KEMBAR78
Addition | PDF | Windows Registry | Autodesk
Scribd
Upload
257 views19 pages

Addition

The document provides the results of a scan of the system. It lists accounts, security software, installed programs, and other details. There are many programs installed including Autodesk, CorelDRAW, and Windows Defender among others. The long document has detailed information from the scan.

Uploaded by

Haryo Widodo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
257 views19 pages

Addition

The document provides the results of a scan of the system. It lists accounts, security software, installed programs, and other details. There are many programs installed including Autodesk, CorelDRAW, and Windows Defender among others. The long document has detailed information from the scan.

Uploaded by

Haryo Widodo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 19

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-07-2017

Ran by Haryo S (22-07-2017 19:08:45)


Running from d:\Users\Haryo S\Downloads\Programs
Windows 10 Enterprise Version 1703 (X64) (2017-05-18 04:57:34)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1977530393-1560855581-2334280851-500 - Administrator -


Disabled)
DefaultAccount (S-1-5-21-1977530393-1560855581-2334280851-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1977530393-1560855581-2334280851-1000 - Limited - Disabled)
=> C:\Users\defaultuser0
Guest (S-1-5-21-1977530393-1560855581-2334280851-501 - Limited - Enabled)
Haryo S (S-1-5-21-1977530393-1560855581-2334280851-1001 - Administrator - Enabled)
=> C:\Users\Haryo S

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to
unhide them. The adware programs should be uninstalled manually.)

ACA & MEP 2016 Object Enabler (HKLM\...\{5783F2D7-F004-0000-5102-0060B0CE6BBA})


(Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (HKLM\...\{5783F2D7-F001-0000-3102-0060B0CE6BBA}) (Version: 20.1.49.0
- Autodesk) Hidden
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006})
(Version: 11.0.06 - Adobe Systems)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.76 -
NVIDIA Corporation) Hidden
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 -
ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version:
3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version:
4.0.12 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF})
(Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version:
1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version:
1.0.0.135 - ICEpower a/s)
AutoCAD 2016 - English (HKLM\...\{5783F2D7-F001-0409-2102-0060B0CE6BBA}) (Version:
20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (HKLM\...\{5783F2D7-F001-0000-0102-0060B0CE6BBA}) (Version: 20.1.49.0
- Autodesk) Hidden
AutoCAD 2016 Language Pack - English (HKLM\...\{5783F2D7-F001-0409-1102-
0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-
4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93})
(Version: 2.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version:
5.0.142.14 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version:
20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-
AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-
ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Content Service (HKLM\...\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F})
(Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 -
Autodesk)
Autodesk Content Service Language Pack (HKLM\...\{A37CDB58-AAE8-0001-8C13-
E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Featured Apps 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47})
(Version: 2.0.0 - Autodesk)
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-
5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\
{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Bentley OpenSTAADOEM (HKLM-x32\...\{3229A689-D1A8-4557-8FBD-14D3FCEB0679})
(Version: 08.02.09.42 - Bentley Systems, Inc.)
Bentley SPC Server v8i SS4 (HKLM-x32\...\{C88234D5-2327-4B3D-9D75-9F2749930B04})
(Version: 8.11.11.14 - Bentley Systems, Inc.)
Bentley Structure Property Catalog V8i SS4 v3.1.4.2 (HKLM-x32\...\{1D70E5D3-34E6-
4EE8-BFB7-AB1DDC8DE0D1}) (Version: 3.1.4.2 - Bentley Systems, Inc.)
Call of Duty - Ghosts (HKLM-x32\...\Call of Duty - Ghosts_R.G. Mechanics_is1)
(Version: - R.G. Mechanics, spider91)
CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform)
CGS17_Setup_x64 (HKLM\...\{83646B67-A878-4E95-BB4B-AF4A6E61F28C}) (Version: 17.0 -
Corel Corporation) Hidden
CONNECTION client (HKLM\...\{618ED278-550B-3BB5-A3BA-1D96BDBCE68C}) (Version:
10.00.01.011 - Bentley Systems, Incorporated) Hidden
CONNECTION client (HKLM-x32\...\{a696f567-d06b-42c1-988d-944aa1155d0c}) (Version:
10.0.1.11 - Bentley Systems, Incorporated)
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-
745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{4AB916EE-ABA8-4079-9889-
745798B6D809}) (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (HKLM\...\{FD4A43CE-ABAE-4161-83AC-
314A3C804F42}) (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (HKLM\...\{2C91CB9D-323D-43E5-A433-
229B71CFB773}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (HKLM\...\{9178F0A8-B6F6-4DA7-AD63-
317CC4875F4B}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (HKLM\...\{BD036E95-A9CD-4DED-B744-
95AB1DCAFF0C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (HKLM\...\{5162E418-BB43-4C8F-ACD6-
069645EF98C3}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (HKLM\...\{2C0DDC74-5234-43DD-BB5A-
0645B8FE5289}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - EN (x64) (HKLM\...\{3BB8EB77-737B-4B32-BAB9-
08C7110C46BD}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (HKLM\...\{D10A5CFA-FE33-4F06-AE37-
554604F00A52}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (HKLM\...\{5406029B-67AD-4F8E-9F2D-
F1959CD9CD86}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (HKLM\...\{EF44BCCD-13F9-4974-862C-
CCFAF43EE082}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (HKLM\...\{13179AB2-69FD-459B-800F-
81865A501AD4}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (HKLM\...\{C922F325-DD52-4E22-B204-
431A06E63E51}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (HKLM\...\{1A73168F-5983-46A6-
AAAB-FD83BC231E02}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (HKLM\...\{C57EDB5A-AC8E-4E03-9F1A-
DC013A2BB9B2}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (HKLM\...\{5CB73140-806C-42C6-A05A-
1AFD0E92DEB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (HKLM\...\{5672E0DC-7489-4EAC-8CFD-
E01B3868FCB5}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (HKLM\...\{966996DC-D67C-40E3-
8BD4-31FA0F093571}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (HKLM\...\{D63404AC-C2F1-4B3D-
96EA-9727AC9D994C}) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-
1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2
- ASUSTek Computer Inc.)
EPSON L1300 Series Printer Uninstall (HKLM\...\EPSON L1300 Series) (Version: -
SEIKO EPSON Corporation)
EPSON L220 Series Printer Uninstall (HKLM\...\EPSON L220 Series) (Version: - SEIKO
EPSON Corporation)
EPSON L310 Series Printer Uninstall (HKLM\...\EPSON L310 Series) (Version: - SEIKO
EPSON Corporation)
ETABS 2015 64-bit (HKLM\...\{BDB9299A-EEE9-4A74-AE6F-C30BA665A2CE}) (Version:
15.2.2 - Computers and Structures, Inc.)
ETABS 9 (HKLM-x32\...\{32A105FD-AC27-4326-82DF-D60977FEBA20}) (Version: 9.7.4 -
Computers and Structures)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA})
(Version: 1.3.33.5 - Google Inc.) Hidden
Herramientas de correccin de Microsoft Office 2016: espaol (HKLM\...\{90160000-
001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation)
Hidden
HitFilm Pro 2017 (HKLM\...\{25921AD5-C2AE-4A5D-A169-A891B850FEB0}) (Version:
5.0.6007.34105 - FXHOME)
HP Deskjet 1000 J110 series Basic Device Software (HKLM\...\{A3E89C5B-BB3A-433A-
A878-D1310BB13EAD}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-
2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-
cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-
8C07-DC94E6A304D4}) (Version: 8.1.10605.221 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-
8DE5E91F3700}) (Version: 11.0.0.1173 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA})
(Version: 21.20.16.4550 - Intel Corporation)
Intel Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013})
(Version: 1.0.0.532 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: -
Tonec Inc.)
LAN Messenger (HKLM-x32\...\LAN Messenger) (Version: 1.2.35 - LAN Messenger)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version:
16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1977530393-1560855581-2334280851-
1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-
A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP1 x64 English (HKLM\...\{F83779DF-E1F5-43A2-
A7BE-732F856FADB7}) (Version: 3.5.5692.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-
4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-
cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-
F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\
{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft
Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-
B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-
1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\
{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 -
)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\
{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft
Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\
{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft
Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\
{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 -
)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\
{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft
Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\
{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft
Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\
{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft
Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-
4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94})
(Version: 4.30.2100.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-
A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA Graphics Driver 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-
A80AA35AC5B8}_Display.Driver) (Version: 384.76 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-
A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version:
3.7.0.81 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version:
2.6.1.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5
- NVIDIA Corporation) Hidden
Oracle VM VirtualBox 5.1.22 (HKLM\...\{8D5E4D4D-5E0C-4448-B018-5DDEF1E208D9})
(Version: 5.1.22 - Oracle Corporation)
Outils de vrification linguistique 2016 de Microsoft Office - Franais (HKLM\...\
{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft
Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64
Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version:
11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86
Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1})
(Version: 11.0.51108 - Microsoft Corporation) Hidden
PipeLink for STAAD.Pro V8i (Build 20.14.11.04) (HKLM-x32\...\{A7979F57-9431-4CD4-
AE4B-50D407EBA400}) (Version: 20.14.11.04 - Bentley Systems, Inc.)
REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-
172095903AD}) (Version: 1.3.875.091015 - REALTEK Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-
06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-
958108FE7DBC}) (Version: 6.0.1.7719 - Realtek Semiconductor Corp.)
SAFE 2014 (HKLM-x32\...\{AA79FA9F-E72A-44D6-9F66-54362DB7DE40}) (Version: 14.2.0 -
Computers and Structures)
SAP2000 14 (HKLM-x32\...\{7314A846-10ED-4BF6-B084-D359E9D4B89C}) (Version: 14.0.0 -
Computers and Structures)
SAP2000 18 64-bit (HKLM\...\{F7D2108A-CA89-4B26-BA2D-A161BF8556D4}) (Version:
18.2.0 - Computers and Structures, Inc.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-
A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation)
Hidden
SketchUp 2017 (HKLM\...\{F1E181BD-01D6-4754-92CC-DB8C259B9B28}) (Version:
17.0.18899 - Trimble, Inc.)
SketchUp Import 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92})
(Version: 2.0.0 - Autodesk)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
STAAD.foundation V8i (SELECTseries 4) Release 5.3 (HKLM-x32\...\{377CEAD5-8AF4-
4B1C-B374-7DE6968DEDA7}) (Version: 05.03.00.39 - Bentley Systems Inc.)
STAAD.Pro V8i SELECTseries 6 (HKLM-x32\...\{146F4EFC-CF52-4A54-AD1B-1D8F1A51C7EE})
(Version: 20.07.11.45 - Bentley Systems, Inc.)
Stardock Fences 3 (HKLM-x32\...\Stardock Fences 3) (Version: 3.03 - Stardock
Software, Inc.)
StrucLink for STAAD.Pro V8i (Build 20.14.11.05) (HKLM-x32\...\{127FE612-C33A-410E-
B11C-A98025A6D366}) (Version: 20.14.11.05 - Bentley Systems, Inc.)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78716 - TeamViewer)
The Sims 4 Dine Out (HKLM\...\dGhlc2ltczQ_is1) (Version: 1 - )
The Sims 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version:
1.20.60.1020 - Electronic Arts Inc.)
Tixati (HKLM-x32\...\tixati) (Version: - )
TweakBit PCRepairKit (HKLM-x32\...\{5AEA8CFE-B238-4D0A-9362-D55F38ECB795}_is1)
(Version: 1.8.1.4 - Auslogics Labs Pty Ltd)
Unity Web Player (HKU\S-1-5-21-1977530393-1560855581-2334280851-
1001\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
V-Ray 3.4 for SketchUp (HKLM\...\V-Ray 3.4 for SketchUp) (Version: 3.40.b1 - Chaos
Software Ltd)
V-Ray Online License Server (HKLM\...\V-Ray Online License Server) (Version:
4.1.0_2016 - Chaos Software Ltd)
V-Ray Swarm (HKLM\...\V-Ray Swarm) (Version: 1.2.2 - Chaos Software Ltd)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 -
LunarG, Inc.)
WhatsApp (HKU\S-1-5-21-1977530393-1560855581-2334280851-1001\...\WhatsApp)
(Version: 0.2.5093 - WhatsApp)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-
063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Driver Package - ASUS (ATP) Mouse (11/11/2015 6.0.0.66)
(HKLM\...\82D024CBD181D16D72E5AE45A426919815D5F456) (Version: 11/11/2015 6.0.0.66 -
ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 -
ASUS)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Microsoft Visual Studio
Tools 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-
A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio
Tools 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-
A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The
file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1977530393-1560855581-2334280851-1001_Classes\CLSID\
{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program
Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1977530393-1560855581-2334280851-1001_Classes\CLSID\
{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program
Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1977530393-1560855581-2334280851-1001_Classes\CLSID\
{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program
Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1977530393-1560855581-2334280851-1001_Classes\CLSID\
{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program
Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-
64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll
[2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] ->
{36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-
02-06] (Autodesk, Inc.)
ContextMenuHandlers01: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-
40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk
Shared\AcShellEx\AcShellExtension.dll [2015-02-06] (Autodesk)
ContextMenuHandlers01: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-
18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat
Elements\ContextMenuShim64.dll [2012-09-24] (Adobe Systems Inc.)
ContextMenuHandlers01: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80}
=> -> No File
ContextMenuHandlers01: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264}
=> C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2016-09-17] (Stardock)
ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} =>
C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => ->
No File
ContextMenuHandlers04: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264}
=> C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2016-09-17] (Stardock)
ContextMenuHandlers05: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264}
=> C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2016-09-17] (Stardock)
ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => ->
No File
ContextMenuHandlers05: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} =>
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\i
gfxDTCM.dll [2016-11-30] (Intel Corporation)
ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-
BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-06-28] (NVIDIA Corporation)
ContextMenuHandlers06: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-
18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat
Elements\ContextMenuShim64.dll [2012-09-24] (Adobe Systems Inc.)
ContextMenuHandlers06: [FencesShellExt] -> {1984DD45-52CF-49cd-AB77-18F378FEA264}
=> C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll [2016-09-17] (Stardock)
ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} =>
C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => ->
No File
ContextMenuHandlers1_S-1-5-21-1977530393-1560855581-2334280851-1001: [qingshellext]
-> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => -> No File
ContextMenuHandlers4_S-1-5-21-1977530393-1560855581-2334280851-1001: [qingshellext]
-> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => -> No File
ContextMenuHandlers5_S-1-5-21-1977530393-1560855581-2334280851-1001: [qingshellext]
-> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The
file will not be moved unless listed separately.)

Task: {039E399F-7FDF-4F8D-9E1D-31472334A90C} -
System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} =>
C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21]
(NVIDIA Corporation)
Task: {08806AAE-9F1E-4E4D-9A47-1F9B69A6991E} -
System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} =>
C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21]
(NVIDIA Corporation)
Task: {21549E07-7095-4AC8-A221-F753743ECB40} -
System32\Tasks\TweakBit\PCRepairKit\Start PCRepairKit n logon => C:\Program Files
(x86)\TweakBit\PCRepairKit\PCRepairKit.exe [2017-03-15] (TweakBit) <==== ATTENTION
Task: {28E26AD7-2BC3-414F-BDB2-68EBE4643AD4} -
System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe
/NOUACCHECK
Task: {2FA90DC6-40B4-4E2F-834B-5A6961DE14C4} -
System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program
Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31]
(Microsoft Corporation)
Task: {48DF3444-10D0-4205-A21A-AD928B73504D} -
System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe [2017-07-17] (Google Inc.)
Task: {49BC102C-99DC-49D4-9A82-C8A8D0FB5A95} -
System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program
Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {58F49B15-63FC-4761-9B39-4C5EED3E620D} -
System32\Tasks\RtHDVBg_ListenToDevice => C:\Program
Files\Realtek\Audio\HDA\RAVBg64.exe [2016-01-15] (Realtek Semiconductor)
Task: {618B7AC2-DEE0-45D7-80C7-92B57FD173E2} - System32\Tasks\ATK Package
A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe
[2015-03-11] (ASUSTek Computer Inc.)
Task: {6A558243-CDE9-4DB9-BC71-B85C2EA22924} - System32\Tasks\NVIDIA GeForce
Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files
(x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
[2017-06-21] (NVIDIA Corporation)
Task: {7B40C5AD-4EAA-408B-A03E-7B54DC29FE62} - System32\Tasks\EPSON L310 Series
Update {08613D78-0D46-4989-9E3A-FC780CE18305} =>
C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN4E.EXE [2013-11-22] (SEIKO EPSON
CORPORATION)
Task: {7C8DB95B-B21F-4FE8-BBB9-70FC32E1F4E7} - System32\Tasks\ASUS Smart Gesture
Launcher => C:\Program Files (x86)\ASUS\ASUS Smart
Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-15] (AsusTek)
Task: {8348AC73-ED32-48D6-9E2A-DD9022E5817A} -
System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program
Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA
Corporation)
Task: {8629EA0C-AF12-4F63-AC59-59CB283E1355} - System32\Tasks\ASUS\ASUS Product
Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-15] (ASUSTek
Computer Inc.)
Task: {87BD22C7-8994-4556-B211-431EB1839FE8} - System32\Tasks\ASUS Live Update2 =>
C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-02] ()
Task: {999B296E-3926-409E-8818-B9FB131554D0} -
System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program
Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {A720164C-C9A4-4632-B3FB-256D2AD2E5F2} -
System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files
(x86)\Google\Update\GoogleUpdate.exe [2017-07-17] (Google Inc.)
Task: {B24F1FB8-E273-4FCA-ADDD-B3148B9D687A} - System32\Tasks\CCleanerSkipUAC =>
C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd)
Task: {B5395F00-D79D-4E6A-B410-6A8FFA3C1183} -
System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program
Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA
Corporation)
Task: {B640E07A-2058-48B1-8BA8-0807FE959AEB} -
System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} =>
C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21]
(NVIDIA Corporation)
Task: {B6581306-2C94-4CED-82E0-ACC1B163E1A8} - System32\Tasks\NvTmRep_{B2FE1952-
0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update
Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {C7CE7E2F-BFDE-45C3-8C03-50337F66C5DE} - System32\Tasks\ATK Package
36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe
[2015-03-11] (ASUSTek Computer Inc.)
Task: {D62517A7-CF46-4EED-B00F-56F6C9610BE4} - System32\Tasks\EPSON L310 Series
Update {6BD42DE0-5A33-4CBF-93BE-EF8B608790AA} =>
C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSN4E.EXE [2013-11-22] (SEIKO EPSON
CORPORATION)
Task: {E70DF3DF-71D5-4516-8CF9-DB1551A3865B} - System32\Tasks\ASUS USB Charger Plus
=> C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-26]
(ASUSTek Computer Inc.)
Task: {E7D405F6-EF8A-4788-A001-EA36A9E6E5B7} - System32\Tasks\jooringcommrtsm =>
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" jooring.com/mrtsm
<==== ATTENTION
Task: {EC338AC6-8F00-423A-B02A-8768E6D33ADA} - System32\Tasks\ASUS Live Update1 =>
C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-02] ()
Task: {F72CE796-8889-44E0-8364-A2458E70261F} - System32\Tasks\RTKCPL => C:\Program
Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-01-15] (Realtek Semiconductor)
Task: {FE315E0B-1824-4254-B52C-3790626FF164} - System32\Tasks\Update Checker =>
C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-02] ()
Task: {FFAF8E06-D8C4-41EC-B627-5A8C7FDA5C41} - System32\Tasks\NvTmMon_{B2FE1952-
0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update
Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The
file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\EPSON L310 Series Update {08613D78-0D46-4989-9E3A-
FC780CE18305}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN4E.EXE:/EXE:
{08613D78-0D46-4989-9E3A-FC780CE18305} /F:UpdateWORKGROUP\DESKTOP-FHHLETL$Searches
for EPSON software updates, and notifies you when updates are available.If this
task is disabled or stopped, your EPSON software will not be automatically kept up
to date.Thi
Task: C:\WINDOWS\Tasks\EPSON L310 Series Update {6BD42DE0-5A33-4CBF-93BE-
EF8B608790AA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSN4E.EXE:/EXE:
{6BD42DE0-5A33-4CBF-93BE-EF8B608790AA} /F:UpdateWORKGROUP\DESKTOP-FHHLETL$Searches
for EPSON software updates, and notifies you when updates are available.If this
task is disabled or stopped, your EPSON software will not be automatically kept up
to date.Thi

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-05-12 00:14 - 2015-07-21 09:19 - 00121560 _____ () C:\Program Files


(x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe
2017-05-12 01:48 - 2017-06-21 14:07 - 01267320 _____ () C:\Program Files\NVIDIA
Corporation\NvContainer\libprotobuf.dll
2017-05-12 03:47 - 2017-05-12 03:47 - 00090176 _____ () C:\Program Files\Chaos
Group\V-Ray Swarm\register-service.exe
2017-05-12 03:47 - 2017-05-12 03:47 - 00227328 _____ () C:\Program Files\Chaos
Group\VRLService\OLS\startvrolservice.exe
2017-05-12 03:47 - 2017-05-12 03:47 - 00178688 _____ () \\?\C:\Program Files\Chaos
Group\VRLService\OLS\node_modules\vrloffline-win32\vrloffline.node
2017-05-12 03:47 - 2017-05-12 03:47 - 00163840 _____ () \\?\C:\Program Files\Chaos
Group\V-Ray Swarm\node_modules\ref\build\Release\binding.node
2017-05-12 03:47 - 2017-05-12 03:47 - 00174592 _____ () \\?\C:\Program Files\Chaos
Group\V-Ray Swarm\node_modules\ffi\build\Release\ffi_bindings.node
2017-05-18 11:45 - 2017-06-28 04:03 - 00133568 _____ () C:\Program Files\NVIDIA
Corporation\Display\NvSmartMax64.dll
2017-03-19 03:58 - 2017-03-19 03:58 - 00138000 _____ ()
C:\WINDOWS\SYSTEM32\inputhost.dll
2017-05-12 06:36 - 2017-05-12 06:36 - 00095744 _____ () C:\WINDOWS\Womtrust.dll
2015-07-31 23:58 - 2015-07-31 23:58 - 08901800 _____ () C:\Program Files\Microsoft
Office\Office16\1033\GrooveIntlResource.dll
2017-03-19 03:59 - 2017-03-19 09:49 - 01731072 _____ ()
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-04-07 14:41 - 2012-12-22 01:33 - 00020288 _____ () C:\Program
Files\CCleaner\branding.dll
2017-05-24 10:46 - 2017-05-24 10:46 - 03139496 _____ () C:\Program
Files\WindowsApps\Microsoft.WindowsStore_11706.1001.25.0_x64__8wekyb3d8bbwe\Microso
ft.UI.Xaml.dll
2017-07-22 07:37 - 2017-07-22 07:37 - 10631168 _____ () C:\Program
Files\WindowsApps\Microsoft.WindowsStore_11706.1001.25.0_x64__8wekyb3d8bbwe\WinStor
e.Entertainment.Mobile.dll
2017-07-22 07:37 - 2017-07-22 07:37 - 02640896 _____ () C:\Program
Files\WindowsApps\Microsoft.WindowsStore_11706.1001.25.0_x64__8wekyb3d8bbwe\MS.Ente
rtainment.Common.Mobile.dll
2017-07-12 00:06 - 2017-07-12 00:08 - 00020480 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.Photos.exe
2017-07-12 00:06 - 2017-07-12 00:08 - 27590144 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.Photos.dll
2017-07-12 00:06 - 2017-07-12 00:08 - 00428032 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.Photos.AGM.Native.Windows.dll
2017-07-12 00:06 - 2017-07-12 00:08 - 20649984 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Ph
otosApp.Windows.dll
2017-07-12 00:06 - 2017-07-12 00:08 - 02305536 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Me
diaEngine.dll
2017-07-12 00:06 - 2017-07-12 00:08 - 02856448 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Ap
pCore.Windows.dll
2017-05-24 10:46 - 2017-05-24 10:46 - 03139496 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.UI.Xaml.dll
2017-06-15 21:29 - 2017-06-16 11:33 - 00046080 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.Photos.Edit.Services.dll
2017-05-12 02:17 - 2017-05-12 02:20 - 00680448 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.DesignCore.dll
2017-07-12 00:06 - 2017-07-12 00:08 - 01127936 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.RichMedia.Ink.Controls.dll
2017-05-12 02:17 - 2017-05-12 02:20 - 01062400 _____ () C:\Program
Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Mi
crosoft.Sharing.dll
2017-07-17 13:26 - 2017-06-23 10:21 - 03807064 _____ () C:\Program Files
(x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
2017-07-17 13:26 - 2017-06-23 10:21 - 00100184 _____ () C:\Program Files
(x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
2015-10-16 20:14 - 2015-10-16 20:14 - 01243936 _____ () C:\Program Files
(x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-05-12 01:48 - 2017-06-21 14:07 - 01040504 _____ () C:\Program Files
(x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2009-01-11 02:32 - 2009-01-11 02:32 - 00011362 _____ () C:\Program Files (x86)\LAN
Messenger\mingwm10.dll
2009-06-23 09:42 - 2009-06-23 09:42 - 00043008 _____ () C:\Program Files (x86)\LAN
Messenger\libgcc_s_dw2-1.dll
2017-05-12 01:48 - 2017-06-21 14:06 - 66837112 _____ () C:\Program Files
(x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The
"AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to
default or removed.)
HKU\S-1-5-21-1977530393-1560855581-2334280851-1001\Software\Classes\.scr:
AutoCADScriptFile =>

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 18:47 - 2017-07-19 07:11 - 00000830 _____


C:\WINDOWS\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1977530393-1560855581-2334280851-1000\Control Panel\Desktop\\Wallpaper
-> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-1977530393-1560855581-2334280851-1001\Control Panel\Desktop\\Wallpaper
-> d:\Users\Haryo S\Pictures\4001_WallpaperPlay_asus-walp-c-6-541_1920x1080.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System =>
(ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled:
Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"


HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-1977530393-1560855581-2334280851-1001\...\StartupApproved\Run: =>
"OneDrive"
HKU\S-1-5-21-1977530393-1560855581-2334280851-1001\...\StartupApproved\Run: =>
"MySELECT.exe"
HKU\S-1-5-21-1977530393-1560855581-2334280851-1001\...\StartupApproved\Run: =>
"IDMan"
HKU\S-1-5-21-1977530393-1560855581-2334280851-1001\...\StartupApproved\Run: =>
"EPLTarget\P0000000000000001"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The
file will not be moved unless listed separately.)

FirewallRules: [{09E42F72-5B45-4C6A-949D-C2AA741AE864}] => (Allow) C:\Program Files


(x86)\LAN Messenger\lmc.exe
FirewallRules: [{52D035C3-9F65-4B39-B663-2F648C5B46A3}] => (Allow) C:\Program Files
(x86)\LAN Messenger\lmc.exe
FirewallRules: [UDP Query User{B1AEAB41-A84E-451C-9205-8E9E501F80E6}C:\program
files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe
FirewallRules: [TCP Query User{75F719D6-684B-4464-8BF2-373E8A12481C}C:\program
files\tixati\tixati.exe] => (Allow) C:\program files\tixati\tixati.exe
FirewallRules: [{F7AD9F68-953E-4DA2-B0D3-9AEA817CA1F1}] => (Block) %ProgramFiles
%\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{61884B40-4CDA-4DFE-9D5F-1B372E748936}] => (Block) %ProgramFiles
%\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDRW.exe
FirewallRules: [{662766B0-1B9D-4BAD-8B06-86D0FA742803}] => (Block) c:\Program
Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{3CF4A4B9-A10B-4F9E-AD76-CA6C5AD5B0A9}] => (Block) c:\Program
Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{C2035922-FEB1-4899-BB92-032CC3F908EE}] => (Block) %ProgramFiles%
(x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe
FirewallRules: [{0E83CC7B-7190-4B28-B713-8C9B9FFABE6B}] => (Block) %ProgramFiles
%\SketchUp\SketchUp 2017\SketchUp.exe
FirewallRules: [{EBBD4FE0-F68F-4CC5-A2A1-FAA1F68F0133}] => (Block) %ProgramFiles
%\Autodesk\AutoCAD 2016\acad.exe
FirewallRules: [{251E72CF-07D4-4D69-854F-1FB10D0D6F5B}] => (Allow) C:\Program
Files\Chaos Group\V-Ray Swarm\swrm.exe
FirewallRules: [{7732336D-70FA-4DA0-BB2C-A7EDEF644D75}] => (Allow) C:\Program
Files\Chaos Group\V-Ray Swarm\swrm.exe
FirewallRules: [{128BEE6A-EF1D-4823-A33F-9F610007C31E}] => (Allow) LPort=20208
FirewallRules: [{D2F6FFCE-487C-4700-92EE-B53FE4C69A79}] => (Allow) LPort=20208
FirewallRules: [{58D6EC5B-969F-4126-82B8-2EF33776A869}] => (Allow) C:\Program
Files\Chaos Group\VRLService\OLS\vrol.exe
FirewallRules: [{0EA9261D-B69E-41F3-AB3A-8BFD294D9C42}] => (Allow) C:\Program
Files\Chaos Group\VRLService\OLS\vrol.exe
FirewallRules: [{57C43064-8303-452C-A77E-ADD03E17157B}] => (Allow) C:\Program
Files\Chaos Group\V-Ray\V-Ray 3.4 for SketchUp\extension\vrayneui-win32-
x64\vrayneui.exe
FirewallRules: [{BF4171E3-9575-41B5-8D3A-D2AB2D31ED2D}] => (Allow) C:\Program
Files\Chaos Group\V-Ray\V-Ray 3.4 for SketchUp\extension\vrayneui-win32-
x64\vrayneui.exe
FirewallRules: [{575A0AC7-96BE-4CD8-B588-7C88F16C3797}] => (Allow) LPort=50248
FirewallRules: [{83F70EC6-7B58-408F-BAC9-09AA613CBF89}] => (Allow) C:\Program
Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{E53A2F49-6205-4F58-85F3-4DDD2952A633}] => (Allow) C:\Program
Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{B39000AE-F49F-4CC8-919C-D9F1E57349A0}] => (Allow) C:\Program
Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{0808F25C-EB1A-490D-9499-EAFDC6F23EFE}] => (Allow) C:\Program
Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{373E8353-99F4-4DC1-8919-E002C4672C7A}] => (Allow) C:\Program
Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2B3E6CDF-5929-4CA3-8422-73621CCA4441}] => (Allow) C:\Program
Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6B958B30-1E69-43B4-8FBC-E5CA15C6C319}] => (Allow) C:\Program
Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{AF06BBF8-829E-483A-AD50-0EB22B575B3E}] => (Allow) C:\Program
Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{9578BB23-58DF-4841-9B07-776FB548029E}] => (Allow) C:\Program
Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [TCP Query User{80C84326-ACF7-4CAA-A730-E87F657D8B7F}C:\program
files (x86)\lan messenger\lmc.exe] => (Allow) C:\program files (x86)\lan
messenger\lmc.exe
FirewallRules: [UDP Query User{4F8F3FF6-1904-4EE1-8609-2D6572503E0B}C:\program
files (x86)\lan messenger\lmc.exe] => (Allow) C:\program files (x86)\lan
messenger\lmc.exe
FirewallRules: [{8DEC4248-7268-410E-AE90-539C66FBC22C}] => (Allow) D:\GAMES\The
Sims 4\Game\Bin\TS4.exe
FirewallRules: [{93E9DF65-AB30-4500-8FE5-905CEF5B2F18}] => (Allow) D:\GAMES\The
Sims 4\Game\Bin\TS4.exe
FirewallRules: [{E7E3F2DE-AAD7-4328-B206-A407F145100C}] => (Allow) D:\GAMES\The
Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{8B0B8613-5AEC-4DA1-9945-C277F5D971B7}] => (Allow) D:\GAMES\The
Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{65032446-9D01-4975-B296-9775879DC978}] => (Allow) C:\Program Files
(x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B743CD1A-67DD-49E2-8054-FAC9FE5734DF}] => (Allow) C:\Program Files
(x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9C11C693-D4A8-480A-8598-E3813E917F74}] => (Allow) C:\Program Files
(x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{376BC233-8926-49D7-9513-4BE811B611E6}] => (Allow) C:\Program Files
(x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C37B87E5-2E04-4046-9286-C0EFEDD42317}] => (Allow) C:\Program
Files\HP\HP Deskjet 1000 J110 series\Bin\USBSetup.exe
FirewallRules: [{C090AD12-598E-4592-9C07-EBA87945526A}] => (Allow) C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

01-07-2017 11:43:37 PCRepairKit restore point


09-07-2017 06:49:32 PCRepairKit restore point
12-07-2017 06:53:06 Windows Update
15-07-2017 06:29:07 Intel Driver Update Utility
17-07-2017 02:32:15 PCRepairKit restore point
19-07-2017 08:47:55 PCRepairKit restore point
19-07-2017 10:31:59 PCRepairKit restore point
20-07-2017 08:34:16 PCRepairKit restore point
22-07-2017 18:50:44 PCRepairKit restore point

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (07/20/2017 07:54:06 PM) (Source: Application Error) (EventID: 1000)
(User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.447, time
stamp: 0xe365c782
Faulting module name: ICEsoundAPO64.dll, version: 1.0.0.19, time stamp: 0x56713f0a
Exception code: 0xc0000005
Fault offset: 0x000000000003b5b5
Faulting process id: 0xfb4
Faulting application start time: 0x01d301470db3161b
Faulting application path: C:\WINDOWS\system32\AUDIODG.EXE
Faulting module path: C:\WINDOWS\system32\ICEsoundAPO64.dll
Report Id: 94170cb3-d2d7-4947-b3e1-412b4c0ed45b
Faulting package full name:
Faulting package-relative application ID:

Error: (07/20/2017 11:51:42 AM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.447, time
stamp: 0xe365c782
Faulting module name: ICEsoundAPO64.dll, version: 1.0.0.19, time stamp: 0x56713f0a
Exception code: 0xc0000005
Fault offset: 0x000000000003b5b5
Faulting process id: 0x28f0
Faulting application start time: 0x01d300fbda768f75
Faulting application path: C:\WINDOWS\system32\AUDIODG.EXE
Faulting module path: C:\WINDOWS\system32\ICEsoundAPO64.dll
Report Id: ee4420f6-d087-411e-a1d0-2de78ed13d36
Faulting package full name:
Faulting package-relative application ID:

Error: (07/19/2017 08:32:53 AM) (Source: Perflib) (EventID: 1008) (User: )


Description: The Open Procedure for service "BITS" in DLL
"C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will
not be available. The first four bytes (DWORD) of the Data section contains the
error code.

Error: (07/19/2017 07:02:09 AM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: adwcleaner_7.0.0.0.exe, version: 7.0.0.0,
time stamp: 0x596d30ca
Faulting module name: adwcleaner_7.0.0.0.exe, version: 7.0.0.0, time stamp:
0x596d30ca
Exception code: 0xc0000005
Fault offset: 0x000e9da0
Faulting process id: 0x8b0
Faulting application start time: 0x01d3002220ceaf50
Faulting application path: d:\Users\Haryo
S\Downloads\Programs\adwcleaner_7.0.0.0.exe
Faulting module path: d:\Users\Haryo S\Downloads\Programs\adwcleaner_7.0.0.0.exe
Report Id: 0da8c26d-8b15-4831-a146-1b590217dec7
Faulting package full name:
Faulting package-relative application ID:

Error: (07/19/2017 07:00:53 AM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: adwcleaner_7.0.0.0.exe, version: 7.0.0.0,
time stamp: 0x596d30ca
Faulting module name: adwcleaner_7.0.0.0.exe, version: 7.0.0.0, time stamp:
0x596d30ca
Exception code: 0xc0000005
Fault offset: 0x000e9da0
Faulting process id: 0x3200
Faulting application start time: 0x01d30021cb1ad9df
Faulting application path: d:\Users\Haryo
S\Downloads\Programs\adwcleaner_7.0.0.0.exe
Faulting module path: d:\Users\Haryo S\Downloads\Programs\adwcleaner_7.0.0.0.exe
Report Id: c495d8a8-8925-4b76-8495-e8c4a2013301
Faulting package full name:
Faulting package-relative application ID:

Error: (07/18/2017 08:13:55 PM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.447, time
stamp: 0xe365c782
Faulting module name: ICEsoundAPO64.dll, version: 1.0.0.19, time stamp: 0x56713f0a
Exception code: 0xc0000409
Fault offset: 0x000000000002562c
Faulting process id: 0xf20
Faulting application start time: 0x01d2ffb8f7c1851e
Faulting application path: C:\WINDOWS\system32\AUDIODG.EXE
Faulting module path: C:\WINDOWS\system32\ICEsoundAPO64.dll
Report Id: 17b911e7-5593-4330-9ec7-73e23515a7fb
Faulting package full name:
Faulting package-relative application ID:

Error: (07/18/2017 08:13:45 PM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.447, time
stamp: 0xe365c782
Faulting module name: ntdll.dll, version: 10.0.15063.447, time stamp: 0xa329d3a8
Exception code: 0xc0000005
Fault offset: 0x00000000000a8e3d
Faulting process id: 0xf20
Faulting application start time: 0x01d2ffb8f7c1851e
Faulting application path: C:\WINDOWS\system32\AUDIODG.EXE
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: a2b72690-448c-4f60-bd3e-9ef7d71929fb
Faulting package full name:
Faulting package-relative application ID:

Error: (07/18/2017 08:13:34 PM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.447, time
stamp: 0xe365c782
Faulting module name: ntdll.dll, version: 10.0.15063.447, time stamp: 0xa329d3a8
Exception code: 0xc0000005
Fault offset: 0x00000000000a8e3d
Faulting process id: 0xf20
Faulting application start time: 0x01d2ffb8f7c1851e
Faulting application path: C:\WINDOWS\system32\AUDIODG.EXE
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 0737f6aa-1586-45be-bdeb-5bc884eccc61
Faulting package full name:
Faulting package-relative application ID:

Error: (07/17/2017 02:26:45 PM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.447, time
stamp: 0xe365c782
Faulting module name: ICEsoundAPO64.dll, version: 1.0.0.19, time stamp: 0x56713f0a
Exception code: 0xc0000409
Fault offset: 0x000000000002562c
Faulting process id: 0x1100
Faulting application start time: 0x01d2fec7f22e4534
Faulting application path: C:\WINDOWS\system32\AUDIODG.EXE
Faulting module path: C:\WINDOWS\system32\ICEsoundAPO64.dll
Report Id: d99f93b3-c6e4-4958-952c-d955722aa401
Faulting package full name:
Faulting package-relative application ID:

Error: (07/17/2017 02:26:45 PM) (Source: Application Error) (EventID: 1000)


(User: )
Description: Faulting application name: AUDIODG.EXE, version: 10.0.15063.447, time
stamp: 0xe365c782
Faulting module name: ntdll.dll, version: 10.0.15063.447, time stamp: 0xa329d3a8
Exception code: 0xc0000005
Fault offset: 0x00000000000a8e3d
Faulting process id: 0x1100
Faulting application start time: 0x01d2fec7f22e4534
Faulting application path: C:\WINDOWS\system32\AUDIODG.EXE
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: 6fd01b2c-e095-45a3-a890-1f32f8b4962a
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (07/22/2017 01:10:05 PM) (Source: DCOM) (EventID: 10016) (User: NT
AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/22/2017 12:44:52 PM) (Source: TPM) (EventID: 15) (User: )


Description: The device driver for the Trusted Platform Module (TPM) encountered a
non-recoverable error in the TPM hardware, which prevents TPM services (such as
data encryption) from being used. For further help, please contact the computer
manufacturer.

Error: (07/22/2017 12:43:52 PM) (Source: DCOM) (EventID: 10016) (User: NT


AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/22/2017 10:49:19 AM) (Source: DCOM) (EventID: 10016) (User: NT


AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/22/2017 09:13:34 AM) (Source: DCOM) (EventID: 10016) (User: NT


AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/21/2017 10:22:28 PM) (Source: DCOM) (EventID: 10016) (User: NT


AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/21/2017 08:53:05 PM) (Source: DCOM) (EventID: 10016) (User: NT


AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/21/2017 06:03:14 PM) (Source: DCOM) (EventID: 10016) (User: NT


AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/21/2017 04:29:35 PM) (Source: DCOM) (EventID: 10016) (User: NT


AUTHORITY)
Description: The application-specific permission settings do not grant Local
Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC)
running in the application container Unavailable SID (Unavailable). This security
permission can be modified using the Component Services administrative tool.

Error: (07/21/2017 04:05:41 PM) (Source: TPM) (EventID: 15) (User: )


Description: The device driver for the Trusted Platform Module (TPM) encountered a
non-recoverable error in the TPM hardware, which prevents TPM services (such as
data encryption) from being used. For further help, please contact the computer
manufacturer.

CodeIntegrity:
===================================
Date: 2017-07-19 14:16:43.773
Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load
\Device\HarddiskVolume2\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64
_15b1a77b889ed915\nvinitx.dll that did not meet the Custom 3 / Antimalware signing
level requirements.
Date: 2017-07-19 14:16:43.694
Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load \Device\HarddiskVolume2\Program Files\Common Files\microsoft
shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-17 09:29:03.895


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load
\Device\HarddiskVolume2\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64
_15b1a77b889ed915\nvinitx.dll that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-17 09:29:03.839


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load \Device\HarddiskVolume2\Program Files\Common Files\microsoft
shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-15 18:47:42.008


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load
\Device\HarddiskVolume2\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64
_15b1a77b889ed915\nvinitx.dll that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-15 18:47:41.956


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load \Device\HarddiskVolume2\Program Files\Common Files\microsoft
shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-14 18:04:29.215


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load
\Device\HarddiskVolume2\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64
_15b1a77b889ed915\nvinitx.dll that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-14 18:04:29.155


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load \Device\HarddiskVolume2\Program Files\Common Files\microsoft
shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-13 12:58:16.598


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load
\Device\HarddiskVolume2\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64
_15b1a77b889ed915\nvinitx.dll that did not meet the Custom 3 / Antimalware signing
level requirements.

Date: 2017-07-13 12:58:16.537


Description: Code Integrity determined that a process
(\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to
load \Device\HarddiskVolume2\Program Files\Common Files\microsoft
shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing
level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz


Percentage of memory in use: 37%
Total physical RAM: 8084.76 MB
Available physical RAM: 5061.95 MB
Total Virtual: 9364.76 MB
Available Virtual: 6131.66 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:222.59 GB) (Free:154.37 GB) NTFS


Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:229.42 GB) NTFS
Drive f: (MY_DISC) (Removable) (Total:0.94 GB) (Free:0.94 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: AE6D18FC)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=503 MB) - (Type=27)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B99C18CD)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=42)

========================================================
Disk: 2 (Size: 971.5 MB) (Disk ID: 0D7B1BA4)
Partition 1: (Not Active) - (Size=971 MB) - (Type=0C)

==================== End of Addition.txt ============================

You might also like