Computer started running very slow about a week and a half ago, screen would frequently flash like things were opening up in the background, and finishing their work before any windows could completely form, the disk usage (but not other stats) were BitDefender Free Edition 1.0.15.120 Serial Key to hover at about 100% constantly (have had to take to closing programs when I am not directly using them to keep things running better.)
I discovered that, though BitDefender could be run on demand, BitDefender Free Edition 1.0.15.120 Serial Key, it would not 'turn on' as far as being the main virus program on the system.
Then I did a rollback to about two weeks previous, using a system restore point, and much (but not all) of the problems disappeared. I deleted and reinstalled BitDefender, and it could now be set as the main virus program for the system. Before, BitDefender was indicating it could find no problems, but now it kept saying the system had one problem, Generic.Botget.38E3FFEE in C:/pagefile.sys, and it has seemed to be unable to get rid of it.
That's where we stand now.
And since I have attached it three times, but it doesn't seem to show, I guess I'll have to post the addition.txt:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-06-2019
Ran by Jon (10-06-2019 10:37:28)
Running from C:\Users\Jon\Downloads
Windows 10 Home Version 1809 17763.503 (X64) (2018-12-22 14:00:34)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-420935196-2399552172-3054540448-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-420935196-2399552172-3054540448-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-420935196-2399552172-3054540448-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-420935196-2399552172-3054540448-501 - Limited - Disabled)
Jon (S-1-5-21-420935196-2399552172-3054540448-1001 - Administrator - Enabled) => C:\Users\Jon
WDAGUtilityAccount (S-1-5-21-420935196-2399552172-3054540448-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs BitDefender Free Edition 1.0.15.120 Serial Key the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\.\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\.\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Flash Player 32 NPAPI (HKLM-x32\.\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe)
Adobe Shockwave Player 12.2 (HKLM-x32\.\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)
Allavsoft 3.14.6.6387 (HKLM-x32\.\{6EBED4D8-13D9-4270-8D44-B57DDB7A787C}_is1) (Version: - Allavsoft Corporation)
AMD Software (HKLM\.\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Any Video Converter 6.3.0 (HKLM-x32\.\Any Video Converter) (Version: 6.3.0 - Anvsoft)
aTube Catcher version 3.8 (HKLM-x32\.\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.0.3 (HKLM-x32\.\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Bitdefender Agent (HKLM\.\Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
Bitdefender Antivirus Free (HKLM\.\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.15.120 - Bitdefender)
Bonjour (HKLM\.\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre 64bit (HKLM\.\{332E0E14-41EE-4C18-B366-0CE1609A393A}) (Version: 3.19.0 - Kovid Goyal)
Catalyst Control Center Next Localization BR (HKLM\.\{1BE6C27E-9110-6599-AC1F-FC4CE11317BA}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\.\{6EF6941D-4393-2231-3D29-C52ED8ED485F}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\.\{6F8C7E9C-6C88-08DE-6F31-5395790F5148}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\.\{01ED4501-7134-67E5-0AF0-3B6003646E1A}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\.\{3BA437E9-6E18-0F92-A322-EF8FD7F5F258}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\.\{9036ED75-13E0-2628-F0A6-B9DE9F4FED30}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\.\{3610B3C8-13BB-C3F9-2092-77AF42E14697}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\.\{7F7C6545-CAFA-2F58-1C19-900545747191}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\.\{FDFEBDEA-140C-AF32-5D1D-D85858CF589D}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\.\{7784F531-3276-EBB5-F590-F62151FE39A9}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\.\{8E5C06F1-C719-ECB1-FFBC-3D145DE8EF3D}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\.\{FE4CC0BC-124C-4B4A-40D2-DB7A21F4CDAA}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\.\{09772449-C26C-3CE1-5251-C0B237B7DE59}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\.\{B63F9039-62FF-33D1-7CC0-35F1B7DFAF80}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\.\{BEBEB9E8-D83E-FC1A-6EB4-EA3609DA4967}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\.\{AFFA5A9B-5230-81AA-E8AC-899A4B7E89E5}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\.\{DE06415A-00C1-CA00-082B-693F3F04D9E9}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\.\{E74C7D57-F458-1E35-9904-4428C5CA1E7C}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\.\{19C0293F-9157-3931-F773-64F879906064}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\.\{4B17EB4C-FF8D-E0C3-A576-E143A82CC7D9}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\.\{85C6552E-5D03-F944-6AFB-DDD425ED92D0}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\.\{0091B985-1F06-AC61-374A-BDCCC5405945}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\.\{5083ABB5-FEA2-DD5F-88C9-4FB40139ADE2}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\.\{58C33198-3421-5C93-2993-B69796CD64FC}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) BitDefender Free Edition 1.0.15.120 Serial Key Control Center Next Localization FI (HKLM\.\{349AA249-E523-D0AB-235A-4B3B77DE6C9E}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\.\{3FB42013-DFEA-42C7-2409-2A993F0A125F}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\.\{7F4C3AED-98FC-F801-CC51-79031E47CA8A}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\.\{036C049F-8EC8-9CB5-461C-199F1CCADAAE}) (Version: 2017.1228.23.677 - Advanced Micro Devices, BitDefender Free Edition 1.0.15.120 Serial Key, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\.\{E42B85E8-5E5C-F890-A943-CA53E9212DB0}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\.\{F581A9CB-4271-2631-003E-E870714D50BE}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\.\{45571752-4A06-D0B6-9626-AA42F733F06A}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\.\{C1606F47-9B82-2518-85A5-B418F9999A2C}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\.\{C74E37D5-4457-7F79-60A0-F5A870A572EC}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\.\{05240DC5-A5B6-AB8A-75D1-1177489D92BA}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\.\{696CE3C3-A3E6-6E42-E7D1-C4A823663F43}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\.\{7EC80E29-C710-843D-AEF8-3E03473D0166}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\.\{047EC2C9-9066-C165-88E7-78FDA2A29F2A}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\.\{38E23A09-DA95-546E-9DB0-0674910F4E8B}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control BitDefender Free Edition 1.0.15.120 Serial Key Next Localization JA (HKLM\.\{6DF59C47-EAA3-09D8-E1A1-ADF4ADD66771}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\.\{0B6AC8F2-F8AA-C034-90D6-0DDA78389033}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\.\{A9FBEC1C-6F3F-5822-7E6E-819B15168320}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Winzip pro 23 download Free Activators Localization KO (HKLM\.\{DB3312FA-CD19-EDF6-1DDE-A53A796991B5}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\.\{625D3128-2C37-F193-1346-0727DD1E6E96}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\.\{93CC5540-14E4-61E5-9F96-21F47A30BEC4}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\.\{95EE221A-5792-9BFA-E91B-CA9BB1443EA0}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\.\{2019DF89-50CE-0EFE-8E15-5D2E9355736A}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\.\{CBD24DD2-87EF-84C3-CE61-7ACF33779AFA}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\.\{F15EE5AD-B361-D745-3E42-A830B66E8EB6}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\.\{08AE5F97-73E6-2049-1976-12C786CD1828}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\.\{7D28DBD4-ECD3-1677-251A-293BAB571C7B}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\.\{F5F2836B-B423-A88E-F3AB-A36083F3B0B0}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\.\{1A5C20CB-97B4-D891-A4DE-266B5CC5CDE9}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\.\{48ACCBEA-F85D-0908-24D6-A8DDBE0621C2}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\.\{9331166D-900D-ACA4-3955-8548FFF6FC7A}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\.\{86521D14-67A5-D13B-44DD-64E3BDBEE245}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\.\{B6D21102-A474-E798-5743-5F9F0572EA48}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\.\{C422C2AD-A58E-4BBC-1344-CC0F1361E9B5}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\.\{0078B0A2-7F60-1FDE-BD14-76DCD7C47885}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\.\{A2FC02D5-A07D-9CC9-AE7F-0BD23D698FED}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\.\{EEB0FB79-C020-3725-867E-6FF3EA0782A1}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\.\{6EF31FA5-01A9-CD41-199F-8B5C7BE1ADCB}) (Version: 2016.0809.2136.37062 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\.\{B1DE4F1A-449C-75A6-16D1-CB7B6BCE526C}) (Version: 2017.0925.532.8136 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\.\{B3D49616-B742-D3FD-BD8D-367154A4D423}) (Version: 2017.1228.23.677 - Advanced Micro Devices, Inc.) Hidden
Cisco EAP-FAST Module (HKLM-x32\.\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\.\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\.\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Core FTP LE (x64) (HKLM-x32\.\CoreFTP(x64)) (Version: - )
CyberLink Power Media Player 14 (HKLM-x32\.\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.5.6909 - Uplay 71.0.5862.0 Serial Key Free Activators Corp.)
CyberLink PowerDirector 14 (HKLM-x32\.\{6BADCD73-E925-46F7-A295-FF2448632728}) (Version: 14.0.2.3309 - CyberLink Corp.)
Energy Star (HKLM\.\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Evernote v. 6.4.2 (HKLM-x32\.\{E74F0DCA-9FC8-11E6-9D98-005056950253}) (Version: 6.4.2.3788 - Evernote Corp.)
f.lux (HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\Flux) (Version: - f.lux Software LLC)
Freeciv 2.5.9 (GTK+2 client) (HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\Freeciv-2.5.9-gtk2) (Version: - )
GIMP 2.10.8 (HKLM\.\GIMP-2_is1) (Version: 2.10.8 - The GIMP Team)
GOG Galaxy (HKLM-x32\.\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM\.\{BE40B3E0-129E-313C-B663-94C192C5143F}) (Version: 75.0.3770.80 - Google, Inc.)
Google Update Helper (HKLM-x32\.\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
HandBrake 1.0.2 (HKLM-x32\.\HandBrake) (Version: 1.0.2 - )
HP Audio Switch (HKLM\.\HPAudioSwitch) (Version: 1.0.111.0 - HP Inc.)
HP Documentation (HKLM\.\HP_Documentation) (Version: 1.0.0.2 - HP Inc.)
HP ePrint SW (HKLM-x32\.\{b0ebf7ff-6b1a-4a92-9c85-6915be1962b9}) (Version: 5.1.19895 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\.\{9B252E0D-7B31-48A6-B01E-B5CCBA286E8E}) (Version: 1.1.0.168 - HP Inc.)
HP JumpStart Launch (HKLM-x32\.\{B90CB0DE-2E60-41C4-9857-466EB98192BF}) (Version: 1.1.158.0 - HP Inc.)
HP Orbit (HKLM-x32\.\{82b971c1-85fa-4c53-ada1-4ec6be0c0c8a}) (Version: 3.5.171.271 - HP Inc.)
HP PC Hardware Diagnostics Windows (HKLM-x32\.\{02E639C2-2C8A-4A55-8DFF-43666B46E8F3}) (Version: 1.5.6.0 - HP Inc.)
HP Registration Service (HKLM\.\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8357.5639 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\.\{C85AC2ED-2305-4137-A8BA-CC628F635C82}) (Version: 12.10.49.21 - HP Inc.)
HP Sure Connect (HKLM-x32\.\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: adobe acrobat reader professional 11 free download with crack - HP Inc.)
HP System Event Utility (HKLM-x32\.\{ABE95EB9-5EA1-42A3-8009-BA7602127ED6}) (Version: 1.4.25 - HP Inc.)
HP Touchpoint Analytics Client (HKLM\.\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
ImgBurn (HKLM-x32\.\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Java 8 Update 201 (64-bit) (HKLM\.\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java 8 Update 201 (HKLM-x32\.\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
KeePass Password Safe 2.35 (HKLM-x32\.\KeePassPasswordSafe2_is1) (Version: 2.35 - Dominik Reichl)
K-Lite Codec Pack 14.7.5 Full (HKLM-x32\.\KLiteCodecPack_is1) (Version: 14.7.5 - KLCP)
LibreOffice 6.2.0.3 (HKLM\.\{AD0844DC-C933-4D00-814A-3B7AAD254098}) (Version: 6.2.0.3 - The Document Foundation)
Malwarebytes version 3.7.1.2839 (HKLM\.\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\OneDriveSetup.exe) (Version: 19.070.0410.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\.\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Streets & Trips 2007 with GPS Locator (HKLM-x32\.\{C82185E8-C27B-4EF4-2007-4444BC2C2B6D}) (Version: 14.0.09.1100 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\.\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\.\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\.\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\.\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\.\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\.\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\.\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\.\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\.\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\.\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\.\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\.\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\.\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Mozilla Firefox 67.0.1 (x64 en-US) (HKLM\.\Mozilla Firefox 67.0.1 (x64 en-US)) (Version: 67.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\.\MozillaMaintenanceService) (Version: 67.0.1.7088 - Mozilla)
Mozilla Thunderbird 60.7.0 (x86 en-US) (HKLM-x32\.\Mozilla Thunderbird 60.7.0 (x86 en-US)) (Version: 60.7.0 - Mozilla)
Newshosting (HKLM\.\{649F577B-BCA1-4EB1-B17F-6157F351E528}) (Version: 2.2.1 - Newshosting)
Notepad++ (32-bit x86) (HKLM-x32\.\Notepad++) (Version: 7.3.1 - Notepad++ Team)
OEM Application Profile (HKLM-x32\.\{12C2AEB0-ED60-4CCF-DD83-C65BC7CCFB50}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OEM Application Profile (HKLM-x32\.\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenRCT2 0.1.1 (HKLM-x32\.\OpenRCT2) (Version: 0.1.1 - OpenRCT2)
OpenRCT2 Launcher version 0.0.7 (HKLM\.\{D71D87CE-20E7-4DB6-A0D8-E6DE57051B35}_is1) (Version: hotspot shield vpn elite apk full crack - OpenRCT2)
OpenTTD 1.8.0 (HKLM-x32\.\OpenTTD) (Version: 1.8.0 - OpenTTD)
PDFCreator (HKLM\.\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.4.1 - pdfforge GmbH)
Private Internet Access (HKLM\.\{33023371-7761-4F81-BBB1-0E0D0D175ACF}) (Version: 1.2.1+02688 - London Trust Media, Inc.)
qBittorrent 4.1.5 (HKLM-x32\.\qBittorrent) (Version: 4.1.5 - The qBittorrent project)
QuickPar 0.9 (HKLM-x32\.\QuickPar) (Version: 0.9 - Peter B. Clements)
RansomStopper (HKLM-x32\.\{e00d8975-8fe0-4558-aede-1a866ada852a}) (Version: 3.1.1 - CyberSight Inc.)
RansomStopper 3.1.1 (HKLM\.\{AC9656E6-873F-4E9C-9157-868A9102D28F}) (Version: 3.1.1 - CyberSight Inc) Hidden
Realtek Card BitDefender Free Edition 1.0.15.120 Serial Key (HKLM-x32\.\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\.\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\.\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7898 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\.\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.75 - REALTEK Semiconductor Corp.)
RuneScape Launcher 2.2.4 (HKLM\.\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd)
SDFormatter (HKLM-x32\.\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Seshat MMXV version 1.2.0.0 (HKLM-x32\.\{62C4FA50-DE55-4DDA-84F8-2599E58B0D3C}_is1) (Version: 1.2.0.0 - Deimos Design)
Steam (HKLM-x32\.\Steam) (Version: 2.10.91.91 - Valve Corporation)
SumatraPDF (HKLM\.\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
swMSM (HKLM-x32\.\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\.\SynTPDeinstKey) (Version: 19.5.10.75 - Synaptics Incorporated)
Unchecky v1.2 (HKLM-x32\.\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\.\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\.\{57D07AAD-97E2-4E16-89C4-1A3C51BC9C98}) (Version: 1.16.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\.\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\.\VulkanRT1.0.17.0) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\.\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
Warlords Battlecry 2 (HKLM-x32\.\1207659137_is1) (Version: 2.1.0.6 - GOG.com)
Win32DiskImager version 1.0.0 (HKLM-x32\.\{3DFFA293-DF2C-4B23-92E5-3433BDC310E1}}_is1) (Version: 1.0.0 - ImageWriter Developers)
Winamp (HKLM-x32\.\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinCDEmu (HKLM-x32\.\WinCDEmu) (Version: 4.1 - Sysprogs)
Windows Setup Remediations (x64) (KB4023057) (HKLM\.\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.61 (64-bit) (HKLM\.\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2811.0_x64__343d40qqvtj1t [2019-06-09] (Amazon.com)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.228.0_x64__v10z8vjag6ke6 [2019-06-09] (HP Inc.)
Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe [2019-06-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-06-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-06-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.3.4032.0_x86__8wekyb3d8bbwe [2019-06-09] (Microsoft Studios) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-06-09] (Microsoft Corporation) [MS Ad]
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-01-16] (Notepad++ -> )
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2016-11-18] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> No File
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-12-28] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> No File
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Priceline.com.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://secure.rezserver.com/sdk/v1/LinkFwd?refid=7684&destination=priceline&refclickid=square
==================== Loaded Modules (Whitelisted) ==============
2019-06-09 14:33 - Driver Magician 5.4 Crack+Serial Key Free Download 2021 14:33 - 001330688 _____ () [File not signed] \\?\C:\Users\Jon\AppData\Local\Temp\694B.tmp.node
2018-01-15 15:00 - 2018-03-13 10:55 - 000079872 _____ () [File not signed] C:\Program Files (x86)\GOG Galaxy\libegl.dll
2018-01-15 15:00 - 2018-03-13 10:55 - 003176448 _____ () [File not signed] C:\Program Files (x86)\GOG Galaxy\libglesv2.dll
2018-12-24 14:42 - 2018-12-24 14:42 - 025600512 _____ () [File not signed] C:\Program Files (x86)\qBittorrent\qbittorrent.exe
2017-08-21 19:37 - 2017-08-21 19:37 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000739840 _____ () [File BitDefender Free Edition 1.0.15.120 Serial Key signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2017-08-21 19:37 - Ultra Adware Killer Crack 19:37 - 000191488 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-11-26 17:44 - 2018-11-26 17:44 - 001961472 _____ () [File not signed] C:\Program Files\RansomStopper\GUI\ffmpeg.dll
2018-11-26 17:44 - 2018-11-26 17:44 - 000017408 _____ () [File not signed] C:\Program Files\RansomStopper\GUI\libegl.dll
2018-11-26 17:44 - 2018-11-26 17:44 - 003429376 _____ () [File not signed] C:\Program Files\RansomStopper\GUI\libglesv2.dll
2018-04-27 10:20 - 2018-04-27 10:20 - 000052736 _____ () reason 10.2 keygen not signed] C:\Program Files\RansomStopper\Service\boost_date_time-vc141-mt-x64-1_67.dll
2018-04-27 10:19 - 2018-04-27 10:19 - 000023552 _____ () [File not signed] C:\Program Files\RansomStopper\Service\boost_system-vc141-mt-x64-1_67.dll
2018-04-27 10:39 - 2018-04-27 10:39 - 001825280 _____ () [File not signed] C:\Program Files\RansomStopper\Service\cpprest_2_10.dll
2018-10-30 13:53 - 2018-10-30 13:53 - 000071680 _____ () [File not signed] C:\Program Files\RansomStopper\Service\snappy.dll
2018-04-27 10:33 - 2018-04-27 10:33 - 000087040 _____ () [File not signed] C:\Program Files\RansomStopper\Service\zlib1.dll
2019-05-17 02:56 - 2019-05-17 02:56 - 000134656 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\a50dea5b5d1e2a5d3ba7a3a19c7e11cd\BRIDGECommon.ni.dll
2019-05-17 02:58 - 2019-05-17 02:58 - 000112128 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\f1487ab542f190237bc45d357b522861\BridgeExtension.ni.dll
2018-10-17 10:29 - 2018-10-17 10:29 - 001342976 _____ (Cryptlex, LLC.) [File not signed] C:\Program Files\RansomStopper\Service\LexActivator.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2019-05-17 02:59 - 2019-05-17 02:59 - 000116736 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\HPJumpStartBridge\9721369e119df327f4c87a553110f373\HPJumpStartBridge.ni.exe
2017-02-06 12:58 - 2016-10-04 10:51 - 000076800 _____ (Igor Pavlov) [File reason 10.2 keygen signed] C:\Program Files\7-Zip\7-zip.dll
2018-11-26 17:44 - 2018-11-26 17:44 - 018658304 _____ (Node.js) [File not signed] C:\Program Files\RansomStopper\GUI\node.dll
2017-02-06 13:05 - 2017-02-06 13:05 - 000115200 _____ (pdfforge GmbH) [File BitDefender Free Edition 1.0.15.120 Serial Key signed] C:\WINDOWS\System32\pdfcmon.dll
2015-09-25 17:34 - 2015-09-28 14:08 - 000255488 _____ (Sysprogs OU) [File not signed] C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll
2018-10-17 10:29 - 2018-10-17 10:29 - 003135488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\RansomStopper\Service\libcrypto-1_1-x64.dll
2018-04-27 10:27 - 2018-04-27 10:27 - 002298368 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\RansomStopper\Service\LIBEAY32.dll
2018-10-17 10:29 - 2018-10-17 10:29 - 000626176 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\RansomStopper\Service\libssl-1_1-x64.dll
2018-04-27 10:27 - 2018-04-27 10:27 - 000364544 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\RansomStopper\Service\SSLEAY32.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000049664 _____ BitDefender Free Edition 1.0.15.120 Serial Key Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000023552 _____ (The Qt BitDefender Free Edition 1.0.15.120 Serial Key Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2017-08-21 19:37 - 2017-08-21 19:37 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2017-08-21 19:36 - 2017-08-21 19:36 BitDefender Free Edition 1.0.15.120 Serial Key 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2017-08-21 19:36 - 2017-08-21 19:36 - 000193024 _____ (The Qt Company Ltd) [File not Total Doc Converter 5.1.0.14 Crack License key Free C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, BitDefender Free Edition 1.0.15.120 Serial Key, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\.\123simsen.com -> www.123simsen.com
There are 7937 more sites.
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-420935196-2399552172-3054540448-1001\.\123simsen.com -> www.123simsen.com
There are 7937 more sites.
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 07:47 - 2019-06-09 00:43 - 000455791 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1www.007guard.com
127.0.0.1007guard.com
127.0.0.1008i.com
127.0.0.1www.008k.com
127.0.0.1008k.com
127.0.0.1www.00hq.com
127.0.0.100hq.com
127.0.0.1010402.com
127.0.0.1www.032439.com
127.0.0.1032439.com
127.0.0.1www.0scan.com
127.0.0.10scan.com
127.0.0.11000gratisproben.com
127.0.0.1www.1000gratisproben.com
127.0.0.11001namen.com
127.0.0.1www.1001namen.com
127.0.0.1100888290cs.com
127.0.0.1www.100888290cs.com
127.0.0.1www.100sexlinks.com
127.0.0.1100sexlinks.com
127.0.0.110sek.com
127.0.0.1www.10sek.com
127.0.0.1www.1-2005-search.com
127.0.0.11-2005-search.com
127.0.0.1123fporn.info
127.0.0.1www.123fporn.info
127.0.0.1www.123haustiereundmehr.com
127.0.0.1123haustiereundmehr.com
127.0.0.1123moviedownload.com
127.0.0.1www.123moviedownload.com
There are 15638 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\AdoptOpenJDK\jdk-11.0.2+9-jre\bin;C:\Program Files\AdoptOpenJDK\jdk8u202-b08-jre\bin;C:\Program Files (x86)\AdoptOpenJDK\jdk8u202-b08-jre\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Calibre2\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142801605\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142803121\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-420935196-2399552172-3054540448-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06092019142804667\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-420935196-2399552172-3054540448-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 209.222.18.222 - 209.222.18.218
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{EF7A9035-6F4E-41F4-8D5E-6F7DCA001561}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5AE15BE6-02D8-40BC-B6B7-5E8341FBA2EB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2376A434-EEE7-424C-A54B-93A2F402EA2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Small Town Terrors Livingston\SmallTownTerrors_Livingston.exe () [File not signed]
FirewallRules: [{A8DE1486-F847-4466-91A5-648AF177940D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Small Town Terrors Livingston\SmallTownTerrors_Livingston.exe () [File not signed]
FirewallRules: [{3D1D8C1F-3D20-4006-9869-F7E134C9179C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Comic Book Hero\CBH.exe (Encore Software -> Ryality Bytes Ltd)
FirewallRules: [{E9CE1E27-BAF9-430E-A263-D916A3B6C04C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Comic Book Hero\CBH.exe (Encore Software -> Ryality Bytes Ltd)
FirewallRules: [{203FC25F-4D23-4469-802F-87B15FF1486E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rollercoaster Tycoon 2\RCT2.EXE () [File not signed]
FirewallRules: [{85C3BD76-38DF-4BB5-A2F8-DDDB6250564C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rollercoaster Tycoon 2\RCT2.EXE () [File not signed]
FirewallRules: [{D9586018-6485-4AC2-9607-2A79AE90F389}] => (Allow) LPort=13148
FirewallRules: [{EAB18114-C5CD-44FA-A88E-2EF297DB58EC}] => (Allow) C:\Program Files\HP\HP Orbit Service\HPOrbitService.exe (HP Inc. -> HP Inc.)
FirewallRules: [{47C93F95-6C76-4D9A-B174-3640FE743B42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guild Quest\guild-quest.exe No File
FirewallRules: [{AB8AE053-657B-48F8-BAE4-78ECFAEE294E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guild Quest\guild-quest.exe No File
FirewallRules: [{0E3FE9DF-578D-4A86-9299-832CCCFB735E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RollerCoaster Tycoon Deluxe\RCT.EXE () [File not signed]
FirewallRules: [{08EEA078-DC41-493D-9F00-A0382246AC41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RollerCoaster Tycoon Deluxe\RCT.EXE () [File not signed]
FirewallRules: [{C70E94BA-A0D9-44A4-83A9-CBFE7A49BE9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Luxor Mahjong\LuxorMahjong.exe No File
FirewallRules: [{B7F9C73F-9738-4257-AAD8-A944C35268DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Luxor Mahjong\LuxorMahjong.exe No File
FirewallRules: [{F532FFB3-A089-42E5-9BD6-CE90DCF1FA12}] => (Block) C:\program files (x86)\aimersoft\itube studio\downloadres\urlreqservice.exe No File
FirewallRules: [{BAB0D7F5-7546-43FC-B846-346671E996D4}] => (Block) C:\program files (x86)\aimersoft\itube studio\downloadres\urlreqservice.exe No File
FirewallRules: [UDP Query User{E082E343-E848-41FC-A396-E650A9B90BD6}C:\program files (x86)\aimersoft\itube studio\downloadres\urlreqservice.exe] => (Allow) C:\program files (x86)\aimersoft\itube studio\downloadres\urlreqservice.exe No File
FirewallRules: [TCP Query User{31887F8E-DA1E-45EF-9FD8-C58FABFC2386}C:\program files (x86)\aimersoft\itube studio\downloadres\urlreqservice.exe] => (Allow) C:\program files (x86)\aimersoft\itube studio\downloadres\urlreqservice.exe No File
FirewallRules: [UDP Query User{60FF04DC-99B0-490E-80F1-1221F749EE1E}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3996FA23-A871-471F-9106-AD13A06D2F99}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7F76E009-1659-48DB-A2CB-8E93896A113D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Midnight Mysteries 4\MidnightMysteries4.exe No File
FirewallRules: [{06A9CA20-7B10-4A32-9E9C-CEF36CB9905B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Midnight Mysteries 4\MidnightMysteries4.exe No File
FirewallRules: [{F9549BBA-F64C-4FDC-B8CA-E40F5ABE0459}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Railroad Tycoon 2 Platinum\RT2_PLAT.EXE (PopTop Software, Inc.) [File not signed]
FirewallRules: [{88FCAF14-1782-4AA0-AC0A-191DF3F1F4AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Railroad Tycoon 2 Platinum\RT2_PLAT.EXE (PopTop Software, Inc.) [File not signed]
FirewallRules: [{D2ED5867-0BF9-4426-AE75-345223BDED3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Communist\adventure-communist.exe () [File not signed]
FirewallRules: [{013790EF-98D6-4567-8D92-D5A73FDFCE14}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture BitDefender Free Edition 1.0.15.120 Serial Key () [File not signed]
FirewallRules: [{54ED51F8-F775-465A-A14C-42A0454D1A6D}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe No File
FirewallRules: [{F2D8D33B-3AEB-4A3F-AA15-617CA34F2EBA}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe No File
FirewallRules: [{E6267372-994E-4883-B216-3F13CC6D2681}] ApowerUnlock Crack (Allow) C:\Program Files (x86)\pandasecuritytb\cleanupie.exe (Visicom Media Inc. -> Zmodeler 3.1.5 cracked Free Activators Media Inc)
FirewallRules: [{3CC8FDF3-94A9-4C41-9134-C0F077790D85}] => (Allow) C:\Program Files (x86)\pandasecuritytb\cleanupie.exe (Visicom Media Inc. -> Visicom Media Inc)
FirewallRules: [{E4AF9847-4D5F-4339-8B1F-58C2A9F3F9DC}] => (Allow) C:\Users\Jon\AppData\Local\Temp\7zS1785\HPDiagnosticCoreUI.exe No File
FirewallRules: [{6568A7DF-6802-4B9D-8CA4-B4A5B308A200}] => (Allow) C:\Users\Jon\AppData\Local\Temp\7zS1785\HPDiagnosticCoreUI.exe No File
FirewallRules: [{A3C04471-579F-46D1-983C-6BA095F1F971}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe No File
FirewallRules: [{76B6ACD5-F8E7-4BC0-8939-660EE2B02B5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe No File
FirewallRules: [{2BC284B7-E922-4FEF-85AA-FC3DD0960C16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe (Frontier Developments Ltd) [File not signed]
FirewallRules: [{6EDFB1AF-D75B-46AC-B205-436818CB2E0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe (Frontier Developments Ltd) [File not signed]
FirewallRules: [{A0ABFBA9-138A-49E2-8C1E-6C8711ED9D78}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{0CF693A4-74D5-4E9F-86E4-4119D6AB3794}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{37574E4E-7507-4B6D-98CD-0EF5CF0D44B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Locomotion\Loco.exe (Atari Inc.) [File not signed]
FirewallRules: [{842616A7-F2F2-4675-93DA-3F0917FD3CC1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Locomotion\Loco.exe (Atari Inc.) [File not signed]
FirewallRules: [{9A94FC90-FB8D-4184-820D-DAE985C30122}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe () [File not signed]
FirewallRules: [{4A8CBD5A-FA86-4B3B-8E11-690D88FDBA09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe () [File not signed]
FirewallRules: [{3920C4DD-E38F-48F1-BBCC-C9EB18E0938C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{A6608216-3523-43EF-9C7C-8A7952A9EDF3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{92E85B49-DB12-42B7-A6BB-F917D23461C7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{F4AA9B46-874C-48A8-A3D9-A432A8D898DB}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{93D412EF-71B2-4601-AF8C-9DB3EAF3E16B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve BitDefender Free Edition 1.0.15.120 Serial Key Valve Corporation)
FirewallRules: [{ECA4F44E-9553-46AD-9E5E-21EC71FF14D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7C734CFD-32B4-4DCA-9018-C6CAB7980BD5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{45D83051-40DB-4654-B67B-1AF57ED8325D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{79CF0665-AF1E-4702-A4C5-9999CA36837E}] => (Allow) C:\Program Files\CyberLink\PowerDirector14\PDR10.EXE No File
FirewallRules: [{A24D7281-4EC1-4657-80EC-3314B30DB644}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{2B2F5DA1-93D8-4CE7-907A-AFD2885ED41D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{018DED90-FF7B-4D16-B9EF-D5FD6872F962}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe No File
FirewallRules: [{3ADD4B74-2FC0-43F3-8A31-A689BC8AAEBC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{5D11F1A1-212C-4CD9-BA47-C639B76DF1DB}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{2350C4DF-1B91-4DB6-8555-99655273882A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9224A8EA-B25E-4654-8B5F-7C2BFF7FE17E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C7BC0726-4032-41E3-A95F-701AAA062D5C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{22104E91-D374-4DD4-B3D7-7133A914AFCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{41534F00-C6E1-4FC5-9DF4-476150806464}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Railroad Tycoon 3\RT3.exe (PopTop Software, Inc.) [File not signed]
FirewallRules: [{52663C44-E2F7-4C06-9484-B04B08A42935}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Railroad Tycoon 3\RT3.exe (PopTop Software, Inc.) [File not signed]
FirewallRules: [{C3D2E3ED-464C-41ED-AC36-DD9A97FA0574}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{751B54FA-35D5-44A3-A0FF-5EDCDD6A0C9C}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{EBCFB277-CB72-4963-A67C-B3770B44FA5B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/10/2019 12:03:46 AM) (Source: Application Error) (EventID: 1000) (User: BitDefender Free Edition 1.0.15.120 Serial Key Faulting application name: AdaptiveSleepService.exe, version: 0.0.0.0, time stamp: 0x5a447fd6
Faulting module name: AdaptiveSleepService.exe, version: 0.0.0.0, time stamp: 0x5a447fd6
Exception code: 0xc0000005
Fault offset: 0x000000000000b9f4
Faulting process id: 0xdb0
Faulting application start time: 0x01d51ef14b6afe2c
Faulting application path: C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
Faulting module path: C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
Report Id: 9c8645cf-79aa-4daf-a724-5591b342c596
Faulting package BitDefender Free Edition 1.0.15.120 Serial Key name:
Faulting package-relative application ID:
Error: (06/09/2019 07:18:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: AdaptiveSleepService.exe, version: 0.0.0.0, time stamp: 0x5a447fd6
Faulting module name: AdaptiveSleepService.exe, version: 0.0.0.0, time stamp: 0x5a447fd6
Exception code: 0xc0000005
Fault offset: 0x000000000000b9f4
Faulting process id: 0x12c4
Faulting application start time: 0x01d51e8f387eaa4e
Faulting application path: C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
Faulting module path: C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
Report Id: 9c88a9f6-353f-4191-893d-b9f7d6c63b9c
Faulting package full name:
Faulting package-relative application ID:
Error: (06/09/2019 03:52:32 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT Acme CAD Converter 8.10.0.152 Crack License Code 2021 Windows cannot load the extensible counter DLL "C:\WINDOWS\system32\sysmain.dll" (Win32 error code 126).
Error: (06/09/2019 03:52:11 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1017) (User: NT AUTHORITY)
Description: Disabled performance counter data collection from the "ASP.NET_64_2.0.50727" service because the performance counter library for that service has generated one or more errors. The errors that forced this action have been written to the application event log. Correct the errors before enabling the performance counters for this service.
Error: (06/09/2019 03:52:11 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1022) (User: NT AUTHORITY)
Description: Windows cannot avg secure vpn download the 64-bit extensible counter DLL C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\aspnet_perf.dll in a 32-bit environment (Win32 error code 193). Contact the file vendor to obtain a 32-bit version, BitDefender Free Edition 1.0.15.120 Serial Key. Alternatively if you are running a 64-bit native environment, you can open the 64-bit extensible counter DLL by using the 64-bit version of Performance Monitor. To use this tool, open the Windows folder, open the System32 folder, and then start Perfmon.exe.
Error: (06/09/2019 03:12:05 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating status to SECURITY_PRODUCT_STATE_ON.
Error: (06/09/2019 03:11:41 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error while updating status to SECURITY_PRODUCT_STATE_ON.
Error: (06/09/2019 02:47:51 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.17763.348 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 1b9c
Start Time: 01d51e8f065f347d
Termination Time: 0
Application Path: C:\Windows\explorer.exe
Report Id: cd8c38d3-9f5c-4dd1-b224-1043452f4ac2
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
System errors:
=============
Error: (06/10/2019 10:34:32 AM) (Source: DCOM) (EventID: 10016) (User: ARIGATO-MR-ROBO)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user ARIGATO-MR-ROBO\Jon SID (S-1-5-21-420935196-2399552172-3054540448-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (06/10/2019 02:12:21 AM) (Source: DCOM) (EventID: 10016) (User: ARIGATO-MR-ROBO)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user ARIGATO-MR-ROBO\Jon SID (S-1-5-21-420935196-2399552172-3054540448-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (06/10/2019 02:12:19 AM) (Source: DCOM) (EventID: 10016) (User: ARIGATO-MR-ROBO)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user ARIGATO-MR-ROBO\Jon SID (S-1-5-21-420935196-2399552172-3054540448-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be Passper for RAR Free Download using the Component Services administrative tool.
Error: (06/10/2019 02:00:06 AM) (Source: DCOM) (EventID: 10001) (User: ARIGATO-MR-ROBO)
Description: Unable to start a DCOM Server: Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca as Unavailable/Unavailable. The error:
"0"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
Error: (06/10/2019 01:58:28 AM) (Source: DCOM) (EventID: 10001) (User: ARIGATO-MR-ROBO)
Description: Unable to start a DCOM Server: Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca as Unavailable/Unavailable. The error:
"0"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
Error: (06/10/2019 01:37:25 AM) (Source: volsnap) (EventID: 25) (User: )
Description: The shadow copies of volume C: were deleted because the shadow copy storage could not grow in time. Consider reducing the IO load on the system or choose a shadow copy storage volume that is not being shadow copied.
Error: (06/10/2019 01:13:48 AM) (Source: DCOM) (EventID: 10016) (User: ARIGATO-MR-ROBO)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user ARIGATO-MR-ROBO\Jon SID (S-1-5-21-420935196-2399552172-3054540448-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (06/10/2019 12:26:07 AM) (Source: DCOM) (EventID: 10001) (User: ARIGATO-MR-ROBO)
Description: Unable to start a DCOM Server: Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca as Unavailable/Unavailable. The error:
"0"
Happened while starting this command:
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
Windows Defender:
===================================
Date: 2019-06-09 15:01:20.020
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {44956720-809D-455C-B54D-99653155D783}
Scan Type: Antimalware
Scan Parameters: Full Scan
Date: 2019-04-15 00:46:12.170
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {D982411D-FF41-4672-B4E9-FB0C00648B27}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-04-15 00:11:10.494
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {E881B7F0-D2B8-4FD0-B327-E33E3AFAF817}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-04-14 21:49:40.196
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {8842725E-A416-4E1E-AC1B-2D5B01A9626E}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-04-14 20:43:41.783
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {2E9B55CC-9268-4082-B238-439FC6803A1E}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-06-09 16:13:46.391
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 1.295.393.0
Previous Signature Version: 1.295.367.0
Update Source: User
Signature Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.16000.6
Previous Engine Version: 1.1.16000.6
Error code: 0x80509004
Error description: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Date: 2019-06-09 16:13:46.390
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 1.295.393.0
Previous Signature Version: 1.295.367.0
Update Source: User
Signature Type: AntiVirus
Update Type: Delta
Current Engine Version: 1.1.16000.6
Previous Engine Version: 1.1.16000.6
Error code: 0x80509004
Error description: An unexpected problem occurred, BitDefender Free Edition 1.0.15.120 Serial Key. Install any available updates, and then try to start the program again, BitDefender Free Edition 1.0.15.120 Serial Key. For BitDefender Free Edition 1.0.15.120 Serial Key on installing updates, BitDefender Free Edition 1.0.15.120 Serial Key, see Help and Support.
Date: 2019-06-09 02:20:29.106
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.295.357.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16000.6
Error code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Date: 2019-06-09 02:10:11.653
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware protection has stopped functioning for an unknown reason, BitDefender Free Edition 1.0.15.120 Serial Key. In some instances, restarting the service may resolve the problem.
Date: 2019-06-09 01:24:50.166
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.293.1863.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15900.4
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
CodeIntegrity:
===================================
Date: 2019-06-09 15:36:08.728
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing malwarebytes premium free download with crack requirements.
Date: 2019-06-09 02:39:52.886
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-06-09 01:16:49.855
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-23 15:52:35.795
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-05-06 02:58:20.509
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-10 11:33:26.807
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-10 11:33:26.794
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Actual multiple monitors ignore deactivation Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-04-10 11:33:24.184
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: Insyde F.39 10/24/2017
Motherboard: HP 8224
Processor: AMD A6-7310 APU with AMD Radeon R4 Graphics
Percentage of memory in use: 60%
Total physical RAM: 7121.01 MB
Available physical RAM: 2789.16 MB
Total Virtual: 11217.01 MB
Available Virtual: 5375.27 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:919.32 GB) (Free:265.02 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:10.96 GB) (Free:1.32 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (Nov 16 2011) (CDROM) (Total:4.25 GB) (Free:0 GB) UDF
\\?\Volume{bda65049-f0a3-48d1-b072-05d558944eed}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.39 GB) NTFS
\\?\Volume{cded6cd9-2e84-42d1-86a6-fe06ae378c01}\ (WHATISTHIS) (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==================== End of Addition.txt ============================
Edited by Batchman, 12 June 2019 - 07:14 AM.
0 Comments