower PowerPanel Personal\bin\ppbedrv.dll
2004-09-30 09:09 - 2004-09-30 09:09 - 000155648 _ () C:\Program Files\LinkShellExtension\32\RockallDLL.dll
2018-05-22 11:05 - 2017-02-07 09:01 - 006538984 _ () C:\Program Files (x86)\Ipswitch\WS_FTP 12\res0409.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files\Directory Opus:stockcert12 [2098]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivqqsp28hfm [0]
AlternateDataStreams: C:\ProgramData\sdpsenv.dat:naughtypirates [322]
AlternateDataStreams: C:\ProgramData\Temp:0FF263E8 [147]
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51 [334]
AlternateDataStreams: C:\ProgramData\Temp:58A5270D [404]
AlternateDataStreams: C:\ProgramData\Temp:5B811727 [157]
AlternateDataStreams: C:\ProgramData\Temp:6DAA43DB [213]
AlternateDataStreams: C:\ProgramData\Temp:728B799F [420]
AlternateDataStreams: C:\ProgramData\Temp:792D4CF1 [143]
AlternateDataStreams: C:\ProgramData\Temp:A303874F [296]
AlternateDataStreams: C:\ProgramData\Temp8999815 [460]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\.scr: SageThumbsImage.scr => "%1" /S <==== ATTENTION
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\Software\Classes\.exe: => <==== ATTENTION
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\Software\Classes\.scr: SageThumbsImage.scr => <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-02-11 09:47 - 2019-02-12 22:48 - 000003861 _ C:\WINDOWS\system32\drivers\etc\hosts

0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 db3wns2011111.wns.windows.com
0.0.0.0 fe3.delivery.dsp.mp.microsoft.com.nsatc.net
0.0.0.0 msnbot-207-46-194-33.search.msn.com
0.0.0.0 settings.data.microsof.com
0.0.0.0 so.2mdn.net
0.0.0.0 ssw.live.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsat-c.net
0.0.0.0 ui.skype.com
0.0.0.0 v10.vortex-win.data.microsoft.com
0.0.0.0 win10.ipv6.microsoft.com
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.67
127.0.0.1 ood.opsource.net
127.0.0.1 199.7.52.190
127.0.0.1 ocsp.spo1.verisign.com
127.0.0.1 199.7.54.72
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 209-34-83-73.ood.opsource.net
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 activate-sea.adobe.com

There are 85 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: %SystemRoot%\system32\WBEM;C:\WINDOWS\system32\WBEM;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\Intuit\QBPOSSDKRuntime;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\?????Adds given directory to the PATH environement variable;C:\Program Files\IDM Computer Solutions\UltraCompare;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files\Condusiv Technologies\SSDkeeper\TCE\;C:\PROGRA~1\CONDUS~1\SSDKEE~1;C:\Program Files\AMI\DuOS;C:\Program Files (x86)\WinMerge;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;c:\Program Files (x86)\Common Files\Acronis\VirtualFile\;c:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;c:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\WINDOWS\System32\OpenSSH\;C:\Windows\system32;C:\Windows\System32\Wbem;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\耀䔖辑ࠂAdds given directory to the PATH environement variable;C:\Users\Robert\AppData\Local\Microsoft\WindowsApps;C:\Program Files\AMI\DuOS\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;c:\Program Files\AMI\DuOS\;C:\Program Files\Process Lasso\;;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\Intuit\QBPOSSDKRuntime;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\耀䔖辑ࠂAdds given directory to the PATH environement variable;C:\Program Files\IDM Computer Solutions\UltraCompare;C:\Users\Robert\AppData\Local\Microsoft\WindowsApps;C:\Users\Robert\AppData\Local\Microsoft\WindowsApps;;C:\Program Files\AMI\DuOS\;c:\Program Files\AMI\DuOS\
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 1.1.1.1 - 1.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AdobeUpdateService => 3
MSCONFIG\Services: AGSService => 3
MSCONFIG\Services: DragonLoggerService => 3
MSCONFIG\Services: GladFileMonSvc => 3
MSCONFIG\Services: QBCFMonitorService => 3
MSCONFIG\Services: QBVSS => 3
MSCONFIG\Services: XblAuthManager => 3
MSCONFIG\Services: XblGameSave => 3
MSCONFIG\Services: XboxGipSvc => 3
MSCONFIG\Services: XboxNetApiSvc => 3
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "IntelliPoint"
HKLM\...\StartupApproved\Run32: => "FUFAXRCV"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKLM\...\StartupApproved\Run32: => "Intuit SyncManager"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "ISUSPM"
HKU\S-1-5-21-2536635842-542287166-2959069790-1002\...\StartupApproved\Run: => "ISUSPM"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [Microsoft-Windows-Unified-Telemetry-Client] => (Block) C:\WINDOWS\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{1C91F70A-E3A0-49ED-9AD2-FCC19EB552E4}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe ()
FirewallRules: [{659086EE-4E4A-42FF-A029-C882B8E4D114}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe ()
FirewallRules: [{8E99E640-6325-4562-B777-AD47D02952F7}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{EFBCE94E-0DD6-45B0-A381-E96F1710592D}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{75134509-1D71-4981-BA29-A48A3A09E793}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{550FBD24-509C-48FB-B8D6-7C3C88C4CB41}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{4A19104C-C8FC-4929-9763-C00E7AFE06DD}] => (Allow) c:\Program Files\AMI\DuOS\DuOS.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{73F8A507-4CCE-4FCF-ADC6-CFC62B24EAA1}] => (Allow) c:\Program Files\AMI\DuOS\DuOS.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{1D05C590-CE00-47BB-9EE1-5F38CA56427D}] => (Allow) c:\Program Files\AMI\DuOS\Ubusd.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{49CD392E-28D5-4DC0-A4D9-052CA3FA819A}] => (Allow) c:\Program Files\AMI\DuOS\Ubusd.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{65E9C262-7D6B-46AC-96BF-F861070771AF}] => (Allow) c:\Program Files\AMI\DuOS\Dsync.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{FB55193E-6C02-45E2-9668-81412C657926}] => (Allow) c:\Program Files\AMI\DuOS\Dsync.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{FAD54B9E-B031-4FB9-AF31-B01E17C92BD1}] => (Allow) c:\Program Files\AMI\DuOS\SysEvent.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{23740F2C-BBF9-4E31-83C7-4D6BDA28A16D}] => (Allow) c:\Program Files\AMI\DuOS\SysEvent.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{980CE590-30C8-43DA-998C-5308EE60EDD7}] => (Allow) c:\Program Files\AMI\DuOS\locationservice.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{AE85D7A1-ED40-4945-BFFE-8A43E41E3165}] => (Allow) c:\Program Files\AMI\DuOS\locationservice.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{26F856D4-BD24-4C15-ACF0-4544FAC20130}] => (Allow) c:\Program Files\AMI\DuOS\CamProvider.exe (American Megatrends Inc -> )
FirewallRules: [{7029C9B1-E4CD-4342-9958-AB5ADC9BD159}] => (Allow) c:\Program Files\AMI\DuOS\CamProvider.exe (American Megatrends Inc -> )
FirewallRules: [{12721453-88A1-4660-8352-CA4E2D539159}] => (Allow) c:\Program Files\AMI\DuOS\SensorService.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{190036F5-080A-4827-A2C0-F74AE36224F5}] => (Allow) c:\Program Files\AMI\DuOS\SensorService.exe (American Megatrends Inc -> American Megatrends Inc.)
FirewallRules: [{33ECC80C-A888-464D-B7A6-ACE683EB3AC4}] => (Allow) c:\Program Files\AMI\DuOS\..\DuoVM\DuoVMHeadless.exe (American Megatrends Inc. -> )
FirewallRules: [{7E7EEACC-A0BE-4505-831D-7557F5D939AD}] => (Allow) c:\Program Files\AMI\DuOS\..\DuoVM\DuoVMHeadless.exe (American Megatrends Inc. -> )
FirewallRules: [{8E92EE5B-6004-4C4A-8280-D5E397F06DFB}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{6149C307-4EA6-4D0D-B773-1078F9DA4772}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{CCA62CD7-4351-4679-B823-72E465661309}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{7EAB9C90-68F2-42A8-8275-0826C13A75B6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{77EFDC1A-8C04-43AF-B2CF-B9E61F932B1E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\AutoUpdate.exe (IObit Information Technology -> IObit)
FirewallRules: [{04F9547B-CCD8-4EE3-9D71-15EC87F0C35A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\AutoUpdate.exe (IObit Information Technology -> IObit)
FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe (Microsoft Windows -> )
FirewallRules: [{446F28F1-7F9A-4C30-AF3C-6780143B36D5}] => (Allow) C:\Program Files\ON1\ON1 Effects 2018\ON1 Effects 2018.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{D654E593-D58C-42DD-B5D2-7DEB5B8B9597}] => (Allow) C:\Program Files\ON1\ON1 Effects 2018\ON1 Effects 2018.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{0ABB78A9-FA6A-4A3E-B386-AA5E79011126}] => (Allow) C:\Program Files\ON1\ON1 Effects 2018\on1sandbox.exe (ON1, Inc -> )
FirewallRules: [{7994AB44-C280-4E70-8D90-A9640D4CA823}] => (Allow) C:\Program Files\ON1\ON1 Effects 2018\on1sandbox.exe (ON1, Inc -> )
FirewallRules: [{C6BFA92D-7DA9-47CC-8592-4A9E536849E1}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2018\on1capture.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{19C5F5CE-8974-4D93-894C-A65E4DD9F1CE}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2018\on1capture.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{C71A8F25-2011-4945-9B9A-F90C5F8A6210}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2018\ON1 Photo RAW 2018.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{7E4AF2E7-5C16-4C1F-8F1E-1FE4220DD9C4}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2018\ON1 Photo RAW 2018.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{4F551880-98DB-4E74-932E-410E838DC151}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2018\on1sandbox.exe (ON1, Inc -> )
FirewallRules: [{39C3F252-4AA2-4560-A568-46AA96B99454}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2018\on1sandbox.exe (ON1, Inc -> )
FirewallRules: [{4AC00439-0770-4FB0-AD87-4576543FD108}] => (Allow) LPort=1688
FirewallRules: [{C2E46902-5C39-4D1E-9CCD-F4A01B808269}] => (Allow) C:\Program Files (x86)\VoipConnect.com\VoipConnect\VoipConnect.exe (Finarea SA -> VoipConnect)
FirewallRules: [{4B6A20CE-F1D8-4D39-BE3D-04EAEB8D2E48}] => (Allow) C:\Program Files (x86)\VoipConnect.com\VoipConnect\VoipConnect.exe (Finarea SA -> VoipConnect)
FirewallRules: [{B0C4194E-75D3-406A-84D9-BF635484BFB0}] => (Allow) C:\Program Files\Waterfox\waterfox.exe (Waterfox Limited -> Mozilla Corporation)
FirewallRules: [{C2E59317-B470-455D-919C-F491371EFCEB}] => (Allow) C:\Program Files\Waterfox\waterfox.exe (Waterfox Limited -> Mozilla Corporation)
FirewallRules: [{5AA9B33F-222E-42F2-9C3B-7B0C70C36370}] => (Allow) C:\Program Files (x86)\VoipConnect.com\VoipConnect\VoipConnect.exe (Finarea SA -> VoipConnect)
FirewallRules: [{4F0410DA-46D7-4DF9-B498-8AC55B8DA853}] => (Allow) C:\Program Files (x86)\VoipConnect.com\VoipConnect\VoipConnect.exe (Finarea SA -> VoipConnect)
FirewallRules: [{D138A62B-5B68-469A-9365-0A762A1B41FE}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2019\on1capture.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{4AE7FAE4-7587-40A9-88B4-5F221FA086DD}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2019\on1capture.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{017A37DE-A7CC-4B5F-9107-424064BBAE83}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2019\ON1 Photo RAW 2019.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{EE97E27E-24AB-47C2-A40B-12108593D7BE}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2019\ON1 Photo RAW 2019.exe (ON1, Inc -> ON1, Inc.)
FirewallRules: [{9C80480D-49F4-4160-ABBA-91C665FC2BA6}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2019\on1sandbox.exe (ON1, Inc -> )
FirewallRules: [{44D818A8-9EA6-4537-A33F-3BA6D81B4228}] => (Allow) C:\Program Files\ON1\ON1 Photo RAW 2019\on1sandbox.exe (ON1, Inc -> )
FirewallRules: [{BBE162C7-D2DD-49E3-A533-84F982741F5D}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{C928140F-8C3C-4B28-A4F1-CD7A05D64C49}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe ()
FirewallRules: [{5CAACD11-6D5C-4F68-ACEC-10A1AA60A624}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe ()
FirewallRules: [TCP Query User{4DF58DB3-A949-4DD8-8FCB-041CC1143556}C:\program files (x86)\acronis\trueimagehome\trueimagemonitor.exe] => (Allow) C:\program files (x86)\acronis\trueimagehome\trueimagemonitor.exe (Acronis International GmbH -> )
FirewallRules: [UDP Query User{4D011CA4-9546-4201-8F50-EF22CA6E58D8}C:\program files (x86)\acronis\trueimagehome\trueimagemonitor.exe] => (Allow) C:\program files (x86)\acronis\trueimagehome\trueimagemonitor.exe (Acronis International GmbH -> )
FirewallRules: [{519235C0-C977-4D57-809F-28FCD7EA96F1}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{1A472BEA-9DFC-4FD8-BE37-AB2C73C7EDA4}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{CA381D9C-8BED-4B93-83C3-9C4C1C94B066}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> )
FirewallRules: [{FC2B02D4-C3B0-45D8-A95F-1DB17F1A408E}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> )
FirewallRules: [{71545748-ED35-4E70-B1BE-BCD9668E7264}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{627AACA8-F592-4C2A-A4A1-54CE713088D5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{88A9FCD6-880E-492C-AA90-444312945C06}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{BA127A35-CA59-4040-9530-6AB39C0BDC21}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{629F587A-7F7C-42DF-81A1-04081902D572}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{969CB1C0-F9E2-48F9-A124-B7E4CB48FA0F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8333CE3E-8A95-4473-970E-0D9E80B2A650}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6A82C905-9FC5-4662-AA77-B62D9D5C1F8C}] => (Allow) LPort=1688
FirewallRules: [{0A1799F9-F3FB-4481-A793-7C5D05D93981}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

06-02-2019 17:12:48 Installed 8GadgetPack
08-02-2019 16:46:10 Before uninstalling Spybot Anti-Beacon

==================== Faulty Device Manager Devices =============

Name: D:\Sync\_2. PDF Scans RAW\
Description: WPD FileSystem Volume Driver
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Microsoft
Service: WUDFWpdFs
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/12/2019 11:59:10 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows cannot load the extensible counter DLL "C:\WINDOWS\system32\sysmain.dll" (Win32 error code 126).

Error: (02/12/2019 10:44:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.253_none_05b2388e0721fece.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.253_none_4d5f6f651b9e27d4.manifest.

Error: (02/12/2019 10:44:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\MagicPlus\MagicPlus.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.253_none_05b2388e0721fece.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.253_none_4d5f6f651b9e27d4.manifest.

Error: (02/12/2019 09:07:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 14 6.2.E.B.B.0.9.8.A.6.A.1.1.B.D.3.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR MAIN-2.local.

Error: (02/12/2019 09:07:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.247.1:5353 12 6.2.E.B.B.0.9.8.A.6.A.1.1.B.D.3.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR MAIN.local.

Error: (02/12/2019 09:07:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 14 1.247.168.192.in-addr.arpa. PTR MAIN-2.local.

Error: (02/12/2019 09:07:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.247.1:5353 12 1.247.168.192.in-addr.arpa. PTR MAIN.local.

Error: (02/12/2019 09:07:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 14 1.1.D.D.A.E.7.7.4.1.6.E.B.E.5.3.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR MAIN-2.local.


System errors:
=============
Error: (02/13/2019 12:32:16 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2019 12:32:15 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2019 12:32:15 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2019 12:32:15 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2019 12:31:43 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2019 12:31:43 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2019 12:31:43 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (02/13/2019 12:31:42 PM) (Source: DCOM) (EventID: 10016) (User: MAIN)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user MAIN\Robert SID (S-1-5-21-2536635842-542287166-2959069790-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================

Date: 2019-02-12 22:46:07.168
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume11\Program Files\WindowSpace\wspace64.dll that did not meet the Unchecked signing level requirements.

Date: 2019-02-12 22:45:07.015
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume11\Program Files\WindowSpace\wspace64.dll that did not meet the Unchecked signing level requirements.

Date: 2019-02-11 18:27:17.194
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume11\Program Files\WindowSpace\wspace64.dll that did not meet the Unchecked signing level requirements.

Date: 2019-02-11 18:23:02.602
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume11\Program Files\WindowSpace\wspace64.dll that did not meet the Unchecked signing level requirements.

Date: 2019-02-11 18:06:33.639
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume11\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-11 18:06:33.636
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume11\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-11 18:06:33.630
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume11\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-11 18:06:33.627
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume11\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 16%
Total physical RAM: 32693.27 MB
Available physical RAM: 27148.46 MB
Total Virtual: 32693.27 MB
Available Virtual: 25489.66 MB

==================== Drives ================================

Drive c: (APPS) (Fixed) (Total:418.52 GB) (Free:265.3 GB) NTFS
Drive d: (DATA) (Fixed) (Total:167.2 GB) (Free:45.04 GB) NTFS
Drive e: (MULTIMEDIA) (Fixed) (Total:508.41 GB) (Free:125.21 GB) NTFS
Drive m: (DRIVE_M) (Fixed) (Total:519.79 GB) (Free:140.05 GB) NTFS
Drive s: (SOFTWARE) (Fixed) (Total:205.38 GB) (Free:36.81 GB) NTFS
Drive x: (DRIVE_X) (Fixed) (Total:29.51 GB) (Free:11.04 GB) NTFS
Drive y: (BACKUP) (Fixed) (Total:432.71 GB) (Free:163.19 GB) NTFS
Drive z: (Media Server) (Fixed) (Total:1863.02 GB) (Free:337.2 GB) NTFS

\\?\Volume{7f190720-003f-4b13-9b43-dee0d30b5d5f}\ () (Fixed) (Total:0.44 GB) (Free:0.03 GB) NTFS
\\?\Volume{5b46df76-cf28-11e7-bc67-704d7b6d8803}\ (EPSON-SCAN) (Removable) (Total:3.64 GB) (Free:3.4 GB) FAT32
\\?\Volume{48da56e6-63b6-4fbd-809b-8982edd60f42}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 09252249)

Partition: GPT.

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 46BC38B7)
Partition 1: (Not Active) - (Size=167.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=508.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1187.4 GB) - (Type=0F Extended)

========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: D557D557)

Partition: GPT.

========================================================
Disk: 4 (Size: 3.7 GB) (Disk ID: 0EF70DED)
Partition 1: (Not Active) - (Size=3.6 GB) - (Type=0F Extended)

==================== End of Addition.txt ============================

 

[dorcom]

I thought you might want to know this.
Just 1/2 an hour ago I get a notification that there are some windows cumulative updates downloaded and I will need to reboot.
After the reboot out of the curiosity I ran SFC.
Now after this most recent update it stops at 19%.
Let me know if you would like to get the CBS log file.

Do

 

[bruce1270]

Hi, Dorcom!

Going over your logs, I have noticed that you are using a software to illegally activate one or more of Microsoft products. As this violates both the Forum rules and law as such, we cannot provide further assistance unless you have completely removed all traces of any illegal tools or tools you do not posses a valid licence for.

As such, we will be closing this topic. If you have any questions, feel free to contact us via PM.