==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0022FCCC-0C56-4FE7-8CD5-50936CC7958F} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {0B424B17-E00E-43F8-BCB0-363356F03EA2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {0F7A84D6-46CF-4CAC-8C0E-0FF189A032E4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {10D7F729-25BC-4593-BD2E-1BD4F40B5A88} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {139F47F8-33E0-44E8-9EEC-70F061044007} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {232F36CE-7BC3-4E89-9E5F-AA74534260D5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {29D6D616-3CEA-42C5-8652-E828D6F6ABCA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-12] (Dropbox, Inc.)
Task: {34D3386B-E07A-4786-A6C4-5DDAFEBFB5E7} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {351B7B78-B5A7-4CEC-B442-4976DEEFAE08} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {368B30A5-6237-4D64-9D98-EBDFFB45D42F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {3F3B3B71-8C9D-40C5-A92F-5EACB6DA6B21} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {400B37A4-6EAD-4DFD-92CE-51C9B84FE2C7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4738E83B-CE5B-4C0F-B373-F998C9DFB107} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {51B6EB8D-2435-4754-AA9C-E76FA5E034FA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd)
Task: {59AABC68-6D98-48AE-BE32-69CE8C7D363C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3796937070-3348964198-3883336013-1000Core => C:\Users\djbobbysteele\AppData\Local\Google\Update\GoogleUpdate.exe [2016-12-10] (Google Inc.)
Task: {5C8C2460-D130-47C8-B83F-780B9237EEFB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {62497902-95D9-41AA-8177-DA158182B2EB} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6D448944-8D05-4C8C-9153-CCBEDB685DBC} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7001BCFC-2811-4579-AA8D-7E52549D25A5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {71590328-5257-40FD-B523-D915AAB91CDE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {722AA111-0179-4446-A58D-06427E864E08} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {89B5B79A-888E-40AC-B6B5-47A2B0C5CF6D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {89B9B896-DA98-4717-B9E0-857DEBC6B38C} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-07-12] (Dropbox, Inc.)
Task: {8BD5B616-6590-4885-8806-18ED66AA01C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-03] (Google Inc.)
Task: {8D3FF9B3-22F2-40A4-982F-9050F870BCAD} - System32\Tasks\{89B9A449-3D65-42DD-A8A4-191E32826F4F} => pcalua.exe -a C:\Users\djbobbysteele\Downloads\R296457.exe -d C:\Users\djbobbysteele\Downloads
Task: {918A6273-885D-4C18-93D2-F95BFAF92E8C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B51413D9-F0AC-4B4F-8356-FAA22F4BE0ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B57BF089-5BC5-463D-B08D-807503011F13} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-03] (Google Inc.)
Task: {B5E80434-12EB-4E31-83EF-65293D9E3309} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3796937070-3348964198-3883336013-1000UA => C:\Users\djbobbysteele\AppData\Local\Google\Update\GoogleUpdate.exe [2016-12-10] (Google Inc.)
Task: {B806D333-97CD-46C1-A899-03525BB1E527} - System32\Tasks\{7FDCD9CD-4425-E62B-073D-13E43574BD51} => C:\Users\djbobbysteele\AppData\Local\{CC19FAA2-E94B-97D4-827D-B0065EAF4D38}\SyncTask.exe [2013-04-12] () <==== ATTENTION
Task: {B9E38D0A-98F6-4880-B791-1D6905AD412C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CA78FAB1-08B2-4B95-8C1E-5CC039CA76AE} - System32\Tasks\2BrightSparks\SyncBackFree\PDJE_PC-djbobbysteele\PDJ Library Backup => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-06-12] (2BrightSparks Pte. Ltd.)
Task: {CBC2565B-DC4B-4879-AB9D-BCA08FE548B2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {CD7C3319-1517-451D-99F7-76E637380855} - System32\Tasks\2BrightSparks\SyncBackFree\PDJE_PC-djbobbysteele\SyncBackFree PDJ Library Backup => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [2017-06-12] (2BrightSparks Pte. Ltd.)
Task: {D21534F9-ECD4-4170-88DC-FE26FC3A4130} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {D36B997D-CE7E-4CD6-B44F-F5C69ABB4F8A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {D408F2C8-4C34-436A-96C1-235FA8A0AD74} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D8EE03D0-37A9-4C3E-8D73-34B3C9AAE531} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E66FB112-3F68-410A-9445-31303B7E6AC1} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E93D49B2-4323-487C-BBE6-19529754C184} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {F115A05F-DD88-431E-9D99-C95A12499A9F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F31E28E8-5D44-43B7-BB6A-7BFC46E83467} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F4634CB2-62FF-417E-A38D-8B833E468F4D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\{7FDCD9CD-4425-E62B-073D-13E43574BD51}.job => C:\Users\DJBOBB~1\AppData\Local\{CC19F~1\SyncTask.exe <==== ATTENTION
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://
www.virtualdj.com/wiki
Shortcut: C:\Users\djbobbysteele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\
www.virtualdj.com.lnk -> hxxp://
www.virtualdj.com
==================== Loaded Modules (Whitelisted) ==============
2016-04-22 01:07 - 2016-04-22 01:07 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-03-07 20:28 - 2017-06-27 12:06 - 02260432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-06-17 02:24 - 2016-08-01 08:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-03-18 16:58 - 2017-03-18 16:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-06-10 02:41 - 2016-06-10 02:41 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2017-03-18 16:59 - 2017-03-18 22:31 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-09 02:16 - 2017-03-09 02:16 - 00112264 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-10-01 08:08 - 2016-10-01 08:08 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-07-03 23:11 - 2017-06-22 23:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
2017-07-03 23:11 - 2017-06-22 23:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 01041208 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-04-22 01:08 - 2016-04-22 01:08 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 00244536 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-04-08 18:35 - 2016-04-08 18:35 - 03481600 _____ () C:\Users\djbobbysteele\AppData\Local\Programs\Google\Google Photos Backup\gpuploader_i18n.dll
2016-10-12 18:28 - 2016-10-12 18:28 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-10-12 02:08 - 2016-10-12 02:08 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-12 02:08 - 2016-10-12 02:08 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-10-12 02:08 - 2016-10-12 02:08 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-10-12 02:08 - 2016-10-12 02:08 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-12 21:11 - 2016-10-12 21:11 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-10-12 02:08 - 2016-10-12 02:08 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2017-07-13 19:18 - 2017-07-12 15:58 - 00746816 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-07-13 19:18 - 2017-07-12 15:58 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-04-07 20:32 - 2017-07-12 15:58 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00125904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 01862992 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-07-13 19:18 - 2017-07-12 15:58 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-07-13 19:18 - 2017-07-12 15:58 - 00020432 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-07-13 19:18 - 2017-07-12 15:58 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-04-07 20:32 - 2017-07-12 15:58 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-07-13 19:18 - 2017-07-12 15:58 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-07-13 19:18 - 2017-07-12 15:58 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-05-17 18:38 - 2017-07-12 16:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-04-07 20:32 - 2017-07-12 15:58 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-07-13 19:18 - 2017-07-12 15:58 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-07-13 19:18 - 2017-07-12 15:59 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-07-13 19:18 - 2017-07-12 15:58 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-07-13 19:18 - 2017-07-12 15:59 - 00181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-04-07 20:32 - 2017-07-12 16:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-07-13 19:18 - 2017-07-12 15:59 - 00024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-07-13 19:18 - 2017-07-12 15:59 - 01637688 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-04-07 20:32 - 2017-07-12 16:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-04-07 20:32 - 2017-07-12 16:01 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-07-13 19:18 - 2017-07-12 16:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\djbobbysteele\Desktop\ANIMATED:com.dropbox.attributes [168]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:34 - 2017-03-31 07:56 - 00001626 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 adobeereg.com
127.0.0.1
www.adobeereg.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 125.252.224.90
127.0.0.1 125.252.224.91
127.0.0.1 hl2rcv.adobe.com
0.0.0.0 keystone.mwbsys.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3796937070-3348964198-3883336013-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\djbobbysteele\Dropbox\01 Documents\01 PDJE\01 events\PDJE-LOGO-WITH-FLARE.jpg
DNS Servers: 10.0.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{F85CCC61-4279-4A6E-A2D6-D44D36C96470}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Block) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [TCP Query User{C73813E1-EFAF-43D7-80E6-D01D9C83C103}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Block) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [{3FFCBFB0-FABC-4D38-B142-978A0E10A97B}] => (Block) %ProgramFiles%\Key Metric Software\Duplicate File Detective 6\DFD.exe
FirewallRules: [{80F3EE48-7DC3-48EF-A7DE-D2DE383E7D16}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{A238BED0-8E4F-468C-93CF-39A9727A9ABA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{982AC9CA-3885-47D0-A610-41F7F719A735}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2DB6206C-2491-486A-A284-5A3D91857169}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3CD07591-4D84-4F7F-B076-0507A3D5E8DA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D597B91A-BA7A-43ED-8BD8-BD3342CE76E9}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey (non-skinned).exe
FirewallRules: [TCP Query User{DF964954-9560-42FE-AE3F-B25743C07082}C:\program files (x86)\pp助手5.0\pphelper5.exe] => (Allow) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [UDP Query User{09DE05DE-5423-4794-9394-D0072E5E84E8}C:\program files (x86)\pp助手5.0\pphelper5.exe] => (Allow) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [TCP Query User{95ED603F-9FF8-4860-BEA3-332AE0789FA7}C:\program files (x86)\pp助手5.0\adevicehelpermon.exe] => (Allow) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [UDP Query User{3F3E3E67-7F53-4D29-9506-AEF11A7BF8BC}C:\program files (x86)\pp助手5.0\adevicehelpermon.exe] => (Allow) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [{DC3E1330-5DAA-435A-B35F-58E5AB509171}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{181BBEAA-0A81-49CC-9859-583A58AEB394}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Allow) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [UDP Query User{A988209D-154C-450F-ADD6-4F94DE193ADE}C:\program files (x86)\mseven software\msecure\msecure.exe] => (Allow) C:\program files (x86)\mseven software\msecure\msecure.exe
FirewallRules: [{93F815D5-509F-45BA-9F31-3D0A3BE9111B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CF5050FA-003A-4D42-BF9A-745B0C195662}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Restore Points =========================
25-06-2017 19:02:25 Scheduled Checkpoint
30-06-2017 17:57:22 JRT Pre-Junkware Removal
08-07-2017 19:22:38 Scheduled Checkpoint
12-07-2017 19:09:44 Windows Update
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/13/2017 07:26:01 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (07/13/2017 07:26:01 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (07/13/2017 07:25:56 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (07/13/2017 07:25:56 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (07/13/2017 07:25:51 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (07/13/2017 07:25:51 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (07/13/2017 07:25:46 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (07/13/2017 07:25:46 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
Error: (07/13/2017 07:25:41 PM) (Source: Cypress Trackpad) (EventID: 1) (User: )
Description: Event-ID 1
Error: (07/13/2017 07:25:41 PM) (Source: Cypress Trackpad) (EventID: 0) (User: )
Description: Event-ID 0
System errors:
=============
Error: (07/13/2017 07:16:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (07/13/2017 07:16:32 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (07/13/2017 08:12:01 AM) (Source: DCOM) (EventID: 10010) (User: PDJE_PC)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.
Error: (07/12/2017 10:23:41 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (07/12/2017 10:23:41 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
CodeIntegrity:
===================================
Date: 2017-07-05 06:55:08.156
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-05 06:55:05.988
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-05 06:55:05.794
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-03 23:10:01.491
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-03 23:09:47.317
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-03 23:09:32.429
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-03 23:09:27.185
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-03 23:09:26.918
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-03 22:54:21.486
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-07-03 22:53:43.052
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-2620M CPU @ 2.70GHz
Percentage of memory in use: 39%
Total physical RAM: 8086.16 MB
Available physical RAM: 4854.59 MB
Total Virtual: 16278.16 MB
Available Virtual: 12928.54 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:697.84 GB) (Free:504.47 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Rey) (Fixed) (Total:4657.4 GB) (Free:2900.35 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 427DAC49)
Partition 1: (Active) - (Size=697.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=817 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 4657.5 GB) (Disk ID: 1CA3050C)
Partition: GPT.
==================== End of Addition.txt ============================