Chrome opens correctly, return scrambled symbols when search (always) | #firefox | #chrome | #microsoftedge

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-06-2021

Ran by Sean (09-06-2021 01:54:00)

Running from C:UsersSeanDownloads

Windows 10 Home Version 20H2 19042.1052 (X64) (2021-02-23 04:31:04)

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-3719783295-3170696184-3550119610-500 – Administrator – Disabled)

aidan (S-1-5-21-3719783295-3170696184-3550119610-1005 – Limited – Disabled)

conno (S-1-5-21-3719783295-3170696184-3550119610-1006 – Limited – Disabled)

DefaultAccount (S-1-5-21-3719783295-3170696184-3550119610-503 – Limited – Disabled)

Guest (S-1-5-21-3719783295-3170696184-3550119610-501 – Limited – Disabled)

Sean (S-1-5-21-3719783295-3170696184-3550119610-1001 – Administrator – Enabled) => C:UsersSean

WDAGUtilityAccount (S-1-5-21-3719783295-3170696184-3550119610-504 – Limited – Disabled)

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: McAfee VirusScan (Enabled – Up to date) {9D4501E6-72F6-2877-C789-89AF6F535B2C}

AS: Windows Defender (Enabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: McAfee Firewall (Enabled) {A57E80C3-3899-292F-ECD6-209A91801C57}

 

==================== Installed Programs ======================

 

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

Adobe Digital Editions 4.5 (HKLM-x32…Adobe Digital Editions 4.5) (Version: 4.5.0 – Adobe Systems Incorporated)

Adobe Flash Player 21 NPAPI (HKLM-x32…Adobe Flash Player NPAPI) (Version: 21.0.0.213 – Adobe Systems Incorporated)

Adobe Reader XI (11.0.23)  MUI (HKLM-x32…{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.23 – Adobe Systems Incorporated)

AMD Software (HKLM…AMD Catalyst Install Manager) (Version: 20.9.1 – Advanced Micro Devices, Inc.)

Atheros Driver Installation Program (HKLM-x32…{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 – Atheros)

Belkin Setup and Router Monitor (HKLM-x32…Belkin Setup and Router Monitor_is1) (Version:  – )

Betternet (HKLM-x32…Betternet) (Version:  – )

Branding64 (HKLM…{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 – Advanced Micro Devices, Inc.) Hidden

DriverHub (HKLM-x32…{80BB8881-A75A-4A36-BD25-62E737B18971}) (Version: 2.2.31045 – DriverHub)

Google Chrome (HKLM-x32…Google Chrome) (Version: 91.0.4472.77 – Google LLC)

HP Photo Creations (HKLM-x32…HP Photo Creations) (Version: 1.0.0.7702 – HP)

HP Photosmart 7520 series Basic Device Software (HKLM…{27ABA988-D480-4F44-B0FD-45E5656D2CFE}) (Version: 28.0.1315.0 – Hewlett-Packard Co.)

HP Photosmart 7520 series Help (HKLM-x32…{08295D09-E002-48F8-905D-34E4B08509BA}) (Version: 28.0.0 – Hewlett Packard)

HP Support Solutions Framework (HKLM-x32…{E2CB09C1-3C76-4395-BB47-50C066535CF8}) (Version: 12.5.32.203 – HP)

HP Update (HKLM-x32…{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 – Hewlett-Packard)

Java 8 Update 171 (HKLM-x32…{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 – Oracle Corporation)

McAfee Multi Access – Total Protection (PC) (HKLM-x32…MSC) (Version: 16.0 R30 – McAfee, LLC)

Microsoft 365 Apps for enterprise – en-us (HKLM…O365ProPlusRetail – en-us) (Version: 16.0.14131.20012 – Microsoft Corporation)

Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 90.0.818.51 – Microsoft Corporation)

Microsoft OneDrive (HKUS-1-5-21-3719783295-3170696184-3550119610-1001…OneDriveSetup.exe) (Version: 21.104.0523.0001 – Microsoft Corporation)

Microsoft Teams (HKUS-1-5-21-3719783295-3170696184-3550119610-1001…Teams) (Version: 1.4.00.2879 – Microsoft Corporation)

Microsoft Update Health Tools (HKLM…{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 – Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 (HKLM…{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148 (HKLM-x32…{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 – Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.25.28508 (HKLM-x32…{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 – Microsoft Corporation)

Microsoft XNA Framework Redistributable 4.0 (HKLM-x32…{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 – Microsoft Corporation)

Office 16 Click-to-Run Extensibility Component (HKLM-x32…{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14131.20012 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM…{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20012 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Licensing Component (HKLM…{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20012 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Localization Component (HKLM-x32…{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14131.20012 – Microsoft Corporation) Hidden

OpenVPN 2.3.6-I001  (HKLM-x32…OpenVPN) (Version: 2.3.6-I001 – )

Realtek Card Reader (HKLM-x32…{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29077 – Realtek Semiconductor Corp.)

Realtek Ethernet Controller Driver (HKLM-x32…{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 – Realtek)

Realtek High Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7885 – Realtek Semiconductor Corp.)

Recuva (HKLM…Recuva) (Version: 1.49 – Piriform)

Skype™ 6.18 (HKLM-x32…{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 – Skype Technologies S.A.)

Spotify (HKLM-x32…Spotify) (Version: 0.9.10.14.g578d350b – Spotify AB)

Synaptics Pointing Device Driver (HKLM…SynTPDeinstKey) (Version: 19.4.3.182 – Synaptics Incorporated)

TAP-Windows 9.9.2 (HKLM…TAP-Windows) (Version: 9.9.2 – )

Teams Machine-Wide Installer (HKLM-x32…{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.3.0.21759 – Microsoft Corporation)

TOSHIBA Application Installer (HKLM…{21A63CA3-75C0-4E56-B602-B7CD2EF6B621}) (Version: 9.0.2.6 – Toshiba Corporation)

TOSHIBA Audio Enhancement (HKLM…{1515F5E3-29EA-4CD1-A981-032D88880F09}) (Version: 2.0.18.0 – Toshiba Corporation)

TOSHIBA Battery Check Utility (HKLM-x32…{5468E297-7EF8-4CB3-A091-F8714147793F}) (Version: 1.00.04.01 – Toshiba Client Solutions Co., Ltd.)

TOSHIBA Display Utility (HKLM…{0B39C39A-3ECE-4582-9C91-842D22819A24}) (Version: 2.0.1.0 – Toshiba Corporation)

TOSHIBA eco Utility (HKLM…{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.0.0.6406 – Toshiba Corporation)

TOSHIBA Function Key (HKLM…{1844CFE2-EBA3-490A-8A5E-9BFC646342FD}) (Version: 1.1.5.6402 – Toshiba Corporation)

TOSHIBA Password Utility (HKLM-x32…{B02384B3-8C5B-4927-A190-E767C8FCFD25}) (Version: v3.0.0.1 – Toshiba Corporation)

TOSHIBA Recovery Media Creator (HKLM-x32…{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.2.00.56006005 – Toshiba Corporation)

TOSHIBA Service Station (HKLM…{B1F241E1-90BF-4201-8977-A0DF85A38EBB}) (Version: 2.6.16.0 – Toshiba Corporation)

TOSHIBA System Driver (HKLM-x32…{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0033 – Toshiba Corporation)

TOSHIBA System Settings (HKLM-x32…{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.1.32003 – Toshiba Corporation)

TOSHIBA User’s Guide (HKLM-x32…{3384E1D9-3F18-4A98-8655-180FEF0DFC02}) (Version: 1.00.02 – TOSHIBA)

TOSHIBARegistration (HKLM-x32…{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.1.6 – TOSHIBA)

Ubiquiti UniFi (remove only) (HKLM-x32…Ubiquiti UniFi) (Version:  – )

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM…{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 – Microsoft Corporation) Hidden

Update for Windows 10 for x64-based Systems (KB4480730) (HKLM…{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 – Microsoft Corporation)

UpdateAssistant (HKLM…{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 – Microsoft Corporation) Hidden

VLC media player (HKLM-x32…VLC media player) (Version: 2.2.1 – VideoLAN)

WIDCOMM BTW Development Kit (HKLM-x32…{0B75A75A-3D2C-479B-ACA0-A17A0B4B7628}) (Version: 6.1.0.1506 – Broadcom Corporation)

Windows Setup Remediations (x64) (KB4023057) (HKLM…{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  – )

 

Packages:

=========

Amazon -> C:Program FilesWindowsAppsAmazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2020-11-04] (Amazon.com)

F5 Access -> C:Program FilesWindowsAppsF5Networks.vpn.client_1.3.0.0_x64__btcnfmkykcjs2 [2018-11-10] (F5 Networks)

HP Smart -> C:Program FilesWindowsAppsAD2F1837.HPPrinterControl_122.2.834.0_x64__v10z8vjag6ke6 [2021-02-24] (HP Inc.)

Media Player by sMedio TrueLink+ -> C:Program FilesWindowsAppssMedioforToshiba.TOSHIBAMediaPlayerbysMedioTrueLin_3.4.35.0_x64__679ekb9hp1h62 [2020-11-05] (sMedio)

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]

MSN Sports -> C:Program FilesWindowsAppsMicrosoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-11-05] (Microsoft Corporation) [MS Ad]

MSN Travel -> C:Program FilesWindowsAppsMicrosoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-08-30] (Microsoft Corporation) [MS Ad]

My Toshiba -> C:Program FilesWindowsAppsEnnovaResearch.ToshibaPlaces_3.2.49.0_x64__3s2an63h56yee [2016-02-08] (Ennova Research)

Netflix -> C:Program FilesWindowsApps4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-11-05] (Netflix, Inc.)

Network Speed Test -> C:Program FilesWindowsAppsMicrosoft.NetworkSpeedTest_1.0.0.23_x64__8wekyb3d8bbwe [2016-03-28] (Microsoft Research)

Skype WiFi -> C:Program FilesWindowsAppsMicrosoft.SkypeWiFi_1.2.0.7_x86__kzf8qxf38zg5c [2015-08-30] (Skype)

Sticky Notes 8 -> C:Program FilesWindowsApps8251MarcoRinaldi.NoteTiles_10.4.3.0_x64__9rvmmrcs6zgr6 [2016-11-14] (Marco Rinaldi) [MS Ad]

The Weather Channel for Toshiba -> C:Program FilesWindowsAppsWeather.TheWeatherChannelforToshiba_2015.1013.1.0_x64__t3yemqpq4kp7p [2015-10-15] (The Weather Channel.)

VLC for Windows Store -> C:Program FilesWindowsAppsVideoLAN.VLCforWindows8_3.1.1.0_x86__paz6r1rewnh0a [2018-11-10] (VideoLAN)

VPN Shield Internet Security – Proxy Connection for Encrypt Messages and Protect Online Data, Unblock Websites, Change Location and Hide IP for Anonymous Browsing -> C:Program FilesWindowsAppsD17A4821.VPNShield_3.3.15.0_x64__2zm6z74hr5n3c [2016-12-23] (Defendemus sp. z o.o.)

Xbox One SmartGlass -> C:Program FilesWindowsAppsMicrosoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2021-02-16] (Microsoft Corporation)

 

==================== Custom CLSID (Whitelisted): ==============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

CustomCLSID: HKUS-1-5-21-3719783295-3170696184-3550119610-1001_ClassesCLSID{19A6E644-14E6-4A60-B8D7-DD20610A871D}InprocServer32 -> C:UsersSeanAppDataLocalMicrosoftTeamsMeetingAddin1.0.20289.5x64Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKUS-1-5-21-3719783295-3170696184-3550119610-1001_ClassesCLSID{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}InprocServer32 -> C:UsersSeanAppDataLocalMicrosoftTeamsMeetingAddin1.0.20244.4x64Microsoft.Teams.AddinLoader.dll => No File

ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:Program FilesMcAfeeMSCMcCtxMenuFrmWrk.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC)

ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:Program FilesRecuvaRecuvaShell64.dll [2013-11-08] (Piriform Ltd -> Piriform Ltd)

ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:Program FilesAMDCNextCNextatiacm64.dll [2020-09-09] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:Program FilesMcAfeeMSCMcCtxMenuFrmWrk.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC)

ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:Program FilesRecuvaRecuvaShell64.dll [2013-11-08] (Piriform Ltd -> Piriform Ltd)

 

==================== Codecs (Whitelisted) ====================

 

==================== Shortcuts & WMI ========================

 

(The entries could be listed to be restored or removed.)

 

ShortcutWithArgument: C:UsersSeanDesktopSean (Seabn) – Chrome.lnk -> C:Program FilesGoogleChromeApplicationchrome.exe (Google LLC) -> –profile-directory=”Profile 1″

 

==================== Loaded Modules (Whitelisted) =============

 

2021-05-05 10:52 – 2012-01-17 14:27 – 000669696 _____ () [File not signed] C:Program Files (x86)BelkinRouter Setup and MonitorgatewaysGenericBelkinGatewayLOC.dll

2021-05-05 10:52 – 2010-08-22 19:32 – 000119808 _____ () [File not signed] C:Program Files (x86)BelkinRouter Setup and Monitorimageformatsqjpeg4.dll

2021-05-05 10:52 – 2010-08-22 20:01 – 001954304 _____ () [File not signed] C:Program Files (x86)BelkinRouter Setup and MonitorQtCore4.dll

2021-05-05 10:52 – 2010-08-22 20:01 – 007187456 _____ () [File not signed] C:Program Files (x86)BelkinRouter Setup and MonitorQtGui4.dll

2021-05-05 10:52 – 2010-08-22 20:01 – 000847360 _____ () [File not signed] C:Program Files (x86)BelkinRouter Setup and MonitorQtNetwork4.dll

2021-05-05 10:52 – 2010-08-22 20:01 – 000325632 _____ () [File not signed] C:Program Files (x86)BelkinRouter Setup and MonitorQtXml4.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000017920 _____ () [File not signed] C:Program FilesAMDCNextCNextlibEGL.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 003567616 _____ () [File not signed] C:Program FilesAMDCNextCNextlibGLESv2.dll

2018-03-13 05:47 – 2018-03-13 05:47 – 000912896 _____ () [File not signed] C:Program FilesAMDPerformance Profile Clientaws-cpp-sdk-core.dll

2018-03-13 05:47 – 2018-03-13 05:47 – 003109888 _____ () [File not signed] C:Program FilesAMDPerformance Profile Clientaws-cpp-sdk-s3.dll

2015-02-19 02:13 – 2015-02-19 02:13 – 000817152 _____ () [File not signed] C:Program FilesAMDPerformance Profile ClientDevice.dll

2015-02-19 02:13 – 2015-02-19 02:13 – 003650560 _____ () [File not signed] C:Program FilesAMDPerformance Profile ClientPlatform.dll

2016-12-26 21:44 – 2016-04-25 15:50 – 000350208 _____ (Mozilla Foundation) [File not signed] C:WINDOWSSecSrvlibnspr4.dll

2016-12-26 21:44 – 2016-04-25 15:50 – 000050688 _____ (Mozilla Foundation) [File not signed] C:WINDOWSSecSrvlibplc4.dll

2016-12-26 21:44 – 2016-04-25 15:50 – 000046592 _____ (Mozilla Foundation) [File not signed] C:WINDOWSSecSrvlibplds4.dll

2016-12-26 21:44 – 2016-04-25 15:50 – 001130496 _____ (Mozilla Foundation) [File not signed] C:WINDOWSSecSrvnss3.dll

2016-12-26 21:44 – 2016-04-25 15:50 – 000161792 _____ (Mozilla Foundation) [File not signed] C:WINDOWSSecSrvnssutil3.dll

2016-12-26 21:44 – 2016-04-25 15:50 – 000166912 _____ (Mozilla Foundation) [File not signed] C:WINDOWSSecSrvsmime3.dll

2021-05-05 10:52 – 2010-08-22 19:36 – 000118784 _____ (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] C:Program Files (x86)BelkinRouter Setup and MonitorW32N55.dll

2021-05-05 10:53 – 2021-06-09 00:22 – 000180224 _____ (Softanics) [File not signed] C:UsersSeanAppDataLocalTempAFF1.tmpf_in_box.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000031744 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqgif.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000039424 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqicns.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000031744 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqico.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000413696 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqjpeg.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000025088 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqsvg.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000025088 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqtga.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000023552 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqwbmp.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000519168 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqwebp.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 001431040 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsplatformsqwindows.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 001180672 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginssqldriversqsqlite.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000135680 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsstylesqwindowsvistastyle.dll

2020-09-09 21:57 – 2020-09-09 21:57 – 006010880 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Core.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 006345216 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Gui.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 001078272 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Network.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000313856 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Positioning.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 004000256 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Qml.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 003802624 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Quick.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000171008 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QuickControls2.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 001083904 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QuickTemplates2.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000205312 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Sql.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000329728 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Svg.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000113152 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebChannel.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000376320 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebEngine.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 092323328 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebEngineCore.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 005560832 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Widgets.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000463360 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WinExtras.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000188416 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Xml.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 002888704 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5XmlPatterns.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000053760 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtGraphicalEffectsprivateqtgraphicaleffectsprivate.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000059392 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtGraphicalEffectsqtgraphicaleffectsplugin.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000017408 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuick.2qtquick2plugin.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000287232 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickControls.2qtquickcontrols2plugin.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000329216 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickControlsqtquickcontrolsplugin.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000136192 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickDialogsdialogplugin.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000089088 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickLayoutsqquicklayoutsplugin.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000312320 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickTemplates.2qtquicktemplates2plugin.dll

2020-07-27 15:57 – 2020-07-27 15:57 – 000017920 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickWindow.2windowplugin.dll

2020-09-09 21:57 – 2020-09-09 21:57 – 000085504 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtWebEngineqtwebengineplugin.dll

 

==================== Alternate Data Streams (Whitelisted) ========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

AlternateDataStreams: C:ProgramDataTemp:AE560861 [119]

 

==================== Safe Mode (Whitelisted) ==================

 

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

 

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMCODS => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalmcpltsvc => “”=””

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalModuleCoreService => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmcapexe => “”=””

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMcMPFSvc => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMCODS => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmcpltsvc => “”=””

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfeaack => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfeaack.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfeavfk => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfeavfk.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfefire => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfefirek => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfefirek.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfehidk => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfehidk.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfemms => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfeplk => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfeplk.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfetdi2k => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfetdi2k.sys => “”=”Driver”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkmfevtp => “”=”Service”

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkModuleCoreService => “”=”Service”

 

==================== Association (Whitelisted) =================

 

==================== Internet Explorer (Whitelisted) ==========

 

HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp://toshiba13.msn.com/?pc=TNJB

HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TNJB

HKUS-1-5-21-3719783295-3170696184-3550119610-1001SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp://msn.com/

HKUS-1-5-21-3719783295-3170696184-3550119610-1001SoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TNJB

HKUS-1-5-21-3719783295-3170696184-3550119610-1001SoftwareMicrosoftInternet ExplorerMain,Secondary Start Pages = hxxp://mystart.toshiba.com

SearchScopes: HKUS-1-5-21-3719783295-3170696184-3550119610-1001 -> DefaultScope {B28A27D5-A004-4F89-8132-3DF454492B67} URL = 

SearchScopes: HKUS-1-5-21-3719783295-3170696184-3550119610-1001 -> {B28A27D5-A004-4F89-8132-3DF454492B67} URL = 

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX64Microsoft OfficeOffice16OCHelper.dll [2021-05-04] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program Files (x86)Microsoft OfficerootOffice16OCHelper.dll [2021-05-04] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program Files (x86)Javajre1.8.0_171binssv.dll [2018-04-29] (Oracle America, Inc. -> Oracle Corporation)

BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program Files (x86)Javajre1.8.0_171binjp2ssv.dll [2018-04-29] (Oracle America, Inc. -> Oracle Corporation)

Handler: dssrequest – {5513F07E-936B-4E52-9B00-067394E91CC5} – c:PROGRA~2mcafeeSITEAD~1mcieplg.dll No File

Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-06-08] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-06-08] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-06-08] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-06-08] (Microsoft Corporation -> Microsoft Corporation)

Handler: sacore – {5513F07E-936B-4E52-9B00-067394E91CC5} – c:PROGRA~2mcafeeSITEAD~1mcieplg.dll No File

Handler: tmtbim – {0B37915C-8B98-4B9E-80D4-464D2C830D10} – C:Program FilesTrend MicroTitaniumUIFrameworkProToolbarIMRatingActiveX.dll No File

Filter: application/x-mfe-ipt – {3EF5086B-5478-4598-A054-786C45D75692} – C:Program FilesMcAfeeMSCMcSnIePl64.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC)

Filter-x32: application/x-mfe-ipt – {3EF5086B-5478-4598-A054-786C45D75692} – C:Program Files (x86)McAfeeMSCMcSnIePl.dll [2021-01-20] (McAfee, LLC -> McAfee, LLC)

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

IE trusted site: HKUS-1-5-21-3719783295-3170696184-3550119610-1001…trendmicro.com -> hxxps://pwm.trendmicro.com

 

==================== Hosts content: =========================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2013-08-22 09:25 – 2013-08-22 09:25 – 000000824 _____ C:WINDOWSsystem32driversetchosts

 

2020-11-03 02:13 – 2020-11-03 02:13 – 000000375 _____ C:WINDOWSsystem32driversetchosts.ics

 

==================== Other Areas ===========================

 

(Currently there is no automatic fix for this section.)

 

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)Common FilesOracleJavajavapath;C:ProgramDataOracleJavajavapath;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;C:Program Files (x86)ATI TechnologiesATI.ACECore-Static;C:Program Files (x86)OpenVPNbin;%SYSTEMROOT%System32OpenSSH

HKUS-1-5-21-3719783295-3170696184-3550119610-1001Control PanelDesktop\Wallpaper -> C:UsersSeanAppDataLocalMicrosoftWindowsThemesRoamedThemeFilesDesktopBackgroundbamboo forest.jpg

DNS Servers: 68.105.28.11 – 68.105.29.11

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)

HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: RequireAdmin)

Windows Firewall is enabled.

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(If an entry is included in the fixlist, it will be removed.)

 

MSCONFIGServices: AdaptiveSleepService => 2

MSCONFIGServices: SkypeUpdate => 2

MSCONFIGServices: TOSHIBA eco Utility Service => 2

HKLM…StartupApprovedRun32: => “Adobe ARM”

HKLM…StartupApprovedRun32: => “HP Software Update”

HKLM…StartupApprovedRun32: => “SunJavaUpdateSched”

HKUS-1-5-21-3719783295-3170696184-3550119610-1001…StartupApprovedStartupFolder: => “SlingplayerForWebShortcut.lnk”

HKUS-1-5-21-3719783295-3170696184-3550119610-1001…StartupApprovedRun: => “OneDrive”

HKUS-1-5-21-3719783295-3170696184-3550119610-1001…StartupApprovedRun: => “GoogleChromeAutoLaunch_4C759CBE76051A54F37D4E70F0F48AE0”

HKUS-1-5-21-3719783295-3170696184-3550119610-1001…StartupApprovedRun: => “HP Photosmart 7520 series (NET)”

 

==================== FirewallRules (Whitelisted) ================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [UDP Query User{838A9D2B-0A51-4F20-8AF8-0F23CFAC16BA}C:program files (x86)javajre1.8.0_171binjavaw.exe] => (Allow) C:program files (x86)javajre1.8.0_171binjavaw.exe

FirewallRules: [TCP Query User{7307B594-7DF1-4951-80FF-A7CEBE1D1203}C:program files (x86)javajre1.8.0_171binjavaw.exe] => (Allow) C:program files (x86)javajre1.8.0_171binjavaw.exe

FirewallRules: [{62C89A42-D591-40D8-92E1-DCED1A35AF9F}] => (Allow) C:UsersSeanUbiquiti UniFibinmongod.exe (MongoDB, Inc) [File not signed]

FirewallRules: [{2AAC219C-B6E2-4CF8-8AEF-C4A519070D7F}] => (Allow) C:UsersSeanUbiquiti UniFibinmongod.exe (MongoDB, Inc) [File not signed]

FirewallRules: [{C3913A88-FC29-4D7B-A023-F9D57952B3B3}] => (Allow) C:Program Files (x86)Javajre1.8.0_171binjava.exe

FirewallRules: [{4322BB26-5EF9-4E62-B271-8308BB481CD2}] => (Allow) C:Program Files (x86)Javajre1.8.0_171binjava.exe

FirewallRules: [{6307E4DF-E2F3-4D21-93F7-EA27BF6D9E60}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{E5995DC3-48EA-46CD-BF86-1ACE33260C02}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{9C71BF95-8505-493B-852E-5F852BEED93C}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{06F2A16A-BA0A-45A8-A2E7-5C92729C4844}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{D557C4DA-0E16-4EDB-93AA-6FAFC780EDB9}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [{F68A7F61-872B-4CCD-8548-B91054E4BB6C}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [{77C7A3C9-AFC9-4CDE-88E2-22E4C9459E52}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [{231A9560-3356-412D-952B-91F9419410E4}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [UDP Query User{F38A3698-BF08-4AF0-8942-4DEB13515861}C:program files (x86)slingplayer desktopslingplayer desktop.exe] => (Allow) C:program files (x86)slingplayer desktopslingplayer desktop.exe => No File

FirewallRules: [TCP Query User{22C7342C-130F-417A-B823-465341AF7283}C:program files (x86)slingplayer desktopslingplayer desktop.exe] => (Allow) C:program files (x86)slingplayer desktopslingplayer desktop.exe => No File

FirewallRules: [{FCB5BD9C-AECA-417C-BE6A-5D9DA9311192}] => (Allow) C:Program Files (x86)Spotifyspotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{BB1D9634-B81B-42A7-B4B9-0AA65BEC11DC}] => (Allow) C:Program Files (x86)Spotifyspotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{39E39787-4117-44C1-8722-7402596C180D}] => (Allow) C:Program Files (x86)SpotifyDataSpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{C2DDD62E-C17B-4C3C-87BA-95C4C3BD1950}] => (Allow) C:Program Files (x86)SpotifyDataSpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [{01A3FF7C-31F2-4ECA-9C13-AAE20046D368}] => (Allow) C:Program Files (x86)SkypePhoneSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{4C19CF09-18F8-4CCE-AB54-2ADA37BFB0F0}] => (Allow) C:UsersSeanAppDataLocalTemp7zS3CF4hppiw.exe => No File

FirewallRules: [{092AD28B-0632-4200-956E-50F65EAA3A1B}] => (Allow) C:UsersSeanAppDataLocalTemp7zS3CF4hppiw.exe => No File

FirewallRules: [{20FBBF2F-9B16-4C9E-8376-74E661674E22}] => (Allow) C:Program FilesHPHP Photosmart 7520 seriesbinFaxApplications.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{A23FA7DE-3931-4AE3-ADB2-B9DBE6874706}] => (Allow) C:Program FilesHPHP Photosmart 7520 seriesbinDigitalWizards.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{8A9A57E1-CE1C-4EBE-9481-ABED79EB704E}] => (Allow) C:Program FilesHPHP Photosmart 7520 seriesbinSendAFax.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{A06DF97E-E407-437D-B413-31961CF4407F}] => (Allow) C:Program FilesHPHP Photosmart 7520 seriesBinDeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{47F7C4D1-9C48-4C90-92F0-DF9F296BDF07}] => (Allow) C:Program FilesHPHP Photosmart 7520 seriesBinHPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{C623CCFD-822A-49D1-AA78-F4E8DE4AE243}] => (Allow) C:Program FilesHPHP Photosmart 7520 seriesBinHPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [TCP Query User{B8B8E4D8-9B57-4EC1-AAB7-8C985A717DBF}C:program files (x86)sling mediaslingplayerforwebslingplayerforweb.exe] => (Allow) C:program files (x86)sling mediaslingplayerforwebslingplayerforweb.exe => No File

FirewallRules: [UDP Query User{497B9D9E-8F04-4150-BB98-209570F4E6D1}C:program files (x86)sling mediaslingplayerforwebslingplayerforweb.exe] => (Allow) C:program files (x86)sling mediaslingplayerforwebslingplayerforweb.exe => No File

FirewallRules: [{5DE81993-439F-4556-B11F-B999E85FA4E5}] => (Allow) C:WINDOWSsystem32alg.exe (Microsoft Windows -> Microsoft Corporation)

FirewallRules: [{FCD0C525-CDD0-42D9-AD0D-22008CC22AE9}] => (Allow) C:WINDOWSsystem32alg.exe (Microsoft Windows -> Microsoft Corporation)

FirewallRules: [{01621949-8C2F-4038-B56B-14F65FDD202E}] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{DFE1DCC2-3291-4601-B63A-0E3923E5B9BA}] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{3E8F0E31-15E1-4521-9EE7-9A9C9FFD48D9}] => (Allow) C:Program Files (x86)Common FilesMcafeeMMSSHostMMSSHost.exe (McAfee, LLC -> McAfee, LLC)

FirewallRules: [{23630D48-B4EF-4CA3-A60C-4098D4553F46}] => (Allow) C:Program FilesCommon FilesMcAfeeMMSSHostMMSSHost.exe (McAfee, LLC -> McAfee, LLC)

FirewallRules: [{7DCD99C1-A8D5-4687-824B-DA76B91D7BA6}] => (Allow) C:Program FilesCommon FilesMcAfeePlatformMcSvcHostMcSvHost.exe (McAfee, LLC -> McAfee, LLC)

FirewallRules: [{7B26A02F-8C94-47CA-83A2-9AA6C6F6851F}] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{93E80F5C-9BE1-4E69-AE34-8D320DA35251}] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{54AF8B44-A2B1-4807-8929-B5128A530BD0}] => (Allow) C:Program Files (x86)BelkinRouter Setup and MonitorBelkinSetup.exe (Affinegy, Inc. -> Affinegy, Inc.)

FirewallRules: [{BF889039-82D2-49A3-AA5C-3C85A2534FFD}] => (Allow) C:Program Files (x86)BelkinRouter Setup and MonitorBelkinSetup.exe (Affinegy, Inc. -> Affinegy, Inc.)

FirewallRules: [{B235D7E8-3E21-4184-BAF7-746171443E7B}] => (Allow) C:Program Files (x86)BelkinRouter Setup and MonitorBelkinSetup.exe (Affinegy, Inc. -> Affinegy, Inc.)

FirewallRules: [{47AC5E6B-3304-48B9-8270-E5543A95C747}] => (Allow) C:Program Files (x86)BelkinRouter Setup and MonitorBelkinSetup.exe (Affinegy, Inc. -> Affinegy, Inc.)

FirewallRules: [{ADB6952B-F204-4CDD-A2A7-313907EEA766}] => (Allow) C:Program Files (x86)BelkinRouter Setup and MonitorBelkinSetup.exe (Affinegy, Inc. -> Affinegy, Inc.)

FirewallRules: [{95213332-C2A3-4016-AF3A-8E5E2287C21A}] => (Allow) C:Program FilesGoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

FirewallRules: [{7CEBD237-74A4-41EE-93B3-9252D319E84C}] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)

 

==================== Restore Points =========================

 

08-06-2021 18:23:49 

08-06-2021 18:27:20 Windows Update

 

==================== Faulty Device Manager Devices ============

 

 

==================== Event log errors: ========================

 

Application errors:

==================

Error: (06/08/2021 07:17:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )

Description: The storage optimizer couldn’t complete retrim on TI10708100A (C:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

 

Error: (06/08/2021 05:20:44 PM) (Source: SideBySide) (EventID: 35) (User: )

Description: Activation context generation failed for “C:Program Files (x86)Microsoft OfficerootOffice16lync.exe.Manifest”.Error in manifest or policy file “C:Program Files (x86)Microsoft OfficerootOffice16UccApi.DLL” on line 1.

Component identity found in manifest does not match the identity of the component requested.

Reference is UccApi,processorArchitecture=”AMD64″,type=”win32″,version=”16.0.0.0″.

Definition is UccApi,processorArchitecture=”x86″,type=”win32″,version=”16.0.0.0″.

Please use sxstrace.exe for detailed diagnosis.

 

Error: (06/08/2021 05:12:19 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: AUEPMaster.exe, version: 2020.29.1.909, time stamp: 0x5f597d24

Faulting module name: ucrtbase.dll, version: 10.0.19041.789, time stamp: 0x2bd748bf

Exception code: 0xc0000409

Fault offset: 0x000000000007286e

Faulting process id: 0x19a4

Faulting application start time: 0x01d75caac09697ec

Faulting application path: C:Program FilesAMDPerformance Profile ClientAUEPMaster.exe

Faulting module path: C:WINDOWSSystem32ucrtbase.dll

Report Id: 983c2ba3-5ab2-4b00-bb92-fba11736dd0f

Faulting package full name: 

Faulting package-relative application ID:

 

Error: (06/08/2021 05:04:11 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: secmgr.exe, version: 2.7.0.0, time stamp: 0x5763fd30

Faulting module name: KERNELBASE.dll, version: 10.0.19041.804, time stamp: 0x0e9c5eae

Exception code: 0xe06d7363

Fault offset: 0x000000000002d759

Faulting process id: 0xef8

Faulting application start time: 0x01d74166569e5208

Faulting application path: C:WINDOWSSecSrvsecmgr.exe

Faulting module path: C:WINDOWSSystem32KERNELBASE.dll

Report Id: de128f9c-3066-4041-bb8b-0a744d52bb51

Faulting package full name: 

Faulting package-relative application ID:

 

Error: (06/08/2021 04:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program SystemSettings.exe version 10.0.19041.789 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 3bf8

 

Start Time: 01d75ca89c038556

 

Termination Time: 4294967295

 

Application Path: C:WindowsImmersiveControlPanelSystemSettings.exe

 

Report Id: 3d435704-996e-466e-9107-2c1bb9368c88

 

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

 

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

 

Hang type: Cross-thread

 

Error: (06/08/2021 04:56:00 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program MusNotifyIcon.exe version 10.0.19041.789 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 3650

 

Start Time: 01d7416d00a4eee3

 

Termination Time: 36

 

Application Path: C:WindowsSystem32MusNotifyIcon.exe

 

Report Id: bbabeaf2-0a17-4276-93d3-c3dc7dadfdbf

 

Faulting package full name: 

 

Faulting package-relative application ID: 

 

Hang type: Unknown

 

Error: (06/08/2021 04:55:14 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program SystemSettings.exe version 10.0.19041.789 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 4a58

 

Start Time: 01d75ca86e738b7e

 

Termination Time: 4294967295

 

Application Path: C:WindowsImmersiveControlPanelSystemSettings.exe

 

Report Id: a45d4988-e985-46c1-a20c-7065707a128c

 

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

 

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

 

Hang type: Cross-thread

 

Error: (06/08/2021 04:53:54 PM) (Source: Application Hang) (EventID: 1002) (User: )

Description: The program SystemSettings.exe version 10.0.19041.789 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

 

Process ID: 1c54

 

Start Time: 01d75ca83e6d67f8

 

Termination Time: 4294967295

 

Application Path: C:WindowsImmersiveControlPanelSystemSettings.exe

 

Report Id: 4aacdd85-2937-4558-8e17-b70600a5e6e3

 

Faulting package full name: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

 

Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel

 

Hang type: Cross-thread

 

 

System errors:

=============

Error: (06/09/2021 12:22:34 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: The server {784E29F4-5EBE-4279-9948-1E8FE941646D} did not register with DCOM within the required timeout.

 

Error: (06/09/2021 12:08:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The AffinegyService service failed to start due to the following error: 

The service did not respond to the start or control request in a timely fashion.

 

Error: (06/09/2021 12:08:38 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (45000 milliseconds) while waiting for the AffinegyService service to connect.

 

Error: (06/09/2021 12:08:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The TSDSettingService service failed to start due to the following error: 

The service did not respond to the start or control request in a timely fashion.

 

Error: (06/09/2021 12:08:37 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (45000 milliseconds) while waiting for the TSDSettingService service to connect.

 

Error: (06/08/2021 05:18:38 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: The server {784E29F4-5EBE-4279-9948-1E8FE941646D} did not register with DCOM within the required timeout.

 

Error: (06/08/2021 05:08:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The AffinegyService service failed to start due to the following error: 

The service did not respond to the start or control request in a timely fashion.

 

Error: (06/08/2021 05:08:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (45000 milliseconds) while waiting for the AffinegyService service to connect.

 

 

Windows Defender:

================

Date: 2021-05-05 11:25:37

Description: 

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

 

Date: 2021-04-12 08:26:04

Description: 

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

 

Date: 2021-04-11 20:04:16

Description: 

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

 

Date: 2021-02-25 00:15:02

Description: 

Microsoft Defender Antivirus has detected malware or other potentially unwanted software.

For more information please see the following:

Name: PUA:Win32/WebWatcher

Severity: Low

Category: Potentially Unwanted Software

Path: clsid:_HKLMSOFTWARECLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; clsid:_HKLMSOFTWARECLASSESWow6432NodeCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; clsid:_HKLMSOFTWAREWow6432NodeCLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; file:_c:windowssyswow64cfcbgnvfemco64_ygnkvnrc.dll; file:_c:windowsSysWow64cfcbgnvfemco_imsjyuom.dll; file:_c:windowsSysWOW64cfcbgnvfesvcboot_sthbydzv.dll; regkey:_HKLMSOFTWARECLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; regkey:_HKLMSOFTWARECLASSESWow6432NodeCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; regkey:_HKLMSOFTWAREWow6432NodeCLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; service:_svcboot_sthbydzv

Detection Origin: Local machine

Detection Type: Concrete

Detection Source: System

Process Name: Unknown

Security intelligence Version: AV: 1.331.1724.0, AS: 1.331.1724.0, NIS: 1.331.1724.0

Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5

 

Date: 2021-02-25 00:13:47

Description: 

Microsoft Defender Antivirus has detected malware or other potentially unwanted software.

For more information please see the following:

Name: PUA:Win32/WebWatcher

Severity: Low

Category: Potentially Unwanted Software

Path: clsid:_HKLMSOFTWARECLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; clsid:_HKLMSOFTWAREWow6432NodeCLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; file:_c:windowssyswow64cfcbgnvfemco64_ygnkvnrc.dll; file:_c:windowsSysWow64cfcbgnvfemco_imsjyuom.dll; file:_c:windowsSysWOW64cfcbgnvfesvcboot_sthbydzv.dll; regkey:_HKLMSOFTWARECLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; regkey:_HKLMSOFTWAREWow6432NodeCLASSESCLSID{CC5C7864-B342-D16E-25B4-E2817C0544F9}; service:_svcboot_sthbydzv

Detection Origin: Local machine

Detection Type: Concrete

Detection Source: System

Process Name: Unknown

Security intelligence Version: AV: 1.331.1724.0, AS: 1.331.1724.0, NIS: 1.331.1724.0

Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5

 

Date: 2021-06-09 00:19:30

Description: 

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version: 

Previous security intelligence Version: 1.341.322.0

Update Source: Microsoft Update Server

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version: 

Previous Engine Version: 1.1.18200.4

Error code: 0x8024402c

Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 

 

Date: 2021-06-08 16:56:19

Description: 

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version: 

Previous security intelligence Version: 1.339.173.0

Update Source: Microsoft Malware Protection Center

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version: 

Previous Engine Version: 1.1.18100.6

Error code: 0x80070102

Error description: The wait operation timed out. 

 

Date: 2021-06-08 16:50:18

Description: 

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version: 

Previous security intelligence Version: 1.339.173.0

Update Source: Microsoft Update Server

Security intelligence Type: AntiVirus

Update Type: Full

Current Engine Version: 

Previous Engine Version: 1.1.18100.6

Error code: 0x80070643

Error description: Fatal error during installation. 

 

Date: 2021-06-08 16:50:16

Description: 

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version: 1.341.322.0

Previous security intelligence Version: 1.339.173.0

Update Source: User

Security intelligence Type: AntiSpyware

Update Type: Delta

Current Engine Version: 1.1.18100.6

Previous Engine Version: 1.1.18100.6

Error code: 0x80070666

Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel. 

 

Date: 2021-06-08 16:50:16

Description: 

Microsoft Defender Antivirus has encountered an error trying to update security intelligence.

New security intelligence Version: 1.341.322.0

Previous security intelligence Version: 1.339.173.0

Update Source: User

Security intelligence Type: AntiVirus

Update Type: Delta

Current Engine Version: 1.1.18100.6

Previous Engine Version: 1.1.18100.6

Error code: 0x80070666

Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel. 

 

CodeIntegrity:

===============

Date: 2021-06-09 01:55:52

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)MicrosoftEdgeApplicationmsedge.exe) attempted to load DeviceHarddiskVolume4WindowsSecSrvwinmvt64.dll that did not meet the Microsoft signing level requirements.

 

Date: 2021-06-09 01:47:32

Description: 

Code Integrity determined that a process (DeviceHarddiskVolume4WindowsSystem32svchost.exe) attempted to load DeviceHarddiskVolume4Program FilesMcAfeeMfeAVAMSIExt.dll that did not meet the Windows signing level requirements.

 

 

==================== Memory info =========================== 

 

BIOS: Insyde Corp. 5.10 07/30/2015

Motherboard: FF10 06C2

Processor: AMD A6-6310 APU with AMD Radeon R4 Graphics 

Percentage of memory in use: 81%

Total physical RAM: 5081.26 MB

Available physical RAM: 930.78 MB

Total Virtual: 7453.63 MB

Available Virtual: 1101.84 MB

 

==================== Drives ================================

 

Drive c: (TI10708100A) (Fixed) (Total:685.33 GB) (Free:631.01 GB) NTFS

Drive d: (Belkin Setup CD) (CDROM) (Total:0.27 GB) (Free:0 GB) UDF

Drive e: () (Removable) (Total:14.91 GB) (Free:6.34 GB) FAT32

 

\?Volume{94176b97-742b-11e4-9258-d7df06558b6a} (System) (Fixed) (Total:1 GB) (Free:0.63 GB) NTFS

\?Volume{ab2a1a12-ad67-4aa6-9582-51ea73d70a18} () (Fixed) (Total:1.69 GB) (Free:1 GB) NTFS

\?Volume{bcd522d9-973b-11e4-aa31-008cfa8a9f6a} (Recovery) (Fixed) (Total:10.39 GB) (Free:0.98 GB) NTFS

\?Volume{94176b9f-742b-11e4-9258-d7df06558b6a} () (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

 

==================== MBR & Partition Table ====================

 

==========================================================

Disk: 0 (Protective MBR) (Size: 698.6 GB) (Disk ID: 00000000)

 

Partition: GPT.

 

==========================================================

Disk: 1 (Protective MBR) (Size: 14.9 GB) (Disk ID: 00000000)

 

Partition: GPT.

 

==================== End of Addition.txt =======================




Original Source by [author_name]

Leave a Reply

Your email address will not be published. Required fields are marked *

31 − thirty =