Extra scan results of Farbar Restoration Scan Software (x64) Model: 09-12-2020
Ran by Robert (11-12-2020 16:51:46)
Operating from C:UsersRobertDesktop
Home windows 10 Professional Model 1909 18363.1256 (X64) (2020-01-30 12:10:45)
Boot Mode: Regular
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1087048325-1454679796-729941066-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-1087048325-1454679796-729941066-503 – Restricted – Disabled)
Visitor (S-1-5-21-1087048325-1454679796-729941066-501 – Restricted – Disabled)
Robert (S-1-5-21-1087048325-1454679796-729941066-1001 – Administrator – Enabled) => C:UsersRobert
WDAGUtilityAccount (S-1-5-21-1087048325-1454679796-729941066-504 – Restricted – Disabled)
==================== Safety Heart ========================
(If an entry is included within the fixlist, will probably be eliminated.)
AV: Home windows Defender (Disabled – Updated) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled – Updated) {23007AD3-69FE-687C-2629-D584AFFAF72B}
==================== Put in Packages ======================
(Solely the adware packages with “Hidden” flag may very well be added to the fixlist to unhide them. The adware packages ought to be uninstalled manually.)
Lively Listing Authentication Library for SQL Server (HKLM…{6BF11ECE-3CE8-4FBA-991A-1F55AA6BE5BF}) (Model: 15.0.1300.359 – Microsoft Company)
Adobe Acrobat Reader DC (HKLM-x32…{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Model: 20.013.20066 – Adobe Methods Included)
Adobe Flash Participant 32 NPAPI (HKLM-x32…Adobe Flash Participant NPAPI) (Model: 32.0.0.344 – Adobe)
Android Studio (HKLM…Android Studio) (Model: 3.5 – Google LLC)
Apple Software Help (32-bit) (HKLM-x32…{11C4575B-4B32-44D2-A097-D59A00BA60DE}) (Model: 8.5 – Apple Inc.)
Apple Software Help (64-bit) (HKLM…{D39B163A-9E12-442C-95E9-33FA5746AB21}) (Model: 8.5 – Apple Inc.)
Apple Cell System Help (HKLM…{C788AE25-3D4E-4D18-811B-3219F778487E}) (Model: 13.5.1.2 – Apple Inc.)
Apple Software program Replace (HKLM-x32…{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Model: 2.6.3.1 – Apple Inc.)
Software Verifier x64 Exterior Package deal (HKLM…{10CA1677-8F02-3131-F25C-780BAB52E468}) (Model: 10.1.18362.1 – Microsoft) Hidden
AutoHotkey 1.1.32.00 (HKLM…AutoHotkey) (Model: 1.1.32.00 – Lexikos)
Battle.web (HKLM-x32…Battle.web) (Model: – Blizzard Leisure)
BlueStacks App Participant (HKLM…BlueStacks) (Model: 4.240.20.1016 – BlueStack Methods, Inc.)
Bonjour (HKLM…{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Model: 3.1.0.1 – Apple Inc.)
Browser for SQL Server 2017 (HKLM-x32…{CF8EEB96-E7E7-4EF7-A0A1-559F09953156}) (Model: 14.0.1000.169 – Microsoft Company)
CCleaner (HKLM…CCleaner) (Model: 5.65 – Piriform)
ClickOnce Bootstrapper Package deal for Microsoft .NET Framework (HKLM-x32…{0243F145-076D-423A-8F77-218DC8840261}) (Model: 4.8.04119 – Microsoft Company) Hidden
DiagnosticsHub_CollectionService (HKLM…{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Model: 16.1.28901 – Microsoft Company) Hidden
Discord (HKUS-1-5-21-1087048325-1454679796-729941066-1001…Discord) (Model: 0.0.309 – Discord Inc.)
Entity Framework 6.2.0 Instruments for Visible Studio 2019 (HKLM-x32…{7C2070BF-8E07-4B5F-A182-FADB0B95AB39}) (Model: 6.2.0.0 – Microsoft Company) Hidden
Epic Video games Launcher (HKLM-x32…{C69A2919-0662-4390-9418-67C931B44C18}) (Model: 1.1.236.0 – Epic Video games, Inc.)
Epic Video games Launcher Stipulations (x64) (HKLM…{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Model: 1.0.0.0 – Epic Video games, Inc.) Hidden
f.lux (HKUS-1-5-21-1087048325-1454679796-729941066-1001…Flux) (Model: – f.lux Software program LLC)
FACEIT AC model 2.0 (HKLM…{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Model: 2.0 – FACEIT LTD)
Git model 2.29.2.2 (HKLM…Git_is1) (Model: 2.29.2.2 – The Git Improvement Neighborhood)
Google Chrome (HKLM-x32…Google Chrome) (Model: 87.0.4280.88 – Google LLC)
Google Chrome Canary (HKUS-1-5-21-1087048325-1454679796-729941066-1001…Google Chrome SxS) (Model: 89.0.4352.4 – Google LLC)
Google Replace Helper (HKLM-x32…{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Model: 1.3.36.51 – Google LLC) Hidden
icecap_collection_neutral (HKLM-x32…{EEF3770F-1EEF-4AA4-94E7-4B1DEBEED8B6}) (Model: 16.7.30310 – Microsoft Company) Hidden
icecap_collection_x64 (HKLM…{1E36C98F-0653-495C-B28E-433A6740ADB0}) (Model: 16.7.30310 – Microsoft Company) Hidden
icecap_collectionresources (HKLM-x32…{60C5BEEB-0865-45D8-AB7F-7F2E916EBEE4}) (Model: 16.7.30310 – Microsoft Company) Hidden
icecap_collectionresourcesx64 (HKLM-x32…{7525DBB9-50C3-4924-BA87-CD21910F3DA3}) (Model: 16.7.30309 – Microsoft Company) Hidden
IIS 10.0 Specific (HKLM…{0307C98E-AE82-4A4F-A950-A72FBD805338}) (Model: 10.0.04403 – Microsoft Company)
IIS Specific Software Compatibility Database for x64 (HKLM…{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Model: – ) Hidden
IIS Specific Software Compatibility Database for x86 (HKLM…{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Model: – ) Hidden
Integration Providers (HKLM-x32…{D2B37BBC-83A5-4C27-A804-4DC51AFA9E0D}) (Model: 15.0.1900.63 – Microsoft Company) Hidden
Intel® {Hardware} Accelerated Execution Supervisor (HKLM…{7563302D-BD6B-4153-BA7D-3E3432E7C22D}) (Model: 7.5.6 – Intel Company)
IntelliTraceProfilerProxy (HKLM-x32…{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Model: 15.0.18198.01 – Microsoft Company) Hidden
iTunes (HKLM…{013DB423-A8DE-4423-9E50-D45ED1041789}) (Model: 12.10.7.3 – Apple Inc.)
Java 8 Replace 241 (64-bit) (HKLM…{26A24AE4-039D-4CA4-87B4-2F64180241F0}) (Model: 8.0.2410.7 – Oracle Company)
Java 8 Replace 241 (HKLM-x32…{26A24AE4-039D-4CA4-87B4-2F32180241F0}) (Model: 8.0.2410.7 – Oracle Company)
Java SE Improvement Equipment 8 Replace 241 (64-bit) (HKLM…{64A3A4F4-B792-11D6-A78A-00B0D0180241}) (Model: 8.0.2410.7 – Oracle Company)
Java SE Improvement Equipment 13.0.2 (64-bit) (HKLM…{606493F9-D1F1-5355-BB8A-F0E30F1AFFED}) (Model: 13.0.2.0 – Oracle Company)
Kits Configuration Installer (HKLM-x32…{63AAA877-5536-9481-2385-28A082100D78}) (Model: 10.1.18362.1 – Microsoft) Hidden
Launcher Stipulations (x64) (HKLM-x32…{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Model: 1.0.0.0 – Epic Video games, Inc.) Hidden
League of Legends (HKUS-1-5-21-1087048325-1454679796-729941066-1001…Riot Sport league_of_legends.reside) (Model: – Riot Video games, Inc)
Logitech G HUB (HKLM…{521c89be-637f-4274-a840-baaf7460c2b2}) (Model: – Logitech)
Malwarebytes model 4.3.0.98 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Model: 4.3.0.98 – Malwarebytes)
Microsoft .NET Core SDK 2.1.511 (x64) (HKLM-x32…{1a9b2512-eef0-4931-a9ec-0e8b044b2806}) (Model: 2.1.511 – Microsoft Company)
Microsoft .NET Core SDK 3.1.201 (x64) (HKLM-x32…{5e0a0ca7-8d37-4573-8d5b-03416809a484}) (Model: 3.1.201.15034 – Microsoft Company)
Microsoft .NET Core SDK 3.1.403 (x64) (HKLM-x32…{d348ff5e-791d-4655-a073-dd572024fb44}) (Model: 3.1.403.15556 – Microsoft Company)
Microsoft .NET Core SDK 3.1.403 (x64) from Visible Studio (HKLM…{3863962D-2DDA-4188-996A-070F54EE5F3C}) (Model: 3.1.403.015556 – Microsoft Company)
Microsoft .NET Framework 4.7.1 SDK (HKLM-x32…{B9DCCDB9-FCE9-48AD-B534-A7AD270BD52B}) (Model: 4.7.02558 – Microsoft Company)
Microsoft .NET Framework 4.7.1 Concentrating on Pack (ENU) (HKLM-x32…{ABE94A82-C89E-4ACA-8B30-41E0C6165A23}) (Model: 4.7.02558 – Microsoft Company)
Microsoft .NET Framework 4.7.1 Concentrating on Pack (HKLM-x32…{5686C5E9-A3B3-451E-A2EA-4C246CDE5CC9}) (Model: 4.7.02558 – Microsoft Company)
Microsoft Azure Authoring Instruments – v2.9.6 (HKLM…{EDADFA19-7F96-4075-A4AB-2209910626C5}) (Model: 2.9.8899.26 – Microsoft Company)
Microsoft Azure Compute Emulator – v2.9.6 (HKLM…Microsoft Azure Compute Emulator – v2.9.6) (Model: 2.9.8899.26 – Microsoft Company)
Microsoft Azure Libraries for .NET – v2.9 (HKLM…{C5C91AA6-3E83-430E-8B7A-6B790083F28D}) (Model: 3.0.0127.060 – Microsoft Company)
Microsoft Azure Storage Emulator – v5.10 (HKLM-x32…Microsoft Azure Storage Emulator – v5.10) (Model: 5.10.19227.2113 – Microsoft Company)
Microsoft Edge (HKLM-x32…Microsoft Edge) (Model: 87.0.664.57 – Microsoft Company)
Microsoft Edge Replace (HKLM-x32…Microsoft Edge Replace) (Model: 1.3.139.59 – )
Microsoft Assist Viewer 2.3 (HKLM-x32…Microsoft Assist Viewer 2.3) (Model: 2.3.28107 – Microsoft Company)
Microsoft ODBC Driver 13 for SQL Server (HKLM…{76CF9EF4-ABA0-484E-8042-12B99499AF5F}) (Model: 14.0.1000.169 – Microsoft Company)
Microsoft ODBC Driver 17 for SQL Server (HKLM…{72AFAF21-33FB-45A5-9468-A9EC07427F82}) (Model: 17.4.1.1 – Microsoft Company)
Microsoft Workplace Skilled Plus 2016 – en-us (HKLM…ProPlusRetail – en-us) (Model: 16.0.13426.20308 – Microsoft Company)
Microsoft OLE DB Driver for SQL Server (HKLM…{9AA0AFFA-EDB6-4B66-9FD7-BBC828D88B47}) (Model: 18.2.3.0 – Microsoft Company)
Microsoft OneDrive (HKU.DEFAULT…OneDriveSetup.exe) (Model: 18.151.0729.0013 – Microsoft Company)
Microsoft OneDrive (HKUS-1-5-21-1087048325-1454679796-729941066-1001…OneDriveSetup.exe) (Model: 20.169.0823.0008 – Microsoft Company)
Microsoft SQL Server 2012 Native Shopper (HKLM…{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Model: 11.4.7462.6 – Microsoft Company)
Microsoft SQL Server 2016 LocalDB (HKLM…{9097BF1A-13A0-4A4A-A1F8-473E2A669863}) (Model: 13.1.4001.0 – Microsoft Company)
Microsoft SQL Server 2017 (64-bit) (HKLM…Microsoft SQL Server SQL2017) (Model: – Microsoft Company)
Microsoft SQL Server 2017 Setup (English) (HKLM…{405252DC-ADF7-4BC8-95F5-F89DE513DD62}) (Model: 14.0.1000.169 – Microsoft Company)
Microsoft SQL Server 2017 T-SQL Language Service (HKLM…{C8A51693-98B9-4AB1-91B8-9A1B86729D5F}) (Model: 14.0.1000.169 – Microsoft Company)
Microsoft SQL Server Administration Studio – 18.4 (HKLM-x32…{7871da56-98b6-4ef8-b4d4-b7c310e14146}) (Model: 15.0.18206.0 – Microsoft Company)
Microsoft System CLR Varieties for SQL Server 2019 CTP2.2 (HKLM…{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Model: 15.0.1200.24 – Microsoft Company)
Microsoft System CLR Varieties for SQL Server 2019 CTP2.2 (HKLM-x32…{725CC962-98BD-42C7-87D8-51C680FB1779}) (Model: 15.0.1200.24 – Microsoft Company)
Microsoft Groups (HKUS-1-5-21-1087048325-1454679796-729941066-1001…Groups) (Model: 1.3.00.30866 – Microsoft Company)
Microsoft Replace Well being Instruments (HKLM…{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Model: 2.70.0.0 – Microsoft Company)
Microsoft Visible C++ 2005 Redistributable (HKLM-x32…{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Model: 8.0.59193 – Microsoft Company)
Microsoft Visible C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Model: 9.0.30729 – Microsoft Company)
Microsoft Visible C++ 2010 x64 Redistributable – 10.0.30319 (HKLM…{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Model: 10.0.30319 – Microsoft Company)
Microsoft Visible C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Model: 10.0.40219 – Microsoft Company)
Microsoft Visible C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Model: 11.0.61030.0 – Microsoft Company)
Microsoft Visible C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Model: 11.0.61030.0 – Microsoft Company)
Microsoft Visible C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Model: 12.0.30501.0 – Microsoft Company)
Microsoft Visible C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Model: 12.0.30501.0 – Microsoft Company)
Microsoft Visible C++ 2015-2019 Redistributable (x64) – 14.27.29112 (HKLM-x32…{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Model: 14.27.29112.0 – Microsoft Company)
Microsoft Visible C++ 2015-2019 Redistributable (x86) – 14.27.29112 (HKLM-x32…{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Model: 14.27.29112.0 – Microsoft Company)
Microsoft Visible Studio Code (Consumer) (HKUS-1-5-21-1087048325-1454679796-729941066-1001…{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Model: 1.52.0 – Microsoft Company)
Microsoft Visible Studio Installer (HKLM…{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Model: 2.7.3068.929 – Microsoft Company)
Microsoft Visible Studio Instruments for Purposes 2017 (HKLM-x32…{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Model: 15.0.27520 – Microsoft Company)
Microsoft VSS Author for SQL Server 2017 (HKLM…{20B328C9-C6BB-434A-928A-00F05CD820B8}) (Model: 14.0.1000.169 – Microsoft Company)
Microsoft Net Deploy 4.0 (HKLM…{2EC26D34-FB67-4C58-AC20-235697551222}) (Model: 10.0.3802 – Microsoft Company)
MongoDB 4.4.0 2008R2Plus SSL (64 bit) (HKLM…{2FCCEEEC-7205-4132-9113-ACEB295F90F9}) (Model: 4.4.0 – MongoDB Inc.)
MongoDB Compass Neighborhood (HKUS-1-5-21-1087048325-1454679796-729941066-1001…MongoDBCompassCommunity) (Model: 1.21.2 – MongoDB Inc)
Mozilla Firefox 83.0 (x64 en-US) (HKLM…Mozilla Firefox 83.0 (x64 en-US)) (Model: 83.0 – Mozilla)
Mozilla Upkeep Service (HKLM…MozillaMaintenanceService) (Model: 72.0.2 – Mozilla)
Mp3tag v3.00 (HKLM-x32…Mp3tag) (Model: 3.00 – Florian Heidenreich)
MSI Improvement Instruments (HKLM-x32…{DB4DB790-64DD-1902-4BF2-833B3B6DBCA1}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Node.js (HKLM…{F64B3297-0B1F-4C1C-9F48-126F7CF7CF3C}) (Model: 12.18.2 – Node.js Basis)
NordVPN (HKLM-x32…{94F277B4-232D-44B0-8D2C-97D41A8F297D}) (Model: 6.26.15 – NordVPN) Hidden
NordVPN (HKLM-x32…NordVPN 6.26.15) (Model: 6.26.15 – NordVPN)
NordVPN community TAP (HKLM-x32…{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Model: 1.0.1 – NordVPN)
Notepad++ (32-bit x86) (HKLM-x32…Notepad++) (Model: 7.8.5 – Notepad++ Crew)
NVAPI Monitor plugin for NvContainer (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Model: 1.27 – NVIDIA Company) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Model: 1.1.4923.29214634 – NVIDIA Company)
NVIDIA GeForce Expertise 3.20.5.70 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Model: 3.20.5.70 – NVIDIA Company)
NVIDIA Graphics Driver 457.51 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Model: 457.51 – NVIDIA Company)
NVIDIA HD Audio Driver 1.3.38.35 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Model: 1.3.38.35 – NVIDIA Company)
NVIDIA PhysX System Software program 9.19.0218 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Model: 9.19.0218 – NVIDIA Company)
NvModuleTracker (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Model: 6.14.24033.38719 – NVIDIA Company) Hidden
OBS Studio (HKLM-x32…OBS Studio) (Model: 25.0.8 – OBS Challenge)
Workplace 16 Click on-to-Run Extensibility Element (HKLM-x32…{90160000-008C-0000-0000-0000000FF1CE}) (Model: 16.0.13426.20294 – Microsoft Company) Hidden
Workplace 16 Click on-to-Run Extensibility Element 64-bit Registration (HKLM…{90160000-00DD-0000-1000-0000000FF1CE}) (Model: 16.0.13426.20294 – Microsoft Company) Hidden
Workplace 16 Click on-to-Run Licensing Element (HKLM…{90160000-008F-0000-1000-0000000FF1CE}) (Model: 16.0.13426.20308 – Microsoft Company) Hidden
Workplace 16 Click on-to-Run Localization Element (HKLM-x32…{90160000-008C-0409-0000-0000000FF1CE}) (Model: 16.0.13426.20294 – Microsoft Company) Hidden
OldSchool RuneScape Launcher 1.2.7 (HKLM-x32…{FEDDCE73-34B8-4980-90B8-8619A78C902C}) (Model: 1.2.7 – Jagex Ltd)
paint.web (HKLM…{15BCA3AB-444B-4AC5-A04F-F2AD0F7AD3EC}) (Model: 4.2.10 – dotPDN LLC)
PCSX2 – Ps 2 Emulator (HKLM-x32…pcsx2) (Model: 1.6.0 – PCSX2 Crew)
Postman-win64-7.31.1 (HKUS-1-5-21-1087048325-1454679796-729941066-1001…Postman) (Model: 7.31.1 – Postman)
qBittorrent 4.2.1 (HKLM-x32…qBittorrent) (Model: 4.2.1 – The qBittorrent mission)
RuneLite (HKUS-1-5-21-1087048325-1454679796-729941066-1001…RuneLite Launcher_is1) (Model: 2.1.0 – RuneLite)
Sandboxie 5.33.1 (64-bit) (HKLM…Sandboxie) (Model: 5.33.1 – Sandboxie Holdings, LLC)
SDK ARM Additions (HKLM-x32…{73681F86-CD86-4208-572F-959B45430B04}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
SDK ARM Redistributables (HKLM-x32…{67EE3804-9642-62BA-EBF1-B1561FB4ECBE}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Spek (HKLM-x32…{7CDF6754-F5A0-4F34-B589-197530FEF862}) (Model: 0.8.2 – Spek Challenge)
SQL Server 2017 Batch Parser (HKLM…{2C6E8311-28BD-4615-9545-6E39E8E83A4B}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Widespread Information (HKLM…{9D1C0509-D490-4E9E-ACF5-A73E5C53742D}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Widespread Information (HKLM…{B777C4C0-A1CD-4AB9-99B1-AD5FBED6F8E5}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Connection Data (HKLM…{89A7644F-E056-4EC1-BFDE-9D1A531D6855}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Connection Data (HKLM…{A9A443F5-56E1-4FC6-937C-5F481345A843}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Database Engine Providers (HKLM…{28EEF6BA-A23A-42D2-86BA-A6BEE723B969}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Database Engine Providers (HKLM…{DED314CA-0EFE-4593-9D66-EF75E5289A4C}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Database Engine Shared (HKLM…{0E22DBB4-691B-400C-B52D-8DFE8EC421AA}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Database Engine Shared (HKLM…{793F1C1E-5C83-4E33-A29B-6EAA7C1E791C}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 DMF (HKLM…{B9998A13-5563-496C-B95E-597FFC70B670}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 DMF (HKLM…{D7D28BBF-3B0E-43F0-A457-331F1CD9E9EB}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Shared Administration Objects (HKLM…{10855B1A-F7F2-4D8A-A725-9287C73BED5A}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Shared Administration Objects (HKLM…{6CBBF624-696C-499E-948D-ADBAFFA2F548}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Shared Administration Objects Extensions (HKLM…{8C515C22-BE07-4908-985C-0AA9349E1ED4}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 Shared Administration Objects Extensions (HKLM…{C6D92730-3EC0-47B1-8F6C-6F5635D1EFAC}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 SQL Diagnostics (HKLM…{DFA6A906-3024-49DE-87AD-750EAED2FA49}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 XEvent (HKLM…{12D2DB8D-80FF-4152-8F51-EDB3BD3C6976}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server 2017 XEvent (HKLM…{AA2A015C-C210-413B-95F6-BF9D3CDD6E0D}) (Model: 14.0.1000.169 – Microsoft Company) Hidden
SQL Server Administration Studio (HKLM…{3E532AF4-B9B1-4DE0-9511-7ACEB14C8D6D}) (Model: 15.0.18206.0 – Microsoft Company) Hidden
SQL Server Administration Studio (HKLM…{98D7AA09-44E1-4469-AB34-BFDC9A6890DD}) (Model: 15.0.18206.0 – Microsoft Company) Hidden
SQL Server Administration Studio for Evaluation Providers (HKLM…{3D53F8BD-E78B-41E1-A4B5-0AC3F1ED50EF}) (Model: 15.0.18206.0 – Microsoft Company) Hidden
SQL Server Administration Studio for Reporting Providers (HKLM…{1B1BC009-AA81-48C1-AE01-321DAD884FBB}) (Model: 15.0.18206.0 – Microsoft Company) Hidden
SSMS Put up Set up Duties (HKLM…{872C7FD8-1063-4CA8-8CE2-B34E206602FC}) (Model: 15.0.18206.0 – Microsoft Company) Hidden
Steam (HKLM-x32…Steam) (Model: 2.10.91.91 – Valve Company)
TeamSpeak 3 Shopper (HKLM…TeamSpeak 3 Shopper) (Model: 3.3.2 – TeamSpeak Methods GmbH)
TeamViewer (HKLM-x32…TeamViewer) (Model: 15.11.6 – TeamViewer)
Toontown Rewritten (HKLM-x32…Toontown Rewritten) (Model: 00.00.00.00 – The TTR Crew)
TypeScript SDK (HKLM-x32…{A6485A79-9A1B-4EEF-8BD2-658157F68355}) (Model: 3.9.6.0 – Microsoft Company) Hidden
Unity (HKLM-x32…Unity) (Model: 2019.2.21f1 – Unity Applied sciences ApS)
Unity Hub 2.2.2 (HKLM…Unity Applied sciences – Hub) (Model: 2.2.2 – Unity Applied sciences Inc.)
Unity Hub 2.3.0 (HKLM…{Unity Applied sciences – Hub}) (Model: 2.3.0 – Unity Applied sciences Inc.)
Common CRT Extension SDK (HKLM-x32…{13952D7A-B7B3-F4F8-5F29-5CD18E8168B7}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Common CRT Headers Libraries and Sources (HKLM-x32…{74CBC330-ED16-31B9-E8BE-0C6A8E67DE32}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Common CRT Redistributable (HKLM-x32…{847D4DAF-0182-265B-324F-406462E8A90D}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Common CRT Instruments x64 (HKLM…{54FE4D23-11A2-F1C4-76E9-79C8FB40A4A1}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Common CRT Instruments x86 (HKLM-x32…{9F7B0D96-881D-8850-C303-43F3A08E6902}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Common Basic MIDI DLS Extension SDK (HKLM-x32…{6F54BF87-2EE6-FA6D-431D-33A665992D49}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Replace for (KB2504637) (HKLM-x32…{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Model: 1 – Microsoft Company)
vcpp_crt.redist.clickonce (HKLM-x32…{187432B8-F7D6-4F73-9D40-8B39312D2EDF}) (Model: 14.27.29112 – Microsoft Company) Hidden
Visible Studio Neighborhood 2019 (HKLM-x32…e043a413) (Model: 16.7.30611.23 – Microsoft Company)
VLC media participant (HKLM-x32…VLC media participant) (Model: 3.0.8 – VideoLAN)
VMware Participant (HKLM…{5E16122B-D844-47B7-BB31-DA054680E671}) (Model: 16.0.0 – VMware, Inc.)
VS Immersive Activate Helper (HKLM-x32…{A71406B5-E487-4B01-8E59-D466841350F5}) (Model: 16.0.102.0 – Microsoft Company) Hidden
VS JIT Debugger (HKLM…{C7E8A4F2-EF09-42A8-B892-69D5ED99D965}) (Model: 16.0.102.0 – Microsoft Company) Hidden
VS Script Debugging Widespread (HKLM…{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Model: 16.0.102.0 – Microsoft Company) Hidden
vs_BlendMsi (HKLM-x32…{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_clickoncebootstrappermsi (HKLM-x32…{BAF91847-0A64-405E-98EC-A0BA6FB4BC4E}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_clickoncebootstrappermsires (HKLM-x32…{271F1F42-B547-4498-825F-590DBB1774F7}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_clickoncesigntoolmsi (HKLM-x32…{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_communitymsi (HKLM-x32…{CC46F5AE-F0CA-400C-A557-A95D742D4EE0}) (Model: 16.7.30310 – Microsoft Company) Hidden
vs_communitymsires (HKLM-x32…{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_devenvmsi (HKLM-x32…{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_filehandler_amd64 (HKLM-x32…{804E218D-A59D-48B9-AD2A-13BF6F1C9DA0}) (Model: 16.7.30309 – Microsoft Company) Hidden
vs_filehandler_x86 (HKLM-x32…{3A735826-F946-4348-8DE2-0B9FF750F77D}) (Model: 16.7.30309 – Microsoft Company) Hidden
vs_FileTracker_Singleton (HKLM-x32…{EF1AD9BC-8273-4B78-ACB6-A35DF4CE4447}) (Model: 16.7.30309 – Microsoft Company) Hidden
vs_Graphics_Singletonx64 (HKLM…{5F1382AE-D96A-4E32-989C-0A3C8C35CC23}) (Model: 16.7.30309 – Microsoft Company) Hidden
vs_Graphics_Singletonx86 (HKLM-x32…{87B66F22-97AC-4420-841B-2305F921B39F}) (Model: 16.7.30310 – Microsoft Company) Hidden
vs_minshellinteropmsi (HKLM-x32…{27B16914-BC5D-4018-8074-071262A27F6D}) (Model: 16.2.28917 – Microsoft Company) Hidden
vs_minshellmsi (HKLM-x32…{760FF3F5-A7F3-4079-92DD-9AEB0344D13E}) (Model: 16.7.30310 – Microsoft Company) Hidden
vs_minshellmsires (HKLM-x32…{EC04CD66-C03A-470D-B0D2-4BBC87F6382D}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32…{937CD512-3142-4F3E-93CD-5F86203ED24B}) (Model: 16.7.30309 – Microsoft Company) Hidden
vs_tipsmsi (HKLM-x32…{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Model: 16.0.28329 – Microsoft Company) Hidden
vs_vswebprotocolselectormsi (HKLM-x32…{178ED1EA-BAFA-489D-873D-F5FB72EA69B9}) (Model: 16.7.30309 – Microsoft Company) Hidden
WinAppDeploy (HKLM-x32…{8E3AE0EF-D067-700C-BDB4-10D5552155DC}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
Home windows SDK AddOn (HKLM-x32…{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Model: 10.1.0.0 – Microsoft Company)
Home windows Software program Improvement Equipment – Home windows 10.0.18362.1 (HKLM-x32…{126dedf0-cc0e-4b48-9ece-806b0e437195}) (Model: 10.1.18362.1 – Microsoft Company)
WinRAR 5.80 (64-bit) (HKLM…WinRAR archiver) (Model: 5.80.0 – win.rar GmbH)
WinRT Intellisense Desktop – en-us (HKLM-x32…{E67F1F03-FB4A-3D61-8999-E6A4C4B26F34}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense Desktop – Different Languages (HKLM-x32…{7EF010FF-7800-28BA-FF49-2D219EC7BA82}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense IoT – en-us (HKLM-x32…{36AE12FB-4349-6EAA-B6E4-5F4E06FA8AE8}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense IoT – Different Languages (HKLM-x32…{6B03A6A4-643C-57CE-CA6F-4E19BF47497A}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense Cell – en-us (HKLM-x32…{918A448F-59E8-FBF5-B087-D3F07160C7E0}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense PPI – en-us (HKLM-x32…{66483041-F590-EC46-4AF0-EE39C62FB680}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense PPI – Different Languages (HKLM-x32…{9C61E6D2-C43E-6746-B519-6185558C4A24}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense UAP – en-us (HKLM-x32…{6B37CC5B-78DF-5050-2215-68479716A587}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
WinRT Intellisense UAP – Different Languages (HKLM-x32…{250D5341-0879-4016-399C-BBCD87B80E95}) (Model: 10.1.18362.1 – Microsoft Company) Hidden
World of Warcraft (HKLM-x32…World of Warcraft) (Model: – Blizzard Leisure)
XAMPP (HKLM…xampp) (Model: 7.2.34-0 – Bitnami)
XM1 Configuration Software program (HKLM-x32…{DD42A7D2-2CA4-4A4C-AAB5-8226D67081F7}) (Model: 1.08 – Professional Gamersware GmbH) Hidden
XM1 Configuration Software program (HKLM-x32…InstallShield_{DD42A7D2-2CA4-4A4C-AAB5-8226D67081F7}) (Model: 1.08 – Professional Gamersware GmbH)
Zoom (HKUS-1-5-21-1087048325-1454679796-729941066-1001…ZoomUMX) (Model: 5.3.2 (53291.1011) – Zoom Video Communications, Inc.)
Packages:
=========
Microsoft Promoting SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Promoting.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-01] (Microsoft Company) [MS Ad]
Microsoft Promoting SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Promoting.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-01] (Microsoft Company) [MS Ad]
Microsoft Solitaire Assortment -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-25] (Microsoft Studios) [MS Ad]
NVIDIA Management Panel -> C:Program FilesWindowsAppsNVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-11-29] (NVIDIA Corp.)
Pictures Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Pictures.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-25] (Microsoft Company)
==================== Customized CLSID (Whitelisted): ==============
(If an entry is included within the fixlist, will probably be faraway from the registry. The file won’t be moved except listed individually.)
CustomCLSID: HKUS-1-5-21-1087048325-1454679796-729941066-1001_ClassesCLSID{19A6E644-14E6-4A60-B8D7-DD20610A871D}InprocServer32 -> C:UsersRobertAppDataLocalMicrosoftTeamsMeetingAddin1.0.20275.4x64Microsoft.Groups.AddinLoader.dll (Microsoft Company -> Microsoft Company)
CustomCLSID: HKUS-1-5-21-1087048325-1454679796-729941066-1001_ClassesCLSID{6D264B70-DA18-401D-910C-B202D89670C6}InprocServer32 -> C:UsersRobertAppDataLocalGoogleUpdate1.3.36.32psuser_64.dll => No File
CustomCLSID: HKUS-1-5-21-1087048325-1454679796-729941066-1001_ClassesCLSID{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}InprocServer32 -> C:UsersRobertAppDataLocalGoogleUpdate1.3.36.52psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKUS-1-5-21-1087048325-1454679796-729941066-1001_ClassesCLSID{CA919489-0396-4164-A6E7-94CDED45A707}InprocServer32 -> C:UsersRobertAppDataLocalGoogleUpdate1.3.36.52psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKUS-1-5-21-1087048325-1454679796-729941066-1001_ClassesCLSID{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}InprocServer32 -> C:UsersRobertAppDataLocalMicrosoftTeamsMeetingAddin1.0.20244.4x64Microsoft.Groups.AddinLoader.dll => No File
CustomCLSID: HKUS-1-5-21-1087048325-1454679796-729941066-1001_ClassesCLSID{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}InprocServer32 -> C:UsersRobertAppDataLocalGoogleUpdate1.3.36.52psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKUS-1-5-21-1087048325-1454679796-729941066-1001_ClassesCLSID{FA372A6E-149F-4E95-832D-8F698D40AD7F}localserver32 -> C:UsersRobertAppDataLocalGoogleChrome SxSApplication89.0.4352.4notification_helper.exe (Google LLC -> Google LLC)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:Program Information (x86)Notepad++NppShell_06.dll [2020-03-04] (Notepad++ -> )
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:Program Information (x86)Mp3tagMp3tagShell64.dll [2020-01-23] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:Program Information (x86)Mp3tagMp3tagShell64.dll [2020-01-23] (Florian Heidenreich) [File not signed]
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:Program Information (x86)VMwareVMware PlayervmdkShellExt.dll [2020-09-14] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:Program Information (x86)VMwareVMware Playerx64vmdkShellExt64.dll [2020-09-14] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-02-16] (Malwarebytes Company -> Malwarebytes)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:Program Information (x86)Mp3tagMp3tagShell64.dll [2020-01-23] (Florian Heidenreich) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WindowsSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_372920ce6be76248nvshext.dll [2020-11-23] (NVIDIA Company -> NVIDIA Company)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-02-16] (Malwarebytes Company -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries may very well be listed to be restored or eliminated.)
ShortcutWithArgument: C:UsersRobertAppDataRoamingMicrosoftInternet ExplorerQuick LaunchUser PinnedImplicitAppShortcuts29c5db18335c1c14Redux DevTools.lnk -> C:Program Information (x86)GoogleChromeApplicationchrome_proxy.exe (Google LLC) -> –profile-directory=Default –app-id=lmhkpmbekcpmknklioeibfkpmmfibljd
==================== Loaded Modules (Whitelisted) =============
2019-10-16 05:32 – 2019-10-16 05:32 – 000262656 _____ () [File not signed] C:Program Information (x86)NordVPNx86Liberation.Native.Firewall.dll
2020-12-11 09:19 – 2020-12-11 09:19 – 000018944 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln16439390013980959265jln6067057185786745299nativeswindows-amd64gluegen_rt.dll
2020-12-11 09:19 – 2020-12-11 09:19 – 000508928 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln16439390013980959265jln6067057185786745299nativeswindows-amd64jogl_desktop.dll
2020-12-11 09:19 – 2020-12-11 09:19 – 000295936 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln16439390013980959265jln6067057185786745299nativeswindows-amd64jogl_mobile.dll
2020-12-11 09:19 – 2020-12-11 09:19 – 000017920 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln16439390013980959265jln6067057185786745299nativeswindows-amd64nativewindow_awt.dll
2020-12-11 09:19 – 2020-12-11 09:19 – 000033792 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln16439390013980959265jln6067057185786745299nativeswindows-amd64nativewindow_win32.dll
2020-12-11 09:20 – 2020-12-11 09:20 – 000018944 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln7757227862651734856jln13093588627327669720nativeswindows-amd64gluegen_rt.dll
2020-12-11 09:20 – 2020-12-11 09:20 – 000508928 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln7757227862651734856jln13093588627327669720nativeswindows-amd64jogl_desktop.dll
2020-12-11 09:20 – 2020-12-11 09:20 – 000295936 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln7757227862651734856jln13093588627327669720nativeswindows-amd64jogl_mobile.dll
2020-12-11 09:20 – 2020-12-11 09:20 – 000017920 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln7757227862651734856jln13093588627327669720nativeswindows-amd64nativewindow_awt.dll
2020-12-11 09:20 – 2020-12-11 09:20 – 000033792 _____ () [File not signed] C:UsersRobertAppDataLocalTempjogamp_0000file_cachejln7757227862651734856jln13093588627327669720nativeswindows-amd64nativewindow_win32.dll
2020-01-23 16:55 – 2020-01-23 16:55 – 000424448 _____ (Florian Heidenreich) [File not signed] C:Program Information (x86)Mp3tagMp3tagShell64.dll
2020-12-11 09:19 – 2020-12-11 09:19 – 000246272 ____N (Java Native Entry (JNA)) [File not signed] C:UsersRobertAppDataLocalTempjna–1841845854jna3384358726147353892.dll
2020-12-11 09:19 – 2020-12-11 09:19 – 000246272 ____N (Java Native Entry (JNA)) [File not signed] C:UsersRobertAppDataLocalTempjna–1841845854jna5228576920346983132.dll
==================== Alternate Knowledge Streams (Whitelisted) ========
(If an entry is included within the fixlist, solely the ADS might be eliminated.)
AlternateDataStreams: C:UsersPublicShared Information:VersionCache [488]
==================== Protected Mode (Whitelisted) ==================
(If an entry is included within the fixlist, will probably be faraway from the registry. The “AlternateShell” might be restored.)
HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => “”=”Service”
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => “”=”Service”
==================== Affiliation (Whitelisted) =================
==================== Web Explorer (Whitelisted) ==========
BHO: Skype for Enterprise Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program Information (x86)Microsoft OfficerootVFSProgramFilesX64Microsoft OfficeOffice16OCHelper.dll [2020-09-14] (Microsoft Company -> Microsoft Company)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program FilesJavajre1.8.0_241binssv.dll [2020-02-27] (Oracle America, Inc. -> Oracle Company)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program FilesJavajre1.8.0_241binjp2ssv.dll [2020-02-27] (Oracle America, Inc. -> Oracle Company)
BHO-x32: Skype for Enterprise Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program Information (x86)Microsoft OfficerootOffice16OCHelper.dll [2020-09-14] (Microsoft Company -> Microsoft Company)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program Information (x86)Javajre1.8.0_241binssv.dll [2020-01-30] (Oracle America, Inc. -> Oracle Company)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program Information (x86)Javajre1.8.0_241binjp2ssv.dll [2020-01-30] (Oracle America, Inc. -> Oracle Company)
Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07} – C:Program Information (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-12-04] (Microsoft Company -> Microsoft Company)
Handler-x32: mso-minsb.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program Information (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-12-04] (Microsoft Company -> Microsoft Company)
Handler-x32: osf-roaming.16 – {42089D2D-912D-4018-9087-2B87803E93FB} – C:Program Information (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-12-04] (Microsoft Company -> Microsoft Company)
Handler-x32: osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A} – C:Program Information (x86)Microsoft OfficerootOffice16MSOSB.DLL [2020-12-04] (Microsoft Company -> Microsoft Company)
(If an entry is included within the fixlist, will probably be faraway from the registry.)
IE trusted web site: HKUS-1-5-21-1087048325-1454679796-729941066-1001…sharepoint.com -> hxxps://mcastedu-files.sharepoint.com
==================== Hosts content material: =========================
(If wanted Hosts: directive may very well be included within the fixlist to reset Hosts.)
2019-03-19 05:49 – 2020-03-26 16:57 – 000000824 ____N C:Windowssystem32driversetchosts
==================== Different Areas ===========================
(Presently there isn’t any computerized repair for this part.)
HKLMSystemCurrentControlSetControlSession ManagerEnvironmentPath -> C:Program Information (x86)VMwareVMware Playerbin;C:Program Information (x86)Widespread FilesOracleJavajavapath;C:Windowssystem32;C:Home windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:WindowsSystem32OpenSSH;C:Program Information (x86)NVIDIA CorporationPhysXCommon;C:Program FilesNVIDIA CorporationNVIDIA NvDLISR;C:Program FilesMicrosoft SQL ServerClient SDKODBC130ToolsBinn;C:Program Information (x86)Microsoft SQL Server140ToolsBinn;C:Program FilesMicrosoft SQL Server140ToolsBinn;C:Program FilesMicrosoft SQL Server140DTSBinn;C:Program Information (x86)Microsoft SQL Server150DTSBinn;C:Program Filesdotnet;C:Program FilesMicrosoft SQL Server130ToolsBinn;C:Program FilesMicrosoft SQL ServerClient SDKODBC170ToolsBinn;C:xamppphp;C:MinGWbin;C:Program Filesnodejs;C:Program FilesMongoDBServer4.4bin;C:Program FilesGitcmd;C:xampp2020php;C:composer
HKUS-1-5-21-1087048325-1454679796-729941066-1001Control PanelDesktopWallpaper -> c:windowswebwallpapertheme1img13.jpg
HKUS-1-5-80-1985561900-798682989-2213159822-1904180398-3434236965Control PanelDesktopWallpaper -> C:WindowsWebWallpaperWindowsimg0.jpg
HKUS-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133Control PanelDesktopWallpaper -> C:WindowsWebWallpaperWindowsimg0.jpg
DNS Servers: 192.168.0.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Home windows Firewall is enabled.
Community Binding:
=============
VMware Community Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled)
Ethernet 2: VMware Bridge Protocol -> vmware_bridge (enabled)
Wi-Fi: VMware Bridge Protocol -> vmware_bridge (enabled)
VMware Community Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled)
Ethernet: VMware Bridge Protocol -> vmware_bridge (enabled)
==================== MSCONFIG/TASK MANAGER disabled gadgets ==
(If an entry is included within the fixlist, will probably be eliminated.)
HKLM…StartupApprovedRun: => “iTunesHelper”
HKUS-1-5-21-1087048325-1454679796-729941066-1001…StartupApprovedRun: => “SandboxieControl”
HKUS-1-5-21-1087048325-1454679796-729941066-1001…StartupApprovedRun: => “com.squirrel.Groups.Groups”
HKUS-1-5-21-1087048325-1454679796-729941066-1001…StartupApprovedRun: => “CCleaner Sensible Cleansing”
==================== FirewallRules (Whitelisted) ================
(If an entry is included within the fixlist, will probably be faraway from the registry. The file won’t be moved except listed individually.)
FirewallRules: [{9AF67BAD-E87D-4902-970A-C5A541A84FCB}] => (Enable) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{E9BE7B18-AB69-48D0-8AE0-DEF2F0C70C76}] => (Enable) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{1CF40658-154A-4AFE-9D75-0D1ECCBFAD05}] => (Enable) C:Program Information (x86)SteamSteam.exe (Valve -> Valve Company)
FirewallRules: [{891353F8-F599-4315-B23A-3E16024674C7}] => (Enable) C:Program Information (x86)SteamSteam.exe (Valve -> Valve Company)
FirewallRules: [{B72B3B3B-C543-47AC-A33A-B84FE4372F3A}] => (Enable) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{139224CF-D5E1-4E4D-AAF7-8F30BBCCE3ED}] => (Enable) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]
FirewallRules: [{76E94A63-DD29-4432-88C5-D2A0CFF17265}] => (Enable) C:Program Information (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [{67F6B7D6-9823-4D8A-B859-BB04ED650AD0}] => (Enable) C:Program Information (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [{F6361EB8-88C3-4BAF-8B91-943CAB610C3A}] => (Enable) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Company -> Mozilla Company)
FirewallRules: [{07F7B258-F4E9-4BED-B9E9-45F0A4BA637F}] => (Enable) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Company -> Mozilla Company)
FirewallRules: [{C207FE94-6D13-4D34-A1C1-CB3DDF10E355}] => (Enable) C:Program Information (x86)SteamsteamappscommonPummel PartyPummelParty.exe () [File not signed]
FirewallRules: [{F81A86B0-E5E5-45E4-9A37-C5C422963A16}] => (Enable) C:Program Information (x86)SteamsteamappscommonPummel PartyPummelParty.exe () [File not signed]
FirewallRules: [{B7C73438-4C25-4D9C-B1C4-64FA1429773F}] => (Enable) C:Program Information (x86)SteamsteamappscommonCounter-Strike World Offensivecsgo.exe (Valve -> )
FirewallRules: [{8BCAC0DC-2AD3-4A9E-926D-BB22E68386F8}] => (Enable) C:Program Information (x86)SteamsteamappscommonCounter-Strike World Offensivecsgo.exe (Valve -> )
FirewallRules: [{D39A2DA4-0501-4525-BB40-1AE840872BDB}] => (Enable) C:Program Information (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [{97B71294-4E52-49D2-99DC-6A69ACBBEAB9}] => (Enable) C:Program Information (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [{B8F47B44-153A-4132-94B6-067B5245F81B}] => (Enable) C:Program Information (x86)Widespread FilesAppleApple Software SupportAPSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B059CBBE-8750-4C10-906D-3830BE98D570}] => (Enable) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{96641965-75C3-4A41-9057-CD3C9CD009B6}] => (Enable) C:Program FilesBonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4E6C1190-0B04-4579-87C0-FAA8AB597FBD}] => (Enable) C:Program Information (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DDD849FC-8B07-488E-94A6-B28E3FD5DD5C}] => (Enable) C:Program Information (x86)BonjourmDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EE4A3FEF-57B5-47E2-9525-DE1F001AB3EA}] => (Enable) C:Program Information (x86)InfestationFantasyInfestation.exe (NYX INNOVATE CO.,LTD. -> )
FirewallRules: [TCP Query User{79C4C055-C8C4-4CDA-ADB7-03EA825D5947}C:program files (x86)steamsteamappscommonnewznewzlauncher.exe] => (Enable) C:program information (x86)steamsteamappscommonnewznewzlauncher.exe (Fredaikis AB -> )
FirewallRules: [UDP Query User{C58F69C4-3070-436B-B226-3204E647E27E}C:program files (x86)steamsteamappscommonnewznewzlauncher.exe] => (Enable) C:program information (x86)steamsteamappscommonnewznewzlauncher.exe (Fredaikis AB -> )
FirewallRules: [{1C5D5113-E327-46E3-A3CE-20FEE8D07EFA}] => (Enable) C:Program Information (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Company)
FirewallRules: [{DB46B340-B074-4933-A352-85E9E10FD58B}] => (Enable) C:Program Information (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Company)
FirewallRules: [TCP Query User{C87BDA24-9B8A-407F-B763-48B71163E3A4}C:program filesandroidandroid studiojrebinjava.exe] => (Enable) C:program filesandroidandroid studiojrebinjava.exe
FirewallRules: [UDP Query User{1611CB4C-529A-4364-BCD0-A58770E0130F}C:program filesandroidandroid studiojrebinjava.exe] => (Enable) C:program filesandroidandroid studiojrebinjava.exe
FirewallRules: [{575F9D11-86A0-4B98-B0F1-7E518F831EDD}] => (Enable) C:Program FilesUnityHubEditor2019.3.3f1EditorUnity.exe (Unity Applied sciences Aps -> Unity Applied sciences ApS)
FirewallRules: [{AFDD1C2B-CC9E-4DF4-9B32-DA20D41AEC83}] => (Block) C:Program FilesUnityHubEditor2019.3.3f1EditorUnity.exe (Unity Applied sciences Aps -> Unity Applied sciences ApS)
FirewallRules: [{9FAF2CF1-BAA8-4B72-AE83-4B260865578C}] => (Enable) C:Program FilesUnityHubEditor2019.2.21f1EditorUnity.exe (Unity Applied sciences Aps -> Unity Applied sciences ApS)
FirewallRules: [{7F3B192D-997E-4B0A-A4C7-7D790E9111EC}] => (Block) C:Program FilesUnityHubEditor2019.2.21f1EditorUnity.exe (Unity Applied sciences Aps -> Unity Applied sciences ApS)
FirewallRules: [TCP Query User{CC753520-6042-4EDC-AD2B-32E53D636DB4}C:program filesunityhubeditor2019.3.3f1editordataplaybackenginesandroidplayeropenjdkbinjava.exe] => (Enable) C:program filesunityhubeditor2019.3.3f1editordataplaybackenginesandroidplayeropenjdkbinjava.exe
FirewallRules: [UDP Query User{5137B93D-F870-4DB3-B35A-D2A1A902AC05}C:program filesunityhubeditor2019.3.3f1editordataplaybackenginesandroidplayeropenjdkbinjava.exe] => (Enable) C:program filesunityhubeditor2019.3.3f1editordataplaybackenginesandroidplayeropenjdkbinjava.exe
FirewallRules: [TCP Query User{EC91217B-9363-4A5D-A749-58D8688A81E6}C:program files (x86)steamsteamappscommonnewzinfestation_thenewz.exe] => (Enable) C:program information (x86)steamsteamappscommonnewzinfestation_thenewz.exe (Fredaikis AB -> )
FirewallRules: [UDP Query User{74297085-1FD1-4466-B7BE-FF1A506D9FDB}C:program files (x86)steamsteamappscommonnewzinfestation_thenewz.exe] => (Enable) C:program information (x86)steamsteamappscommonnewzinfestation_thenewz.exe (Fredaikis AB -> )
FirewallRules: [{258154FE-AA5E-4024-B077-63CB8EB53BAE}] => (Enable) C:Program FilesUnity HubUnity Hub.exe (Unity Applied sciences SF -> Unity Applied sciences Inc.)
FirewallRules: [TCP Query User{34CA06F7-CF5B-4371-B329-78D34E8C7610}C:program filesunity hubunity hub.exe] => (Enable) C:program filesunity hubunity hub.exe (Unity Applied sciences SF -> Unity Applied sciences Inc.)
FirewallRules: [UDP Query User{B12CDC22-EC3C-4EBA-B3B4-65D5162B5E3B}C:program filesunity hubunity hub.exe] => (Enable) C:program filesunity hubunity hub.exe (Unity Applied sciences SF -> Unity Applied sciences Inc.)
FirewallRules: [{2023AD36-E935-4B87-8DB5-71BF84FB4667}] => (Enable) C:Program Information (x86)SteamsteamappscommonFPSAimTrainerFPSAimTrainer.exe (Epic Video games, Inc.) [File not signed]
FirewallRules: [{76E97E3D-5662-4DDF-8B80-40E53704E885}] => (Enable) C:Program Information (x86)SteamsteamappscommonFPSAimTrainerFPSAimTrainer.exe (Epic Video games, Inc.) [File not signed]
FirewallRules: [TCP Query User{AE8790BE-D3A0-47B5-8EAC-B049E4BEF380}C:program files (x86)steamsteamappscommonfpsaimtrainerfpsaimtrainerbinarieswin64fpsaimtrainer-win64-shipping.exe] => (Enable) C:program information (x86)steamsteamappscommonfpsaimtrainerfpsaimtrainerbinarieswin64fpsaimtrainer-win64-shipping.exe () [File not signed]
FirewallRules: [UDP Query User{C77F35D5-BBC0-4D48-8842-018E9BDF40EE}C:program files (x86)steamsteamappscommonfpsaimtrainerfpsaimtrainerbinarieswin64fpsaimtrainer-win64-shipping.exe] => (Enable) C:program information (x86)steamsteamappscommonfpsaimtrainerfpsaimtrainerbinarieswin64fpsaimtrainer-win64-shipping.exe () [File not signed]
FirewallRules: [TCP Query User{4642FE5D-0F22-48C2-ADD9-F0BC9705321D}C:usersrobertappdatalocalmicrosoftteamscurrentteams.exe] => (Enable) C:usersrobertappdatalocalmicrosoftteamscurrentteams.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [UDP Query User{3F5DC758-2993-46C9-BCE7-015CBEF2D2B7}C:usersrobertappdatalocalmicrosoftteamscurrentteams.exe] => (Enable) C:usersrobertappdatalocalmicrosoftteamscurrentteams.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [TCP Query User{51101A88-ECCA-4C5A-AB75-6F9481078D22}C:program filesandroidandroid studiobinstudio64.exe] => (Enable) C:program filesandroidandroid studiobinstudio64.exe (Google LLC -> JetBrains s.r.o.)
FirewallRules: [UDP Query User{996F8EAA-2B33-4157-9E03-2ACF6887B9FF}C:program filesandroidandroid studiobinstudio64.exe] => (Enable) C:program filesandroidandroid studiobinstudio64.exe (Google LLC -> JetBrains s.r.o.)
FirewallRules: [{29EF0014-427A-42E0-85DF-5231C19B9677}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedLauncherAPBLauncher.exe (Little Orbit LLC -> K2 Community, Inc.)
FirewallRules: [{9781C5EA-A193-42B2-B67D-BEA6E105A9C8}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedLauncherAPBLauncher.exe (Little Orbit LLC -> K2 Community, Inc.)
FirewallRules: [{7D903E78-7E83-4D12-85CD-F1B2143419AA}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedBinariesAPB.exe (Little Orbit LLC -> Little Orbit LLC)
FirewallRules: [{47590FB7-CBDA-46D5-A8E4-3F03557F2B61}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedBinariesAPB.exe (Little Orbit LLC -> Little Orbit LLC)
FirewallRules: [{CAF40586-BE37-406F-ACD7-6D5DD2D05E34}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedBinariesAPB_EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6CAF9CC4-2A0C-4911-AE6F-275139868796}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedBinariesAPB_EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{385851C6-AC8A-4CA0-9D1C-758868F06AE1}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedBinariesVivoxVoiceService.exe (Little Orbit LLC -> Vivox Inc.)
FirewallRules: [{EC260B98-FE60-494D-AA08-C16DC6FE4CE9}] => (Enable) C:Program Information (x86)SteamsteamappscommonAPB ReloadedBinariesVivoxVoiceService.exe (Little Orbit LLC -> Vivox Inc.)
FirewallRules: [{8A00CD7A-2962-43C7-8ECC-BFBF76C4A2F0}] => (Enable) C:UsersRobertAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B59F59C0-ACD5-44A4-BF78-B86FE4168649}] => (Enable) C:Program Information (x86)SteamsteamappscommonDARK SOULS IIIGameDarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Leisure Inc.)
FirewallRules: [{BFDE2A88-1EAD-46B3-A392-AEDA931D869C}] => (Enable) C:Program Information (x86)SteamsteamappscommonDARK SOULS IIIGameDarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Leisure Inc.)
FirewallRules: [TCP Query User{CC042639-952E-44FD-8FF2-573F6A379538}C:xamppapachebinhttpd.exe] => (Enable) C:xamppapachebinhttpd.exe => No File
FirewallRules: [UDP Query User{FDEBB73F-528E-4FCA-B90B-627C539BA75A}C:xamppapachebinhttpd.exe] => (Enable) C:xamppapachebinhttpd.exe => No File
FirewallRules: [{9A111B21-F175-41AD-9B91-30DD5DAD4224}] => (Enable) C:Program FilesiTunesiTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C969DBBE-E60F-4F57-AD73-EBCB6CEF3F44}] => (Enable) C:Program Information (x86)SteamsteamappscommonRustRust.exe (Facepunch Studios Ltd -> Epic Video games, Inc)
FirewallRules: [{3200C643-305F-4FF1-8DBE-26E45D85DDE5}] => (Enable) C:Program Information (x86)SteamsteamappscommonRustRust.exe (Facepunch Studios Ltd -> Epic Video games, Inc)
FirewallRules: [TCP Query User{40392546-1AF6-4683-8798-6D3A63BB3706}C:program filesmozilla firefoxfirefox.exe] => (Enable) C:program filesmozilla firefoxfirefox.exe (Mozilla Company -> Mozilla Company)
FirewallRules: [UDP Query User{553255F9-A92E-48B3-897F-3F589822DE74}C:program filesmozilla firefoxfirefox.exe] => (Enable) C:program filesmozilla firefoxfirefox.exe (Mozilla Company -> Mozilla Company)
FirewallRules: [TCP Query User{E103B454-6B60-4073-94D5-A6BFBEB639BE}C:program filesnodejsnode.exe] => (Enable) C:program filesnodejsnode.exe (Node.js Basis -> Node.js)
FirewallRules: [UDP Query User{831FD9B5-4A80-4E20-BDE1-26FA66F68893}C:program filesnodejsnode.exe] => (Enable) C:program filesnodejsnode.exe (Node.js Basis -> Node.js)
FirewallRules: [TCP Query User{13BB0F57-86C9-4B11-A469-1987FB022FA1}C:program fileslghublghub_agent.exe] => (Enable) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{DAB35260-651E-4DA4-A35C-D387A6A379B4}C:program fileslghublghub_agent.exe] => (Enable) C:program fileslghublghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{AC9FD907-DCEB-4A78-8194-3D55090F1D33}C:usersrobertappdatalocalprogramsmicrosoft vs codecode.exe] => (Enable) C:usersrobertappdatalocalprogramsmicrosoft vs codecode.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [UDP Query User{EB0EED63-E0ED-401C-B07D-60C1A1B96604}C:usersrobertappdatalocalprogramsmicrosoft vs codecode.exe] => (Enable) C:usersrobertappdatalocalprogramsmicrosoft vs codecode.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [TCP Query User{8923B063-20B8-48D5-A3C0-71DED4A7CF46}C:program files (x86)steamsteamappscommonnewznewzlauncher.exe.new.exe] => (Enable) C:program information (x86)steamsteamappscommonnewznewzlauncher.exe (Fredaikis AB -> )
FirewallRules: [UDP Query User{239D48D7-3AD0-4BCE-9F18-47F8F59B2156}C:program files (x86)steamsteamappscommonnewznewzlauncher.exe.new.exe] => (Enable) C:program information (x86)steamsteamappscommonnewznewzlauncher.exe (Fredaikis AB -> )
FirewallRules: [TCP Query User{B6507464-A230-4955-8E73-DC2DE5B870C0}C:program files (x86)steamsteamappscommonnewzinfestation.exe] => (Enable) C:program information (x86)steamsteamappscommonnewzinfestation.exe (Fredaikis AB -> )
FirewallRules: [UDP Query User{B45E75B0-BE18-4FD8-83F6-BD2A9D3884BE}C:program files (x86)steamsteamappscommonnewzinfestation.exe] => (Enable) C:program information (x86)steamsteamappscommonnewzinfestation.exe (Fredaikis AB -> )
FirewallRules: [{A8BF4FD9-CBAC-401A-B6C5-5F4E75D8D280}] => (Enable) C:Program Information (x86)VMwareVMware Playervmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{0C55C5BA-FBF6-4C3B-BD67-BAC23A42C126}] => (Enable) C:Program Information (x86)VMwareVMware Playervmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [TCP Query User{3668E1C6-1595-4A71-8633-AC4DB56586B7}C:xampp2020apachebinhttpd.exe] => (Enable) C:xampp2020apachebinhttpd.exe (Apache Software program Basis) [File not signed]
FirewallRules: [UDP Query User{15B29AE8-9E16-463B-8A80-A4CE4D4B68BC}C:xampp2020apachebinhttpd.exe] => (Enable) C:xampp2020apachebinhttpd.exe (Apache Software program Basis) [File not signed]
FirewallRules: [{1DABD09F-9362-4916-AC10-F4A070EAF238}] => (Enable) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{B3CB93B2-0EAE-4E69-8FFE-42A7208A32C8}] => (Enable) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{A4C7A137-22EA-4D3E-BAEC-99CA81B68CF1}] => (Enable) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{63AEF8EC-DFCE-4F99-8B9B-3073367B7A24}] => (Enable) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Company -> NVIDIA Company)
FirewallRules: [{3BC9537D-CD43-4AD5-BB13-58448D7518D3}] => (Enable) C:Program Information (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{09EDCA43-EE9A-4DB4-B7FD-F7FF673DFA1C}] => (Enable) C:Program Information (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6CF30465-959E-4AEE-A9D7-2D5A473F98FA}] => (Enable) C:Program Information (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9A26F165-3024-4D38-973B-5F0FD98E4722}] => (Enable) C:Program Information (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DCDDA1FA-6EB3-4E92-9FA7-7DBC9DEED4FF}] => (Enable) C:Program FilesBlueStacksHD-Participant.exe (BlueStack Methods, Inc. -> BlueStack Methods, Inc.)
FirewallRules: [TCP Query User{937A6AA0-FAB2-47D6-9133-584661DCB119}C:xampp2020mysqlbinmysqld.exe] => (Enable) C:xampp2020mysqlbinmysqld.exe (MariaDB Company Ab -> )
FirewallRules: [UDP Query User{2A925283-24FE-434B-AAD7-98901753D5BC}C:xampp2020mysqlbinmysqld.exe] => (Enable) C:xampp2020mysqlbinmysqld.exe (MariaDB Company Ab -> )
FirewallRules: [{DCA58851-C20D-412C-B925-D34E72C5D995}] => (Enable) C:Program Information (x86)SteamsteamappscommonBrawlhallaBrawlhalla.exe () [File not signed]
FirewallRules: [{F692C8B0-4EEC-4E94-AF76-DFB41CC11D8A}] => (Enable) C:Program Information (x86)SteamsteamappscommonBrawlhallaBrawlhalla.exe () [File not signed]
FirewallRules: [{B775FFAF-7624-4F40-B436-DE27F25467B4}] => (Enable) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)
FirewallRules: [{E203CF56-0B77-4FCF-8500-92979DEF8A9E}] => (Enable) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)
FirewallRules: [{1ED2A45D-5B49-41A5-9ED6-DDE7FFB720A0}] => (Enable) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)
FirewallRules: [{F3385A2B-F4DA-491B-865F-F55299EE0E43}] => (Enable) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software program Sarl -> Skype Applied sciences S.A.)
FirewallRules: [TCP Query User{C9D8FC0E-C79C-4149-BFFF-4E6951B8F37D}C:program files (x86)world of warcraft_retail_utilswowvoiceproxy.exe] => (Block) C:program information (x86)world of warcraft_retail_utilswowvoiceproxy.exe (Blizzard Leisure, Inc. -> Blizzard Leisure)
FirewallRules: [UDP Query User{A4A727D6-F385-45AA-AC1F-A61022405EA1}C:program files (x86)world of warcraft_retail_utilswowvoiceproxy.exe] => (Block) C:program information (x86)world of warcraft_retail_utilswowvoiceproxy.exe (Blizzard Leisure, Inc. -> Blizzard Leisure)
FirewallRules: [TCP Query User{C404028A-9F33-40A0-A82A-E99C0F38A457}C:program files (x86)videolanvlcvlc.exe] => (Enable) C:program information (x86)videolanvlcvlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{67CDE5B1-0ACB-4262-B342-18AD3E224FB9}C:program files (x86)videolanvlcvlc.exe] => (Enable) C:program information (x86)videolanvlcvlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{4FAEACA1-E743-4C2A-B54E-09C3CB1C5E1D}] => (Enable) C:Program Information (x86)Microsoft OfficerootOffice16outlook.exe (Microsoft Company -> Microsoft Company)
FirewallRules: [{7CEFBE14-8686-4749-A596-204AF8467D3B}] => (Enable) C:Program Information (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)
==================== Restore Factors =========================
30-11-2020 09:35:56 Scheduled Checkpoint
09-12-2020 19:04:25 Scheduled Checkpoint
==================== Defective System Supervisor Units ============
==================== Occasion log errors: ========================
Software errors:
==================
Error: (12/11/2020 09:05:07 AM) (Supply: Software program Safety Platform Service) (EventID: 8198) (Consumer: )
Description: License Activation (slui.exe) failed with the next error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Motion=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Set off=UserLogon;SessionId=1
Error: (12/11/2020 09:05:03 AM) (Supply: Software program Safety Platform Service) (EventID: 8198) (Consumer: )
Description: License Activation (slui.exe) failed with the next error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Motion=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Set off=NetworkAvailable
Error: (12/11/2020 09:04:36 AM) (Supply: Software program Safety Platform Service) (EventID: 8198) (Consumer: )
Description: License Activation (slui.exe) failed with the next error code:
hr=0x8007139F
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Motion=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Set off=NetworkAvailable
Error: (12/11/2020 12:01:15 AM) (Supply: VSS) (EventID: 13) (Consumer: )
Description: Quantity Shadow Copy Service data: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and identify CEventSystem can’t be began. [0x8007045b, A system shutdown is in progress.
]
Error: (12/11/2020 12:01:15 AM) (Supply: VSS) (EventID: 8193) (Consumer: )
Description: Quantity Shadow Copy Service error: Surprising error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (12/11/2020 12:01:15 AM) (Supply: VSS) (EventID: 13) (Consumer: )
Description: Quantity Shadow Copy Service data: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and identify CEventSystem can’t be began. [0x8007045b, A system shutdown is in progress.
]
Error: (12/11/2020 12:01:15 AM) (Supply: VSS) (EventID: 8193) (Consumer: )
Description: Quantity Shadow Copy Service error: Surprising error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (12/11/2020 12:01:15 AM) (Supply: VSS) (EventID: 13) (Consumer: )
Description: Quantity Shadow Copy Service data: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and identify CEventSystem can’t be began. [0x8007045b, A system shutdown is in progress.
]
System errors:
=============
Error: (12/11/2020 02:05:00 PM) (Supply: Schannel) (EventID: 4114) (Consumer: DESKTOP-FU9E7IR)
Description: The certificates acquired from the distant server was issued by an untrusted certificates authority. Due to this, not one of the knowledge contained within the certificates might be validated. The TLS connection request has failed. The connected knowledge comprises the server certificates.
Error: (12/11/2020 02:04:22 PM) (Supply: Schannel) (EventID: 4114) (Consumer: DESKTOP-FU9E7IR)
Description: The certificates acquired from the distant server was issued by an untrusted certificates authority. Due to this, not one of the knowledge contained within the certificates might be validated. The TLS connection request has failed. The connected knowledge comprises the server certificates.
Error: (12/11/2020 02:03:59 PM) (Supply: Schannel) (EventID: 4114) (Consumer: DESKTOP-FU9E7IR)
Description: The certificates acquired from the distant server was issued by an untrusted certificates authority. Due to this, not one of the knowledge contained within the certificates might be validated. The TLS connection request has failed. The connected knowledge comprises the server certificates.
Error: (12/11/2020 02:00:42 PM) (Supply: Schannel) (EventID: 4114) (Consumer: DESKTOP-FU9E7IR)
Description: The certificates acquired from the distant server was issued by an untrusted certificates authority. Due to this, not one of the knowledge contained within the certificates might be validated. The TLS connection request has failed. The connected knowledge comprises the server certificates.
Error: (12/11/2020 02:00:33 PM) (Supply: Schannel) (EventID: 4114) (Consumer: DESKTOP-FU9E7IR)
Description: The certificates acquired from the distant server was issued by an untrusted certificates authority. Due to this, not one of the knowledge contained within the certificates might be validated. The TLS connection request has failed. The connected knowledge comprises the server certificates.
Error: (12/11/2020 02:00:32 PM) (Supply: Schannel) (EventID: 4114) (Consumer: DESKTOP-FU9E7IR)
Description: The certificates acquired from the distant server was issued by an untrusted certificates authority. Due to this, not one of the knowledge contained within the certificates might be validated. The TLS connection request has failed. The connected knowledge comprises the server certificates.
Error: (12/11/2020 01:28:25 PM) (Supply: DCOM) (EventID: 10010) (Consumer: DESKTOP-FU9E7IR)
Description: The server Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca didn’t register with DCOM inside the required timeout.
Error: (12/11/2020 09:34:41 AM) (Supply: DCOM) (EventID: 10010) (Consumer: DESKTOP-FU9E7IR)
Description: The server Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca didn’t register with DCOM inside the required timeout.
Home windows Defender:
===================================
Date: 2020-12-10 22:26:52.044
Description:
Home windows Defender Antivirus has detected malware or different doubtlessly undesirable software program.
For extra data please see the next:
Identify: Backdoor:Win32/Bladabindi!ml
ID: 2147748148
Severity: Extreme
Class: Backdoor
Path: file:_C:UsersRobertDesktopJWYou Wouldnt Perceive.rar
Detection Origin: Native machine
Detection Sort: FastPath
Detection Supply: Actual-Time Safety
Course of Identify: C:Program FilesWinRARWinRAR.exe
Safety intelligence Model: AV: 1.329.140.0, AS: 1.329.140.0, NIS: 1.329.140.0
Engine Model: AM: 1.1.17700.4, NIS: 1.1.17700.4
Date: 2020-12-10 22:26:45.580
Description:
Home windows Defender Antivirus has detected malware or different doubtlessly undesirable software program.
For extra data please see the next:
Identify: Backdoor:Win32/Bladabindi!ml
ID: 2147748148
Severity: Extreme
Class: Backdoor
Path: file:_C:UsersRobertDesktopJWYou Wouldnt Perceive.rar
Detection Origin: Native machine
Detection Sort: FastPath
Detection Supply: Actual-Time Safety
Course of Identify: C:Windowsexplorer.exe
Safety intelligence Model: AV: 1.329.140.0, AS: 1.329.140.0, NIS: 1.329.140.0
Engine Model: AM: 1.1.17700.4, NIS: 1.1.17700.4
Date: 2020-12-10 16:16:38.639
Description:
Home windows Defender Antivirus scan has been stopped earlier than completion.
Scan ID: {12DAD6C9-5A12-4894-A6E2-60E0EF6DACB6}
Scan Sort: Antimalware
Scan Parameters: Fast Scan
Date: 2020-12-09 14:35:07.687
Description:
Home windows Defender Antivirus scan has been stopped earlier than completion.
Scan ID: {75E579CB-BC7E-43A2-B823-2CD798FB91BD}
Scan Sort: Antimalware
Scan Parameters: Fast Scan
Date: 2020-12-08 12:05:34.846
Description:
Home windows Defender Antivirus scan has been stopped earlier than completion.
Scan ID: {68D5A8EE-0E6D-45DE-8CE6-1942028627A8}
Scan Sort: Antimalware
Scan Parameters: Fast Scan
Date: 2020-11-12 20:09:19.284
Description:
Home windows Defender Antivirus has encountered an error making an attempt to replace safety intelligence.
New safety intelligence Model:
Earlier safety intelligence Model: 1.327.797.0
Replace Supply: Microsoft Replace Server
Safety intelligence Sort: AntiVirus
Replace Sort: Full
Present Engine Model:
Earlier Engine Model: 1.1.17600.5
Error code: 0x8024401c
Error description: An surprising downside occurred whereas checking for updates. For data on putting in or troubleshooting updates, see Assist and Help.
CodeIntegrity:
===================================
Date: 2020-12-11 16:57:20.821
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Home windows signing stage necessities.
Date: 2020-12-11 16:57:20.819
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Home windows signing stage necessities.
Date: 2020-12-11 16:54:11.112
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Microsoft signing stage necessities.
Date: 2020-12-11 16:54:11.110
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Microsoft signing stage necessities.
Date: 2020-12-11 16:44:36.018
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Microsoft signing stage necessities.
Date: 2020-12-11 16:44:36.016
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Microsoft signing stage necessities.
Date: 2020-12-11 16:42:20.250
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Home windows signing stage necessities.
Date: 2020-12-11 16:42:20.248
Description:
Code Integrity decided {that a} course of (DeviceHarddiskVolume4WindowsSystem32svchost.exe) tried to load DeviceHarddiskVolume4Program FilesBonjourmdnsNSP.dll that didn’t meet the Home windows signing stage necessities.
==================== Reminiscence information ===========================
BIOS: American Megatrends Inc. 2201 05/27/2019
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX Z370-E GAMING
Processor: Intel® Core i7-8700K CPU @ 3.70GHz
Proportion of reminiscence in use: 73%
Whole bodily RAM: 16313.9 MB
Out there bodily RAM: 4328.13 MB
Whole Digital: 21433.9 MB
Out there Digital: 4602.3 MB
==================== Drives ================================
Drive c: () (Fastened) (Whole:465.16 GB) (Free:44.43 GB) NTFS
?Quantity{d09d9773-9a72-4fab-956c-7a1f9d262ddf} () (Fastened) (Whole:0.49 GB) (Free:0.06 GB) NTFS
?Quantity{7a82cad4-4157-4963-afe3-8e9983524017} () (Fastened) (Whole:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Desk ====================
==========================================================
Disk: 0 (Protecting MBR) (Measurement: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Finish of Addition.txt =======================
