Search

» » Chrome randomly opens blank new tabs 3/4 times per day - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

Chrome randomly opens blank new tabs 3/4 times per day - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer

kosongkosonig.blogspot.com

Helloooo Bleeping Computer!

First time poster here. I have read and followed each step of the stickied post titled "Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help". I've done the homework and I am trying to be as respectful as I can be of the time that this will take on the part of the volunteers here in the forum. 

The reason I am on this road in the first place is that my Chrome browser has developed a bad habit that I have been unable to fix despite my best efforts. Once in a while, seemingly at random, and no more than three or four times a day, my Chrome browser will just... open a new tab. On its own. This new tab does not direct me to any particular website. It does not seem to be ad-ware, and I'm not even totally sure it's malware. It behaves exactly as if I had moved my mouse up to the top of the window and clicked on the + button to open a new tab. This frustrates me to no end when I'm just sitting on my bed trying to watch YouTube. 

I am most interested in a solution to my specific problem with the extra tabs, but at the same time, I have been using this computer for three or four years without ever submitting a log file of any kind for anyone to review. While you are trying to solve the 'New Tab' bug, if any of you powerful computer wizards out there could just help me scan over the log for anything else obviously in need of fixing, well, that would just be awesome. 

Here are the contents of the "FRST.txt" file that was generated during my scan. The "Addition.txt" contents will follow. DISCLAIMER: I live on and do my job on this PC, and as such this thing has had all manner of random crap installed on it over the past 4 years. I expect this to be one of the lengthier logs that gets posted here. Only proceed if you are up for a challenge. 😬 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-01-2021
Ran by Brandon (administrator) on DESKTOP-IE17UII (07-01-2021 14:16:31)
Running from C:\Users\Brand\Downloads
Loaded Profiles: Brandon
Platform: Windows 10 Pro Version 1909 18363.1256 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Binary Fortress Software Ltd. -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Binary Fortress Software Ltd. -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp32.exe
(Binary Fortress Software Ltd. -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp64.exe
(Binary Fortress Software Ltd. -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdtrackersnmh.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <40>
(Guangzhou Ugee Computers Technology Co.,Ltd -> UGEE) C:\Program Files\Pentablet\PentabletService.exe
(Intel® Extreme Tuning Utility -> Intel® Corporation) C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe
(Intel® pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe
(Intel® Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Leap Motion Inc -> Leap Motion, Inc.) C:\Program Files\Leap Motion\Core Services\LeapSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.11102.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\Brand\AppData\Local\slack\app-4.12.0\slack.exe <6>
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(VEIKK) [File not signed] C:\Program Files\VKTablet\TabletDriverCenter.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [PentabletService] => C:\Program Files\Pentablet\PentabletService.exe [2222560 2018-11-08] (Guangzhou Ugee Computers Technology Co.,Ltd -> UGEE)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2018-08-28] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277520 2020-05-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [339464 2016-02-10] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM\...\Run: [TabletDriverCenter] => C:\Program Files\VKTablet\TabletDriverCenter.exe [2917376 2020-09-16] (VEIKK) [File not signed]
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [664872 2020-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992832 2020-12-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410152 2020-10-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Run: [com.blitz.app] => C:\Users\Brand\AppData\Local\Blitz\Update.exe [1841104 2019-01-10] (Swift Media Entertainment, Inc. -> GitHub)
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32281272 2020-11-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [10531216 2019-05-22] (Binary Fortress Software Ltd. -> Binary Fortress Software)
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\Brand\AppData\Local\slack\slack.exe [306672 2020-12-16] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Program Files (x86)\DisplayFusion\DFSSaver.scr [7328688 2019-05-22] (Binary Fortress Software Ltd. -> Binary Fortress Software)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Program Files (x86)\DisplayFusion\ScreenSavers\SineWaves.scr [3501480 2019-05-10] (Binary Fortress Software Ltd. -> Binary Fortress Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-08] (Google LLC -> Google LLC)
Startup: C:\Users\Brand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GenuineService.lnk [2019-07-31]
ShortcutTarget: GenuineService.lnk -> C:\Users\Brand\Autodesk\Genuine Service\GenuineService.exe ()
Startup: C:\Users\Brand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NordVPN.lnk [2020-04-01]
ShortcutTarget: NordVPN.lnk -> C:\Program Files (x86)\NordVPN\NordVPN.exe (No File)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\Users\Brand\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {043FB3C6-4CA5-43F0-AD77-664D1E09C9D3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-11-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0A83E4F7-0125-4C2B-AA60-4AED08AD3C6F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-28] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {0C627608-1947-4C61-856F-489F85094B47} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26781880 2020-11-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0CEB6AF3-AC77-4D1D-8F5F-F5D1A94C2262} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-02-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {12E4035D-999D-4F94-8422-B2F661097D35} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {24248C41-FA08-4B78-925D-B29C9ED78675} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-05] (Google LLC -> Google LLC)
Task: {280E629E-CFF9-4D8C-BD99-2BE254FBFA7E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {32CDE6DD-6DD2-4768-AEFA-05528CF89423} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {374C99C0-0160-438C-BEEA-08687BD2B66F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40F8CBBC-D0BB-46DC-9A6C-48F1767C4D5E} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\7.3.0\AutoUpdate.exe [2369808 2020-02-17] (IObit Information Technology -> IObit)
Task: {4BBB5DE4-97EC-421F-AE59-ACA66CEB05CE} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe
Task: {5C88346B-392A-41F8-9EEA-4946335D12F9} - System32\Tasks\G2MUploadTask-S-1-5-21-3263392716-3795951453-2356704799-1001 => C:\Users\Brand\AppData\Local\GoToMeeting\19228\g2mupload.exe [31320 2020-12-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {5F804B75-4DB9-42A9-8E4E-2E9760F5105B} - System32\Tasks\G2MUpdateTask-S-1-5-21-3263392716-3795951453-2356704799-1001 => C:\Users\Brand\AppData\Local\GoToMeeting\19228\g2mupdate.exe [31320 2020-12-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {67296046-1762-47B7-9BAE-F3B88079185B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [895080 2020-10-28] (Bitdefender SRL -> Bitdefender)
Task: {6CC7DABB-8314-4E0B-A16D-7FDAEE5D3FA6} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {7817BD62-1989-4069-B352-922DC672AB44} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe
Task: {91572048-F317-4A46-AA32-90E055D6A229} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Shutdown => C:\Program Files (x86)\InstallShield Installation Information\{BB281145-A521-2EF3-B593-C5D534DC9911}\orchestrator.exe [1662662 2018-02-24] (MS) [File not signed]
Task: {A95259EF-72B6-4BBE-804A-F604C7EC0E31} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AF4B9319-7B02-4CBB-8BAC-2F9901C5B0FB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-02-06] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B060DB00-7FD2-4339-BD16-B42ED26AFC66} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B158F36B-7A10-453A-B5B2-18B662C1DC8E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B8BD0B55-206A-44BA-B49E-DD3DD2A392FA} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Orchestrator => C:\Program Files (x86)\InstallShield Installation Information\{BB281145-A521-2EF3-B593-C5D534DC9911}\orchestrator.exe [1662662 2018-02-24] (MS) [File not signed]
Task: {B991DE27-67DB-4751-A1AE-B2589E10935A} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [670928 2020-11-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {BD24A280-A806-4C1E-A385-0F2276547214} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {BE7326E2-0257-4736-9776-B156E40F6950} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D48B6A2A-F45F-424F-B059-D4D8EF70350B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-28] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {D5249343-D6C4-4B89-811A-C8CC21E52890} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\7.3.0\Scheduler.exe [149776 2020-01-17] (IObit Information Technology -> IObit)
Task: {E0F5A07D-400D-4759-BE80-7C9B8895A6C8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-05] (Google LLC -> Google LLC)
Task: {E4D9D9D5-52A2-43D9-895D-16B135144643} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [3727360 2019-07-25] () [File not signed]
Task: {E5CBEC44-C424-4D85-8CB0-890443FD4F3E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E5CF52A4-D08B-4B59-817A-685FD338E0CF} - System32\Tasks\Brandon's Custom Tasks\Slack Launcher Minimizecd => C:\Program Files\WindowsApps\91750D7E.Slack_4.10.0.0_x64__8she8kybcnzg4\app\Slack.exe
Task: {E87F4B91-EC2D-4006-BC82-BE0EE5F03781} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDA86F36-EDD7-4936-A705-035C35150426} - System32\Tasks\Driver Booster SkipUAC (Brandon) => C:\Program Files (x86)\IObit\Driver Booster\7.3.0\DriverBooster.exe [7892240 2020-02-24] (IObit Information Technology -> IObit)
Task: {F225A9E1-5A84-4CBA-B89B-0A35260C91A7} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [955872 2020-12-14] (Bitdefender SRL -> Bitdefender)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3263392716-3795951453-2356704799-1001.job => C:\Users\Brand\AppData\Local\GoToMeeting\19228\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3263392716-3795951453-2356704799-1001.job => C:\Users\Brand\AppData\Local\GoToMeeting\19228\g2mupload.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{5c78133a-235e-4501-9c12-035538aee826}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{77AC4107-797E-41C5-9291-8F29B17828C3}: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{a3719a91-3a14-4053-8db7-2cdf2afb8660}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bdd28fcb-85a1-46fb-97f2-b06e510c742a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{cf0de110-033c-4915-b997-da9ddc63eb79}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{f04b834e-fb3e-4fae-a9b7-cb4b7edda8c9}: [DhcpNameServer] 192.168.1.1
Edge Profile: C:\Users\Brand\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-09]
Edge HomePage: Default -> hxxps://www.reddit.com/
Edge Extension: (Video Downloader PLUS) - C:\Users\Brand\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-06-26]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\Brand\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2020-12-09]
Edge Extension: (Stream Video Downloader) - C:\Users\Brand\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\imkngaibigegepnlckfcbecjoilcjbhf [2020-06-26]
FF DefaultProfile: lwnj6s6l.default
FF DefaultProfile: 1tspkyar.default
FF ProfilePath: C:\Users\Brand\AppData\Roaming\Supermedium\Profiles\lwnj6s6l.default [2020-04-26]
FF ProfilePath: C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default [2020-11-22]
FF Homepage: Mozilla\Firefox\Profiles\1tspkyar.default -> hxxps://www.reddit.com/
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\firefox@ghostery.com.xpi [2020-11-22]
FF Extension: (Google search link fix) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\jid0-XWJxt5VvCXkKzQK99PhZqAn7Xbg@jetpack.xpi [2020-06-13]
FF Extension: (clean-youtube) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2019-07-04]
FF Extension: (youtubetmadblock) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\jid1-w4wG5nJhx4LJZr@jetpack.xpi [2018-02-14]
FF Extension: (Adblock for Youtube™) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\{0ac04bdb-d698-452f-8048-bcef1a3f4b0d}.xpi [2020-11-22]
FF Extension: (Stylish - Custom themes for any website) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2019-10-06]
FF Extension: (Popup Blocker Ultimate) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\{60B7679C-BED9-11E5-998D-8526BB8E7F8B}.xpi [2020-06-11]
FF Extension: (YouTube Download) - C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\Extensions\{807833d9-8ea7-42f8-a8a4-46ff7519dd8b}.xpi [2019-08-18]
FF SearchPlugin: C:\Users\Brand\AppData\Roaming\Mozilla\Firefox\Profiles\1tspkyar.default\searchplugins\bing-lavasoft-ff59.xml [2019-03-13]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2020-10-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-10-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2020-04-28] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-07-08] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-07-08] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-07-08] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-07-08] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2020-07-08] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\bd_js_config.js [2019-08-17] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\itms.js [2018-08-28]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\bd_config.cfg [2019-08-17] <==== ATTENTION
CHR DefaultProfile: Default
CHR Profile: C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default [2021-01-07]
CHR HomePage: Default -> hxxps://www.reddit.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR Extension: (Slides) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-03]
CHR Extension: (Docs) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-03]
CHR Extension: (Google Drive) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-03]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-16]
CHR Extension: (Sheets) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-03]
CHR Extension: (Bitdefender Wallet) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2020-10-05]
CHR Extension: (Google Docs Offline) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (YouTube™ for TV) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmmbpchnelmlmndfnckechknbohhjpge [2020-09-04]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2020-09-21]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-03]
CHR Extension: (Gmail) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-09]
CHR Extension: (Outlook) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkooggnaalmfkidjmlhoelhdllpphaga [2020-03-27]
CHR Extension: (uBlocker for Chrome) - C:\Users\Brand\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdonaappkjkbgbncmmjencphdclioab [2020-11-25]
CHR HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1046904 2020-03-04] (Autodesk, Inc. -> Autodesk Inc.)
S2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16939312 2019-01-09] (Autodesk, Inc. -> Autodesk)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-09] (Apple Inc. -> Apple Inc.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2020-10-29] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2020-10-29] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8400600 2020-07-09] (BattlEye Innovations e.K. -> )
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421928 2020-10-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [56872 2020-10-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-02-06] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-02-06] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-12-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [7037344 2019-05-22] (Binary Fortress Software Ltd. -> Binary Fortress Software)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-29] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitReaderUpdateService.exe [1995184 2020-07-08] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 LeapService; C:\Program Files\Leap Motion\Core Services\LeapSvc.exe [35159480 2018-05-22] (Leap Motion Inc -> Leap Motion, Inc.)
S3 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [File not signed]
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1355768 2020-10-28] (Bitdefender SRL -> Bitdefender)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264152 2020-12-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [170840 2020-12-14] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2020-10-29] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-11] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-11] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R2 ASInsHelp; C:\WINDOWS\SysWow64\drivers\AsInsHelp64.sys [11832 2008-01-05] (ASUSTeK Computer Inc. -> )
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2151624 2020-10-29] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [796200 2020-10-29] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2020-02-19] (Bitdefender SRL -> © Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96616 2020-05-28] (Bitdefender SRL -> BitDefender)
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [75560 2018-04-16] (Broadcom Corporation -> Broadcom Corporation.)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2020-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz149; C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [44320 2021-01-06] (CPUID S.A.R.L.U. -> CPUID)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [473608 2020-10-29] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195232 2020-10-29] (Bitdefender SRL -> BitDefender LLC)
S3 hidgamemap; C:\WINDOWS\System32\drivers\hidgamemap.sys [112312 2017-07-01] (Disc Soft Ltd -> Disc Soft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-01-24] (Martin Malik - REALiX -> REALiX™)
R2 Ignis; C:\WINDOWS\System32\DRIVERS\ignis.sys [185312 2020-12-14] (Bitdefender SRL -> Bitdefender)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-05-07] (Logitech Inc -> Logitech Inc.)
R2 NDivert; C:\WINDOWS\System32\drivers\NDivert.sys [101600 2020-12-29] (TEFINCOM S.A. -> )
R3 nlwt; C:\WINDOWS\system32\DRIVERS\nlwt.sys [39360 2020-12-23] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\WINDOWS\system32\DRIVERS\nordlwf.sys [38608 2020-10-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [640760 2020-10-29] (Bitdefender SRL -> Bitdefender)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-13] (Microsoft Corporation) [File not signed]
R3 VkDevice; C:\WINDOWS\System32\drivers\VkDevice.sys [39016 2020-02-24] (Shenzhen Hezon Lito Technology Co., Ltd. -> VEIKK)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-07 14:07 - 2021-01-07 14:17 - 000039565 _____ C:\Users\Brand\Downloads\FRST.txt
2021-01-07 14:06 - 2021-01-07 14:16 - 000000000 ____D C:\FRST
2021-01-07 14:06 - 2021-01-07 14:06 - 002282496 _____ (Farbar) C:\Users\Brand\Downloads\FRST64.exe
2021-01-07 13:42 - 2021-01-07 13:42 - 006875040 _____ (Stanislav Polshyn & Trend Micro Inc.) C:\Users\Brand\Downloads\HiJackThis.exe
2021-01-05 00:16 - 2021-01-05 00:16 - 000000369 _____ C:\Users\Brand\.gitconfig
2021-01-04 01:01 - 2020-12-31 19:43 - 000001818 _____ C:\Users\Brand\Desktop\NordVPN.lnk
2020-12-30 18:36 - 2020-12-30 18:36 - 000058302 _____ C:\Users\Brand\Downloads\Certificate.pdf
2020-12-24 14:41 - 2020-12-24 14:49 - 832005061 _____ C:\Users\Brand\Downloads\videoplayback.mp4
2020-12-23 20:40 - 2020-12-29 17:02 - 000101600 _____ C:\WINDOWS\system32\Drivers\NDivert.sys
2020-12-23 20:37 - 2020-12-31 19:43 - 000000000 ____D C:\Users\Brand\AppData\Local\NordVPN
2020-12-23 20:37 - 2020-12-31 19:43 - 000000000 ____D C:\ProgramData\NordVPN
2020-12-23 20:37 - 2020-12-31 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2020-12-23 20:37 - 2020-12-31 19:43 - 000000000 ____D C:\Program Files\NordVPN
2020-12-23 20:37 - 2020-12-23 20:37 - 020095616 _____ (TEFINCOM S.A. ) C:\Users\Brand\Downloads\NordVPNSetup.exe
2020-12-23 20:37 - 2020-12-23 20:37 - 000039360 ____T (WireGuard LLC) C:\WINDOWS\system32\Drivers\nlwt.sys
2020-12-23 20:37 - 2020-12-23 20:37 - 000000000 ____D C:\Program Files\NordVPN network TUN
2020-12-23 20:37 - 2020-12-23 20:37 - 000000000 ____D C:\Program Files (x86)\NordVPN network TAP
2020-12-23 20:37 - 2020-10-14 14:00 - 000038608 _____ (TEFINCOM S.A.) C:\WINDOWS\system32\Drivers\nordlwf.sys
2020-12-18 02:45 - 2020-12-18 02:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-12-17 13:15 - 2020-12-17 13:17 - 485356795 _____ C:\Users\Brand\Downloads\StrataTech Meeting 12_11_2020.mp4
2020-12-16 08:26 - 2020-12-16 08:26 - 2004575012 _____ C:\WINDOWS\MEMORY.DMP
2020-12-16 08:26 - 2020-12-16 08:26 - 002180668 _____ C:\WINDOWS\Minidump\121620-12812-01.dmp
2020-12-16 02:39 - 2020-12-16 02:39 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-12-16 02:39 - 2020-12-16 02:39 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-12-16 02:39 - 2020-12-16 02:39 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-12-16 02:39 - 2020-12-16 02:39 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-12-10 08:13 - 2020-11-25 20:37 - 000005749 _____ C:\Users\Brand\Desktop\Full Playlist A.xspf
2020-12-10 04:25 - 2020-12-10 04:25 - 002045952 _____ C:\WINDOWS\system32\rdpnano.dll
2020-12-10 04:25 - 2020-12-10 04:25 - 000171008 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2020-12-10 04:25 - 2020-12-10 04:25 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-10 04:25 - 2020-12-10 04:25 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-10 04:25 - 2020-12-10 04:25 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth14.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth13.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-12-10 04:25 - 2020-12-10 04:25 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-12-10 04:24 - 2020-12-10 04:24 - 001756600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-10 04:24 - 2020-12-10 04:24 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-10 04:24 - 2020-12-10 04:24 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-10 04:24 - 2020-12-10 04:24 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-01-07 14:17 - 2020-08-14 13:05 - 000000000 ____D C:\Users\Brand\AppData\Local\DisplayFusion
2021-01-07 14:08 - 2017-02-07 05:00 - 000000000 ____D C:\Users\Brand\AppData\Roaming\Slack
2021-01-07 14:07 - 2019-03-19 10:22 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-07 14:07 - 2017-02-13 12:55 - 000000000 ____D C:\Users\Brand\AppData\Local\CrashDumps
2021-01-07 13:53 - 2017-02-04 03:35 - 000000000 ____D C:\Users\Brand\AppData\Local\VirtualStore
2021-01-07 13:38 - 2019-08-18 11:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-07 12:25 - 2017-08-06 20:06 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-07 10:03 - 2019-12-23 23:22 - 000000000 ____D C:\Program Files\CCleaner
2021-01-07 00:20 - 2019-03-19 10:22 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-07 00:20 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-06 21:13 - 2019-08-18 11:22 - 000005768 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-06 21:08 - 2019-08-18 11:18 - 000003806 _____ C:\WINDOWS\system32\Tasks\AutoKMS
2021-01-06 21:07 - 2019-08-18 11:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-06 21:07 - 2019-03-19 10:07 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-06 21:07 - 2019-02-23 03:32 - 000000000 ____D C:\Intel
2021-01-06 17:35 - 2019-03-19 10:07 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-05 18:39 - 2019-05-17 17:12 - 000000000 ____D C:\Users\Brand\AppData\Roaming\UnityHub
2021-01-05 18:39 - 2018-04-04 22:52 - 000000000 ____D C:\Users\Brand\AppData\Roaming\WhatsApp
2021-01-05 18:35 - 2019-08-13 17:39 - 000000000 ____D C:\Users\Brand\AppData\Roaming\GitHub Desktop
2021-01-05 00:16 - 2019-08-27 09:24 - 000000000 ____D C:\Users\Brand\AppData\Local\GitHubUnity
2021-01-05 00:16 - 2019-08-17 17:43 - 000000000 ____D C:\Users\Brand
2021-01-05 00:15 - 2019-05-17 17:21 - 000000000 ____D C:\ProgramData\Unity
2021-01-04 23:26 - 2017-02-05 10:05 - 000000000 ____D C:\Users\Brand\AppData\Roaming\vlc
2021-01-04 13:27 - 2019-12-23 23:22 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-31 19:43 - 2019-03-19 10:20 - 000000000 ____D C:\WINDOWS\INF
2020-12-31 16:04 - 2019-03-19 10:07 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2020-12-30 18:37 - 2020-07-26 20:51 - 000000000 ____D C:\Users\Brand\Documents\Indian Visa Documents
2020-12-22 15:19 - 2017-02-23 20:31 - 000000670 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-3263392716-3795951453-2356704799-1001.job
2020-12-22 15:19 - 2017-02-23 20:31 - 000000574 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-3263392716-3795951453-2356704799-1001.job
2020-12-21 12:20 - 2019-08-18 11:18 - 000003844 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-3263392716-3795951453-2356704799-1001
2020-12-21 12:20 - 2019-08-18 11:18 - 000003748 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-3263392716-3795951453-2356704799-1001
2020-12-21 12:20 - 2017-07-08 23:55 - 000000000 ____D C:\Users\Brand\AppData\Local\GoToMeeting
2020-12-19 08:42 - 2020-06-25 11:51 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-18 02:45 - 2020-02-06 16:19 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-12-18 00:59 - 2019-12-13 15:38 - 000000000 ____D C:\Users\Brand\AppData\Local\PlaceholderTileLogoFolder
2020-12-17 09:56 - 2017-06-18 00:22 - 000000000 ____D C:\Users\Brand\AppData\Roaming\deluge
2020-12-17 08:58 - 2020-01-08 06:49 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-12-17 08:58 - 2020-01-08 06:49 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-12-17 02:13 - 2020-10-29 08:43 - 000000000 ____D C:\Users\Brand\AppData\Local\WhatsApp
2020-12-17 02:12 - 2017-02-07 05:00 - 000000000 ____D C:\Users\Brand\AppData\Local\SquirrelTemp
2020-12-16 08:26 - 2020-09-09 22:47 - 000000000 ____D C:\WINDOWS\Minidump
2020-12-16 00:16 - 2020-10-24 03:53 - 000000000 ____D C:\Users\Brand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2020-12-16 00:16 - 2020-10-24 03:53 - 000000000 ____D C:\Users\Brand\AppData\Local\slack
2020-12-14 23:52 - 2020-10-08 18:26 - 000002400 _____ C:\Users\Brand\Desktop\GitHub Desktop.lnk
2020-12-14 23:52 - 2019-08-13 17:39 - 000000000 ____D C:\Users\Brand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2020-12-14 23:52 - 2019-08-13 17:39 - 000000000 ____D C:\Users\Brand\AppData\Local\GitHubDesktop
2020-12-14 17:54 - 2019-07-25 12:58 - 000185312 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys
2020-12-11 05:55 - 2018-02-21 12:07 - 000000514 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-12-10 23:41 - 2019-08-18 11:12 - 005240264 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-10 23:40 - 2019-03-19 11:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-10 23:40 - 2019-03-19 10:22 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-10 08:07 - 2020-06-01 21:16 - 000000000 ____D C:\Users\Brand\Documents\Bandicam
2020-12-08 22:36 - 2020-10-30 08:04 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
==================== Files in the root of some directories ========
2017-03-13 16:22 - 2020-02-01 04:17 - 000000132 _____ () C:\Users\Brand\AppData\Roaming\Adobe PNG Format CS5 Prefs
2020-04-06 22:45 - 2020-04-08 22:48 - 000000132 _____ () C:\Users\Brand\AppData\Roaming\Adobe PNG Format CS6 Prefs
2017-03-05 00:53 - 2020-04-02 00:42 - 000001456 _____ () C:\Users\Brand\AppData\Local\Adobe Save for Web 12.0 Prefs
2020-04-02 10:09 - 2020-11-16 01:59 - 000001456 _____ () C:\Users\Brand\AppData\Local\Adobe Save for Web 13.0 Prefs
2018-07-22 07:38 - 2018-08-08 09:42 - 000000126 _____ () C:\Users\Brand\AppData\Local\Autosofted License.txt
2020-01-08 07:10 - 2020-01-08 07:10 - 000000000 _____ () C:\Users\Brand\AppData\Local\oobelibMkey.log
2019-09-18 16:33 - 2019-09-18 16:35 - 000000600 _____ () C:\Users\Brand\AppData\Local\PUTTY.RND
2020-11-24 19:16 - 2020-11-24 19:16 - 000000218 _____ () C:\Users\Brand\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ok, here is the "Addition.txt" stuff, as promised. 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2021
Ran by Brandon (07-01-2021 14:18:04)
Running from C:\Users\Brand\Downloads
Windows 10 Pro Version 1909 18363.1256 (X64) (2019-08-18 05:48:31)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3263392716-3795951453-2356704799-500 - Administrator - Disabled)
Brandon (S-1-5-21-3263392716-3795951453-2356704799-1001 - Administrator - Enabled) => C:\Users\Brand
DefaultAccount (S-1-5-21-3263392716-3795951453-2356704799-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3263392716-3795951453-2356704799-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-3263392716-3795951453-2356704799-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3263392716-3795951453-2356704799-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
FW: Bitdefender Firewall (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3D-Tool V14 (HKLM-x32\...\3D-Tool V14) (Version: V14.20 - 3D-Tool GmbH & Co. KG)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_1) (Version: 21.0.1 - Adobe Systems Incorporated)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
Autodesk 3ds Max 2016 (HKLM\...\{52B37EC7-D836-0410-0464-3C24BCED2010}) (Version: 18.0.873.0 - Autodesk) Hidden
Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)
Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk)
Autodesk 3ds Max 2020 (HKLM\...\{BD028CEF-A20D-42fe-BC8A-31EF3A60F194}) (Version: 22.0.0.757 - Autodesk) Hidden
Autodesk 3ds Max 2020 (HKLM\...\Autodesk 3ds Max 2020) (Version: 22.0.0.757 - Autodesk)
Autodesk 3ds Max Security Tools (HKLM\...\{27C2C609-E2A8-4007-B89F-1D6F549D5115}) (Version: 1.0.1 - Autodesk, Inc.)
Autodesk A360 Collaboration for Revit 2017 (HKLM\...\{AA384BE4-1700-0010-0000-97E7D7D00B17}) (Version: 17.0.416.0 - Autodesk) Hidden
Autodesk A360 Collaboration for Revit 2017 (HKLM\...\Autodesk A360 Collaboration for Revit 2017) (Version: 17.0.416.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk)
Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk)
Autodesk BIM 360 Revit 2017 Add-in 64 bit (HKLM\...\{A26EBAD5-9591-407F-9D6C-C7A4F3DFE506}) (Version: 4.37.6853 - Autodesk)
Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk)
Autodesk Civil View for 3ds Max 2020 64-bit (HKLM\...\{36D39F27-7B90-4F5C-82D7-924D7128760C}) (Version: 22.0.0.0 - Autodesk)
Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 8.0.0.46 - Autodesk)
Autodesk Genuine Service (HKLM-x32\...\{317D67F2-9027-4E85-9ED1-ADF4D765AE02}) (Version: 3.0.11 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2020 (HKLM\...\{6705B770-D46A-46BC-831F-2F63DA2936B1}) (Version: 21.0 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library 2020 (HKLM-x32\...\{B9312A51-41B5-479D-9F72-E7448A2D89AF}) (Version: 18.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2020 (HKLM-x32\...\{0E976988-E753-4C81-BD96-434CE305B176}) (Version: 18.11.1.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2017 (HKLM-x32\...\{360AC116-6CD4-4E7D-8174-28D47B05E898}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2020 (HKLM-x32\...\{B52B3C0C-F56D-44CB-AC81-F86BCBB7550F}) (Version: 18.11.1.0 - Autodesk)
Autodesk Revit 2017 (HKLM\...\Autodesk Revit 2017) (Version: 17.0.416.0 - Autodesk)
Autodesk Revit 2017 (HKLM\...\Revit 2017) (Version:  - )
Autodesk Revit Interoperability for 3ds Max  (HKLM\...\{0BB716E0-1600-0610-0000-097DC2F354DF}) (Version: 16.0.394.0 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max  (HKLM\...\Autodesk Revit Interoperability for 3ds Max ) (Version: 16.0.394.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2020 (HKLM\...\{0BB716E0-2000-0610-0000-097DC2F354DF}) (Version: 20.0.0.364 - Autodesk) Hidden
Autodesk Revit Interoperability for 3ds Max 2020 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2020) (Version: 20.0.0.364 - Autodesk)
Autodesk Revit MEP Imperial Content v2.0 (HKLM\...\{F2538944-3E07-4E97-B41A-FC48AB53EE9D}) (Version: 2.0 - Autodesk)
Autodesk Revit MEP Metric Content v2.0 (HKLM\...\{DEF775C7-84BF-4730-976A-FE3747F1757C}) (Version: 2.0 - Autodesk)
Autodesk Single Sign On Component (HKLM\...\{E3807FC8-DD0A-4D6D-89E9-EAADE00C845C}) (Version: 10.22.00.1800 - Autodesk)
Autodesk Workflows 2017 (HKLM\...\{23A13F78-5B67-441A-ABF9-48BE8B5455DB}) (Version: 15.11.13.0 - Autodesk, Inc.)
Bandicam (HKLM-x32\...\Bandicam) (Version: 3.2.2.1111 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.49 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 24.0.3.15 - Bitdefender)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.74 - Piriform)
ClockStone FBX Viewer v1.4 (noncommercial version) (HKLM-x32\...\ClockStone FBX Viewer_is1) (Version:  - ClockStone Software GmbH)
CORSAIR iCUE Software (HKLM-x32\...\{9F97046E-BA53-42B7-8BBD-1E55413895F5}) (Version: 3.35.152 - Corsair)
Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version:  - )
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.36 - NVIDIA Corporation) Hidden
DisplayFusion 9.5 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 9.5.0.0 - Binary Fortress Software)
Driver Booster 7 (HKLM-x32\...\Driver Booster_is1) (Version: 7.3.0 - IObit)
Dropbox (HKLM-x32\...\Dropbox) (Version: 112.4.321 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.377.1 - Dropbox, Inc.) Hidden
Dynamo 0.9.1 (HKLM\...\{85626FB3-CAF9-49C1-AA28-E3C75164BD6F}) (Version: 0.9.1.4062 - Autodesk)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FastStone Image Viewer 7.0 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.0 - FastStone Soft)
FormIt 360 Converter For Revit 2017 (HKLM\...\{637211B6-D2E9-474A-BF06-4F61F1254104}) (Version: 1.9.0.0 - Autodesk)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.0.1.35811 - Foxit Software Inc.)
GitHub Desktop (HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\GitHubDesktop) (Version: 2.6.1 - GitHub, Inc.)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.4 - The GnuPG Project)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
GoTo Opener (HKLM-x32\...\{FCF5FF66-C2FB-45C1-B46E-7A596657B016}) (Version: 1.0.530 - LogMeIn, Inc.)
GoToMeeting 10.15.0.19228 (HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\GoToMeeting) (Version: 10.15.0.19228 - LogMeIn, Inc.)
Gpg4win (3.0.3) (HKLM-x32\...\Gpg4win) (Version: 3.0.3 - The Gpg4win Project)
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
HandBrake 1.3.1 (HKLM-x32\...\HandBrake) (Version: 1.3.1 - )
Intel® Hardware Accelerated Execution Manager (HKLM\...\{73250D12-B600-4ED6-AFC0-10D9D8EDA745}) (Version: 7.3.2 - Intel Corporation)
IronPython 2.7.3 (HKLM-x32\...\{1EBADAEA-1A0F-40E3-848C-0DD8C5E5A10D}) (Version: 2.7.31000.0 - IronPython Team)
iTunes (HKLM\...\{51E78C79-92F0-48B2-8A9A-3A5C0A7DD3F2}) (Version: 12.6.5.3 - Apple Inc.)
Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Leap Motion Software (HKLM-x32\...\Leap Services) (Version: 4.0.0.52173 - Leap Motion)
LynX 3D Viewer Lite Edition v1.5.2 (HKLM-x32\...\LynX 3D Viewer Lite Edition_is1) (Version:  - Hypergraphics-3D)
Microsoft .NET Framework 4.7.1 SDK (HKLM-x32\...\{B9DCCDB9-FCE9-48AD-B534-A7AD270BD52B}) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 Targeting Pack (ENU) (HKLM-x32\...\{ABE94A82-C89E-4ACA-8B30-41E0C6165A23}) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 Targeting Pack (HKLM-x32\...\{5686C5E9-A3B3-451E-A2EA-4C246CDE5CC9}) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{52EBC484-44A1-4DC5-824A-0A503735ABD8}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.15.3248.309 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 83.0 (x64 en-US) (HKLM\...\Mozilla Firefox 83.0 (x64 en-US)) (Version: 83.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.3.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.33.10.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.0.118 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.118 - NVIDIA Corporation)
NVIDIA mental ray and IRay feature plugins for 3ds Max 2019 (HKLM\...\{4A02A23C-8BBF-4429-84AA-6DBFC4AC64DF}) (Version: 21.0.0.0 - Autodesk)
NVIDIA mental ray and IRay feature plugins for 3ds Max 2020 (HKLM\...\{56B041A5-F592-4B9A-AD5D-68915B926AE9}) (Version: 22.0.0.0 - Autodesk)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenVR Advanced Settings (HKLM-x32\...\OpenVRAdvancedSettings) (Version:  - )
Pentablet version 1.5.7.181108 (HKLM\...\{5DAB8C1A-6D8E-467D-BE62-AC13087AA950}_is1) (Version: 1.5.7.181108 - XPPEN Technology)
Personal Accelerator for Revit (HKLM\...\{7C317DB0-F31F-4024-A289-92CF4B6FB256}) (Version: 16.0.1109.0 - Autodesk) Hidden
Personal Accelerator for Revit (HKLM\...\Personal Accelerator for Revit) (Version: 16.0.1109.0 - Autodesk)
PiXYZStudio (HKLM-x32\...\PiXYZStudio) (Version: 2020.1.0.22 - PiXYZ Software)
Qualcomm Atheros QCA6174_9377 Bluetooth Suite (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.137 - Qualcomm Atheros)
QuickTime Alternative 3.2.2 (HKLM-x32\...\QuicktimeAlt_is1) (Version: 3.2.2 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
Resource Hacker Version 5.1.7 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
Revit 2017 (HKLM\...\{7346B4A0-1700-0510-0000-705C0D862004}) (Version: 17.0.416.0 - Autodesk) Hidden
SideQuest 0.10.18 (HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\4924ec51-3e48-5cb7-b145-2119467094c7) (Version: 0.10.18 - Shane Harris)
Skype version 8.42 (HKLM-x32\...\Skype_is1) (Version: 8.42 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\slack) (Version: 4.12.0 - Slack Technologies Inc.)
SourceTree (HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\SourceTree) (Version: 3.1.3 - Atlassian)
SpeedTree Unity Subscription version 8.4.2 (HKLM\...\{8E8319DC-1971-463B-A801-EC768994A5F5}_is1) (Version: 8.4.2 - IDV, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Unity (HKLM-x32\...\Unity) (Version: 2019.4.15f1 - Unity Technologies ApS)
Unity Hub 2.4.2 (HKLM\...\{Unity Technologies - Hub}) (Version: 2.4.2 - Unity Technologies Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual Studio Community 2017 (HKLM-x32\...\263a0015) (Version: 15.6.27428.2015 - Microsoft Corporation)
VKTabletDriver (HKLM\...\DC6C14C4-4F50-4976-9A7D-191E107219FD_is1) (Version: 2.0.1.0 - Shenzhen Hezon Lito Technology Co.,Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
vs_communitymsi (HKLM-x32\...\{C2749223-157E-48F0-9410-A510361D6803}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{40040E64-50EB-4FCF-B209-DA0B20821759}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{02DD895F-089F-4A63-81A9-78D00142AF20}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{E6A92308-33DF-494B-A91A-3B80FBC97F2B}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{8EB2C670-04C2-482D-BACD-B4095E27FD39}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{6B45EEA3-85F8-4B26-B952-6830A45F2688}) (Version: 15.6.27323 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{13E08AD0-D6AC-44C4-9F5B-0AE2EB56B105}) (Version: 15.6.27421 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{6DFE6F8D-B61D-4348-AB70-4ABF1210DFD5}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\WhatsApp) (Version: 2.2049.10 - WhatsApp)
Windows Driver Package - Cypress (CYUSB3) USB  (08/08/2012 1.1.2.00) (HKLM\...\F5E62A33E561014649F592C2284539BC5FB71C60) (Version: 08/08/2012 1.1.2.00 - Cypress)
Windows Driver Package - VeiKk (WinUsb) USBDevice  (03/27/2018 1.0.0.1) (HKLM\...\49CDB6956EA98C2483A3AA1DE55B32E48F35A45D) (Version: 03/27/2018 1.0.0.1 - VeiKk)
Windows Driver Package - VeiKk (WinUsb) USBVeiKk  (03/27/2018 1.0.0.1) (HKLM\...\02FB3FC446A410E9BB58AD0FD7CCB50EC373D22C) (Version: 03/27/2018 1.0.0.1 - VeiKk)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3282.0_x64__8j3eq9eme6ctt [2021-01-02] (INTEL CORP) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Pandora -> C:\Program Files\WindowsApps\PandoraMediaInc.29680B314EFC2_15.0.3.0_x64__n619g4d5j0fnw [2020-03-30] (Pandora Media Inc) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-13] (Spotify AB) [Startup Task]
Steam Tile -> C:\Program Files\WindowsApps\43266Element26Software.SteamTile_1.1.2.0_x64__2vng2mrd8a7zg [2020-03-25] (Element26 Software)
Tile Genie -> C:\Program Files\WindowsApps\52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc [2020-03-26] (McMullen Software)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
White Noise -> C:\Program Files\WindowsApps\TMSOFT.WhiteNoise_7.0.3.0_x64__c733bcf98gd4g [2020-01-17] (TMSOFT)
Xbox Accessories -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.2011.9001.0_x64__8wekyb3d8bbwe [2020-11-11] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\RxAppCtrl.Ocx => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Brand\AppData\Local\Microsoft\OneDrive\17.005.0107.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{32CDFF57-8CBA-4960-89B1-EC3FA58FB17A}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\RxAppDocView.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\RxAppDocView.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\RxTest.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{67923bb5-d334-5953-ad03-e65f4c05ab62}\InprocServer32 -> C:\Windows\System32\mscoree.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6ab632c5-725e-55d1-974f-dca17eaaea1e}\InprocServer32 -> C:\Windows\System32\mscoree.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtCp.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Brand\AppData\Local\Microsoft\OneDrive\17.005.0107.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\RxAppCtrl.Ocx => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Brand\AppData\Local\Microsoft\OneDrive\17.005.0107.0008\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\SolidObject.Dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\UCxTextBtn.Ocx => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\UCxTextBtn.Ocx => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Brand\AppData\Local\GoToMeeting\18962\G2MOutlookAddin64.dll (LogMeIn, Inc. -> LogMeIn, Inc.)
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\SolidObject.Dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\Inventor.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{c1cc5d07-641c-5c99-8d80-86815e7e2558}\InprocServer32 -> C:\Windows\System32\mscoree.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\RxApprenticeServer.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\AcInetUI.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\RxInventorUtilities.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Brand\Dropbox [2020-02-06 16:23]
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DTInterop.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\InvResc.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\ServiceModule.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\InvTXTStack.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2017\Bin\DTInterop.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File
CustomCLSID: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2018-01-12] (g10 Code GmbH) [File not signed]
ContextMenuHandlers1: [TVCShellExt] -> {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => C:\PROGRA~2\TOTALV~1\TVCShellExtx64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2018-01-12] (g10 Code GmbH) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-04-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6_S-1-5-21-3263392716-3795951453-2356704799-1001: [InventorMenu] -> {6FDE7A70-351B-11d6-988B-0010B57A8BB7} => C:\Program Files\Autodesk\Inventor 2017\Bin\DtBridge.dll -> No File
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\System32\bdmjpeg64.dll [25640 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\System32\bdmpegv64.dll [70200 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\System32\bdmpega64.acm [70712 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\System32\vct3216.acm [82944 2003-05-22] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\System32\scg726.acm [13239 2000-03-15] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\System32\alf2cd.acm [38912 2003-05-22] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\System32\AC3ACM.acm [81920 2004-02-05] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\System32\lame.ax [245760 2005-08-02] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\System32\mcdvd_32.dll [261632 2003-05-22] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\System32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\System32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\System32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\System32\xvidvfw.dll [139264 2004-07-04] () [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\System32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\System32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\System32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\System32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\System32\lagarith.dll [216064 2011-12-08] () [File not signed]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] (Bandisoft -> )
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Brand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Outlook.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=pkooggnaalmfkidjmlhoelhdllpphaga
ShortcutWithArgument: C:\Users\Brand\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Outlook.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=pkooggnaalmfkidjmlhoelhdllpphaga
==================== Loaded Modules (Whitelisted) =============
2020-10-29 16:20 - 2020-10-29 16:20 - 000352768 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\ActionsConverters.dll
2020-10-29 15:52 - 2020-10-29 15:52 - 000759808 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\LegacyCommands.dll
2020-10-29 15:52 - 2020-10-29 15:52 - 000743936 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\LegacyNotifications.dll
2020-10-29 15:50 - 2020-10-29 15:50 - 000577536 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\MobileProto.dll
2020-10-29 15:51 - 2020-10-29 15:51 - 000203776 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\ModelHelpers.dll
2020-10-29 15:52 - 2020-10-29 15:52 - 000209408 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll
2020-10-29 15:51 - 2020-10-29 15:51 - 000101376 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll
2018-05-22 03:53 - 2018-05-22 03:53 - 000157696 _____ (libusb.info) [File not signed] C:\Program Files\Leap Motion\Core Services\libusb-1.0.dll
2020-08-14 13:05 - 2018-08-12 17:34 - 001547776 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\DisplayFusion\x64\SQLite.Interop.dll
2020-09-22 10:06 - 2020-09-22 10:06 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2020-10-29 15:50 - 2020-10-29 15:50 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2020-10-29 15:50 - 2020-10-29 15:50 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:lgylqfxlctqffeusff`npefmfs`djofnbpfh [0]
AlternateDataStreams: C:\Users\Public\AppData:CSM [478]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
SearchScopes: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://https://ift.tt/2xbaW85
SearchScopes: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://https://ift.tt/2xbaW85
BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2020-12-14] (Bitdefender SRL -> Bitdefender)
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2020-12-14] (Bitdefender SRL -> Bitdefender)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2020-12-14] (Bitdefender SRL -> Bitdefender)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2020-12-14] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2020-12-14] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2020-12-14] (Bitdefender SRL -> Bitdefender)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 17:17 - 2021-01-07 14:07 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts
2018-02-21 12:07 - 2020-12-11 05:55 - 000000514 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-IE17UII.mshome.net # 2025 12 3 10 0 25 58 567
92.168.137.1 DESKTOP-IE17UII.mshome.net # 2024 9 4 26 12 9 50 44
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Common Files\Autodesk Shared\;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\GnuPG\bin;C:\Program Files (x86)\GtkSharp\2.12\bin;C:\Windows\System32;C:\Windows;C:\Windows\System32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files (x86)\Autodesk\Backburner\;C:\Program Files (x86)\QuickTime Alternative\QTSystem
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Brand\AppData\Local\DisplayFusion\Wallpaper_2.png
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled) 
Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled) 
Local Area Connection* 15: NordVPN LightWeight Firewall -> NordLwf (enabled) 
Wi-Fi 2: NordVPN LightWeight Firewall -> NordLwf (enabled) 
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled) 
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "pac"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "AdobeCS5.5ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "BrHelp"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\StartupApproved\StartupFolder: => "GenuineService.lnk"
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\StartupApproved\StartupFolder: => "NordVPN.lnk"
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\StartupApproved\Run: => "GoToMeeting"
HKU\S-1-5-21-3263392716-3795951453-2356704799-1001\...\StartupApproved\Run: => "com.blitz.app"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E4A29041-38D0-4B1C-98FE-D6598F009C41}] => (Allow) C:\Program Files (x86)\InstallShield Installation Information\{BB281145-A521-2EF3-B593-C5D534DC9911}\orchestrator.exe (MS) [File not signed]
FirewallRules: [{2F7997A5-22D2-4232-AAF4-F430AC32E830}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => No File
FirewallRules: [{5D65C540-0273-437B-A7EF-D441E781432F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe => No File
FirewallRules: [{727FA36E-814E-467C-B578-3B0AF2710D16}] => (Allow) C:\Users\Brand\Downloads\microsoft-toolkit-Activator\microsoft-toolkit-Activator\microsoft-toolkit-2.6.5\Microsoft Toolkit.exe => No File
FirewallRules: [{CC1FEB37-BF0D-44F1-9FFD-7751BCA248C5}] => (Allow) C:\Users\Brand\Downloads\microsoft-toolkit-Activator\microsoft-toolkit-Activator\microsoft-toolkit-2.6.5\Microsoft Toolkit.exe => No File
FirewallRules: [{EA241825-786B-440A-85D2-17A46E26CF70}] => (Allow) C:\Users\Brand\Downloads\[]Microsoft Office Professional Plus (x64) 2013 Incl  Activator  P2P\Microsoft Toolkit.exe => No File
FirewallRules: [{61E4984C-93E1-49F2-AA96-173151D5CF9A}] => (Allow) C:\Users\Brand\Downloads\[]Microsoft Office Professional Plus (x64) 2013 Incl  Activator  P2P\Microsoft Toolkit.exe => No File
FirewallRules: [UDP Query User{B204B7B0-7E33-4DE5-83A5-81E488C1DEC6}C:\users\brand\downloads\forgefx-forgefx-windows-dev-980\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-dev-980\cat aap experience.exe => No File
FirewallRules: [TCP Query User{ED96F4BE-B0B2-4161-B3F1-D48755913441}C:\users\brand\downloads\forgefx-forgefx-windows-dev-980\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-dev-980\cat aap experience.exe => No File
FirewallRules: [UDP Query User{0CEC2499-79BB-4788-80BB-325E093339E8}C:\users\brand\downloads\forgefx-forgefx-windows-dev-971\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-dev-971\cat aap experience.exe => No File
FirewallRules: [TCP Query User{7E0A4232-2533-41E3-AEC6-6708989DFAA4}C:\users\brand\downloads\forgefx-forgefx-windows-dev-971\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-dev-971\cat aap experience.exe => No File
FirewallRules: [UDP Query User{E1009E90-5FDE-4F2A-B3D5-7276F4450143}C:\users\brand\downloads\forgefx-forgefx-windows-887\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-887\cat aap experience.exe => No File
FirewallRules: [TCP Query User{5C899041-7CC5-416E-9EFF-98EFE171EB76}C:\users\brand\downloads\forgefx-forgefx-windows-887\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-887\cat aap experience.exe => No File
FirewallRules: [UDP Query User{4B14F495-F932-4CB6-BB7E-2B2B0E72F471}C:\users\brand\downloads\forgefx-forgefx-windows-789\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-789\cat aap experience.exe => No File
FirewallRules: [TCP Query User{F5689D91-616B-44B8-BAED-E8412B5ED12A}C:\users\brand\downloads\forgefx-forgefx-windows-789\cat aap experience.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-789\cat aap experience.exe => No File
FirewallRules: [UDP Query User{A5D11FEC-1F7F-4C96-8A5B-42A4E4385692}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{CC224A98-587E-4284-A6E3-D4B001EF29AD}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{144A0E28-C7CD-4267-9FCF-7B22369C766B}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-150\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-150\jlg accessready xr.exe => No File
FirewallRules: [TCP Query User{15AA02EF-6CEB-4B29-8AFC-D4D25938F50E}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-150\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-150\jlg accessready xr.exe => No File
FirewallRules: [UDP Query User{0DC64683-2C02-4E7F-B546-5B81A4B66809}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe => No File
FirewallRules: [TCP Query User{FB0762D1-DC57-4357-9385-F11E259848A2}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe => No File
FirewallRules: [UDP Query User{25ECC272-6778-4A57-95D3-EDB4AE213FB2}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-137\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-137\jlg accessready xr.exe => No File
FirewallRules: [TCP Query User{41671F9C-D9B9-4F2C-AAA9-AD46B01548DB}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-137\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-137\jlg accessready xr.exe => No File
FirewallRules: [UDP Query User{E4486BB9-E88A-4E5B-B43C-756AD9C89EAB}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-129\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-129\jlg accessready xr.exe => No File
FirewallRules: [TCP Query User{FD65597D-BBBB-42F2-86C5-ED35BB8EFAB8}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-129\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-129\jlg accessready xr.exe => No File
FirewallRules: [{3ECC7B81-0BDD-4DAE-8FF9-25CA7E8160D9}] => (Block) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-125\jlg accessready xr.exe => No File
FirewallRules: [{FE76BB6F-01EF-448E-B125-27641F89226A}] => (Block) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-125\jlg accessready xr.exe => No File
FirewallRules: [UDP Query User{CF879ED7-7073-4557-9F50-47B1FE38362C}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-125\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-125\jlg accessready xr.exe => No File
FirewallRules: [TCP Query User{3CF91A7C-BF78-4CB8-B0A9-F791C0B0729E}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-125\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-125\jlg accessready xr.exe => No File
FirewallRules: [{B6D194A7-0502-46FE-9720-07FBC60D2581}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DAD0FCA1-248F-4BCF-97EE-14B42810F5C6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E927AA98-9B07-4E1D-8EC5-EFA42395274A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{58C801BA-E413-4DDF-9E06-14EB8CDFE02C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5AFB4A37-D974-47EA-B21E-DFEA270AA06F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{0A7DA039-7E75-428A-A8A4-0CBBC3433EB6}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-111\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-111\jlg accessready xr.exe => No File
FirewallRules: [TCP Query User{6AA7E7A5-55DA-4C2C-AE45-FA0CE8EAB6DD}C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-111\jlg accessready xr.exe] => (Allow) C:\users\brand\downloads\forgefx-jlg-accessready-xr-windows-111\jlg accessready xr.exe => No File
FirewallRules: [UDP Query User{43DD5DE0-31D9-4C30-9C72-B2AE48C2DD6C}C:\users\brand\downloads\forgefx-forgefx-windows-453\caterpillar sim.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-453\caterpillar sim.exe => No File
FirewallRules: [TCP Query User{6C4B161A-7E63-43B4-A5EE-FDECE66BCF9A}C:\users\brand\downloads\forgefx-forgefx-windows-453\caterpillar sim.exe] => (Allow) C:\users\brand\downloads\forgefx-forgefx-windows-453\caterpillar sim.exe => No File
FirewallRules: [{A6BBCC14-DC2A-4EC4-8769-584CF06022A9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{13F907ED-B209-4E38-8709-86E46863F76E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{09790B8F-7B8F-4BC7-B414-373809668339}] => (Allow) LPort=54925
FirewallRules: [{4CEF67E5-6261-474F-88E2-D0CC04AB7387}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File
FirewallRules: [{2641F508-20D4-426C-A5A8-5FB28230BD9C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A1B320C1-88B6-459F-8D39-BEC14F7C42D2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2F067ED2-93C9-47DC-B06E-9B907F10C80B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{05917D06-1B16-4A48-AD17-F7E36E839A31}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8FBC0378-09AA-40FC-97FD-D8D1982CC088}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe => No File
FirewallRules: [{FE481C1C-9763-4117-9E65-15C2D0C07770}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe => No File
FirewallRules: [{B7A8212C-134E-433A-9CBB-3E6F99969501}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe => No File
FirewallRules: [{2C52C5D2-18EA-45B5-B355-3B95D60550E8}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe => No File
FirewallRules: [{49E7D23A-D8AD-4D22-B966-076D32436245}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe => No File
FirewallRules: [{0710C298-5330-415D-8500-41B9EED002AF}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe => No File
FirewallRules: [{34DDC25C-8552-4B54-AD19-518D8D315E5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Escape First\EscapeFirst.exe () [File not signed]
FirewallRules: [{AE35E771-FA21-4A89-AD04-E1B26057DE80}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Escape First\EscapeFirst.exe () [File not signed]
FirewallRules: [{C9B80561-C6A4-4F37-BEB9-97CC23CE816D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tilt Brush\TiltBrush.exe () [File not signed]
FirewallRules: [{14EDA6C9-3C73-44C7-B6F1-A93C41DCA217}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tilt Brush\TiltBrush.exe () [File not signed]
FirewallRules: [UDP Query User{879CFD42-A8E7-4D8A-8796-5A36E5371F5F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{2A113572-9841-41A5-AA62-9EE80050EC0B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{3D854A40-BFFD-4EBB-BF8C-5C0531575C7A}C:\users\brand\downloads\v0.992\sak_v0.992.exe] => (Allow) C:\users\brand\downloads\v0.992\sak_v0.992.exe => No File
FirewallRules: [TCP Query User{8941E37F-798A-4C5D-B6C6-2A1E78075DD8}C:\users\brand\downloads\v0.992\sak_v0.992.exe] => (Allow) C:\users\brand\downloads\v0.992\sak_v0.992.exe => No File
FirewallRules: [UDP Query User{5B06DC33-83D0-4658-9EB1-D97C9221BEAC}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{EBBCF1CF-3FFF-49D9-B580-F9104EB726C1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{48BE8D6B-F439-4159-88B5-EF70012EA155}C:\users\brand\downloads\sak_v0.996_windows\v0.996\sak_v0.996.exe] => (Allow) C:\users\brand\downloads\sak_v0.996_windows\v0.996\sak_v0.996.exe => No File
FirewallRules: [TCP Query User{9ACEB40F-5D2C-439D-A866-9AAA9C2DF00A}C:\users\brand\downloads\sak_v0.996_windows\v0.996\sak_v0.996.exe] => (Allow) C:\users\brand\downloads\sak_v0.996_windows\v0.996\sak_v0.996.exe => No File
FirewallRules: [UDP Query User{7CF05560-B7F8-47EE-BBED-6F22BA05B902}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [File not signed]
FirewallRules: [TCP Query User{1B433E62-F3D8-4527-BF7B-A1E632DA9BF2}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [File not signed]
FirewallRules: [UDP Query User{AF0A5612-DED2-484C-88C1-B00B1BD27632}C:\users\brand\downloads\sak_v0.994_windows\v0.994\sak_v0.994.exe] => (Allow) C:\users\brand\downloads\sak_v0.994_windows\v0.994\sak_v0.994.exe => No File
FirewallRules: [TCP Query User{0C17115C-7054-4097-B139-785402E8C64A}C:\users\brand\downloads\sak_v0.994_windows\v0.994\sak_v0.994.exe] => (Allow) C:\users\brand\downloads\sak_v0.994_windows\v0.994\sak_v0.994.exe => No File
FirewallRules: [UDP Query User{D37C2496-2F3F-4F87-BA84-1165711D2E07}C:\users\brand\downloads\sak_v0.995_windows\v0.995\sak_v0.995.exe] => (Allow) C:\users\brand\downloads\sak_v0.995_windows\v0.995\sak_v0.995.exe => No File
FirewallRules: [TCP Query User{6CE13B6E-5A47-4933-A949-A9D8F0851780}C:\users\brand\downloads\sak_v0.995_windows\v0.995\sak_v0.995.exe] => (Allow) C:\users\brand\downloads\sak_v0.995_windows\v0.995\sak_v0.995.exe => No File
FirewallRules: [{74F26BA5-BDAD-47CA-8735-CD8DDE96A87E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5EDFBE71-F331-4F24-8220-E4C9FAB8FD91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EDC4B58B-9A6D-4229-9D8B-9F8B6E3A5D82}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe => No File
FirewallRules: [{78E05055-0368-4372-82DC-56E8A277B409}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48DA280B-C696-421D-AEF0-0FC71B5584D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D16EA72F-06F5-48F1-B8B4-4A0EDD88B20C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D9063EF3-3DE4-4B52-B74E-FC2BB85BED1B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6CCBBE7D-7006-457A-A9D3-89015B3D3F4A}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe => No File
FirewallRules: [{075F52A6-0E74-4D6B-B36C-363C14E3D397}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe => No File
FirewallRules: [{88BF7F7A-CA5A-42B8-AE61-4E66D14DD9A4}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe => No File
FirewallRules: [{0C0A8C67-4DCC-411E-AB23-0C4D633C7D08}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe => No File
FirewallRules: [TCP Query User{DE6ECC22-349B-4E8B-B041-E91802A3E72E}C:\users\brand\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\brand\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [UDP Query User{662F1723-26B7-4940-88F5-E25F6F2240A9}C:\users\brand\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\brand\appdata\roaming\spotify\spotify.exe => No File
FirewallRules: [{B9E60829-0549-46C8-A367-E41E17B084A6}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe () [File not signed]
FirewallRules: [{8B5A2B3F-2610-40F1-9100-1DA1EDE4680E}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe () [File not signed]
FirewallRules: [{F19D77BD-0DDD-4916-B68A-0B3E1C6F7326}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe (NVIDIA ARC GmbH) [File not signed]
FirewallRules: [{F11CCC75-6183-4BE0-9269-94C2AAE3C6EF}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe (NVIDIA ARC GmbH) [File not signed]
FirewallRules: [TCP Query User{27CE9C13-1085-4064-9E1A-A09A390978B0}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [File not signed]
FirewallRules: [UDP Query User{359DC4C7-3515-4AC3-93A0-AF5989EFEB40}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [File not signed]
FirewallRules: [{C0265AA8-F172-44DF-B481-AE6F452564A6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E5CB210F-A498-4AD1-8FDE-2C22D574A1F6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7D12849A-B618-4F25-A157-E5B7B761D1D2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{AEFF0400-0E5C-42FA-92A4-08F496C738F9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{A41C053F-8DF7-4399-937E-6B3FB234AECE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{9656EDE6-0D70-47BC-B74D-B1A0CDFC5907}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{803656D5-4593-408A-B57E-8A74969C7D21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{29BC87F5-F07E-414D-8145-10A5F352179E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{3287FACC-F8F0-4E73-A0DD-0AB79CD9F2E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SUPERHOT VR\SUPERHOTVR.exe () [File not signed]
FirewallRules: [{D9AACF1F-6EEB-42D2-A563-E758EB0C1414}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SUPERHOT VR\SUPERHOTVR.exe () [File not signed]
FirewallRules: [{39A300DA-457C-4232-BD1A-61E380D8476C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DuckSeason\DuckSeason\DuckSeason.exe () [File not signed]
FirewallRules: [{7098EB26-1D64-460F-9EC3-95CC8F3C580C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DuckSeason\DuckSeason\DuckSeason.exe () [File not signed]
FirewallRules: [{6554EFD1-5DAB-4E0D-ACDE-3DA8EFB4946D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Exodus\MassExodus.exe () [File not signed]
FirewallRules: [{BE7D7D1C-C4CF-4C84-A580-779CB155607A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Exodus\MassExodus.exe () [File not signed]
FirewallRules: [{1251C337-D2BC-406B-AB6E-BA716EAF34DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> Valve Corporation)
FirewallRules: [{D3F2BB2C-4D0F-4436-A64A-A70139751305}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> Valve Corporation)
FirewallRules: [{E0A9091B-7A71-4614-8B5B-0E30D96E41D2}] => (Allow) C:\Program Files\Oculus\Software\Software\gunfire-games-llc-fos\FoS\FoS.exe => No File
FirewallRules: [{416F2DD7-CECA-45FA-A7D5-AA5DABC27CB1}] => (Allow) C:\Program Files\Oculus\Software\Software\gunfire-games-llc-fos\FoS\FoS.exe => No File
FirewallRules: [{858240CD-97CF-46C9-A34D-249C82E130FB}] => (Allow) C:\Program Files\Oculus\Software\Software\gunfire-games-llc-fos\FoS\FoS\Binaries\Win64\FoS-Win64-Shipping.exe => No File
FirewallRules: [{9199DADE-D43F-4EC3-B480-1D56BF9958D8}] => (Allow) C:\Program Files\Oculus\Software\Software\gunfire-games-llc-fos\FoS\FoS\Binaries\Win64\FoS-Win64-Shipping.exe => No File
FirewallRules: [{0C32AC9C-C868-4B8F-AF57-35C9003D8DFF}] => (Allow) LPort=9143
FirewallRules: [{4516C17A-4754-4EF9-934E-289BF61D0D4F}] => (Allow) LPort=2333
FirewallRules: [{3A468CE5-ABE3-420E-8606-A7D983E57955}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\EpicRollerCoasters.exe => No File
FirewallRules: [{D35608CD-08E6-43ED-B1D4-978BDB80F723}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\EpicRollerCoasters.exe => No File
FirewallRules: [{9EF80705-06B9-4885-9669-4781502C63ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DreamsOfDali\DreamsOfDali.exe () [File not signed]
FirewallRules: [{87C33E84-CB0B-44FE-9F8F-67D8F58C390D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DreamsOfDali\DreamsOfDali.exe () [File not signed]
FirewallRules: [{BC235C82-23B5-4593-894C-8097BB1CE7F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\supermedium\Supermedium.exe (Mozilla Corporation) [File not signed]
FirewallRules: [{D2D2A07C-802D-47F0-A48D-ACD367A237A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\supermedium\Supermedium.exe (Mozilla Corporation) [File not signed]
FirewallRules: [TCP Query User{F2E8B38C-8A06-4D73-ADE7-A623097408AF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{B2EC7FEF-2681-4CDB-BBF7-9C60E22AD7BE}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe => No File
FirewallRules: [{94D51450-989C-4806-8DA0-2F841F8F80FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E8CB1CD0-6B5E-44C8-874D-64ACE812B05B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C1208FA8-9C2E-457B-9BD5-06AA80D612C9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BC0AF263-7C93-4933-9317-E71675214A1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D064FF98-C9ED-4065-8279-69F99BC324E4}] => (Allow) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{58F2B151-29A0-4F10-8B2B-8869C1E52880}] => (Block) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{1D8F61E1-58C1-4F88-B274-0BD12C75E8C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Exogen VR\Exogen.exe (Axon Genesis LLC -> )
FirewallRules: [{8F4703CB-BE78-4779-BAFC-2035178C4F4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Exogen VR\Exogen.exe (Axon Genesis LLC -> )
FirewallRules: [{604DA507-88EE-457E-8F11-85561309EDA0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sacred Siren\SacredSiren.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{6E1F2FC3-09F0-4B40-A3CA-D52E0F17D417}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sacred Siren\SacredSiren.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{653B36C2-6F4F-4D21-844C-13B22955492F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A Lullaby of Colors VR\A Lullaby of Colors.exe () [File not signed]
FirewallRules: [{1599913E-E44B-4866-A6E0-C17412AD5F2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A Lullaby of Colors VR\A Lullaby of Colors.exe () [File not signed]
FirewallRules: [{35492F7A-9385-4B61-9321-1D66045F8FDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fractal Gallery VR\FractalGalleryVR.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{8749929F-ACA3-46DD-9E4D-75925CC2025D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fractal Gallery VR\FractalGalleryVR.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{0740072B-9DF2-45CA-878E-635470DC09A0}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe () [File not signed]
FirewallRules: [{F9081547-E8A5-47DF-B656-3A0D8CB987E8}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe () [File not signed]
FirewallRules: [{9A2A8EF7-A03F-4E48-B928-87A1195FC636}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\theBlu\theblu.exe () [File not signed]
FirewallRules: [{B548FAD9-A67C-4389-9F36-CE9DA98B1F61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\theBlu\theblu.exe () [File not signed]
FirewallRules: [{0B65ECAE-6F18-4846-A853-2B897C9B0FC0}] => (Allow) C:\Users\Brand\AppData\Roaming\Resilio Sync\Resilio Sync.exe => No File
FirewallRules: [{B1FDE9A1-EBCC-408B-B12A-433DDA8DAA5C}] => (Allow) C:\Users\Brand\AppData\Roaming\Resilio Sync\Resilio Sync.exe => No File
FirewallRules: [{3C38B12F-9A9E-4935-85BF-45E4FE477CF0}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBDC643E-5AB1-4AB7-BBD7-60813CB880E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\Epic Roller Coasters.exe () [File not signed]
FirewallRules: [{720C0A8C-03AC-494A-9876-7F3174E0EC8F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\Epic Roller Coasters.exe () [File not signed]
FirewallRules: [{81886505-8B74-413D-A7C6-7AB92C7433CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anima\Anima.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{043A199F-2FD2-4678-B6DB-AC1DB5CAEA9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anima\Anima.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{D1DC755B-6EAC-4F58-9221-7A4B93366705}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Show It 2 Me\sitm_leverBuild_v2.exe () [File not signed]
FirewallRules: [{57FA6F3B-5124-43CF-B7BC-CD98B8662CD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Show It 2 Me\sitm_leverBuild_v2.exe () [File not signed]
FirewallRules: [{619D5E8B-1549-4B58-8CE2-A8314B5CB675}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shattered Lights\Project.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{43C6FB57-F5F2-46F0-99D5-B7F147D74376}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shattered Lights\Project.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{AB6624D5-AE5A-4957-914A-F82668C46C50}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe => No File
FirewallRules: [{C32D28F0-70C5-43EF-A424-670C2E96FB02}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe => No File
FirewallRules: [{6AE89F2B-9588-4446-8BA1-511382B45088}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe => No File
FirewallRules: [{18D3AC4E-F533-4BAC-AEE6-2ECEA2336896}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]
FirewallRules: [{2B69F937-4AF8-418C-A4EA-C97D8FB7A764}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]
FirewallRules: [{470CE7CB-649C-46F5-882E-30E52F8F6F73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SinVR\SinVR.exe () [File not signed]
FirewallRules: [{74591F61-D283-4CD9-9E72-38DF1E0AB563}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SinVR\SinVR.exe () [File not signed]
FirewallRules: [{7A87C798-3E53-4AF9-A5BE-4776B401FEDA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SinVR\SinNoVR.exe () [File not signed]
FirewallRules: [{6CE362A9-470A-4922-BA5A-CED6C5FDE3DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SinVR\SinNoVR.exe () [File not signed]
FirewallRules: [{86302AC5-A213-4314-876A-CB3EEDABF84D}] => (Block) C:\Program Files (x86)\Bandicam\bdcam.exe (Bandisoft -> www.Bandisoft.com)
FirewallRules: [{0AECFB69-3A99-4922-AB89-F4442180B48E}] => (Block) C:\Program Files (x86)\Bandicam\bdcam.exe (Bandisoft -> www.Bandisoft.com)
FirewallRules: [{959AF0F7-4DD8-414E-A5E3-1E9B6F17D39C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shadowverse\Shadowverse.exe () [File not signed]
FirewallRules: [{25F40C9F-0E27-4580-9F70-3443612402CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shadowverse\Shadowverse.exe () [File not signed]
FirewallRules: [{FDA2D3EF-09F7-45AE-B670-7E14C34E8F27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Waltz of the Wizard Extended Edition\Waltz of the Wizard Extended Edition.exe () [File not signed]
FirewallRules: [{D4251B8D-AD2B-4A66-A357-716C88B45D1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Waltz of the Wizard Extended Edition\Waltz of the Wizard Extended Edition.exe () [File not signed]
FirewallRules: [{8BB0D543-645C-4761-A5EC-719026809C3D}] => (Allow) C:\Program Files\Unity Hub\Unity Hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [{A948A447-E28E-4BBA-B252-EAC406FBFCE6}] => (Allow) C:\Program Files\Unity\Hub\Editor\2019.4.15f1\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{3ACF3722-17D0-408A-85E5-DC0A632CA527}] => (Block) C:\Program Files\Unity\Hub\Editor\2019.4.15f1\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{1798FE66-FFFC-4EB9-875A-41D11849590D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{69836460-06D7-4902-A160-9688D8D89F0D}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{4066D0F1-631D-4F0D-83EC-311641AC2A2D}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B33E4CF6-1827-4CA0-8CFF-CDD0158728DF}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{62EF5013-FF40-4194-B400-01C2AD2332B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6AA3ED11-C4B5-4E94-B82F-4277B8C89962}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{77B4E8E5-1F7E-4B8C-9539-EDB306B84EEC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2778BBCC-1315-413F-A50E-831D35E4AD8B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C2B9EC1B-0562-46DC-BDB3-3CC4C118B247}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A4593225-8C87-4826-A20D-9129990190F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E7B6BD3F-34FB-49D8-95D8-CD7C4A86EAE3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{666F7EE9-E3DF-4ECA-B006-ED22A17E8C28}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2818A15E-55F4-4882-A102-3C8CAFB52CAF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Restore Points =========================
22-12-2020 00:22:42 Scheduled Checkpoint
30-12-2020 02:12:43 Scheduled Checkpoint
06-01-2021 17:34:25 Windows Update
==================== Faulty Device Manager Devices ============
Name: Bluetooth Device (Personal Area Network) #5
Description: Bluetooth Device (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Qualcomm Atheros QCA61x4A Wireless Network Adapter
Description: Qualcomm Atheros QCA61x4A Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: Qcamain10x64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Intel® Ethernet Connection (2) I219-V
Description: Intel® Ethernet Connection (2) I219-V
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: e1dexpress
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (01/07/2021 02:07:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x2c98
Faulting application start time: 0x01d6e4d053b5e295
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: bbeeeb08-8546-46f3-b601-544888a47f7d
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
Error: (01/07/2021 01:52:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x3e50
Faulting application start time: 0x01d6e4ce3b4631f9
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: 23b47f17-cdfb-4de7-9650-216baf5d634d
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
Error: (01/07/2021 01:35:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x2774
Faulting application start time: 0x01d6e4cbddff0f77
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: 9e0604d9-a4a7-4607-9b5c-1acea669cf2b
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
Error: (01/07/2021 01:20:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x1d38
Faulting application start time: 0x01d6e4c9bc8b85c3
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: 3cdf5c78-28a6-4732-b443-b0535cf413a2
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
Error: (01/07/2021 01:00:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x3364
Faulting application start time: 0x01d6e4c7066dde2d
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: 406d8e76-eaf0-4422-b078-04998e1c1428
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
Error: (01/07/2021 12:46:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x492c
Faulting application start time: 0x01d6e4c4f4bcb925
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: e8f42dae-824f-48e1-ad58-507391a18dc5
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
Error: (01/07/2021 12:35:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x44c8
Faulting application start time: 0x01d6e4c376beb0df
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: 69ae4fc5-ec77-49d8-9f7e-624aef7ee72a
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
Error: (01/07/2021 12:20:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: backgroundTaskHost.exe, version: 10.0.18362.1, time stamp: 0x533f8404
Faulting module name: twinapi.appcore.dll, version: 10.0.18362.1171, time stamp: 0x3e66f34f
Exception code: 0xc000027b
Fault offset: 0x00000000000d65d8
Faulting process id: 0x4ac0
Faulting application start time: 0x01d6e4c1547276ff
Faulting application path: C:\WINDOWS\system32\backgroundTaskHost.exe
Faulting module path: C:\Windows\System32\twinapi.appcore.dll
Report Id: eeedd3fa-226b-47bf-95f2-8415824a6c08
Faulting package full name: 52295McMullenSoftware.TileGenie_1.3.0.1_neutral__kfbqnnmtpr2vc
Faulting package-relative application ID: App
System errors:
=============
Error: (01/07/2021 02:17:01 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126
Error: (01/07/2021 02:16:48 AM) (Source: RtlWlanu) (EventID: 5006) (User: )
Description: TP-Link Wireless USB Adapter : The version number is incorrect for this driver.
Error: (01/07/2021 02:11:10 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126
Error: (01/06/2021 09:07:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AdskLicensingService service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
Error: (01/06/2021 09:07:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (45000 milliseconds) while waiting for the AdskLicensingService service to connect.
Error: (01/06/2021 09:07:28 PM) (Source: IntelHaxm) (EventID: 10) (User: )
Description: HAXM can't work on system with VT disabled
Error: (01/06/2021 09:07:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The NDivert service failed to start due to the following error: 
The driver was not loaded because it failed its initialization call.
Error: (01/06/2021 09:07:28 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.
Module Path: C:\WINDOWS\system32\Rtlihvs.dll
Error Code: 126
Windows Defender:
===================================
Date: 2021-01-06 21:07:30.790
Description: 
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Behavior Monitoring
Error Code: 0x80004005
Error description: Unspecified error 
Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest security intelligence updates in order to enable real-time protection.
Date: 2021-01-06 09:32:57.959
Description: 
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Behavior Monitoring
Error Code: 0x80004005
Error description: Unspecified error 
Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest security intelligence updates in order to enable real-time protection.
Date: 2021-01-04 13:24:50.089
Description: 
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Behavior Monitoring
Error Code: 0x80004005
Error description: Unspecified error 
Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest security intelligence updates in order to enable real-time protection.
Date: 2021-01-04 13:19:27.538
Description: 
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Behavior Monitoring
Error Code: 0x80004005
Error description: Unspecified error 
Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest security intelligence updates in order to enable real-time protection.
Date: 2021-01-03 14:44:43.102
Description: 
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Behavior Monitoring
Error Code: 0x80004005
Error description: Unspecified error 
Reason: The filter driver requires an up-to-date engine in order to function. You must install the latest security intelligence updates in order to enable real-time protection.
CodeIntegrity:
===================================
Date: 2020-10-20 03:11:57.840
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-10-20 03:09:44.286
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-10-14 18:29:50.726
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-10-14 16:06:26.329
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-10-14 13:29:43.093
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-10-13 23:18:49.693
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-09-30 12:09:54.587
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-09-29 13:35:49.187
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info =========================== 
BIOS: American Megatrends Inc. 3805 05/16/2018
Motherboard: ASUSTeK COMPUTER INC. Z170I PRO GAMING
Processor: Intel® Core™ i7-6700K CPU @ 4.00GHz
Percentage of memory in use: 32%
Total physical RAM: 32636.39 MB
Available physical RAM: 21909.25 MB
Total Virtual: 37500.39 MB
Available Virtual: 24337.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:952.48 GB) (Free:324.84 GB) NTFS
\\?\Volume{79876d65-f2ef-4e61-9a6d-c6674bb94948}\ (Recovery) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{3dbccf00-2968-4745-b8f1-08a3b4978ccc}\ () (Fixed) (Total:0.84 GB) (Free:0.33 GB) NTFS
\\?\Volume{005d8ef8-93cf-49eb-a8b0-bc600948783e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: DBBB7910)
Partition: GPT.
==================== End of Addition.txt =======================
For literaly any single human soul that actually read all of the above gobbledy-gook, you are my hero. You specifically. Even just scrolling all the way through this text entry field takes some work, and I know you're essentially just solving a stranger's computer problems for free on your own time. Like a hobby. (Is it a hobby? Is that how you see it? Or is it more like charity work? haha)

Let's block ads! (Why?)



"blank" - Google News
January 07, 2021 at 04:20PM
https://ift.tt/2XfSl4I

Chrome randomly opens blank new tabs 3/4 times per day - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer
"blank" - Google News
https://ift.tt/3aXU3fw
https://ift.tt/2Wij67R

Bagikan Berita Ini

Related Posts :

0 Response to "Chrome randomly opens blank new tabs 3/4 times per day - Virus, Trojan, Spyware, and Malware Removal Help - BleepingComputer"

Post a Comment

Subscribe to: Post Comments (Atom)
Powered by Blogger.