Celtx Art Pack 1
admin 27.07.2019
Celtx Art Pack 1 Average ratng: 6,5/10 4267 reviews
'Celtx' is an acronym for Crew, Equipment, Location, Talent and XML. Celtx offers several features to screenwriters and anyone involved in pre-production. Writing Celtx uses an industry standard screenwriting editor typical for screenplays, stageplays, AV scripts, comic books, or radio plays. Celtx also includes a rich text editor.
Posted by3 years ago
Archived
I've been using celtx on PC for about 6 years. A week and a half ago I saved a project to the cloud from my Celtx Desktop. Today I can't open it from the desktop, only from the celtx website.
I tried to find a PC desktop version and it seems like there's only a Mac one. What the hell happened? Is there any alternative for PC as complete as Celtx?
I have to say that all the production apps, and the index cards and all the other little addons were great, in addition to saving a project in the cloud and being able to continue in a different computer. It was a perfect suite, and free (even though I paid for the writers tools pack). But what I'm going to miss the most is writing when being offline, like in a plane (and I have a 23h flight coming up)
What is people using now on PC? Is this temporary or are they done with the PC version?
27 comments
This process, in the system32 folder, can't be deleted even after I tried to force take ownership of it. Access denied no matter what I try. I'm not very knowledgeable of these things, but it seems to be spawning trojans continuously and re-installing itself on restart. When I entered Windows RE there seemed to be a couple new administrator accounts that had been created that I cannot access. No antivirus (Malwarebytes, Bitdefender) that I've tried recognizes this program, all say that the system is clean. The infection also seems to prevent certain programs from opening or installing.
I appreciate any help you can give me!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 6.02.2019
Ran by Administrator (administrator) on MONOLITH (08-02-2019 14:16:14)
Loaded Profiles: Administrator (Available Profiles: UpdatusUser & Administrator & Guest)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
Processes (Whitelisted)
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(TOSHIBA CORPORATION) C:WindowsSystem32dscouivsvc.exe
Registry (Whitelisted)
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM...Run: [AdobeAAMUpdater-1.0] => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [499608 2011-03-30] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM...Run: [AsioReg] => C:Windowssystem32CTASIO.DLL [99328 2005-08-03] (Creative Technology Ltd)
HKLM...Run: [AsioThk32Reg] => C:WindowsSYSWOW64CTASIO.DLL [73728 2005-08-03] (Creative Technology Ltd)
HKLM...Run: [M-Audio Taskbar Icon] => C:Windowssystem32M-AudioTaskBarIcon.exe [798728 2010-12-07] (M-Audio -> Avid Technology, Inc.)
HKLM...Run: [iTunesHelper] => C:Program FilesiTunesiTunesHelper.exe [301880 2018-08-23] (Apple Inc. -> Apple Inc.)
HKLM...Run: [StartCN] => C:Program FilesAMDCNextCNextcnext.exe [4926664 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM...Run: [Bdagent] => C:Program FilesBitdefenderBitdefender Securitybdagent.exe [482024 2018-11-23] (Bitdefender SRL -> Bitdefender)
HKLM-x32...Run: [SwitchBoard] => C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated)
HKLM-x32...Run: [AdobeCS5.5ServiceManager] => C:Program Files (x86)Common FilesAdobeCS5.5ServiceManagerCS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32...Run: [Adobe Acrobat Speed Launcher] => C:Program Files (x86)AdobeAcrobat 10.0AcrobatAcrobat_sl.exe [36760 2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32...Run: [Acrobat Assistant 8.0] => C:Program Files (x86)AdobeAcrobat 10.0AcrobatAcrotray.exe [815512 2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32...Run: [AsioReg] => C:WindowsSysWOW64CTASIO.DLL [73728 2005-08-03] (Creative Technology Ltd)
HKLM-x32...Run: [AppleSyncNotifier] => C:Program Files (x86)Common FilesAppleMobile Device SupportAppleSyncNotifier.exe [59240 2011-09-27] (Apple Inc. -> Apple Inc.)
HKLM-x32...Run: [APSDaemon] => C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe [68920 2018-08-22] (Apple Inc. -> Apple Inc.)
HKLM-x32...Run: [ISUSScheduler] => C:Program Files (x86)Common FilesInstallShieldUpdateServiceissch.exe [81920 2005-08-11] (Macrovision Corporation)
HKLM-x32...Run: [QuickTime Task] => C:Program Files (x86)QuickTimeQTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM-x32...Run: [StartCCC] => C:Program Files (x86)AMDATI.ACECore-Staticamd64CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKUS-1-5-21-3730064447-911909596-1107092957-500...Run: [ISUSPM Startup] => C:Program Files (x86)Common FilesInstallShieldUpdateServiceISUSPM.exe [249856 2005-08-11] (Macrovision Corporation)
HKUS-1-5-21-3730064447-911909596-1107092957-500...Run: [Novation Automap Server] => C:Program Files (x86)NovationAutomapAutomapServer.exe [3129856 2018-10-03] (Focusrite Audio Engineering Ltd.)
HKUS-1-5-21-3730064447-911909596-1107092957-500...Run: [CCleaner Smart Cleaning] => C:Program FilesCCleanerCCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKUS-1-5-21-3730064447-911909596-1107092957-500...MountPoints2: {71e6468f-9215-11e0-88eb-001fbc0d4d0f} - E:TL-Bootstrap.exe
HKUS-1-5-21-3730064447-911909596-1107092957-500...MountPoints2: {9d2e22e8-0f6c-11e5-9215-001fbc0d4d0f} - I:VZW_Software_upgrade_assistant.exe
HKUS-1-5-21-3730064447-911909596-1107092957-500...MountPoints2: {ce5a2115-a044-11e0-b10f-001fbc0d4d0f} - E:TL-Bootstrap.exe
HKLM...Drivers32-x32: [msacm.vorbis] => C:WindowsSysWOW64vorbis.acm [1554944 2009-09-15] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
HKLMSoftwareMicrosoftActive SetupInstalled Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:Windowssystem32cmd.exe /D /C start C:Windowssystem32ie4uinit.exe -ClearIconCache
HKLMSoftwareMicrosoftActive SetupInstalled Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:Program Files (x86)GoogleChromeApplication71.0.3578.98Installerchrmstp.exe [2018-12-17] (Google Inc -> Google Inc.)
HKLMSoftwareWow6432NodeMicrosoftActive SetupInstalled Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:Program Files (x86)AdobeAcrobat Reader DCEslAiodLite.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems, Inc.)
Startup: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupSecunia PSI Tray.lnk [2012-07-01]
ShortcutTarget: Secunia PSI Tray.lnk -> C:Program Files (x86)SecuniaPSIpsi_tray.exe (Secunia)
Internet (Whitelisted)
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
TcpipParameters: [DhcpNameServer] 209.18.47.61 209.18.47.62
Tcpip..Interfaces{3FE59820-3C2D-42C5-B939-697C09A1FD08}: [DhcpNameServer] 66.90.139.210 66.90.130.10
Tcpip..Interfaces{621AD968-109D-433E-B3B7-B1DECAD0E3C5}: [DhcpNameServer] 192.168.1.1
Tcpip..Interfaces{E57A14A2-0F0A-4F05-8BF2-7C4A29A3F019}: [DhcpNameServer] 209.18.47.61 209.18.47.62
Internet Explorer:
HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Start Page = about:blank
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Page_URL =
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Search_URL =
HKUS-1-5-21-3730064447-911909596-1107092957-500SoftwareMicrosoftInternet ExplorerMain,Start Page = about:blank
HKUS-1-5-21-3730064447-911909596-1107092957-500SoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {BFF78D2B-A031-46A0-9B83-A70E038FE677} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b2ie7
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU.DEFAULT -> {BFF78D2B-A031-46A0-9B83-A70E038FE677} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b2ie7
SearchScopes: HKUS-1-5-21-3730064447-911909596-1107092957-500 -> {BFF78D2B-A031-46A0-9B83-A70E038FE677} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:Program FilesBitdefenderBitdefender Securitypmbxie.dll [2018-12-04] (Bitdefender SRL -> Bitdefender)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program FilesJavajre6binssv.dll [2012-07-01] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program FilesJavajre6binjp2ssv.dll [2012-07-01] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:Program FilesBitdefenderBitdefender SecurityAntispam32pmbxie.dll [2018-12-04] (Bitdefender SRL -> Bitdefender)
BHO-x32: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEFavClient.dll [2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEFavClient.dll [2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:Program FilesBitdefenderBitdefender Securitypmbxie.dll [2018-12-04] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:Program Files (x86)Common FilesAdobeAcrobatActiveXAcroIEFavClient.dll [2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:Program FilesBitdefenderBitdefender SecurityAntispam32pmbxie.dll [2018-12-04] (Bitdefender SRL -> Bitdefender)
Toolbar: HKUS-1-5-21-3730064447-911909596-1107092957-500 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
FireFox:
FF ProfilePath: C:UsersAdministratorAppDataRoamingMozillaFirefoxProfilesjbrcvzl8.default [2019-02-06]
FF Homepage: MozillaFirefoxProfilesjbrcvzl8.default -> Google.com
FF NetworkProxy: MozillaFirefoxProfilesjbrcvzl8.default -> type', 4
FF Extension: (Firesheep) - C:UsersAdministratorAppDataRoamingMozillaFirefoxProfilesjbrcvzl8.defaultExtensionsfiresheep@codebutler.com [2011-10-04] [Legacy] [not signed]
FF Extension: (Add N Edit Cookies) - C:UsersAdministratorAppDataRoamingMozillaFirefoxProfilesjbrcvzl8.defaultExtensions{038dc421-b19e-4711-a218-1fd10de9163b} [2011-11-15] [Legacy] [not signed]
FF Extension: (XUL Cache) - C:UsersAdministratorAppDataRoamingMozillaFirefoxProfilesjbrcvzl8.defaultExtensions{db6517d7-dfa8-46bb-8bd9-000f8549c52b} [2011-08-20] [Legacy] [not signed]
FF Extension: (Greasemonkey) - C:UsersAdministratorAppDataRoamingMozillaFirefoxProfilesjbrcvzl8.defaultExtensions{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2014-03-06] [Legacy] [not signed]
FF ProfilePath: C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.default [2016-01-15]
FF Extension: (Art Pack 10: Exterior) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-10@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 11: Sci-Fi and Horror Pack) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-11@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 12: Characters, Animals, Exterior Pack) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-12@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 1: Popular - Top Downs) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-1@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 2: Popular - Fronts and Sides) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-2@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 3: Sound FX & Speech Bubbles) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-3@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 4: Equipment) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-4@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 5: Arrows) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-5@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 6: Kitchen) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-6@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 7: Bedroom and Bathroom) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-7@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 8: Living Room) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-8@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Art Pack 9: Office) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsart-pack-9@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Full Screen Mode) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsfullscreen@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (iPhone/iPad Script Plugin) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsiphonescript@celtx.com [2012-02-21] [Legacy] [not signed]
FF Extension: (Plot View) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionsplotcards@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Performance Tracker) - C:UsersAdministratorAppDataRoamingGreyfirstCeltxProfileskxg2c76i.defaultExtensionssessiontimer@celtx.com [2011-09-21] [Legacy] [not signed]
FF Extension: (Blackened) - C:Program Files (x86)Celtxextensionsmessagestyle-blackened@addons.instantbird.org [2011-09-21] [Legacy] [not signed]
FF Extension: (Default Shot Palette) - C:Program Files (x86)Celtxextensionsdefault-palette@celtx.com [2012-02-28] [Legacy] [not signed]
FF Extension: (Depth) - C:Program Files (x86)Celtxextensionsmessagestyle-depth@addons.instantbird.org [2011-09-21] [Legacy] [not signed]
FF Extension: (DOM Inspector) - C:Program Files (x86)Celtxextensionsinspector@mozilla.org [2012-02-28] [Legacy] [not signed]
FF Extension: (Minimal) - C:Program Files (x86)Celtxextensionsmessagestyle-minimal20@addons.instantbird.org [2011-09-21] [Legacy] [not signed]
FF Extension: (MSN-Smileys) - C:Program Files (x86)Celtxextensionsemoticons-msn-smileys@m513901.de [2011-09-21] [Legacy] [not signed]
FF Extension: (Timezone Definitions for Mozilla Calendar) - C:Program Files (x86)Celtxextensionscalendar-timezones@mozilla.org [2012-02-28] [Legacy] [not signed]
FF HKLM...FirefoxExtensions: [bdwtwe@bitdefender.com] - C:Program FilesBitdefenderBitdefender Securitybdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:Program FilesBitdefenderBitdefender Securitybdwteff.xpi [2018-11-23]
FF HKLM...ThunderbirdExtensions: [bdThunderbird@bitdefender.com] - C:Program FilesBitdefenderBitdefender Securitybdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:Program FilesBitdefenderBitdefender Securitybdtbext [2018-12-20] [Legacy] [not signed]
FF HKLM-x32...FirefoxExtensions: [web2pdfextension@web2pdf.adobedotcom] - C:Program Files (x86)AdobeAcrobat 10.0AcrobatBrowserWCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:Program Files (x86)AdobeAcrobat 10.0AcrobatBrowserWCFirefoxExtn [2012-07-01] [Legacy] [not signed]
FF HKLM-x32...FirefoxExtensions: [bdwtwe@bitdefender.com] - C:Program FilesBitdefenderBitdefender Securitybdwteff.xpi
FF HKLM-x32...ThunderbirdExtensions: [bdThunderbird@bitdefender.com] - C:Program FilesBitdefenderBitdefender Securitybdtbext
FF Plugin: @adobe.com/FlashPlayer -> C:Windowssystem32MacromedFlashNPSWF64_11_3_300_257.dll [2012-07-01] ()
FF Plugin: @java.com/DTPlugin,version=1.6.0_33 -> C:Windowssystem32npdeployJava1.dll [2012-07-01] (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:Program FilesJavajre6binplugin2npjp2.dll [2012-07-01] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:Program FilesVideoLANVLCnpvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:WindowsSysWOW64MacromedFlashNPSWF32_11_3_300_257.dll [2012-07-01] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:WindowsSysWOW64AdobeDirectornp32dsw.dll [2012-04-26] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 -> C:WindowsSysWOW64npDeployJava1.dll [2012-10-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 -> C:Program Files (x86)Javajre7binplugin2npjp2.dll [2012-10-16] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:Program Files (x86)GoogleUpdate1.3.33.23npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:Program Files (x86)GoogleUpdate1.3.33.23npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.5 -> C:Program Files (x86)TabletPluginsnpwacom.dll [No File]
FF Plugin-x32: Adobe Acrobat -> C:Program Files (x86)AdobeAcrobat 10.0AcrobatAirnppdf32.dll [2012-04-04] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2018-12-04] (Adobe Systems Inc.)
FF Plugin HKUS-1-5-21-3730064447-911909596-1107092957-500: wacom.com/WacomTabletPlugin -> C:Program FilesTabletPluginsnpWacomTabletPlugin.dll [No File]
Chrome:
CHR DefaultProfile: Default
CHR StartupUrls: Default -> 'hxxp://www.google.com'
CHR Profile: C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefault [2019-02-06]
CHR Extension: (Adobe Acrobat) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionsefaidnbmnnnibpcajpcglclefindmkaj [2018-09-26]
CHR Extension: (Bitdefender Wallet) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionsgannpgaobkkhmpomoijebaigcapoeebl [2019-01-31]
CHR Extension: (Google Docs Offline) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-25]
CHR Extension: (AdBlock) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionsgighmmpiobklfepjocnamgkkbiglidom [2019-01-30]
CHR Extension: (Google Keep Chrome Extension) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionslpcaedmchfhocbbapmcbpinfpgnhiddi [2019-01-29]
CHR Extension: (AVG SafePrice Comparison, deals, coupons) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionsmbckjcfnjmoiinpgddefodcighgikkgn [2019-01-31]
CHR Extension: (Chrome Web Store Payments) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2018-09-19]
CHR Extension: (Evernote Web Clipper) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionspioclpoplcdbaefihamjohnefbikjilc [2019-01-29]
CHR Extension: (Chrome Media Router) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-19]
CHR Extension: (RSS Feed Reader) - C:UsersAdministratorAppDataLocalGoogleChromeUser DataDefaultExtensionspnjaodmkngahhkoihejjehlcdlnohgmp [2019-01-30]
CHR HKUS-1-5-21-3730064447-911909596-1107092957-500SOFTWAREGoogleChromeExtensions...ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32...ChromeExtension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32...ChromeExtension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
Services (Whitelisted)
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKLMSYSTEMCurrentControlSetServicesbulpgoxz < ATTENTION (Rootkit!)
S2 AMD External Events Utility; C:Windowssystem32atiesrxx.exe [249344 2016-02-26] (Advanced Micro Devices, Inc. -> AMD)
S2 Apple Mobile Device Service; C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe [83768 2018-08-23] (Apple Inc. -> Apple Inc.)
S2 AxiomAudioDevMon; C:Program Files (x86)M-AudioAxiomAudioDevMon.exe [1632776 2010-02-19] (M-Audio -> M-Audio)
S2 BDAuxSrv; C:Program FilesBitdefenderBitdefender Securitybdservicehost.exe [779152 2018-11-23] (Bitdefender SRL -> Bitdefender)
S2 bdredline; C:Program FilesCommon FilesBitdefenderSetupInformationBitdefender RedLinebdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
S4 DevMgmtService; C:Program FilesBitdefenderBitdefender Device ManagementDevMgmtService.exe [94496 2018-11-23] (Bitdefender SRL -> Bitdefender)
S2 MBAMService; C:Program FilesMalwarebytesAnti-Malwarembamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S2 NIHardwareService; C:Program FilesCommon FilesNative InstrumentsHardwareNIHardwareService.exe [5352960 2011-04-07] (Native Instruments GmbH) [File not signed]
S2 ProductAgentService; C:Program FilesBitdefender AgentProductAgentService.exe [1293936 2018-11-15] (Bitdefender SRL -> Bitdefender)
S2 Secunia PSI Agent; C:Program Files (x86)SecuniaPSIPSIA.exe [1326176 2012-06-27] (Secunia -> Secunia)
S2 Secunia Update Agent; C:Program Files (x86)SecuniaPSIsua.exe [681056 2012-06-27] (Secunia -> Secunia)
S2 SentinelKeysServer; C:Program Files (x86)Common FilesSafeNet SentinelSentinel Keys Serversntlkeyssrvr.exe [376832 2013-01-09] (SafeNet, Inc.) [File not signed]
S2 SentinelProtectionServer; C:Program Files (x86)Common FilesSafeNet SentinelSentinel Protection ServerWinNTspnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc)
S2 SentinelSecurityRuntime; C:Program Files (x86)Common FilesSafeNet SentinelSentinel Security Runtimesntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc. -> SafeNet, Inc.)
S2 ss_conn_service; C:Program FilesSAMSUNGUSB Drivers25_escapeconnss_conn_service.exe [741640 2014-06-16] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 Steam Client Service; C:Program Files (x86)Common FilesSteamSteamService.exe [569024 2014-02-07] (Valve -> Valve Corporation) [File not signed]
S3 SwitchBoard; C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S2 UPDATESRV; C:Program FilesBitdefenderBitdefender Securityupdatesrv.exe [112656 2018-11-23] (Bitdefender SRL -> Bitdefender)
S4 VSSERV; C:Program FilesBitdefenderBitdefender Securityvsserv.exe [804656 2018-11-23] (Bitdefender SRL -> Bitdefender)
R2 WinDefend; C:Program FilesWindows Defendermpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 WTabletServicePro; C:Program FilesTabletWacomWTabletServicePro.exe [613760 2012-10-29] (Wacom Technology Corp. -> Wacom Technology, Corp.)
S2 PaceLicenseDServices; 'C:Program Files (x86)Common FilesPACEServicesLicenseServicesLDSvc.exe' -u https://activation.paceap.com/InitiateActivation [X]
Drivers (Whitelisted)
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 61883; C:WindowsSystem32DRIVERS61883.sys [60288 2009-07-13] (Microsoft Windows -> Microsoft Corporation)
S3 amdkmdag; C:WindowsSystem32DRIVERSatikmdag.sys [23981568 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 amdkmdap; C:WindowsSystem32DRIVERSatikmpag.sys [674816 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 athr; C:WindowsSystem32DRIVERSathrx.sys [1579520 2013-01-22] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 AtiHDAudioService; C:WindowsSystem32driversAtihdW76.sys [96256 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 automap; C:WindowsSystem32DRIVERSautomap.sys [18776 2012-04-19] (Focusrite Audio Engineering Limited -> Focusrite Audio Engineering Limited)
S3 AXIOM; C:WindowsSystem32DRIVERSMAudioAxiom.sys [137736 2010-02-19] (M-Audio -> M-Audio)
S2 BdDci; C:WindowsSystem32DRIVERSbddci.sys [156912 2018-10-18] (Bitdefender SRL -> Bitdefender)
S0 bdprivmon; C:WindowsSystem32DRIVERSbdprivmon.sys [45728 2018-09-17] (Bitdefender SRL -> © Bitdefender SRL)
S1 BDVEDISK; C:WindowsSystem32DRIVERSbdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender)
S3 COMMONFX.DLL; C:WindowsSystem32COMMONFX.DLL [151552 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 ctac32k; C:WindowsSystem32driversctac32k.sys [573952 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 ctaud2k; C:WindowsSystem32driversctaud2k.sys [738560 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 CTAUDFX.DLL; C:WindowsSystem32CTAUDFX.DLL [695808 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 CTEAPSFX.DLL; C:WindowsSystem32CTEAPSFX.DLL [208896 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 CTEDSPFX.DLL; C:WindowsSystem32CTEDSPFX.DLL [316928 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 CTEDSPIO.DLL; C:WindowsSystem32CTEDSPIO.DLL [169472 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 CTEDSPSY.DLL; C:WindowsSystem32CTEDSPSY.DLL [356864 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 ctprxy2k; C:WindowsSystem32driversctprxy2k.sys [9728 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 CTSBLFX.DLL; C:WindowsSystem32CTSBLFX.DLL [676864 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 ctsfm2k; C:WindowsSystem32driversctsfm2k.sys [284160 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 e1cexpress; C:WindowsSystem32DRIVERSe1c62x64.sys [482128 2012-08-10] (Intel Corporation -> Intel Corporation)
S3 emupia; C:WindowsSystem32driversemupia2k.sys [130048 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 epmntdrv; C:Windowssystem32epmntdrv.sys [25032 2018-10-22] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFlt; C:WindowsSystem32driversEPMVolFlt.sys [21448 2018-10-18] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows ® Codename Longhorn DDK provider)
S3 EuGdiDrv; C:Windowssystem32EuGdiDrv.sys [14728 2018-12-10] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 ha10kx2k; C:WindowsSystem32driversha10kx2k.sys [1300480 2005-08-03] (Creative Technology Ltd) [File not signed]
S3 hidkmdf; C:WindowsSystem32DRIVERShidkmdf.sys [13728 2012-10-12] (Wacom Technology Corp. -> Windows ® Win 7 DDK provider)
S2 Ignis; C:WindowsSystem32DRIVERSignis.sys [196352 2018-10-26] (Bitdefender SRL -> Bitdefender)
S3 MAUSBFASTTRACK; C:WindowsSystem32DRIVERSMAudioFastTrack.sys [187912 2010-12-07] (M-Audio -> Avid Technology, Inc.)
S3 MBOXMINI; C:WindowsSystem32DRIVERSAvidMboxMini.sys [506600 2014-09-28] (Avid Technology, Inc. -> Avid)
S3 nusb3hub; C:WindowsSystem32DRIVERSnusb3hub.sys [77824 2010-01-22] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
S3 nusb3xhc; C:WindowsSystem32DRIVERSnusb3xhc.sys [180224 2010-01-22] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
S3 nvlddmkm; C:WindowsSystem32DRIVERSnvlddmkm.sys [11036448 2013-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvnUsbAudio; C:WindowsSystem32DRIVERSnvnusbaudio.sys [54000 2015-06-10] (Focusrite Audio Engineering Limited -> Novation DMS Ltd.)
S3 nvraid; C:Windowssystem32driversnvraid.sys [148352 2011-03-11] (Microsoft Windows -> NVIDIA Corporation)
S3 nvstor; C:Windowssystem32driversnvstor.sys [166272 2011-03-11] (Microsoft Windows -> NVIDIA Corporation)
S3 ossrv; C:WindowsSystem32driversctoss2k.sys [205824 2005-08-03] (Creative Technology Ltd.) [File not signed]
S2 Sentinel64; C:WindowsSystem32DriversSentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.)
S3 SiSRaid2; C:Windowssystem32DRIVERSSiSRaid2.sys [43584 2009-07-13] (Microsoft Windows -> Silicon Integrated Systems Corp.)
S3 SiSRaid4; C:Windowssystem32DRIVERSsisraid4.sys [80464 2009-07-13] (Microsoft Windows -> Silicon Integrated Systems)
S3 tap0901; C:WindowsSystem32DRIVERStap0901.sys [31232 2013-02-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 USBAAPL64; C:WindowsSystem32Driversusbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 wacmoumonitor; C:WindowsSystem32DRIVERSwacmoumonitor.sys [13312 2010-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology)
S0 gzflt; system32DRIVERSgzflt.sys [X]
S3 IntcAzAudAddService; system32driversRTKVHD64.sys [X]
S3 MSICDSetup; ??D:CDriver64.sys [X]
Celtx Art Pack 1 12
S4 NVHDA; system32driversnvhda64v.sys [X]
S3 VGPU; System32driversrdvgkmd.sys [X]
S3 wacommousefilter; system32DRIVERSwacommousefilter.sys [X]
S1 xrost; ??C:UsersADMINI~1AppDataLocalTempcgbhpsdk.sys [X] < ATTENTION
NetSvcs (Whitelisted)
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
(If an entry is included in the fixlist, the file/folder will be moved.)
Error(1) reading file: 'C:UsersAdministratorDownloadsPreservation (2014) HDrip (xvid) NL Subs. DMT '
2019-02-06 20:22 - 2019-02-06 20:22 - 000148816 ____N C:Windowssystem32Driversavsmptwz.sys
2019-02-06 20:02 - 2019-02-08 14:17 - 000030507 _____ C:UsersAdministratorDesktopFRST.txt
2019-02-06 20:02 - 2019-02-06 19:07 - 002433536 _____ (Farbar) C:UsersAdministratorDesktopFRST64.exe
2019-02-06 19:52 - 2019-02-08 14:16 - 000000000 ____D C:FRST
2019-02-06 19:46 - 2019-02-06 19:46 - 000000246 _____ C:WindowsTasksAdwCleaner_onReboot.job
2019-02-06 19:45 - 2019-02-06 19:46 - 000000000 ____D C:AdwCleaner
2019-02-06 19:27 - 2019-02-06 19:27 - 000000782 _____ C:UsersPublicDesktopCCleaner.lnk
2019-02-06 19:27 - 2019-02-06 19:27 - 000000300 ____H C:WindowsTasksCCleaner Update.job
2019-02-06 19:27 - 2019-02-06 19:27 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCCleaner
2019-02-06 19:27 - 2019-02-06 19:27 - 000000000 ____D C:Program FilesCCleaner
2019-02-06 18:54 - 2019-02-06 20:36 - 002930176 _____ (TOSHIBA CORPORATION) C:Windowssystem32dscouivsvc.exe
2019-02-02 00:21 - 2019-02-02 00:21 - 005012176 _____ C:Windowssystem32FNTCACHE.DAT
2019-02-01 13:37 - 2019-02-01 13:37 - 001010826 _____ C:UsersAdministratorDownloadsProcessMonitor (1).zip
2019-02-01 13:37 - 2019-02-01 13:37 - 000000000 ____D C:UsersAdministratorDownloadsProcessMonitor (1)
2019-02-01 13:32 - 2019-02-01 13:32 - 000000000 ____D C:UsersAdministratorDownloadsProcessMonitor
2019-02-01 13:28 - 2019-02-01 13:28 - 001010826 _____ C:UsersAdministratorDownloadsProcessMonitor.zip
2019-02-01 13:26 - 2019-02-01 13:26 - 001828569 _____ C:UsersAdministratorDownloadsProcessExplorer.zip
2019-02-01 13:26 - 2019-02-01 13:26 - 000000000 ____D C:UsersAdministratorDownloadsProcessExplorer
2019-02-01 11:57 - 2019-02-01 11:57 - 000076764 _____ C:ProgramDataagent.update.1549040241.bdinstall.v2.bin
2019-02-01 11:54 - 2019-02-01 11:54 - 000000000 ____D C:Program FilesBitdefender Antivirus Free
2019-02-01 11:53 - 2019-02-01 11:53 - 010372016 _____ C:UsersAdministratorDownloadsbitdefender_online (1).exe
2019-02-01 11:25 - 2019-02-01 12:15 - 000000000 ____D C:Windowspss
2019-02-01 10:49 - 2019-02-01 10:49 - 000000431 _____ C:bdlog.txt
Celtx Art Pack 1 Download
2019-01-31 21:00 - 2019-01-31 21:00 - 000000000 ____D C:UsersAdministratorAppDataRoamingQuickScan
2019-01-31 20:58 - 2019-01-31 20:59 - 000028683 _____ C:ProgramDatadm.1548986317.8708.bin
2019-01-31 20:58 - 2019-01-31 20:58 - 000020452 _____ C:ProgramDatadm.1548986317.5564.bin
2019-01-31 20:58 - 2019-01-31 20:58 - 000000000 ____D C:ProgramDataGemma
2019-01-31 20:58 - 2019-01-31 20:58 - 000000000 ____D C:ProgramDataBitdefender Device Management
2019-01-31 20:58 - 2019-01-31 20:58 - 000000000 ____D C:ProgramDataAtc
2019-01-31 20:57 - 2019-01-31 20:57 - 000786364 _____ C:ProgramDatacl.1548985527.bdinstall.v2.bin
2019-01-31 20:57 - 2019-01-31 20:57 - 000101508 _____ C:ProgramDatacl.kit.1548985521.bdinstall.v2.bin
2019-01-31 20:54 - 2019-01-31 20:54 - 000002312 _____ C:UsersPublicDesktopBitdefender VPN.lnk
2019-01-31 20:54 - 2019-01-31 20:54 - 000002230 _____ C:UsersPublicDesktopBitdefender.lnk
2019-01-31 20:54 - 2019-01-31 20:54 - 000000000 ____D C:Windowssystem32elambkup
2019-01-31 20:54 - 2019-01-31 20:54 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBitdefender Security
2019-01-31 20:54 - 2019-01-31 20:54 - 000000000 ____D C:ProgramDataBDLogging
2019-01-31 20:54 - 2018-04-19 08:37 - 000023032 _____ (Bitdefender) C:Windowssystem32Driversbdelam.sys
2019-01-31 20:53 - 2019-01-31 21:02 - 000000000 ____D C:UsersAdministratorAppDataRoamingBitdefender
2019-01-31 20:53 - 2019-01-31 20:58 - 000000000 ____D C:Program FilesBitdefender
2019-01-31 20:53 - 2019-01-31 20:53 - 000000000 ____D C:ProgramDataBitdefender
2019-01-31 20:53 - 2018-10-26 11:57 - 000196352 _____ (Bitdefender) C:Windowssystem32Driversignis.sys
2019-01-31 20:53 - 2018-10-18 18:12 - 000156912 _____ (Bitdefender) C:Windowssystem32Driversbddci.sys
2019-01-31 20:53 - 2018-10-04 23:40 - 000359584 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:Windowssystem32DriversGemma.sys
2019-01-31 20:53 - 2018-09-17 05:36 - 000045728 _____ (© Bitdefender SRL) C:Windowssystem32Driversbdprivmon.sys
2019-01-31 20:53 - 2018-06-05 04:32 - 001292296 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:Windowssystem32Driversatc.sys
2019-01-31 20:53 - 2018-04-27 08:45 - 000096448 _____ (BitDefender) C:Windowssystem32Driversbdvedisk.sys
2019-01-31 20:53 - 2007-04-11 11:11 - 000511328 _____ (Microsoft Corporation) C:Windowscapicom.dll
2019-01-31 20:45 - 2019-01-31 20:53 - 000000000 ____D C:Program FilesCommon FilesBitdefender
2019-01-31 20:43 - 2019-01-31 20:43 - 011334344 _____ C:UsersAdministratorDownloadsbitdefender_windows_0b89488e-b1b8-4817-b0f6-018e50abea9f.exe
2019-01-31 20:27 - 2019-02-01 13:25 - 000003648 _____ C:WindowsSystem32TasksBitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2019-01-31 20:19 - 2019-02-01 11:57 - 000000000 ____D C:Program FilesBitdefender Agent
2019-01-31 20:19 - 2019-01-31 20:19 - 000109588 _____ C:ProgramDataagent.1548983989.bdinstall.v2.bin
2019-01-31 20:07 - 2019-01-31 20:07 - 000983168 _____ (Bleeping Computer, LLC) C:rkill64.exe
2019-01-31 20:00 - 2019-01-31 20:00 - 000000000 ____D C:ProgramDataBitdefender Agent
2019-01-31 19:33 - 2017-07-25 16:56 - 001792640 _____ (Bleeping Computer, LLC) C:rkill.exe
2019-01-31 19:29 - 2019-01-31 19:29 - 000983168 _____ (Bleeping Computer, LLC) C:UsersAdministratorDesktoprkill64-22197.exe
2019-01-31 19:26 - 2019-01-31 19:26 - 000983168 _____ (Bleeping Computer, LLC) C:UsersAdministratorDesktoprkill64-21635.exe
2019-01-31 19:23 - 2019-01-31 19:23 - 000983168 _____ (Bleeping Computer, LLC) C:UsersAdministratorDesktoprkill64.exe
2019-01-31 19:23 - 2017-07-25 16:56 - 001792640 _____ (Bleeping Computer, LLC) C:UsersAdministratorDesktoprkill.exe
2019-01-31 19:21 - 2019-02-02 00:57 - 000003452 _____ C:UsersAdministratorDesktopRkill.txt
2019-01-30 15:25 - 2019-01-30 15:40 - 000000000 ____D C:UsersAdministratorAppDataLocalmsbrkxa
2019-01-30 15:13 - 2019-01-30 15:13 - 000000000 ____D C:WindowsSystem32TasksAVG
2019-01-30 15:12 - 2019-01-30 15:12 - 000000000 ____D C:Program FilesCommon FilesAVG
2019-01-30 15:11 - 2019-01-30 15:12 - 000000000 ____D C:ProgramDataAVG
2019-01-30 15:11 - 2019-01-30 15:11 - 000000000 ____D C:Program FilesAVG
2019-01-30 15:08 - 2019-01-30 15:08 - 010372016 _____ C:UsersAdministratorDownloadsbitdefender_online.exe
2019-01-30 14:48 - 2019-01-30 14:48 - 000000989 _____ C:UsersPublicDesktopEaseUS Data Recovery Wizard.lnk
2019-01-30 14:48 - 2019-01-30 14:48 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsEaseUS Data Recovery Wizard
2019-01-30 14:48 - 2019-01-30 14:48 - 000000000 ____D C:Program FilesEaseUS
2019-01-30 14:45 - 2019-01-30 15:49 - 000000000 ____D C:UsersAdministratorAppDataLocalauestgn
2019-01-30 14:45 - 2019-01-30 14:45 - 000000000 ____D C:UsersAdministratorAppDataLocalavcblzp
2019-01-30 14:44 - 2019-01-30 15:24 - 000000000 ____D C:Windowssystem32reigbwa
2019-01-30 14:44 - 2019-01-30 14:44 - 000000218 _____ C:UsersAdministratorAppDataLocalrecently-used.xbel
2019-01-30 14:44 - 2019-01-30 14:44 - 000000000 ____D C:WindowsSysWOW64reigbwa
2019-01-30 14:43 - 2019-01-30 14:43 - 000000000 ____D C:UsersAdministratorAppDataRoaminget
2019-01-30 14:43 - 2019-01-30 14:43 - 000000000 ____D C:ProgramDataCdd
2019-01-30 14:42 - 2019-01-30 14:45 - 000000000 ____D C:UsersAdministratorDownloadsEaseUS Data Recovery Wizard v11.5.0 Technician & Professional + Keygen
2019-01-30 14:37 - 2019-01-30 14:46 - 000000000 ____D C:ProgramDataKoje
2019-01-30 14:35 - 2019-01-30 14:51 - 000000000 ____D C:UsersAdministratorDownloadsEaseUS Data Recovery Wizard Technician 18.8.0 + Keygen
2019-01-30 14:29 - 2019-01-30 14:29 - 000001330 _____ C:UsersPublicDesktopEaseUS Partition Master 13.0.lnk
2019-01-30 14:29 - 2019-01-30 14:29 - 000000000 ____D C:ProgramDataSystemAcCrux
2019-01-30 14:29 - 2019-01-30 14:29 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsEaseUS Partition Master 13.0
2019-01-30 14:29 - 2019-01-30 14:29 - 000000000 ____D C:Program Files (x86)EaseUS
2019-01-30 14:29 - 2018-12-10 13:07 - 000014728 _____ C:Windowssystem32EuGdiDrv.sys
2019-01-30 14:29 - 2018-11-29 00:49 - 005247120 _____ C:Windowssystem32BootMan.exe
2019-01-30 14:29 - 2018-11-29 00:49 - 003551376 _____ C:WindowsSysWOW64BootMan.exe
2019-01-30 14:29 - 2018-11-29 00:49 - 000022160 _____ C:WindowsSysWOW64EuEpmGdi.dll
2019-01-30 14:29 - 2018-11-29 00:49 - 000018576 _____ C:Windowssystem32EuEpmGdi.dll
2019-01-30 14:29 - 2018-10-22 18:54 - 000025032 _____ C:Windowssystem32epmntdrv.sys
2019-01-30 14:29 - 2018-10-18 13:05 - 000132240 _____ C:Windowssystem32setupempdrvx64.exe
2019-01-30 14:29 - 2018-10-18 10:51 - 000021448 _____ (Windows ® Codename Longhorn DDK provider) C:Windowssystem32EPMVolFlt.sys
2019-01-30 14:29 - 2018-10-18 10:51 - 000021448 _____ (Windows ® Codename Longhorn DDK provider) C:Windowssystem32DriversEPMVolFlt.sys
2019-01-30 14:27 - 2019-01-30 14:27 - 037632048 _____ (EaseUS ) C:UsersAdministratorDownloadsepm_trial.exe
2019-01-30 13:21 - 2019-01-30 13:21 - 000001820 _____ C:UsersAdministratorDesktopWindows Compatibility Report.htm
2019-01-30 13:19 - 2019-01-30 13:45 - 000002200 _____ C:Windowsdiagwrn.xml
2019-01-30 13:19 - 2019-01-30 13:45 - 000001890 _____ C:Windowsdiagerr.xml
2019-01-30 13:12 - 2019-01-30 13:12 - 000000000 ____D C:UsersAdministratorDownloadsMicrosoft Windows 10 Pro x64 en-US 1809 - KMiSO
2019-01-30 13:11 - 2019-01-30 14:43 - 000000000 ____D C:UsersAdministratorDownloadsAmple.Sound.AGM.Library-R2R.Reupador
2019-01-29 19:36 - 2019-01-29 19:36 - 000201481 _____ C:UsersAdministratorDownloadswdZQtygvcGFmklXsaqqWVYTQ7cSyf1CW_tOIY20qrioH_7FVhnM9lG3-Vu31yR28.ics
2019-01-29 19:36 - 2019-01-29 19:36 - 000020664 _____ C:UsersAdministratorDownloadsSDClXyMs4cBmUzwpadXMk-3WDVkFKDBsiLG0B7pFLvTfMYxfPxi57hCOGynpQhqjZ-bPRTN-bt4ruanmTnyvxXLY-RCyU4zGNAFc5NKVLkc.ics
2019-01-29 19:36 - 2019-01-29 19:36 - 000012576 _____ C:UsersAdministratorDownloadsm1Qh28G3pONnv20A6nKasnHy2cX6RUy9N0Ig9lz0Ri5-riKh5EDC_dvWOc_FXTSS.ics
2019-01-29 19:35 - 2019-01-29 19:35 - 000095310 _____ C:UsersAdministratorDownloadsBsK9-Ofy6Pw2nrsm0s0bzyvzQmgKON1k5C4J_HprxDzj15mZFviUAyIOnznkjiYW7IB5Oz4fOz20cmua7p0wF5WXeapYKPmlXDXIzTEnbIw.ics
2019-01-29 17:14 - 2019-01-29 17:14 - 000447005 _____ C:UsersAdministratorDownloads1-30.pdf
2019-01-29 17:14 - 2019-01-29 17:14 - 000193711 _____ C:UsersAdministratorDownloadsHIST 3401_SECTION MW9_Spring 2019.pdf
2019-01-29 13:56 - 2019-01-29 13:56 - 000096515 _____ C:Windowsuninstaller.dat
2019-01-25 12:49 - 2019-01-25 12:49 - 000000000 ____D C:ProgramDataATI
2019-01-25 12:48 - 2019-01-25 12:48 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAMD Catalyst Control Center
2019-01-24 19:14 - 2019-01-31 22:06 - 000000000 ____D C:UsersAdministratorAppDataRoamingAmple Sound
2019-01-24 19:14 - 2019-01-24 19:14 - 000000000 ____D C:UsersAdministratorDocumentsAmple Sound
2019-01-24 19:14 - 2019-01-24 19:14 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAmple Sound
2019-01-24 19:14 - 2019-01-24 19:14 - 000000000 ____D C:Program FilesCommon FilesAvid
2019-01-24 19:14 - 2019-01-24 19:14 - 000000000 ____D C:Program FilesAmple Sound
2019-01-24 19:10 - 2017-05-08 15:23 - 000000000 ____D C:UsersAdministratorDownloadsABPL_2_3_1_Complete_Installer
2019-01-24 19:09 - 2019-01-24 19:10 - 213833026 _____ C:UsersAdministratorDownloadsABPL_2_3_1_Complete_Installer_ABCDEF.exe
2019-01-24 19:07 - 2019-01-30 14:44 - 353216604 _____ C:UsersAdministratorDownloadsAmple Sound - ABU II 2.6.5 STANDALONE, VSTi, RTAS, AAX x86 x64.zip
2019-01-24 13:07 - 2019-01-24 13:07 - 000347756 _____ C:UsersAdministratorDownloadsstatement_read_pdf (2).pdf
2019-01-22 17:50 - 2019-01-22 17:50 - 000347756 _____ C:UsersAdministratorDownloadsstatement_read_pdf (1).pdf
2019-01-22 17:47 - 2019-01-22 17:47 - 000215465 _____ C:UsersAdministratorDownloadsstatement_read_pdf.pdf
2019-01-17 15:53 - 2019-01-17 15:53 - 000000891 _____ C:UsersAdministratorAppDataRoamingMicrosoftWindowsStart MenuProgramsAbleton Live 10 Suite.lnk
2019-01-17 14:58 - 2019-01-17 14:58 - 000057085 _____ C:UsersAdministratorDesktopAuthorize.auz
2019-01-16 15:35 - 2019-01-17 14:03 - 000000000 ____D C:UsersAdministratorDownloadsABLETON LiVE PLUGiNS PACK (02) [dada]
2019-01-16 15:35 - 2019-01-17 13:57 - 000000000 ____D C:UsersAdministratorDownloadsABLETON LiVE PLUGiNS PACK (01) [dada]
2019-01-16 12:55 - 2019-01-16 15:43 - 000000000 ____D C:UsersAdministratorAppDataRoamingiZotope
2019-01-16 12:55 - 2019-01-16 12:55 - 000000000 ____D C:UsersAdministratorDocumentsiZotope
2019-01-16 12:46 - 2019-01-16 12:46 - 000000000 ____D C:UsersAdministratorAppDataRoamingMicrosoftWindowsStart MenuProgramsiZotope
2019-01-16 12:46 - 2019-01-16 12:46 - 000000000 ____D C:Program Files (x86)iZotope
2019-01-16 12:45 - 2019-01-16 12:45 - 000000000 __HDC C:ProgramData{BE48917A-8173-4C25-A322-B40C9D2FDD69}
2019-01-16 12:45 - 2019-01-16 12:45 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLexicon
2019-01-16 00:30 - 2019-01-17 14:09 - 000000477 _____ C:UsersAdministratorDesktopAuthorizing Ableton Live Offline.txt
2019-01-16 00:28 - 2019-01-16 00:28 - 000000000 ____D C:UsersAdministratorDocumentsMax 8
2019-01-16 00:28 - 2019-01-16 00:28 - 000000000 ____D C:UsersAdministratorAppDataRoamingCycling '74
2019-01-16 00:28 - 2019-01-16 00:28 - 000000000 ____D C:ProgramDataMax 8
2019-01-16 00:13 - 2019-02-01 10:27 - 000000000 ____D C:UsersAdministratorDownloadsAbleton Live 10
2019-01-15 23:56 - 2019-01-15 23:56 - 000000000 ____D C:UsersAdministratorAppDataLocalAbleton
2019-01-15 23:54 - 2019-01-17 15:55 - 000000398 __RSH C:ProgramDatantuser.pol
2019-01-15 23:41 - 2019-01-22 21:27 - 000000198 _____ C:WindowsSysWOW64ZeRO MkIINames.ini
2019-01-15 22:56 - 2019-01-15 23:03 - 933062292 _____ C:UsersAdministratorDownloadsAvid Pro Tools HD v12.5.0.395 WIN X64 READ NFO-AudioUTOPiA [oddsox].rar
2019-01-15 22:47 - 2019-01-15 22:47 - 000000000 ____D C:UsersAdministratorAppDataRoamingMicrosoftWindowsStart MenuProgramsWaves
2019-01-15 22:24 - 2019-01-15 22:24 - 000000000 ____D C:UsersAdministratorAppDataLocalNovation
2019-01-15 21:02 - 2019-01-15 21:02 - 000000000 __HDC C:ProgramData{E26B3878-7CEC-469C-B449-5CAA336DF8CD}
2019-01-15 21:01 - 2019-01-15 21:02 - 000000000 ____D C:Program Files (x86)Native Instruments
2019-01-15 20:52 - 2019-01-15 20:52 - 000000000 __HDC C:ProgramData{9327ACE9-CC82-4A33-9B33-291ACA1E267B}
2019-01-15 20:51 - 2019-01-15 20:51 - 000000000 __HDC C:ProgramData{DCC412E7-393B-4016-91FB-9307F059AFB6}
2019-01-15 20:51 - 2019-01-15 20:51 - 000000000 __HDC C:ProgramData{49FAB1E7-7D4E-4015-BBCA-E52669133FB7}
2019-01-15 19:58 - 2019-01-15 19:58 - 006475776 _____ C:WindowsSysWOW64PSP VintageWarmer2.dll
2019-01-15 18:58 - 2019-01-15 19:01 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSonnox Plugins
2019-01-15 18:58 - 2019-01-15 18:58 - 000000000 ____D C:Program Files (x86)Sonnox
2019-01-15 18:57 - 2019-01-31 20:18 - 000000000 ____D C:Program Files (x86)Waves
2019-01-15 18:57 - 2019-01-15 22:47 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsWaves
2019-01-15 18:57 - 2019-01-15 18:57 - 000000000 ____D C:UsersAdministratorAppDataRoamingWaves Audio
2019-01-15 18:55 - 2019-01-15 18:55 - 000000000 ____D C:UsersAdministratorAppDataRoamingMicrosoftWindowsStart MenuProgramsWave Arts
2019-01-15 18:55 - 2019-01-15 18:55 - 000000000 ____D C:ProgramDataWave Arts
2019-01-15 18:55 - 2019-01-15 18:55 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsWave Arts
2019-01-15 18:55 - 2019-01-15 18:55 - 000000000 ____D C:Program FilesCommon FilesDigidesign
2019-01-15 18:55 - 2019-01-15 18:55 - 000000000 ____D C:Program Files (x86)Wave Arts
2019-01-15 17:43 - 2019-01-15 18:02 - 000000016 _____ C:WindowsSysWOW64w3data.vss
2019-01-15 17:43 - 2019-01-15 18:02 - 000000016 _____ C:WindowsSysWOW64msvcsv60.dll
2019-01-15 17:43 - 2019-01-15 18:02 - 000000016 _____ C:Windowsmsocreg32.dat
2019-01-15 17:43 - 2019-01-15 17:43 - 000000950 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMiroslav Philharmonik.lnk
2019-01-15 17:43 - 2019-01-15 17:43 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsIK Multimedia
2019-01-15 17:42 - 2019-01-15 17:42 - 000000000 ____D C:Program Files (x86)IK Multimedia
2019-01-15 17:08 - 2019-01-15 19:59 - 000000000 ____D C:Program Files (x86)Softube
2019-01-15 17:08 - 2019-01-15 17:08 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSoftube
2019-01-15 17:01 - 2019-01-15 17:01 - 000000000 ____D C:UsersAdministratorAppDataRoamingMicrosoftWindowsStart MenuProgramsDada Life
2019-01-15 16:59 - 2019-01-15 16:59 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPSPaudioware
2019-01-15 16:59 - 2019-01-15 16:59 - 000000000 ____D C:Program Files (x86)PSPaudioware
2019-01-15 16:52 - 2019-01-15 20:52 - 000001004 _____ C:UsersPublicDesktopGuitar Rig 5.lnk
2019-01-15 16:35 - 2019-01-15 20:51 - 000001054 _____ C:UsersPublicDesktopController Editor.lnk
Celtx Art Pack 1 8
2019-01-15 16:35 - 2019-01-15 16:35 - 000000000 __HDC C:ProgramData{CB28D9D3-6B5D-4AFA-BA37-B4AFAAAF71B9}
One month (modified)
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-08 14:06 - 2009-07-13 21:34 - 033816576 _____ C:Windowssystem32configHARDWARE
2019-02-06 19:48 - 2011-09-23 13:38 - 000045056 ___SH C:UsersAdministratorDocumentsThumbs.db
2019-02-06 19:46 - 2009-07-13 22:20 - 000000000 ____D C:Windowsinf
2019-02-06 19:35 - 2015-01-16 04:12 - 000000000 ____D C:Program Files (x86)Steam
2019-02-01 13:21 - 2009-07-14 00:08 - 000000006 ____H C:WindowsTasksSA.DAT
2019-02-01 11:54 - 2012-07-01 22:05 - 000000830 _____ C:WindowsTasksAdobe Flash Player Updater.job
2019-02-01 11:26 - 2018-09-25 22:01 - 000000000 ____D C:UsersAdministratorAppDataRoamingdiscord
2019-02-01 11:19 - 2014-10-27 20:14 - 000000000 ____D C:UsersAdministratorAppDataRoamingSpotify
2019-02-01 11:13 - 2014-10-27 20:16 - 000000000 ____D C:UsersAdministratorAppDataLocalSpotify
2019-02-01 11:01 - 2009-07-13 22:20 - 000000000 ____D C:Windowssystem32NDF
2019-02-01 10:52 - 2015-05-30 09:33 - 000000000 ____D C:UsersAdministratorAppDataLocalAvg
2019-02-01 10:52 - 2012-01-19 14:57 - 000000000 ____D C:UsersAdministratorAppDataRoamingAVG
2019-02-01 03:16 - 2019-01-02 03:02 - 000000000 ____D C:UsersAdministratorDesktopTone BoostersKeyGen
2019-01-31 22:13 - 2011-10-12 20:06 - 000000000 ____D C:UsersAdministratorAppDataRoamingvlc
2019-01-31 20:41 - 2012-10-14 21:42 - 000003958 _____ C:WindowsSystem32TasksUser_Feed_Synchronization-{64A77370-584F-464D-B79E-0B3DADC1C9E9}
2019-01-31 20:35 - 2011-07-10 03:24 - 000000000 ____D C:UsersAdministratorAppDataLocalElevatedDiagnostics
2019-01-31 20:18 - 2011-05-31 01:07 - 000000000 ____D C:Program Files (x86)VstPlugins
2019-01-31 19:39 - 2019-01-02 02:12 - 000001980 _____ C:UsersPublicDesktopMalwarebytes.lnk
2019-01-30 16:46 - 2017-03-18 06:40 - 000000000 ____D C:$WINDOWS.~BT
2019-01-30 14:36 - 2019-01-02 01:53 - 000000000 ____D C:ProgramDataboost_interprocess
2019-01-29 14:12 - 2013-02-21 15:02 - 000000000 ____D C:WindowsMinidump
2019-01-28 10:50 - 2011-07-09 16:45 - 000070776 _____ C:WindowsSysWOW64GDIPFONTCACHEV1.DAT
2019-01-25 13:33 - 2011-07-09 16:58 - 000000000 ____D C:ProgramDataAbleton
2019-01-25 12:47 - 2018-09-22 03:20 - 000000000 ____D C:Program Files (x86)AMD
2019-01-25 12:47 - 2018-09-16 04:33 - 000000000 ____D C:Program FilesATI Technologies
2019-01-25 12:46 - 2019-01-08 13:11 - 000000000 ____D C:UsersAdministratorDownloadsdownloading
2019-01-25 12:46 - 2018-09-16 04:33 - 000000000 ____D C:Program Files (x86)ATI Technologies
2019-01-25 12:45 - 2019-01-08 13:11 - 000000000 ____D C:UsersAdministratorDownloadscomplete
2019-01-25 12:44 - 2018-09-16 04:32 - 000000000 ____D C:AMD
2019-01-24 19:21 - 2018-09-19 01:53 - 000000000 ____D C:ProgramDataPackage Cache
2019-01-22 22:57 - 2015-02-25 15:07 - 000000000 ____D C:UsersAdministratorAppDataLocalSteam
2019-01-22 21:07 - 2012-08-30 12:14 - 000000000 ____D C:UsersAdministratorDocumentsAbleton
2019-01-22 17:48 - 2019-01-08 17:12 - 000000000 ____D C:UsersAdministratorDownloadsRebel Lynn ®
2019-01-17 14:33 - 2015-12-12 04:28 - 000000000 ____D C:UsersAdministratorDocumentsPro Tools
2019-01-17 14:30 - 2014-12-30 00:06 - 000000000 ____D C:UsersAdministratorAvidLogFiles
2019-01-17 14:07 - 2011-07-09 16:58 - 000000000 ____D C:UsersAdministratorAppDataRoamingAbleton
2019-01-16 13:37 - 2015-01-22 09:47 - 000000000 ____D C:UsersAdministratorAppDataRoamingdeluge
2019-01-15 23:54 - 2009-07-13 22:20 - 000000000 ___HD C:Windowssystem32GroupPolicy
2019-01-15 21:19 - 2018-08-05 14:45 - 000000000 ___HD C:UsersAdministratorAppDataLocalSNFfNAHPR
2019-01-15 21:02 - 2018-11-30 19:42 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsNative Instruments
2019-01-15 21:02 - 2018-11-29 19:58 - 000001020 _____ C:UsersPublicDesktopMassive.lnk
2019-01-15 20:51 - 2018-11-29 19:58 - 000001019 _____ C:UsersPublicDesktopService Center.lnk
2019-01-15 20:51 - 2018-11-29 19:58 - 000000000 ____D C:Program FilesNative Instruments
2019-01-15 20:51 - 2018-11-29 19:58 - 000000000 ____D C:Program FilesCommon FilesNative Instruments
2019-01-15 20:27 - 2018-09-25 22:01 - 000002200 _____ C:UsersAdministratorDesktopDiscord.lnk
2019-01-15 20:27 - 2018-09-25 22:01 - 000000000 ____D C:UsersAdministratorAppDataRoamingMicrosoftWindowsStart MenuProgramsDiscord Inc
2019-01-15 20:27 - 2018-09-25 22:01 - 000000000 ____D C:UsersAdministratorAppDataLocalDiscord
2019-01-15 20:08 - 2019-01-02 03:14 - 000000000 ____D C:Program Files (x86)SoundToys
2019-01-15 19:03 - 2018-12-01 00:30 - 000000000 ____D C:UsersAdministratorDocumentsNative Instruments
2019-01-15 19:03 - 2018-12-01 00:30 - 000000000 ____D C:UsersAdministratorAppDataLocalNative Instruments
2019-01-15 17:43 - 2012-10-01 20:07 - 000000000 ____D C:Program Files (x86)Avid
2019-01-15 17:43 - 2012-09-11 13:51 - 000000000 ____D C:ProgramDataInstallShield
2019-01-15 17:43 - 2011-04-27 01:45 - 000000000 ___HD C:Program Files (x86)InstallShield Installation Information
2019-01-15 16:38 - 2011-04-27 04:17 - 000000000 ____D C:UsersAdministrator
2019-01-15 16:35 - 2018-11-30 19:42 - 000000000 ____D C:ProgramDataNative Instruments
Files in the root of some directories
2011-04-30 03:54 - 2011-04-30 03:54 - 000000132 _____ () C:UsersAdministratorAppDataRoamingAdobe PNG Format CS5 Prefs
2014-12-29 23:45 - 2014-12-29 23:45 - 001167862 _____ () C:UsersAdministratorAppDataRoamingAvidApplicationManager_Install.log
2012-10-02 13:57 - 2012-10-02 14:10 - 000352120 _____ () C:UsersAdministratorAppDataRoamingAvidLicenseControl_Install.log
2013-07-24 11:33 - 2013-07-24 11:33 - 000026900 _____ () C:UsersAdministratorAppDataLocaldt.dat
2019-01-30 14:44 - 2019-01-30 14:44 - 000000218 _____ () C:UsersAdministratorAppDataLocalrecently-used.xbel
2012-01-06 17:45 - 2012-01-06 17:45 - 000007604 _____ () C:UsersAdministratorAppDataLocalResmon.ResmonCfg
2008-02-05 14:28 - 2008-02-05 14:28 - 000000051 _____ () C:UsersAdministratorAppDataLocalsetup.txt
Bamital & volsnap
(There is no automatic fix for files that do not pass verification.)
C:Windowssystem32winlogon.exe => File is digitally signed
C:Windowssystem32wininit.exe => File is digitally signed
C:WindowsSysWOW64wininit.exe => File is digitally signed
C:Windowsexplorer.exe => File is digitally signed
C:WindowsSysWOW64explorer.exe => File is digitally signed
C:Windowssystem32svchost.exe => File is digitally signed
C:WindowsSysWOW64svchost.exe => File is digitally signed
C:Windowssystem32services.exe => File is digitally signed
C:Windowssystem32User32.dll => File is digitally signed
C:WindowsSysWOW64User32.dll => File is digitally signed
C:Windowssystem32userinit.exe => File is digitally signed
C:WindowsSysWOW64userinit.exe => File is digitally signed
C:Windowssystem32rpcss.dll => File is digitally signed
C:Windowssystem32dnsapi.dll => File is digitally signed
C:WindowsSysWOW64dnsapi.dll => File is digitally signed
C:Windowssystem32dllhost.exe => File is digitally signed
C:WindowsSysWOW64dllhost.exe => File is digitally signed
C:Windowssystem32Driversvolsnap.sys => File is digitally signed
C:Windowssystem32driversavsmptwz.sys -> Access Denied < ATTENTION
safeboot: Minimal => The system is configured to boot to Safe Mode < ATTENTION
LastRegBack: 2019-01-23 00:09
End of FRST.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 6.02.2019
Running from C:UsersAdministratorDesktop
Windows 7 Ultimate Service Pack 1 (X64) (2011-04-27 09:17:10)
Accounts:
333209F9DF5043D9B07A (S-1-5-21-3730064447-911909596-1107092957-1010 - Limited - Enabled)
701DF717C1DD4FFF8DE6 (S-1-5-21-3730064447-911909596-1107092957-1007 - Limited - Enabled)
9DA8AD6A31E64D93A75E (S-1-5-21-3730064447-911909596-1107092957-1012 - Limited - Enabled)
Administrator (S-1-5-21-3730064447-911909596-1107092957-500 - Administrator - Enabled) => C:UsersAdministrator
Guest (S-1-5-21-3730064447-911909596-1107092957-501 - Limited - Disabled) => C:UsersGuest
HomeGroupUser$ (S-1-5-21-3730064447-911909596-1107092957-1001 - Limited - Enabled)
UpdatusUser (S-1-5-21-3730064447-911909596-1107092957-1009 - Limited - Enabled) => C:UsersUpdatusUser
Security Center
(If an entry is included in the fixlist, it will be removed.)
AV: Bitdefender Antivirus (Disabled - Out of date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Disabled - Out of date) {B5763A99-8435-6D40-83EB-2CA97758A9A5}
FW: Bitdefender Firewall (Disabled) {362C5A58-E860-6396-9204-BEEEF20CA463}
Installed Programs
(Only the adware programs with 'Hidden' flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Ableton Live 10 Suite (HKLM...{FE06C730-0296-42D9-B869-4E819D7F47A3}) (Version: 10.0.0.0 - Ableton)
Adobe Acrobat Reader DC (HKLM-x32...{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32...{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.3 - Adobe Systems)
Adobe Creative Suite 5.5 Master Collection (HKLM-x32...{D57FC112-312E-4D70-860F-2DB8FB6858F0}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32...Adobe Flash Player ActiveX) (Version: 10.3.183.16 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32...Adobe Flash Player Plugin) (Version: 11.3.300.257 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32...Adobe Shockwave Player) (Version: 11.6.5.635 - Adobe Systems, Inc.)
AMD Install Manager (HKLM...AMD Catalyst Install Manager) (Version: 5.00 - Advanced Micro Devices, Inc.)
Ample Bass P Lite II version 2.3.1 (HKLM-x32...{26ACA0DD-7C66-40D7-B992-CC27CA024F2A}_is1) (Version: 2.3.1 - Ample Sound Technology Co., Ltd.)
Apple Application Support (32-bit) (HKLM-x32...{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM...{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM...{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32...{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
ASIO4ALL (HKLM-x32...ASIO4ALL) (Version: 2.13 - Michael Tippach)
ATI AVIVO64 Codecs (HKLM...{391ED0B2-B886-A6D0-B1A6-C25A7FE5B452}) (Version: 11.6.0.50930 - ATI Technologies Inc.) Hidden
Automap 4.12 (HKLM...Automap Universal_is1) (Version: 4.12 - Focusrite Audio Engineering Ltd.)
Automap ReWire 1.0 (HKLM-x32...Automap Universal ReWire_is1) (Version: 4.12 - Focusrite Audio Engineering Ltd.)
Avid Effects (HKLM-x32...{A86F1158-A7F7-4E8C-98E3-88F4996E85EB}) (Version: 10.3 - Avid Technology, Inc.)
Avid HD Driver (x64) (HKLM...{658E112A-8776-4430-A275-D9248732DFB9}) (Version: 10.3 - Avid Technology, Inc.)
Avid Mbox Mini 1.1.8 (x64) (HKLM...{A3425B60-E378-4D80-AF2B-2D0A06D6E639}) (Version: 1.1.8 - Avid)
Avid Pro Tools (HKLM-x32...{8E60BB71-7EF3-42ED-9F10-AA041F25841A}) (Version: 10.3 - Avid Technology, Inc.)
Battle.net (HKLM-x32...Battle.net) (Version: - Blizzard Entertainment)
beaTunes 5.0.5 (HKLM-x32...beaTunes5) (Version: 5.0.5 - tagtraum industries incorporated)
Bitdefender Agent (HKLM...Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
Bitdefender Total Security (HKLM...Bitdefender) (Version: 23.0.16.72 - Bitdefender)
Bonjour (HKLM...{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Catalyst Control Center Next Localization BR (HKLM...{0AAE5E7A-2F6D-72D9-D0DF-80F194BD7A5A}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM...{0500A3FF-F5A1-3313-58CD-7DBC0126BDB0}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM...{2E866797-6A86-D485-08EE-7EDF2FF58758}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM...{ECFBE513-0699-58BF-E02C-9FF4F5E7EF89}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM...{F2691442-6098-2100-B54E-FA8B834E8437}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM...{8E8075B9-F175-9406-5CB6-D4E0DC559715}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM...{17DE6391-FC9A-FBC9-D7F6-733B5DC4610F}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM...{6FF45160-0439-645E-8450-DD06558CED11}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM...{F3441830-D747-C1FA-1D64-5115FA200754}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM...{89434C70-A75C-8D5B-3E62-180F144E327E}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM...{B76DE8AB-9E9B-019B-4155-3426BD56DF3B}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM...{6611961A-B0E7-8CC0-B37D-B8427E4465CA}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM...{88FA6A6D-6441-A1E1-A318-7C78BFD42129}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM...{064C9A53-41BD-48A7-E6D6-B8B602DAD865}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM...{D8EEF488-861F-4A2D-6DF7-E5DD10409B75}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM...{8CE00A89-56EF-E816-E6BB-47AE6F88E395}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM...{D5A61AA0-63BB-CD18-03FC-603334B7E961}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM...{BA45B0B3-E1D3-E7A1-964C-D8F56A6451F2}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM...{07F21799-880A-FFE0-7832-04B6E57877B3}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM...{AFE15987-06A8-175A-B04B-B883440C96CC}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM...{6304B126-A90A-AF9F-B474-7D964C38FA75}) (Version: 2016.0226.1531.27895 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM...CCleaner) (Version: 5.52 - Piriform)
Celtx (2.9.5) (HKLM-x32...Celtx (2.9.5)) (Version: 2.9.5 (en-US) - Greyfirst)
Deluge 1.3.11 (HKLM-x32...Deluge) (Version: - )
Discord (HKUS-1-5-21-3730064447-911909596-1107092957-500...Discord) (Version: 0.0.304 - Discord Inc.)
EaseUS Data Recovery Wizard (HKLM...EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
EaseUS Partition Master 13.0 (HKLM-x32...EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
Enigma (HKLM-x32...{1F145099-1224-4C5B-84F2-7AE6DC699F1A}) (Version: 1.2.0.0 - M-Audio)
Evernote v. 5.2.1 (HKLM-x32...{5E6D0ABA-ABDE-11E3-9AED-00163E98E7D6}) (Version: 5.2.1.3108 - Evernote Corp.)
FlacSquisher 1.3.3 (HKLM-x32...FlacSquisher) (Version: 1.3.3 - FlacSquisher)
Google Chrome (HKLM-x32...Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32...{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM-x32...{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HFSExplorer 0.23 (HKLM-x32...HFSExplorer) (Version: 0.23 - Catacombae Software)
Intel® Network Connections 17.4.95.0 (HKLM...PROSetDX) (Version: 17.4.95.0 - Intel)
iTunes (HKLM...{645877C4-2AB6-46B6-BD32-B251B0666F63}) (Version: 12.9.0.167 - Apple Inc.)
Java 7 Update 7 (HKLM-x32...{26A24AE4-039D-4CA4-87B4-2F83217007FF}) (Version: 7.0.70 - Oracle)
Java™ 6 Update 33 (64-bit) (HKLM...{26A24AE4-039D-4CA4-87B4-2F86416033FF}) (Version: 6.0.330 - Oracle)
Java™ 6 Update 33 (HKLM-x32...{26A24AE4-039D-4CA4-87B4-2F83216033FF}) (Version: 6.0.330 - Oracle)
Java™ SE Runtime Environment 6 Update 6 (HKLM...{6448F0A8-6813-11D6-A77B-00B0D0160060}) (Version: 1.6.0.60 - ##ID_STRING_COMPANY_NAME##)
Last.fm Scrobbler 2.1.37 (HKLM-x32...LastFM_is1) (Version: - Last.fm)
License Support (HKLM...{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.2.0.5555 - PACE Anti-Piracy, Inc.) Hidden
License Support (HKLM-x32...InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.2.0.5555 - PACE Anti-Piracy, Inc.)
Malwarebytes version 3.6.1.2711 (HKLM...{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
M-Audio Axiom Driver 1.1.1 (x64) (HKLM...{8D99210A-25E1-4920-8231-D12490FB8E2C}) (Version: 1.1.1 - M-Audio)
M-Audio FastTrack Driver 6.0.6 (x64) (HKLM...{91A8C38A-0239-11E0-9658-189EDFD72085}) (Version: 6.0.6 - M-Audio)
Microsoft .NET Framework 4.5.2 (HKLM...{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32...{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32...{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32...{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM...{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM...{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM...{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM...{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM...{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32...{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM...{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM...{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM...{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32...{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32...{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32...{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32...{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM...{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32...{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32...{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32...{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32...{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32...{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
mIRC (HKLM-x32...mIRC) (Version: 7.25 - mIRC Co. Ltd.)
Miroslav Philharmonik (HKLM-x32...{BA0D0121-A3BA-487D-9C78-7AB0E676C722}) (Version: 1.0.0 - IK Multimedia)
MobileMe Control Panel (HKLM...{6DD01FF3-63CE-436B-96DB-61363EAA4EB8}) (Version: 3.1.8.0 - Apple Inc.)
Mozilla Firefox 9.0.1 (x86 en-US) (HKLM-x32...Mozilla Firefox 9.0.1 (x86 en-US)) (Version: 9.0.1 - Mozilla)
Native Instruments Controller Editor (HKLM-x32...Native Instruments Controller Editor) (Version: - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32...Native Instruments Guitar Rig 5) (Version: - Native Instruments)
Native Instruments Guitar Rig Session I/O (HKLM-x32...Native Instruments Guitar Rig Session I/O) (Version: - Native Instruments)
Native Instruments Massive (HKLM-x32...Native Instruments Massive) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32...Native Instruments Service Center) (Version: - Native Instruments)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32...{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32...InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
Novation USB Audio Driver 2.7 (HKLM...Novation USB Audio Driver_is1) (Version: 2.7 - Novation DMS Ltd.)
NVIDIA Graphics Driver 311.06 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.10.0514 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32...{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
PACE License Support Win64 (HKLM...{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.0.0.0256 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32...InstallShield_{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.0.0.0256 - PACE Anti-Piracy, Inc.)
PCM Native Reverb VST Plug-in (HKLM-x32...{B4691C58-2A6A-4AFA-960E-AEB767639E44}) (Version: 1.0.0 - Lexicon) Hidden
PCM Native Reverb VST Plug-in (HKLM-x32...PCM Native Reverb VST Plug-in) (Version: - Lexicon)
PowerISO (HKLM-x32...PowerISO) (Version: 6.0 - Power Software Ltd)
Project64 1.6 (HKLM-x32...{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
PSP VintageWarmer 2.0.0 (HKLM-x32...PSP VintageWarmer 2.0.0) (Version: 2.0.0 - PSPaudioware.com)
PxMergeModule (HKLM-x32...{024521CF-C07E-4F8E-8481-0D75695E03AF}) (Version: 1.00.0000 - Your Company Name) Hidden
QuickTime (HKLM-x32...{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32...{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.12.1218.2009 - Realtek)
Rosetta Stone Version 3 (HKLM-x32...{80F7CA44-F3A5-4853-8BA6-DDF57CD4F078}) (Version: 3.4.7.0 - Rosetta Stone Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM...{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Secunia PSI (3.0.0.2004) (HKLM-x32...Secunia PSI) (Version: 3.0.0.2004 - Secunia)
Sentinel Protection Installer 7.6.6 (HKLM-x32...{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.)
Slate Digital FG-X Mastering Processor VST RTAS v1.1.2 (HKLM-x32...Slate Digital FG-X Mastering Processor_is1) (Version: - )
Softube Acoustic Feedback VST RTAS v1.0 (HKLM-x32...Softube Acoustic Feedback VST RTAS_is1) (Version: - )
Sonnox Oxford Inflator Native VST v1.5.1 (HKLM-x32...Sonnox Oxford Inflator Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford Limiter Native VST v1.1.1 (HKLM-x32...Sonnox Oxford Limiter Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford R3 Dynamics Native VST v1.3.1 (HKLM-x32...Sonnox Oxford R3 Dynamics Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford R3 EQ Native VST v1.6.1 (HKLM-x32...Sonnox Oxford R3 EQ Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford Reverb Native VST v1.0 (HKLM-x32...Sonnox Oxford Reverb Native VST_is1) (Version: - Team AiR 2007)
Sonnox Oxford TransMod Native VST v1.3.1 (HKLM-x32...Sonnox Oxford TransMod Native VST_is1) (Version: - Team AiR 2007)
SoulseekQt (HKLM-x32...SoulseekQt) (Version: - )
SoundToys Native Effects V4 (HKLM-x32...SoundToys Native Effects V4_is1) (Version: - SoundToys Inc)
Spotify (HKUS-1-5-21-3730064447-911909596-1107092957-500...Spotify) (Version: 1.0.19.106.gb8a7150f - Spotify AB)
Steam (HKLM-x32...Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32...{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TP-LINK TL-WN881ND Driver (HKLM-x32...{FDA7E907-6539-42C1-9721-0239C281B336}) (Version: 1.3.1 - TP-LINK)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32...{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VirtualCloneDrive (HKLM-x32...VirtualCloneDrive) (Version: - Elaborate Bytes)
Visual C++ 64-bit Redistributables (HKLM-x32...InstallShield_{FB03650C-B373-4B20-ACA5-B7BA1A8EEE33}) (Version: 1.2.0.5555 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32...InstallShield_{F03117FA-9270-46B0-9666-0B4BC2CDEBF5}) (Version: 1.2.0.5555 - PACE Anti-Piracy, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM...{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32...{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM...VLC media player) (Version: 3.0.4 - VideoLAN)
Wacom Tablet (HKLM...Wacom Tablet Driver) (Version: 6.3.4-3 - Wacom Technology Corp.)
Wave Arts Power Suite (HKLM-x32...Wave Arts Power Suite) (Version: 5.40 - Wave Arts, Inc.)
Waves Mercury Bundle (HKLM-x32...Waves Mercury Bundle) (Version: 5.0 - Team AiR)
WinRAR archiver (HKLM...WinRAR archiver) (Version: - )
World of Warcraft (HKLM-x32...World of Warcraft) (Version: - Blizzard Entertainment)
Worms Reloaded (HKLM-x32...Worms Reloaded_is1) (Version: - )
Custom CLSID (Whitelisted):
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:Program Files (x86)AdobeAcrobat 10.0Acrobat..Acrobat ElementsContextMenu64.dll [2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:Program FilesPowerISOPWRISOSH.DLL [2014-06-27] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:Program Files (x86)Elaborate BytesVirtualCloneDriveElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2010-04-17] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2010-03-15] ()
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:Program Files (x86)Elaborate BytesVirtualCloneDriveElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:Program FilesPowerISOPWRISOSH.DLL [2014-06-27] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2010-04-17] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2010-03-15] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:Program Files (x86)AMDATI.ACECore-Staticatiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:Windowssystem32nvshext.dll [2013-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:Program Files (x86)AdobeAcrobat 10.0Acrobat..Acrobat ElementsContextMenu64.dll [2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:Program FilesPowerISOPWRISOSH.DLL [2014-06-27] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2010-04-17] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2010-03-15] ()
Scheduled Tasks (Whitelisted)
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1677C8C2-5651-439B-BBC7-2A73B0236971} - System32Taskseckeck => C:Program Files (x86)ExecutesPasco.exe
Task: {1BE3DBD7-4D56-4787-AA15-56975A33E054} - System32TasksNorton Security Scan for Administrator => C:PROGRA~2NORTON~2Engine311~1.6Nss.exe
Task: {352E6971-5D04-4957-BBD6-C93CA56DD1F7} - System32Taskseck => C:Program Files (x86)ExecutesPasco.exe
Task: {3F2D38A9-D213-4B55-982D-1ADD3BCCEA4C} - System32TasksMicrosoftWindowsSetupgwxrefreshgwxconfig => Command(1): %windir%system32GWXGWXConfigManager.exe -> /RefreshConfig
Task: {3F2D38A9-D213-4B55-982D-1ADD3BCCEA4C} - System32TasksMicrosoftWindowsSetupgwxrefreshgwxconfig => Command(2): C:Windowssystem32GWXGWXDetector.exe [2015-09-30] (Microsoft Windows -> Microsoft Corporation)
Task: {54ECC254-47ED-4C50-9177-D1AE0F727AB4} - System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2015-08-28] (Google Inc -> Google Inc.)
Task: {67CEA96F-67E9-421F-9081-7EFF0C521B12} - System32TasksPrivate Internet Access Startup => C:Program Filespia_managerpia_manager.exe
Task: {711A0F8B-AAFA-40F0-9D73-2B3B7D60FA95} - System32Tasksantisenseantisense => C:Program Files (x86)Weighsundrained.exe
Task: {88F39993-2169-47B6-9CCD-681DB641828B} - System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {8AC69A19-9EBD-4A12-8AC2-6B7A91BD86AE} - System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [2015-08-28] (Google Inc -> Google Inc.)
Task: {8B24D156-E333-49C1-82DA-EF6AF4A56790} - System32TasksBitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:Program FilesBitdefender AgentWatchDog.exe [2018-11-15] (Bitdefender SRL -> Bitdefender)
Task: {8E0E0148-FE00-4557-A8A9-9C2C20853C4A} - System32TasksAdobeAAMUpdater-1.0-HOBBES65-Administrator => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [2011-03-30] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {954A1DB2-9C57-4BFF-9DA7-B716E49EB00C} - System32TasksMicrosoftWindowsSetupgwxrefreshgwxconfigandcontent => Command(1): %windir%system32GWXGWXConfigManager.exe -> /RefreshConfigAndContent
Task: {954A1DB2-9C57-4BFF-9DA7-B716E49EB00C} - System32TasksMicrosoftWindowsSetupgwxrefreshgwxconfigandcontent => Command(2): C:Windowssystem32GWXGWXDetector.exe [2015-09-30] (Microsoft Windows -> Microsoft Corporation)
Task: {AA98673E-7D0C-49AC-AFBE-40459F91F608} - System32TasksAdobe Flash Player Updater => C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe [2012-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {AF0DCFCC-6568-46A3-9356-1B4BFA8D75F3} - System32Tasksstrangely-arney => C:Program Files (x86)duckingPoste.exe
Task: {B3E66470-5DA7-43EB-A1E3-2B39047D9240} - System32TasksMicrosoftWindowsSetupGWXTriggersrefreshgwxconfig-B => Command(1): %windir%system32GWXGWXConfigManager.exe -> /RefreshConfig
Task: {B3E66470-5DA7-43EB-A1E3-2B39047D9240} - System32TasksMicrosoftWindowsSetupGWXTriggersrefreshgwxconfig-B => Command(2): %windir%system32GWXGWXConfigManager.exe -> /RefreshContent
Task: {B3E66470-5DA7-43EB-A1E3-2B39047D9240} - System32TasksMicrosoftWindowsSetupGWXTriggersrefreshgwxconfig-B => Command(3): C:Windowssystem32GWXGWXDetector.exe [2015-09-30] (Microsoft Windows -> Microsoft Corporation)
Task: {B5CC3D3D-7FA8-4F0C-9BD3-42FCD279ED9C} - System32Tasksantisense => C:Program Files (x86)Weighsundrained.exe
Task: {B9E9B083-EBD4-4C0F-9B5D-6D1FF0B8150C} - System32TasksAppleAppleSoftwareUpdate => C:Program Files (x86)Apple Software UpdateSoftwareUpdate.exe [2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {BA879EB8-06BA-4D95-AC1C-DBB7670EF8E0} - System32Tasksstrangely-arneystrangely-arney => C:Program Files (x86)duckingPoste.exe
Task: {BFF82640-DD06-4DC9-94EC-49827F30C41E} - System32TasksAMD Updater => C:Program FilesAMDCIMBin64InstallManagerApp.exe [2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {CC73AEF3-4DC9-499E-93B3-11EC6E1C9755} - System32TasksAVGOverseer => C:Program FilesCommon FilesAVGOverseeroverseer.exe [2019-02-01] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:WindowsTasksAdobe Flash Player Updater.job => C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe
Task: C:WindowsTasksAdwCleaner_onReboot.job => H:winfixAdwCleaner.exe
Task: C:WindowsTasksCCleaner Update.job => C:Program FilesCCleanerCCUpdate.exe
Shortcuts & WMI
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:UsersAdministratorAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedImplicitAppShortcuts5d696d521de238c3Google Chrome.lnk -> C:Program Files (x86)GoogleChromeApplicationchromeSwitch.exe (Google Inc.) -> --profile-directory=Default
Loaded Modules (Whitelisted)
2011-04-27 04:41 - 2010-04-17 17:02 - 000166400 _____ () C:Program FilesWinRARrarext.dll
Alternate Data Streams (Whitelisted)
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:UsersAdministratorCookies:yqY3ULY8aWxp9yLzmbR3P [2222]
AlternateDataStreams: C:UsersAdministratorAppDataLocalSNFfNAHPR:d2f6JWvPruTE8qyuPuW68 [2020]
AlternateDataStreams: C:UsersAdministratorAppDataLocalTemp:31aFdxlz12CXRadIM2ZfJOouEMYi [2426]
AlternateDataStreams: C:UsersAdministratorAppDataLocalTemp:sWnIqD0WnI6Ffjc0wY0J [572]
AlternateDataStreams: C:ProgramDataMicrosoft:1kKA2RPaKulvPr0M9J3r70Imd [2160]
AlternateDataStreams: C:ProgramDataMicrosoft:3F0s84zg7HLBefz4jpkV [2470]
AlternateDataStreams: C:ProgramDataMicrosoft:60I1MVA9hbOCCdk7tmKrXU [2062]
AlternateDataStreams: C:ProgramDataMicrosoft:a1zwN4GbBbmJxOUON1JRGhANHrK [2008]
AlternateDataStreams: C:ProgramDataMicrosoft:eYeYcFcEk4f4U8WPNDYJDkH [2114]
AlternateDataStreams: C:ProgramDataMicrosoft:jjUSxYO4lKxSzI1KkLLJN6T3 [2346]
AlternateDataStreams: C:ProgramDataMicrosoft:jn85u8gwoRumJzqC0MHim1q [2290]
AlternateDataStreams: C:ProgramDataMicrosoft:OE0IrzyMHbFvT2QhUjMCW3thA [1976]
AlternateDataStreams: C:ProgramDataMicrosoft:Qs6wadfLICFoS81fb [2580]
AlternateDataStreams: C:ProgramDataMicrosoft:woTVHQ42PCuUrdKCulCP68 [2402]
AlternateDataStreams: C:ProgramDataMicrosoft:zJY3rOipKsgAPv2E [2204]
AlternateDataStreams: C:ProgramDataTEMP:0B4227B4 [268]
Safe Mode (Whitelisted)
(If an entry is included in the fixlist, it will be removed from the registry. The 'AlternateShell' will be restored.)
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => '='Service'
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => '='Service'
HKLMSYSTEMCurrentControlSetControlSafeBootOption => 'OptionValue'='1'
Association (Whitelisted)
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
Internet Explorer trusted/restricted
(If an entry is included in the fixlist, it will be removed from the registry.)
Hosts content:
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2011-06-26 17:36 - 2019-02-01 13:22 - 000001453 _____ C:Windowssystem32driversetchosts
127.0.0.1 localhost
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 practivate.adobe
127.0.0.1 practivate.adobe.newoa
127.0.0.1 practivate.adobe.ipp
127.0.0.1 ereg.wip.adobe.com
127.0.0.1 ereg.wip2.adobe.com
Other Areas
(Currently there is no automatic fix for this section.)
HKLMSystemCurrentControlSetControlSession ManagerEnvironmentPath: C:Program Files (x86)NVIDIA CorporationPhysXCommon;C:Windowssystem32;C:Windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:Program Files (x86)Common FilesAutodesk Shared;C:Program FilesCommon FilesAutodesk Shared;C:Program Files (x86)QuickTimeQTSystem;C:Program Files (x86)ATI TechnologiesATI.ACECore-Static;C:Program Files (x86)AMDATI.ACECore-Static
HKUS-1-5-21-3730064447-911909596-1107092957-500Control PanelDesktopWallpaper ->
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 0) (EnableLUA: 0)
MSCONFIG/TASK MANAGER disabled items
If an entry is included in the fixlist, it will be removed.
MSCONFIGstartupfolder: C:^Users^Administrator^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^barrelled.lnk => C:Windowspssbarrelled.lnk.Startup
MSCONFIGstartupfolder: C:^Users^Administrator^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^barrelledbarrelled.lnk => C:Windowspssbarrelledbarrelled.lnk.Startup
MSCONFIGstartupfolder: C:^Users^Administrator^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:WindowspssEvernoteClipper.lnk.Startup
MSCONFIGstartupreg: AVGUI.exe => 'C:Program FilesAVGAntivirusAvLaunch.exe' /gui
MSCONFIGstartupreg: Discord => C:UsersAdministratorAppDataLocalDiscordapp-0.0.304Discord.exe
MSCONFIGstartupreg: PWRISOVM.EXE => C:Program FilesPowerISOPWRISOVM.EXE -startup
MSCONFIGstartupreg: SetDefaultMIDI => MIDIDef.exe
MSCONFIGstartupreg: Spotify => 'C:UsersAdministratorAppDataRoamingSpotifySpotify.exe' -autostart -minimized
MSCONFIGstartupreg: Spotify Web Helper => 'C:UsersAdministratorAppDataRoamingSpotifySpotifyWebHelper.exe'
MSCONFIGstartupreg: Steam => 'C:Program Files (x86)Steamsteam.exe' -silent
MSCONFIGstartupreg: VirtualCloneDrive => 'C:Program Files (x86)Elaborate BytesVirtualCloneDriveVCDDaemon.exe' /s
FirewallRules (Whitelisted)
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B9C5028B-1369-4682-9BBF-6EA23CB42B45}] => (Allow) C:Program Files (x86)AdobeAdobe Flash Builder 4.5FlashBuilder.exe (Adobe Systems Incorporated -> )
FirewallRules: [{B013CC7A-ADA1-4B40-BCD6-9C6024E1E3CD}] => (Allow) C:Program Files (x86)AdobeAdobe Flash Builder 4.5FlashBuilder.exe (Adobe Systems Incorporated -> )
FirewallRules: [{A5299A36-A253-4913-93AC-33171DE2D320}] => (Allow) LPort=7935
FirewallRules: [TCP Query User{A7D456B6-2416-4054-A754-AAFC89B61BA1}C:program files (x86)googlechromeapplicationchrome.exe] => (Allow) C:program files (x86)googlechromeapplicationchrome.exe No File
FirewallRules: [UDP Query User{96E790FC-DD0C-4E0A-B7DC-3C9F5682431A}C:program files (x86)googlechromeapplicationchrome.exe] => (Allow) C:program files (x86)googlechromeapplicationchrome.exe No File
FirewallRules: [{B5B75F2E-1A77-4254-9BCC-09F6D9A01DA8}] => (Allow) C:Program Files (x86)Rosetta StoneRosetta Stone Version 3RosettaStoneVersion3.exe (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> Multidmedia Limited )
FirewallRules: [{B9A06D17-8B39-4E06-B9D6-060EE447B8BC}] => (Allow) C:Program Files (x86)Rosetta StoneRosetta Stone Version 3RosettaStoneVersion3.exe (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> Multidmedia Limited )
FirewallRules: [{B2C4F014-FDD3-46DF-A971-5127B2315AC5}] => (Allow) C:Program Files (x86)Rosetta StoneRosetta Stone Version 3supportbinwinRosettaStoneLtdServices.exe (Rosetta Stone, Ltd -> Rosetta Stone Ltd. )
FirewallRules: [{DE5F541E-EC46-4F36-93E7-B52F32B31EEB}] => (Allow) C:Program Files (x86)Rosetta StoneRosetta Stone Version 3supportbinwinRosettaStoneLtdServices.exe (Rosetta Stone, Ltd -> Rosetta Stone Ltd. )
FirewallRules: [{25BEEE80-BE03-4320-9A69-A0FAF8A0620A}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Protection ServerWinNTspnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{1E303DFE-F932-41D6-B3C2-DD29F9F5A0DA}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Protection ServerWinNTspnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{2BF729CF-762D-4B44-BC05-3A05227E91A9}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Keys Serversntlkeyssrvr.exe (SafeNet, Inc.)
FirewallRules: [{20015D78-1131-4E38-A96F-575BD49FC987}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Keys Serversntlkeyssrvr.exe (SafeNet, Inc.)
FirewallRules: [{9D70D988-5979-4950-88ED-4EC694A1BF0D}] => (Allow) C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BC222625-EBA2-4D37-B053-8D7FFFED57A8}] => (Allow) C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5A43B333-48C2-4C1F-AF30-CE1FEB6A3F5F}] => (Allow) C:Program Files (x86)AVGAVG2015avgmfapx.exe No File
FirewallRules: [{E7939AD5-9575-476C-B394-CBEB67E4A35C}] => (Allow) C:Program Files (x86)AVGAVG2015avgmfapx.exe No File
FirewallRules: [{E0C83481-18D2-4E55-8596-607494816C93}] => (Allow) C:UsersAdministratorAppDataRoamingSpotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AFFD21C2-C917-41DF-96CD-C4A10E52BD77}] => (Allow) C:UsersAdministratorAppDataRoamingSpotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2B57EA52-05C0-434D-98A4-7EE6DF7742A6}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Protection ServerWinNTspnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{9970CAA1-36BD-4708-A0E0-4A35FF3BCE1F}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Protection ServerWinNTspnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{33C5F947-63E2-4F65-BB7F-8D7382C1B747}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Keys Serversntlkeyssrvr.exe (SafeNet, Inc.)
FirewallRules: [{90288082-DC2F-4980-82C2-984E79864569}] => (Allow) C:Program Files (x86)Common FilesSafeNet SentinelSentinel Keys Serversntlkeyssrvr.exe (SafeNet, Inc.)
FirewallRules: [{9714120F-A2A9-4DAC-B099-0FAC7691C75A}] => (Allow) C:Program Files (x86)AvidApplication Managerjrebinjava.exe No File
FirewallRules: [{A8F0E87D-1189-411B-8D71-9AF54CF59EA2}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C5129A1-FD31-4ABD-92FD-697ED15AE597}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{496AB5C1-B2ED-4EB3-B4AD-83CBDD2DA731}] => (Allow) C:Program Files (x86)Steambinsteamwebhelper.exe No File
FirewallRules: [{DE2671BC-B3EB-4525-9030-F2543DAD2608}] => (Allow) C:Program Files (x86)Steambinsteamwebhelper.exe No File
FirewallRules: [{6EED0F49-3C8B-48EF-ADEC-C234BF2AAF85}] => (Allow) C:Program Files (x86)SteamsteamappscommonSaints Row IVSaintsRowIV.exe (Valve Corp. -> Koch Media GmbH)
FirewallRules: [{392956CC-3018-448E-BACD-9395BC19DE57}] => (Allow) C:Program Files (x86)SteamsteamappscommonSaints Row IVSaintsRowIV.exe (Valve Corp. -> Koch Media GmbH)
FirewallRules: [{8C8CD9BE-307F-4B0C-AAC3-E57CCA4D42CD}] => (Allow) C:UsersAdministratorDownloadsuTorrent.exe No File
FirewallRules: [{B80EB2F7-FBCF-4E7E-AE95-40ECB107996F}] => (Allow) C:UsersAdministratorDownloadsuTorrent.exe No File
FirewallRules: [TCP Query User{87A0A93B-D08B-47D5-A749-6FFB27A65B69}C:program files (x86)delugedeluge.exe] => (Allow) C:program files (x86)delugedeluge.exe ()
FirewallRules: [UDP Query User{92DBA779-4A5E-4A05-996A-437FAD580A8F}C:program files (x86)delugedeluge.exe] => (Allow) C:program files (x86)delugedeluge.exe ()
FirewallRules: [TCP Query User{11CFEBC8-5C50-441B-B02B-5C18F0BA4E0D}C:program files (x86)soulseekqtsoulseekqt.exe] => (Allow) C:program files (x86)soulseekqtsoulseekqt.exe ()
FirewallRules: [UDP Query User{F3DDDBC3-2E21-4124-AC8A-74EB542996DE}C:program files (x86)soulseekqtsoulseekqt.exe] => (Allow) C:program files (x86)soulseekqtsoulseekqt.exe ()
FirewallRules: [TCP Query User{CD27AF98-9150-4DC3-B7A5-F9583189899C}C:program filesbitcoinbitcoin-qt.exe] => (Allow) C:program filesbitcoinbitcoin-qt.exe No File
FirewallRules: [UDP Query User{A317F095-BA10-40DF-8751-527834452BCB}C:program filesbitcoinbitcoin-qt.exe] => (Allow) C:program filesbitcoinbitcoin-qt.exe No File
FirewallRules: [TCP Query User{35174FFC-64B3-41FD-B096-E9F3B5D7E88C}C:program files (x86)soulseekqtsoulseekqt.exe] => (Block) C:program files (x86)soulseekqtsoulseekqt.exe ()
FirewallRules: [UDP Query User{0F20B11D-C8E7-41E2-B620-4438A110C8A0}C:program files (x86)soulseekqtsoulseekqt.exe] => (Block) C:program files (x86)soulseekqtsoulseekqt.exe ()
FirewallRules: [TCP Query User{C3411E9F-900C-4510-8696-77F06396B250}C:usersadministratorappdataroamingspotifyspotify.exe] => (Block) C:usersadministratorappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{707D9D53-7032-4578-9FF2-8A52E056C337}C:usersadministratorappdataroamingspotifyspotify.exe] => (Block) C:usersadministratorappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5D52179C-63A0-4894-B24B-7CC264297C1A}] => (Allow) C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A8C56317-403B-4C84-BC39-DA2DC129F768}] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{025E1355-3444-40EA-B1DF-BB6AEEF141D8}] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{75AB095B-F1FC-4FA1-A99D-2F9877607DCB}] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBE1D288-C6E0-4129-952C-B5280018F99A}] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A7C2CD70-FD87-4FC7-ABBA-9E566F3CE6EF}] => (Allow) C:Program FilesiTunesiTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{64FD1854-E6F5-4751-A48D-CDCF74870849}C:program files (x86)avidpro toolsprotools.exe] => (Allow) C:program files (x86)avidpro toolsprotools.exe (Avid Technology, Inc.)
FirewallRules: [UDP Query User{C19EC680-2D9B-472B-9FCB-BD010C8EE4F9}C:program files (x86)avidpro toolsprotools.exe] => (Allow) C:program files (x86)avidpro toolsprotools.exe (Avid Technology, Inc.)
FirewallRules: [TCP Query User{D8AB18C4-9D55-4E90-985C-D868105C7235}C:usersadministratordesktopzsnesw.exe] => (Allow) C:usersadministratordesktopzsnesw.exe No File
FirewallRules: [UDP Query User{79597C99-E2C3-4DEC-8EB6-C8ED53B47B52}C:usersadministratordesktopzsnesw.exe] => (Allow) C:usersadministratordesktopzsnesw.exe No File
FirewallRules: [TCP Query User{66E01404-5B2B-4837-8240-E1E2D8C18ECC}C:usersadministratordesktopsnes9x-x64.exe] => (Allow) C:usersadministratordesktopsnes9x-x64.exe No File
FirewallRules: [UDP Query User{FEBA7477-3AC2-4EE6-AFF5-6CD6A596937E}C:usersadministratordesktopsnes9x-x64.exe] => (Allow) C:usersadministratordesktopsnes9x-x64.exe No File
FirewallRules: [TCP Query User{A9F3F7A2-BF3D-4587-8C87-9705186227AB}C:program filesvideolanvlcvlc.exe] => (Block) C:program filesvideolanvlcvlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3A31EB26-2AA4-4C9C-9E65-73EB3A9BBE7E}C:program filesvideolanvlcvlc.exe] => (Block) C:program filesvideolanvlcvlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6E29C7AB-E85E-4ED4-A999-6C598F71367C}] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe No File
FirewallRules: [TCP Query User{686FB4E1-9C9D-4CB5-B3FF-EA24441D6F99}C:program files (x86)novationautomapautomapserver.exe] => (Allow) C:program files (x86)novationautomapautomapserver.exe (Focusrite Audio Engineering Ltd.)
FirewallRules: [UDP Query User{768C02F8-13D6-4130-B27A-6F4A6D671DC5}C:program files (x86)novationautomapautomapserver.exe] => (Allow) C:program files (x86)novationautomapautomapserver.exe (Focusrite Audio Engineering Ltd.)
FirewallRules: [{120F0F4D-0880-43B4-BFB8-8CC8604C2002}] => (Allow) C:Windowssystem32rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{BBD87FD1-B463-42CA-A501-755C83B3B14A}] => (Allow) C:Program Files (x86)ExecutesPasco.exe No File
FirewallRules: [{16DEB088-D2C5-412A-9F4C-F59BFEA2A5A9}] => (Allow) C:Program Files (x86)WritingPasco.exe No File
FirewallRules: [{6F1B8E38-E62F-4C56-B825-669A1F3C0B3A}] => (Allow) C:Program Files (x86)duckingPoste.exe No File
FirewallRules: [{AE507F4E-D6DE-4A1D-BFB5-115B7AAB9B4B}] => (Allow) C:Program Files (x86)WritingPoste.exe No File
FirewallRules: [TCP Query User{FD5244C8-DF1A-4186-BE25-753A82AE1A62}C:program files (x86)beatunes5beatunes5.exe] => (Allow) C:program files (x86)beatunes5beatunes5.exe (Tagtraum Industries Inc. -> tagtraum industries incorporated)
FirewallRules: [UDP Query User{8E7E3576-E238-4CDC-A141-B3386579F1B3}C:program files (x86)beatunes5beatunes5.exe] => (Allow) C:program files (x86)beatunes5beatunes5.exe (Tagtraum Industries Inc. -> tagtraum industries incorporated)
FirewallRules: [TCP Query User{E6FD741E-7B2A-4241-B867-24129E2C0882}C:program files (x86)novationautomapautomapserver.exe] => (Allow) C:program files (x86)novationautomapautomapserver.exe (Focusrite Audio Engineering Ltd.)
FirewallRules: [UDP Query User{66DCC2BC-B37A-4F85-AF79-F7CE2F67E71A}C:program files (x86)novationautomapautomapserver.exe] => (Allow) C:program files (x86)novationautomapautomapserver.exe (Focusrite Audio Engineering Ltd.)
FirewallRules: [{7EBF4394-0F36-4EF2-8DE0-A4C4F074B5A4}] => (Allow) C:Program FilesAVGAntivirusAvEmUpdate.exe No File
FirewallRules: [{96FAF9D1-FB62-44D7-BBC7-CDA2F9723829}] => (Allow) C:Program FilesAVGAntivirusAvEmUpdate.exe No File
FirewallRules: [{4E8F0A98-9C2E-4620-AD21-393F133C466F}] => (Allow) C:UsersAdministratorDownloadsuTorrent.exe No File
FirewallRules: [{DB79E561-6025-41E9-90B2-D64892468CC5}] => (Allow) C:UsersAdministratorDownloadsuTorrent.exe No File
FirewallRules: [{8E97F0C2-9D0C-4CFE-BF02-0C62ED56BE1D}] => (Allow) C:Program FilesBitdefenderBitdefender Securitybdagent.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [{177CBD13-DC8C-4F42-A745-7791C94B7264}] => (Allow) C:Program FilesBitdefenderBitdefender Securitybdagent.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [{4AAE117F-449F-4764-BC50-E6811E4BB555}] => (Allow) C:Program FilesBitdefenderBitdefender Securitybdagent.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [{DF54F700-E2CF-4B43-92E5-36EF97217ADD}] => (Allow) C:Program FilesBitdefenderBitdefender Securitybdagent.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [{5E471D96-64E4-4862-9893-B60C4763A97A}] => (Allow) C:Program Files (x86)Rosetta StoneRosetta Stone Version 3supportbinwinRosettaStoneLtdServices.exe (Rosetta Stone, Ltd -> Rosetta Stone Ltd. )
FirewallRules: [{5CB6911E-2F6A-4461-BC27-72F69C44BA80}] => (Allow) C:Program Files (x86)Rosetta StoneRosetta Stone Version 3RosettaStoneVersion3.exe (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> Multidmedia Limited )
FirewallRules: [{E6787F5C-FA57-48C8-BDD1-B88E7B937AED}] => (Allow) C:Program Files (x86)SteamsteamappscommonSaints Row IVSaintsRowIV.exe (Valve Corp. -> Koch Media GmbH)
FirewallRules: [{1229A5E4-DD65-4F97-AEF4-903FA016F958}] => (Allow) C:Program Files (x86)SteamsteamappscommonSaints Row IVSaintsRowIV.exe (Valve Corp. -> Koch Media GmbH)
Restore Points
Faulty Device Manager Devices
Name: SM Bus Controller
Class Guid:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click 'Update Driver', which starts the Hardware Update wizard.
Name: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
Name: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Ethernet Controller
Class Guid:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click 'Update Driver', which starts the Hardware Update wizard.
Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Manufacturer:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click 'Update Driver', which starts the Hardware Update wizard.
Name: PCI Simple Communications Controller
Class Guid:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click 'Update Driver', which starts the Hardware Update wizard.
Event log errors:
Application errors:
Error: (02/06/2019 08:22:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup 'System Writer' object.
Details:
Could not query the status of the EventSystem service.
System Error:
.
Error: (02/06/2019 07:02:37 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Windows license activation failed. Error 0x00000000.
Error: (02/06/2019 07:02:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
Error: (01/31/2019 10:07:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Ableton Live 10 Suite.exe version 1.0.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 27f0
Start Time: 01d4b9daa24c5522
Termination Time: 6
Application Path: C:ProgramDataAbletonLive 10 SuiteProgramAbleton Live 10 Suite.exe
Report Id: 70375b3f-25ce-11e9-a85c-902b343e4371
Error: (01/31/2019 09:50:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AVGUI.exe, version: 19.1.4142.0, time stamp: 0x5c1d6e93
Faulting module name: Aavm4h.dll, version: 19.1.4142.0, time stamp: 0x5c1d6d48
Fault offset: 0x000000000004502f
Faulting application start time: 0x01d4b9d8f3881a50
Faulting application path: C:Program FilesAVGAntivirusAVGUI.exe
Faulting module path: C:Program FilesAVGAntivirusAavm4h.dll
Error: (01/31/2019 09:50:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AVGUI.exe, version: 19.1.4142.0, time stamp: 0x5c1d6e93
Faulting module name: ucrtbase.DLL, version: 10.0.17134.12, time stamp: 0x587decd7
Fault offset: 0x000000000006e76f
Faulting application start time: 0x01d4b9d8f3881a50
Faulting application path: C:Program FilesAVGAntivirusAVGUI.exe
Faulting module path: C:WindowsWinSxSamd64_avg.vc140.crt_f92d94485545da78_14.0.26706.0_none_6d113b85d59413faucrtbase.DLL
Error: (01/31/2019 09:50:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AVGUI.exe, version: 19.1.4142.0, time stamp: 0x5c1d6e93
Faulting module name: Aavm4h.dll, version: 19.1.4142.0, time stamp: 0x5c1d6d48
Fault offset: 0x000000000004502f
Faulting application start time: 0x01d4b9d8e7955210
Faulting application path: C:Program FilesAVGAntivirusAVGUI.exe
Faulting module path: C:Program FilesAVGAntivirusAavm4h.dll
Error: (01/31/2019 09:50:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AVGUI.exe, version: 19.1.4142.0, time stamp: 0x5c1d6e93
Faulting module name: ucrtbase.DLL, version: 10.0.17134.12, time stamp: 0x587decd7
Fault offset: 0x000000000006e76f
Faulting application start time: 0x01d4b9d8e7955210
Faulting application path: C:Program FilesAVGAntivirusAVGUI.exe
Faulting module path: C:WindowsWinSxSamd64_avg.vc140.crt_f92d94485545da78_14.0.26706.0_none_6d113b85d59413faucrtbase.DLL
System errors:
Error: (02/08/2019 02:16:06 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: DCOM got error '1084' attempting to start the service WSearch with arguments ' in order to run the server:
Error: (02/08/2019 01:52:52 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on DeviceHarddisk3DR3.
Error: (02/08/2019 01:52:52 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on DeviceHarddisk3DR3.
Error: (02/08/2019 01:52:52 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on DeviceHarddisk3DR3.
Error: (02/08/2019 01:52:52 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on DeviceHarddisk3DR3.
Error: (02/08/2019 01:52:52 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on DeviceHarddisk3DR3.
Error: (02/08/2019 01:52:52 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on DeviceHarddisk3DR3.
Error: (02/08/2019 01:52:52 PM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on DeviceHarddisk3DR3.
Description:
Windows Defender scan has been stopped before completion.
Scan Type:AntiSpyware
Description:
Windows Defender scan has been stopped before completion.
Scan Type:AntiSpyware
Description:
Windows Defender has detected spyware or other potentially unwanted software.
ID:133077
Category:Trojan
Detection Type:Heuristics
Status:Unknown
Description:
Windows Defender has detected spyware or other potentially unwanted software.
ID:147238
Category:Trojan
Detection Type:Heuristics
Status:Unknown
Description:
Windows Defender has detected spyware or other potentially unwanted software.
ID:147238
Category:Trojan
Detection Type:Heuristics
Status:Unknown
Date: 2011-07-25 11:18:41.847
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2011-07-25 11:18:41.831
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2011-07-24 06:27:08.003
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2011-07-24 06:27:07.987
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2011-07-21 12:10:34.206
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2011-07-21 12:10:34.190
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2011-07-17 00:26:25.597
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2011-07-17 00:26:25.535
Windows is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32driversCTAUD2K.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Memory info
Processor: Intel® Core™ i7-3770K CPU @ 3.50GHz
Total physical RAM: 32728.09 MB
Total Virtual: 45000.29 MB
Drives
Drive c: () (Fixed) (Total:931.41 GB) (Free:151.1 GB) NTFS
Drive g: (iomega) (Fixed) (Total:931.51 GB) (Free:0 GB) NTFS
Drive h: (MICROSD (Removable) (Total:29.82 GB) (Free:29.81 GB) FAT32
Drive k: (WINDOWS 10) (Fixed) (Total:931.51 GB) (Free:931.36 GB) NTFS
Drive l: (New Volume) (Fixed) (Total:931.5 GB) (Free:931.5 GB) exFAT
?Volume{5ffdde01-70ae-11e0-b98f-806e6f6e6963} (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
MBR & Partition Table
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 301A015B)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: E9EFE993)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
Disk: 4 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 301A015A)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
Disk: 5 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8D3C3118)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
Partition 1: (Not Active) - (Size=29.8 GB) - (Type=0C)
End of Addition.txt