Here’s the additional report from FRST:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by valued customer (02-10-2022 15:52:22)
Running from C:Usersvalued customerDownloads
Microsoft Windows 10 Home Version 21H1 19043.2006 (X64) (2020-10-25 22:45:57)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1612100080-1659462607-2348990995-500 – Administrator – Disabled)
ASPNET (S-1-5-21-1612100080-1659462607-2348990995-1004 – Limited – Enabled)
DefaultAccount (S-1-5-21-1612100080-1659462607-2348990995-503 – Limited – Disabled)
Guest (S-1-5-21-1612100080-1659462607-2348990995-501 – Limited – Disabled)
HomeGroupUser$ (S-1-5-21-1612100080-1659462607-2348990995-1002 – Limited – Enabled)
valued customer (S-1-5-21-1612100080-1659462607-2348990995-1000 – Administrator – Enabled) => C:Usersvalued customer
WDAGUtilityAccount (S-1-5-21-1612100080-1659462607-2348990995-504 – Limited – Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled – Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled – Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM…{0EBC740B-4363-489B-8C27-98CE0740BA19}) (Version: 18.2.4 – Hewlett-Packard) Hidden
7-Zip 22.01 (x64 edition) (HKLM…{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 – Igor Pavlov)
Acronis Drivers (HKLM…{D14AFBC4-8A8B-4C2D-8395-1F08C163AF14}) (Version: 26.0.39450 – Acronis) Hidden
Acronis True Image for Crucial (HKLM-x32…{C677BFD0-993E-4372-8E20-E1C7AD080715}) (Version: 26.0.39450 – Acronis) Hidden
Acronis True Image for Crucial (HKLM-x32…{C677BFD0-993E-4372-8E20-E1C7AD080715}Visible) (Version: 26.0.39450 – Acronis)
Adobe Acrobat Reader DC (HKLM-x32…{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 22.002.20212 – Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32…{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 – Adobe Systems Incorporated) Hidden
AMD Problem Report Wizard (HKLM…{B1B7A16B-800D-8866-9F07-3DB5C9300B36}) (Version: 3.1.723.0 – Advanced Micro Devices, Inc.) Hidden
AMD Settings (HKLM…WUCCCApp) (Version: 2020.0821.1329.24282 – Advanced Micro Devices, Inc.)
AMD Software (HKLM…AMD Catalyst Install Manager) (Version: 19.4.1 – Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32…{9738288C-21BC-4F54-AB4F-72F059339376}) (Version: 8.6 – Apple Inc.)
Apple Application Support (64-bit) (HKLM…{DEB339C1-2687-43AB-816A-8714F3E26846}) (Version: 8.6 – Apple Inc.)
Apple Mobile Device Support (HKLM…{2B3CA448-5266-480F-85FA-2FCCB3C8712C}) (Version: 15.6.0.32 – Apple Inc.)
Apple Software Update (HKLM-x32…{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 – Apple Inc.)
Autodesk Fusion 360 (HKUS-1-5-21-1612100080-1659462607-2348990995-1000…73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.5811 – Autodesk, Inc.)
Avast Free Antivirus (HKLM…Avast Antivirus) (Version: 22.9.6034 – Avast Software)
Avast Secure Browser (HKLM-x32…Avast Secure Browser) (Version: 105.0.18469.127 – AVAST Software)
Baldur’s Gate II: Enhanced Edition (HKLM-x32…1207666373_is1) (Version: 2.6.6.0 – GOG.com)
Barbarian Invasion (HKLM-x32…{FD69C8CB-6964-432C-98AB-A5A09ED50EEA}) (Version: 1.4 – )
Bethesda.net Launcher (HKLM-x32…{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.43.4 – Bethesda Softworks)
Bonjour (HKLM…{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 – Apple Inc.)
Bonus Pack 2017 (HKLM-x32…{CD9E90C5-8567-4CB3-AF48-0016A85FAD28}) (Version: 1.0.0.7 – Creative Home)
BOSS (HKLM…BOSS) (Version: 2.3.2 – BOSS Development Team)
Branding64 (HKLM…{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 – Advanced Micro Devices, Inc.) Hidden
Creation Kit: Fallout 4 (HKLM-x32…Creation Kit: Fallout 4) (Version: – Bethesda Softworks)
Crysis (HKLM-x32…1809223221_is1) (Version: 2.0.0.7 – GOG.com)
Dead Space (HKLM-x32…1312818781_is1) (Version: 2.0.0.2 – GOG.com)
Dragon Age: Origins (HKLM-x32…{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05 – Electronic Arts, Inc.)
Dropbox (HKLM-x32…Dropbox) (Version: 158.4.4564 – Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32…{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.639.1 – Dropbox, Inc.) Hidden
EaseUS Data Recovery Wizard (HKLM…EaseUS Data Recovery Wizard_is1) (Version: – EaseUS)
Epic Games Launcher (HKLM-x32…{3ECF91A4-EE22-4A3A-921F-36ECAA04C13D}) (Version: 1.1.147.0 – Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM…{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
EPSON WorkForce 320 Series Printer Uninstall (HKLM…EPSON WorkForce 320 Series) (Version: – SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32…{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j – SEIKO EPSON CORPORATION)
EpsonNet Setup 3.3 (HKLM-x32…{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3b – SEIKO EPSON CORPORATION)
Eraser 6.2.0.2979 (HKLM…{C5900DE9-D199-4C27-B692-354C9A6A6C8B}) (Version: 6.2.2979 – The Eraser Project)
ESET Online Scanner v3 (HKLM-x32…ESET Online Scanner) (Version: – )
Everything 1.4.1.992 (x64) (HKLM…Everything) (Version: 1.4.1.992 – voidtools)
Fallout (HKLM-x32…1440148836_is1) (Version: 1.2 – GOG.com)
Fallout 2 (HKLM-x32…1440151285_is1) (Version: 2.1.0.18 – GOG.com)
Fallout: New Vegas (HKLM-x32…1454587428_is1) (Version: 1.4.0.525(a) – GOG.com)
FotoSketcher 2.99 (HKLM-x32…{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1) (Version: – David THOIRON)
Free Download Manager (HKLM…{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 – FreeDownloadManager.ORG)
Glary Utilities 5.192 (HKLM-x32…Glary Utilities 5) (Version: 5.192.0.221 – Glarysoft Ltd)
GOG GALAXY (HKLM-x32…{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: – GOG.com)
Google Chrome (HKLM-x32…Google Chrome) (Version: 106.0.5249.91 – Google LLC)
Google Update Helper (HKLM-x32…{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 – Google Inc.) Hidden
Hallmark Card Studio 2017 Deluxe (HKLM-x32…{EA4F7D75-C9E5-4349-AA68-ABF0FEEA90EF}) (Version: 18.0.1.1 – Creative Home)
High-Definition Video Playback (HKLM-x32…{58CB9A9A-1EFB-4EA8-B50C-3097E754AC21}) (Version: 7.3.10800.5.0 – Nero AG) Hidden
HP CLJM277 Scan HP Scan (HKLM-x32…{00B5D716-1806-449B-B4F5-C260A340C232}) (Version: 1.0.302.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 (HKLM-x32…{7ac49734-541c-48e7-99be-02f41e43e79d}) (Version: 14.0.15344.534 – Hewlett-Packard)
HP Color LaserJet Pro MFP M277 Common Files (HKLM…{3E7F5B06-915A-4FB6-A754-893C940C656C}) (Version: 34.0.65.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 Common Files (HKLM-x32…{3F5B4D74-BC36-4F2E-9E56-125C4DE45FEF}) (Version: 34.0.65.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 Digital Filing (HKLM-x32…{D27AB932-AFE8-4FD5-80DC-48962F8DB261}) (Version: 34.0.65.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 Fax (HKLM…{423793B0-7378-461D-9DAE-87FC356DCA1B}) (Version: 34.0.65.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 Fax (HKLM-x32…{61261E49-6F37-4079-8912-BD108805CBAE}) (Version: 34.0.65.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 Fax Driver (HKLM…{885CAB40-59B1-4562-870F-A8C509F1A55F}) (Version: 34.0.65.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 HP Device Toolbox (HKLM-x32…{6B7751BF-8041-40A6-BF76-4E086A32BF5E}) (Version: 34.0.63.0 – Hewlett-Packard Co.) Hidden
HP Color LaserJet Pro MFP M277 Scan Shortcuts (HKLM-x32…{46C9DA77-0A59-47C9-A3E3-1C428836C6A7}) (Version: 34.0.65.0 – Hewlett-Packard Co.) Hidden
HP Product FWUpdater (HKLM-x32…{A0C06CE0-EA53-4E7D-BABB-AE5C5A10B774}) (Version: 4.0.0.8993 – Hewlett-Packard Company) Hidden
HP Unified IO (HKLM…{5C76ED0D-0F6F-4985-8B34-F9AE7834848F}) (Version: 2.0.0.434 – HP) Hidden
HP Unified IO (HKLM-x32…{F1390872-2500-4408-A46C-CD16C960C661}) (Version: 2.0.0.434 – HP) Hidden
HP Update (HKLM-x32…{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 – Hewlett-Packard)
HPCLJProM277 (HKLM-x32…{9A337B35-06E3-4F9D-9B39-5AC9C2E7F82B}) (Version: 1.00.0000 – Hewlett-Packard) Hidden
HPLJUTCore (HKLM-x32…{AA9C0477-A064-4D76-A0C4-A3A5A11F1D4C}) (Version: 020.000.0001 – HP) Hidden
HPLJUTM277 (HKLM-x32…{1FE53D6E-05EA-4D03-BB77-740C9AF03574}) (Version: 014.000.0001 – HP) Hidden
hppM277LaserJetService (HKLM-x32…{3F43C468-BC22-4F88-8382-FF349E724317}) (Version: 001.034.00686 – Hewlett-Packard) Hidden
hpStatusAlerts (HKLM-x32…{6bb3c4d6-a57b-4ab7-a96a-be45a4959fe1}) (Version: 170.040.00260 – HP Development Company, L.P.) Hidden
hpStatusAlertsM277 (HKLM-x32…{651F24A4-7240-4598-BDA3-3F6F86005670}) (Version: 140.046.00129 – Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM-x32…{CF10F6BC-C710-4F6F-B7E1-4057699A59AA}) (Version: 12.3.6.10 – HP)
I.R.I.S. OCR (HKLM-x32…{F20A04CF-5BE6-404A-9295-D59046238245}) (Version: 12.3.6.6 – HP)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32…{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 – Intel Corporation)
iSEEK AnswerWorks English Runtime (HKLM-x32…{18A8E78B-9EF2-496E-B310-BCD8E4C1DAB3}) (Version: 010.000.0101 – Vantage Linguistics)
iTunes (HKLM…{DCBA66F6-FF88-47BF-BC2C-8A8D187911C1}) (Version: 12.12.4.1 – Apple Inc.)
Java 8 Update 211 (HKLM-x32…{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 – Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32…{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
LOOT version 0.16.0 (HKLM-x32…{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.16.0 – LOOT Team)
Macrium Reflect Free Edition (HKLM…{8E0D2C1A-C209-4E34-B31A-89F4471D47CB}) (Version: 7.3.6391 – Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM…MacriumReflect) (Version: 7.3 – Paramount Software (UK) Ltd.)
Magical Jelly Bean KeyFinder (HKLM-x32…KeyFinder_is1) (Version: 2.0.10.13 – Magical Jelly Bean)
Malwarebytes version 4.5.14.210 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.14.210 – Malwarebytes)
Mass Effect™ 3 (HKLM-x32…{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 – Electronic Arts)
Microsoft .NET Framework 1.1 (HKLM-x32…{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 – Microsoft)
Microsoft .NET Framework 4.6.1 (HKLM…{BD6F5371-DAC1-30F0-9DDE-CAC6791E28C3}) (Version: 4.6.01055 – Microsoft Corporation) Hidden
Microsoft .NET Host – 6.0.9 (x64) (HKLM…{C30ABA3F-32C0-43D1-B3B8-9AEFD58A15D9}) (Version: 48.39.47157 – Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver – 6.0.9 (x64) (HKLM…{FD10B803-97FD-4867-9753-8784BC35D2F8}) (Version: 48.39.47157 – Microsoft Corporation) Hidden
Microsoft .NET Runtime – 6.0.9 (x64) (HKLM…{0B4F742D-2D47-4E95-B756-402822D31C48}) (Version: 48.39.47157 – Microsoft Corporation) Hidden
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64) (HKLM…{25E80DAA-FD87-DCE5-202C-CC02F6673002}) (Version: 1.0.0.0 – Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 105.0.1343.53 – Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32…Microsoft EdgeWebView) (Version: 105.0.1343.53 – Microsoft Corporation)
Microsoft Games for Windows – LIVE Redistributable (HKLM-x32…{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 – Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32…{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 – Microsoft Corporation)
Microsoft Office Access MUI (English) 2010 (HKLM-x32…{90140000-0015-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (HKLM-x32…{90140000-0117-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (HKLM-x32…{90140000-0016-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM-x32…Office14.SingleImage) (Version: 14.0.7015.1000 – Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (HKLM…{90140000-002A-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (HKLM-x32…{90140000-00A1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (HKLM-x32…{90140000-001A-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (HKLM-x32…{90140000-0018-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (HKLM-x32…{90140000-001F-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (HKLM-x32…{90140000-001F-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (HKLM-x32…{90140000-001F-0C0A-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (HKLM-x32…{90140000-002C-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (HKLM-x32…{90140000-0019-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (HKLM…{90140000-002A-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (HKLM…{90140000-0116-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (HKLM-x32…{90140000-006E-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (HKLM-x32…{90140000-0115-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (HKLM-x32…{90140000-003D-0000-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (HKLM-x32…{90140000-001B-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 – Microsoft Corporation) Hidden
Microsoft OneDrive (HKUS-1-5-21-1612100080-1659462607-2348990995-1000…OneDriveSetup.exe) (Version: 22.191.0911.0001 – Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32…{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 – Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM…{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 – Microsoft Corporation)
Microsoft Support and Recovery Assistant (HKUS-1-5-21-1612100080-1659462607-2348990995-1000…fcede28c48c3b3fd) (Version: 17.0.5390.13 – Microsoft Corporation)
Microsoft Update Health Tools (HKLM…{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 (HKLM…{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.21022 (HKLM-x32…{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148 (HKLM-x32…{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime – 11.0.50727 (HKLM…{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime – 11.0.61030 (HKLM…{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime – 11.0.50727 (HKLM…{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime – 11.0.61030 (HKLM…{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime – 11.0.50727 (HKLM-x32…{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime – 11.0.61030 (HKLM-x32…{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime – 11.0.50727 (HKLM-x32…{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime – 11.0.61030 (HKLM-x32…{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime – 12.0.21005 (HKLM…{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime – 12.0.21005 (HKLM…{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime – 12.0.21005 (HKLM-x32…{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime – 12.0.21005 (HKLM-x32…{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.28.29334 (HKLM-x32…{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.28.29334 (HKLM-x32…{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 – Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime – 14.28.29334 (HKLM…{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime – 14.28.29334 (HKLM…{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime – 14.28.29334 (HKLM-x32…{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 – Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime – 14.28.29334 (HKLM-x32…{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 – Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM…{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 – Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM…Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 – Microsoft Corporation)
Microsoft Windows Desktop Runtime – 6.0.9 (x64) (HKLM…{C1CD2FC1-92E6-4DE2-89D8-6D309881856F}) (Version: 48.39.47171 – Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime – 6.0.9 (x64) (HKLM-x32…{569b351b-451b-48db-a2c7-7beb63411666}) (Version: 6.0.9.31620 – Microsoft Corporation)
Morrowind (HKLM-x32…{81935798-5D0C-4892-832E-630E6CC07EAF}) (Version: – )
Mount&Blade (HKLM-x32…Mount&Blade) (Version: – )
MSXML 4.0 SP2 (KB954430) (HKLM-x32…{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 – Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32…{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 – Microsoft Corporation)
Nero 10 Kwik Themes 1 (HKLM-x32…{43FBAB46-5969-4200-9958-1FF81FEE506F}) (Version: 10.6.10000.1.0 – Nero AG)
Nero 10 Movie ThemePack Basic (HKLM-x32…{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}) (Version: 10.6.10000.1.0 – Nero AG) Hidden
Nero Abstract Themes (HKLM-x32…{150D88F1-40AF-4678-A39D-BCE2332F34E5}) (Version: 17.0.10002 – Nero AG) Hidden
Nero BurnRights 10 (HKLM-x32…{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.4.10400.2.100 – Nero AG)
Nero BurnRights 10 Help (CHM) (HKLM-x32…{555868C6-49FB-484F-BB43-8980651A1B00}) (Version: 10.6.10600 – Nero AG) Hidden
Nero Control Center 10 (HKLM-x32…{6DFB899F-17A2-48F0-A533-ED8D6866CF38}) (Version: 10.6.12700.0.7 – Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (HKLM-x32…{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}) (Version: 10.6.10700 – Nero AG) Hidden
Nero Core Components (HKLM-x32…{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.4.0045 – Nero AG) Hidden
Nero Core Components 10 (HKLM-x32…{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}) (Version: 2.0.19900.9.11 – Nero AG) Hidden
Nero CoverDesigner 10 (HKLM-x32…{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.6.10600.4.100 – Nero AG)
Nero CoverDesigner 10 Help (CHM) (HKLM-x32…{C3273C55-E1E4-41FF-8D69-0158090DB8D8}) (Version: 10.6.10600 – Nero AG) Hidden
Nero DiscSpeed 10 (HKLM-x32…{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.4.10500.1.100 – Nero AG)
Nero DiscSpeed 10 Help (CHM) (HKLM-x32…{C18A0418-442A-4186-AF98-D08F5054A2FC}) (Version: 10.6.10600 – Nero AG) Hidden
Nero Express 10 (HKLM-x32…{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 – Nero AG)
Nero Express 10 Help (CHM) (HKLM-x32…{33643918-7957-4839-92C7-EA96CB621A98}) (Version: 10.6.10600 – Nero AG) Hidden
Nero Info (HKLM-x32…{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 – Nero AG)
Nero InfoTool 10 (HKLM-x32…{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.4.10300.1.100 – Nero AG)
Nero InfoTool 10 Help (CHM) (HKLM-x32…{66049135-9659-4AAD-9169-9CCA269EBB3E}) (Version: 10.6.10600 – Nero AG) Hidden
Nero Kwik Themes Basic (HKLM-x32…{1B6F5E51-575E-4693-BCA2-7543570D076D}) (Version: 17.0.10002 – Nero AG) Hidden
Nero MediaHome (HKLM-x32…{7E75EA5E-D9FA-45DB-9646-EEA5C5BF61D4}) (Version: 1.34.1100 – Nero AG) Hidden
Nero MediaHome Free (HKLM-x32…{37F879C7-BAEC-47F8-AB0C-C0AFA8FEEAD0}) (Version: 17.0.00600 – Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32…{ADEF1F0B-635E-4041-B50F-A510C1B4D2C5}) (Version: 10.6.10000 – Nero AG)
Nero RescueAgent 10 (HKLM-x32…{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.6.10500.3.100 – Nero AG)
Nero RescueAgent 10 Help (CHM) (HKLM-x32…{92E25238-61A3-4ACD-A407-3C480EEF47A7}) (Version: 10.6.10700 – Nero AG) Hidden
Nero SharedVideoCodecs (HKLM-x32…{2432E589-6256-4513-B0BF-EFA8E325D5F0}) (Version: 1.0.16007 – Nero AG) Hidden
Nero StartSmart 10 (HKLM-x32…{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.6.10500.3.100 – Nero AG)
Nero StartSmart 10 Help (CHM) (HKLM-x32…{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}) (Version: 10.6.10600 – Nero AG) Hidden
Nero Update (HKLM-x32…{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 21.0.1014 – Nero AG) Hidden
NeroKwikMedia Help (CHM) (HKLM-x32…{02FCAA8F-59D3-4198-822E-135C61EE4F0B}) (Version: 10.6.10800 – Nero AG) Hidden
Nexus Mod Manager (HKLM…6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 – Black Tree Gaming)
NVIDIA PhysX (HKLM-x32…{9530AE42-DAE1-4619-9594-B23487285D17}) (Version: 9.11.1107 – NVIDIA Corporation)
Oblivion (HKLM-x32…{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 – Bethesda Softworks)
OpenAL (HKLM-x32…OpenAL) (Version: – )
Origin (HKLM-x32…Origin) (Version: 10.5.102.48654 – Electronic Arts, Inc.)
Picasa 3 (HKLM-x32…Picasa 3) (Version: 3.9 – Google, Inc.)
Pirates 2.5 (HKLM-x32…Pirates) (Version: 2.5 – )
ProtonVPN (HKLM-x32…{E7AD46A7-6578-45D9-A690-BF58D33BA6B5}) (Version: 2.0.6 – Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32…ProtonVPN 2.0.6) (Version: 2.0.6 – Proton Technologies AG)
ProtonVPNTap (HKLM-x32…{87BDF456-9882-44E6-8FFC-F73B83E42EAD}) (Version: 1.1.4 – Proton Technologies AG)
ProtonVPNTun (HKLM-x32…{B1EBF050-CC3E-45B0-9DE5-339C6241F3DA}) (Version: 0.13.1 – Proton Technologies AG)
Quicken 2013 (HKLM-x32…{034DD4BB-F0D6-4ECF-B064-8E39E3EF7076}) (Version: 22.1.12.7 – Intuit)
Rapture3D 2.4.11 Game (HKLM-x32…{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: – Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32…{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 – Realtek)
Realtek High Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 – Realtek Semiconductor Corp.)
Recuva (HKLM…Recuva) (Version: 1.53 – Piriform)
Rockstar Games Launcher (HKLM-x32…Rockstar Games Launcher) (Version: 1.0.55.661 – Rockstar Games)
Rockstar Games Social Club (HKLM-x32…Rockstar Games Social Club) (Version: 2.0.9.3 – Rockstar Games)
Rome – Total War (HKLM-x32…{51D386C4-0227-46A9-AC45-61F0A50E7AFF}) (Version: 1.5 – The Creative Assembly)
Rome Total War – patch 1.3 (HKLM-x32…{A5D65411-8E73-4C85-AD80-9FE8B7391CF9}) (Version: 1.3 – )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0015-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0016-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0019-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-001B-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{09A9DF49-DA06-4093-A2FD-F339211E39EA}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{ECC1D579-DC17-4B90-929C-B4A0BB35F7B3}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{8C5A05B6-FF56-480F-A0E6-9F4BCA4B4CAC}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{E4D76E88-C65F-4003-9C71-EC4306679D17}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-002A-0409-1000-0000000FF1CE}_Office14.SingleImage_{03AE1408-7BF1-4AC6-A327-E32E7799BCE4}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-002C-0409-0000-0000000FF1CE}_Office14.SingleImage_{945F1D43-451D-4383-9BBE-241F37950B15}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: – Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-006E-0409-0000-0000000FF1CE}_Office14.SingleImage_{8DD50F3B-E0BD-4E39-AF1F-2F316B4FC528}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-00A1-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0115-0409-0000-0000000FF1CE}_Office14.SingleImage_{8DD50F3B-E0BD-4E39-AF1F-2F316B4FC528}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0116-0409-1000-0000000FF1CE}_Office14.SingleImage_{03AE1408-7BF1-4AC6-A327-E32E7799BCE4}) (Version: – Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0117-0409-0000-0000000FF1CE}_Office14.SingleImage_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610}) (Version: – Microsoft) Hidden
Sid Meier’s Alpha Centauri (HKLM-x32…GOGPACKSIDMEIERSALPHACENTAURI_is1) (Version: 2.0.2.23 – GOG.com)
Sid Meier’s Alpha Centauri (HKLM-x32…Sid Meier’s Alpha Centauri) (Version: – )
Sid Meier’s Alpha Centauri Planetary Pack (HKLM-x32…1207658936_is1) (Version: 2.1.0.24 – GOG.com)
Sierra Utilities (HKLM-x32…Sierra Utilities) (Version: – )
Speccy (HKLM…Speccy) (Version: 1.32 – Piriform)
SpywareBlaster 5.5 (HKLM-x32…SpywareBlaster_is1) (Version: 5.5.0 – BrightFort LLC)
SteelSeries Engine 3.6.1 (HKLM…SteelSeries Engine 3) (Version: 3.6.1 – SteelSeries ApS)
TablEdit Demo version 3.0 (HKLM-x32…{F4440A34-DDF7-44E1-8B5E-D7C7E73625BE}_is1) (Version: 3.0 – Matthieu Leschemelle)
Tabwin43 (HKLM-x32…ST6UNST #1) (Version: – )
TechPowerUp GPU-Z (HKLM-x32…TechPowerUp GPU-Z) (Version: – TechPowerUp)
TES Construction Set (HKLM-x32…{8245C111-D83F-4C66-BBC6-2424F6116944}) (Version: – )
The Witcher 3: Wild Hunt – Game of the Year Edition (HKLM-x32…1495134320_is1) (Version: 1.32 – GOG.com)
Thief 2 – The Metal Age (HKLM-x32…1207659001_is1) (Version: 2.3.0.26 – GOG.com)
Thief Gold (HKLM-x32…1207658997_is1) (Version: 2.4.0.56 – GOG.com)
TP-Link Archer T2U Plus Driver (HKLM-x32…{D646A985-33A6-4D98-973F-44CC267BD834}) (Version: 2.1.0 – TP-Link)
TurboTax 2016 wmdiper (HKLM-x32…{DEA53540-72A1-4511-8508-D0F28B993ACC}) (Version: 016.000.1434 – Intuit Inc.) Hidden
TurboTax 2018 (HKLM-x32…TurboTax 2018) (Version: 2018.0 – Intuit, Inc)
TurboTax 2018 WinPerFedFormset (HKLM-x32…{4F5D754A-4CF7-489E-9FC7-DCF124A9C13B}) (Version: 018.000.2248 – Intuit Inc.) Hidden
TurboTax 2018 WinPerReleaseEngine (HKLM-x32…{3B81DEB0-2307-4542-A370-47D7B15B4EE5}) (Version: 018.000.0718 – Intuit Inc.) Hidden
TurboTax 2018 WinPerTaxSupport (HKLM-x32…{E9FCBA33-DB82-4992-A4FE-3A2D4C974DD7}) (Version: 018.000.0130 – Intuit Inc.) Hidden
TurboTax 2018 wmaiper (HKLM-x32…{E64F0360-4B41-46A4-9063-50274D564A9F}) (Version: 018.000.1374 – Intuit Inc.) Hidden
TurboTax 2018 wmdiper (HKLM-x32…{29519E5A-DA64-4162-ABF6-DA2211E5EC66}) (Version: 018.000.2936 – Intuit Inc.) Hidden
TurboTax 2018 wrapper (HKLM-x32…{B29215FE-D5C4-4C2D-BDA1-11EBF3638653}) (Version: 018.000.0109 – Intuit Inc.) Hidden
TurboTax 2019 (HKLM-x32…TurboTax 2019) (Version: 2019.0 – Intuit, Inc)
TurboTax 2019 wdeiper (HKLM-x32…{C0000C6A-BEB3-445D-AF94-FF11B3C68954}) (Version: 019.000.1708 – Intuit Inc.) Hidden
TurboTax 2019 WinPerFedFormset (HKLM-x32…{E06C08B0-B8A7-4D16-AC3D-A9B215B4DF33}) (Version: 019.000.2995 – Intuit Inc.) Hidden
TurboTax 2019 WinPerReleaseEngine (HKLM-x32…{3B2774BA-9EAF-4AC6-8E06-98EA76831746}) (Version: 019.000.0767 – Intuit Inc.) Hidden
TurboTax 2019 WinPerTaxSupport (HKLM-x32…{7A9F6F61-D188-4851-A4B5-1766EB5295C9}) (Version: 019.000.0115 – Intuit Inc.) Hidden
TurboTax 2019 wmaiper (HKLM-x32…{70D9250F-53FF-44B8-A9F2-D1F06B6A7799}) (Version: 019.000.1952 – Intuit Inc.) Hidden
TurboTax 2019 wmdiper (HKLM-x32…{EB84136F-C21D-43B7-BAB4-D62D911DCFE7}) (Version: 019.000.1832 – Intuit Inc.) Hidden
TurboTax 2019 wpaiper (HKLM-x32…{D639F724-5180-4FB7-A245-5159DC75B60B}) (Version: 019.000.2286 – Intuit Inc.) Hidden
TurboTax 2019 wrapper (HKLM-x32…{DF0DB405-2E2C-4DFE-A6E7-342E7900F594}) (Version: 019.000.0127 – Intuit Inc.) Hidden
TurboTax 2020 (HKLM-x32…TurboTax 2020) (Version: 2020.0 – Intuit, Inc)
TurboTax 2020 wdeiper (HKLM-x32…{06DA89A0-EAAF-40CD-8CF8-4ED3CBAA5B0B}) (Version: 020.000.1098 – Intuit Inc.) Hidden
TurboTax 2020 WinPerReleaseMsi (HKLM-x32…{52E6AD69-FBE7-42C0-9F5B-CD282EB7FD76}) (Version: 020.000.1918 – Intuit Inc.) Hidden
TurboTax 2020 wmaiper (HKLM-x32…{F0346AA9-8ECF-4B60-88CD-5705C9AA65D5}) (Version: 020.000.1088 – Intuit Inc.) Hidden
TurboTax 2020 wmdiper (HKLM-x32…{D0974894-7971-4976-ADF5-E60D4BDDE35E}) (Version: 020.000.1120 – Intuit Inc.) Hidden
TurboTax 2020 wpaiper (HKLM-x32…{F861FFE2-807C-4497-AA1D-77561FD78475}) (Version: 020.000.1075 – Intuit Inc.) Hidden
TurboTax 2021 (HKLM-x32…{19F2745D-A94D-40AB-A983-E9D0A57B1E50}) (Version: 021.000.0559 – Intuit Inc.)
Tweaking.com – Windows Repair (HKLM-x32…Tweaking.com – Windows Repair) (Version: 4.0.10 – Tweaking.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM…{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 – Microsoft Corporation) Hidden
UpdateAssistant (HKLM…{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 – Microsoft Corporation) Hidden
Vivaldi (HKUS-1-5-21-1612100080-1659462607-2348990995-1000…Vivaldi) (Version: 5.4.2753.51 – Vivaldi LLC)
VLC media player (HKLM-x32…VLC media player) (Version: 3.0.16 – VideoLAN)
Vortex (HKLM…57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.6.8 – Black Tree Gaming Ltd.)
Vulkan Run Time Libraries 1.1.70.0 (HKLM…VulkanRT1.1.70.0) (Version: 1.1.70.0 – LunarG, Inc.) Hidden
wdeiperStateIS (HKLM-x32…{87958BEA-C353-4482-9F6F-B1AA207FA923}) (Version: 021.000.0106 – Intuit Inc.) Hidden
WinCDEmu (HKLM-x32…WinCDEmu) (Version: 4.1 – Sysprogs)
WinDirStat 1.1.2 (HKUS-1-5-21-1612100080-1659462607-2348990995-1000…WinDirStat) (Version: – )
Windows 10 Update Assistant (HKLM-x32…{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 – Microsoft Corporation)
Windows Driver Package – Microsoft (xusb21) XnaComposite (08/13/2009 2.1.0.1349) (HKLM…AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 – Microsoft)
Windows Live ID Sign-in Assistant (HKLM…{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 – Microsoft Corporation)
Windows PC Health Check (HKLM…{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 – Microsoft Corporation)
wmaiperStateIS (HKLM-x32…{FA33DC21-1FC5-4771-AF20-328DAAEDEF74}) (Version: 021.000.0107 – Intuit Inc.) Hidden
wmdiperStateIS (HKLM-x32…{1487AFC1-7F71-406C-A869-A76A005D9694}) (Version: 021.000.0109 – Intuit Inc.) Hidden
wpaiperStateIS (HKLM-x32…{B37631C7-9EF9-4C2E-9BC6-45118036F625}) (Version: 021.000.0104 – Intuit Inc.) Hidden
wvaiperStateIS (HKLM-x32…{13EF5C2F-743B-4C00-AEB7-6439D7DE4819}) (Version: 021.000.0106 – Intuit Inc.) Hidden
Packages:
=========
Autodesk SketchBook -> C:Program FilesWindowsApps89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.)
Candy Crush Soda Saga -> C:Program FilesWindowsAppsking.com.CandyCrushSodaSaga_1.227.700.0_x64__kgqvnymyfvs32 [2022-09-21] (king.com)
HP Smart -> C:Program FilesWindowsAppsAD2F1837.HPPrinterControl_139.2.289.0_x64__v10z8vjag6ke6 [2022-09-21] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-10-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-16] (Microsoft Studios) [MS Ad]
Spotify Music -> C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0 [2022-09-29] (Spotify AB) [Startup Task]
Twitter -> C:Program FilesWindowsApps9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-11] (Twitter Inc.)
WindowsDVDPlayer -> C:Program FilesWindowsAppsMicrosoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2018-01-23] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKUS-1-5-21-1612100080-1659462607-2348990995-1000_ClassesCLSID{625CCBC2-5683-4D9C-BFA6-C0887AEAF299}localserver32 -> C:Usersvalued customerAppDataLocalVivaldiApplication5.4.2753.51notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKUS-1-5-21-1612100080-1659462607-2348990995-1000_ClassesCLSID{BCA9D37C-CA60-4160-9115-97A00F24702D}localserver32 -> “C:Usersvalued customerAppDataLocalVivaldiApplication5.3.2679.70notification_helper.exe” => No File
CustomCLSID: HKUS-1-5-21-1612100080-1659462607-2348990995-1000_ClassesCLSID{C4F0910E-E0B4-4E68-8086-452730C7A26A}InprocServer32 -> C:Usersvalued customerAppDataLocalAutodeskwebdeployproductiona0e1972bd3aaf7a114595ea6aa8bdc2a1583062aNPreview10.dll (Autodesk, Inc. -> )
CustomCLSID: HKUS-1-5-21-1612100080-1659462607-2348990995-1000_ClassesCLSID{d936918b-9c4b-555e-074a-c79314be04e1}localserver32 -> C:Program Files (x86)Proton TechnologiesProtonVPNProtonVPN.exe (Proton Technologies AG -> ProtonVPN)
CustomCLSID: HKUS-1-5-21-1612100080-1659462607-2348990995-1000_ClassesCLSID{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:Usersvalued customerDropbox [2016-02-21 20:05]
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:Program Files (x86)AcronisTrueImageHometishell64_26_0_39450.dll [2022-02-08] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:Program Files (x86)AcronisTrueImageHometishell64_26_0_39450.dll [2022-02-08] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:Program Files (x86)AcronisTrueImageHometishell64_26_0_39450.dll [2022-02-08] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:Program Files (x86)AcronisTrueImageHometishell64_26_0_39450.dll [2022-02-08] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2022-08-27] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2022-08-27] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2022-08-27] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => -> No File
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:Program Files (x86)Glary Utilities 5x64ContextHandler.dll [2022-04-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:Program FilesMacriumReflectRContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => d:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => -> No File
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:Program Files (x86)Glary Utilities 5x64ContextHandler.dll [2022-04-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:Program FilesMacriumReflectRContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => d:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2022-08-27] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2022-05-11] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => -> No File
ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:Program FilesRecuvaRecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:Program FilesAMDCNextCNextatiacm64.dll [2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:Program Files (x86)DropboxClientDropboxExt64.55.0.dll [2022-09-26] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:Program Files7-Zip7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2022-08-27] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => -> No File
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:Program Files (x86)Glary Utilities 5x64ContextHandler.dll [2022-04-10] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2022-05-11] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:Program FilesRecuvaRecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => d:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:Usersvalued customerFavoritesNCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
Shortcut: C:Usersvalued customerDesktopValued CustomerFavoritesNCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
ShortcutWithArgument: C:Usersvalued customerDesktopPerson 1 – Chrome.lnk -> C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC) -> –profile-directory=”Default”
ShortcutWithArgument: C:Usersvalued customerAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedImplicitAppShortcuts9501e18d7c2ab92eEric – Chrome.lnk -> C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC) -> –profile-directory=”Profile 2″
==================== Loaded Modules (Whitelisted) =============
2020-07-14 18:32 – 2020-07-14 18:32 – 000017920 _____ () [File not signed] C:Program FilesAMDCNextCNextlibEGL.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 003567616 _____ () [File not signed] C:Program FilesAMDCNextCNextlibGLESv2.dll
2018-03-13 04:47 – 2018-03-13 04:47 – 000912896 _____ () [File not signed] C:Program FilesAMDPerformance Profile Clientaws-cpp-sdk-core.dll
2018-03-13 04:47 – 2018-03-13 04:47 – 003109888 _____ () [File not signed] C:Program FilesAMDPerformance Profile Clientaws-cpp-sdk-s3.dll
2015-02-19 01:13 – 2015-02-19 01:13 – 000817152 _____ () [File not signed] C:Program FilesAMDPerformance Profile ClientDevice.dll
2015-02-19 01:13 – 2015-02-19 01:13 – 003650560 _____ () [File not signed] C:Program FilesAMDPerformance Profile ClientPlatform.dll
2020-09-22 21:36 – 2019-01-30 21:58 – 000037376 _____ () [File not signed] C:Program FilesFreeDownloadManager.ORGFree Download ManagerWinDivert.dll
2022-03-18 01:08 – 2022-03-15 09:16 – 000114176 ____N () [File not signed] C:Usersvalued customerDesktoplcurl.dll
2022-03-18 01:08 – 2022-03-15 09:16 – 000346624 ____N () [File not signed] C:Usersvalued customerDesktoplua51.dll
2022-03-18 01:08 – 2022-03-15 09:16 – 000034304 ____N () [File not signed] C:Usersvalued customerDesktoplzip.dll
2022-03-18 01:08 – 2022-03-15 09:16 – 001460736 ____N () [File not signed] C:Usersvalued customerDesktopSimpleGraphic.dll
2016-04-05 20:51 – 2014-03-05 10:18 – 000040448 _____ () [File not signed] C:WINDOWSSystem32pdf995mon64.dll
2020-08-21 14:19 – 2020-08-21 14:19 – 001562624 _____ (Advanced Micro Devices, Inc.) [File not signed] C:Program FilesAMDWVROpenVRbinwin64driver_amdwvr.dll
2020-09-22 21:36 – 2019-01-30 21:59 – 000436224 _____ (FreeDownloadManager.org) [File not signed] C:Program FilesFreeDownloadManager.ORGFree Download Managercommon.dll
2009-09-16 18:44 – 2009-09-16 18:44 – 000153088 _____ (Hewlett Packard) [File not signed] C:WINDOWSSystem32hptcpmib.dll
2009-09-16 18:45 – 2009-09-16 18:45 – 000331264 _____ (Hewlett Packard) [File not signed] C:WINDOWSSystem32HpTcpMon.dll
2009-09-16 11:44 – 2009-09-16 11:44 – 000132096 _____ (Hewlett Packard) [File not signed] C:WINDOWSSystem32hpzjrd01.dll
2014-11-17 10:43 – 2014-11-17 10:43 – 000050688 _____ (Hewlett-Packard) [File not signed] c:windowssystem32hpzinw12.dll
2014-11-17 10:43 – 2014-11-17 10:43 – 000066048 _____ (Hewlett-Packard) [File not signed] c:windowssystem32hpzipm12.dll
2015-09-29 10:45 – 2015-09-29 10:45 – 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:Program FilesSteelSeriesSteelSeries Engine 3HIDDLL.dll
2015-09-29 10:45 – 2015-09-29 10:45 – 000358400 _____ (Holtek) [File not signed] C:Program FilesSteelSeriesSteelSeries Engine 3ISPDLL.dll
2020-02-06 20:23 – 2020-02-06 20:23 – 000081920 _____ (HP Development Company, L.P.) [File not signed] C:Program Files (x86)HPStatusAlertsbinHPTools.dll
2022-07-15 19:00 – 2022-07-15 19:00 – 000094720 _____ (Igor Pavlov) [File not signed] C:Program Files7-Zip7-zip.dll
2015-10-05 12:17 – 2012-01-04 15:57 – 000073728 ____R (Intel Corporation) [File not signed] C:Program Files (x86)IntelIntel® USB 3.0 eXtensible Host Controller DriverApplicationiusb3mon.dll
2009-09-16 18:45 – 2009-09-16 18:45 – 000317440 _____ (Microsoft Corporation) [File not signed] C:WINDOWSSystem32HPTcpMUI.dll
2015-10-05 03:30 – 2010-09-13 18:00 – 000558592 _____ (SEIKO EPSON CORPORATION) [File not signed] C:WINDOWSSystem32enppmon.dll
2015-10-05 03:30 – 2008-06-18 14:49 – 000250880 _____ (SEIKO EPSON CORPORATION) [File not signed] C:WINDOWSSystem32enpres.dll
2022-03-18 01:08 – 2022-03-15 09:16 – 000473672 ____N (Stefan Kanthak -> The curl library, hxxps://curl.haxx.se/) [File not signed] C:Usersvalued customerDesktoplibcurl.dll
2015-09-25 17:34 – 2015-09-28 14:08 – 000255488 _____ (Sysprogs OU) [File not signed] d:Program Files (x86)WinCDEmux64WinCDEmuContextMenu.dll
2022-02-08 13:40 – 2022-02-08 13:40 – 025338368 _____ (The ICU Project) [File not signed] C:Program Files (x86)AcronisTrueImageHomeicudt54.dll
2022-02-08 13:40 – 2022-02-08 13:40 – 002056704 _____ (The ICU Project) [File not signed] C:Program Files (x86)AcronisTrueImageHomeicuin54.dll
2022-02-08 13:40 – 2022-02-08 13:40 – 001425408 _____ (The ICU Project) [File not signed] C:Program Files (x86)AcronisTrueImageHomeicuuc54.dll
2012-01-13 19:31 – 2021-07-09 21:19 – 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:Program Files (x86)OriginLIBEAY32.dll
2012-01-13 19:31 – 2021-07-09 21:19 – 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:Program Files (x86)Originssleay32.dll
2016-05-24 19:05 – 2021-07-09 21:19 – 001611264 _____ (The Qt Company Ltd) [File not signed] D:Program Files (x86)Originplatformsqwindows.dll
2021-08-16 16:40 – 2021-07-09 21:19 – 005487104 _____ (The Qt Company Ltd) [File not signed] D:Program Files (x86)OriginQt5Core.dll
2021-08-16 16:40 – 2021-07-09 21:19 – 005841920 _____ (The Qt Company Ltd) [File not signed] D:Program Files (x86)OriginQt5Gui.dll
2021-08-16 16:40 – 2021-07-09 21:19 – 001179136 _____ (The Qt Company Ltd) [File not signed] D:Program Files (x86)OriginQt5Network.dll
2021-08-16 16:40 – 2021-07-09 21:19 – 000146432 _____ (The Qt Company Ltd) [File not signed] D:Program Files (x86)OriginQt5WebSockets.dll
2021-08-16 16:40 – 2021-07-09 21:19 – 005089792 _____ (The Qt Company Ltd) [File not signed] D:Program Files (x86)OriginQt5Widgets.dll
2021-08-16 16:40 – 2021-07-09 21:19 – 000184832 _____ (The Qt Company Ltd) [File not signed] D:Program Files (x86)OriginQt5Xml.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000031744 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqgif.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000039424 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqicns.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000031744 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqico.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000413696 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqjpeg.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000025088 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqsvg.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000025088 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqtga.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000023552 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqwbmp.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000519168 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsimageformatsqwebp.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 001431040 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsplatformsqwindows.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 001180672 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginssqldriversqsqlite.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000135680 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextpluginsstylesqwindowsvistastyle.dll
2020-08-21 14:28 – 2020-08-21 14:28 – 006010880 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Core.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 006345216 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Gui.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 001078272 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Network.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000313856 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Positioning.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 004000256 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Qml.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 003802624 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Quick.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000171008 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QuickControls2.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 001083904 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5QuickTemplates2.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000205312 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Sql.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000329728 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Svg.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000113152 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebChannel.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000376320 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebEngine.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 092323328 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WebEngineCore.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 005560832 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Widgets.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000463360 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5WinExtras.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000188416 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5Xml.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 002888704 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQt5XmlPatterns.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000053760 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtGraphicalEffectsprivateqtgraphicaleffectsprivate.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000059392 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtGraphicalEffectsqtgraphicaleffectsplugin.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000017408 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuick.2qtquick2plugin.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000287232 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickControls.2qtquickcontrols2plugin.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000329216 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickControlsqtquickcontrolsplugin.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000136192 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickDialogsdialogplugin.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000089088 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickLayoutsqquicklayoutsplugin.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000312320 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickTemplates.2qtquicktemplates2plugin.dll
2020-07-14 18:32 – 2020-07-14 18:32 – 000017920 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtQuickWindow.2windowplugin.dll
2020-08-21 14:28 – 2020-08-21 14:28 – 000085504 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesAMDCNextCNextQtWebEngineqtwebengineplugin.dll
2020-09-22 21:36 – 2019-01-30 22:01 – 005938176 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesFreeDownloadManager.ORGFree Download ManagerQt5Core.dll
2020-09-22 21:36 – 2018-05-15 06:35 – 006345216 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesFreeDownloadManager.ORGFree Download ManagerQt5Gui.dll
2020-09-22 21:36 – 2018-05-15 06:35 – 001256960 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesFreeDownloadManager.ORGFree Download ManagerQt5Network.dll
2020-09-22 21:36 – 2018-05-15 06:33 – 000207360 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesFreeDownloadManager.ORGFree Download ManagerQt5Sql.dll
2020-09-22 21:36 – 2018-05-15 06:38 – 005515264 _____ (The Qt Company Ltd.) [File not signed] C:Program FilesFreeDownloadManager.ORGFree Download ManagerQt5Widgets.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:ProgramDataTEMP:5C321E34 [125]
AlternateDataStreams: C:UsersPublicAppData:CSM [474]
AlternateDataStreams: C:Usersvalued customerDocumentsdisability retirement 2022.tiff:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:Usersvalued customerDocumentsdisability retirement 2022.tiff:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalaswSP.sys => “”=”Driver”
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkaswSP.sys => “”=”Driver”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Search Page =
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Page_URL =
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Default_Search_URL =
HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerMain,Local Page =
HKUS-1-5-21-1612100080-1659462607-2348990995-1000SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxps://my.jh.edu/portal/group/myjhmi
BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:Program FilesMicrosoft OfficeOffice14URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program Files (x86)Javajre1.8.0_211binssv.dll [2019-05-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:Program Files (x86)Microsoft OfficeOffice14URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program Files (x86)Javajre1.8.0_211binjp2ssv.dll [2019-05-23] (Oracle America, Inc. -> Oracle Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…08i.com -> 008i.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…08k.com -> 008k.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…0hq.com -> 00hq.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…190-dialers.com -> 0190-dialers.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…1i.info -> 01i.info
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…2pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…411dd.com -> 0411dd.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…511zfhl.com -> 0511zfhl.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…5p.com -> 05p.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…632qyw.com -> 0632qyw.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…7ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…8nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…93qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…calories.net -> 0calories.net
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…cj.net -> 0cj.net
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…scan.com -> 0scan.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…1-se.com -> 1-se.com
IE restricted site: HKUS-1-5-21-1612100080-1659462607-2348990995-1000…1001movie.com -> 1001movie.com
There are 6091 more sites.
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:34 – 2019-01-04 19:41 – 000000856 _____ C:WINDOWSsystem32driversetchosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)Common FilesOracleJavajavapath;C:Program Files (x86)Common FilesMicrosoft SharedWindows Live;C:Windowssystem32;C:Windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:Program Files (x86)AMDATI.ACECore-Static;C:Program Files (x86)NVIDIA CorporationPhysXCommon;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;%SYSTEMROOT%System32OpenSSH;C:Program Files (x86)Common FilesAcronisSnapAPI;C:Program Files (x86)Common FilesAcronisVirtualFile;C:Program Files (x86)Common FilesAcronisVirtualFile64;C:Program Filesdotnet
HKUS-1-5-21-1612100080-1659462607-2348990995-1000Control PanelDesktop\Wallpaper -> C:Usersvalued customerAppDataLocalMicrosoftWindowsThemesTranscodedWallpaper
HKUS-1-5-82-3006700770-424185619-1745488364-794895919-4004696415Control PanelDesktop\Wallpaper ->
DNS Servers: 75.75.75.75 – 75.75.76.76
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: RequireAdmin)
HKLMsoftwaremicrosoftWindowsCurrentVersionTelephonyProviders => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIGServices: PlaysService => 2
MSCONFIGServices: ReflectService.exe => 2
MSCONFIGstartupreg: PlaysTV => “C:Program Files (x86)Raptr IncPlaysTVplaystv_launcher.exe” –startup
HKLM…StartupApprovedStartupFolder: => “Event Planner Reminder.lnk”
HKLM…StartupApprovedStartupFolder: => “Event Planner Reminder (1).lnk”
HKLM…StartupApprovedRun: => “iTunesHelper”
HKLM…StartupApprovedRun32: => “Raptr”
HKLM…StartupApprovedRun32: => “PlaysTV”
HKUS-1-5-21-1612100080-1659462607-2348990995-1000…StartupApprovedRun: => “Free Download Manager”
HKUS-1-5-21-1612100080-1659462607-2348990995-1000…StartupApprovedRun: => “EpicGamesLauncher”
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5872C6F8-5F66-46FA-B909-A9E5B04CCE50}] => (Allow) C:Program FilesFreeDownloadManager.ORGFree Download Managerfdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{AA3F9C01-E5DE-493B-A8CC-823E2ED64A3B}] => (Allow) C:Program FilesFreeDownloadManager.ORGFree Download Managerfdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{2BD4A63F-E86A-4B43-9960-7D5342179007}] => (Allow) D:Program Files (x86)Dragon Agebin_shipdaupdatersvc.service.exe (BioWare -> BioWare)
FirewallRules: [{64D0CBCA-830C-473D-A929-322977B43659}] => (Allow) D:Program Files (x86)Dragon Agebin_shipdaupdatersvc.service.exe (BioWare -> BioWare)
FirewallRules: [UDP Query User{3404C24F-EC9B-4FCC-8F86-98385459C6B9}C:program filesitunesitunes.exe] => (Allow) C:program filesitunesitunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{717B0DEE-3910-4C30-A0AE-3C7ABFB6FBFB}C:program filesitunesitunes.exe] => (Allow) C:program filesitunesitunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{0C7556DC-1EEA-4921-A7CA-7C4B0356F374}D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Allow) D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{33BB147D-C6C0-4C8D-B6C0-7F9F1FD923C5}D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Allow) D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{A35E13FC-D83E-41F6-8726-C8F9E95B5D42}D:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) D:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{5E26683F-D578-47EF-94C3-0A15E47503F4}D:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) D:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{03013746-473C-4C9D-9F72-394B95F762CB}D:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe] => (Allow) D:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B4121E92-713A-42A1-AFA5-570C8652515F}D:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe] => (Allow) D:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{DD4204DD-5DE3-49B0-B415-892A1B080E7A}] => (Allow) C:Program Files (x86)Raptr IncRaptrraptr_im.exe => No File
FirewallRules: [{61BBAAFF-7FB6-4E7E-8AC7-75629F68D5EE}] => (Allow) C:Program Files (x86)Raptr IncRaptrraptr_im.exe => No File
FirewallRules: [{44A44E8B-1422-4A74-8EFA-96424A2186CD}] => (Allow) C:Program Files (x86)Raptr IncRaptrraptr.exe => No File
FirewallRules: [{4C44AA08-FFD3-4722-9FC7-E8964BB0B29E}] => (Allow) C:Program Files (x86)Raptr IncRaptrraptr.exe => No File
FirewallRules: [{0D300D0A-C077-4BE3-9CF2-6E50D55330FC}] => (Allow) D:Program Files (x86)SteamSteamAppscommonskyrimskse_steam_boot.exe () [File not signed]
FirewallRules: [{B14992BA-AF0A-4197-B05F-B2D00E7986C8}] => (Allow) D:Program Files (x86)SteamSteamAppscommonskyrimskse_steam_boot.exe () [File not signed]
FirewallRules: [{F1B5A6E6-5348-4EB6-81B9-CCEC580E9C72}] => (Allow) D:Program Files (x86)SteamSteamAppscommonDark Souls Prepare to Die EditionDATADARKSOULS.exe (NAMCO BANDAI Games Inc.) [File not signed]
FirewallRules: [{37070C5A-9CAC-4BF2-AD11-8ED7CF77D8EB}] => (Allow) D:Program Files (x86)SteamSteamAppscommonDark Souls Prepare to Die EditionDATADARKSOULS.exe (NAMCO BANDAI Games Inc.) [File not signed]
FirewallRules: [{C30574BA-614C-4C38-8CB0-996917EC2C07}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{F99E8DB1-AED5-432A-8915-09B5C103B35D}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSkyrim Special EditionSkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{CE45B364-7456-4ACD-AE57-BD4A56ED2D16}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)
FirewallRules: [{507F51E9-4465-430A-88A0-7227F39F402E}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMass Effect 2MassEffect2Launcher.exe (BioWare -> BioWare)
FirewallRules: [{514048AC-D938-4C3D-904B-1440AA3C664F}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)
FirewallRules: [{1510C93A-3698-49F9-B8B7-3148756CDC54}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMass Effect 2BinariesMassEffect2.exe (BioWare -> BioWare)
FirewallRules: [UDP Query User{9750BFC3-77DB-46B3-9601-BA49A780EA90}D:program files (x86)steamsteamappscommontotal war rome iirome2.exe] => (Allow) D:program files (x86)steamsteamappscommontotal war rome iirome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [TCP Query User{B837EF6B-3201-4EAE-A7DA-4C1713C555F1}D:program files (x86)steamsteamappscommontotal war rome iirome2.exe] => (Allow) D:program files (x86)steamsteamappscommontotal war rome iirome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [{C9E68F61-B955-4232-A19D-7AB701B1494F}] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{38570802-8128-4BDC-A934-6EBDC0A8B3A1}] => (Allow) C:Program Files (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{459B2290-D1E7-4127-84F9-A342AC4B94B3}] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{01589236-B302-43DB-B3B7-CA46C3C619F8}] => (Allow) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9E77BB30-5222-49C5-B81C-ACA0347D2622}] => (Allow) C:Program Files (x86)NeroKMNMDllHost.exe (Nero AG -> Nero AG)
FirewallRules: [{8DCC978D-3720-4001-AAC2-75ACE9003160}] => (Allow) D:Program Files (x86)SteamSteamAppscommonStar Wars Battlefront IIGameDataBattlefrontII.exe () [File not signed]
FirewallRules: [{B27C7F33-3699-4ECB-91B5-F054E1FA91E1}] => (Allow) D:Program Files (x86)SteamSteamAppscommonStar Wars Battlefront IIGameDataBattlefrontII.exe () [File not signed]
FirewallRules: [{329388B6-07C4-4B08-9CC9-37AB1A31F4CA}] => (Allow) D:Program Files (x86)SteamSteamAppscommonThe Witcher Enhanced EditionDigital ComicDigitalComic.exe () [File not signed]
FirewallRules: [{072AAE5C-541D-4087-8552-DE00E4F91606}] => (Allow) D:Program Files (x86)SteamSteamAppscommonThe Witcher Enhanced EditionDigital ComicDigitalComic.exe () [File not signed]
FirewallRules: [{00EF0292-4E4E-4ADB-9E45-AA0CE43960DF}] => (Allow) D:Program Files (x86)SteamSteamAppscommonThe Witcher Enhanced EditionSystemdjinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{3266F9FE-4F9E-496D-B5D1-859956344C26}] => (Allow) D:Program Files (x86)SteamSteamAppscommonThe Witcher Enhanced EditionSystemdjinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{A9A0E42A-06C8-4AC2-98CE-99FD6CB93425}] => (Allow) D:Program Files (x86)SteamSteamAppscommonThe Witcher Enhanced EditionSystemwitcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{8385D244-486A-4CB5-8E0B-2D965069F840}] => (Allow) D:Program Files (x86)SteamSteamAppscommonThe Witcher Enhanced EditionSystemwitcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{4CD23AF5-1374-4FBD-815A-AE4543F66D0E}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonBraidbraid.exe () [File not signed]
FirewallRules: [{029876E8-236C-4951-85A3-F842B222F6A0}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonBraidbraid.exe () [File not signed]
FirewallRules: [{4BE24E12-16BC-4122-9745-D17458B8E3C2}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonPortal 2portal2.exe () [File not signed]
FirewallRules: [{14EE3851-0CB3-427E-9441-EDC5BD7B3C07}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonPortal 2portal2.exe () [File not signed]
FirewallRules: [{A3C1D42A-9641-47FA-B4BA-F3BB6A601C30}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonPortalhl2.exe (Valve Corp. -> )
FirewallRules: [{34B77370-7DA2-4E9E-BD68-C9221889CC49}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonPortalhl2.exe (Valve Corp. -> )
FirewallRules: [{7F63CD7C-FF87-4DFB-8D20-394067AC1BF4}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSouth Park – The Stick of TruthSouth Park – The Stick of Truth.exe (Obsidian Entertainment, Inc. -> Obsidian Entertainment, Inc.)
FirewallRules: [{8143E13B-CF31-40DA-895D-B5DDEA49E5A5}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSouth Park – The Stick of TruthSouth Park – The Stick of Truth.exe (Obsidian Entertainment, Inc. -> Obsidian Entertainment, Inc.)
FirewallRules: [UDP Query User{19979202-A391-4623-9AB9-267B483C5900}D:program files (x86)steamsteamappscommonbioshock infinitebinarieswin32bioshockinfinite.exe] => (Allow) D:program files (x86)steamsteamappscommonbioshock infinitebinarieswin32bioshockinfinite.exe (Irrational Games) [File not signed]
FirewallRules: [TCP Query User{7F11A223-E5A1-4BE0-9CCF-4FAE54E08356}D:program files (x86)steamsteamappscommonbioshock infinitebinarieswin32bioshockinfinite.exe] => (Allow) D:program files (x86)steamsteamappscommonbioshock infinitebinarieswin32bioshockinfinite.exe (Irrational Games) [File not signed]
FirewallRules: [{3AD511CF-B815-4A74-8551-BD863680404E}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonSkyrimSkyrimLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{E9F17A73-7A52-4309-B2DA-397F977FC0D0}] => (Allow) C:Program Files (x86)SteamLibrarysteamappscommonSkyrimSkyrimLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{5DC6689A-C7B7-41E2-9C7C-8FDDE2ABB135}] => (Allow) C:Program Files (x86)EpsonNetEpsonNet Setuptool10ENEasyApp.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{C36551B2-366F-4F1A-A3BB-74A9971A44F3}] => (Allow) C:Program Files (x86)EpsonNetEpsonNet Setuptool10ENEasyApp.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{870369FF-197A-4E89-85D7-D4C1A4BFD8D4}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMass EffectBinariesMassEffect.exe (BioWare -> BioWare)
FirewallRules: [{AA7F8FE7-C455-4EB7-AD80-6415CBA92A6D}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMass EffectBinariesMassEffect.exe (BioWare -> BioWare)
FirewallRules: [{FC9BAB28-477D-42C0-B175-C435C8B3E006}] => (Allow) D:Program Files (x86)SteamSteam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{09C01D38-0745-49BC-BF8B-29EAD4198106}] => (Allow) D:Program Files (x86)SteamSteam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BA042066-558C-4429-A936-EB6677BAEF6F}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSid Meier’s Civilization III CompleteConquestsCiv3Conquests.exe (© 2001-2004 Atari Inc.) [File not signed]
FirewallRules: [{CC9DB0B1-8774-4167-950C-ABE5ABE1E9D0}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSid Meier’s Civilization III CompleteConquestsCiv3Conquests.exe (© 2001-2004 Atari Inc.) [File not signed]
FirewallRules: [{DC6F4BD0-C498-439F-9FD9-D263E4719A73}] => (Allow) D:Program Files (x86)SteamSteamAppscommonHalf-Life 2hl2.exe (Valve Corp. -> )
FirewallRules: [{F7A9813B-B54D-44A1-9634-3084C3E10973}] => (Allow) D:Program Files (x86)SteamSteamAppscommonHalf-Life 2hl2.exe (Valve Corp. -> )
FirewallRules: [{61E9A1B3-16BC-405C-A167-B0EE48DE5911}] => (Allow) C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5A130F9E-8D30-4F5C-964C-B1F78266C7E5}] => (Allow) D:Program FilesFreeDownloadManager.ORGFree Download Managerfdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{043CAD9D-7196-4B2B-B18B-9C98AD5F9639}] => (Allow) D:Program FilesFreeDownloadManager.ORGFree Download Managerfdm.exe (FreeDownloadManager.org) [File not signed]
FirewallRules: [{BBF82BB8-72BD-4F1F-B40B-C8C4F9B49ABB}] => (Allow) D:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{79F8A40C-3EBB-459B-B24C-40D55555F1DB}] => (Allow) D:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{9E4D5CF5-26BE-4A4C-B415-F3BCD6B98C05}D:program files (x86)steamsteamappscommonfallout 4creationkit.exe] => (Allow) D:program files (x86)steamsteamappscommonfallout 4creationkit.exe (Bethesda Softworks) [File not signed]
FirewallRules: [UDP Query User{9D5FF6FB-73C9-4A70-92D1-25000BA60C43}D:program files (x86)steamsteamappscommonfallout 4creationkit.exe] => (Allow) D:program files (x86)steamsteamappscommonfallout 4creationkit.exe (Bethesda Softworks) [File not signed]
FirewallRules: [TCP Query User{66A4094A-9BD9-45E2-BC42-4EF68BF23F94}D:program files (x86)tmnationsforevertmforever.exe] => (Allow) D:program files (x86)tmnationsforevertmforever.exe () [File not signed]
FirewallRules: [UDP Query User{8113DCE0-8785-4C2F-A44B-8C83B0E83394}D:program files (x86)tmnationsforevertmforever.exe] => (Allow) D:program files (x86)tmnationsforevertmforever.exe () [File not signed]
FirewallRules: [{E05F1DE2-D0A1-4498-94C4-DBCB89EFF367}] => (Allow) D:Program Files (x86)SteamSteamAppscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{AE8CE0B4-B522-41FC-BC7D-38CA64DCF14B}] => (Allow) D:Program Files (x86)SteamSteamAppscommonFallout 4Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{3F47FE66-7D40-400D-816E-80DA2CB848D8}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSid Meier’s Civilization IVCivilization4.exe (Firaxis Games) [File not signed]
FirewallRules: [{938848FC-6260-472C-8F77-73B20BD19422}] => (Allow) D:Program Files (x86)SteamSteamAppscommonSid Meier’s Civilization IVCivilization4.exe (Firaxis Games) [File not signed]
FirewallRules: [{E765A089-971A-489E-844F-F4891C6B48BB}] => (Allow) D:Program Files (x86)SteamSteamAppscommonCry of FearCoFLaunchApp.exe (Team Psykskallar) [File not signed]
FirewallRules: [{5FB09FD8-802A-4939-8A94-908D08F8EE56}] => (Allow) D:Program Files (x86)SteamSteamAppscommonCry of FearCoFLaunchApp.exe (Team Psykskallar) [File not signed]
FirewallRules: [TCP Query User{1C6572EC-DE0E-479C-8C92-069DDA384849}D:gog gamesdead spacedead space.exe] => (Allow) D:gog gamesdead spacedead space.exe () [File not signed]
FirewallRules: [UDP Query User{6CB439C8-063B-48CF-ABC0-54ECFA677326}D:gog gamesdead spacedead space.exe] => (Allow) D:gog gamesdead spacedead space.exe () [File not signed]
FirewallRules: [TCP Query User{D07D88FC-659B-4F1A-A756-FD07A2EB1F7F}D:gog gamesdead spacedead space.exe] => (Block) D:gog gamesdead spacedead space.exe () [File not signed]
FirewallRules: [UDP Query User{60F801C0-6C20-4138-93BA-19A8B66DCB7B}D:gog gamesdead spacedead space.exe] => (Block) D:gog gamesdead spacedead space.exe () [File not signed]
FirewallRules: [{CA34AC62-9B19-4AB6-A905-F03B427FFC97}] => (Allow) D:Program Files (x86)Dragon Agebin_shipdaorigins.exe (Electronic Arts -> BioWare)
FirewallRules: [{DD90C51C-88B1-4A50-AFAD-5AD6272BFD22}] => (Allow) D:Program Files (x86)Dragon Agebin_shipdaorigins.exe (Electronic Arts -> BioWare)
FirewallRules: [{943235BD-3175-4D6D-8F6F-E234B2B26AAF}] => (Allow) D:Program Files (x86)Dragon AgeDAOriginsLauncher.exe (BioWare -> BioWare)
FirewallRules: [{95EE057F-825D-4C1F-B00C-8191303CD427}] => (Allow) D:Program Files (x86)Dragon AgeDAOriginsLauncher.exe (BioWare -> BioWare)
FirewallRules: [{E36B6F68-DEF4-445D-A395-CE5E60F57153}] => (Allow) D:Program Files (x86)Dragon Agebin_shipdaupdatersvc.service.exe (BioWare -> BioWare)
FirewallRules: [{5403F0E6-D937-4C78-9CE8-A766EEFB1FFF}] => (Allow) D:Program Files (x86)Dragon Agebin_shipdaupdatersvc.service.exe (BioWare -> BioWare)
FirewallRules: [{94FD1978-80A5-4CF6-9575-7CC72C1E93A7}] => (Allow) D:Program Files (x86)SteamSteamAppscommonShadowOfWarx64ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.) [File not signed]
FirewallRules: [{04DD35DE-6603-4524-974F-380C867C97A5}] => (Allow) D:Program Files (x86)SteamSteamAppscommonShadowOfWarx64ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{3430DB11-1507-4D63-85FE-5A038BB1DF35}D:program files (x86)steamsteamappscommontitanfall2titanfall2.exe] => (Allow) D:program files (x86)steamsteamappscommontitanfall2titanfall2.exe (Respawn Entertainment, LLC -> Respawn Entertainment)
FirewallRules: [UDP Query User{8C2939A7-6D7D-4BEE-B5EC-8B09A38FE353}D:program files (x86)steamsteamappscommontitanfall2titanfall2.exe] => (Allow) D:program files (x86)steamsteamappscommontitanfall2titanfall2.exe (Respawn Entertainment, LLC -> Respawn Entertainment)
FirewallRules: [{E7603E6A-7FE8-4CAC-A718-058D663123F4}] => (Allow) D:Program Files (x86)Origin GamesMass Effect 3BinariesWin32MassEffect3.exe (Electronic Arts -> BioWare)
FirewallRules: [{7A94098D-1607-4FAF-85F0-948B7EC4A847}] => (Allow) D:Program Files (x86)Origin GamesMass Effect 3BinariesWin32MassEffect3.exe (Electronic Arts -> BioWare)
FirewallRules: [{EE371467-1633-4102-9056-EC24F7BFAA85}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9C76213D-6C65-4BEB-A24B-E5A935B4D56E}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{167F4DDB-A85B-4150-B8D1-6994F4A01E34}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0D6D3A84-2F0B-4767-9891-4A3AC84574C8}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{4F3D926F-9961-4F0E-A3C3-08F8FD5641B7}D:program files (x86)steamsteamappscommontotal war rome iirome2.exe] => (Block) D:program files (x86)steamsteamappscommontotal war rome iirome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{F764FBE5-D6BF-4F68-A325-CE719224D9BF}D:program files (x86)steamsteamappscommontotal war rome iirome2.exe] => (Block) D:program files (x86)steamsteamappscommontotal war rome iirome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [{1256BE23-F3B9-424E-91BE-0C0A7C57EE65}] => (Allow) D:Program Files (x86)SteamSteamAppscommonFrog Fractions Game of the Decade EditionFrog Fractions Game of the Decade Edition.exe () [File not signed]
FirewallRules: [{2A52EC40-2937-4937-8C1E-6247AFA627DF}] => (Allow) D:Program Files (x86)SteamSteamAppscommonFrog Fractions Game of the Decade EditionFrog Fractions Game of the Decade Edition.exe () [File not signed]
FirewallRules: [{AFBD8686-8A33-422C-88F9-D9BE5C1E66F0}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4B2CDAA7-A43D-443D-9D60-186E492A0957}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{74FCABD2-51EB-4D67-A331-0103B906619C}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF74CDB7-0007-4056-A051-DB1DF57AE475}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A5240760-B789-4F7A-8480-DF79A17DADA7}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{044E69B5-24AE-46B2-A089-7A0AC09F1AE2}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AB291567-C533-46C6-B67D-D91B623142E6}] => (Allow) C:Program FilesHPHP Color LaserJet Pro MFP M277binSendAFax.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{525A30A1-F1B8-4F3F-8D15-76A0E666FF66}] => (Allow) C:Program FilesHPHP Color LaserJet Pro MFP M277binFaxPrinterUtility.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{3DB6F897-8AD8-420B-AFB0-1FA01762497F}] => (Allow) C:Program FilesHPHP Color LaserJet Pro MFP M277BinHPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{B2C0C78C-ED2A-42B3-8EB4-56D9D803A456}] => (Allow) C:Program Files (x86)HPHP Color LaserJet Pro MFP M277BinHPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{F4ED88BA-F4BE-42FE-A6A4-8B9531EDCC82}] => (Allow) C:Program Files (x86)HPHP Color LaserJet Pro MFP M277binDigitalWizards.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{853908B0-43DC-4239-8C41-FDE0C14D5A2F}] => (Allow) C:Program Files (x86)HPHP Color LaserJet Pro MFP M277binFaxApplications.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{F41EA47E-3194-4B85-BF6E-98BCCF1C756D}] => (Allow) C:Program Files (x86)HPHP Color LaserJet Pro MFP M277binEWSProxy.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{F34ECE79-DC04-4473-A2CB-9344772BDB2D}] => (Allow) C:Program Files (x86)TurboTaxIndividual 202132bitCefSharp.BrowserSubprocess.exe (INTUIT INC. -> The CefSharp Authors)
FirewallRules: [{4AD740B3-DD1E-468E-ADD5-67DC1F855815}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EAE05812-8910-4DE8-B094-5DACFFABCE27}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FF68570B-4356-4655-8872-81A335BAB43D}] => (Allow) D:Program Files (x86)SteamSteamAppscommonRed Dead Redemption 2PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{AD98324B-8639-43AC-8A8E-F7D6EF821821}] => (Allow) D:Program Files (x86)SteamSteamAppscommonRed Dead Redemption 2PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{3A29CF44-E63B-4FA5-BA58-4976F0CA0BFF}D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe] => (Allow) D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{9C833BD1-AE31-4B38-A4CF-A0DD3FB63F0D}D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe] => (Allow) D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{C81680FC-6473-4B98-894E-65F00AEAF7BB}D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe] => (Allow) D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{27D76012-2FBA-4D93-91E1-37D48A22B7CF}D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe] => (Allow) D:program files (x86)steamsteamappscommonred dead redemption 2rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{76225742-92D7-4147-8820-CD31DAA3A1B6}] => (Allow) D:Program Files (x86)SteamSteamAppscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{2AAB920F-0CCB-43E4-87E7-2DE35187B059}] => (Allow) D:Program Files (x86)SteamSteamAppscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{383181C2-05B2-4B23-9C99-A604200D99E9}] => (Allow) D:Program Files (x86)SteamSteamAppscommonPath of ExilePathOfExileSteam.exe (Grinding Gear Games Limited -> )
FirewallRules: [{126A0748-3BD1-4B6C-BA29-A8383CFC2456}] => (Allow) D:Program Files (x86)SteamSteamAppscommonPath of ExilePathOfExileSteam.exe (Grinding Gear Games Limited -> )
FirewallRules: [{66B9CABA-3E4B-472C-963A-E0B18EB6725D}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F615745C-A402-435A-AD31-BB5090E2CA64}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E84DFC5E-7BDA-42A7-82C8-17CEE3CF77AD}] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdater.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [{374CD3F6-F62F-4982-B7D1-30D112C0681F}] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [{37733FBC-0EEF-4DAF-9297-21AE6CE9B68E}] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [{DCF5FCDC-A51B-4925-983D-7BE9E160D32C}] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [{2C385067-6431-4EBF-8339-60463BDDE4B2}] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [{177E7277-C26F-4F69-9CE2-993EB3CBB6D4}] => (Allow) C:Program Files (x86)Common FilesIntuitUpdate Service v4IntuitUpdateService.exe (Intuit, Inc. -> Intuit Inc.)
FirewallRules: [{2A70BAA3-ECAB-40EA-9B34-0EAAE858233D}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F0056B01-8BE5-4898-9EAD-D36A51016920}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{611BAA01-66E4-4AC1-8938-F9AFF2735703}] => (Allow) C:Program Files (x86)Common FilesAcronisInfrastructuremms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{AB66290A-73DF-41A4-8E81-5309689BB780}] => (Allow) C:Program Files (x86)AcronisTrueImageHomeTrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{2A6627F8-71BB-4F2F-9241-4D4285E71E6B}] => (Allow) C:Program Files (x86)AcronisTrueImageHomeTrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{13D75A09-DA83-475A-9CDD-EB506C659A4B}] => (Allow) C:Program Files (x86)AcronisTrueImageHomeTrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{2F64C5DD-58E5-4CC3-970C-9337A16308DB}] => (Allow) C:Program Files (x86)Common FilesAcronisTrueImageHomeTrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{2132F22F-6588-4D46-8E3C-E526DB78ABFE}] => (Allow) C:Program Files (x86)AcronisTrueImageHomeMediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{B4D6D33A-E432-427E-A41C-853872AB0DE1}] => (Allow) C:Program Files (x86)AcronisTrueImageHomeSystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{C02F3837-AD28-466D-B452-4BBB5DC187C7}] => (Allow) C:Program Files (x86)AcronisTrueImageHomega_service.exe (Acronis International GmbH -> )
FirewallRules: [{A41B5585-A844-4058-99DB-616EE8FCD73B}] => (Allow) C:Program Files (x86)AcronisTrueImageHomeLicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{2977109D-7522-4808-8BA3-929F41FD7899}] => (Allow) C:Program Files (x86)Common FilesAcronisHomereport_sender.exe (Acronis International GmbH -> )
FirewallRules: [{564FD421-CDD6-4374-A982-D254443B3455}] => (Allow) C:Program Files (x86)AcronisAgentbinbckp_amgr.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{9F7C7DA4-0756-49F6-BF7A-DB9528490815}] => (Allow) C:Program Files (x86)AcronisAgentbintask-manager.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{2F2EE3F4-A159-49C5-BC23-03518EBBD89F}] => (Allow) C:Program Files (x86)AcronisAgentaakore.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{96DDA6FD-0021-4A0A-A462-C8930CFDEBA1}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A822EA36-6212-47DE-9235-149927687227}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CB2EB4F5-AB2C-4A3F-AA3C-D2B705D4DA07}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{575BF1A3-34D1-42A7-A3B5-D54D4FDCAEC8}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{68AF52CA-89C6-4359-836C-C6D307B6D303}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{282380D7-5663-4EB4-95EF-63FB9B9C3AA0}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8A957551-6D78-49B5-A963-DA67B40CF490}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B4FC16A9-07FB-47FB-8C1B-B62F5A21BE13}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E8887CEC-5A3A-41AE-B718-2032B92DD68E}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1EBAC1D6-C2B3-4BA2-B7A8-35ED4529081C}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{61ACCF92-340B-46A6-B2A3-A53D11B59977}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AE8038A4-AB64-46CC-B556-3EE2F2693450}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{86E624C5-1B4E-4623-AB41-2834C76EB453}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3D98E631-F83C-4C09-870C-9CDDC4C1D405}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{90354ADA-EC29-42D9-B030-78C9DCD30F43}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{839905AB-A1BB-443E-A2F5-D3D480D9D8E4}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{17C8A8A2-92E0-42BA-8500-D1283576CF45}] => (Allow) C:Program FilesiTunesiTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F24A085-7FA5-4E23-9AAD-6602552FAB06}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2F31FE8B-D60E-477B-948C-1318C35AC8D6}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{23E84ED3-1AB5-4D92-B340-8F7D841FC732}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMount & Blade II BannerlordbinWin64_Shipping_ClientTaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{D701128A-A5BE-4FFC-AAC3-19A6E4C95520}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMount & Blade II BannerlordbinWin64_Shipping_ClientTaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{D34FA2A4-B3F5-4D30-8D53-E128F3F60E0E}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E842131D-62E3-4EEE-8449-A4F461BDA8D9}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{86929DB9-E572-426A-A49F-2EFBDDE3A466}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F9FD3BEB-533B-43B1-B800-F7B0890A574B}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0222CAAC-2285-4E70-A82E-CF568E5EAF09}] => (Allow) D:Program Files (x86)SteamSteamAppscommonBioShock Infinite2KLauncherLauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{340DE1BF-E934-424F-A7FF-069C212AADF4}] => (Allow) D:Program Files (x86)SteamSteamAppscommonBioShock Infinite2KLauncherLauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{EB199D65-1415-4E73-9B96-61201373F3A7}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F37A09CD-3380-4B2A-B176-D14DDA320F5D}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{69F838C4-AC68-4D15-8569-CD0AC9A4653E}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{86936CD4-4F5D-4ED4-A030-887ABF45E77C}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{864C947A-EAF9-47F4-A9F7-30E5E4858C80}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{902047ED-E476-4735-9522-959EA21630BA}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1D290F1D-CD31-45A2-9DCC-2D990DCCDEBE}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{55A03AC3-624B-4F4D-8264-8BE3B35CC107}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3769AD3F-015E-4541-99EA-4CCB337B4048}] => (Allow) C:Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FE3AD93D-510D-4DFD-9291-631E23981E52}] => (Allow) D:Program Files (x86)SteamSteamAppscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{C1E03210-A4C8-41C0-8575-8E6530AC86AF}] => (Allow) D:Program Files (x86)SteamSteamAppscommonTotal War Rome IIlauncherlauncher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{E52FD57A-0AF8-450D-B529-11B13DF93CCC}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DCC5FB06-0925-441C-99D5-381730B2E451}] => (Block) C:Program FilesAVAST SoftwareAvastAvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1D6CB1E9-7DF3-4F72-959F-FE8B721BF6A3}] => (Allow) C:Program Files (x86)DropboxClientDropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{E592D969-8281-49B3-858E-1EA63FC353DF}] => (Allow) C:Program Files (x86)MicrosoftEdgeWebViewApplication105.0.1343.53msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C3A8184F-8454-45A2-89CE-C949600C49E4}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D901297B-54BA-4A1A-9A75-362FFCB410DC}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{38084A97-9A10-4100-BD09-C53E59C45ACF}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2ADFC190-2E56-4CA5-A568-7196B94F4E42}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D0DC326B-8040-42F1-940C-B7C69E80A3E7}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{708B0BF4-2CE2-460C-A222-E3A664B4B9E4}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{385C6B42-A88E-4FCD-9DA6-F9D6969EAE44}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5A1A539D-C837-4E5C-83E7-07545580ADFE}] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8218AF22-F674-44F3-BB82-0F876A6132B0}] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)
FirewallRules: [{11D568B2-7F29-4E34-9B14-E3E809750A9F}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMount & Blade II BannerlordbinWin64_Shipping_ClientTaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
FirewallRules: [{4C298714-097C-495A-A2DC-3F40BF03CFA6}] => (Allow) D:Program Files (x86)SteamSteamAppscommonMount & Blade II BannerlordbinWin64_Shipping_ClientTaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [File not signed]
==================== Restore Points =========================
13-09-2022 21:31:32 Windows Modules Installer
22-09-2022 18:59:10 Scheduled Checkpoint
01-10-2022 18:55:43 Scheduled Checkpoint
02-10-2022 10:37:43 Installed ProtonVPN
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/02/2022 11:13:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname valuedcustomer.local already in use; will try valuedcustomer-2.local instead
Error: (10/02/2022 11:13:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 valuedcustomer.local. Addr 192.168.0.5
Error: (10/02/2022 11:13:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.5:5353 16 valuedcustomer.local. AAAA 2601:014D:4C00:4080:6077:F318:6D45:A35D
Error: (10/02/2022 11:13:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing: 4 valuedcustomer.local. Addr 192.168.0.5
Error: (10/02/2022 11:13:13 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.5:5353 16 valuedcustomer.local. AAAA FE80:0000:0000:0000:6077:F318:6D45:A35D
Error: (10/02/2022 10:43:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname valuedcustomer.local already in use; will try valuedcustomer-2.local instead
Error: (10/02/2022 10:43:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 valuedcustomer.local. Addr 192.168.0.5
Error: (10/02/2022 10:43:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.5:5353 16 valuedcustomer.local. AAAA FE80:0000:0000:0000:6077:F318:6D45:A35D
System errors:
=============
Error: (10/02/2022 11:13:11 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 8 failed to bind to its provider.
Error: (10/02/2022 10:43:47 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (10/02/2022 10:43:47 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (10/02/2022 10:43:40 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 8 failed to bind to its provider.
Error: (10/02/2022 10:43:05 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (10/02/2022 10:43:05 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
Error: (10/02/2022 10:43:00 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: The IPv6 TCP/IP interface with index 8 failed to bind to its provider.
Error: (10/02/2022 10:41:59 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Initialization failed because the driver device could not be created.
Use the string “%2” to identify the interface for which initialization
failed. It represents the MAC address of the failed interface or the
Globally Unique Interface Identifier (GUID) if NetBT was unable to
map from GUID to MAC address. If neither the MAC address nor the GUID were
available, the string represents a cluster device name.
CodeIntegrity:
===============
Date: 2022-10-02 15:46:52
Description:
Code Integrity determined that a process (DeviceHarddiskVolume2Program Files (x86)GoogleChromeApplicationchrome.exe) attempted to load DeviceHarddiskVolume2Program FilesMalwarebytesAnti-Malwarembae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0804 10/15/2012
Motherboard: ASUSTeK COMPUTER INC. P8H77-M
Processor: Intel® Core i5-3570 CPU @ 3.40GHz
Percentage of memory in use: 90%
Total physical RAM: 8146.79 MB
Available physical RAM: 777.11 MB
Total Virtual: 23624.59 MB
Available Virtual: 8140.14 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.15 GB) (Free:196.77 GB) (Model: CT500MX500SSD1 ATA Device) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (new volume) (Fixed) (Total:1863.01 GB) (Free:261.94 GB) (Model: WDC WD20EZRZ-00Z5HB0 ATA Device) NTFS
Drive e: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) (Model: CT500MX500SSD1 ATA Device) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (MINOTAUR_DISC_2) (CDROM) (Total:3.36 GB) (Free:0 GB) UDF
Drive g: (DragonAge) (CDROM) (Total:7.71 GB) (Free:0 GB) CDFS
\?Volume{caf5d9e8-0000-0000-0000-b04f74000000} () (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 83CA2CAC)
Partition 1: (Active) – (Size=1863 GB) – (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: CAF5D9E8)
Partition 1: (Not Active) – (Size=100 MB) – (Type=07 NTFS)
Partition 2: (Active) – (Size=465.1 GB) – (Type=07 NTFS)
Partition 3: (Not Active) – (Size=529 MB) – (Type=27)
==================== End of Addition.txt =======================
Source: https://www.bleepingcomputer.com/forums/t/777806/presumed-malware-posing-as-antivirus-software/