Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13.02.2019
Ran by vince (13-02-2019 21:52:37)
Running from \\diskstation\public
Windows 10 Pro Version 1803 17134.590 (X64) (2018-05-09 08:33:22)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-56093368-111039669-1779922848-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-56093368-111039669-1779922848-503 - Limited - Disabled)
Guest (S-1-5-21-56093368-111039669-1779922848-501 - Limited - Disabled)
vince (S-1-5-21-56093368-111039669-1779922848-1002 - Administrator - Enabled) => C:\Users\vince
WDAGUtilityAccount (S-1-5-21-56093368-111039669-1779922848-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Apowersoft Online Launcher version 1.7.1 (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.1 - APOWERSOFT LIMITED)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CPU Thermometer (HKLM-x32\...\{06EA836D-C7AD-42A0-9C17-47BCDE7E015B}_is1) (Version: - cputhermometer.com)
Discord (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{2E067A1E-46DE-45D9-A472-F35D7AD95F98}) (Version: 1.1.139.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fortnite Live Tracker (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Overwolf_lchehejhdkhdkfledgjmchiblkmimnhfoeacjcni) (Version: 2.0.2.11 - Overwolf app)
Game Summary (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 123.0.20 - Overwolf app)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.96 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Hotkey 8.0134 (HKLM-x32\...\{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0134 - NoteBook) Hidden
Hotkey 8.0134 (HKLM-x32\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0134 - NoteBook)
Insyde Airplane Mode HID Mini-Driver (HKLM\...\AirplaneModeHid) (Version: 1.4.0.8 - Insyde Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4416 - Intel Corporation)
Juniper Networks Network Connect 7.1.17 (HKLM-x32\...\Juniper Network Connect 7.1.17) (Version: 7.1.17.28099 - Juniper Networks)
Juniper Networks Network Connect 8.0 (HKLM-x32\...\Juniper Network Connect 8.0) (Version: 8.0.3.30619 - Juniper Networks)
Juniper Networks Setup Client (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Juniper_Setup_Client) (Version: 8.0.3.44983 - Juniper Networks)
Juniper Networks Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Juniper Terminal Services Client (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Juniper_Term_Services) (Version: 8.0.3.30619 - Juniper Networks)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LCDSirReal - a multipurpose plugin for the Logitech G13/G15 (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\LCDSirReal) (Version: - Link Data Stockholm)
Logitech - Assistant pour jeux vidéo 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Logitech G Spark (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Overwolf_khjpncbfpphgbaimacmhmhbojhbcjiadkcjnhnkc) (Version: 1.2.22 - Overwolf app)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Microsoft OneDrive (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mumble 1.2.19 (HKLM-x32\...\{9BCF5203-72BB-4425-A391-83BF298EF376}) (Version: 1.2.19 - Thorvald Natvig)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.16.0.122 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.122 - NVIDIA Corporation)
NVIDIA Graphics Driver 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.116.2.25 - Overwolf Ltd.)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.4 - Tracker Software Products Ltd)
Razer Chroma SDK (HKLM-x32\...\Razer Chroma SDK) (Version: 2.22.3 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
Remote Desktop Connection Manager (HKLM-x32\...\{0240359E-6A4C-4884-9E94-B397A02D893C}) (Version: 2.7.14060 - Microsoft Corporation)
Roxio Creator DE 10.3 (HKLM-x32\...\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}) (Version: 10.3 - Roxio)
Simulationcraft(x64) version 7.2.5.01 (HKLM-x32\...\{AC025546-B7C5-45A7-B16A-80AE482CBB01}_is1) (Version: 7.2.5.01 - Simulationcraft)
SketchUp 2014 (HKLM-x32\...\{095CF3FF-6B97-45F6-8D91-CE30ABF2CA2C}) (Version: 14.0.4900 - Trimble Navigation Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.95388 - TeamViewer)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Twitch (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VMware Remote Console (HKLM-x32\...\{C200A3C3-FCBD-4311-8924-D8BC8EA65DD2}) (Version: 10.0.3 - VMware, Inc.)
Warcraft Logs Uploader (HKLM-x32\...\{9F498C97-EDFC-AB5C-BDBD-6CAE8711E5D0}) (Version: 4.30 - UNKNOWN) Hidden
Warcraft Logs Uploader (HKLM-x32\...\com.warcraft.logs) (Version: 4.30 - UNKNOWN)
Wargaming.net Game Center (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Wargaming.net Game Center) (Version: 18.1.3.8590 - Wargaming.net)
World of Tanks (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warships (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {13C70CD6-B713-4A83-805A-10E565B9C7A9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2891CCF3-23CC-4DFE-902E-5383CC6585EC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2CE8AFA9-9AA9-4E25-9F2F-112160134A38} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {37335E32-5C30-4576-867F-CCF65859B13C} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F61782C-2D98-4DB6-A528-4CD0C4881000} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82CBFBED-C645-4FB9-907C-C7D15B7D56B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {8547B7FC-7833-41E7-869C-5EAE97CA7E69} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {86949D5E-993F-42E0-96CD-0115439A304C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AF3415DE-7089-49C8-8920-A3B149EC9C9A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B27200E9-F531-43BC-BC58-F9338BC4EA17} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B8F81F91-682A-47C1-BDF3-8D23F3595661} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {BA815F95-E9CC-4C64-ADD3-A97772EE4ECB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BCB589A1-7849-414A-B4F5-B62A20A95254} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D36C4240-12CD-4157-889A-F5C0EEC5B5A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {D6E281BE-7A35-4826-81F1-6906EBFB9671} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {E8F52366-D206-40C1-AC71-C4ABA3024A4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {F323AE02-1115-4FCD-9BF8-88C03B34D995} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (Overwolf Ltd -> Overwolf LTD)
Task: {F45FDD2D-3681-4502-B1AA-079EC477A110} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FAC298A6-A1EF-46AE-82F7-325E1884E558} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FBC28316-45D9-49AB-A56C-3448204C9C49} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\vince\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Easy Viewer.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=anjoggeimnldigfcihcggejncophmhjc
ShortcutWithArgument: C:\Users\vince\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Ubiquiti Device Discovery Tool.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmpigflbjeapnknladcfphgkemopofig
==================== Loaded Modules (Whitelisted) ==============
2013-07-09 13:42 - 2013-07-09 13:42 - 000046080 _____ () C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
2018-05-31 20:23 - 2018-11-16 12:55 - 001314672 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-13 18:19 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-10-20 16:42 - 2018-08-16 19:44 - 000381928 _____ () C:\WINDOWS\system32\igfxTray.exe
2019-02-13 14:07 - 2019-02-06 03:25 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 028028416 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2019-02-08 11:02 - 2019-02-08 11:02 - 000305152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 006033408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 009338368 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2018-10-05 09:43 - 2018-10-05 09:43 - 001096840 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2018-10-05 09:43 - 2018-10-05 09:43 - 000241800 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2019-02-10 13:08 - 2018-12-06 00:47 - 001066784 _____ () D:\Games\Steam\bin\cef\cef.win7x64\SDL2.dll
2019-02-10 13:08 - 2018-11-20 01:56 - 102804768 _____ () D:\Games\Steam\bin\cef\cef.win7x64\libcef.dll
2019-02-10 13:08 - 2018-11-20 01:56 - 004866336 _____ () D:\Games\Steam\bin\cef\cef.win7x64\libglesv2.dll
2019-02-10 13:08 - 2018-11-20 01:56 - 000116000 _____ () D:\Games\Steam\bin\cef\cef.win7x64\libegl.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 000481280 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2019-02-01 19:39 - 2019-02-01 19:39 - 080636416 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-04 17:47 - 2017-10-04 17:49 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 003824640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2019-01-17 19:09 - 2019-01-17 19:09 - 000012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 014225408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 002871296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 18:41 - 2018-08-30 18:42 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-26 21:37 - 2018-07-26 21:37 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\SKU.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 000282624 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 19:19 - 2018-11-06 19:20 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 001757696 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-01-14 15:22 - 2018-11-16 12:55 - 001032560 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2019-02-10 13:08 - 2018-12-06 00:47 - 000885536 _____ () D:\Games\Steam\SDL2.dll
2019-02-10 13:08 - 2019-02-02 18:33 - 002667296 _____ () D:\Games\Steam\video.dll
2018-12-30 14:14 - 2016-09-01 02:02 - 004969248 _____ () D:\Games\Steam\v8.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000351520 _____ () D:\Games\Steam\libavresample-3.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000810784 _____ () D:\Games\Steam\libavformat-57.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000783648 _____ () D:\Games\Steam\libswscale-4.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000847136 _____ () D:\Games\Steam\libavutil-55.dll
2018-12-30 14:14 - 2016-09-01 02:02 - 001195296 _____ () D:\Games\Steam\icuuc.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 005137696 _____ () D:\Games\Steam\libavcodec-57.dll
2018-12-30 14:14 - 2016-09-01 02:02 - 001563936 _____ () D:\Games\Steam\icui18n.dll
2019-02-10 13:08 - 2019-02-02 18:33 - 001031456 _____ () D:\Games\Steam\bin\chromehtml.DLL
2018-12-30 14:14 - 2016-07-04 23:17 - 000266560 _____ () D:\Games\Steam\openvr_api.dll
2018-07-01 14:11 - 2018-07-01 14:11 - 082669384 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libcef.DLL
2018-07-01 14:11 - 2018-07-01 14:11 - 003732296 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libglesv2.dll
2018-07-01 14:11 - 2018-07-01 14:11 - 000086344 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [474]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [484]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-06-07 18:32 - 2019-01-17 22:13 - 000000856 _____ C:\WINDOWS\system32\drivers\etc\hosts
192.168.10.50 vc.vvnet.local
2018-07-13 19:18 - 2018-07-13 19:18 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\10.0\DLLShared\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-56093368-111039669-1779922848-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\vince\OneDrive - Assistec SPRL\Images\Saved Pictures\thumb-1920-937610.png
DNS Servers: 192.168.10.10 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\StartupFolder: => "Hotkey.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\StartupApproved\Run: => "TSMApplication"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{3E942D42-1A33-4EE1-BC5D-6355B4C386E6}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{47659BD5-E217-474D-9236-A94D094CEF8E}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{9EA21B08-AEAA-4901-B1C6-C16407E9D9F6}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{7EBE1AD8-7BE5-43AB-8B8E-CFB5A3F1E374}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{A97A236F-013A-4AAC-9BAB-11783493F239}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{5F752FC4-3E31-40DE-8787-5327F4B4C2BC}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{6C51D2D4-4AAD-433D-BA82-8CDE71F4F7B3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{88E3FDE7-1DCE-4390-95CE-FD670B06F926}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{DB0D7A55-71BE-4385-8A89-06E78DD86305}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{ED21DB47-41B0-4271-8135-D92A35A724B8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{D43CE1C5-1677-4164-AA6C-0E15C73E9552}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{A19D305F-8B75-4857-A85D-9E1D7C3370E0}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{99E1DF8D-DA2E-482B-B7BE-50D067767CDA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{15743DB6-EE1B-47E6-AA04-19DB1A2FC853}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{D6AF016D-B8E5-47D8-AD0B-7F8F872D0CFD}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{D72471C6-628D-46ED-9AD0-2228171654C3}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{53A8485C-6B62-4449-9BC0-6CAF8214E252}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{469F76D9-0A2F-4F22-99E6-F556E4BF61B2}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{B8D86805-22AA-4840-AF0D-3FF27F43C2C0}] => (Allow) d:\Games\World_of_Tanks\WoTLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{97EE3865-6472-4C0E-8A1B-855E908CA8DD}] => (Allow) d:\Games\World_of_Tanks\WoTLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{E3D69712-6BC5-442F-956F-1C15FE016E69}] => (Allow) d:\Games\World_of_Tanks\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{EF9CA3DB-57DF-472B-88DB-7171C8048330}] => (Allow) d:\Games\World_of_Tanks\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{F2BDAEAD-123E-4351-B9BB-7A31A31AF476}D:\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\wargaming.net\gamecenter\wgc.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [UDP Query User{549DA70F-64F3-4E53-81EB-C03A36CB7E19}D:\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\wargaming.net\gamecenter\wgc.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{9B43B942-72CB-4A8D-BF26-52447420A133}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3AA8AA14-A4E0-4CDB-B3C7-7E23DF19CAAF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{67CA7E66-AED0-40F4-8D3C-15188180E76B}C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe] => (Allow) C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe No File
FirewallRules: [UDP Query User{718D1265-E1B9-4623-801B-43B4C09E17E6}C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe] => (Allow) C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe No File
FirewallRules: [{618EB3A3-4EFB-41A9-BDEF-8BDC8E62DE96}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{77CD9D87-22F6-4877-9840-F663EEEB4AEF}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{005EDCA5-85DC-4D1E-B190-CAE43A3A70AE}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{08607C91-707B-4D02-9237-7C772B67D819}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{1E9F70AD-C352-4951-A246-052F69A7E138}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{28DA33F7-32ED-4FAC-9E2D-A09BA0162E10}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C52063A8-94BD-499A-9EC8-DD1D36C28D96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{EFA306A3-A2F1-4F7A-8211-3CFDD8D55769}D:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{2DABBCC8-6EEC-4A98-B9C3-FDCB096530B5}D:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{769062E8-3F71-408A-9220-77BF278101A0}C:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [UDP Query User{E8852267-50C3-4E0C-A35F-21B89A688AAE}C:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [{FFAF183C-A5B8-4397-BDB4-91A0F1CEA5EB}] => (Block) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [{8FCDA5D2-3EAA-4344-A486-74D9F414422F}] => (Block) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [{4D7E9053-BA75-42AC-947C-181BD30F6D0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D7C30398-DC85-46FF-9F03-4730F461CF71}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F16BE37C-B69C-40C5-84EA-A77BCC789F63}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F959F279-EC77-4EB6-9B47-DFBEE8417AAD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9DD12DE7-D076-4DA5-B2A2-56BFA22AD8F6}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{6D364892-8C56-4448-AAD5-20043A90C1E1}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{EE33C7DB-C6CF-4476-91EA-EC809BD78F77}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{46F4BF1E-D89C-404D-94E1-6534824987C8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F3399A1F-633D-4F73-886E-AC11D508ECEA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EFD8F80E-B691-4019-87EB-A162A6BADB82}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{19977509-8D2F-41D5-B6F6-C0BB9FB04E9F}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{16CF611A-6479-4FEA-92F7-0EB40006A539}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{43CEE21C-4F72-414F-879C-96BC28368060}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{DA2561A9-A436-4FFD-A63C-8DE6DF4F9130}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{A53FE139-6CC2-41FB-AE8B-1852A539CA9F}] => (Allow) D:\Games\Steam\steamapps\common\Project Hospital\ProjectHospital.exe ()
FirewallRules: [{EC39CACD-0220-4E2C-9D4B-F4D2EF7AB6F7}] => (Allow) D:\Games\Steam\steamapps\common\Project Hospital\ProjectHospital.exe ()
FirewallRules: [{2D10DE5E-F5EE-4C23-A6C9-520022077AA3}] => (Allow) D:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe (Valve Corp. -> )
FirewallRules: [{8DF3D7D6-8A9F-4154-9640-EB7869895159}] => (Allow) D:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe (Valve Corp. -> )
FirewallRules: [{75523176-2EC9-4D21-96D5-D15D67BBB7A2}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D8D09D79-FE26-44E7-ABA9-4052414BF774}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{53A91690-53E8-42B5-AD2E-91C73313A9A1}] => (Allow) D:\Games\Steam\steamapps\common\Liftoff\Liftoff.exe ()
FirewallRules: [{AACE112A-90D9-4AD9-9357-89D22BFBC878}] => (Allow) D:\Games\Steam\steamapps\common\Liftoff\Liftoff.exe ()
FirewallRules: [{258499DF-F791-4AA9-838F-58CACECB13BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{4E761D9C-E756-479F-8FB4-E8C61EBDFA5D}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F5440942-636F-402D-AD33-4DFF010DD1C2}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{6EDDE0B5-9CBB-4BE6-AFC7-98883FC18B32}D:\program files (x86)\origin games\apex\r5apex.exe] => (Block) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{71DE6B93-706A-4313-BFFF-5317386BEF84}D:\program files (x86)\origin games\apex\r5apex.exe] => (Block) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/13/2019 08:09:33 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:33 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code.
Error: (02/13/2019 08:09:33 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (02/13/2019 08:09:33 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "ESENT" in DLL "C:\WINDOWS\system32\esentprf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:12 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
System errors:
=============
Error: (02/13/2019 08:18:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:11:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscDataProtection
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:11:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:09:39 PM) (Source: DCOM) (EventID: 10016) (User: GAMINGPC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user GAMINGPC\vince SID (S-1-5-21-56093368-111039669-1779922848-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:09:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:09:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:08:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Update Orchestrator Service service terminated with the following error:
This operation returned because the timeout period expired.
Error: (02/13/2019 05:58:35 PM) (Source: DCOM) (EventID: 10016) (User: GAMINGPC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user GAMINGPC\vince SID (S-1-5-21-56093368-111039669-1779922848-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Windows Defender:
===================================
Date: 2019-02-13 17:20:34.267
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {65D9D5F2-2AEE-4FDC-87FE-70115EFA3A55}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-10 15:14:23.517
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {AC25D046-78E5-450E-A564-79C2DA1FC6C5}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-07 19:38:54.009
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {ED15352F-C678-44CF-88E4-7DAE63F888E2}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2018-12-22 04:21:57.957
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {4E103C5E-E6B5-4ADE-A732-9345A081A451}
Scan Type: Antimalware
Scan Parameters: Quick Scan
CodeIntegrity:
===================================
Date: 2019-02-13 21:39:15.906
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:39:15.903
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:23:52.161
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:23:52.157
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:09:15.685
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:09:15.683
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 20:53:52.103
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 20:53:52.099
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4800MQ CPU @ 2.70GHz
Percentage of memory in use: 37%
Total physical RAM: 8111.96 MB
Available physical RAM: 5084 MB
Total Virtual: 12463.96 MB
Available Virtual: 9135.71 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:117.88 GB) (Free:68.73 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:555.08 GB) NTFS
Drive f: (1.03.03) (CDROM) (Total:5.34 GB) (Free:0 GB) CDFS
\\?\Volume{8b607dbe-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{8b607dbe-0000-0000-0000-f0971d000000}\ () (Fixed) (Total:0.87 GB) (Free:0.45 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 8B607DBE)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=117.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=887 MB) - (Type=27)
==================== End of Addition.txt ============================
Ran by vince (13-02-2019 21:52:37)
Running from \\diskstation\public
Windows 10 Pro Version 1803 17134.590 (X64) (2018-05-09 08:33:22)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-56093368-111039669-1779922848-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-56093368-111039669-1779922848-503 - Limited - Disabled)
Guest (S-1-5-21-56093368-111039669-1779922848-501 - Limited - Disabled)
vince (S-1-5-21-56093368-111039669-1779922848-1002 - Administrator - Enabled) => C:\Users\vince
WDAGUtilityAccount (S-1-5-21-56093368-111039669-1779922848-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Apowersoft Online Launcher version 1.7.1 (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.1 - APOWERSOFT LIMITED)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CPU Thermometer (HKLM-x32\...\{06EA836D-C7AD-42A0-9C17-47BCDE7E015B}_is1) (Version: - cputhermometer.com)
Discord (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{2E067A1E-46DE-45D9-A472-F35D7AD95F98}) (Version: 1.1.139.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fortnite Live Tracker (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Overwolf_lchehejhdkhdkfledgjmchiblkmimnhfoeacjcni) (Version: 2.0.2.11 - Overwolf app)
Game Summary (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 123.0.20 - Overwolf app)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.96 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Hotkey 8.0134 (HKLM-x32\...\{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0134 - NoteBook) Hidden
Hotkey 8.0134 (HKLM-x32\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0134 - NoteBook)
Insyde Airplane Mode HID Mini-Driver (HKLM\...\AirplaneModeHid) (Version: 1.4.0.8 - Insyde Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4416 - Intel Corporation)
Juniper Networks Network Connect 7.1.17 (HKLM-x32\...\Juniper Network Connect 7.1.17) (Version: 7.1.17.28099 - Juniper Networks)
Juniper Networks Network Connect 8.0 (HKLM-x32\...\Juniper Network Connect 8.0) (Version: 8.0.3.30619 - Juniper Networks)
Juniper Networks Setup Client (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Juniper_Setup_Client) (Version: 8.0.3.44983 - Juniper Networks)
Juniper Networks Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Juniper Terminal Services Client (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Juniper_Term_Services) (Version: 8.0.3.30619 - Juniper Networks)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LCDSirReal - a multipurpose plugin for the Logitech G13/G15 (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\LCDSirReal) (Version: - Link Data Stockholm)
Logitech - Assistant pour jeux vidéo 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Logitech G Spark (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Overwolf_khjpncbfpphgbaimacmhmhbojhbcjiadkcjnhnkc) (Version: 1.2.22 - Overwolf app)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Microsoft OneDrive (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mumble 1.2.19 (HKLM-x32\...\{9BCF5203-72BB-4425-A391-83BF298EF376}) (Version: 1.2.19 - Thorvald Natvig)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.16.0.122 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.122 - NVIDIA Corporation)
NVIDIA Graphics Driver 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.116.2.25 - Overwolf Ltd.)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.4 - Tracker Software Products Ltd)
Razer Chroma SDK (HKLM-x32\...\Razer Chroma SDK) (Version: 2.22.3 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
Remote Desktop Connection Manager (HKLM-x32\...\{0240359E-6A4C-4884-9E94-B397A02D893C}) (Version: 2.7.14060 - Microsoft Corporation)
Roxio Creator DE 10.3 (HKLM-x32\...\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}) (Version: 10.3 - Roxio)
Simulationcraft(x64) version 7.2.5.01 (HKLM-x32\...\{AC025546-B7C5-45A7-B16A-80AE482CBB01}_is1) (Version: 7.2.5.01 - Simulationcraft)
SketchUp 2014 (HKLM-x32\...\{095CF3FF-6B97-45F6-8D91-CE30ABF2CA2C}) (Version: 14.0.4900 - Trimble Navigation Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.95388 - TeamViewer)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Twitch (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VMware Remote Console (HKLM-x32\...\{C200A3C3-FCBD-4311-8924-D8BC8EA65DD2}) (Version: 10.0.3 - VMware, Inc.)
Warcraft Logs Uploader (HKLM-x32\...\{9F498C97-EDFC-AB5C-BDBD-6CAE8711E5D0}) (Version: 4.30 - UNKNOWN) Hidden
Warcraft Logs Uploader (HKLM-x32\...\com.warcraft.logs) (Version: 4.30 - UNKNOWN)
Wargaming.net Game Center (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\Wargaming.net Game Center) (Version: 18.1.3.8590 - Wargaming.net)
World of Tanks (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warships (HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {13C70CD6-B713-4A83-805A-10E565B9C7A9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2891CCF3-23CC-4DFE-902E-5383CC6585EC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2CE8AFA9-9AA9-4E25-9F2F-112160134A38} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {37335E32-5C30-4576-867F-CCF65859B13C} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F61782C-2D98-4DB6-A528-4CD0C4881000} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82CBFBED-C645-4FB9-907C-C7D15B7D56B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {8547B7FC-7833-41E7-869C-5EAE97CA7E69} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {86949D5E-993F-42E0-96CD-0115439A304C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AF3415DE-7089-49C8-8920-A3B149EC9C9A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B27200E9-F531-43BC-BC58-F9338BC4EA17} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B8F81F91-682A-47C1-BDF3-8D23F3595661} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {BA815F95-E9CC-4C64-ADD3-A97772EE4ECB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BCB589A1-7849-414A-B4F5-B62A20A95254} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D36C4240-12CD-4157-889A-F5C0EEC5B5A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {D6E281BE-7A35-4826-81F1-6906EBFB9671} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {E8F52366-D206-40C1-AC71-C4ABA3024A4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {F323AE02-1115-4FCD-9BF8-88C03B34D995} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (Overwolf Ltd -> Overwolf LTD)
Task: {F45FDD2D-3681-4502-B1AA-079EC477A110} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FAC298A6-A1EF-46AE-82F7-325E1884E558} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FBC28316-45D9-49AB-A56C-3448204C9C49} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\vince\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Easy Viewer.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=anjoggeimnldigfcihcggejncophmhjc
ShortcutWithArgument: C:\Users\vince\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Ubiquiti Device Discovery Tool.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmpigflbjeapnknladcfphgkemopofig
==================== Loaded Modules (Whitelisted) ==============
2013-07-09 13:42 - 2013-07-09 13:42 - 000046080 _____ () C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
2018-05-31 20:23 - 2018-11-16 12:55 - 001314672 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-13 18:19 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-10-20 16:42 - 2018-08-16 19:44 - 000381928 _____ () C:\WINDOWS\system32\igfxTray.exe
2019-02-13 14:07 - 2019-02-06 03:25 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 028028416 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2019-02-08 11:02 - 2019-02-08 11:02 - 000305152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 006033408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2019-02-08 11:02 - 2019-02-08 11:02 - 009338368 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2018-10-05 09:43 - 2018-10-05 09:43 - 001096840 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2018-10-05 09:43 - 2018-10-05 09:43 - 000241800 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2019-02-10 13:08 - 2018-12-06 00:47 - 001066784 _____ () D:\Games\Steam\bin\cef\cef.win7x64\SDL2.dll
2019-02-10 13:08 - 2018-11-20 01:56 - 102804768 _____ () D:\Games\Steam\bin\cef\cef.win7x64\libcef.dll
2019-02-10 13:08 - 2018-11-20 01:56 - 004866336 _____ () D:\Games\Steam\bin\cef\cef.win7x64\libglesv2.dll
2019-02-10 13:08 - 2018-11-20 01:56 - 000116000 _____ () D:\Games\Steam\bin\cef\cef.win7x64\libegl.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 000481280 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2019-02-01 19:39 - 2019-02-01 19:39 - 080636416 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-04 17:47 - 2017-10-04 17:49 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 003824640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2019-01-17 19:09 - 2019-01-17 19:09 - 000012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 014225408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 002871296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 18:41 - 2018-08-30 18:42 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-26 21:37 - 2018-07-26 21:37 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\SKU.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 000282624 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 19:19 - 2018-11-06 19:20 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-01 19:39 - 2019-02-01 19:39 - 001757696 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-01-14 15:22 - 2018-11-16 12:55 - 001032560 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2019-02-10 13:08 - 2018-12-06 00:47 - 000885536 _____ () D:\Games\Steam\SDL2.dll
2019-02-10 13:08 - 2019-02-02 18:33 - 002667296 _____ () D:\Games\Steam\video.dll
2018-12-30 14:14 - 2016-09-01 02:02 - 004969248 _____ () D:\Games\Steam\v8.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000351520 _____ () D:\Games\Steam\libavresample-3.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000810784 _____ () D:\Games\Steam\libavformat-57.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000783648 _____ () D:\Games\Steam\libswscale-4.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 000847136 _____ () D:\Games\Steam\libavutil-55.dll
2018-12-30 14:14 - 2016-09-01 02:02 - 001195296 _____ () D:\Games\Steam\icuuc.dll
2019-02-10 13:08 - 2018-11-05 19:53 - 005137696 _____ () D:\Games\Steam\libavcodec-57.dll
2018-12-30 14:14 - 2016-09-01 02:02 - 001563936 _____ () D:\Games\Steam\icui18n.dll
2019-02-10 13:08 - 2019-02-02 18:33 - 001031456 _____ () D:\Games\Steam\bin\chromehtml.DLL
2018-12-30 14:14 - 2016-07-04 23:17 - 000266560 _____ () D:\Games\Steam\openvr_api.dll
2018-07-01 14:11 - 2018-07-01 14:11 - 082669384 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libcef.DLL
2018-07-01 14:11 - 2018-07-01 14:11 - 003732296 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libglesv2.dll
2018-07-01 14:11 - 2018-07-01 14:11 - 000086344 _____ () C:\Program Files (x86)\Overwolf\0.116.2.25\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [474]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [484]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-06-07 18:32 - 2019-01-17 22:13 - 000000856 _____ C:\WINDOWS\system32\drivers\etc\hosts
192.168.10.50 vc.vvnet.local
2018-07-13 19:18 - 2018-07-13 19:18 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\10.0\DLLShared\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-56093368-111039669-1779922848-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\vince\OneDrive - Assistec SPRL\Images\Saved Pictures\thumb-1920-937610.png
DNS Servers: 192.168.10.10 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\StartupFolder: => "Hotkey.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-56093368-111039669-1779922848-1002\...\StartupApproved\Run: => "TSMApplication"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{3E942D42-1A33-4EE1-BC5D-6355B4C386E6}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{47659BD5-E217-474D-9236-A94D094CEF8E}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{9EA21B08-AEAA-4901-B1C6-C16407E9D9F6}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{7EBE1AD8-7BE5-43AB-8B8E-CFB5A3F1E374}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{A97A236F-013A-4AAC-9BAB-11783493F239}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{5F752FC4-3E31-40DE-8787-5327F4B4C2BC}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{6C51D2D4-4AAD-433D-BA82-8CDE71F4F7B3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{88E3FDE7-1DCE-4390-95CE-FD670B06F926}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{DB0D7A55-71BE-4385-8A89-06E78DD86305}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{ED21DB47-41B0-4271-8135-D92A35A724B8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{D43CE1C5-1677-4164-AA6C-0E15C73E9552}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{A19D305F-8B75-4857-A85D-9E1D7C3370E0}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{99E1DF8D-DA2E-482B-B7BE-50D067767CDA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{15743DB6-EE1B-47E6-AA04-19DB1A2FC853}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{D6AF016D-B8E5-47D8-AD0B-7F8F872D0CFD}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{D72471C6-628D-46ED-9AD0-2228171654C3}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{53A8485C-6B62-4449-9BC0-6CAF8214E252}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{469F76D9-0A2F-4F22-99E6-F556E4BF61B2}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{B8D86805-22AA-4840-AF0D-3FF27F43C2C0}] => (Allow) d:\Games\World_of_Tanks\WoTLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{97EE3865-6472-4C0E-8A1B-855E908CA8DD}] => (Allow) d:\Games\World_of_Tanks\WoTLauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{E3D69712-6BC5-442F-956F-1C15FE016E69}] => (Allow) d:\Games\World_of_Tanks\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{EF9CA3DB-57DF-472B-88DB-7171C8048330}] => (Allow) d:\Games\World_of_Tanks\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{F2BDAEAD-123E-4351-B9BB-7A31A31AF476}D:\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\wargaming.net\gamecenter\wgc.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [UDP Query User{549DA70F-64F3-4E53-81EB-C03A36CB7E19}D:\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\wargaming.net\gamecenter\wgc.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [{9B43B942-72CB-4A8D-BF26-52447420A133}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3AA8AA14-A4E0-4CDB-B3C7-7E23DF19CAAF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{67CA7E66-AED0-40F4-8D3C-15188180E76B}C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe] => (Allow) C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe No File
FirewallRules: [UDP Query User{718D1265-E1B9-4623-801B-43B4C09E17E6}C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe] => (Allow) C:\program files (x86)\optoma\optomapresenter\pwpresenter.exe No File
FirewallRules: [{618EB3A3-4EFB-41A9-BDEF-8BDC8E62DE96}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{77CD9D87-22F6-4877-9840-F663EEEB4AEF}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{005EDCA5-85DC-4D1E-B190-CAE43A3A70AE}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe No File
FirewallRules: [{08607C91-707B-4D02-9237-7C772B67D819}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{1E9F70AD-C352-4951-A246-052F69A7E138}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{28DA33F7-32ED-4FAC-9E2D-A09BA0162E10}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C52063A8-94BD-499A-9EC8-DD1D36C28D96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{EFA306A3-A2F1-4F7A-8211-3CFDD8D55769}D:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{2DABBCC8-6EEC-4A98-B9C3-FDCB096530B5}D:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{769062E8-3F71-408A-9220-77BF278101A0}C:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [UDP Query User{E8852267-50C3-4E0C-A35F-21B89A688AAE}C:\games\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [{FFAF183C-A5B8-4397-BDB4-91A0F1CEA5EB}] => (Block) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [{8FCDA5D2-3EAA-4344-A486-74D9F414422F}] => (Block) C:\games\world of warcraft\utils\wowvoiceproxy.exe No File
FirewallRules: [{4D7E9053-BA75-42AC-947C-181BD30F6D0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D7C30398-DC85-46FF-9F03-4730F461CF71}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F16BE37C-B69C-40C5-84EA-A77BCC789F63}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F959F279-EC77-4EB6-9B47-DFBEE8417AAD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9DD12DE7-D076-4DA5-B2A2-56BFA22AD8F6}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{6D364892-8C56-4448-AAD5-20043A90C1E1}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{EE33C7DB-C6CF-4476-91EA-EC809BD78F77}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{46F4BF1E-D89C-404D-94E1-6534824987C8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F3399A1F-633D-4F73-886E-AC11D508ECEA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EFD8F80E-B691-4019-87EB-A162A6BADB82}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{19977509-8D2F-41D5-B6F6-C0BB9FB04E9F}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{16CF611A-6479-4FEA-92F7-0EB40006A539}] => (Allow) D:\Games\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{43CEE21C-4F72-414F-879C-96BC28368060}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{DA2561A9-A436-4FFD-A63C-8DE6DF4F9130}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{A53FE139-6CC2-41FB-AE8B-1852A539CA9F}] => (Allow) D:\Games\Steam\steamapps\common\Project Hospital\ProjectHospital.exe ()
FirewallRules: [{EC39CACD-0220-4E2C-9D4B-F4D2EF7AB6F7}] => (Allow) D:\Games\Steam\steamapps\common\Project Hospital\ProjectHospital.exe ()
FirewallRules: [{2D10DE5E-F5EE-4C23-A6C9-520022077AA3}] => (Allow) D:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe (Valve Corp. -> )
FirewallRules: [{8DF3D7D6-8A9F-4154-9640-EB7869895159}] => (Allow) D:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe (Valve Corp. -> )
FirewallRules: [{75523176-2EC9-4D21-96D5-D15D67BBB7A2}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D8D09D79-FE26-44E7-ABA9-4052414BF774}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{53A91690-53E8-42B5-AD2E-91C73313A9A1}] => (Allow) D:\Games\Steam\steamapps\common\Liftoff\Liftoff.exe ()
FirewallRules: [{AACE112A-90D9-4AD9-9357-89D22BFBC878}] => (Allow) D:\Games\Steam\steamapps\common\Liftoff\Liftoff.exe ()
FirewallRules: [{258499DF-F791-4AA9-838F-58CACECB13BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{4E761D9C-E756-479F-8FB4-E8C61EBDFA5D}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F5440942-636F-402D-AD33-4DFF010DD1C2}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{6EDDE0B5-9CBB-4BE6-AFC7-98883FC18B32}D:\program files (x86)\origin games\apex\r5apex.exe] => (Block) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{71DE6B93-706A-4313-BFFF-5317386BEF84}D:\program files (x86)\origin games\apex\r5apex.exe] => (Block) D:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/13/2019 08:09:33 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:33 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code.
Error: (02/13/2019 08:09:33 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (02/13/2019 08:09:33 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "ESENT" in DLL "C:\WINDOWS\system32\esentprf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:32 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (02/13/2019 08:09:12 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
System errors:
=============
Error: (02/13/2019 08:18:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:11:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscDataProtection
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:11:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:09:39 PM) (Source: DCOM) (EventID: 10016) (User: GAMINGPC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user GAMINGPC\vince SID (S-1-5-21-56093368-111039669-1779922848-1002) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:09:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:09:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/13/2019 08:08:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Update Orchestrator Service service terminated with the following error:
This operation returned because the timeout period expired.
Error: (02/13/2019 05:58:35 PM) (Source: DCOM) (EventID: 10016) (User: GAMINGPC)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
and APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
to the user GAMINGPC\vince SID (S-1-5-21-56093368-111039669-1779922848-1002) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
Windows Defender:
===================================
Date: 2019-02-13 17:20:34.267
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {65D9D5F2-2AEE-4FDC-87FE-70115EFA3A55}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-02-10 15:14:23.517
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {AC25D046-78E5-450E-A564-79C2DA1FC6C5}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-07 19:38:54.009
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {ED15352F-C678-44CF-88E4-7DAE63F888E2}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2018-12-22 04:21:57.957
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {4E103C5E-E6B5-4ADE-A732-9345A081A451}
Scan Type: Antimalware
Scan Parameters: Quick Scan
CodeIntegrity:
===================================
Date: 2019-02-13 21:39:15.906
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:39:15.903
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:23:52.161
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:23:52.157
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:09:15.685
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 21:09:15.683
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 20:53:52.103
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-02-13 20:53:52.099
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4800MQ CPU @ 2.70GHz
Percentage of memory in use: 37%
Total physical RAM: 8111.96 MB
Available physical RAM: 5084 MB
Total Virtual: 12463.96 MB
Available Virtual: 9135.71 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:117.88 GB) (Free:68.73 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:555.08 GB) NTFS
Drive f: (1.03.03) (CDROM) (Total:5.34 GB) (Free:0 GB) CDFS
\\?\Volume{8b607dbe-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{8b607dbe-0000-0000-0000-f0971d000000}\ () (Fixed) (Total:0.87 GB) (Free:0.45 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 8B607DBE)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=117.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=887 MB) - (Type=27)
==================== End of Addition.txt ============================