Windows Defender Detection | Trojan:Win32/Skeeyah.A!MTB | #firefox | #chrome | #microsoftedge

It all started when I upgraded my Malwarebytes Antivirus tool and started the free 14 day trial. Soon after my PC started to be bogged down, pages and program took ages to open which was incredibly unusual for my computer. I did a lot of troubleshooting but found that if I disabled MWB. particularly the “Malware Protection” feature from the trail and Windows Defender became the primary anti-virus protection tool the PC would work normally. Scanning with MWB also did not work as the service would hand while checking for updates; this did not happen when I ran it in safe mode. So far I have not been able to run a full MBW scan without the computer being unusable, although in SafeMode the scan would run and turn up nothing. 
 
Out of curiosity I ran detailed scans with Defender on my Downloads folder and it detected the following:
  • Trojan:Win32/Skeeyah.A!MTB

I have attached the results from the FRST scans.
 
I would really appreciate it if someone could help me in dealing with this.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2021 01
Ran by Tian (administrator) on DESKTOP-96T8SBQ (22-07-2021 20:10:39)
Running from C:UsersTianDesktop
Loaded Profiles: Tian
Platform: Windows 10 Home Version 20H2 19042.1110 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:Program Files (x86)GIGABYTEAppCenterAdjustService.exe
() [File not signed] C:ProgramDataASGVISDongle Utilitiesstartvrlservice.exe
(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe
(Adobe Systems Incorporated -> ) C:Program Files (x86)AdobeAdobe Creative CloudCoreSyncCoreSync.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:Program Files (x86)AdobeAdobe Creative CloudACCCreative Cloud.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:Program Files (x86)AdobeAdobe Creative CloudCCXProcessCCXProcess.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonADSAdobe Desktop Service.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonElevationManagerAdobeUpdateService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonHEXAdobe CEF Helper.exe <2>
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:Program Files (x86)Common FilesAdobeOOBEPDAppIPCAdobeIPCBroker.exe
(ANDREA VACONDIO -> Andrea Vacondio) C:Program FilesPDFsam Enhanced 4creator-ws.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:Program FilesAutodeskPersonal Accelerator for RevitRevitAccelerator.exe
(Canon Inc. -> CANON INC.) C:Program Files (x86)CanonIJ Network Scanner Selector EXCNMNSST.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) D:Program FilesCorsairCorsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) D:Program FilesCorsairCorsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) D:Program FilesCorsairCorsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) D:Program FilesCorsairCorsairMsiPluginService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) D:Program FilesCorsairCueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) D:Program FilesCorsairiCUE.exe
(Epic Games Inc. -> Epic Games, Inc.) C:Program Files (x86)Epic GamesLauncherEngineBinariesWin64EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) C:Program Files (x86)Epic GamesLauncherPortalBinariesWin64EpicGamesLauncher.exe
(Even Balance, Inc. -> ) C:WindowsSysWOW64PnkBstrA.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:Program Files (x86)GIGABYTEAppCenterApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:Program Files (x86)GIGABYTEEasyTuneEngineServiceEasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:Program Files (x86)GIGABYTEEasyTuneEngineServiceGraphicsCardEngine.exe
(Google LLC -> Google LLC) C:Program Files (x86)GoogleChromeApplicationchrome.exe <22>
(Guillemot Corporation -> Thrustmaster®) D:Program FilesThrustmasterdriversamd64tmInstall.exe
(Intel Corporation – Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:Program Files (x86)IntelIntel® Integrated Clock Controller ServiceICCProxy.exe
(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2cec8fd58a80e6eaigfxCUIService.exe
(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2cec8fd58a80e6eaigfxEM.exe
(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2cec8fd58a80e6eaIntelCpHDCPSvc.exe
(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2cec8fd58a80e6eaIntelCpHeciSvc.exe
(Logitech Inc -> Logitech) C:Program FilesLogitechDirectOutputDirectOutputService.exe
(Logitech Inc -> Logitech) C:Program FilesLogitechFlightSupportFlightSupport.exe
(Logitech Inc -> Logitech) C:ProgramDataLogishrdLogiOptionsSoftwareCurrentLogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:Program FilesLogitechLogiOptionsLogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:ProgramDataLogishrdLogiOptionsSoftwareCurrentLogiOptionsMgr.exe
(Logitech) [File not signed] C:Program FilesLogitechX56X56_Profiler.exe
(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
(Microsoft Corporation -> Microsoft Corporation) C:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) D:Program FilesMicrosoft OfficeOffice14ONENOTEM.EXE
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbweCortana.exe
(Microsoft Corporation) C:Program FilesWindowsAppsMicrosoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbweCalculator.exe
(Microsoft Windows -> Microsoft Corporation) C:Windowssplwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32DataExchangeHost.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32oobeUserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:WindowsSysWOW64wbemWmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:WindowsSystem32CorsairGamingAudioCfgService64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.) C:Program Files (x86)MSIGaming APPGamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.) C:Program Files (x86)MSIGaming APPGamingHotkey.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.) C:Program Files (x86)MSIGaming APPGamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.) C:Program Files (x86)MSIMSI OC KitActiveX_ServiceEyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.) C:Program Files (x86)MSIMSI OC KitActiveX_ServiceMSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.) C:Program Files (x86)MSIMSI OC KitActiveX_ServiceTriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.) C:Program Files (x86)MSIMSI OC KitActiveX_ServiceVideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.) C:Program Files (x86)MSIMysticLightLEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.) C:Program Files (x86)MSIMysticLightMysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:WindowsSysWOW64muachost.exe
(Node.js Foundation -> Node.js) C:Program Files (x86)AdobeAdobe Creative CloudCCXProcesslibsnode.exe
(NVIDIA Corporation -> Node.js) C:Program Files (x86)NVIDIA CorporationNvNodeNVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_5d5c294bb8d17217Display.NvContainerNVDisplay.Container.exe <2>
(Private Internet Access, Inc. -> ) C:Program FilesPrivate Internet Accesspia-service.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkNGUI64.exe
(Robert McNeel and Associates -> Robert McNeel & Associates) C:Program Files (x86)McNeelUpdate5.0McNeelUpdateService.exe
(Saitek) [File not signed] C:Program FilesSmartTechnologySoftwareProfilerU.exe
(Saitek) [File not signed] C:Program FilesSmartTechnologySoftwareSaiMfd.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:Program Files (x86)EPSON SoftwareEpson Printer Connection CheckerEPPCCMON.EXE
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:Program FilesepsonEpsonCustomerResearchParticipationEPCP.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:WindowsSystem32escsvc64.exe
(Seiko Epson Corporation) [File not signed] C:Program Files (x86)EPSON SoftwareEvent ManagerEEventManager.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:Program FilesTabletWacomWacom_Tablet.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:Program FilesTabletWacomWacom_TabletUser.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:Program FilesTabletWacomWacom_TouchUser.exe
(Wacom Co., Ltd. -> Wacom Co. Ltd.) C:Program FilesTabletWacomWTabletServicePro.exe
(Wacom Technology Corp. -> Wacom Technology) C:Program FilesTabletWacomWacomHost.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:Program Files (x86)WIBUKEYServerWkSvMgr.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Run: [pac] => C:Program FilesAutodeskPersonal Accelerator for RevitRevitAccelerator.exe [339464 2017-01-17] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM…Run: [AdobeAAMUpdater-1.0] => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM…Run: [ProfilerU] => C:Program FilesSmartTechnologySoftwareProfilerU.exe [454656 2016-01-21] (Saitek) [File not signed]
HKLM…Run: [SaiMfd] => C:Program FilesSmartTechnologySoftwareSaiMfd.exe [157696 2016-01-21] (Saitek) [File not signed]
HKLM…Run: [FlightSupport] => C:Program FilesLogitechFlightSupportFlightSupport.exe [362616 2018-02-14] (Logitech Inc -> Logitech)
HKLM…Run: [X56] => C:Program FilesLogitechX56X56_Profiler.exe [87552 2018-09-04] (Logitech) [File not signed]
HKLM…Run: [AdobeGCInvoker-1.0] => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM…Run: [RTHDVCPL] => C:Program FilesRealtekAudioHDARtkNGUI64.exe [9235936 2017-08-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM…Run: [EPPCCMON] => C:Program Files (x86)EPSON SoftwareEpson Printer Connection CheckerEPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM…Run: [CORSAIR iCUE 4 Software] => D:Program FilesCorsairiCUE Launcher.exe [321184 2021-05-07] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM…Run: [LogiOptions] => C:Program FilesLogitechLogiOptionsLogiOptions.exe [1668000 2021-06-09] (Logitech Inc -> Logitech, Inc.)
HKLM…Run: [WindowsDefender] => “%ProgramFiles%Windows DefenderMSASCuiL.exe”
HKLM-x32…Run: [SwitchBoard] => C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32…Run: [AdobeCS6ServiceManager] => C:Program Files (x86)Common FilesAdobeCS6ServiceManagerCS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32…Run: [OnScreen Control] => C:Program Files (x86)LG ElectronicsOnScreen ControlbinOnScreenStartUpApp.exe************************************************ [1785328 2015-12-14] () [File not signed]
HKLM-x32…Run: [BCSSync] => D:Program FilesMicrosoft OfficeOffice14BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32…Run: [IJNetworkScannerSelectorEX] => C:Program Files (x86)CanonIJ Network Scanner Selector EXCNMNSST.exe [452272 2012-08-31] (Canon Inc. -> CANON INC.)
HKLM-x32…Run: [Adobe Creative Cloud] => C:Program Files (x86)AdobeAdobe Creative CloudACCCreative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32…Run: [EEventManager] => C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe [1310720 2020-02-10] (Seiko Epson Corporation) [File not signed]
HKLM-x32…RunOnce: [PreRun] => C:Program Files (x86)GIGABYTEAppCenterPreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKUS-1-5-21-4089185087-3783737969-1455578417-1001…Run: [Adobe Acrobat Synchronizer] => “C:Program Files (x86)AdobeAcrobat DCAcrobatAdobeCollabSync.exe”
HKUS-1-5-21-4089185087-3783737969-1455578417-1001…Run: [EpicGamesLauncher] => C:Program Files (x86)Epic GamesLauncherPortalBinariesWin64EpicGamesLauncher.exe [33247200 2021-07-14] (Epic Games Inc. -> Epic Games, Inc.)
HKUS-1-5-21-4089185087-3783737969-1455578417-1001…Run: [Private Internet Access] => C:Program FilesPrivate Internet Accesspia-client.exe [4724104 2021-05-03] (Private Internet Access, Inc. -> Private Internet Access Incorporated)
HKUS-1-5-21-4089185087-3783737969-1455578417-1001…PoliciesExplorer: []
HKLM…Windows x64Print ProcessorsCanon MX720 series Print Processor: C:WindowsSystem32spoolprtprocsx64CNMPDBK.DLL [30208 2012-09-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM…PrintMonitorsCanon BJ FAX Language Monitor MX720 series: C:WINDOWSsystem32CNCALBK.DLL [303104 2012-09-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM…PrintMonitorsCanon BJ Language Monitor MX720 series: C:WINDOWSsystem32CNMLMBK.DLL [390656 2012-09-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM…PrintMonitorsCanon BJNP Port: C:WINDOWSsystem32CNMN6PPM.DLL [359936 2012-07-31] (CANON INC.) [File not signed]
HKLM…PrintMonitorsEPSON ET-2720 Series 64MonitorBE: C:WINDOWSsystem32E_YLMBVVE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM…PrintMonitorsEpsonNet Print Port: C:WINDOWSsystem32enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLMSoftwareMicrosoftActive SetupInstalled Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:Program Files (x86)GoogleChromeApplication91.0.4472.164Installerchrmstp.exe [2021-07-19] (Google LLC -> Google LLC)
HKLMSoftware…AuthenticationCredential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:Program FilesTrueKeyMcAfee.TrueKey.CredentialProvider.dll [2016-08-25] (McAfee, Inc. -> McAfee, Inc.)
Lsa: [Notification Packages] scecli C:Program FilesTrueKeyMcAfeeTrueKeyPasswordFilter
Startup: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupNetwork Server.lnk [2016-12-11]
ShortcutTarget: Network Server.lnk -> C:Program Files (x86)WIBUKEYServerWkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:UsersTianAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupOneNote 2010 Screen Clipper and Launcher.lnk [2021-02-20]
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> D:Program FilesMicrosoft OfficeOffice14ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:ProgramDataNTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14CF78B9-8B21-4AB9-82E8-0DB8560CBE9B} – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153752 2016-09-05] (Google Inc -> Google Inc.)
Task: {17F8195B-1124-46C8-96F6-8DD79CEED0C4} – System32TasksEPSON ET-2720 Series Update {7FAC9438-CCC5-42B7-AAD3-2993788BB3B1} => C:WINDOWSsystem32spoolDRIVERSx643E_YTSVVE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {1957D483-B510-48EF-968A-5A30C10A7FBA} – System32TasksGarminUpdaterTask => C:Program Files (x86)GarminExpress SelfUpdaterExpressSelfUpdater.exe [40432 2020-12-10] (Garmin International, Inc. -> )
Task: {3A1F635F-B158-4FDC-9739-F0D30A3B4526} – System32TasksIntelIntel Telemetry 2 => C:Program FilesIntelTelemetry 2.0lrio.exe [1741576 2016-03-17] (Intel® Software -> Intel Corporation)
Task: {3B301F4F-A508-4C3F-AE05-CB2FFEC6D846} – System32TasksNVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5F5EA071-3B16-41F7-AA06-12D3D917F1D0} – System32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvDriverUpdateCheck” -l 3 -f C:ProgramDataNVIDIANvContainerDriverUpdateCheck.log
Task: {638C4379-5395-48A0-853F-2685330FFDE0} – System32TasksEPSON ET-2720 Series Update {D55110CD-BBEC-4761-9139-6D4B87E65FDA} => C:WINDOWSsystem32spoolDRIVERSx643E_YTSVVE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {6684D119-03F7-43FD-A4A7-64C4AEF7358D} – System32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68F8CA82-DAC2-41D9-85D9-E8519EB980D2} – System32TasksMSIOSDx64_Host => C:Program Files (x86)MSIGaming APPOSDx64MsiGamingOSD_x64.exe
Task: {6F0EEF7F-8DA8-455B-965E-B2A7AD4FD1E1} – System32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6F250EA3-88BC-44FA-90E7-C91557256341} – System32TasksAdobeGCInvoker-1.0 => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {7124E3DA-CA1F-4D36-9004-65ED8C27E003} – System32TasksGraphicsCardEngine => C:Program Files (x86)GIGABYTEEasyTuneEngineServiceGraphicsCardEngine.exe [535472 2017-03-27] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {8FCD440A-A7A2-44F3-9F99-02D82EEB5F62} – System32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9645CDD7-3B99-46B6-A932-5B36D3507463} – System32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A2C9DEE2-7703-42A9-B1B8-DC1A599DCA51} – System32TasksMSIOSDx86_Host => C:Program Files (x86)MSIGaming APPOSDx86MsiGamingOSD_x86.exe
Task: {AC2F6994-5828-401C-9442-7F89BC8D388F} – System32TasksMSILEDKeeper_Host => C:Program Files (x86)MSIMysticLightLEDKeeper.exe [621240 2018-04-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)
Task: {B746B6C1-2E76-4BAF-87AC-75D5197B2C61} – System32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d “C:Program FilesNVIDIA CorporationNvBackendNvBatteryBoostCheck” -l 3 -f C:ProgramDataNVIDIANvContainerBatteryBoostCheck.log
Task: {B7D77262-8512-4063-8768-A138870E726F} – System32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationUpdate CoreNvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BFC5635B-A38B-4CDC-A61D-E584D5D1843E} – System32TasksMozillaFirefox Default Browser Agent E7CF176E110C211B => C:Program Files (x86)Mozilla Firefoxdefault-browser-agent.exe [690616 2021-06-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {C3226E2E-3B8E-4302-936C-A567FC869313} – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C3E204ED-F759-4A71-B464-36BD24F9E985} – System32TasksMSISW_Host => C:WINDOWSSysWOW64muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {C4C5393E-D29E-4695-A761-C1E225FB175F} – System32TasksUSER_ESRV_SVC_WILLAMETTE => “C:WindowsSystem32Wscript.exe” //B //NoLogo “C:Program FilesIntelSURWILLAMETTEESRVtask.vbs”
Task: {CD61A493-1CFB-4E53-B1CA-7E909FD44F7D} – System32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program FilesNVIDIA CorporationNvBackendNvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D12A93B7-DE0D-4093-BA44-EBD8520326AC} – MicrosoftWindowsUNPRunCampaignManager -> No File <==== ATTENTION
Task: {E6293453-0D87-4EF3-BAC6-7C8F73B7ED32} – System32TasksMSIGH_Host => C:Program Files (x86)MSIGaming APPGamingHotkey.exe [3353784 2018-03-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.)
Task: {EF1DB87D-F7FA-4408-A8DB-806D45F7AC96} – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153752 2016-09-05] (Google Inc -> Google Inc.)
Task: {F03BF483-8142-4772-B9F1-60A3946D0DF3} – System32TasksPrivate Internet Access Startup => C:Program Filespia_managerpia_manager.exe
Task: {F3DBA238-F191-4F06-B53B-C460FDA38A20} – System32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:Program Files (x86)NVIDIA CorporationNvNodenvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:WINDOWSTasksCreateExplorerShellUnelevatedTask.job => C:WINDOWSexplorer.exe
Task: C:WINDOWSTasksEPSON ET-2720 Series Update {7FAC9438-CCC5-42B7-AAD3-2993788BB3B1}.job => C:WINDOWSsystem32spoolDRIVERSx643E_YTSVVE.EXE:/EXE:{7FAC9438-CCC5-42B7-AAD3-2993788BB3B1} /F:UpdateWORKGROUPDESKTOP-96T8SBQ$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:WINDOWSTasksEPSON ET-2720 Series Update {D55110CD-BBEC-4761-9139-6D4B87E65FDA}.job => C:WINDOWSsystem32spoolDRIVERSx643E_YTSVVE.EXE:/EXE:{D55110CD-BBEC-4761-9139-6D4B87E65FDA} /F:UpdateWORKGROUPDESKTOP-96T8SBQ$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:WINDOWSTasksMSILEDKeeper_Host.job => C:Program Files (x86)MSIMysticLightLEDKeeper.exe
Task: C:WINDOWSTasksMSISW_Host.job => C:WINDOWSSysWOW64muachost.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
TcpipParameters: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{bcff8535-0e04-4f5d-aaaf-96d78519c8fa}: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{c194f138-5ccc-4722-8fb8-936da90f016c}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsAutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsBookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsLearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsPinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:UsersTianAppDataLocalMicrosoftEdgeUser DataDefault [2021-07-16]
Edge Extension: (Malwarebytes Browser Guard) – C:UsersTianAppDataLocalMicrosoftEdgeUser DataDefaultExtensionsihcjicgdanjaechkgeegckofjjedodee [2021-07-16]
Edge HKLM-x32…EdgeExtension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: bpoqfheo.default
FF DefaultProfile: BSdXwi8Z.default
FF ProfilePath: C:UsersTianAppDataRoamingZoteroZoteroProfilesbpoqfheo.default [2016-12-21]
FF Extension: (Zotero LibreOffice Integration) – D:Program FilesZoteroextensionszoteroOpenOfficeIntegration@zotero.org [2016-12-18] [Legacy] [not signed]
FF Extension: (Zotero Word for Windows Integration) – D:Program FilesZoteroextensionszoteroWinWordIntegration@zotero.org [2016-12-18] [Legacy] [not signed]
FF ProfilePath: C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.default [2021-07-22]
FF Extension: (Dark Reader) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensionsaddon@darkreader.org.xpi [2021-07-08]
FF Extension: (Firefox Color) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensionsFirefoxColor@mozilla.com.xpi [2020-09-24]
FF Extension: (FireGestures) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensionsfiregestures@xuldev.org.xpi [2017-08-30] [Legacy]
FF Extension: (HTTPS Everywhere) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensionshttps-everywhere@eff.org.xpi [2021-07-14]
FF Extension: (Wikiwand: Wikipedia Modernized) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensionsjid1-D7momAzRw417Ag@jetpack.xpi [2020-12-15]
FF Extension: (Add Google Search To New Tab Page) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensionsnewtabgoogle@graememcc.co.uk.xpi [2016-09-05] [Legacy]
FF Extension: (uBlock Origin) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensionsuBlock0@raymondhill.net.xpi [2021-07-06]
FF Extension: (Stylus Blue) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{11a41736-a1d5-4b1d-9cc3-983ed6a3ad30}.xpi [2019-07-20]
FF Extension: (Session Manager) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-03-11] [Legacy]
FF Extension: (Soft Aqua) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{17378f9c-a793-4700-aee6-40eb33485e70}.xpi [2019-07-20]
FF Extension: (Malwarebytes Browser Guard) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-07-08]
FF Extension: (Stylish – Custom themes for any website) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2018-08-17]
FF Extension: (Grey solid) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{5d0ccdbe-8d75-41c3-9ede-668a5ae85837}.xpi [2019-07-20]
FF Extension: (NoScript) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2021-06-26]
FF Extension: (Dark Wood) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{ae61506a-800e-4b29-ae4f-c397824c15c2}.xpi [2019-07-20]
FF Extension: (tattoo passion_13) – C:UsersTianAppDataRoamingMozillaFirefoxProfilesBSdXwi8Z.defaultExtensions{e38441fa-96d4-4c32-a248-9392c9cee035}.xpi [2021-07-13]
FF HKLM-x32…FirefoxExtensions: [e-webprint@epson.com] – C:Program Files (x86)Epson SoftwareE-Web PrintFirefox Add-on
FF Extension: (E-Web Print) – C:Program Files (x86)Epson SoftwareE-Web PrintFirefox Add-on [2021-04-03] [Legacy] [not signed]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:Program Files (x86)Battlelog Web Plugins2.7.1npbattlelogx64.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:PROGRA~1MICROS~1Office14NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:Program Files (x86)Battlelog Web Plugins2.7.1npbattlelog.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:Program FilesMicrosoft OfficeOffice14NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:Program FilesMicrosoft OfficeOffice14NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:Program FilesVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> D:Program FilesVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> D:Program FilesVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> D:Program FilesVLCnpvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: PDFsam Enhanced 4 -> C:Program Files (x86)PDFsam Enhanced 4np-previewer.dll [2017-02-22] (ANDREA VACONDIO -> Andrea Vacondio)
FF Plugin HKUS-1-5-21-4089185087-3783737969-1455578417-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:UsersTianAppDataLocalLowUnityWebPlayerloadernpUnity3D32.dll [2015-03-24] (Unity Technologies ApS -> Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:UsersTianAppDataLocalGoogleChromeUser DataDefault [2021-07-22]
CHR HomePage: Default -> hxxp://www.theglobeandmail.com/globe-investor/my-watchlist/
CHR StartupUrls: Default -> “hxxp://www.theglobeandmail.com/globe-investor/my-watchlist/”,”hxxp://isearch.avg.com?cid={1AE2441B-EC21-4431-84AF-BA74ED6A94F7}&mid=07f5b61397de47d092e92197b7260cce-2f9d4a7b73a5a90898d0db166c7ab2d50f015ef4&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2012-05-19 11:03:50&v=18.1.9.799&pid=avg&sg=0&sap=hp”,”hxxps://www.google.com/”
CHR NewTab: Default -> Active:”chrome-extension://laookkfknpbbblfpciffpaejjkokdgca/dashboard.html”
CHR Extension: (Docs) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (Google Voice Search Hotword (Beta)) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsbepbmhgboaologfdajaanbcjmnhjmhfn [2016-09-05]
CHR Extension: (My Watchlist – The Globe and Mail) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsbiipihfcamfhccdefnciolkakknfiacc [2016-09-05]
CHR Extension: (YouTube) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-05]
CHR Extension: (uBlock Origin) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionscjpalhdlnbpafiamejdnhcphjbkeiagm [2021-07-06]
CHR Extension: (El Mostrador – El primer diario digital de Chile – Noticias, reportajes, multimedia y último minuto) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsdeiofncokiodhogldhhgcflcbgdchpoc [2016-09-05]
CHR Extension: (Dark Vibe) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsdkckeanhmkjaechlhllmapjaaglgpcbj [2016-09-05]
CHR Extension: (Facebook) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsdnknkgccldocdogpnhbaddbdhhjiindo [2016-09-05]
CHR Extension: (Session Buddy) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsedacconmaakjimmfgnblocblbcdcpbko [2020-05-10]
CHR Extension: (Adobe Acrobat) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsefaidnbmnnnibpcajpcglclefindmkaj [2021-03-11]
CHR Extension: (WebBroker) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsejjiochcphbommkkihcmkmafffklihpc [2016-09-05]
CHR Extension: (Zotero Connector) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsekhagklcjbdpajgpjgmbionohlpdbjgc [2021-07-22]
CHR Extension: (Video Downloader professional) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionselicpjhcidhpjomhibiffojpinpmmpil [2021-06-17]
CHR Extension: (Wikiwand: Wikipedia Modernized) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsemffkefkbkpkgpdeeooapgaicgmcbolj [2021-07-22]
CHR Extension: (Avira Browser Safety) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsflliilndjeohchalpbbcdekjklbdgfkk [2021-07-20]
CHR Extension: (HTTPS Everywhere) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsgcbommkclmclpchllfjekcdonpmejbdp [2021-07-14]
CHR Extension: (Google Docs Offline) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-25]
CHR Extension: (The Camelizer) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsghnomdcacenbmilgjigehppbamfndblo [2021-03-08]
CHR Extension: (GeForce Experience Stream Client) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsgjljknijpnfibppaijefibndmiabonep [2019-01-17]
CHR Extension: (LA TERCERA – Noticias, deportes y actualidad de Chile y el mundo) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsgjocmohmfhebgodidfccejddmncllano [2016-09-05]
CHR Extension: (Airliners.net | Airplanes – Aviation – Aircraft- Aircraft Photos & News) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsgllhmmdnfhjbnaeihcdigcbkgjefjkjh [2016-09-05]
CHR Extension: (hxxp://www.lacuarta.cl/) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionshomjchfepajhlnplpbojjmhehhfnjbfp [2016-09-05]
CHR Extension: (Malwarebytes Browser Guard) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsihcjicgdanjaechkgeegckofjjedodee [2021-07-08]
CHR Extension: (Google Duo) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsimgohncinckhbblnlmaedahepnnpmdma [2020-04-30]
CHR Extension: (hxxp://en.wikipedia.org/wiki/Main_Page) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsjbiaplckoopjiahmfejpapgidkpepbaa [2016-09-05]
CHR Extension: (Momentum) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionslaookkfknpbbblfpciffpaejjkokdgca [2021-07-20]
CHR Extension: (UltraWide Video) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionslngfncacljheahfpahadgipefkbagpdl [2019-01-14]
CHR Extension: (Chrome Web Store Payments) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-01-28]
CHR Extension: (Gmail) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) – C:UsersTianAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04]
CHR Profile: C:UsersTianAppDataLocalGoogleChromeUser DataSystem Profile [2020-01-09]
CHR HKLM…ChromeExtension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM…ChromeExtension: [ipmkfpcnmccejididiaagpgchgjfajgp]
CHR HKLM-x32…ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32…ChromeExtension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32…ChromeExtension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32…ChromeExtension: [ipmkfpcnmccejididiaagpgchgjfajgp]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonElevationManagerAdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:Program Files (x86)Common FilesBattlEyeBEService.exe [8628224 2020-06-12] (BattlEye Innovations e.K. -> )
R2 CorsairGamingAudioConfig; C:WINDOWSsystem32CorsairGamingAudioCfgService64.exe [616360 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; D:Program FilesCorsairCueLLAccessService.exe [456352 2021-05-07] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairMsiPluginService; D:Program FilesCorsairCorsairMsiPluginService.exe [451744 2021-05-07] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; D:Program FilesCorsairCorsair.Service.exe [80544 2021-05-07] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EasyAntiCheat; C:Program Files (x86)EasyAntiCheatEasyAntiCheat.exe [803952 2020-08-11] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:Program Files (x86)GIGABYTEEasyTuneEngineServiceEasyTuneEngineService.exe [144816 2017-03-27] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 EpsonCustomerResearchParticipation; C:Program FilesEPSONEpsonCustomerResearchParticipationEPCP.exe [685496 2021-03-28] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:WINDOWSsystem32EscSvc64.exe [206304 2020-10-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 gadjservice; C:Program Files (x86)GIGABYTEAppCenterAdjustService.exe [18944 2021-04-08] () [File not signed]
R2 GamingApp_Service; C:Program Files (x86)MSIGaming APPGamingApp_Service.exe [48824 2018-04-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)
R2 GamingHotkey_Service; C:Program Files (x86)MSIGaming APPGamingHotkey_Service.exe [2027192 2018-03-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.)
U2 MBAMService; C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe [7477704 2021-07-17] (Malwarebytes Inc -> Malwarebytes)
R2 McNeelUpdate; c:Program Files (x86)McNeelUpdate5.0McNeelUpdateService.exe [67944 2015-08-10] (Robert McNeel and Associates -> Robert McNeel & Associates)
S3 Microsoft SharePoint Workspace Audit Service; D:Program FilesMicrosoft OfficeOffice14GROOVE.EXE [30814400 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
R2 MSI_ActiveX_Service; C:Program Files (x86)MSIMSI OC KitActiveX_ServiceMSI_ActiveX_Service.exe [83616 2018-04-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT’L CO., LTD.)
R2 MysticLight2_Service; C:Program Files (x86)MSIMysticLightMysticLight2_Service.exe [31928 2018-03-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int’l Co., Ltd.)
S2 OcButtonService; C:Program Files (x86)GIGABYTEEasyTuneEngineServiceOcButtonService.exe [123312 2017-03-27] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Origin Client Service; C:Program Files (x86)OriginOriginClientService.exe [2547288 2021-05-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:Program Files (x86)OriginOriginWebHelperService.exe [3487320 2021-05-19] (Electronic Arts, Inc. -> Electronic Arts)
S3 PDFsam Enhanced 4; C:Program FilesPDFsam Enhanced 4ws.exe [1880416 2017-02-22] (ANDREA VACONDIO -> Andrea Vacondio)
S3 PDFsam Enhanced 4 CrashHandler; C:Program FilesPDFsam Enhanced 4crash-handler-ws.exe [931680 2017-02-22] (ANDREA VACONDIO -> Andrea Vacondio)
R2 PDFsam Enhanced 4 Creator; C:Program FilesPDFsam Enhanced 4creator-ws.exe [739168 2017-02-22] (ANDREA VACONDIO -> Andrea Vacondio)
R2 PnkBstrA; C:WINDOWSsystem32PnkBstrA.exe [76152 2016-12-31] (Even Balance, Inc. -> )
R2 PrivateInternetAccessService; C:Program FilesPrivate Internet Accesspia-service.exe [2223016 2021-05-03] (Private Internet Access, Inc. -> )
S3 PrivateInternetAccessWireguard; C:Program FilesPrivate Internet Accesspia-wgservice.exe [4447520 2021-05-03] (Private Internet Access, Inc. -> )
S3 Rockstar Service; D:Program FilesLauncherRockstarService.exe [1934744 2021-07-09] (Rockstar Games, Inc. -> Rockstar Games)
R2 SaiDOutput; C:Program FilesLogitechDirectOutputDirectOutputService.exe [231560 2018-09-04] (Logitech Inc -> Logitech)
S3 SwitchBoard; C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 tmInstall; D:Program FilesThrustmasterdriversamd64tmInstall.EXE [128640 2017-11-17] (Guillemot Corporation -> Thrustmaster®)
S2 TrueKeyScheduler; C:Program FilesTrueKeyMcTkSchedulerService.exe [16248 2016-08-25] (McAfee, Inc. -> McAfee, Inc.)
S3 TrueKeyServiceHelper; C:Program FilesTrueKeyMcAfee.TrueKey.ServiceHelper.Exe [86864 2016-08-25] (McAfee, Inc. -> McAfee, Inc.)
R2 VRLService; C:ProgramDataASGVISDongle Utilitiesstartvrlservice.exe [212992 2012-12-06] () [File not signed]
R3 WdNisSvc; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0NisSrv.exe [2665432 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MsMpEng.exe [136640 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WkSvw32.exe; C:Program Files (x86)WIBUKEYServerWkSvw32.exe [587264 2009-12-03] (WIBU-SYSTEMS AG) [File not signed]
R2 NVDisplay.ContainerLocalSystem; C:WINDOWSSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_5d5c294bb8d17217Display.NvContainerNVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%NVIDIANVDisplay.ContainerLocalSystem.log -l 3 -d C:WINDOWSSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_5d5c294bb8d17217Display.NvContainerpluginsLocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystemLocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athuac; C:WINDOWSSystem32driversathuac8x.sys [2586512 2016-10-17] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R3 CorsairGamingAudioService; C:WINDOWSsystem32DRIVERSCorsairGamingAudio64.sys [60328 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess4A5424B66F107B4BF942C224E8CF7387CF2F1066; D:Program FilesCorsairCorsairLLAccess64.sys [21752 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:WINDOWSSystem32driversCorsairVBusDriver.sys [45984 2020-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:WINDOWSSystem32driversCorsairVHidDriver.sys [21920 2020-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:WINDOWStempcpuz150cpuz150_x64.sys [44832 2021-07-22] (CPUID S.A.R.L.U. -> CPUID)
R3 gdrv; C:WINDOWSgdrv.sys [26192 2021-07-22] (Giga-Byte Technology -> Windows ® Server 2003 DDK provider)
R3 gdrv3; C:WINDOWSgdrv3.sys [36352 2021-05-10] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 I2cHkBurn; C:WINDOWSsystem32driversI2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
S3 libusbK; C:WINDOWSSystem32driverslibusbK.sys [47200 2019-03-25] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 LSaiMini; C:WINDOWSSystem32driversLSaiMini.sys [30840 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 LSaiNtBus; C:WINDOWSsystem32driversLSaiBus.sys [70456 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
S0 MbamElam; C:WINDOWSSystem32DRIVERSMbamElam.sys [19912 2021-07-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:WINDOWSSystem32Driversmbamswissarmy.sys [248992 2021-07-13] (Malwarebytes Inc -> Malwarebytes)
R3 NTIOLib_MysticLight; C:Program Files (x86)MSIMysticLightLibNTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 RDID1115; C:WINDOWSsystem32DriversRDWM1115.SYS [91648 2015-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Roland Corporation)
R3 SaiG2221; C:WINDOWSSystem32driversSaiG2221.sys [227128 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 SaiGa221; C:WINDOWSSystem32driversSaiGa221.sys [227128 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 SaiK2221; C:WINDOWSsystem32DRIVERSSaiK2221.sys [227128 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 SaiKa221; C:WINDOWSsystem32DRIVERSSaiKa221.sys [227128 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 SaiMini; C:WINDOWSSystem32driversSaiMini.sys [23968 2016-02-02] (Madcatz Europe Ltd -> Saitek)
R3 SaiNtBus; C:WINDOWSsystem32driversSaiBus.sys [51616 2016-02-02] (Madcatz Europe Ltd -> Saitek)
R3 SaiU2221; C:WINDOWSsystem32DRIVERSSaiU2221.sys [33512 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 SaiUa221; C:WINDOWSsystem32DRIVERSSaiUa221.sys [33512 2018-09-04] (WDKTestCert SYSTEM,131245371151827277 -> Logitech)
R3 ScpVBus; C:WINDOWSSystem32driversScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 sixaxis; C:WINDOWSSystem32driverssixaxis.sys [28424 2021-07-17] (Sony Computer Entertainment Inc. -> Sony Computer Entertainment Inc.)
S3 ssudmdm; C:WINDOWSsystem32DRIVERSssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap-pia-0901; C:WINDOWSSystem32driverstap-pia-0901.sys [39944 2020-06-12] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tap0901; C:WINDOWSSystem32driverstap0901.sys [27136 2017-02-15] (The OpenVPN Project) [File not signed]
S3 vjoy; C:WINDOWSSystem32driversvjoy.sys [57976 2017-04-06] (Shaul Eizikovich -> Shaul Eizikovich)
S3 WacHidRouterPro; C:WINDOWSSystem32driverswachidrouter.sys [127512 2020-09-17] (WDKTestCert dant,132134237881206156 -> Wacom Technology, Corp.)
S3 wacomrouterfilter; C:WINDOWSSystem32driverswacomrouterfilter.sys [28680 2020-09-17] (WDKTestCert dant,132134237881206156 -> Wacom Technology, Corp.)
S0 WdBoot; C:WINDOWSSystem32driverswdWdBoot.sys [49560 2021-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:WINDOWSSystem32driverswdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:WINDOWSSystem32driverswdWdFilter.sys [425192 2021-07-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [76008 2021-07-10] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:WINDOWSSystem32DRIVERSWibuKey64.sys [97792 2011-09-22] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
R3 WirelessKeyboardFilter; C:WINDOWSSystem32driversWirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
S4 Oculus_ViGEmBus; SystemRootSystem32driversOculus_ViGEmBus.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-22 20:11 – 2021-07-22 20:11 – 000220752 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamChameleon.sys
2021-07-22 20:11 – 2021-07-22 20:11 – 000198888 _____ (Malwarebytes) C:WINDOWSsystem32Driversfarflt.sys
2021-07-22 20:11 – 2021-07-22 20:11 – 000156880 _____ (Malwarebytes) C:WINDOWSsystem32Driversmwac.sys
2021-07-22 20:11 – 2021-07-22 20:11 – 000069016 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbam.sys
2021-07-22 20:10 – 2021-07-22 20:11 – 000050029 _____ C:UsersTianDesktopFRST.txt
2021-07-22 20:10 – 2021-07-22 20:09 – 002300416 _____ (Farbar) C:UsersTianDesktopFRSTEnglish.exe
2021-07-20 18:57 – 2021-07-20 18:58 – 004186836 _____ C:WINDOWSMinidump 72021-7250-01.dmp
2021-07-19 21:18 – 2021-07-19 21:18 – 000000000 ____D C:WINDOWSLastGood.Tmp
2021-07-19 21:16 – 2021-07-13 13:07 – 001858664 _____ C:WINDOWSsystem32vulkaninfo-1-999-0-0-0.exe
2021-07-19 21:16 – 2021-07-13 13:07 – 001858664 _____ C:WINDOWSsystem32vulkaninfo.exe
2021-07-19 21:16 – 2021-07-13 13:07 – 001438824 _____ C:WINDOWSSysWOW64vulkaninfo-1-999-0-0-0.exe
2021-07-19 21:16 – 2021-07-13 13:07 – 001438824 _____ C:WINDOWSSysWOW64vulkaninfo.exe
2021-07-19 21:16 – 2021-07-13 13:07 – 001097856 _____ C:WINDOWSsystem32vulkan-1-999-0-0-0.dll
2021-07-19 21:16 – 2021-07-13 13:07 – 001097856 _____ C:WINDOWSsystem32vulkan-1.dll
2021-07-19 21:16 – 2021-07-13 13:07 – 000951936 _____ C:WINDOWSSysWOW64vulkan-1-999-0-0-0.dll
2021-07-19 21:16 – 2021-07-13 13:07 – 000951936 _____ C:WINDOWSSysWOW64vulkan-1.dll
2021-07-19 21:16 – 2021-07-13 13:06 – 001474704 _____ (Khronos Group) C:WINDOWSsystem32OpenCL.dll
2021-07-19 21:16 – 2021-07-13 13:06 – 001212560 _____ (Khronos Group) C:WINDOWSSysWOW64OpenCL.dll
2021-07-19 21:16 – 2021-07-13 13:02 – 001520776 _____ (NVIDIA Corporation) C:WINDOWSsystem32NvIFR64.dll
2021-07-19 21:16 – 2021-07-13 13:02 – 000716912 _____ C:WINDOWSsystem32nvofapi64.dll
2021-07-19 21:16 – 2021-07-13 13:02 – 000676480 _____ (NVIDIA Corporation) C:WINDOWSsystem32NvIFROpenGL.dll
2021-07-19 21:16 – 2021-07-13 13:02 – 000645232 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvml.dll
2021-07-19 21:16 – 2021-07-13 13:02 – 000577152 _____ C:WINDOWSSysWOW64nvofapi.dll
2021-07-19 21:16 – 2021-07-13 13:02 – 000564352 _____ (NVIDIA Corporation) C:WINDOWSSysWOW64NvIFROpenGL.dll
2021-07-19 21:16 – 2021-07-13 13:01 – 002112128 _____ (NVIDIA Corporation) C:WINDOWSsystem32NvFBC64.dll
2021-07-19 21:16 – 2021-07-13 13:01 – 001595520 _____ (NVIDIA Corporation) C:WINDOWSSysWOW64NvFBC.dll
2021-07-19 21:16 – 2021-07-13 13:01 – 001171072 _____ (NVIDIA Corporation) C:WINDOWSSysWOW64NvIFR.dll
2021-07-19 21:16 – 2021-07-13 13:01 – 000919168 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvEncodeAPI64.dll
2021-07-19 21:16 – 2021-07-13 13:01 – 000706176 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvidia-smi.exe
2021-07-19 21:16 – 2021-07-13 13:00 – 008854144 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvcuvid.dll
2021-07-19 21:16 – 2021-07-13 13:00 – 007920768 _____ (NVIDIA Corporation) C:WINDOWSSysWOW64nvcuvid.dll
2021-07-19 21:16 – 2021-07-13 13:00 – 005680760 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvcpl.dll
2021-07-19 21:16 – 2021-07-13 13:00 – 004987520 _____ (NVIDIA Corporation) C:WINDOWSSysWOW64nvcuda.dll
2021-07-19 21:16 – 2021-07-13 13:00 – 002925696 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvcuda.dll
2021-07-19 21:16 – 2021-07-13 13:00 – 000447104 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvdebugdump.exe
2021-07-19 21:16 – 2021-07-13 12:59 – 000849008 _____ (NVIDIA Corporation) C:WINDOWSsystem32MCU.exe
2021-07-19 21:16 – 2021-07-12 07:32 – 000083062 _____ C:WINDOWSsystem32nvinfo.pb
2021-07-18 11:38 – 2021-07-20 18:57 – 2281023905 _____ C:WINDOWSMEMORY.DMP
2021-07-18 11:38 – 2021-07-18 11:38 – 002844308 _____ C:WINDOWSMinidump 71821-6515-01.dmp
2021-07-17 20:26 – 2021-07-17 20:26 – 000028424 _____ (Sony Computer Entertainment Inc.) C:WINDOWSsystem32Driverssixaxis.sys
2021-07-17 20:26 – 2021-07-17 20:26 – 000000000 ____D C:UsersTianAppDataLocalGaikai
2021-07-17 20:26 – 2021-07-17 20:26 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsPlayStationNow
2021-07-17 20:26 – 2021-07-17 20:26 – 000000000 ____D C:Program Files (x86)PlayStationNow
2021-07-14 21:25 – 2021-07-22 20:11 – 000000000 ____D C:UsersTianAppDataLocalLowIGDump
2021-07-14 21:16 – 2021-07-14 21:16 – 000000000 ____D C:UsersTianAppDataLocalDeployment
2021-07-14 21:16 – 2021-07-14 21:16 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLogitech
2021-07-14 21:11 – 2021-07-17 20:27 – 000000000 ____D C:UsersTianAppDataRoamingSony Interactive Entertainment Network America LLC
2021-07-14 17:55 – 2021-07-14 17:56 – 000000000 ____D C:AdwCleaner
2021-07-13 22:19 – 2021-07-22 20:11 – 000000000 ____D C:FRST
2021-07-13 21:37 – 2021-07-17 20:24 – 000001993 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk
2021-07-13 21:37 – 2021-07-13 21:45 – 000248992 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbamswissarmy.sys
2021-07-13 21:37 – 2021-07-13 21:36 – 000199128 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbae64.sys
2021-07-13 21:37 – 2021-07-13 21:36 – 000019912 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamElam.sys
2021-07-13 21:36 – 2021-07-13 21:36 – 000000000 ____D C:Program FilesMalwarebytes
2021-07-13 21:23 – 2021-07-13 21:23 – 000000000 ____D C:WINDOWS%LOCALAPPDATA%
2021-07-13 20:22 – 2021-07-13 20:22 – 001823280 _____ (Microsoft Corporation) C:WINDOWSsystem32winload.efi
2021-07-13 20:22 – 2021-07-13 20:22 – 000011357 _____ C:WINDOWSsystem32DrtmAuthTxt.wim
2021-07-13 20:22 – 2021-07-13 20:22 – 000007680 _____ (Microsoft Corporation) C:WINDOWSSysWOW64MsraLegacy.tlb
2021-07-13 20:22 – 2021-07-13 20:22 – 000007680 _____ (Microsoft Corporation) C:WINDOWSsystem32MsraLegacy.tlb
2021-07-13 20:22 – 2021-07-13 20:22 – 000006656 _____ (Microsoft Corporation) C:WINDOWSSysWOW64rendezvousSession.tlb
2021-07-13 20:22 – 2021-07-13 20:22 – 000006656 _____ (Microsoft Corporation) C:WINDOWSsystem32rendezvousSession.tlb
2021-07-12 20:35 – 2021-07-12 20:35 – 000000112 ___SH C:bootTel.dat
2021-07-09 20:47 – 2021-07-09 20:47 – 002371072 _____ C:WINDOWSsystem32rdpnano.dll
2021-07-09 20:47 – 2021-07-09 20:47 – 002260992 _____ C:WINDOWSsystem32TextInputMethodFormatter.dll
2021-07-09 20:47 – 2021-07-09 20:47 – 001393504 _____ (Microsoft Corporation) C:WINDOWSsystem32winresume.efi
2021-07-09 20:47 – 2021-07-09 20:47 – 001314128 _____ (Microsoft Corporation) C:WINDOWSsystem32SecConfig.efi
2021-07-09 20:47 – 2021-07-09 20:47 – 000570880 _____ (Microsoft Corporation) C:WINDOWSsystem32inetcpl.cpl
2021-07-09 20:47 – 2021-07-09 20:47 – 000452608 _____ (Microsoft Corporation) C:WINDOWSSysWOW64inetcpl.cpl
2021-07-09 20:47 – 2021-07-09 20:47 – 000097792 _____ C:WINDOWSsystem32Driverscimfs.sys
2021-07-09 20:47 – 2021-07-09 20:47 – 000084992 _____ (Microsoft Corporation) C:WINDOWSsystem32wscui.cpl
2021-07-09 20:47 – 2021-07-09 20:47 – 000067584 _____ (Microsoft Corporation) C:WINDOWSSysWOW64wscui.cpl
2021-07-09 20:47 – 2021-07-09 20:47 – 000060928 _____ C:WINDOWSsystem32runexehelper.exe
2021-06-27 16:16 – 2021-07-13 13:01 – 000750208 _____ (NVIDIA Corporation) C:WINDOWSSysWOW64nvEncodeAPI.dll
2021-06-27 16:15 – 2021-05-04 03:49 – 000001951 _____ C:WINDOWSNvContainerRecovery.bat
2021-06-26 13:52 – 2021-06-26 13:52 – 000000000 ____D C:WINDOWSsystem32TasksMozilla
2021-06-26 13:03 – 2021-07-05 19:04 – 000000000 ____D C:Program Files (x86)Mozilla Firefox
2021-06-25 10:47 – 2021-06-01 08:23 – 001152000 _____ (Realtek ) C:WINDOWSsystem32Driversrt640x64.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-22 20:06 – 2020-12-17 23:41 – 000004166 _____ C:WINDOWSsystem32TasksUser_Feed_Synchronization-{8FAB8E38-E556-42EF-8161-D3CB5CA5C56A}
2021-07-22 19:57 – 2016-09-05 21:24 – 000000000 ____D C:Program Files (x86)Google
2021-07-22 19:34 – 2019-12-07 05:13 – 000000000 ____D C:WINDOWSINF
2021-07-22 19:34 – 2018-07-04 12:25 – 000000000 ____D C:UsersTianAppDataLocalOculus
2021-07-22 18:02 – 2019-12-07 05:14 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2021-07-22 17:00 – 2019-03-03 22:14 – 000000000 ____D C:ProgramDataMozilla
2021-07-22 17:00 – 2016-11-21 21:09 – 000000000 ____D C:UsersTianAppDataLocalLowMozilla
2021-07-22 16:36 – 2020-12-17 23:43 – 000840598 _____ C:WINDOWSsystem32PerfStringBackup.INI
2021-07-22 16:31 – 2018-06-16 00:13 – 000000000 ____D C:ProgramDataNVIDIA
2021-07-22 16:30 – 2020-12-19 22:11 – 000000000 ____D C:UsersTianAppDataRoamingWTablet
2021-07-22 16:30 – 2016-10-07 21:32 – 000026192 _____ (Windows ® Server 2003 DDK provider) C:WINDOWSgdrv.sys
2021-07-22 16:29 – 2020-12-17 23:41 – 000000006 ____H C:WINDOWSTasksSA.DAT
2021-07-22 16:29 – 2020-12-17 23:32 – 000008192 ___SH C:DumpStack.log.tmp
2021-07-22 16:29 – 2019-12-07 05:03 – 000524288 _____ C:WINDOWSsystem32configBBI
2021-07-22 16:29 – 2018-07-01 17:12 – 000000296 ____H C:WINDOWSTasksMSILEDKeeper_Host.job
2021-07-22 16:29 – 2016-09-05 21:10 – 000000000 __SHD C:UsersTianIntelGraphicsProfiles
2021-07-22 16:29 – 2016-09-05 21:10 – 000000000 ____D C:Intel
2021-07-21 19:33 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSLiveKernelReports
2021-07-21 19:25 – 2016-09-09 21:33 – 000000000 ____D C:UsersTianAppDataLocalLowUnity
2021-07-21 17:47 – 2020-07-14 16:06 – 000002438 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk
2021-07-21 17:47 – 2019-12-07 05:14 – 000000000 ___HD C:Program FilesWindowsApps
2021-07-21 17:47 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSAppReadiness
2021-07-20 22:15 – 2020-12-17 23:34 – 000000000 ____D C:UsersTian
2021-07-20 22:14 – 2018-05-14 14:43 – 000000000 ____D C:UsersTianAppDataRoamingdiscord
2021-07-20 21:29 – 2018-05-14 14:43 – 000000000 ____D C:UsersTianAppDataLocalDiscord
2021-07-20 18:58 – 2021-06-10 14:48 – 000000000 ____D C:WINDOWSMinidump
2021-07-20 18:57 – 2020-12-17 23:32 – 000000000 ____D C:WINDOWSsystem32SleepStudy
2021-07-20 18:00 – 2021-05-22 15:14 – 000000000 ____D C:UsersTianAppDataLocalT2GP Launcher
2021-07-20 16:39 – 2018-06-16 00:17 – 000000000 ____D C:UsersTianAppDataLocalNVIDIA
2021-07-19 21:17 – 2018-06-16 00:13 – 000000000 ____D C:ProgramDataNVIDIA Corporation
2021-07-19 21:11 – 2020-03-21 18:17 – 000000000 ____D C:UsersTianAppDataLocalAcTools Content Manager
2021-07-19 21:11 – 2018-06-20 13:29 – 000000000 ____D C:UsersTianAppDataLocalCrashDumps
2021-07-19 17:40 – 2016-09-05 21:25 – 000002301 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2021-07-18 17:08 – 2020-09-21 13:05 – 000000000 ____D C:UsersTianAppDataRoamingMicrosoft Flight Simulator
2021-07-18 14:42 – 2020-09-21 17:42 – 000000000 ____D C:UsersTianAppDataLocalFlightSimulator
2021-07-18 00:32 – 2016-12-18 14:54 – 000000000 ____D C:UsersTianAppDataRoamingvlc
2021-07-17 23:39 – 2019-12-07 05:03 – 000032768 _____ C:WINDOWSsystem32configELAM
2021-07-17 23:39 – 2016-09-26 01:09 – 000000034 _____ C:UsersTianAppDataRoamingAdobeWLCMCache.dat
2021-07-17 21:39 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32NDF
2021-07-17 20:26 – 2020-12-12 16:08 – 000000000 ____D C:Program FilesDIFX
2021-07-17 16:23 – 2016-09-05 23:09 – 000000000 ____D C:UsersTianAppDataLocalAutodesk
2021-07-17 16:23 – 2016-09-05 23:09 – 000000000 ____D C:Program Files (x86)Autodesk
2021-07-17 16:23 – 2016-09-05 23:05 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAutodesk
2021-07-17 16:23 – 2016-09-05 22:58 – 000000000 ____D C:ProgramDataAutodesk
2021-07-17 13:19 – 2016-09-07 22:12 – 000000132 _____ C:UsersTianAppDataRoamingAdobe PNG Format CS6 Prefs
2021-07-17 00:30 – 2016-09-05 22:14 – 000000000 ____D C:UsersTianAppDataLocalSpotify
2021-07-16 23:58 – 2016-09-05 22:14 – 000000000 ____D C:UsersTianAppDataRoamingSpotify
2021-07-16 11:52 – 2020-12-17 23:41 – 000003418 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineUA
2021-07-16 11:52 – 2020-12-17 23:41 – 000003294 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineCore
2021-07-16 00:18 – 2018-05-25 21:03 – 000000000 ____D C:UsersTianAppDataLocalBattle.net
2021-07-15 21:26 – 2016-09-05 22:54 – 000002136 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAcrobat Reader DC.lnk
2021-07-14 21:23 – 2018-09-13 20:04 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsvJoy
2021-07-14 21:15 – 2017-12-22 20:31 – 000000000 ____D C:Program FilesLogitech
2021-07-14 21:11 – 2017-06-04 19:17 – 000000000 ____D C:ProgramDataPackage Cache
2021-07-14 21:04 – 2020-12-17 23:32 – 005182520 _____ C:WINDOWSsystem32FNTCACHE.DAT
2021-07-14 21:00 – 2016-09-05 23:01 – 000000000 ____D C:Program FilesAutodesk
2021-07-14 20:58 – 2019-12-07 05:14 – 000000000 ___SD C:WINDOWSDownloaded Program Files
2021-07-14 20:58 – 2016-09-05 23:08 – 000000000 ____D C:Program FilesCommon FilesAutodesk Shared
2021-07-14 20:58 – 2016-09-05 22:58 – 000000000 ____D C:UsersTianAppDataRoamingAutodesk
2021-07-14 20:50 – 2016-09-06 19:23 – 000000028 _____ C:WINDOWSODBC.INI
2021-07-14 20:50 – 2016-09-06 19:23 – 000000023 _____ C:WINDOWSODBCINST.INI
2021-07-14 20:48 – 2017-11-12 17:03 – 000000000 ____D C:Program FilesDynamo
2021-07-14 17:37 – 2016-09-24 15:14 – 000000000 ____D C:UsersTianAppDataLocalElevatedDiagnostics
2021-07-13 21:44 – 2016-09-24 14:28 – 001945516 _____ C:WINDOWSntbtlog.txt
2021-07-13 21:37 – 2019-12-07 05:14 – 000000000 ___HD C:WINDOWSELAMBKUP
2021-07-13 21:37 – 2016-09-05 21:29 – 000000000 ____D C:ProgramDataMalwarebytes
2021-07-13 21:34 – 2016-09-24 14:28 – 000000214 _____ C:WINDOWSTasksCreateExplorerShellUnelevatedTask.job
2021-07-13 20:24 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSSystemResources
2021-07-13 20:24 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32WinBioPlugIns
2021-07-13 20:24 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSbcastdvr
2021-07-13 20:24 – 2019-12-07 05:14 – 000000000 ____D C:Program FilesCommon FilesSystem
2021-07-13 20:23 – 2019-12-07 05:03 – 000000000 ____D C:WINDOWSCbsTemp
2021-07-13 20:13 – 2016-09-05 21:12 – 000000000 ____D C:WINDOWSsystem32MRT
2021-07-13 20:08 – 2016-09-05 21:12 – 133422552 ____C (Microsoft Corporation) C:WINDOWSsystem32MRT.exe
2021-07-13 12:57 – 2020-12-10 19:29 – 007280312 _____ (NVIDIA Corporation) C:WINDOWSsystem32nvapi64.dll
2021-07-13 12:57 – 2020-12-10 19:29 – 006215792 _____ (NVIDIA Corporation) C:WINDOWSSysWOW64nvapi.dll
2021-07-11 21:42 – 2021-02-15 20:16 – 000000000 ____D C:UsersTianAppDataRoaming.minecraft
2021-07-10 18:12 – 2020-12-17 23:41 – 000003378 _____ C:WINDOWSsystem32TasksOneDrive Standalone Update Task-S-1-5-21-4089185087-3783737969-1455578417-1001
2021-07-10 18:12 – 2020-12-17 23:34 – 000002380 _____ C:UsersTianAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk
2021-07-10 18:12 – 2016-09-06 06:18 – 000000000 ___RD C:UsersTianOneDrive
2021-07-10 11:34 – 2018-07-01 17:16 – 000000000 ____D C:WINDOWSsystem32Driverswd
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ___RD C:WINDOWSImmersiveControlPanel
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSSysWOW64setup
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSSysWOW64oobe
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSSysWOW64Dism
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32setup
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32oobe
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSsystem32Dism
2021-07-09 23:29 – 2019-12-07 05:14 – 000000000 ____D C:WINDOWSProvisioning
2021-07-09 21:04 – 2020-06-07 20:46 – 000000000 ____D C:Program FilesRockstar Games
2021-07-09 21:04 – 2020-06-07 20:46 – 000000000 ____D C:Program Files (x86)Rockstar Games
2021-07-05 19:04 – 2016-09-05 21:33 – 000000000 ____D C:Program Files (x86)Mozilla Maintenance Service
2021-07-04 17:15 – 2021-04-08 21:06 – 000000000 ____D C:UsersTianAppDataLocalBeamNG.drive
2021-07-04 17:07 – 2016-09-24 00:58 – 000000000 ____D C:UsersTianAppDataRoamingqBittorrent
2021-07-01 22:41 – 2021-01-19 20:44 – 000003386 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineCore1d6d4ef4ec39f7e
2021-07-01 22:41 – 2020-12-17 23:41 – 000003480 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineUA
2021-06-27 17:56 – 2018-07-01 17:18 – 000000000 ____D C:UsersTianAppDataLocalD3DSCache
2021-06-27 16:15 – 2020-12-17 23:41 – 000004308 _____ C:WINDOWSsystem32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000004106 _____ C:WINDOWSsystem32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003976 _____ C:WINDOWSsystem32TasksNVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003940 _____ C:WINDOWSsystem32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003894 _____ C:WINDOWSsystem32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003858 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003858 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003858 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003858 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2020-12-17 23:41 – 000003654 _____ C:WINDOWSsystem32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-27 16:15 – 2018-06-16 00:13 – 000000000 ____D C:Program Files (x86)NVIDIA Corporation
2021-06-27 16:15 – 2017-06-12 17:46 – 000000000 ____D C:Program FilesNVIDIA Corporation
2021-06-26 13:52 – 2016-09-05 21:33 – 000001232 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsFirefox.lnk
2021-06-26 13:26 – 2021-01-23 22:23 – 000000000 ____D C:UsersTianAppDataRoamingFlyByWire Installer

==================== Files in the root of some directories ========

2017-05-21 17:56 – 2017-05-21 17:56 – 000000132 _____ () C:UsersTianAppDataRoamingAdobe GIF Format CS6 Prefs
2016-09-07 22:12 – 2021-07-17 13:19 – 000000132 _____ () C:UsersTianAppDataRoamingAdobe PNG Format CS6 Prefs
2017-06-08 01:07 – 2017-06-08 01:07 – 000000132 _____ () C:UsersTianAppDataRoamingAdobe Targa Format CS6 Prefs
2016-09-26 01:09 – 2021-07-17 23:39 – 000000034 _____ () C:UsersTianAppDataRoamingAdobeWLCMCache.dat
2016-12-17 22:41 – 2017-05-23 19:46 – 000001456 _____ () C:UsersTianAppDataLocalAdobe Save for Web 13.0 Prefs
2018-09-29 18:49 – 2018-09-29 18:49 – 000000000 _____ () C:UsersTianAppDataLocaloobelibMkey.log
2016-10-02 18:06 – 2019-11-29 20:12 – 000007651 _____ () C:UsersTianAppDataLocalResmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01
Ran by Tian (22-07-2021 20:12:07)
Running from C:UsersTianDesktop
Windows 10 Home Version 20H2 19042.1110 (X64) (2020-12-18 03:41:43)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4089185087-3783737969-1455578417-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-4089185087-3783737969-1455578417-503 – Limited – Disabled)
Guest (S-1-5-21-4089185087-3783737969-1455578417-501 – Limited – Disabled)
Tian (S-1-5-21-4089185087-3783737969-1455578417-1001 – Administrator – Enabled) => C:UsersTian
WDAGUtilityAccount (S-1-5-21-4089185087-3783737969-1455578417-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled – Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled – Up to date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB}
AS: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with “Hidden” flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . . (HKLM…{DB52A2D0-CAA1-4ED1-B122-29E7EDDE187F}) (Version: 2.1.28.3 – Intel) Hidden
. . . (HKLM-x32…{06DA421D-EE23-487D-878F-F0AF97EF69AD}) (Version: 2.6.1.4 – Intel) Hidden
@BIOS B16.0307.1 (HKLM-x32…{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 – GIGABYTE) Hidden
@BIOS B16.0307.1 (HKLM-x32…InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 – GIGABYTE)
Adobe Acrobat Reader DC (HKLM-x32…{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 21.005.20058 – Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32…Adobe Creative Cloud) (Version: 3.9.1.335 – Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32…AdobeGenuineService) (Version: – Adobe)
Adobe Illustrator CC 2015 (HKLM-x32…{F2321021-08A2-44D6-B1DF-BDB415F23EC5}) (Version: 19.0 – Adobe Systems Incorporated)
Adobe InDesign CC 2015 (HKLM-x32…{BC448016-6F11-1014-B0EA-97CEE6E26CB8}) (Version: 11.0 – Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32…{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 – Adobe Systems Incorporated)
Adobe Update Management Tool (HKLM-x32…{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 8.0 – PainteR)
ANT Drivers Installer x64 (HKLM…{1D9B2721-96CC-4829-AB8C-819BDDC464AE}) (Version: 2.3.4 – Garmin Ltd or its subsidiaries) Hidden
Apex Legends (HKLM-x32…{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.0 – Electronic Arts, Inc.)
APP Center (HKLM-x32…{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 – GIGABYTE) Hidden
APP Center (HKLM-x32…InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.21.0426.1 – GIGABYTE)
Audacity 2.1.2 (HKLM-x32…Audacity®_is1) (Version: 2.1.2 – Audacity Team)
AudiotoolBooster (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…{com.audiotool.booster}}_is1) (Version: 0.2 – Unknown)
Autodesk A360 Collaboration for Revit 2017 (HKLM…Autodesk A360 Collaboration for Revit 2017) (Version: 17.0.416.0 – Autodesk)
Autodesk App Manager 2016-2017 (HKLM-x32…{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 – Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32…{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 – Autodesk)
Autodesk Collaboration for Revit 2018 (HKLM…Autodesk Collaboration for Revit 2018) (Version: 18.0.0.420 – Autodesk)
Autodesk Featured Apps 2016-2017 (HKLM-x32…{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 – Autodesk)
Battle.net (HKLM-x32…Battle.net) (Version: – Blizzard Entertainment)
Battlefield 4 (HKLM-x32…{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 – Electronic Arts)
Battlelog Web Plugins (HKLM-x32…Battlelog Web Plugins) (Version: 2.7.1 – EA Digital Illusions CE AB)
Blender (HKLM…{A0C803A1-310C-4EFF-B881-CA10CF7CD6A7}) (Version: 2.90.1 – Blender Foundation)
Canon IJ Network Scanner Selector EX (HKLM-x32…Canon_IJ_Network_Scanner_Selector_EX) (Version: – Canon Inc.)
Canon IJ Network Tool (HKLM-x32…Canon_IJ_Network_UTILITY) (Version: 3.2.0 – Canon Inc.)
Canon IJ Scan Utility (HKLM-x32…Canon_IJ_Scan_Utility) (Version: – Canon Inc.)
Canon MX720 series MP Drivers (HKLM…{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX720_series) (Version: 1.01 – Canon Inc.)
Cold Waters (HKLM-x32…1512372112_is1) (Version: 1.15g – GOG.com)
CORSAIR iCUE 4 Software (HKLM…{30F2A640-62F9-4C98-B735-7DD934936AE5}) (Version: 4.11.274 – Corsair)
CPUID CPU-Z 1.89 (HKLM…CPUID CPU-Z_is1) (Version: 1.89 – CPUID, Inc.)
CPUID HWMonitor 1.43 (HKLM…CPUID HWMonitor_is1) (Version: 1.43 – CPUID, Inc.)
CrewChiefV4 (HKLM-x32…{761147CD-6446-469D-8753-EE6468C1825F}) (Version: 4.11.0.3 – Britton IT Ltd)
DCS World (HKLM…DCS World_is1) (Version: 2.5 – Eagle Dynamics)
DCS World OpenBeta (HKLM…DCS World OpenBeta_is1) (Version: 2.5 – Eagle Dynamics)
DirectOutput (HKLM…{CD56BF03-87F9-47C7-95C4-7794CC603C27}) (Version: 8.0.213.0 – Logitech)
Discord (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…Discord) (Version: 0.0.309 – Discord Inc.)
Easy Photo Scan (HKLM-x32…{99364024-626C-4BE1-89C8-2F207023497B}) (Version: 1.00.0018 – Seiko Epson Corporation)
EasyTuneEngineService (HKLM-x32…{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.17.0327 – GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32…InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.17.0327 – GIGABYTE)
Elevated Installer (HKLM-x32…{880F7AFD-5DC8-4866-BCED-064AAAEC6D4E}) (Version: 7.2.1.0 – Garmin Ltd or its subsidiaries) Hidden
Epic Games Launcher (HKLM-x32…{8F89B0CF-8144-43EE-AB9F-B7F8F23D85FB}) (Version: 1.1.135.0 – Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM…{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
Epson Connect Printer Setup (HKLM-x32…{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.3 – Seiko Epson Corporation)
Epson Customer Research Participation (HKLM…{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.83.0000 – Seiko Epson Corporation)
EPSON ET-2720 Series Printer Uninstall (HKLM…EPSON ET-2720 Series) (Version: – Seiko Epson Corporation)
Epson ET-2720 User’s Guide (HKLM-x32…UsersGuideEpson ET-2720 User’s Guide_is1) (Version: 1.0 – Epson America, Inc.)
Epson Event Manager (HKLM-x32…{DBC38C08-9FB5-43A5-B6BA-EB10AC7DA570}) (Version: 3.11.0053 – Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32…{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 – SEIKO EPSON CORPORATION)
Epson Photo+ (HKLM-x32…{7F286969-84B8-4AB0-819F-5B18CE33588C}) (Version: 3.3.2.0 – Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32…{189DE071-E0BC-4BA5-8E34-83D5ED12600B}) (Version: 3.2.0.0 – Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32…Epson Scan 2) (Version: – Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32…{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 – SEIKO EPSON Corp.)
EPSON Scan PDF EXtensions (HKLM-x32…{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.02 – SEIKO EPSON Corp.)
Epson ScanSmart (HKLM-x32…{BF35B9D9-C4A1-40DD-B13C-46F35BD35282}) (Version: 3.5.2 – Seiko Epson Corporation)
Epson Software Updater (HKLM-x32…{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 – Seiko Epson Corporation)
EpsonNet Print (HKLM…{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 – SEIKO EPSON Corporation)
FARO LS 1.1.501.0 (64bit) (HKLM-x32…{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 – FARO Scanner Production)
FARO LS 1.1.505.0 (64bit) (HKLM-x32…{8834451B-6209-4E02-9EF4-4EF9E3C1F70F}) (Version: 5.5.0.44203 – FARO Scanner Production)
FARO LS 1.1.600.6 (64bit) (HKLM-x32…{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 – FARO Scanner Production)
FFB Racing Wheel drivers (HKLM-x32…{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 1.TTRS.2018 – Thrustmaster)
Flight Support (HKLM…{29F32933-5906-46C0-B0DA-64F618A3AC4B}) (Version: 8.0.150.0 – Logitech)
FlyByWire Installer (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…fbw_installer) (Version: 1.2.0 – FlyByWire Simulations)
FormIt 360 Converter For Revit 2017 (HKLM…{637211B6-D2E9-474A-BF06-4F61F1254104}) (Version: 1.9.0.0 – Autodesk)
FormIt Converter For Revit 2018 (HKLM…{9FFF4CAD-41A6-44D2-9467-A16AC4B6DC2A}) (Version: 1.9.3.0 – Autodesk)
Garmin Express (HKLM-x32…{0B166D66-D3AD-485D-A530-F7C739717636}) (Version: 7.2.1.0 – Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32…{685073e4-29ad-4c52-b19f-8c7388f68b96}) (Version: 7.2.1.0 – Garmin Ltd or its subsidiaries)
GigabyteFirmwareUpdateUtility (HKLM-x32…{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.00.0000 – GIGABYTE) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32…InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.00.0000 – GIGABYTE)
Google Chrome (HKLM-x32…Google Chrome) (Version: 91.0.4472.164 – Google LLC)
Google Earth Pro (HKLM…{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 – Google)
Google Toolbar for Internet Explorer (HKLM-x32…{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 – Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32…{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 – Google Inc.)
Gtk# for .Net 2.12.26 (HKLM-x32…{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 – Xamarin, Inc.)
Halifax Stanfield International Airport CYHZ MSFS (HKLM…{F0D7784B-F524-4DE7-82AA-3526E1726505}) (Version: 1.1.0 – FSimStudios)
HitFilm 4 Express (HKLM…{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 – FXHOME)
Intel® Driver Update Utility (HKLM-x32…{fe2eebd3-ee15-4538-bb19-b627e3f2a911}) (Version: 2.6.1.4 – Intel)
IronPython 2.7.3 (HKLM-x32…{1EBADAEA-1A0F-40E3-848C-0DD8C5E5A10D}) (Version: 2.7.31000.0 – IronPython Team)
Kerbal Space Program Breaking Ground (HKLM-x32…Kerbal Space Program Breaking Ground_is1) (Version: – )
Kerbal Space Program Theres No Place Like Home (HKLM-x32…Kerbal Space Program Theres No Place Like Home_is1) (Version: – )
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32…{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 – Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32…{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 – Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32…{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 – Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32…{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 – Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32…{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 – Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32…{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 – Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32…{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32…{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
Linksys WUSB6100M (HKLM-x32…{A3FB9352-2ED0-48D7-97B0-D64AE2757AD8}) (Version: 1.0.0.6 – Linksys)
Logitech Options (HKLM…LogiOptions) (Version: 8.54.161 – Logitech)
Malwarebytes version 4.4.3.125 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.3.125 – Malwarebytes)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 91.0.864.71 – Microsoft Corporation)
Microsoft Flight Simulator SDK 0.6.0.0 (HKLM…{67F758E8-4A69-40B9-BD27-1C995177180B}) (Version: 0.6.0.0 – Microsoft)
Microsoft Office Professional Plus 2010 (HKLM-x32…Office14.PROPLUS) (Version: 14.0.7015.1000 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…OneDriveSetup.exe) (Version: 21.119.0613.0001 – Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM…{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 – Microsoft Corporation)
Microsoft Server Speech Recognition Language – TELE (en-IN) (HKLM-x32…{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 – Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB (HKLM…{52EBC484-44A1-4DC5-824A-0A503735ABD8}) (Version: 12.1.4100.1 – Microsoft Corporation)
Microsoft Update Health Tools (HKLM…{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 (HKLM…{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.4148 (HKLM…{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.6161 (HKLM…{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729 (HKLM-x32…{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.4148 (HKLM-x32…{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 – Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.6161 (HKLM-x32…{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 – Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.60610 (HKLM-x32…{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.60610 (HKLM-x32…{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.40660 (HKLM-x32…{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.28.29914 (HKLM-x32…{43d1ce82-6f55-4860-a938-20e5deb28b98}) (Version: 14.28.29914.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.28.29914 (HKLM-x32…{1b5476d9-ab8e-4b0d-b004-059a1bd5568b}) (Version: 14.28.29914.0 – Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM…Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 – Microsoft Corporation)
Microsoft Visual Studio 2017 (HKLM-x32…{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.10.30637.0 – Microsoft Corporation)
Minecraft Launcher (HKLM-x32…{836613A9-879F-427F-8522-52B357801273}) (Version: 1.0.0.0 – Mojang)
Mozilla Firefox 89.0.2 (x64 en-GB) (HKLM…Mozilla Firefox 89.0.2 (x64 en-GB)) (Version: 89.0.2 – Mozilla)
Mozilla Maintenance Service (HKLM-x32…MozillaMaintenanceService) (Version: 89.0.2.7843 – Mozilla)
MSI Afterburner 4.5.0 (HKLM-x32…Afterburner) (Version: 4.5.0 – MSI Co., LTD)
MSI Gaming APP (HKLM-x32…{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.74 – MSI)
MSI MysticLight (HKLM-x32…{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 2.0.0.59 – MSI)
Notepad++ (64-bit x64) (HKLM…Notepad++) (Version: 7.6.3 – Notepad++ Team)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 – NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 – NVIDIA Corporation)
NVIDIA Graphics Driver 471.41 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 – NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.38.60 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 – NVIDIA Corporation)
NVIDIA Photoshop Plug-ins 64 bit (HKLM-x32…{5E386C5B-CDE7-435A-B5C9-EC73A1B0553A}) (Version: 8.50 – )
NVIDIA PhysX System Software 9.19.0218 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 – NVIDIA Corporation)
NVIDIA Texture Tools Exporter for Adobe Photoshop (HKLM-x32…NVIDIA Texture Tools Exporter for Adobe Photoshop) (Version: 2020.1.3 – NVIDIA Corporation)
OnScreen Control (HKLM-x32…{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 1.39 – LG Electronics Inc)
OpenAL (HKLM-x32…OpenAL) (Version: – )
Origin (HKLM-x32…Origin) (Version: 10.5.99.47918 – Electronic Arts, Inc.)
Overwatch (HKLM-x32…Overwatch) (Version: – Blizzard Entertainment)
Paradox Launcher v2 (HKLM…{986898D9-7C26-4E7F-814C-9B5472FA3209}) (Version: 2.0.0.0 – Paradox Interactive)
PDF Settings CS6 (HKLM-x32…{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 – Adobe Systems Incorporated) Hidden
PDFsam Basic (HKLM-x32…{0F7F1493-D16D-4C7B-A271-17A12168CCC4}) (Version: 3.30.2.0 – Andrea Vacondio)
PDFsam Enhanced 4 (HKLM-x32…PDFsam Enhanced 4) (Version: 4.0.3.32301 – Copyright 2017 Andrea Vacondio)
PDFsam Enhanced 4 Asian Fonts Pack (HKLM…{B196CA8F-9E0B-4313-B869-D70ABBF39D65}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 Convert Module (HKLM…{2703396F-9F8D-4B33-9505-EC9790843796}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 Create Module (HKLM…{B1F90D78-911F-478A-807E-C11F549F54F0}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 Edit Module (HKLM…{5738E844-1029-4CEF-A31C-E1825431EC5B}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 Forms Module (HKLM…{C54F9BD4-9C60-4B72-A8D2-30B4D003F348}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 Insert Module (HKLM…{EFE05902-4CD7-448E-9504-45FD34983C48}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 OCR Module (HKLM…{AE52B43E-540F-4144-895D-D84477ADBAD8}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 Review Module (HKLM…{8CE14103-AA20-4F03-A119-5DA176ECFC1C}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 Secure Module (HKLM…{F9B225E5-3A68-4DAB-95E0-13B32DE69277}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
PDFsam Enhanced 4 View Module (HKLM…{DF4F9D60-BF67-4BA3-8847-899F6A3C157E}) (Version: 4.0.6.32323 – Andrea Vacondio) Hidden
Personal Accelerator for Revit (HKLM…{7C317DB0-F399-4024-A289-92CF4B6FB256}) (Version: 16.0.1205.0 – Autodesk) Hidden
Personal Accelerator for Revit (HKLM…Personal Accelerator for Revit) (Version: 16.0.1205.0 – Autodesk)
PlanetSide 2 (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…DG0-PlanetSide 2) (Version: – Sony Online Entertainment)
PlayStationNow (HKLM-x32…{8B9D5454-70DA-4A4B-8FA2-10716F56B3B7}) (Version: 9.7.23 – Sony Interactive Entertainment Network America LLC)
Private Internet Access (HKLM…{33023371-7761-4F81-BBB1-0E0D0D175ACF}) (Version: 2.9.0+06393 – Private Internet Access, Inc.)
Private Internet Access Support Files (HKLM-x32…{7D72DAFF-DCB2-437B-BC22-4B2ABF21462B}) (Version: 1.0.0.0 – Private Internet Access)
Private Internet Access WinTUN Driver (HKLM…{0419A0C0-4CC8-459E-9BAE-F3BF5D2E2CCB}) (Version: 1.0 – Private Internet Access, Inc.) Hidden
PunkBuster Services (HKLM-x32…PunkBusterSvc) (Version: 0.991 – Even Balance, Inc.)
qBittorrent 4.3.4.1 (HKLM-x32…qBittorrent) (Version: 4.3.4.1 – The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32…{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 – Realtek)
Realtek High Definition Audio Driver (HKLM-x32…{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8228 – Realtek Semiconductor Corp.)
REDlauncher (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: – GOG.com)
Rhinoceros 5 (64-bit) (HKLM…{0F0ABAFB-A710-45CC-B53E-37F1F70F0075}) (Version: 5.12.50810.13095 – Robert McNeel & Associates)
Rhinoceros 5 (HKLM-x32…{8586863C-9648-441E-BF3E-1CBD5CEB40D1}) (Version: 5.12.50810.13095 – Robert McNeel & Associates)
Rhinoceros 5 Help Media (HKLM-x32…{17B822A0-154B-41BB-A049-8586899F1FD6}) (Version: 5.11.50106.18145 – Robert McNeel & Associates)
Rhinoceros 5 Language Pack Installer (en-US) (HKLM-x32…{3CE4FE5E-D7BE-41EF-9C6A-752290702DAC}) (Version: 5.12.50810.13095 – Robert McNeel & Associates)
RivaTuner Statistics Server 7.1.0 (HKLM-x32…RTSS) (Version: 7.1.0 – Unwinder)
Rockstar Games Launcher (HKLM-x32…Rockstar Games Launcher) (Version: 1.0.42.369 – Rockstar Games)
Rockstar Games Social Club (HKLM-x32…Rockstar Games Social Club) (Version: 2.0.8.5 – Rockstar Games)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32…{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: – Microsoft)
SketchUp 2019 (HKLM…{0FB756F3-A84B-E5F8-387F-B9F186E6D497}) (Version: 19.0.685.20289 – Trimble, Inc.)
SketchUp Import 2016-2017 (HKLM-x32…{063925DB-9D8C-48E2-8F04-1B7038B6C783}) (Version: 2.2.0 – Autodesk)
Smart Technology Programming Software 7.0.53.6 (HKLM…{A370D882-CCAA-4C53-9518-2B272EA6CEDB}) (Version: 7.0.53.6 – Mad Catz)
SpaceEngine version 0.9.8.0 (HKLM-x32…{6E7A40FA-86CE-4844-A7DC-F8769F21A62F}_is1) (Version: 0.9.8.0 – SpaceEngine)
Spotify (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…Spotify) (Version: 1.1.62.583.gdac868ed – Spotify AB)
Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)
TeamSpeak 3 Client (HKLM…TeamSpeak 3 Client) (Version: 3.1.7 – TeamSpeak Systems GmbH)
TrinusVR version 2.1.0 (HKLM-x32…{A66AD08F-FC5B-4583-9A7D-4636F5637B2C}_is1) (Version: 2.1.0 – Odd Sheep SL)
UM-ONE Driver (HKLM…RolandRDID0115) (Version: – Roland Corporation)
Unity (HKLM-x32…Unity) (Version: 2017.1.3p1 – Unity Technologies ApS)
Unity Web Player (HKUS-1-5-21-4089185087-3783737969-1455578417-1001…UnityWebPlayer) (Version: 4.6.4f1 – Unity Technologies ApS)
Uplay (HKLM-x32…Uplay) (Version: 97.0 – Ubisoft)
Visual C++ 2008 – x64 (KB958357) – v9.0.30729.177 (HKLM-x32…{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
Visual C++ 2008 – x64 (KB958357) – v9.0.30729.177 (HKLM-x32…{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
Visual C++ 2008 – x64 (KB958357) – v9.0.30729.177 (HKLM-x32…{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
Visual C++ 2008 – x64 (KB958357) – v9.0.30729.177 (HKLM-x32…{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
Visual C++ 2008 – x86 (KB958357) – v9.0.30729.177 (HKLM-x32…{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
Visual C++ 2008 – x86 (KB958357) – v9.0.30729.177 (HKLM-x32…{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
Visual C++ 2008 – x86 (KB958357) – v9.0.30729.177 (HKLM-x32…{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
Visual C++ 2008 – x86 (KB958357) – v9.0.30729.177 (HKLM-x32…{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 – Microsoft Corporation)
VLC media player (HKLM-x32…VLC media player) (Version: 3.0.12 – VideoLAN)
V-Ray for Rhinoceros 5 x64 adv (HKLM-x32…V-Ray for Rhinoceros 5 x64 adv 1.50.22564) (Version: 1.50.22564 – Chaos Software, Ltd)
V-Ray for SketchUp adv (HKLM-x32…V-Ray for SketchUp adv 2.00.25539) (Version: 2.00.25539 – Chaos Software, Ltd)
vs_communitymsi (HKLM-x32…{A041943F-C97B-48F6-8F23-C5078F99BB3A}) (Version: 15.0.26323 – Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32…{1210EE60-E253-407D-B537-D36898049CF0}) (Version: 15.0.26228 – Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32…{581E5656-26E2-4A02-9711-48C8E4998310}) (Version: 15.0.26208 – Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32…{15D591B0-7B40-4957-B6C0-EB7452B5AAB6}) (Version: 15.0.26228 – Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32…{DC296244-0701-4EDE-9696-05B9C1D017B3}) (Version: 15.0.26228 – Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32…{11230C85-1813-4BC3-9C24-E0B74B59653E}) (Version: 15.0.26208 – Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32…{9477F337-FD16-4ACA-8217-E2D7A0F92603}) (Version: 15.0.26301 – Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32…{497A5ACE-DA03-4412-A110-910B2C450720}) (Version: 15.0.26424 – Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32…{A8B77523-13AB-46B9-B54F-5483E09668F9}) (Version: 15.0.26228 – Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM…VulkanRT1.0.26.0) (Version: 1.0.26.0 – LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM…VulkanRT1.0.26.0-2) (Version: 1.0.26.0 – LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM…VulkanRT1.0.37.0) (Version: 1.0.37.0 – LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM…VulkanRT1.0.39.1) (Version: 1.0.39.1 – LunarG, Inc.)
Vulkan Run Time Libraries 1.0.65.0 (HKLM…VulkanRT1.0.65.0) (Version: 1.0.65.0 – LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM…VulkanRT1.0.65.1) (Version: 1.0.65.1 – LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM…VulkanRT1.0.65.1-2) (Version: 1.0.65.1 – LunarG, Inc.) Hidden
Wacom Tablet (HKLM…Wacom Tablet Driver) (Version: 6.3.42-2 – Wacom Technology Corp.)
WibuKey Setup (WibuKey Remove) (HKLM…{00060000-0000-1004-8002-0000C06B5161}) (Version: Version 6.00d of 2011-Sep-22 (Build 138) (Setup) – WIBU-SYSTEMS AG)
Windows 10 Upgrade Assistant (HKLM-x32…{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17354 – Microsoft Corporation)
Windows Driver Package – Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM…F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 – Dynastream Innovations, Inc.)
Windows Driver Package – Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM…D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 – Silicon Labs Software)
Windows Driver Package – Sony Computer Entertainment Inc. Wireless controller for PLAYSTATION®3 Driver Package (01/20/2012 1.4.0.0) (HKLM…D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Version: 01/20/2012 1.4.0.0 – Sony Computer Entertainment Inc.)
Windows Resource Kit Tools – SubInAcl.exe (HKLM-x32…{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 – Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM…WinRAR archiver) (Version: 5.40.0 – win.rar GmbH)
X56 H.O.T.A.S. (HKLM…{FC411B84-E868-404E-BBDB-783DD7FC9276}) (Version: 8.0.213.0 – Logitech)
Zotero Standalone 4.0.29.10 (x86 en-US) (HKLM-x32…Zotero Standalone 4.0.29.10 (x86 en-US)) (Version: 4.0.29.10 – Zotero)

Packages:
=========
Canon Inkjet Print Utility -> C:Program FilesWindowsApps34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-18] (Canon Inc.)
Facebook -> C:Program FilesWindowsAppsFACEBOOK.FACEBOOK_2021.312.1.0_neutral__8xx8rvfyw5nnt [2021-03-26] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-03] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:Program FilesWindowsAppsNVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-07-19] (NVIDIA Corp.)
Photos Add-on -> C:Program FilesWindowsAppsMicrosoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Photos Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-13] (Microsoft Corporation)
Twitter -> C:Program FilesWindowsApps9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-10] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKUS-1-5-21-4089185087-3783737969-1455578417-1001_ClassesCLSID{0D327DA6-B4DF-4842-B833-2CFF84F0948F}localserver32 -> C:Program FilesAutodeskAutoCAD 2017acad.exe /Automation => No File
CustomCLSID: HKUS-1-5-21-4089185087-3783737969-1455578417-1001_ClassesCLSID{0E270DAA-1BE6-48F2-AC49-1636531011F7} -> [Creative Cloud Files] => C:UsersTianCreative Cloud Files [2016-11-30 03:08]
CustomCLSID: HKUS-1-5-21-4089185087-3783737969-1455578417-1001_ClassesCLSID{720DB9AF-D62C-4ED0-A377-429C22312852}localserver32 -> C:Program FilesAutodeskAutoCAD 2017acad.exe => No File
CustomCLSID: HKUS-1-5-21-4089185087-3783737969-1455578417-1001_ClassesCLSID{E2C40589-DE61-11ce-BAE0-0020AF6D7005}InprocServer32 -> C:Program FilesAutodeskAutoCAD 2017en-USacadficn.dll => No File
CustomCLSID: HKUS-1-5-21-4089185087-3783737969-1455578417-1001_ClassesCLSID{e8c77137-e224-5791-b6e9-ff0305797a13}InprocServer32 -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellExecuteHooks: Groove GFS Stub Execution Hook – {B5A7F190-DDA6-4420-B3BA-52453494E6CD} – C:Program FilesMicrosoft OfficeOffice14GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook – {B5A7F190-DDA6-4420-B3BA-52453494E6CD} – D:Program FilesMicrosoft OfficeOffice14GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:Program Files (x86)AdobeAdobe Creative CloudCoreSyncExtensionCoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:Program Files (x86)AdobeAdobe Creative CloudCoreSyncExtensionCoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:Program Files (x86)AdobeAdobe Creative CloudCoreSyncExtensionCoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:Program Files (x86)AdobeAdobe Creative CloudCoreSyncExtensionCoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:Program FilesNew folderNotepad++NppShell_06.dll [2019-01-27] (Notepad++ -> )
ContextMenuHandlers1: [PDFsamEnhanced4_ManagerExt] -> {6641FF9D-C10F-4B6A-B25E-9978121F33FF} => C:Program FilesPDFsam Enhanced 4creator-context-menu.dll [2017-02-22] (ANDREA VACONDIO -> Andrea Vacondio)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:Program FilesWinRarrarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:Program FilesWinRarrarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:WINDOWSSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2cec8fd58a80e6eaigfxDTCM.dll [2020-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WINDOWSSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_5d5c294bb8d17217nvshext.dll [2021-07-13] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:Program Files (x86)AdobeAdobe Creative CloudCoreSyncExtensionCoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:Program FilesWinRarrarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:Program FilesWinRarrarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM…Drivers32: [VIDC.RTV1] => C:WINDOWSsystem32rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM…Drivers32: [VIDC.RTV1] => C:WindowsSysWOW64rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:UsersTianAppDataRoamingMicrosoftWindowsStart MenuProgramsChrome AppsGeForce Experience Stream Client.lnk -> C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC) -> –profile-directory=Default –app-id=gjljknijpnfibppaijefibndmiabonep

==================== Loaded Modules (Whitelisted) =============

2016-10-12 02:08 – 2016-10-12 02:08 – 000124928 _____ () [File not signed] \?C:Program Files (x86)AdobeAdobe Creative CloudCCXProcessjsnode_modulesffibuildReleaseffi_bindings.node
2016-10-12 02:08 – 2016-10-12 02:08 – 000118272 _____ () [File not signed] \?C:Program Files (x86)AdobeAdobe Creative CloudCCXProcessjsnode_modulesfs-extbuildReleasefs-ext.node
2016-10-12 02:08 – 2016-10-12 02:08 – 000166400 _____ () [File not signed] \?C:Program Files (x86)AdobeAdobe Creative CloudCCXProcessjsnode_modulesidle-gcbuildReleaseidle-gc.node
2016-10-12 02:08 – 2016-10-12 02:08 – 000223232 _____ () [File not signed] \?C:Program Files (x86)AdobeAdobe Creative CloudCCXProcessjsnode_modulesnode-vulcanjsbuildReleaseVulcanJS.node
2016-10-12 02:08 – 2016-10-12 02:08 – 000117248 _____ () [File not signed] \?C:Program Files (x86)AdobeAdobe Creative CloudCCXProcessjsnode_modulesrefbuildReleasebinding.node
2021-04-22 15:48 – 2021-04-22 15:48 – 001867264 _____ () [File not signed] C:Program Files (x86)GIGABYTEAppCenterBDR_info.dll
2015-02-17 01:47 – 2015-02-17 01:47 – 000105472 _____ () [File not signed] C:Program Files (x86)GIGABYTEEasyTuneEngineServiceycc.dll
2018-06-16 00:38 – 2016-04-20 14:12 – 000772608 _____ () [File not signed] C:Program Files (x86)MSIMSI OC KitActiveX_ServiceLibUSB_DLL.dll
2018-06-16 00:26 – 2017-08-02 14:48 – 000237568 _____ () [File not signed] C:Program Files (x86)MSIMysticLightLEDControl.dll
2016-10-05 02:25 – 2012-08-31 10:30 – 000312832 _____ (CANON INC.) [File not signed] C:Program Files (x86)CanonIJ Network Scanner Selector EXCNSS_ENU.DLL
2016-10-05 02:24 – 2012-07-31 08:48 – 000359936 _____ (CANON INC.) [File not signed] C:WINDOWSSystem32CNMN6PPM.DLL
2018-06-16 00:38 – 2015-06-23 16:41 – 000082432 _____ (Fintek) [File not signed] C:Program Files (x86)MSIGaming APPLibFintekUSBDll.dll
2021-03-09 14:00 – 2021-03-09 14:00 – 000205824 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:Program Files (x86)GIGABYTEAppCenteryccV3.dll
2016-01-21 11:47 – 2016-01-21 11:47 – 000100352 _____ (Saitek) [File not signed] C:Program FilesSmartTechnologySoftwareManuExtensionDLLsAppLaunchEventDll.dll
2020-02-07 17:20 – 2020-02-07 17:20 – 000132096 _____ (Seiko Epson Corporation) [File not signed] C:Program Files (x86)EPSON SoftwareEvent Managerepnsm.dll
2018-03-05 16:41 – 2018-03-05 16:41 – 000057856 _____ (Seiko Epson Corporation) [File not signed] C:Program Files (x86)EPSON SoftwareEvent ManagerEPNWPSHDevFinder.DLL
2009-10-21 17:39 – 2009-10-21 17:39 – 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:Program Files (x86)EPSON SoftwareEvent ManagerLcMgr.dll
2016-09-14 14:31 – 2016-09-14 14:31 – 000500736 ____S (SEIKO EPSON CORPORATION) [File not signed] C:WINDOWSSystem32enppmon.dll
2021-03-24 13:30 – 2021-03-24 13:30 – 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] D:Program FilesCorsairSiUSBXp.dll
2015-10-14 01:15 – 2015-10-14 01:15 – 002042368 _____ (TODO: <Company name>) [File not signed] C:Program Files (x86)GIGABYTEAppCenterosvi.dll
2017-03-15 15:01 – 2017-03-15 15:01 – 007702528 _____ (TODO: <Company name>) [File not signed] C:Program Files (x86)GIGABYTEEasyTuneEngineServiceGbtNvGpuLib.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:ProgramDataReprise:wupeogjxlctlfudivq`qsp`20hfm [0]
AlternateDataStreams: C:ProgramDataReprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:UsersPublicAppData:CSM [486]
AlternateDataStreams: C:UsersPublicShared Files:VersionCache [480]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The “AlternateShell” will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKUS-1-5-21-4089185087-3783737969-1455578417-1001SoftwareClasses.scr: AutoCADScriptFile =>

==================== Internet Explorer (Whitelisted) ==========

BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:Program FilesMicrosoft OfficeOffice14GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_64.dll [2016-10-10] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:Program FilesMicrosoft OfficeOffice14URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:Program Files (x86)Epson SoftwareE-Web Printewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:Program FilesMicrosoft OfficeOffice14GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: PDFsam Enhanced 4 Helper -> {952B1B0C-7ABC-49DD-8CC8-A7E73675E4F0} -> C:Program Files (x86)PDFsam Enhanced 4creator-ie-helper.dll [2017-02-22] (ANDREA VACONDIO -> Andrea Vacondio)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_32.dll [2016-10-10] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:Program FilesMicrosoft OfficeOffice14URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM – Google Toolbar – {2318C2B1-4965-11d4-9B18-009027A5CD4F} – C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_64.dll [2016-10-10] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 – Google Toolbar – {2318C2B1-4965-11d4-9B18-009027A5CD4F} – C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbar_32.dll [2016-10-10] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 – PDFsam Enhanced 4 Toolbar – {C33F5D76-0A77-4A99-8274-54AD52AF7D1B} – C:Program Files (x86)PDFsam Enhanced 4creator-ie-plugin.dll [2017-02-22] (ANDREA VACONDIO -> Andrea Vacondio)
Toolbar: HKLM-x32 – E-Web Print – {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} – C:Program Files (x86)Epson SoftwareE-Web Printewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-01 23:54 – 2019-03-01 23:56 – 000002839 _____ C:WINDOWSsystem32driversetchosts
127.0.0.1 media-match.com
127.0.0.1 adclick.g.doublecklick.net
127.0.0.1 www.googleadservices.com
127.0.0.1 pagead2.googlesyndication.com
127.0.0.1 googleads.g.doubleclick.net
127.0.0.1 pubads.g.doubleclick.net
127.0.0.1 securepubads.g.doubleclick.net
127.0.0.1 omaze.com
127.0.0.1 bounceexchange.com
127.0.0.1 core.insightexpressai.com
127.0.0.1 content.bitsontherun.com
127.0.0.1 s0.2mdn.net
127.0.0.1 v.jwpcdn.com
127.0.0.1 d2gi7ultltnc2u.cloudfront.net
127.0.0.1 cs283.wpc.teliasoneracdn.net
127.0.0.1 cs126.wpc.teliasoneracdn.net
127.0.0.1 u.scdn.co
127.0.0.1 cs126.wpc.edgecastcdn.net
127.0.0.1 pagead46.l.doubleclick.net
127.0.0.1 pagead.l.doubleclick.net
127.0.0.1 video-ad-stats.googlesyndication.com
127.0.0.1 pagead-googlehosted.l.google.com
127.0.0.1 partnerad.l.doubleclick.net
127.0.0.1 adserver.adtechus.com
127.0.0.1 na.gmtdmp.com
127.0.0.1 anycast.pixel.adsafeprotected.com
127.0.0.1 ads.pubmatic.com
127.0.0.1 idsync-ext.rlcdn.com
127.0.0.1 www.googletagservices.com
127.0.0.1 googlehosted.l.googleusercontent.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:ProgramDataOracleJavajavapath;C:WINDOWSsystem32;C:WINDOWS;C:WINDOWSSystem32Wbem;C:WINDOWSSystem32WindowsPowerShellv1.0;C:Program FilesCommon FilesAutodesk Shared;C:Program Files (x86)GtkSharp2.12bin;C:Program FilesMicrosoft SQL Server120ToolsBinn;C:Program Files (x86)NVIDIA CorporationPhysXCommon;C:WINDOWSsystem32;C:WINDOWS;C:WINDOWSSystem32Wbem;C:WINDOWSSystem32WindowsPowerShellv1.0;C:WINDOWSSystem32OpenSSH;C:Program FilesNVIDIA CorporationNVIDIA NvDLISR
HKUS-1-5-21-4089185087-3783737969-1455578417-1001Control PanelDesktop\Wallpaper -> D:My FilesPicturesWallpapersNature34378168630_149e4e4fe6_o.jpg
DNS Servers: 192.168.0.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{25D688F3-9595-4363-B81A-46A53E840EB2}E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe] => (Allow) E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [TCP Query User{1387E9D4-4525-4E6C-9891-7FB2EA4B6084}E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe] => (Allow) E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [{7EE721EB-F97C-4E6C-A0AC-F7F90E9032BC}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{6057E73C-CE43-4941-A754-D4F0EAD07958}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{6C3363FB-A6E8-494D-87E7-53271CD489AF}] => (Allow) D:Program FilesOriginBattlefield 4BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{45361AB0-1288-4E65-943B-C4DE9EC0FB04}] => (Allow) D:Program FilesOriginBattlefield 4BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{E0DB964A-8AF3-4DD4-A2BC-0DE69F5E4D0E}] => (Allow) D:Program FilesOriginBattlefield 4BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{6E4EFB52-156C-4892-A460-7EA24CC0AEF8}] => (Allow) D:Program FilesOriginBattlefield 4BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{C6F9215A-D63A-4481-92FC-43E916ED448B}E:program filessidmeierscivilizationvibasebinarieswin64eoscivilizationvi_dx12.exe] => (Allow) E:program filessidmeierscivilizationvibasebinarieswin64eoscivilizationvi_dx12.exe (Firaxis Games) [File not signed]
FirewallRules: [TCP Query User{63390421-ED95-433D-A1C5-CEA340CF42C1}E:program filessidmeierscivilizationvibasebinarieswin64eoscivilizationvi_dx12.exe] => (Allow) E:program filessidmeierscivilizationvibasebinarieswin64eoscivilizationvi_dx12.exe (Firaxis Games) [File not signed]
FirewallRules: [{E9ED3F1C-A2C8-430D-B235-4E5E8B765DD9}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{21A75EB8-0D5B-4656-971D-E5E3F58850B6}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{081A098A-EA38-4730-9FB9-9FC2963E29BF}] => (Allow) E:SteamLibrarysteamappscommonMicrosoftFlightSimulatorFlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{45BF3EBE-27AE-4B8E-9B72-9203D0893988}] => (Allow) E:SteamLibrarysteamappscommonMicrosoftFlightSimulatorFlightSimulator.exe (Asobo Studio) [File not signed]
FirewallRules: [{FE65F02E-2DCD-41CB-8EF4-68A54DC4F436}] => (Allow) D:Program FilesSteamsteamappscommonSpaceEnginesystemLaunchPad.exe () [File not signed]
FirewallRules: [{94857007-1182-4FCA-961F-C604997AA495}] => (Allow) D:Program FilesSteamsteamappscommonSpaceEnginesystemLaunchPad.exe () [File not signed]
FirewallRules: [{3C52FDEC-2D66-4863-B845-D4BED22C41DB}] => (Allow) D:Program FilesSteamsteamappscommonSpaceEnginesystemSpaceEngine.exe (SpaceEngine) [File not signed]
FirewallRules: [{44279977-607F-426C-A71D-83CC00F33893}] => (Allow) D:Program FilesSteamsteamappscommonSpaceEnginesystemSpaceEngine.exe (SpaceEngine) [File not signed]
FirewallRules: [{EE439B5E-3855-4DAE-ADD7-978C92EE3DBD}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3A127A43-DE98-4267-9120-7E9CCCB14809}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5AC18C49-E7FE-4281-9C98-8CD881747EED}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A99B528A-08EF-46AC-80F6-1449317C2F7C}] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{029206B1-E71E-4EFC-B999-E20C804ADDA0}] => (Allow) C:Program Files (x86)AviraSoftwareUpdateravirasoftwareupdatertoastnotificationsbridge.exe => No File
FirewallRules: [{5DFBBD0F-D9DD-4652-86B7-30310A12E441}] => (Allow) C:Program Files (x86)AviraSoftwareUpdateravirasoftwareupdatertoastnotificationsbridge.exe => No File
FirewallRules: [{AC6AE80A-0674-46C4-AE9A-EB28C504C7FB}] => (Block) C:Program Files (x86)AviraSoftwareUpdateravirasoftwareupdatertoastnotificationsbridge.exe => No File
FirewallRules: [UDP Query User{222E9909-2ADB-43CF-A3C8-D3824286AB14}Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe] => (Allow) Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe () [File not signed]
FirewallRules: [TCP Query User{B6871777-8886-4CE7-B23F-5219D7397B71}Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe] => (Allow) Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe () [File not signed]
FirewallRules: [UDP Query User{47794443-76B8-46D8-81F3-BABA6EDC7211}Z:program fileseagle dynamicsdcs world openbetasrssr-clientradio.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetasrssr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob – GitHub.com/Ciribob)
FirewallRules: [TCP Query User{8A772498-26D1-4EA3-941D-5AAB99750A50}Z:program fileseagle dynamicsdcs world openbetasrssr-clientradio.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetasrssr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob – GitHub.com/Ciribob)
FirewallRules: [{CBA275FC-5B55-4DE4-B0ED-67C75901714E}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{40B94FF5-32D5-49C9-B507-98EFB9BD56B7}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [UDP Query User{79291864-1035-4D94-AA24-1013DB1BF9B0}Z:program fileseagle dynamicsdcs world openbetabinmodelviewer.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabinmodelviewer.exe => No File
FirewallRules: [TCP Query User{F8A8A8D1-953A-4AF3-A550-D831F53AAC5C}Z:program fileseagle dynamicsdcs world openbetabinmodelviewer.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabinmodelviewer.exe => No File
FirewallRules: [UDP Query User{90B47A72-3F15-49A8-A230-A6B5683FCD58}Z:program fileseagle dynamicsdcs worldbinmodelviewer.exe] => (Allow) Z:program fileseagle dynamicsdcs worldbinmodelviewer.exe (Eagle Dynamics) [File not signed]
FirewallRules: [TCP Query User{F70A353B-76B5-4A02-8EE5-3ADD512BDAD3}Z:program fileseagle dynamicsdcs worldbinmodelviewer.exe] => (Allow) Z:program fileseagle dynamicsdcs worldbinmodelviewer.exe (Eagle Dynamics) [File not signed]
FirewallRules: [{3C0C4DA8-7B64-493B-A07A-AB3A755A7780}] => (Allow) D:Program FilesSteambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{404DA16B-C7E9-4AFC-A484-0EA561FF7B05}] => (Allow) D:Program FilesSteambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A61D6C8E-562B-42C0-87F7-1318D34EFC85}] => (Allow) D:Program FilesSteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtourscfg.exe (Valve -> )
FirewallRules: [{E2726AD5-3E61-477A-95F1-41353405650C}] => (Allow) D:Program FilesSteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtourscfg.exe (Valve -> )
FirewallRules: [{B1CA2B6A-2C78-4FE6-B7BA-72EDF3EFCDD0}] => (Allow) D:Program FilesSteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtours.exe (Valve -> )
FirewallRules: [{881C2938-9CC7-44C1-94FD-276EC1F37AA5}] => (Allow) D:Program FilesSteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtours.exe (Valve -> )
FirewallRules: [{D49B725F-03F4-4D75-B358-165DB102BB23}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{CFE45214-CB8D-4DBB-A516-524B239C6F6E}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{CBAEC2B3-B19A-4629-99AF-F1F5E2710C46}] => (Allow) D:Oculus AppsSoftwareepic-games-odinEngineBinariesWin64CrashReportClient.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{20836F37-83E7-4898-BACD-E92CC038A237}] => (Allow) D:Oculus AppsSoftwareepic-games-odinEngineBinariesWin64CrashReportClient.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{069047DB-C355-464E-A0FD-1AC597C976C4}] => (Allow) D:Oculus AppsSoftwareepic-games-odinRoboRecallBinariesWin64RoboRecall-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A008942C-59BB-4699-AF37-720AE5193DF6}] => (Allow) D:Oculus AppsSoftwareepic-games-odinRoboRecallBinariesWin64RoboRecall-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{C628BB8D-8346-4A8C-8489-4E5FA326BCAE}] => (Allow) D:Oculus AppsSoftwareepic-games-odinRoboRecallBinariesWin64RoboRecallModInstaller.exe () [File not signed]
FirewallRules: [{5D4CAEE8-FD23-4A89-B1CD-DEDB0C24E2BE}] => (Allow) D:Oculus AppsSoftwareepic-games-odinRoboRecallBinariesWin64RoboRecallModInstaller.exe () [File not signed]
FirewallRules: [UDP Query User{BCFE2CAB-CFD7-4049-81D1-02BFE842CD54}D:program filessteamsteamappscommonassettocorsaacs.exe] => (Allow) D:program filessteamsteamappscommonassettocorsaacs.exe => No File
FirewallRules: [TCP Query User{FCA7E0C9-C17A-4ED5-BBAD-8C836DEAD82E}D:program filessteamsteamappscommonassettocorsaacs.exe] => (Allow) D:program filessteamsteamappscommonassettocorsaacs.exe => No File
FirewallRules: [{D7160299-BB1E-4798-A7B6-93A40C162486}] => (Allow) D:Program FilesSteamsteamappscommonSteamVRbinwin32vrstartup.exe (Valve -> )
FirewallRules: [{1A16B603-97CB-4DF6-8469-55AA2A1FFFED}] => (Allow) D:Program FilesSteamsteamappscommonSteamVRbinwin32vrstartup.exe (Valve -> )
FirewallRules: [{D49134E4-050C-4B6A-87C6-92337AED5390}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2BE91C28-9689-430C-8935-7B4E576B2841}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D1853832-FE0D-4A3D-89D1-AB425B92FC24}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{85FEA4BB-7A9C-4D88-9848-054E406A3BFE}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{26D68015-7002-4D2A-BCA8-8DE6C69AF865}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{5300C265-2BCD-43E4-A42B-A0FBD6D0AB17}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [UDP Query User{A34CEB85-4A94-4ECE-9B76-E0CA372C37D8}C:program files (x86)mozilla firefoxfirefox.exe] => (Allow) C:program files (x86)mozilla firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{2D52E125-71B3-4312-B4D1-7A32D9EB9E79}C:program files (x86)mozilla firefoxfirefox.exe] => (Allow) C:program files (x86)mozilla firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AF9EFDAA-EFDE-4B34-A7B3-A030025EFFB1}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{3D090E32-BA8D-4500-95C7-E78FECEC23A1}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{BF907F6D-FE7B-4FD7-B700-8995B1060DC7}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{DA0A503C-0C4F-4613-906A-B0EC347F4459}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [UDP Query User{85D0F579-2A7D-48FB-B194-D03857C1EBFB}C:userstianappdatalocalakamainetsession_win.exe] => (Allow) C:userstianappdatalocalakamainetsession_win.exe => No File
FirewallRules: [TCP Query User{37830D68-547D-4FC5-8600-515EFF41C3A3}C:userstianappdatalocalakamainetsession_win.exe] => (Allow) C:userstianappdatalocalakamainetsession_win.exe => No File
FirewallRules: [{D87A0A3B-CF74-4D06-8CB3-0105F4D15B73}] => (Allow) D:Program FilesSteambinsteamwebhelper.exe => No File
FirewallRules: [{49088F34-12FF-49E9-A7F9-30F8B85468B1}] => (Allow) D:Program FilesSteambinsteamwebhelper.exe => No File
FirewallRules: [{0238E4AF-CA92-4509-A11F-0210696BED35}] => (Allow) D:Program FilesSteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{C9B25C35-21EB-4565-B4E2-839C2F5F8C76}] => (Allow) D:Program FilesSteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{7918A57F-4703-48E2-A365-816A4F6CCFFC}] => (Allow) D:Program Filesbinsteamwebhelper.exe => No File
FirewallRules: [{466D844D-2D2B-472B-B983-95C4BB51796D}] => (Allow) D:Program Filesbinsteamwebhelper.exe => No File
FirewallRules: [{4C5BD406-972D-40A9-9B2D-96C3F79334DB}] => (Allow) D:Program FilesSteam.exe => No File
FirewallRules: [{0DFDFA86-0DD4-4646-95F4-6464AED47C20}] => (Allow) D:Program FilesSteam.exe => No File
FirewallRules: [UDP Query User{8D505ADF-9724-4DCC-8916-E2D2A307A18A}C:userstianappdataroamingspotifyspotify.exe] => (Allow) C:userstianappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D1B2663D-E9D6-4E36-8BF5-F963CEF3639C}C:userstianappdataroamingspotifyspotify.exe] => (Allow) C:userstianappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F4620BF0-1DE3-4381-AB95-EAB0F03D7C8B}] => (Allow) C:Program Files (x86)Mozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{09354AA6-2727-434D-A1F5-923ADDB3AA91}] => (Allow) C:Program Files (x86)Mozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A3495742-C1FF-4C8B-887D-1EE421F6941F}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{A73E3748-FE11-40D1-A204-97060E78D068}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{A7DBF30C-F498-4DD4-BBB1-1AA9853B15DF}C:program files (x86)gigabyte@biosflashbios.exe] => (Allow) C:program files (x86)gigabyte@biosflashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [UDP Query User{1D396C2A-CC43-4A93-B3D4-B420663EB8C8}C:program files (x86)gigabyte@biosflashbios.exe] => (Allow) C:program files (x86)gigabyte@biosflashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{00DAF48F-8286-4C25-A4E9-EA70D438BC6A}] => (Allow) C:Program Files (x86)WIBUKEYServerWkSvW32.exe (WIBU-SYSTEMS AG) [File not signed]
FirewallRules: [{E11F43A0-F5BA-4F32-8FD6-3544911F8BA6}] => (Allow) C:Program Files (x86)WIBUKEYServerWkSvW32.exe (WIBU-SYSTEMS AG) [File not signed]
FirewallRules: [TCP Query User{0FBF4F9F-BFE2-4FF5-8E57-77379CF05A0B}C:program filesrhinoceros 5 (64-bit)systemrhino.exe] => (Allow) C:program filesrhinoceros 5 (64-bit)systemrhino.exe (Robert McNeel and Associates -> Robert McNeel & Associates) [File not signed]
FirewallRules: [UDP Query User{9A0A7BA0-989D-4BAD-AD1A-9E014BEDCC03}C:program filesrhinoceros 5 (64-bit)systemrhino.exe] => (Allow) C:program filesrhinoceros 5 (64-bit)systemrhino.exe (Robert McNeel and Associates -> Robert McNeel & Associates) [File not signed]
FirewallRules: [TCP Query User{FD18DABA-1C36-45C4-8C46-41324BD71F56}C:programdataasgviscommonx64vc10distributed renderingxmldrspawner.exe] => (Allow) C:programdataasgviscommonx64vc10distributed renderingxmldrspawner.exe () [File not signed]
FirewallRules: [UDP Query User{793A59FF-5666-44E7-9228-FAB070B99640}C:programdataasgviscommonx64vc10distributed renderingxmldrspawner.exe] => (Allow) C:programdataasgviscommonx64vc10distributed renderingxmldrspawner.exe () [File not signed]
FirewallRules: [TCP Query User{59F99A47-15B8-4AAC-90A7-13E9D4F29A4F}C:programdataasgviscommonx64vc101distributed renderingxmldrspawner.exe] => (Allow) C:programdataasgviscommonx64vc101distributed renderingxmldrspawner.exe () [File not signed]
FirewallRules: [UDP Query User{C44E36AB-0662-463A-8C5B-14C785D7BE1A}C:programdataasgviscommonx64vc101distributed renderingxmldrspawner.exe] => (Allow) C:programdataasgviscommonx64vc101distributed renderingxmldrspawner.exe () [File not signed]
FirewallRules: [TCP Query User{0533062A-5787-4F47-88AC-6DFCD2B3201B}C:program filessketchupsketchup 2016sketchup.exe] => (Allow) C:program filessketchupsketchup 2016sketchup.exe => No File
FirewallRules: [UDP Query User{F5FEF0BD-E999-4945-82DE-92D23C92C681}C:program filessketchupsketchup 2016sketchup.exe] => (Allow) C:program filessketchupsketchup 2016sketchup.exe => No File
FirewallRules: [{8880106B-0C24-41F0-B6D8-E99B639ED150}] => (Allow) D:Program FilesSteambincefcef.win7steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{832B50CC-AB09-429E-AF1F-AA5A98DF9FD3}] => (Allow) D:Program FilesSteambincefcef.win7steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{66FB9832-EDA2-40C1-95E2-D0DAF7ACAE44}D:program filessteamsteamappscommonwar thunderwin64aces.exe] => (Allow) D:program filessteamsteamappscommonwar thunderwin64aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{332DB03D-E63E-4663-9358-BA7517B8EFF2}D:program filessteamsteamappscommonwar thunderwin64aces.exe] => (Allow) D:program filessteamsteamappscommonwar thunderwin64aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{501860E7-90F0-4CB1-9D49-693D8E20B6C3}D:program filessteamsteamappscommonplanetside 2planetside2_x64.exe] => (Allow) D:program filessteamsteamappscommonplanetside 2planetside2_x64.exe => No File
FirewallRules: [UDP Query User{E15186DE-2744-450D-AE03-41B85AA567E2}D:program filessteamsteamappscommonplanetside 2planetside2_x64.exe] => (Allow) D:program filessteamsteamappscommonplanetside 2planetside2_x64.exe => No File
FirewallRules: [{B55231D2-9FAC-4345-BDE5-2BB0F710B617}] => (Allow) D:Program FilesSteamsteamappscommonCities_SkylinesCities.exe () [File not signed]
FirewallRules: [{9AD81979-0954-47A1-8C16-C394D2DE0CFC}] => (Allow) D:Program FilesSteamsteamappscommonCities_SkylinesCities.exe () [File not signed]
FirewallRules: [{5FA3CB1F-9D9B-4773-B15E-8E67293B76A0}] => (Allow) D:Program FilesOriginBattlefield 4BF4WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{DBAE3DCF-D12F-48EA-8C37-6637ACA539B3}] => (Allow) D:Program FilesOriginBattlefield 4BF4WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{F16F9BE2-1D03-4E14-BCBB-A387BDCE1F41}] => (Allow) D:Program FilesOriginBattlefield 4BF4X86WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{EB60D0E0-ACE4-4379-A877-BB7B9DFF044E}] => (Allow) D:Program FilesOriginBattlefield 4BF4X86WebHelper.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{DDA63986-8FD4-48BD-95FD-40E31A736DB5}D:program filesoriginbattlefield 4bf4.exe] => (Allow) D:program filesoriginbattlefield 4bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{3A156039-B7A9-4770-ADB8-8C0452A322B1}D:program filesoriginbattlefield 4bf4.exe] => (Allow) D:program filesoriginbattlefield 4bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{2AE62D56-7FCC-4DAE-B49A-95EBC0E969E2}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{0F1FFE49-C79A-4A56-AF2E-E812FF7DE131}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{2BB5FBB4-B45C-4C5B-B9C5-27F89A59035E}C:program filesesricityengine2016.1cityengine.exe] => (Allow) C:program filesesricityengine2016.1cityengine.exe => No File
FirewallRules: [UDP Query User{7AA9B5D8-2BC4-41B2-B2BB-1036E9F5BB17}C:program filesesricityengine2016.1cityengine.exe] => (Allow) C:program filesesricityengine2016.1cityengine.exe => No File
FirewallRules: [{F0CB4012-D221-4983-A7E8-A05BB314A93F}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B07FE44C-BFA8-4047-B863-C24ABE37BF41}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{1187B69A-0840-4DF5-978B-F82E9ADEB7ED}D:program filestrinusvrtgserver.exe] => (Allow) D:program filestrinusvrtgserver.exe (Odd Sheep Sociedad Limitada -> Odd Sheep SL)
FirewallRules: [UDP Query User{E8FB5606-A9BA-4748-B902-0B0A22952862}D:program filestrinusvrtgserver.exe] => (Allow) D:program filestrinusvrtgserver.exe (Odd Sheep Sociedad Limitada -> Odd Sheep SL)
FirewallRules: [TCP Query User{C3DBD12B-815D-4241-A4C8-6F3CBDFB21F2}D:program filesunityeditorunity.exe] => (Block) D:program filesunityeditorunity.exe (Unity Technologies SF -> Unity Technologies ApS)
FirewallRules: [UDP Query User{ED7E0610-22B9-4183-ABD1-933C8F1E063D}D:program filesunityeditorunity.exe] => (Block) D:program filesunityeditorunity.exe (Unity Technologies SF -> Unity Technologies ApS)
FirewallRules: [TCP Query User{AC712138-416E-4D4A-B3DD-8128B5A9CA43}C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{964E293F-88E1-4996-A111-37189C54F020}C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{68A1A4BB-2A5F-42A4-8AE2-5A00161A8D45}C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{F7BB28DC-92C4-4401-A4A9-84404204E3DA}C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{A4F51DE4-66EC-45BF-92F3-F80B49A6C595}D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Allow) D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{E5304D89-3678-4F93-A06F-010F83DC899E}D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Allow) D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{1643210E-3485-4386-BC4F-1E7A445FD806}D:program fileseagle dynamicsdcs world 2 openalphabindcs_updater.exe] => (Allow) D:program fileseagle dynamicsdcs world 2 openalphabindcs_updater.exe => No File
FirewallRules: [UDP Query User{E966CCD3-BD0D-4315-A53B-07917D11E5F9}D:program fileseagle dynamicsdcs world 2 openalphabindcs_updater.exe] => (Allow) D:program fileseagle dynamicsdcs world 2 openalphabindcs_updater.exe => No File
FirewallRules: [TCP Query User{A1825C78-A514-40FC-881F-2152D112BCE9}D:program fileseagle dynamicsdcs world 2 openalphabindcs.exe] => (Allow) D:program fileseagle dynamicsdcs world 2 openalphabindcs.exe => No File
FirewallRules: [UDP Query User{DA528C91-8E5B-4596-9C0E-B493C3FDBF8A}D:program fileseagle dynamicsdcs world 2 openalphabindcs.exe] => (Allow) D:program fileseagle dynamicsdcs world 2 openalphabindcs.exe => No File
FirewallRules: [TCP Query User{7FE7D9CA-CE4B-40BB-ABCE-77CF9EA41B0B}D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe => No File
FirewallRules: [UDP Query User{5099D068-A8EA-44D6-9FF8-C577E9B669DE}D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe => No File
FirewallRules: [TCP Query User{831D970D-F3E0-422F-A076-BFF5EE32F532}D:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs.exe => No File
FirewallRules: [UDP Query User{DB1465B4-8949-47DD-8DEE-8D59C2417253}D:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs.exe => No File
FirewallRules: [{A50676CD-3E34-49DB-821C-28AF9B114E97}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{928487F0-FD02-4B53-B542-B90097138A39}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{A9E0B823-B41C-4F8E-87BF-55F27C539662}C:userstianappdataroamingspotifyspotify.exe] => (Allow) C:userstianappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{434035F4-03AD-4855-9927-6EE698273E32}C:userstianappdataroamingspotifyspotify.exe] => (Allow) C:userstianappdataroamingspotifyspotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{C5E3B4D4-6158-45DB-9B22-C6A8B6DBD83C}C:program filesrhinoceros 5 (64-bit)systemrhino.exe] => (Allow) C:program filesrhinoceros 5 (64-bit)systemrhino.exe (Robert McNeel and Associates -> Robert McNeel & Associates) [File not signed]
FirewallRules: [UDP Query User{EC870A44-3487-442C-9182-374576A05D8D}C:program filesrhinoceros 5 (64-bit)systemrhino.exe] => (Allow) C:program filesrhinoceros 5 (64-bit)systemrhino.exe (Robert McNeel and Associates -> Robert McNeel & Associates) [File not signed]
FirewallRules: [TCP Query User{EA9E528B-8A81-42AF-9AC7-116B5BBBD0AF}D:program filesoriginbattlefield 4bf4.exe] => (Allow) D:program filesoriginbattlefield 4bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{0B47B9EB-F280-4748-80E4-37462843D5AF}D:program filesoriginbattlefield 4bf4.exe] => (Allow) D:program filesoriginbattlefield 4bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{54817185-0211-4D6C-82A8-3B9F0B61FED5}C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B326F758-7BFC-4FC3-941C-3B75861EDBEC}C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{3F7EED42-8543-47E7-8AE5-494E13192271}D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Allow) D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{8FFB0DBD-9968-4E1D-B459-640D51D82041}D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe] => (Allow) D:program filesepic gamesfortnitefortnitegamebinarieswin64fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{FF36FCD9-AB8C-42B3-9692-B33E12B79447}D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe => No File
FirewallRules: [UDP Query User{E4B11FC7-C138-413E-8435-52CA97D1D724}D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs_updater.exe => No File
FirewallRules: [TCP Query User{4CD6B63B-DADF-4273-A248-872402DC8761}D:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs.exe => No File
FirewallRules: [UDP Query User{D84F7D2E-A59F-41B0-88F5-6CA7A5C01D08}D:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) D:program fileseagle dynamicsdcs world openbetabindcs.exe => No File
FirewallRules: [TCP Query User{27791714-1662-4CCB-B296-67AB81FD480D}C:program files (x86)overwatchoverwatch.exe] => (Allow) C:program files (x86)overwatchoverwatch.exe => No File
FirewallRules: [UDP Query User{2D360177-56C0-4BA7-B6C4-D0263B2DE39E}C:program files (x86)overwatchoverwatch.exe] => (Allow) C:program files (x86)overwatchoverwatch.exe => No File
FirewallRules: [TCP Query User{5E975B0F-1933-4532-B7B9-5C3DD80AB2A9}Z:program fileseagle dynamicsdcs worldbindcs_updater.exe] => (Allow) Z:program fileseagle dynamicsdcs worldbindcs_updater.exe (The Fighter Collection -> Eagle Dynamics)
FirewallRules: [UDP Query User{E6B369AF-4240-4141-8CFA-938FEA768516}Z:program fileseagle dynamicsdcs worldbindcs_updater.exe] => (Allow) Z:program fileseagle dynamicsdcs worldbindcs_updater.exe (The Fighter Collection -> Eagle Dynamics)
FirewallRules: [TCP Query User{261DB37D-FC15-4425-92C0-917AF1752DE7}Z:program fileseagle dynamicsdcs worldbindcs.exe] => (Allow) Z:program fileseagle dynamicsdcs worldbindcs.exe (The Fighter Collection -> Eagle Dynamics)
FirewallRules: [UDP Query User{8D289DB1-8847-425D-87CA-0DBA7604CCD0}Z:program fileseagle dynamicsdcs worldbindcs.exe] => (Allow) Z:program fileseagle dynamicsdcs worldbindcs.exe (The Fighter Collection -> Eagle Dynamics)
FirewallRules: [TCP Query User{5EBF2CCF-851A-4143-8E20-8FF8D7911EFD}Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe (Eagle Dynamics SA -> Eagle Dynamics SA)
FirewallRules: [UDP Query User{031624D2-52AF-4ABB-B855-A5EC2E24594A}Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe (Eagle Dynamics SA -> Eagle Dynamics SA)
FirewallRules: [TCP Query User{CD6E35AE-5379-4B3D-AFBE-A02F83C5A952}Z:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs.exe (Eagle Dynamics SA -> Eagle Dynamics)
FirewallRules: [UDP Query User{382A7D33-E2C7-45B6-B532-DD10E0870215}Z:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs.exe (Eagle Dynamics SA -> Eagle Dynamics)
FirewallRules: [TCP Query User{55E6EF2A-F356-4EF5-ADD8-FCBCCBB4B028}D:program filesunityeditorunity.exe] => (Allow) D:program filesunityeditorunity.exe (Unity Technologies SF -> Unity Technologies ApS)
FirewallRules: [UDP Query User{34BC7702-80D0-464E-90D6-33030F2C5C28}D:program filesunityeditorunity.exe] => (Allow) D:program filesunityeditorunity.exe (Unity Technologies SF -> Unity Technologies ApS)
FirewallRules: [TCP Query User{75DE9600-A473-41EE-9D89-D78F548CE0B7}Z:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs.exe (Eagle Dynamics SA -> Eagle Dynamics)
FirewallRules: [UDP Query User{81750EC6-DAC3-44D3-93F8-34D16CC11072}Z:program fileseagle dynamicsdcs world openbetabindcs.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs.exe (Eagle Dynamics SA -> Eagle Dynamics)
FirewallRules: [TCP Query User{1489961B-2918-4F7E-B1F1-4F13F0A21532}Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe (Eagle Dynamics SA -> Eagle Dynamics SA)
FirewallRules: [UDP Query User{F44B9495-35E6-442A-B245-4B488C27B36C}Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe] => (Allow) Z:program fileseagle dynamicsdcs world openbetabindcs_updater.exe (Eagle Dynamics SA -> Eagle Dynamics SA)
FirewallRules: [{F6455BA4-8C56-43BF-8335-32E8AB2C8CFA}] => (Allow) LPort=26789
FirewallRules: [TCP Query User{E3C8E9B2-D3C9-4084-B41A-E24348A8AF08}C:program files (x86)overwatchoverwatch.exe] => (Allow) C:program files (x86)overwatchoverwatch.exe => No File
FirewallRules: [UDP Query User{381A3D5D-53CB-49AF-9276-77F1B9017FC6}C:program files (x86)overwatchoverwatch.exe] => (Allow) C:program files (x86)overwatchoverwatch.exe => No File
FirewallRules: [{122DC0CF-15AE-43E2-A771-B298CA31E155}] => (Allow) D:Program FilesOriginApexEasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{BC38CFF1-05B7-4691-8D80-3A6E9CA0D1B2}] => (Allow) D:Program FilesOriginApexEasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{09B6AC2E-C4A3-4197-90AD-559382A3125C}Z:program filesautomation.b190527automation.b190527automation b190527ue421automationgamebinarieswin32automationgame-win32-shipping.exe] => (Allow) Z:program filesautomation.b190527automation.b190527automation b190527ue421automationgamebinarieswin32automationgame-win32-shipping.exe => No File
FirewallRules: [UDP Query User{17F17E31-8E92-4687-924E-1822EEE305BF}Z:program filesautomation.b190527automation.b190527automation b190527ue421automationgamebinarieswin32automationgame-win32-shipping.exe] => (Allow) Z:program filesautomation.b190527automation.b190527automation b190527ue421automationgamebinarieswin32automationgame-win32-shipping.exe => No File
FirewallRules: [{07CE704B-590D-4657-92D3-A5429AAD4449}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{9D519E51-7847-4383-9EB5-C0A1340479B3}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{B617EFC9-431C-49AA-A36C-AC7E3A9011E8}D:program filescall of duty modern warfaremodernwarfare.exe] => (Allow) D:program filescall of duty modern warfaremodernwarfare.exe => No File
FirewallRules: [UDP Query User{0250D2B7-7BC6-4485-A463-904E6101E44E}D:program filescall of duty modern warfaremodernwarfare.exe] => (Allow) D:program filescall of duty modern warfaremodernwarfare.exe => No File
FirewallRules: [TCP Query User{1A22D8E1-96A8-4D3B-9F04-58F5DE2A9634}Z:program filesautomation.b191204automation.b191204automationautomation launcher steam.exe] => (Allow) Z:program filesautomation.b191204automation.b191204automationautomation launcher steam.exe => No File
FirewallRules: [UDP Query User{3E87A83F-1411-4D79-94F3-9E42C654CCC8}Z:program filesautomation.b191204automation.b191204automationautomation launcher steam.exe] => (Allow) Z:program filesautomation.b191204automation.b191204automationautomation launcher steam.exe => No File
FirewallRules: [{B1BDCC1A-2D09-44B9-A474-221A52A6E832}] => (Allow) Z:SteamLibrarysteamappscommonAutomationAutomation Launcher Steam.exe (Microsoft) [File not signed]
FirewallRules: [{E56D9BE9-3F56-41DB-B240-09193AC449EB}] => (Allow) Z:SteamLibrarysteamappscommonAutomationAutomation Launcher Steam.exe (Microsoft) [File not signed]
FirewallRules: [{5D26D95E-5CB1-4DD2-A030-10BE63522773}] => (Allow) D:Program FilesSteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{65ED9108-9213-4D06-827A-EEE3DFE8ACB9}] => (Allow) D:Program FilesSteamsteamappscommonCities_Skylinesdowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [TCP Query User{26D9EB3D-B874-4D5A-AC1B-683F5F5894C4}Z:program filesoverwatch_retail_overwatch.exe] => (Allow) Z:program filesoverwatch_retail_overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{5D05E790-F156-4A03-B259-817AE53954BA}Z:program filesoverwatch_retail_overwatch.exe] => (Allow) Z:program filesoverwatch_retail_overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{94A479E1-853B-4EE3-83A4-B59D902B968B}Z:program filesbeamng.drive.v0.18.4.1beamng.drive.v0.18.4.1bin64beamng.drive.x64.exe] => (Block) Z:program filesbeamng.drive.v0.18.4.1beamng.drive.v0.18.4.1bin64beamng.drive.x64.exe => No File
FirewallRules: [UDP Query User{11329CB3-B56A-4461-8338-1DAABAD7804E}Z:program filesbeamng.drive.v0.18.4.1beamng.drive.v0.18.4.1bin64beamng.drive.x64.exe] => (Block) Z:program filesbeamng.drive.v0.18.4.1beamng.drive.v0.18.4.1bin64beamng.drive.x64.exe => No File
FirewallRules: [{324CC737-1919-432C-861A-3495533F9B45}] => (Allow) D:Program FilesEpic GamesTheDivision2TheDivision2.exe => No File
FirewallRules: [TCP Query User{81D5474A-60B7-4688-B6D4-3EFE0223F340}D:program filesblizzardbattle.netbattle.net.exe] => (Allow) D:program filesblizzardbattle.netbattle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{D40031E8-CA24-4BB0-AB2D-1E6E3298F21E}D:program filesblizzardbattle.netbattle.net.exe] => (Allow) D:program filesblizzardbattle.netbattle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{B52CDE88-8150-4C26-8754-9AF9E7368AEF}] => (Allow) Z:SteamLibrarysteamappscommonassettocorsaAssettoCorsa.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{33CFE552-AE98-42D4-ADC7-E67AA63928B8}] => (Allow) Z:SteamLibrarysteamappscommonassettocorsaAssettoCorsa.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [TCP Query User{63A3319C-D85E-4B1B-AC2F-817A89A75C06}Z:steamlibrarysteamappscommonassettocorsaacs.exe] => (Allow) Z:steamlibrarysteamappscommonassettocorsaacs.exe () [File not signed]
FirewallRules: [UDP Query User{923AED58-62F9-42CF-BAE0-EFEEDFD4D1C6}Z:steamlibrarysteamappscommonassettocorsaacs.exe] => (Allow) Z:steamlibrarysteamappscommonassettocorsaacs.exe () [File not signed]
FirewallRules: [{F2CC908C-6401-44A8-A6F6-7034C541F51B}] => (Allow) D:Program FilesSteamsteamappscommonSid Meier’s Civilization VLaunchPadLaunchPad.exe => No File
FirewallRules: [{A366F9D1-B6A5-4485-8456-DCCB3EE8AF10}] => (Allow) D:Program FilesSteamsteamappscommonSid Meier’s Civilization VLaunchPadLaunchPad.exe => No File
FirewallRules: [{029453C5-25B9-4399-8969-19214822E99F}] => (Allow) Z:SteamLibrarysteamappscommonAutomationUE421AutomationGameBinariesWin64AutomationGame-Win64-Shipping.exe => No File
FirewallRules: [{AFF83E19-787C-4F82-813D-D29F27E983FE}] => (Allow) Z:SteamLibrarysteamappscommonAutomationUE421AutomationGameBinariesWin64AutomationGame-Win64-Shipping.exe => No File
FirewallRules: [{9BA69A96-DA13-4AF1-BACB-21125533A81D}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B0EFCF8A-7E94-430C-AACA-ADBF9E046E15}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{714FFE69-6A21-4B39-B821-508FBA1ACC41}D:program filesepic gamesgtavgta5.exe] => (Allow) D:program filesepic gamesgtavgta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{1B4B7F3E-E936-4CD4-9E55-CD8596B6FE6C}D:program filesepic gamesgtavgta5.exe] => (Allow) D:program filesepic gamesgtavgta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{7D1C8C5B-E190-455C-9560-F3717626822F}] => (Allow) D:Program FilesOriginBattlefield 3bf3.exe => No File
FirewallRules: [{0212EF2D-BE74-44F5-B42D-272F120E4611}] => (Allow) D:Program FilesOriginBattlefield 3bf3.exe => No File
FirewallRules: [{CF3D871E-8E8B-488C-A323-DF7203B27C9D}] => (Allow) C:WindowsSysWOW64PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{47AF1477-DE01-40C2-A725-F5F919E9AB28}] => (Allow) C:WindowsSysWOW64PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{CC6533A6-3D8C-4C22-9750-5641F69D211C}] => (Allow) C:WindowsSysWOW64PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{9E83F2CD-D499-4DD6-89ED-A318AB0D2A3A}] => (Allow) C:WindowsSysWOW64PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [TCP Query User{561C6208-C8E4-41B4-A76D-051872FBEDBA}C:userstianappdatalocalveniceunleashedclientvu.exe] => (Allow) C:userstianappdatalocalveniceunleashedclientvu.exe => No File
FirewallRules: [UDP Query User{29024D54-D145-49E6-90D9-3F5EE68AD90A}C:userstianappdatalocalveniceunleashedclientvu.exe] => (Allow) C:userstianappdatalocalveniceunleashedclientvu.exe => No File
FirewallRules: [TCP Query User{D1BAF12C-F087-4274-B915-19C7FB865327}E:program filescall of duty black ops cold warblackopscoldwar.exe] => (Allow) E:program filescall of duty black ops cold warblackopscoldwar.exe => No File
FirewallRules: [UDP Query User{A09CB4CA-C636-4EF6-9519-89188F96E7AC}E:program filescall of duty black ops cold warblackopscoldwar.exe] => (Allow) E:program filescall of duty black ops cold warblackopscoldwar.exe => No File
FirewallRules: [{AAD7D066-FA35-4191-9E79-9BE9D9834FF5}] => (Allow) D:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{EB0A2615-F181-46F0-8AD1-E8DF3F7BD052}] => (Allow) D:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{508ECFE6-6541-4DC2-9998-EE5273C9FFC8}] => (Allow) E:Program FilesSTAR WARS Battlefront IIstarwarsbattlefrontii_trial.exe => No File
FirewallRules: [{F241B2CD-93E8-4B61-8172-662B64CD3737}] => (Allow) E:Program FilesSTAR WARS Battlefront IIstarwarsbattlefrontii_trial.exe => No File
FirewallRules: [{040AA4AD-6609-437F-9E4E-E261B60E2D0A}] => (Allow) E:Program FilesSTAR WARS Battlefront IIstarwarsbattlefrontii.exe => No File
FirewallRules: [{5DF3D146-6AC2-4B06-A73D-26C64636848A}] => (Allow) E:Program FilesSTAR WARS Battlefront IIstarwarsbattlefrontii.exe => No File
FirewallRules: [TCP Query User{356BB811-5654-4C0B-B9B0-45A51B36C3EB}D:program filesvlcvlc.exe] => (Block) D:program filesvlcvlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{9DF4AF4D-BF1F-4802-9D81-70266867C2A1}D:program filesvlcvlc.exe] => (Block) D:program filesvlcvlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{F8B3F091-BC65-4210-A502-28775942F14C}E:program filesmsfs_mca_v1_5_wpkagmsfs_mca_v1-5.exe] => (Allow) E:program filesmsfs_mca_v1_5_wpkagmsfs_mca_v1-5.exe () [File not signed]
FirewallRules: [UDP Query User{8611907C-283E-4000-BD66-6AC28A4AF180}E:program filesmsfs_mca_v1_5_wpkagmsfs_mca_v1-5.exe] => (Allow) E:program filesmsfs_mca_v1_5_wpkagmsfs_mca_v1-5.exe () [File not signed]
FirewallRules: [TCP Query User{54EEA925-FE63-4B71-9F03-E02C09B852B0}Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe] => (Allow) Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe () [File not signed]
FirewallRules: [UDP Query User{95245F11-D406-4ED6-AA04-EC04577219C3}Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe] => (Allow) Z:program fileshalo online 1.106708 cert_ms23halo onlineeldorado.exe () [File not signed]
FirewallRules: [TCP Query User{A12351E5-D9A9-4DB9-969E-F89DA918C5A5}Z:program filesoverwatch_retail_overwatch.exe] => (Allow) Z:program filesoverwatch_retail_overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{55EF0C0D-50CB-48BB-BF50-5F754292B7FC}Z:program filesoverwatch_retail_overwatch.exe] => (Allow) Z:program filesoverwatch_retail_overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{BEB4D9CD-CC8D-45B9-A5DC-F3E2B5C38643}E:program filescall of duty black ops cold warblackopscoldwar.exe] => (Allow) E:program filescall of duty black ops cold warblackopscoldwar.exe => No File
FirewallRules: [UDP Query User{1743A80A-BB96-4286-8EED-E6893C11442B}E:program filescall of duty black ops cold warblackopscoldwar.exe] => (Allow) E:program filescall of duty black ops cold warblackopscoldwar.exe => No File
FirewallRules: [TCP Query User{5ECE8B32-A48D-4D87-8362-4C931F824764}D:program filesminecraft launcherruntimejre-x64binjavaw.exe] => (Allow) D:program filesminecraft launcherruntimejre-x64binjavaw.exe
FirewallRules: [UDP Query User{CD21EBDB-BE68-4AFA-8509-BE85C40387A2}D:program filesminecraft launcherruntimejre-x64binjavaw.exe] => (Allow) D:program filesminecraft launcherruntimejre-x64binjavaw.exe
FirewallRules: [TCP Query User{E1A6728A-B5F4-4DEC-A5C3-C745C383F54C}C:userstianappdatalocalveniceunleashedclientvu.exe] => (Block) C:userstianappdatalocalveniceunleashedclientvu.exe => No File
FirewallRules: [UDP Query User{B8D5611E-7F8B-41E8-B153-8D5FA0473ECB}C:userstianappdatalocalveniceunleashedclientvu.exe] => (Block) C:userstianappdatalocalveniceunleashedclientvu.exe => No File
FirewallRules: [TCP Query User{1FB59DAA-3D8E-4FBE-AF19-965CB257ECB2}D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe] => (Allow) D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe
FirewallRules: [UDP Query User{D79957E7-F2D0-4134-B801-CD576E78BCA2}D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe] => (Allow) D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe
FirewallRules: [{566BF074-9089-4546-B4F6-75CE3D0C67A7}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{71D4CB2A-E8A5-4B2E-ABEB-9167AC81AAAC}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{DEAEB75C-7D13-4F4C-894C-AA449919E370}D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe] => (Allow) D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe
FirewallRules: [UDP Query User{47161ACF-BAF9-463D-815F-58FA44238862}D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe] => (Allow) D:program filesminecraft launcherruntimejre-legacywindows-x64jre-legacybinjavaw.exe
FirewallRules: [TCP Query User{A9F680ED-3F66-487B-A29A-1EB0B9C813EC}D:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe] => (Block) D:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe () [File not signed]
FirewallRules: [UDP Query User{98521A8D-BF98-4D82-A493-DB1BFDC60C86}D:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe] => (Block) D:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe () [File not signed]
FirewallRules: [{38AFE9C8-774B-4BAA-8ABC-DCEE2A224FD9}] => (Allow) C:Program Files (x86)EPSON SoftwareEvent ManagerEEventManager.exe (Seiko Epson Corporation) [File not signed]
FirewallRules: [{6A30C7D2-AB5B-43EC-92A3-B5546AE05A35}] => (Allow) C:Program Files (x86)EPSON SoftwareEvent ManagerEEventManager.exe (Seiko Epson Corporation) [File not signed]
FirewallRules: [{1F32CC79-0380-4F0F-AB98-8F67AEC0285D}] => (Allow) C:UsersTianAppDataLocalTempET-2720NetworkEpsonNetSetupENEasyApp.exe => No File
FirewallRules: [{A8705397-0154-4BCB-BAC8-0908CFD745EF}] => (Allow) C:UsersTianAppDataLocalTempET-2720NetworkEpsonNetSetupENEasyApp.exe => No File
FirewallRules: [TCP Query User{FBAB4B55-06B6-4F58-B27D-055F3F614E18}C:program files (x86)epson softwareevent managereeventmanager.exe] => (Allow) C:program files (x86)epson softwareevent managereeventmanager.exe (Seiko Epson Corporation) [File not signed]
FirewallRules: [UDP Query User{57C9DF27-2532-4B7D-8D67-39FDEF19125C}C:program files (x86)epson softwareevent managereeventmanager.exe] => (Allow) C:program files (x86)epson softwareevent managereeventmanager.exe (Seiko Epson Corporation) [File not signed]
FirewallRules: [{40EC2645-78E1-4AEB-9FDC-BE42305A005A}] => (Allow) C:Program Files (x86)EPSON SoftwareECPrinterSetupENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{C18D010C-9AA4-4E8E-8663-86A3ADFA5860}] => (Allow) C:Program Files (x86)EPSON SoftwareECPrinterSetupENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{8088F3D5-F6F0-4A5F-8145-CD3756CCB5D9}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{6B08D679-3573-4EC2-AEE9-B08067A7A8E0}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{56713338-C3E1-4168-8DFB-C6D7EB218AD3}] => (Allow) C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe (Seiko Epson Corporation) [File not signed]
FirewallRules: [{3A8F40A9-36EC-474E-A4D7-2C3F2C649544}] => (Allow) C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe (Seiko Epson Corporation) [File not signed]
FirewallRules: [TCP Query User{D8C0E985-C14C-4871-84B3-04BAA6AF8F91}Z:steamlibrarysteamappscommonassettocorsaacs.exe] => (Allow) Z:steamlibrarysteamappscommonassettocorsaacs.exe () [File not signed]
FirewallRules: [UDP Query User{7598EDE8-4013-4563-836A-7DA7C3EF537C}Z:steamlibrarysteamappscommonassettocorsaacs.exe] => (Allow) Z:steamlibrarysteamappscommonassettocorsaacs.exe () [File not signed]
FirewallRules: [{B43A2EDA-1F26-4089-BD48-2E60FA3B189E}] => (Allow) D:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{A324E9A2-DE75-4BD2-8782-42E0FA6C17FB}] => (Allow) D:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{A54FDD07-343D-4611-AA84-38407AE063EB}E:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe] => (Block) E:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe () [File not signed]
FirewallRules: [UDP Query User{C57F4513-F752-4801-9C61-61EAAD3B0113}E:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe] => (Block) E:program filesultimate.admiral.dreadnoughts.alpha.11.v80ultimate admirals dreadnoughtsbuild.exe () [File not signed]
FirewallRules: [{366266D8-E15C-4BCB-ADE7-47FF9811906B}] => (Allow) C:Program Files (x86)GIGABYTEAppCenterApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{B391A18A-D1C0-4EA8-8A76-D36B3B1C1DE1}] => (Allow) C:Program Files (x86)GIGABYTEAppCentergcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F67E89EF-3D60-47DD-96C7-EAE48C0964E6}] => (Allow) Z:SteamLibrarysteamappscommonF1 2020F1_2020_dx12.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{DBF55A18-7330-4646-A36D-FC3313DA2BF2}] => (Allow) Z:SteamLibrarysteamappscommonF1 2020F1_2020_dx12.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{AF733C08-B136-466A-B92C-7E1157511389}] => (Allow) Z:SteamLibrarysteamappscommonF1 2020F1_2020.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{53980765-4035-47D9-A425-1F0911DF2AAD}] => (Allow) Z:SteamLibrarysteamappscommonF1 2020F1_2020.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{B54A2BFB-A55B-4936-A1A7-09C6004F8FBD}] => (Allow) E:SteamLibrarysteamappscommonCyberpunk 2077REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{4D30B24F-B64B-4E35-8FE7-7A1F91C33F89}] => (Allow) E:SteamLibrarysteamappscommonCyberpunk 2077REDprelauncher.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [TCP Query User{EE62AE91-6CD5-44C9-A2E3-A651476C28E1}E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe] => (Allow) E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [UDP Query User{5C6CB844-DD5F-44F4-A1B4-28442086234B}E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe] => (Allow) E:steamlibrarysteamappscommoncyberpunk 2077binx64cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.)
FirewallRules: [{4ADB34B2-F47D-4785-9CF2-93BDE1018205}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A21ACE97-F7F6-44A9-9DBA-E3AB86BA74AD}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{28041A19-E126-4E55-A9B0-94ED8946E5F2}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{ADAA7EB5-2049-4310-A817-6A825069BFD5}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{99B1524E-A611-4FEE-8A14-4B4740308D37}E:program filesbeamng.drive.v0.23beamng.drive.v0.23beamng.drivebin64beamng.drive.x64.exe] => (Allow) E:program filesbeamng.drive.v0.23beamng.drive.v0.23beamng.drivebin64beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [UDP Query User{BFE8E1DC-C969-4C83-9E9C-3C0A8DADB349}E:program filesbeamng.drive.v0.23beamng.drive.v0.23beamng.drivebin64beamng.drive.x64.exe] => (Allow) E:program filesbeamng.drive.v0.23beamng.drive.v0.23beamng.drivebin64beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH)
FirewallRules: [{2B54A420-91B8-4068-8A9C-6055AEC35495}] => (Allow) C:ProgramDataLogishrdLogiOptionsSoftwareCurrentLogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{ADBE0F37-8328-461F-B0DA-6729B759830E}] => (Allow) C:Program Files (x86)PlayStationNowpsnowlauncher.exe (SONY INTERACTIVE ENTERTAINMENT NETWORK AMERICA LLC -> Sony Interactive Entertainment Network America LLC)
FirewallRules: [{EC71095F-58F2-43C8-B6C8-F97901C772D3}] => (Allow) C:UsersTianAppDataLocalGaikaiCrashReportsdumpupload.exe (SONY INTERACTIVE ENTERTAINMENT NETWORK AMERICA LLC -> )
FirewallRules: [{0280C6F0-40EA-435A-BEB7-841A2B3B64B4}] => (Allow) C:Program Files (x86)PlayStationNowunidater.exe (SONY INTERACTIVE ENTERTAINMENT NETWORK AMERICA LLC -> Sony Interactive Entertainment)
FirewallRules: [{22578283-8FFF-457C-8D92-59AF403758F3}] => (Allow) Z:SteamLibrarysteamappscommonAutomationUE424AutomationGameBinariesWin64AutomationGame-Win64-Shipping.exe (Camshaft Software LTD -> Epic Games, Inc.)
FirewallRules: [{AD9056FF-B5CD-4F67-B54C-245B7543F610}] => (Allow) Z:SteamLibrarysteamappscommonAutomationUE424AutomationGameBinariesWin64AutomationGame-Win64-Shipping.exe (Camshaft Software LTD -> Epic Games, Inc.)
FirewallRules: [{BA67278F-58C8-4F86-839B-1B8CE8A5BB00}] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)
FirewallRules: [{AA9A5415-CA5D-49E0-B0A4-9ECA0F0F030B}] => (Allow) Z:SteamLibrarysteamappscommonAutomationUE424AutomationGameBinariesWin64AutomationGame-Win64-Shipping.exe (Camshaft Software LTD -> Epic Games, Inc.)
FirewallRules: [{77E1C27C-6564-483B-A027-66BD9A8EB4B0}] => (Allow) Z:SteamLibrarysteamappscommonAutomationUE424AutomationGameBinariesWin64AutomationGame-Win64-Shipping.exe (Camshaft Software LTD -> Epic Games, Inc.)

==================== Restore Points =========================

17-07-2021 16:22:43 Removed Autodesk App Manager 2016-2017.

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (07/22/2021 08:11:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: MBAMService.exe, version: 3.2.0.986, time stamp: 0x60dcf6be
Faulting module name: ntdll.dll, version: 10.0.19041.1110, time stamp: 0xe7a22463
Exception code: 0xc0000005
Fault offset: 0x0000000000063416
Faulting process id: 0x4e10
Faulting application start time: 0x01d77f47ca204b5b
Faulting application path: C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
Faulting module path: C:WINDOWSSYSTEM32ntdll.dll
Report Id: 4ae10e88-61eb-410d-9633-5299494d90a7
Faulting package full name:
Faulting package-relative application ID:

Error: (07/22/2021 06:39:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1110 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: a10c

Start Time: 01d77f49c0845270

Termination Time: 4471

Application Path: C:Windowsexplorer.exe

Report Id: bcb43c2e-3bdb-46aa-864c-fa886c60faf5

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (07/22/2021 06:35:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1110 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 22ec

Start Time: 01d77f38570b51cc

Termination Time: 30231

Application Path: C:Windowsexplorer.exe

Report Id: 588a152b-90ad-4d29-ad58-37de3a75edd9

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (07/22/2021 06:20:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: MBAMService.exe, version: 3.2.0.986, time stamp: 0x60dcf6be
Faulting module name: RTPControllerImpl.dll, version: 3.2.0.685, time stamp: 0x60b643dc
Exception code: 0xc0000005
Fault offset: 0x0000000000034e7f
Faulting process id: 0x1200
Faulting application start time: 0x01d77f385527ad22
Faulting application path: C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
Faulting module path: C:PROGRAM FILESMALWAREBYTESANTI-MALWARERTPControllerImpl.dll
Report Id: 3538689b-2969-49eb-a3a6-9ced802b092c
Faulting package full name:
Faulting package-relative application ID:

Error: (07/22/2021 04:36:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbamtray.exe, version: 4.0.0.1055, time stamp: 0x60e6f01b
Faulting module name: Qt5Core.dll, version: 5.14.1.0, time stamp: 0x603971ce
Exception code: 0xc0000005
Fault offset: 0x0000000000219dc5
Faulting process id: 0x2344
Faulting application start time: 0x01d77f3858b361b4
Faulting application path: C:Program FilesMalwarebytesAnti-Malwarembamtray.exe
Faulting module path: C:Program FilesMalwarebytesAnti-MalwareQt5Core.dll
Report Id: bca89d24-ec83-4189-bec4-885c2fd1c26c
Faulting package full name:
Faulting package-relative application ID:

Error: (07/22/2021 04:36:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: McTkSchedulerService.exe, version: 4.6.129.0, time stamp: 0x57bf50b5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00007ffeb9f25a33
Faulting process id: 0x2ab8
Faulting application start time: 0x01d77f39429991cc
Faulting application path: C:Program FilesTrueKeyMcTkSchedulerService.exe
Faulting module path: unknown
Report Id: bad1d505-e434-4aa4-92c3-64807bc4f791
Faulting package full name:
Faulting package-relative application ID:

Error: (07/22/2021 04:36:45 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: McTkSchedulerService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.NullReferenceException
at SchedulerTasksHelper.SchedulerMgr.OOBEWait()
at SchedulerTasksHelper.SchedulerMgr.Initialize()
at SchedulerService.Service1.SchedulerThreadWork()
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (07/22/2021 04:35:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: McTkSchedulerService.exe, version: 4.6.129.0, time stamp: 0x57bf50b5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00007ffeb9f25a33
Faulting process id: 0x538c
Faulting application start time: 0x01d77f3916f169e8
Faulting application path: C:Program FilesTrueKeyMcTkSchedulerService.exe
Faulting module path: unknown
Report Id: 07f1af58-961b-4267-aa26-b4858cf9bd1a
Faulting package full name:
Faulting package-relative application ID:

System errors:
=============
Error: (07/22/2021 08:11:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Malwarebytes Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (07/22/2021 06:20:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Malwarebytes Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (07/22/2021 04:38:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel Security True Key Scheduler service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (07/22/2021 04:38:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Intel Security True Key Scheduler service to connect.

Error: (07/22/2021 04:36:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel Security True Key Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (07/22/2021 04:35:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel Security True Key Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (07/22/2021 04:34:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel Security True Key Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (07/22/2021 04:33:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel Security True Key Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Windows Defender:
================
Date: 2021-07-22 18:11:23
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Custom Scan

Date: 2021-07-22 18:09:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Custom Scan

Date: 2021-07-22 17:30:14
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Name: HackTool:Win32/Keygen
Severity: High
Category: Tool
Path: containerfile:_D:DownloadsRhinoceros.5.SR12.v5.12.50810.13095.64Bit.Ita-iCVRhinoceros.5.SR12.v5.12.50810.13095.64Bit.Ita-iCVPatch.rar; file:_D:DownloadsRhinoceros.5.SR12.v5.12.50810.13095.64Bit.Ita-iCVRhinoceros.5.SR12.v5.12.50810.13095.64Bit.Ita-iCVPatch.rar->Patch.exe; file:_D:DownloadsRhinoceros.5.SR12.v5.12.50810.13095.64Bit.Ita-iCVRhinoceros.5.SR12.v5.12.50810.13095.64Bit.Ita-iCVPatchPatch.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: User
Process Name: Unknown
Security intelligence Version: AV: 1.343.1429.0, AS: 1.343.1429.0, NIS: 1.343.1429.0
Engine Version: AM: 1.1.18300.4, NIS: 1.1.18300.4

Date: 2021-07-22 17:23:46
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Skeeyah.A!MTB&threatid=2147729042&enterprise=0
Name: Trojan:Win32/Skeeyah.A!MTB
Severity: Severe
Category: Trojan
Path: file:_D:DownloadsSketchUp Pro 2016 + V-Ray 2.0SketchUp Pro 2016 x64-patchsu2015-64-patch.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: System
Process Name: Unknown
Security intelligence Version: AV: 1.343.1429.0, AS: 1.343.1429.0, NIS: 1.343.1429.0
Engine Version: AM: 1.1.18300.4, NIS: 1.1.18300.4

Date: 2021-07-22 16:32:32
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Skeeyah.A!MTB&threatid=2147729042&enterprise=0
Name: Trojan:Win32/Skeeyah.A!MTB
Severity: Severe
Category: Trojan
Path: file:_D:DownloadsSketchUp Pro 2016 + V-Ray 2.0SketchUp Pro 2016 x64-patchsu2015-64-patch.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:Windowsexplorer.exe
Security intelligence Version: AV: 1.343.1429.0, AS: 1.343.1429.0, NIS: 1.343.1429.0
Engine Version: AM: 1.1.18300.4, NIS: 1.1.18300.4

Date: 2021-07-19 22:40:15
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.343.1308.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18300.4
Error code: 0x8024001e
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2021-07-13 21:34:44
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2021-07-13 21:24:22
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2021-07-12 21:25:05
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.343.888.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18300.4
Error code: 0x8007043c
Error description: This service cannot be started in Safe Mode

Date: 2021-07-12 21:15:03
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware security intelligence has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

CodeIntegrity:
===============
Date: 2021-07-22 20:11:22
Description:
Code Integrity is unable to verify the image integrity of the file DeviceHarddiskVolume2WindowsSystem32aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-07-18 19:24:56
Description:
Code Integrity determined that a process (DeviceHarddiskVolume2Program Files (x86)Mozilla Firefoxfirefox.exe) attempted to load DeviceHarddiskVolume2Program FilesMalwarebytesAnti-Malwarembae64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 02/23/2016
Motherboard: Gigabyte Technology Co., Ltd. Z170-HD3-CF
Processor: Intel® Core™ i7-6700K CPU @ 4.00GHz
Percentage of memory in use: 23%
Total physical RAM: 32647.91 MB
Available physical RAM: 24948.94 MB
Total Virtual: 49031.91 MB
Available Virtual: 38809.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.86 GB) (Free:54.66 GB) NTFS
Drive d: (Storage) (Fixed) (Total:1863.01 GB) (Free:598.25 GB) NTFS
Drive e: (NVME Storage) (Fixed) (Total:931.5 GB) (Free:592.61 GB) NTFS
Drive f: (My Passport) (Fixed) (Total:931.48 GB) (Free:461.7 GB) NTFS
Drive z: (New Volume) (Fixed) (Total:447.13 GB) (Free:90.27 GB) NTFS

\?Volume{4d0e13f3-0000-0000-0000-100000000000} (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\?Volume{4d0e13f3-0000-0000-0000-70163a000000} () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 4D0E13F3)
Partition 1: (Active) – (Size=500 MB) – (Type=07 NTFS)
Partition 2: (Not Active) – (Size=231.9 GB) – (Type=07 NTFS)
Partition 3: (Not Active) – (Size=546 MB) – (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 4D0E13FD)
Partition 1: (Not Active) – (Size=1863 GB) – (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 4DB0837E)
Partition 1: (Not Active) – (Size=447.1 GB) – (Type=07 NTFS)

==========================================================
Disk: 3 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 4 (Size: 931.5 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================

Edited by Oh My!, Today, 07:41 PM.




Original Source by [author_name]

Leave a Reply

Your email address will not be published. Required fields are marked *

seventy seven − seventy two =