Solved Facebook Account locked comprises what to do?

[Waves Rayneth]

Hey Sorry to trouble you Mal, but i umm think that my facebook account has been compromised so i've been locked out, i luckily have a back up to switch over to an unauthorised unidentified login through my email +Mobile Number from Nigeria +234 number happened in the afternoon

 

[Waves Rayneth]

To view this content we will need your consent to set third party cookies.
For more detailed information, see our cookies page.

Accept third party cookies

 

[veeg]

@Malnutrition

 

[Waves Rayneth]

theres alternative code try login, maybe that works

 

[Malnutrition]

Please download the FRST 32 bit or FRST 64bit version to suit your operating system. It is important FRST is downloaded to your desktop.

If you are unsure if your operating system is 32 or 64 Bit please go HERE.
Once downloaded right click the FRST desktop icon and select "Run as administrator" from the menu"

If you receive any security warnings, or the User Account Control warning opens at any time whilst using FRST you can safely allow FRST to proceed.
FRST will open with two dialogue boxes, accept the disclaimer.

1. Accept the default whitelist options,
2. If the additions.txt options box is not checked please select it.
3. Then select Scan

Frst will take a few minutes to scan your computer, and when finished will produce two log files on your desktop, FRST.txt, and Addition.txt. They will display immediately on the desktop, but can be reopened later as a notepad file.

Please Copy and Paste the contents of these logs in your next post for review by our Security Team

 

[Waves Rayneth]

Will this help work with accounts?

 

[Malnutrition]

This will ensure that your machine is clean of malware, then we go from there. This person had access to your account thru some means, and its possible your computer has malware. You post the logs. I remove anything if there is any malware then we go from there.

 

[Waves Rayneth]

Understood

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-10-2022
Ran by Administrator (administrator) on RAY (TOSHIBA SATELLITE L50-C) (25-10-2022 17:06:27)
Running from C:\Users\Administrator\Downloads
Loaded Profiles: Administrator
Platform: Microsoft Windows 10 Pro Version 1909 18363.1556 (X64) Language: English (United Kingdom)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\RealTimeProtector.exe
(C:\Program Files (x86)\iTop VPN\iTopVPN.exe ->) (Chengdu ShanHe Information Technology Co., Ltd. -> iTop Inc.) C:\Program Files (x86)\iTop VPN\iTopVPNMini.exe
(C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe ->) (IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe <2>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe
(Chengdu ShanHe Information Technology Co., Ltd. -> iTop Inc.) C:\Program Files (x86)\iTop VPN\iTopVPN.exe
(cmd.exe ->) (IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportHelper.exe <4>
(cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe <3>
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\65.0.4.0\crashpad_handler.exe <2>
(explorer.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
(explorer.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(explorer.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <80>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFCore.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Software Updater\Pub\BigUpgrade_ISU.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <5>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AntiTrackSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Privacy\MBVPNService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(svchost.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(svchost.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe <14>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.PeopleExperienceHost_cw5n1h2txyewy\PeopleExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlrmdr.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212192 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4125408 2022-09-07] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3873000 2016-06-02] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4573048 2022-10-18] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Genshin Impact_Launcher] => [X]
HKLM-x32\...\Run: [Genshin Impact_launcher__1_1] => [X]
HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6489016 2022-09-02] (IObit CO., LTD -> IObit)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11209952 2022-10-24] (Dropbox, Inc -> Dropbox, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Run: [AvastBrowserAutoLaunch_4A2E559005F23AAE93045A72F918398F] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-06] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Run: [AvastBrowserAutoLaunch_6A1C38F2D1ADFCC82F033168B6193DEE] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-06] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [5385280 2022-09-19] (IObit CO., LTD -> IObit)
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123150712 2022-10-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Policies\Explorer: [HideSCAPower] 0
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\MountPoints2: {1db68e2f-7e6c-11eb-9e7d-34de1abeb4ae} - "E:\CMADownloader.exe"
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\MountPoints2: {be2c1a0a-59b6-11ea-9d1d-54ab3a1d12ac} - "E:\CMADownloader.exe"
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\Run: [AvastBrowserAutoLaunch_8901C211194C0DFF277C9606C1448E31] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-06] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [5385280 2022-09-19] (IObit CO., LTD -> IObit)
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852232 2022-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [2697160 2022-03-16] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\Policies\Explorer: [HideSCAPower] 0
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-19] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-13] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\106.0.18743.103\Installer\chrmstp.exe [2022-10-21] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\99.1.36.116\Installer\chrmstp.exe [2022-03-18] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\101.0.4951.64\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7976.151\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2017-02-06] (McAfee, Inc. -> McAfee, Inc.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
BootExecute: autocheck autochk * SmartDefragBootTime.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\Users\Administrator\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\Users\Ollie\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01A33E5E-52E8-4E88-A131-51F305E9DBD0} - System32\Tasks\HPCustParticipation HP DeskJet 3700 series => C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.)
Task: {085D6BED-0862-4837-A1C8-2802642085E4} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-01] (Dropbox, Inc -> Dropbox, Inc.)
Task: {17BDEA98-98B3-4004-A26E-E81EF58A6843} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4738936 2022-10-18] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 1c54498a-9b95-401d-8a88-a92130faf899
Task: {1BBCDD0C-B7B5-4FE1-90A0-D06E6DE353D5} - System32\Tasks\iTopVPN_Update_adm => C:\Program Files (x86)\iTop VPN\atud.exe [3169344 2022-09-14] (Chengdu ShanHe Information Technology Co., Ltd. -> iTop Inc.)
Task: {1C1131C0-9C9F-4D79-BB52-4473082440ED} - System32\Tasks\Phoenix360\ActiveMessenger-SystemMechanic => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\ActiveBridge.exe [556816 2019-07-16] (iolo technologies, LLC -> iolo technologies, LLC)
Task: {1E7BE967-0F07-4D19-AF27-A4AF042DE7D5} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {20F54465-850A-4141-AA71-3A509F9BC14E} - System32\Tasks\dts_apo_service_task => C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_task.exe [14320 2015-05-27] (DTS, Inc. -> )
Task: {248B5E1C-953A-43E3-ACF0-9772571ED0F3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116112 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {27C17686-7BB0-4C6E-A5C7-F1F84E4EF785} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe [1498680 2020-11-10] (Adobe Inc. -> Adobe)
Task: {2B78E993-EEEA-41AC-B537-C73B078D49DA} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [7932936 2022-09-02] (IObit CO., LTD -> IObit)
Task: {30ACDD98-26F6-4B91-BD75-311BB2766125} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2479448 2020-08-23] (Overwolf Ltd -> Overwolf LTD)
Task: {329C0328-3B3A-4B00-A26C-C06864F69AF4} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {332AA174-3B62-4689-B63A-C7BB0CEA776A} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5983464 2022-08-29] (IObit CO., LTD -> IObit)
Task: {354ADC03-16E3-455C-BE94-F3DE7242D3F0} - System32\Tasks\CCleanerSkipUAC - Administrator => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {41D47332-3B29-4C83-B83C-D2F5D426DCE4} - System32\Tasks\Microsoft\Windows\UpdateAssistant\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV24:{} (No File)
Task: {4210A611-7096-467A-8D89-F22469F4CE3C} - System32\Tasks\SU_AutoUpdate => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4556296 2022-07-18] (IObit CO., LTD -> IObit)
Task: {4C5D06C1-611E-4C19-941B-1BF59AD791C2} - System32\Tasks\IMF_SkipUAC_adm => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6489016 2022-09-02] (IObit CO., LTD -> IObit)
Task: {4CD81EB0-A2C0-4E3A-85B7-754DA390BD67} - System32\Tasks\Kamo\KamoStart => C:\Program Files (x86)\Kamo\Kamo.exe [907488 2022-08-29] (Piriform Software Ltd -> Piriform)
Task: {4CFA467A-C4A3-45E6-8EBD-B63AAFB1271A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {51688ACE-6988-4D23-A726-828084C3E504} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {52357615-8081-4EB9-A48A-80476379D677} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-06] (Avast Software s.r.o. -> AVAST Software)
Task: {54BFAB24-2958-454A-8A6D-EB9B9C0BD198} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-01] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5977D671-B028-4623-9210-49C68E5B5A22} - System32\Tasks\iTopVPN_Scheduler_adm => C:\Program Files (x86)\iTop VPN\iTopVPN.exe [6716480 2022-09-27] (Chengdu ShanHe Information Technology Co., Ltd. -> iTop Inc.)
Task: {59872FB5-7AD2-4B9D-91A7-8E7C6899A4BE} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {59AAA470-69C9-42E3-A341-D6BB992F0F2C} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {5A2D7156-7AA0-465D-8D55-DFDA00306504} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {5C9283F5-7F2E-4176-B285-A07BA7D3AF22} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {5E4A2CA1-9999-4FF7-8D19-B9D8577FE389} - System32\Tasks\Driver Booster SkipUAC (Administrator) => C:\Program Files (x86)\IObit\Driver Booster\10.0.0\DriverBooster.exe [8935912 2022-10-13] (IObit CO., LTD -> IObit)
Task: {623EC637-15A8-464D-ACE1-7A28CF0208C2} - System32\Tasks\Microsoft\Windows\UpdateAssistant\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV24:{} /CalendarRun (No File)
Task: {62FEF9D3-5AE4-42B4-8C79-007573EFF2CE} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-3366790378-2559649480-2858292162-500 => C:\Users\Administrator\AppData\Local\Programs\Messenger\MessengerHelper.exe [1874680 2022-08-30] (Facebook, Inc. -> Facebook Inc.)
Task: {64A6D507-2417-46AD-AB66-A7D13D6A24B1} - System32\Tasks\Software Updater SkipUAC(Ollie) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4556296 2022-07-18] (IObit CO., LTD -> IObit) <==== ATTENTION
Task: {6510CE67-5614-44DE-BCEB-C5A4EFDD65C3} - System32\Tasks\{B1F4ED78-A189-4B21-B1D4-EF6DBABBF736} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Spiral Knights\uninstall.exe"
Task: {656F357C-C416-417D-8324-C9325F5EC8D9} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\10.0.0\AutoUpdate.exe [2516968 2022-10-13] (IObit CO., LTD -> IObit)
Task: {6D82F4A0-62D4-4C57-9E7C-840CD7364614} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-08-11] (Google Inc -> Google Inc.)
Task: {71978D5D-E56D-4DD5-B04F-125591477D4D} - System32\Tasks\Microsoft\Windows\UpdateAssistant\UpdateAssistantAllUsersRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV24:{} /AllUsersRun (No File)
Task: {7A81F6E6-B5A8-402A-ABD6-36934DD96346} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [6694224 2022-09-29] (Avast Software s.r.o. -> Avast Software)
Task: {807ADCFE-A48C-4FAF-BD02-D3F617F31B21} - System32\Tasks\SmartDefrag_AutoDefrag => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {810F01BB-723D-471B-ADD7-F4078F78722C} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\10.0.0\Scheduler.exe [157784 2022-09-07] (IObit CO., LTD -> IObit)
Task: {851805FF-DB79-4514-AC18-848A6ED8C99E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4946144 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
Task: {8583F6EA-6C5E-4489-A94F-D48FED90CD12} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [139448 2016-06-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A37E0D9-DCAA-48C4-BC2B-C8B6A7390748} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4737760 2022-09-07] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid cb96e9a4-ca5a-4459-ab43-ec71e143aabd
Task: {8F0F71F6-4AC8-4A0F-B4CF-DE5C9B13D79B} - System32\Tasks\iTop Screen Recorder SkipUAC (Administrator) => C:\Program Files\iTop Screen Recorder\IScrRec.exe [15146752 2022-09-26] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {90DC7D56-ED1C-48A5-B0EC-5BA988F6050D} - System32\Tasks\BTSchedulerTask => C:\Program Files (x86)\TOSHIBA\Toshiba Bluetooth Device Profile Utility\TosBt_NotificationScheduler.exe [135504 2015-07-08] (TOSHIBA CORPORATION -> Toshiba Corporation)
Task: {94E3D62C-D125-4E45-8A45-20180FE0EB30} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [475720 2015-11-17] (Toshiba Europe Gmbh -> Toshiba Europe GmbH)
Task: {961AA991-88D7-489A-BBDF-C3CF2D9E5E43} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {97D68BEF-8380-4BA9-8A1C-E632E87ED9DC} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4690136 2022-10-11] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\SecureLine VPN\log" --guid dbed000c-524a-4991-bbf4-01bbc69662b3
Task: {99DCAF5B-944F-4A1D-84BB-6613F501AE99} - System32\Tasks\Software Updater SkipUAC(Administrator) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4556296 2022-07-18] (IObit CO., LTD -> IObit) <==== ATTENTION
Task: {9D1E6164-D780-4ACC-89B6-617BDA0DDB46} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-08-11] (Google Inc -> Google Inc.)
Task: {A05A9893-53B7-4FD9-9265-4FF8DDE2CC00} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5857642-6AF1-4A71-AAFC-2B82E8444F4A} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [5427264 2022-10-08] (IObit CO., LTD -> IObit)
Task: {A8EEB092-4355-413A-92E5-F8552302EEE6} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [666552 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8FB9293-475A-426C-B4E1-B8726B3F94D1} - System32\Tasks\Software Updater Scheduler => C:\Program Files (x86)\IObit\Software Updater\SUInit.exe [1803784 2022-07-12] (IObit CO., LTD -> IObit) <==== ATTENTION
Task: {ADC23E19-1ACE-4855-8A93-07EA8E954100} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files\iTop Screen Recorder\AutoUpdate.exe [3179776 2022-09-08] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {B23E12DC-EB67-4411-BE20-12EA42FDEC77} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-06] (Avast Software s.r.o. -> AVAST Software)
Task: {B7B61B26-B6AF-4B9E-9768-5D511BDB98BA} - System32\Tasks\Phoenix360\ActiveReporter-SystemMechanic => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\ActiveBridge.exe [556816 2019-07-16] (iolo technologies, LLC -> iolo technologies, LLC)
Task: {B864F3C3-8B12-40C4-A83F-71C50C302891} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3995016 2022-08-16] (Easeware Technology Limited -> Easeware)
Task: {BE784089-71E6-40FA-BEA1-65B051C62A0C} - System32\Tasks\Microsoft\Windows\UpdateAssistant\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV24:{} /WakeupRun (No File)
Task: {C2944113-7633-4966-9704-33C8226F8A77} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files\iTop Screen Recorder\iScrInit.exe [1017088 2022-09-08] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {C2D307A0-F24B-4D9E-BBFB-1851BECFE80A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {C3226FEF-3AC2-43D4-BEBF-9E6CB9E00B2C} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1213144 2022-10-11] (Avast Software s.r.o. -> AVAST Software)
Task: {C3E5606A-24DD-4D8A-9B76-386EA7A0E62A} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "a59faefb-8495-4d2e-ab3f-bfc0cefd475a" --version "6.04.10044" --silent
Task: {C5ECD685-3A22-42B5-A69E-E48CB640CBDF} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {C818E3BA-2715-4740-97DE-504608D23EEC} - System32\Tasks\WRU => C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe [93184 2015-12-04] () [File not signed]
Task: {CCFA4833-E126-40A2-B837-E4169F0F96CF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {D2FD58A3-7B7B-4495-A3D8-28B35B0DDDA1} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {D3E08DB0-143B-48B9-BCCE-16FF0003A9CB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {D46F7D99-82C3-410C-A59E-B5F45DFED613} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {D5D5EB8C-85DD-4ADD-9255-0CB17AF7FC96} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [6803168 2022-09-06] (Avast Software s.r.o. -> Avast Software)
Task: {D63A1724-3618-4A19-910C-C172252FF82E} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {D7043B6F-642B-4558-A425-08F437785849} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2021-01-01] (Adobe Inc. -> Adobe)
Task: {DC7BD1E2-79FB-4AD0-8DA7-1A1110B5392C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-01-01] (Adobe Inc. -> Adobe)
Task: {DCC5461E-7275-4C04-AD6B-7790A251E2B1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116112 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD8CF1C8-8A58-4B35-AB6B-019E0B249601} - System32\Tasks\ASC_SkipUac_adm => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10838592 2022-10-10] (IObit CO., LTD -> IObit)
Task: {DEEC0442-4437-404F-B265-36CFEFA38529} - System32\Tasks\iolo System Checkup => C:\Program Files (x86)\Phoenix360\SCU\SCU.exe [9667888 2019-01-22] (iolo technologies, LLC -> iolo technologies, LLC)
Task: {DFC776A1-4CF7-46A6-B528-D1DC0306BBF4} - System32\Tasks\Phoenix360\ActiveSync-SystemMechanic => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\activebridge.exe [556816 2019-07-16] (iolo technologies, LLC -> iolo technologies, LLC)
Task: {E5C15DDF-9061-4FDC-BF91-081C3B5E86F7} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [6803168 2022-10-17] (Avast Software s.r.o. -> Avast Software)
Task: {E63B0437-20A1-4E1A-BD8C-2AB73B48DDFA} - System32\Tasks\{20691AEE-24FD-4069-AE37-B8885A21749A} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Black-Lab\uninstall.exe" -c shuz -f "C:\Program Files (x86)\Common Files\Black-Lab\uninstall.dat" -a uninstallme 5290931F-8071-40B6-BA60-429CD68F1F0B DeviceId=db68e72b-3812-9819-14f4-48202c1f8944 BarcodeId=51198003 ChannelId=3 DistributerName=APSFWakeNet
Task: {E794EA4B-E05A-499C-A74B-DFE65D7E6137} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3601128 2022-07-07] (IObit CO., LTD -> IObit)
Task: {EA4B8801-2586-45EF-A28C-487853CCE769} - System32\Tasks\iTopVPN_SkipUAC_adm => C:\Program Files (x86)\iTop VPN\iTopVPN.exe [6716480 2022-09-27] (Chengdu ShanHe Information Technology Co., Ltd. -> iTop Inc.)
Task: {EF1FED6A-8F8B-414D-81E5-69468E05FB0E} - System32\Tasks\SmartDefrag_Defrag => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5983464 2022-08-29] (IObit CO., LTD -> IObit)
Task: {F775BB0D-26EA-4973-BEDC-700CF042175A} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {F77C5366-3C6C-48C8-A4A4-B5D572859BBC} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [699272 2015-07-30] (TOSHIBA CORPORATION -> TOSHIBA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Proxy is enabled.
ProxyServer: [.DEFAULT] => 127.0.0.1:1
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{407c9b73-3ce0-413b-b03d-fae98e671fce}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6a659531-ecc9-4dbb-befd-aad636b0885d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c639cb91-4de8-498f-9991-2d562fedc985}: [DhcpNameServer] 151.236.14.64 194.156.228.111
Tcpip\..\Interfaces\{cd180246-361e-435b-be61-1843cd6af530}: [NameServer] 208.67.222.222,208.67.220.220
Tcpip\..\Interfaces\{cd180246-361e-435b-be61-1843cd6af530}: [DhcpNameServer] 192.168.1.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-25]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge StartupUrls: Default -> "hxxps://www.facebook.com/","hxxps://www.instagram.com/","hxxps://www.facebook.com/messenger_media?thread_id=100053921478614&attachment_id=454267996576812&message_id=mid.%24cAAAADLzkvM-KLhtjt2D_NXwUQnur","chrome-extension://kajikgogckeajjplomldcempamhidmcc/false","edge://history/all","edge://history/all","hxxps://www.facebook.com/groups/2454207508135615/?hoisted_section_header_type=recently_seen&multi_permalinks=3309597945929896","hxxps://www.facebook.com/groups/3016860775307641/media"
Edge Extension: (Pinterest Save button) - C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkgoflemacdadndiohhdnphcmdhacabg [2022-10-12]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-10-11]
Edge Extension: (IBM Security Rapport) - C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kajikgogckeajjplomldcempamhidmcc [2022-02-27]
Edge Extension: (CosmoVPN - Free VPN for your browser) - C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kccjhjbenifblgckikkelnlgccjgkgoa [2022-10-12]
Edge Extension: (Pinterest video downloader) - C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pjcecmgoddiomfipfobbkfnjnnlnhldj [2022-10-12]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Edge HKLM-x32\...\Edge\Extension: [kajikgogckeajjplomldcempamhidmcc]

FireFox:
========
FF DefaultProfile: j31l2p9t.default
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\cui9d65l.default-release-1 [2022-10-25]
FF user.js: detected! => C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\cui9d65l.default-release-1\user.js [2022-08-23]
FF Extension: (IBM Security Rapport) - C:\Users\Administrator\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2021-07-08] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\cui9d65l.default-release-1\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2022-08-13]
FF Extension: (IBM Security Rapport) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\cui9d65l.default-release-1\Extensions\rapportext@trusteer.com.xpi [2022-02-13] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\j31l2p9t.default [2021-09-12]
FF user.js: detected! => C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\j31l2p9t.default\user.js [2022-08-23]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\j31l2p9t.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2022-08-13]
FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\tmvfc11r.default-release-1637339685459 [2022-10-25]
FF user.js: detected! => C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\tmvfc11r.default-release-1637339685459\user.js [2022-08-23]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\tmvfc11r.default-release-1637339685459\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2022-08-13]
FF Extension: (IBM Security Rapport) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\tmvfc11r.default-release-1637339685459\Extensions\rapportext@trusteer.com.xpi [2021-11-20] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (Purple and Gold) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\tmvfc11r.default-release-1637339685459\Extensions\{84de84a5-1a8c-40fe-b138-1aa8a529ca46}.xpi [2021-11-19]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2021-01-01] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2021-01-01] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ogplanet.com/npOGPPlugin -> C:\WINDOWS\system32\npOGPPlugin.dll [No File]
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]
FF Plugin HKU\S-1-5-21-3366790378-2559649480-2858292162-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Ollie\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies SF -> Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2022-10-11]
CHR Extension: (Google Translate) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aieoplapobidheellikiicjfpamacpfd [2022-03-18]
CHR Extension: (IBM Security Rapport) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2022-03-04]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-09-15]
CHR Extension: (Google Docs Offline) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-15]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-08-09]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-09]
CHR Extension: (McAfee® Web Boost) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\klekeajafkkpokaofllcadenjdckhinm [2022-03-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-12]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2022-08-30]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]
CHR HKU\.DEFAULT\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mhmphnocemakkjdampibehejoaleebpo]
CHR HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pmhfbelbjofadmfjpggaemekecfgpalg]
CHR HKU\S-1-5-21-3366790378-2559649480-2858292162-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [klekeajafkkpokaofllcadenjdckhinm]

Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-10-25]
BRA Notifications: Default -> hxxps://app.ninchanese.com; hxxps://www.facebook.com
BRA Session Restore: Default -> is enabled.
BRA Extension: (Google Translate) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-19]
BRA Extension: (IBM Security Rapport) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2022-02-15]
BRA Extension: (McAfee® WebAdvisor) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-09-12]
BRA Extension: (Avast Online Security & Privacy) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-10-07]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-10-24]
BRA Extension: (McAfee® Web Boost) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\klekeajafkkpokaofllcadenjdckhinm [2021-07-29]
BRA Profile: C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Guest Profile [2021-12-25]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-10-25]
BRA Extension: (Brave NTP background images) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-13]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-10-07]
BRA Extension: (Brave Ads Resources) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdjnpippjnphaeahihhpafnneefcnnfh [2021-09-24]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-10-25]
BRA Extension: (Brave Ads Resources) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\cmdlemldhabgmejfognbhdejendfeikd [2022-10-24]
BRA Extension: (Brave Ads Resources) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\emgmepnebbddgnkhfmhdhmjifkglkamo [2021-09-24]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-10-01]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\mjpbonbjgpinifgnneajcbigekbpfige [2022-10-25]
BRA Extension: (Brave Ads Resources) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\ocilmpijebaopmdifcomolmpigakocmo [2022-10-24]
BRA Extension: (Crypto Wallets) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2022-03-11]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-10-21]
StartMenuInternet: Brave - C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-01-01] (Adobe Inc. -> Adobe)
R2 AdvancedSystemCareService16; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1879616 2022-10-08] (IObit CO., LTD -> IObit)
S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-07-05] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8513552 2022-10-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [592608 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2018528 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [592096 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R2 AvastAntiTrackSvc; C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe [1747712 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\106.0.18743.103\elevation_service.exe [2047168 2022-10-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software)
S3 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-01-22] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
S2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [15464160 2022-09-07] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477344 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-01] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-01-01] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2022-10-24] (Dropbox, Inc -> Dropbox, Inc.)
S2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [7702904 2022-10-18] (Avast Software s.r.o. -> AVAST Software)
S2 DSDFunctionKeyCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_5b653f8f5261ead1\DSDFunctionKeyCtlService.exe [640096 2022-03-02] (Dynabook Inc. -> Dynabook Inc.)
S3 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19960 2015-05-27] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-07-15] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [152576 2022-07-13] (SurfRight B.V. -> SurfRight B.V.)
R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2485640 2022-05-26] (IObit CO., LTD -> IObit)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18152 2016-08-12] (Intel(R) Software Asset Manager -> Intel Corporation)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2022-08-23] (IObit CO., LTD -> IObit)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
S3 KamoSvc; C:\Program Files (x86)\Kamo\KamoSvc.exe [6054624 2022-08-29] (Piriform Software Ltd -> Piriform Software Ltd)
R2 LDrvSvc; C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll [1812056 2019-09-16] (OSTOTO CO. LIMITED -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8842536 2022-10-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MBVpnService; C:\Program Files\Malwarebytes\Privacy\MBVpnService.exe [3276912 2021-04-16] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Privacy\MBVpnTunnelService.exe [2239304 2021-04-16] (Malwarebytes Inc -> Malwarebytes)
S3 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [973072 2021-06-11] (McAfee, LLC -> McAfee, LLC)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [21753376 2021-04-24] (Mail.Ru LLC -> LLC Mail.Ru)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2479448 2020-08-23] (Overwolf Ltd -> Overwolf LTD)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3008896 2020-08-18] (IBM -> IBM Corp.)
S2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [9332952 2022-10-11] (Avast Software s.r.o. -> AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6517736 2021-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Surfshark Service; C:\Program Files (x86)\Surfshark\Surfshark.Service.exe [3238984 2022-08-18] (Surfshark B.V. -> Surfshark)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [120392 2015-11-17] (Toshiba Europe Gmbh -> Toshiba Europe GmbH)
S3 TOSRMService; C:\Program Files (x86)\TOSHIBA\TOSHIBA System Driver\RMService.exe [326960 2015-06-24] (TOSHIBA CORPORATION -> TOSHIBA)
S3 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [996824 2017-02-06] (McAfee, Inc. -> McAfee, Inc.)
S3 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2017-02-06] (McAfee, Inc. -> McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.Exe [86864 2017-02-06] (McAfee, Inc. -> McAfee, Inc.)
S2 TSDSettingService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_5b653f8f5261ead1\dynabookSystemService.exe [44792376 2022-03-02] (Dynabook Inc. -> Dynabook Inc.)
S2 TSDTabletControlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_5b653f8f5261ead1\TOSTABSYSSVC.exe [313488 2022-03-02] (Dynabook Inc. -> Dynabook Inc.)
S2 TSDWirelessLEDCtlService; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_5b653f8f5261ead1\RMService.exe [463440 2022-03-02] (Dynabook Inc. -> Dynabook Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ZoomCptService; "C:\Program Files (x86)\Common Files\Zoom\Support\CptService.exe" -user_path "C:\Users\Administrator\AppData\Roaming\Zoom"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [1868848 2022-06-10] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM)
R3 AscFileControl; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileControl.sys [40920 2022-06-18] (IObit CO., LTD -> IObit)
R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [47904 2022-06-18] (IObit CO., LTD -> IObit)
R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [46552 2022-06-18] (IObit CO., LTD -> IObit)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238128 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258496 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105920 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48488 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276496 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [558536 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114488 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90000 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862960 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671712 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221976 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327904 2022-09-29] (Avast Software s.r.o. -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [65944 2022-08-02] (Avast Software s.r.o. -> Avast Software)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
R3 BthL2caScoIfSrv; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Mediatek Inc. -> Ralink Corporation)
S3 cpuz145; no ImagePath
S3 cpuz148; no ImagePath
S3 cpuz149; no ImagePath
S3 cpuz150; no ImagePath
R3 cpuz154; C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [40976 2022-10-24] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [42000 2022-07-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 Imf8HpRegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [41848 2019-12-17] (IObit Information Technology -> IObit)
R1 IMFCameraProtect; C:\WINDOWS\system32\drivers\IMFCameraProtect.sys [42360 2019-07-30] (IObit Information Technology -> IObit)
R3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFDownProtect.sys [40920 2021-07-30] (IObit CO., LTD -> IObit)
R3 IMFEFSFileControl; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFEFSFileControl.sys [40824 2019-08-13] (IObit Information Technology -> IObit)
R3 IMFForceDelete123; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFForceDelete.sys [20008 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> IObit)
R3 ImfHpFileFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [45432 2019-12-17] (IObit Information Technology -> IObit)
R2 ImfPfFilter; C:\WINDOWS\system32\drivers\imfpffilter.sys [57840 2020-04-13] (IObit Information Technology -> IObit)
R3 ImfRealScanner; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfRealScanner.sys [53232 2021-10-21] (IObit CO., LTD -> IObit)
R3 ImfRegistryFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfRegistryFilter.sys [42360 2019-12-17] (IObit Information Technology -> IObit)
S3 imfsbDrv; C:\Program Files (x86)\IObit\IObit Malware Fighter\Sandbox\imfsbDrv.sys [222168 2021-11-03] (IObit CO., LTD -> IObit)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R3 iobit_monitor_server2021; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [33256 2022-06-18] (IObit CO., LTD -> IObit)
S3 iqvw64e.sys; no ImagePath
R4 itvwd; C:\Program Files (x86)\iTop VPN\itvwd64.sys [73288 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> iTop Inc.)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [43896 2020-07-31] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2020-07-31] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [51128 2020-07-31] (IObit Information Technology -> IObit)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc -> Logitech Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 mbtun; C:\WINDOWS\system32\DRIVERS\mbtun.sys [86680 2021-04-16] (Malwarebytes Inc -> Malwarebytes)
S3 MpKsl831d853c; no ImagePath
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [20986200 2021-04-24] (Mail.Ru LLC -> LLC Mail.Ru)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [116296 2022-08-02] (Piriform Software Ltd -> Windows (R) Win 7 DDK provider)
R3 ObCallbackProcess; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ObCallbackProcess.sys [53608 2021-05-12] (IObit CO., LTD -> IObit)
R3 QIOMem; C:\WINDOWS\System32\drivers\QIOMem.sys [14000 2015-05-05] (WDKTestCert 1,130752733198717037 -> TOSHIBA)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [450240 2020-08-18] (IBM -> IBM Corp.)
R1 RapportCerberus_2004080; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_2004080.sys [1460480 2021-01-10] (IBM -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [546056 2020-08-18] (IBM -> IBM Corp.)
R0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [398984 2020-08-18] (IBM -> IBM Corp.)
R0 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [448904 2020-08-18] (IBM -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [564928 2020-08-18] (IBM -> IBM Corp.)
R3 RSP2STOR; C:\WINDOWS\System32\drivers\RtsP2Stor.sys [347224 2021-02-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
S3 SurfsharkSplitTunnelDriver; C:\Program Files (x86)\Surfshark\Resources\x64\SurfsharkSplitTunnelCalloutDriver.sys [39648 2022-02-01] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2019-09-06] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
R3 tapsurfshark; C:\WINDOWS\System32\drivers\tapsurfshark.sys [38728 2019-05-22] (WDKTestCert Lenovo,131775874531219913 -> The OpenVPN Project)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [47816 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
R3 tosrfec; C:\WINDOWS\System32\drivers\tosrfec.sys [37544 2022-03-02] (Dynabook Inc. -> Dynabook Inc.)
R1 TosSrvCtlDrv; C:\WINDOWS\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_5b653f8f5261ead1\TosSrvCtlDrv.sys [25776 2022-03-02] (Dynabook Inc. -> Dynabook Inc.)
R3 Trufos; C:\WINDOWS\System32\DRIVERS\TRUFOS.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 TVALZ; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [46088 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
R0 TVALZ_O; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [46088 2019-04-30] (Dynabook Inc. -> Dynabook Inc.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-06] (Microsoft Windows -> Microsoft Corporation)
R3 wintunshark; C:\WINDOWS\system32\DRIVERS\wintunshark.sys [31096 2020-09-17] (WDKTestCert nikod,132409123292239223 -> Surfshark Ltd)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-08-12] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [36808 2017-02-19] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\Users\Ollie\Downloads\advanced-systemcare-pre.exe"
2022-10-25 17:06 - 2022-10-25 17:12 - 000072435 _____ C:\Users\Administrator\Downloads\FRST.txt
2022-10-25 17:04 - 2022-10-25 17:09 - 000000000 ____D C:\FRST
2022-10-25 16:58 - 2022-10-25 17:03 - 002373632 _____ (Farbar) C:\Users\Administrator\Downloads\FRST64.exe
2022-10-25 13:29 - 2022-10-25 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-10-25 13:08 - 2022-10-25 15:32 - 000002878 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-10-25 13:08 - 2022-10-25 15:32 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-10-25 00:11 - 2022-10-25 00:12 - 000000000 ___HD C:\$WINDOWS.~BT
2022-10-24 23:57 - 2022-10-24 23:57 - 000000000 ___HD C:\$WinREAgent
2022-10-24 23:16 - 2022-10-25 15:32 - 000002926 _____ C:\WINDOWS\system32\Tasks\iTopVPN_Update_adm
2022-10-24 23:16 - 2022-10-25 15:32 - 000002856 _____ C:\WINDOWS\system32\Tasks\iTopVPN_SkipUAC_adm
2022-10-24 23:16 - 2022-10-25 15:32 - 000002782 _____ C:\WINDOWS\system32\Tasks\iTopVPN_Scheduler_adm
2022-10-24 23:16 - 2022-10-24 23:16 - 000001109 _____ C:\Users\Public\Desktop\iTop VPN.lnk
2022-10-24 23:16 - 2022-10-24 23:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop VPN
2022-10-24 23:15 - 2022-10-25 15:46 - 000000000 ____D C:\Program Files (x86)\iTop VPN
2022-10-24 23:15 - 2022-10-24 23:18 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\iTop VPN
2022-10-24 16:17 - 2022-10-24 16:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2022-10-24 16:17 - 2022-10-24 16:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2022-10-24 16:17 - 2022-10-24 16:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2022-10-24 16:17 - 2022-10-24 16:17 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2022-10-23 22:19 - 2022-10-23 22:27 - 163253459 _____ C:\Users\Administrator\Downloads\Deep Cyberspace Protection Meditation_ An Energetic Clearing of Your Social Media Platforms.-720p.mp4.crdownload
2022-10-23 17:59 - 2022-10-23 18:00 - 008601448 _____ C:\Users\Administrator\Downloads\和樂器バンド 虹色蝶「中日歌詞」-360p.mp4
2022-10-23 17:54 - 2022-10-23 17:56 - 068672538 _____ C:\Users\Administrator\Downloads\MANTRA To Remove Negative Energy ( Buddhist mantra purifying karma )만트라 치유 카르마 -咒語治愈業力 Tinna Tinh-360p.mp4
2022-10-23 17:44 - 2022-10-23 17:45 - 010458378 _____ C:\Users\Administrator\Downloads\『虹色蝶々』中文字幕-360p.mp4
2022-10-21 23:22 - 2022-10-25 15:32 - 000002782 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Administrator)
2022-10-21 23:22 - 2022-10-25 15:32 - 000002588 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2022-10-21 23:22 - 2022-10-25 15:32 - 000002574 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2022-10-20 12:43 - 2022-10-20 12:43 - 000047600 ____N (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx.sys
2022-10-19 23:39 - 2022-10-19 23:40 - 000002382 _____ C:\Users\Public\Desktop\Driver Booster 10.lnk
2022-10-19 23:39 - 2022-10-19 23:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 10
2022-10-19 23:34 - 2022-10-19 23:35 - 029230776 _____ (IObit ) C:\Users\Administrator\Downloads\driver_booster_setup.exe
2022-10-17 16:49 - 2022-10-25 15:32 - 000002662 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor
2022-10-17 16:49 - 2022-10-25 15:32 - 000002548 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_adm
2022-10-17 16:48 - 2022-10-17 16:48 - 000001320 _____ C:\Users\Administrator\Desktop\Advanced SystemCare.lnk
2022-10-17 16:34 - 2022-10-17 16:35 - 051739872 _____ (Facebook, Inc.) C:\Users\Administrator\Downloads\Messenger.164.0.0.8.109.exe
2022-10-14 16:26 - 2022-10-14 16:26 - 000001977 _____ C:\Users\Administrator\Desktop\Zoom.lnk
2022-10-14 16:26 - 2022-10-14 16:26 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-10-14 15:01 - 2022-10-24 04:06 - 000004302 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2022-10-13 16:53 - 2022-10-25 15:33 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3366790378-2559649480-2858292162-500
2022-10-13 16:53 - 2022-10-13 16:53 - 000002425 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-10-13 16:05 - 2022-10-13 16:05 - 000025576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-10-11 18:47 - 2022-10-25 15:32 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-11 18:46 - 2022-10-11 18:46 - 000002097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-11 18:46 - 2022-10-11 18:46 - 000002085 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-10-11 14:51 - 2022-10-11 14:51 - 172916736 _____ C:\WINDOWS\system32\config\software.iobit
2022-10-11 14:51 - 2022-10-11 14:51 - 008732672 _____ C:\WINDOWS\system32\config\default.iobit
2022-10-11 14:51 - 2022-10-11 14:51 - 000118784 _____ C:\WINDOWS\system32\config\sam.iobit
2022-10-11 14:51 - 2022-10-11 14:51 - 000040960 _____ C:\WINDOWS\system32\config\security.iobit
2022-10-08 23:27 - 2022-10-08 23:30 - 014610335 _____ C:\Users\Administrator\Downloads\[VietSub - Kara] Vi Ái Tây Hành _ 为爱西行 - HITA-360p.mp4
2022-10-08 21:44 - 2022-10-08 21:46 - 011571012 _____ C:\Users\Administrator\Downloads\閑看波瀾生 by 河圖-720p.mp4
2022-10-08 15:06 - 2022-10-08 15:06 - 000001409 _____ C:\Users\Public\Desktop\Skype.lnk
2022-10-08 15:06 - 2022-10-08 15:06 - 000001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2022-10-08 15:06 - 2022-10-08 15:06 - 000001098 _____ C:\Users\Public\Desktop\Audacity.lnk
2022-10-07 21:20 - 2022-10-07 21:20 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-10-07 17:25 - 2022-08-20 20:21 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-10-05 14:20 - 2022-10-25 15:32 - 000002726 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder Update
2022-10-05 14:20 - 2022-10-05 14:20 - 000001119 _____ C:\Users\Public\Desktop\iTop Video Editor.lnk
2022-10-05 14:20 - 2022-10-05 14:20 - 000001048 _____ C:\Users\Public\Desktop\iTop Screen Recorder.lnk
2022-10-05 14:13 - 2022-10-05 14:15 - 096175624 _____ (iTop Inc. ) C:\Users\Administrator\Downloads\itop-screen-recorder-imf_bu-setup.exe
2022-09-30 18:30 - 2022-09-30 18:30 - 000000072 _____ C:\WINDOWS\system32\AdsInfoCls
2022-09-29 18:48 - 2022-09-29 18:50 - 026019704 _____ (iTop Inc. ) C:\Users\Administrator\Downloads\iTopVPN_setup_Free.exe
2022-09-29 18:23 - 2022-10-25 14:12 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-29 12:48 - 2022-09-29 12:44 - 000327904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000671712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000558536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000276496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000258496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000221976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000114488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000105920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000090000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-09-29 12:48 - 2022-09-29 12:43 - 000048488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-09-29 12:48 - 2022-09-29 12:41 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-09-29 12:48 - 2022-09-29 12:38 - 000238128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-09-29 12:48 - 2022-09-29 12:37 - 000862960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-09-29 12:48 - 2022-09-29 12:37 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-09-29 11:32 - 2022-09-29 11:32 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-09-27 03:13 - 2022-09-27 03:13 - 000000043 _____ C:\Users\Administrator\Desktop\History.url
2022-09-27 02:41 - 2022-10-20 15:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-25 17:14 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-25 16:36 - 2021-07-15 15:43 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\Mozilla
2022-10-25 16:23 - 2016-08-11 15:58 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-25 15:33 - 2022-09-10 01:15 - 000002958 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Defrag
2022-10-25 15:33 - 2022-09-10 01:15 - 000002702 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_AutoAnalyze
2022-10-25 15:33 - 2022-09-10 01:15 - 000002698 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_AutoDefrag
2022-10-25 15:33 - 2022-09-10 01:14 - 000002464 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Startup
2022-10-25 15:33 - 2022-09-08 13:45 - 000002620 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_Administrator
2022-10-25 15:33 - 2022-08-18 23:53 - 000002840 _____ C:\WINDOWS\system32\Tasks\SU_AutoUpdate
2022-10-25 15:33 - 2022-08-17 16:25 - 000002578 _____ C:\WINDOWS\system32\Tasks\Software Updater Scheduler
2022-10-25 15:33 - 2022-03-28 22:27 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3366790378-2559649480-2858292162-500
2022-10-25 15:33 - 2021-07-12 01:21 - 000002426 _____ C:\WINDOWS\system32\Tasks\Software Updater SkipUAC(Administrator)
2022-10-25 15:33 - 2020-05-15 15:50 - 000003464 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-25 15:33 - 2020-05-15 15:50 - 000003240 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-25 15:33 - 2020-01-03 00:56 - 000003310 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{1D20A89D-BEF7-42BD-BE1C-5B825338DD32}
2022-10-25 15:33 - 2020-01-03 00:56 - 000002668 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2022-10-25 15:32 - 2022-09-21 10:54 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-25 15:32 - 2022-03-22 01:23 - 000002588 _____ C:\WINDOWS\system32\Tasks\iolo System Checkup
2022-10-25 15:32 - 2022-03-13 23:03 - 000002524 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder UAC
2022-10-25 15:32 - 2022-03-13 23:01 - 000002570 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder SkipUAC (Administrator)
2022-10-25 15:32 - 2021-08-19 19:41 - 000002268 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Administrator
2022-10-25 15:32 - 2020-01-03 00:56 - 000003428 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2022-10-25 15:32 - 2020-01-03 00:56 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-10-25 15:32 - 2020-01-03 00:56 - 000003124 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-10-25 15:32 - 2017-01-07 21:51 - 000000914 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2022-10-25 15:04 - 2021-07-09 14:30 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps
2022-10-25 13:36 - 2015-12-28 17:21 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-10-25 13:08 - 2016-10-17 17:54 - 000000000 ____D C:\Program Files\CCleaner
2022-10-25 02:28 - 2022-04-23 22:00 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\vlc
2022-10-25 01:05 - 2019-08-13 13:55 - 000000000 ____D C:\Users\Administrator\AppData\Local\AVAST Software
2022-10-25 00:22 - 2020-01-02 18:11 - 000000000 ___DC C:\WINDOWS\Panther
2022-10-24 23:10 - 2020-01-03 00:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-10-24 15:09 - 2016-07-10 19:18 - 000000000 ____D C:\PaintToolSAI
2022-10-24 03:18 - 2020-01-02 23:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-24 00:51 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2022-10-24 00:42 - 2016-06-29 11:05 - 001388432 _____ C:\Users\Public\VOIP.dat
2022-10-24 00:14 - 2021-09-09 10:56 - 000000000 ____D C:\ProgramData\iTop
2022-10-24 00:12 - 2018-09-05 20:36 - 000000000 ____D C:\ProgramData\AVAST Software
2022-10-24 00:09 - 2022-03-18 00:53 - 000000000 ____D C:\Users\Public\cui9d65l.default-release-1
2022-10-24 00:03 - 2020-01-03 00:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-24 00:02 - 2019-03-19 05:37 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2022-10-23 23:02 - 2017-03-31 20:46 - 000000000 ____D C:\Program Files (x86)\Steam
2022-10-23 18:29 - 2021-08-04 16:32 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Telegram Desktop
2022-10-23 14:10 - 2022-03-18 14:42 - 000000000 ___RD C:\Users\Administrator\Dropbox
2022-10-23 11:32 - 2019-08-13 13:56 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2022-10-22 03:00 - 2021-08-04 17:27 - 000000000 ____D C:\Users\Administrator\Downloads\Telegram Desktop
2022-10-21 20:43 - 2020-05-15 15:54 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-21 20:43 - 2020-05-15 15:54 - 000002300 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-10-21 16:46 - 2018-10-16 23:19 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2022-10-21 16:46 - 2018-10-16 23:19 - 000002489 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2022-10-21 12:34 - 2021-08-07 22:58 - 000000000 ____D C:\Users\Administrator\AppData\Local\Dropbox
2022-10-21 12:33 - 2022-03-18 15:58 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\DropboxElectron
2022-10-20 18:41 - 2021-07-10 16:33 - 000000000 ____D C:\Users\Administrator\AppData\Local\Spotify
2022-10-20 18:39 - 2021-07-11 22:51 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Spotify
2022-10-20 15:50 - 2016-08-02 21:32 - 000001033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-20 00:50 - 2019-09-06 23:17 - 000000000 ____D C:\ProgramData\IObit
2022-10-19 23:40 - 2019-09-06 23:20 - 000000000 ____D C:\ProgramData\ProductData
2022-10-19 22:31 - 2021-09-21 00:13 - 000002091 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-10-19 22:31 - 2021-09-21 00:13 - 000001929 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-10-19 22:31 - 2021-09-21 00:13 - 000001929 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-10-19 22:31 - 2021-09-21 00:13 - 000001917 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-10-19 13:59 - 2022-08-26 17:27 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\IGDump
2022-10-18 21:55 - 2021-07-21 23:25 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Messenger
2022-10-18 21:55 - 2021-07-21 23:25 - 000000000 ____D C:\Users\Administrator\AppData\Local\Messenger
2022-10-18 10:37 - 2020-01-08 18:47 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\IObit
2022-10-17 16:48 - 2019-09-09 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2022-10-17 15:17 - 2021-07-11 22:51 - 000001912 _____ C:\Users\Administrator\Desktop\Spotify.lnk
2022-10-17 15:17 - 2021-07-11 22:51 - 000001898 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2022-10-17 13:56 - 2021-10-26 19:09 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\audacity
2022-10-17 13:56 - 2016-07-01 10:36 - 000000000 ____D C:\Program Files (x86)\Audacity
2022-10-15 23:08 - 2021-07-08 00:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2022-10-15 17:12 - 2021-07-14 16:56 - 000475626 _____ C:\WINDOWS\system32\prfh0404.dat
2022-10-15 17:12 - 2021-07-14 16:56 - 000150392 _____ C:\WINDOWS\system32\prfc0404.dat
2022-10-15 17:12 - 2021-07-12 04:08 - 000462288 _____ C:\WINDOWS\system32\prfh0804.dat
2022-10-15 17:12 - 2021-07-12 04:08 - 000149780 _____ C:\WINDOWS\system32\prfc0804.dat
2022-10-15 17:12 - 2020-01-03 00:26 - 003755650 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-15 17:12 - 2020-01-02 23:06 - 000508556 _____ C:\WINDOWS\system32\perfh011.dat
2022-10-15 17:12 - 2020-01-02 23:06 - 000149910 _____ C:\WINDOWS\system32\perfc011.dat
2022-10-15 17:12 - 2020-01-02 22:57 - 000823604 _____ C:\WINDOWS\system32\perfh00A.dat
2022-10-15 17:12 - 2020-01-02 22:57 - 000174386 _____ C:\WINDOWS\system32\perfc00A.dat
2022-10-15 16:42 - 2015-12-28 17:23 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-10-14 16:26 - 2021-08-17 20:36 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Zoom
2022-10-14 01:19 - 2022-03-08 22:11 - 000000000 ____D C:\DriverTalent
2022-10-13 12:13 - 2022-08-19 00:46 - 000002282 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-10-13 12:13 - 2016-08-11 15:59 - 000002323 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-11 18:58 - 2021-07-14 19:33 - 000000000 ____D C:\Users\Administrator\AppData\Local\ElevatedDiagnostics
2022-10-11 18:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-10-11 18:29 - 2018-08-23 22:36 - 000000000 ____D C:\Program Files\Malwarebytes
2022-10-11 18:29 - 2016-10-06 13:08 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-10-11 10:54 - 2020-01-03 00:07 - 000000000 ____D C:\Users\Administrator
2022-10-11 01:33 - 2019-08-13 13:56 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2022-10-10 12:19 - 2022-03-13 23:01 - 000000000 ____D C:\Program Files\iTop Screen Recorder
2022-10-09 13:26 - 2021-12-21 00:38 - 000000000 ____D C:\Users\Administrator\Desktop\Crack
2022-10-08 15:06 - 2016-06-29 11:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-10-07 18:56 - 2021-08-04 16:32 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2022-10-07 17:28 - 2022-08-20 20:34 - 000002055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-10-07 17:28 - 2022-08-20 20:34 - 000002043 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-10-07 17:25 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-10-06 00:07 - 2021-09-11 02:07 - 000001394 _____ C:\Users\Administrator\Documents\note.txt
2022-10-05 15:32 - 2020-01-03 00:07 - 000000000 ____D C:\Users\Ollie
2022-10-05 14:20 - 2022-03-13 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop Screen Recorder
2022-10-03 02:03 - 2021-09-09 11:00 - 000000000 ____D C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
2022-10-01 01:58 - 2021-09-09 11:00 - 000000000 ____D C:\ProgramData\iTop VPN
2022-09-27 23:31 - 2022-09-15 16:11 - 000003318 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2022-09-27 21:08 - 2020-06-10 12:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

==================== Files in the root of some directories ========

2016-07-01 10:48 - 2016-05-02 10:48 - 000000032 _____ () C:\ProgramData\hash.dat
2016-06-29 11:05 - 2022-10-24 00:42 - 001388432 _____ () C:\Users\Public\VOIP.dat
2016-07-01 15:03 - 2016-07-01 15:03 - 000000628 _____ () C:\Program Files (x86)\Blacklight Retribution_enUpdaterLog.txt
2022-05-13 12:56 - 2022-05-13 12:56 - 000000000 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\71a45837-0391-415e-a2d5-4ebfacf6a087.tmp
2021-08-24 11:16 - 2022-09-01 01:25 - 000007387 _____ () C:\Users\Administrator\AppData\Local\krita-sysinfo.log
2021-08-24 11:16 - 2022-09-01 01:25 - 000003695 _____ () C:\Users\Administrator\AppData\Local\krita.log
2022-09-01 01:25 - 2022-09-01 01:25 - 000000039 _____ () C:\Users\Administrator\AppData\Local\kritadisplayrc
2021-08-24 11:24 - 2022-09-01 01:25 - 000015238 _____ () C:\Users\Administrator\AppData\Local\kritarc

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

 

[Waves Rayneth]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-10-2022
Ran by Administrator (25-10-2022 17:24:24)
Running from C:\Users\Administrator\Downloads
Microsoft Windows 10 Pro Version 1909 18363.1556 (X64) (2020-01-03 15:13:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3366790378-2559649480-2858292162-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-3366790378-2559649480-2858292162-503 - Limited - Disabled)
Guest (S-1-5-21-3366790378-2559649480-2858292162-501 - Limited - Disabled)
Ollie (S-1-5-21-3366790378-2559649480-2858292162-1001 - Limited - Enabled) => C:\Users\Ollie
WDAGUtilityAccount (S-1-5-21-3366790378-2559649480-2858292162-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: IObit Malware Fighter (Enabled - Up to date) {72254378-B0F2-858E-E23B-921FCAC3D529}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 22.003.20258 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.453 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 16.0.1 - IObit)
Apple Application Support (32-bit) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C29B636B-9015-4ED1-A12F-6375A337F23B}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Audacity 3.2.1 (HKLM-x32\...\Audacity_is1) (Version: 3.2.1 - Audacity Team)
Aura Kingdom (HKLM-x32\...\Aura Kingdom) (Version:  - )
Avast AntiTrack Premium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 3.2.740.996 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 22.3.12193.8260 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 22.3.2757.10724 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 106.0.18743.103 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
Azure AD Authentication Connected Service (HKLM-x32\...\{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.)
Bluetooth(R) Link (HKLM\...\{936D21BF-3344-4B20-BC4C-3B67580C19F5}) (Version: 4.3.04 - Toshiba Corporation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 99.1.36.116 - Brave Software Inc)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.43.53 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.259.0 - Conexant Systems)
Content Manager Assistant for PlayStation(R) (HKLM-x32\...\{C0115E87-E731-48DC-B258-DB2AD494DC80}) (Version: 3.56.7933.1204 - Sony Interactive Entertainment Inc.)
CopyTrans Control Center Uninstall Only (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\CopyTrans Suite) (Version: 4.200 - WindSolutions)
Discord (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.)
Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32\...\{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden
Driver Easy 5.7.3 (HKLM\...\DriverEasy_is1) (Version: 5.7.3 - Easeware)
Driver Talent (HKLM-x32\...\{29FE44D7-BC89-4188-8B0E-F6BA073C15A5}_is1) (Version: 8.0.9.52 - OSToto Co., Ltd.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 160.3.4670 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.639.1 - Dropbox, Inc.) Hidden
DTS Sound (HKLM-x32\...\{793B70D2-41E9-46AB-9DDC-B34C99D07DB5}) (Version: 1.02.4100 - DTS, Inc.)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
ELAN Touchpad 15.8.12.5_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.12.5 - ELAN Microelectronic Corp.)
FileZilla Client 3.54.1 (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\FileZilla Client) (Version: 3.54.1 - Tim Kosse)
FLV to AVI Video Converter v. 1.2 (HKLM-x32\...\FLV to AVI Video Converter_is1) (Version:  - FDRLab.com)
GameInput Redistributable (HKLM-x32\...\{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Version: 10.1.19041.3906 - Microsoft Corporation)
Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.15.4.0 - miHoYo Co.,Ltd)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 106.0.5249.119 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 65.0.4.0 - Google LLC)
HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.30.326 - SurfRight B.V.)
HP DeskJet 3700 series Basic Device Software (HKLM\...\{307EE3A5-A788-4D01-B615-ABAA728DFB57}) (Version: 40.12.1161.1896 - HP Inc.)
HP DeskJet 3700 series Help (HKLM-x32\...\{9D10BAEF-4767-46EC-8A40-A6E75D84432C}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{D12BC084-97D6-438A-AA7C-5962608D17A0}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{BFA42100-DB54-467A-BB87-CF70732B4065}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.13.125.1 - Intel Security)
Intel(R) Chipset Device Software (HKLM\...\{8C91A5EB-2C62-4A6D-8802-CC79FD2ED390}) (Version: 10.1.1.7 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1163 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{A5536A08-5A7F-4330-8947-0372B500A3BD}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{C6C06C9F-B452-4C7A-AB83-F5931AB9B372}) (Version: 11.0.0.1163 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{94BC10B9-159A-44E8-BEA1-34BF765FEA58}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4268 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{205AE40D-8AD7-4F29-A430-DD2168DA562D}) (Version: 14.5.0.1081 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C1DD4078-51FD-42CC-91DA-AD4369D5F973}) (Version: 6.0.57.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{C7D64C31-3F1E-4205-87A5-B61AAE55E64B}) (Version: 3.4.1942 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{C345A462-2044-47D6-81F6-A4416453A514}) (Version: 17.1.1529.1613 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden
Intel® RealSense™ SDK 2014 Runtime  (x64): Core (HKLM\...\{37D41A97-6B02-4C30-8753-85107BE1D674}) (Version: 3.1.0.25181 - Intel Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{7D84E343-A23D-451C-B123-0195B2D903A6}) (Version: 1.42.17.0 - Intel Corporation) Hidden
IObit Malware Fighter 9 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 9.3.0.744 - IObit)
IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 5.0.0.8 - IObit)
Iobit Software Updater 4.4 (HKLM-x32\...\Iobit Software Updater 4.4) (Version: 4.4 - Company)
IObit Uninstaller 12 (HKLM-x32\...\IObitUninstall) (Version: 12.0.0.10 - IObit)
iTop Screen Recorder (HKLM-x32\...\iTop Screen Recorder_is1) (Version: 3.2.0.1168 - iTop Inc.)
iTop VPN (HKLM-x32\...\iTop VPN_is1) (Version: 4.1.0.3710 - iTop Inc.)
Kamo (HKLM-x32\...\Kamo) (Version: 4.3.605.1134 - Piriform)
Krita (x64) 5.1.1 (HKLM\...\Krita_x64) (Version: 5.1.1.101 - Krita Foundation)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Left to Survive (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Left to Survive) (Version: 1.80 - MY.GAMES)
Logitech Gaming Software (HKLM\...\{690285C2-2481-44FB-8402-162EA970A6DD}) (Version: 8.30.28 - Logitech Inc.) Hidden
Logitech Options (HKLM\...\LogiOptions) (Version:  - Logitech)
Malwarebytes Privacy version 2.9.0.563 (HKLM\...\{934873BE-C9BC-4F19-B698-9B3E3F8FF07F}_is1) (Version: 2.9.0.563 - Malwarebytes)
Malwarebytes Privacy VPN Tunnel Driver (HKLM\...\{FEE4A372-663C-47A0-BD08-A6C34320DC52}) (Version: 1.0.0.0 - Malwarebytes)
Malwarebytes version 4.5.16.217 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.16.217 - Malwarebytes)
Messenger (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 160.0.394240794 - Facebook, Inc.)
Microsoft .NET Core 5.0 SDK (HKLM-x32\...\{E092A9F3-15AE-46B4-9A25-6C25F7F44795}) (Version: 1.0.23902 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU) (HKLM-x32\...\{A223B446-EC3D-3031-828D-5188800AB782}) (Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (HKLM-x32\...\{976C3D92-0DEC-37A6-A870-FF4FC18CD029}) (Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Developer Pack (HKLM-x32\...\{463d5540-8dfd-4eef-92e5-b729b3b73cfb}) (Version: 4.6.1055 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.15629.20208 - Microsoft Corporation)
Microsoft Agents for Visual Studio 2015 Preview - ENU (HKLM-x32\...\{B57097EF-5F38-348C-8081-4D0F0B78757E}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
Microsoft Agents for Visual Studio 2015 Preview (HKLM-x32\...\{CE37CE67-2660-30EE-805B-78829CC3554B}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
Microsoft Azure Mobile Services Connected Service (HKLM-x32\...\{107518BF-43A3-4CB6-B571-9C5A241F9586}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Azure Mobile Services SDK V2.0 (HKLM-x32\...\{A00EC54A-CE16-4CF6-A14A-5CF81A1FE03F}) (Version: 2.0.20908.0 - Microsoft Corporation) Hidden
Microsoft Azure Mobile Services Tools for Visual Studio - v1.4 (HKLM-x32\...\{5536AAD4-740A-4577-843D-4281D3F30726}) (Version: 1.4.30611.1601 - Microsoft Corporation) Hidden
Microsoft Azure Shared Components for Visual Studio 2015 - v1.8 (HKLM-x32\...\{F02B1BAC-94DA-46FB-B27B-7287FC0EF481}) (Version: 1.8.40521.1 - Microsoft Corporation) Hidden
Microsoft Azure Storage Connected Service (HKLM-x32\...\{8F15E32A-FAD1-49E3-9378-C8EE0530E192}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools 14.0 (amd64) (HKLM\...\{79750C81-714E-45F2-B5DE-42DEF00687B8}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools 14.0 (x86) (HKLM-x32\...\{6BF8837D-67E1-4359-89FB-C08BFD6F2138}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools Language Resources 14.0 (amd64) (HKLM\...\{34BFF66C-9A7E-4778-8A9F-1DA1F0F4C22E}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools Language Resources 14.0 (x86) (HKLM-x32\...\{5127B392-8820-4822-A21F-1CB78C2E25AD}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Expression Blend SDK for .NET 4 (HKLM-x32\...\{9B3A1C97-A361-463E-8817-444F9F88CDFE}) (Version: 2.0.20525.0 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.2 (HKLM-x32\...\{4740889B-2D03-3A6F-BC42-07C8AFDF3B2E}) (Version: 2.2.25420 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation)
Microsoft NuGet - Visual Studio 2015 (HKLM-x32\...\{2D170B66-A905-385C-93E0-20A47812B777}) (Version: 3.4.4.1321 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Excel MUI (English) 2007 (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (HKLM-x32\...\{90120000-002C-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version:  - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}) (Version:  - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}) (Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (HKLM\...\{90120000-002A-0409-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (HKLM\...\{90120000-0116-0409-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (HKLM-x32\...\{90120000-0115-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\OneDriveSetup.exe) (Version: 22.196.0918.0001 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack (HKLM-x32\...\{1634C655-2398-35C0-89BE-291449A72F88}) (Version: 14.0.25123.00 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (HKLM-x32\...\{B01EE326-AFD3-30C9-804A-CBC36CBD4922}) (Version: 14.0.25420.01 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{B5664346-4402-4834-81BE-9687BF653BA2}) (Version: 3.26.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Debug Runtime - 14.0.24210 (HKLM\...\{D94D812C-B20F-3DB9-82D2-A57AC2CAF9CA}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Debug Runtime - 14.0.24210 (HKLM-x32\...\{2509566A-3416-3B50-B2FC-F7A0254C24CE}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2015 Devenv (HKLM-x32\...\{FC1F3422-0C94-3178-AD95-3EA889DF55AF}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Devenv Resources (HKLM-x32\...\{173D2989-6B09-3A90-8819-A53E43F99818}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Diagnostic Tools - amd64 (HKLM\...\{62D2E847-606F-49FB-A38B-F9D5AA936331}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Performance Collection Tools - ENU (HKLM\...\{3AE40040-2F48-4617-9228-49E999738BDB}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Performance Collection Tools (HKLM\...\{FCC6E820-B5DB-454E-96E3-B6182DDEEC8D}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Preparation (HKLM-x32\...\{919C67A9-2DE8-4929-A910-CB85E009B5CB}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Preparation (HKLM-x32\...\{93A31A4A-197C-43F0-9687-7FFC47C33D44}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Preparation (HKLM-x32\...\{9E99CC49-D305-4D42-AC34-6C732062B142}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Profiling Tools (HKLM-x32\...\{4AD3777F-D26B-4FCD-8823-B1D9784141C6}) (Version: 14.0.25123 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 SDK - ENU (HKLM-x32\...\{67A74EC1-A89D-3553-B38D-D17D4991CD2F}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Shell (Minimum) (HKLM-x32\...\{030A6785-C3A9-37DA-8530-444C320629FA}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Shell (Minimum) Interop Assemblies (HKLM-x32\...\{166EEF5C-F996-390E-91F6-DD6DFD008E9B}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Shell (Minimum) Resources (HKLM-x32\...\{7FF53256-7BAF-3EFA-91B4-DB65F37EB5E9}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Test Tools Language Pack - ENU (HKLM-x32\...\{E41854EE-D8A6-4E03-B42D-E0006C24A306}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 CTP1 Team Explorer Language Pack - ENU (HKLM-x32\...\{FFA8B646-066E-34A4-8168-C410DAFA631F}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - amd64 (HKLM\...\{9253C880-B8D2-4A37-AE3C-9DC597A2F866}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - amd64 (HKLM\...\{BCAC059C-E06C-4D45-928A-A69061678ECA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - ENU (HKLM-x32\...\{0DC92391-4C2B-4C35-A674-EBDEE5ABB375}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - x86 (HKLM-x32\...\{35B1EDF3-63B5-4908-989D-6F62DBA02C58}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - x86 (HKLM-x32\...\{7DFB810E-B924-4DAD-975A-E07F58153727}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - x86 (HKLM-x32\...\{DFFDC6DF-D4F8-4A4C-AC63-136996ADAFAD}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Performance Debugger Web Views (HKLM-x32\...\{A5C0F000-F324-46D3-BBD9-5F6AD1886B12}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 VsGraphics Helper Dependencies (HKLM\...\{599702AA-91EB-38C1-B994-CDE35C57E007}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Windows Diagnostic Tools - ENU (HKLM-x32\...\{AB5A27F1-57C7-4E4C-90C4-28E55272FD6F}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Windows Diagnostic Tools (HKLM-x32\...\{D67494E9-AA13-403B-A3BE-C26C399EEA4A}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Application Timeline - ENU (HKLM-x32\...\{C3C024EC-B097-43BE-9BFC-E3D10EF45510}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Application Timeline (HKLM-x32\...\{A04247F5-CEE1-4521-87FD-90DA04C800A1}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Visual Diagnostics - ENU (HKLM-x32\...\{8BD56634-6B9E-4CDA-8857-C73F20F57907}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Visual Diagnostics (HKLM-x32\...\{6906ABB6-435A-4F7A-B94A-A057121DA285}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation)
Microsoft Visual Studio Connected Services (HKLM-x32\...\{76722C36-3BF4-4326-9ADF-A56ABA50AA9F}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio Services Hub (HKLM-x32\...\{79B9B6C9-3FAF-4F50-96A9-C1651EA0DD31}) (Version: 1.0.25420.01 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Office Integration (x64) (HKLM\...\{647DB777-6309-3551-9262-6B9CDB97635B}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Office Integration Language Pack (x64) - ENU (HKLM\...\{F04AB121-B3E1-39FE-8A5E-EF8484210107}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Storyboarding (x64) (HKLM\...\{4E27A682-5F47-3B82-AF7C-90218C7078C3}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Storyboarding Language Pack (x64) - ENU (HKLM\...\{B97772BE-2F7E-3F09-93B4-D1C9E196018A}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft VisualStudio JavaScript Language Service (HKLM-x32\...\{D7DF0F16-53C8-4AAB-8D54-78F16218419A}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft VisualStudio JavaScript Project System (HKLM-x32\...\{5080852D-31F3-49D3-B6F3-7FEC8C339A03}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft.VisualStudio_Office365 (HKLM-x32\...\{3196EC29-B75D-4EE3-8AB0-46418BC31483}) (Version: 1.6.2.0 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 106.0.1 (x64 en-US)) (Version: 106.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 105.0.1 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
MY.GAMES GameCenter (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\GameCenter) (Version: 4.1542 - MY.COM B.V.)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.10 (HKLM-x32\...\{D909483F-780E-4232-9313-4C24A1B09BE8}) (Version: 4.110.9807 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.155.0.10 - Overwolf Ltd.)
PaintTool SAI Ver.1 (HKLM-x32\...\PaintToolSAI) (Version:  - )
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Product Improvement Study for HP DeskJet 3700 series (HKLM\...\{826144A0-42A2-40D3-A49B-129979BA2B0C}) (Version: 40.12.1161.1896 - HP Inc.)
Qcma (HKLM\...\Qcma) (Version: 0.4.1 - codestation)
Quantum Legacy (HKLM-x32\...\{24EBDD34-E08C-485B-8071-4DA36ABA862F}) (Version: 0.3.0 - )
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.2004.84 - Trusteer) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10130.29089 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Replay HUD (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Overwolf_hffhbjnafafjnehejohpkfhjdenpifhihebpkhni) (Version: 145.0.0 - Overwolf app)
Revelation Online (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Revelation Online) (Version: 1.239 - MY.GAMES)
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{7138CC92-123A-393F-BC30-B784794DF4E7}) (Version: 14.0.25421 - Microsoft Corporation) Hidden
Shark007 STANDARD Codecs (HKLM-x32\...\{898E81AD-6DB9-4750-866B-B8958C5DC7AA}) (Version: 9.9.2 - Shark007)
Shark007 STANDARD x64Components (HKLM\...\STANDARD x64Components_is1) (Version: 9.9.2 - Shark007)
Skyforge MyCom (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Skyforge MyCom) (Version: 1.384 - MY.GAMES)
Skype version 8.89 (HKLM-x32\...\Skype_is1) (Version: 8.89 - Skype Technologies S.A.)
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.)
Smart Defrag 8 (HKLM-x32\...\Smart Defrag_is1) (Version: 8.1.0.159 - IObit)
Spotify (HKLM-x32\...\Spotify) (Version: 1.0.5.186.ga9c24d6a - Spotify AB)
Spotify (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Spotify) (Version: 1.1.62.583.gdac868ed - Spotify AB)
Spotify (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\Spotify) (Version: 1.1.96.785.g464c973a - Spotify AB)
Stay Out (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Stay Out) (Version: 1.21 - Mobile Technologies LLC)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SuperNova Player (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\TacticsTechnologySuperNova) (Version:  - )
Surfshark (HKLM-x32\...\{48FB5A6D-1D17-45BE-9F41-AA59765AC70A}) (Version: 4.2.2999 - Surfshark) Hidden
Surfshark (HKLM-x32\...\Surfshark 4.2.2999) (Version: 4.2.2999 - Surfshark)
Surfshark TAP Driver Windows (HKLM-x32\...\{A270BA60-BE4B-44CE-A208-1028297B65C1}) (Version: 1.0.1 - Surfshark)
Surfshark TAP Driver Windows (HKLM-x32\...\{D416A6E6-F990-42CF-A790-8F9179762F34}) (Version: 1.0.1 - Surfshark)
Surfshark TUN Driver Windows (HKLM\...\{72639F74-7F85-40B8-98B8-9CB339BC701A}) (Version: 1.0 - Surfshark)
Symbaloo (HKLM-x32\...\Symbaloo) (Version: 1.1.0 - Symbaloo Launcher by Toshiba Europe GmbH)
System Checkup (HKLM-x32\...\{78B3977C-FE07-4D6C-8ECB-614482F24494}) (Version: 5.0.3.226 - iolo technologies, LLC) <==== ATTENTION
Team Explorer for Microsoft Visual Studio 2015 Update 3 CTP1 (HKLM-x32\...\{C0402801-37B7-30B1-A678-AE3E73E4C4F6}) (Version: 14.98.25331 - Microsoft) Hidden
Telegram Desktop (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.2.4 - Telegram FZ-LLC)
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Tools for .Net 3.5 (HKLM-x32\...\{1690CE56-2231-4E59-9006-A0876D949EA8}) (Version: 3.11.50727 - Microsoft Corporation) Hidden
TOSHIBA Audio Enhancement (HKLM\...\{1515F5E3-29EA-4CD1-A981-032D88880F09}) (Version: 3.0.3.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.0.1.6403 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.20 - TOSHIBA)
TOSHIBA Password Utility (HKLM\...\{26BB68BB-CF93-4A12-BC6D-A3B6F53AC8D9}) (Version: 8.1.1.0 - Toshiba Corporation) Hidden
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{26BB68BB-CF93-4A12-BC6D-A3B6F53AC8D9}) (Version: 8.1.1.0 - Toshiba Corporation)
TOSHIBA PC Diagnostic Tool (HKLM-x32\...\InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}) (Version: 3.2.15 - TOSHIBA Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{B507386D-1F61-4E55-B05B-F56ACB0086B3}) (Version: 5.01.03.6403 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.3.00.8003 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{1404E6C5-5E3A-48D5-BE44-8C63CFB2A7C9}) (Version: 3.1.2.0 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 2.00.0005 - Toshiba Corporation)
TOSHIBA System Settings (HKLM\...\{B040D5C9-C9AA-430A-A44E-696656012E61}) (Version: 3.0.6.6401 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{E4C7D9D7-19D4-4623-AF0C-EA313C466411}) (Version: 5.0.0 - Toshiba Europe GmbH)
TOSHIBA Web Camera Application (HKLM-x32\...\{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.3.38 - TOSHIBA Corporation) Hidden
TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.3.38 - TOSHIBA Corporation)
Trusteer Endpoint Protection (HKLM-x32\...\Rapport_msi) (Version: 3.5.2004.84 - Trusteer)
Twitch (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Overwolf_oepmnephgakhodlemnladfmcnhfhbfdnbgolmcok) (Version: 1.21.1 - Overwolf app)
TypeScript Power Tool (HKLM-x32\...\{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{BDB33BE7-73D0-4C02-A576-78FD17C95A8D}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
Unity (HKLM-x32\...\Unity) (Version: 5.3.5f1 - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B652B695-C849-4EF2-B09A-72771C7AD2BA}) (Version: 2.71.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
VideoCapture (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Overwolf_lnhebboianabbebhnpoodokcdcnmikacoeijpjfe) (Version: 1.0.0.0 - Overwolf app)
Visual C++ Compiler/Tools X86 Base Package (HKLM-x32\...\{7BC93EE9-44F1-3783-AD76-F6BD6C8F6B58}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ Compiler/Tools X86 Base Package (HKLM-x32\...\{BFEC9D45-BAD4-3D7C-B6A7-887D21E6C25A}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ Compiler/Tools X86 Base Resource Package (HKLM-x32\...\{62505F19-7D2A-3FD0-B1A2-D8E2FA2F96B3}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ Compiler/Tools X86 Base Resource Package (HKLM-x32\...\{85658238-483F-3148-967E-ECD533AE6FE7}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ IDE Base Package (HKLM-x32\...\{0A002F88-FD5D-379B-A350-A25D84AF128B}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Base Resource Package (HKLM-x32\...\{A3CF57ED-FFD1-3AC4-B9D7-90069B2B5EDA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Base Resource Package (HKLM-x32\...\{DC3240BB-9136-3978-8EF3-F041ACEA11BF}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Common Package (HKLM-x32\...\{BD5A23D6-1E9F-3378-89CF-E96908078D53}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Common Resource Package (HKLM-x32\...\{EFE03B21-A8A5-3CCD-81BD-7FC47007F1BA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Package (HKLM-x32\...\{01AC157E-26F2-393E-8B91-3FEBD41A4E5D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{0FDFB80D-91E1-36F1-B523-0B90421FDDC1}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{1D958A62-C980-3CB7-AC59-40EF0D1FA80E}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{1DC85000-B0F8-325F-AD01-2770D36517D5}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{2FEE4EBD-CEB0-3E26-9405-CF0D812CFA3C}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{33DA2215-AF20-3F21-A171-57F0533A5CAF}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{43027679-FD40-32E6-A9F0-7BB3CDEBE416}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{49D4D4E2-21E8-3346-A496-1A1415B18594}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{4E61EF40-8A51-3D99-AA4C-32F203370083}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{5130318D-7FEA-35E6-927D-01368910BDFC}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{66DA8EAA-D4CD-30DC-B993-0EDF728ED1F6}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{B2321364-E928-325D-A954-933D35239BE5}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{D1201DF3-F934-342A-A586-2B255CB8B215}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{D209BFE9-3EDA-3606-AF6B-DCADA87A2285}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{D9CE69E8-D77A-3C94-A910-641622794ED4}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Debugger Package (HKLM-x32\...\{26EFB5DE-50E2-3961-AE7A-15BC0FAAF208}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Debugger Resource Package (HKLM-x32\...\{E20C5867-063A-36FF-B630-A9C96CE5D8AF}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Professional Core Package (HKLM-x32\...\{C67257E4-F24C-3C35-86BB-E9B7D5D4D9FB}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE x64 Package (HKLM\...\{60DED060-0B6B-3CC1-B955-D0CD401F0FBA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ Library PGO X86 Package (HKLM-x32\...\{023FCA1D-E591-3AF9-9D2F-9876639A511A}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ MSBuild ARM Package (HKLM-x32\...\{51547499-4A12-3CC6-AE3D-3C5E87D72909}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild Base Package (HKLM-x32\...\{35433594-85A3-3EEA-963E-0E5E860B82D6}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild Base Resource Package (HKLM-x32\...\{D073E568-C258-381C-B9DB-965434B1DF53}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild X64 Package (HKLM-x32\...\{EE527713-BE8A-348A-8854-DACBCE5316F2}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild X86 Package (HKLM-x32\...\{8CB498C5-672B-3F6C-9143-84B0BBC1EAB3}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual Studio 2012 Verification SDK (HKLM-x32\...\{A3BCFD43-58D6-3132-A7DF-16CE04672372}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual Studio 2015 Prerequisites - ENU Language Pack (HKLM\...\{83B181F2-20B8-4F00-8E71-C66E951A8D4F}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Visual Studio 2015 Prerequisites (HKLM\...\{DF32E41C-24AD-4A87-B43A-B38553B1806E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation)
Visual Studio Graphics Analyzer (HKLM-x32\...\{8C26982F-B345-3C87-8D17-5E88ADDAFFF6}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
VS Update core components (HKLM-x32\...\{5C946395-4D29-3274-A47D-B77D4B10E126}) (Version: 14.0.25421 - Microsoft Corporation) Hidden
vs_update3notification (HKLM-x32\...\{B5BE6171-568A-3657-90CD-A76BEC01F62D}) (Version: 14.0.25421 - Microsoft Corporation) Hidden
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.17-3 - Wacom Technology Corp.)
Warface My.Com (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Warface My.Com) (Version: 1.184 - MY.GAMES)
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WebAdvisor by McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.596 - McAfee, LLC)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WhoCrashed 7.01 (HKLM\...\WhoCrashed_is1) (Version: 7.01 - Resplendence Software Projects Sp.)
Will To Live Online (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Will To Live Online) (Version: 1.20 - AlphaSoft)
Windows Driver Package - Microsoft PS Vita Type B (02/22/2013 6.1.7600.16385) (HKLM\...\A0EC80B5719D4DA4CF40C9219D7CB9CCAD6DBA40) (Version: 02/22/2013 6.1.7600.16385 - Microsoft)
Windows Espc Package (HKLM-x32\...\{42AF2A8C-6EBB-3D2E-9BF1-6135379FBABC}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Windows Espc Resource Package (HKLM-x32\...\{FC94D188-1E08-3707-9D23-F41178D44664}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Windows Phone SDK 8.0 Assemblies for Visual Studio 2015 (HKLM-x32\...\{44474AE7-7770-3676-AC63-C9DDD15011FF}) (Version: 14.0.25123 - Microsoft Corporation) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
Windows Software Development Kit DirectX x64 Remote (HKLM\...\{5247E16E-BCF8-95AB-1653-B3F8FBF8B3F1}) (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (HKLM-x32\...\{A1CB8286-CFB3-A985-D799-721A0F2A27F3}) (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (HKLM\...\{96F4525A-470D-F15C-796E-58D9988C3E5F}) (Version: 8.100.26936 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (HKLM-x32\...\{56AD3004-0B49-967F-F682-B05650B61A78}) (Version: 8.100.26936 - Microsoft Corporation) Hidden
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
Youtube Downloader HD v. 4.4.2 (HKLM-x32\...\Youtube Downloader HD_is1) (Version:  - YoutubeDownloaderHD.com)
Zoom (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\ZoomUMX) (Version: 5.12.2 (9281) - Zoom Video Communications, Inc.)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2021-09-12] (Amazon.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2021-09-12] (Dolby Laboratories)
Dolby Atmos for Headphones -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforHeadphones_2.3.303.0_x64__rz1tebttyb220 [2021-09-12] (Dolby Laboratories)
eBay -> C:\Program Files\WindowsApps\eBayInc.eBay_1.6.0.34_neutral__1618n3s9xq8tw [2021-09-12] (eBay, Inc)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2021-09-12] (AMZN Mobile LLC)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-09-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-09-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-09-12] (Microsoft Studios) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2021-09-12] (Microsoft Corporation) [MS Ad]
My Toshiba -> C:\Program Files\WindowsApps\EnnovaResearch.ToshibaPlaces_3.2.49.0_x64__3s2an63h56yee [2021-09-12] (Ennova Research)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-09-12] (Netflix, Inc.)
Power Media Player for Toshiba -> C:\Program Files\WindowsApps\CyberLinkCorp.to.PowerMediaPlayerforToshiba_5.0.2006.48358_x86__0nrkv0a31nfem [2021-09-12] (CYBERLINK COM CORPORATION.)
Skyscanner -> C:\Program Files\WindowsApps\Skyscanner.Skyscanner_1.4.2.0_neutral__623c9he0pwcym [2021-09-12] (Skyscanner)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2021-09-12] (TripAdvisor LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3366790378-2559649480-2858292162-500_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Administrator\Dropbox [2022-03-18 14:42]
ShellIconOverlayIdentifiers: [                    IMFSafeBox] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ShellIconOverlayIdentifiers: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} =>  -> No File
ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} =>  -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-04-28] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [25640 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [70200 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [70712 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] (Bandisoft -> )

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) <==== Cyrillic

==================== Loaded Modules (Whitelisted) =============

2018-07-18 16:27 - 2018-07-18 16:27 - 000747520 _____ () [File not signed] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2022-02-04 05:31 - 2022-07-15 15:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Administrator\Downloads\CC歌词【完整版】少年白马 (《少年白马醉春风》OP 片头曲) 演唱：Smile_小千-360p.mp4:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\Administrator\Downloads\CC歌词【完整版】春风欲渡 (《少年白马醉春风》ED 片尾曲) 演唱：汪晨蕊-360p.mp4:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\Ollie\Dropbox:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Ollie\Dropbox:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\Ollie\Dropbox:com.dropbox.folder_policy [36]
AlternateDataStreams: C:\Users\Ollie\Desktop\Mastering Manga 2 - Level Up with Mark Crilley:com.dropbox.attributes [168]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBVpnService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBVpnService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\.exe:  =>  <==== ATTENTION
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => Applications\firefox.exe
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => Applications\wmplayer.exe
HKU\.DEFAULT\Software\Classes\.exe: .exe_auto_file => "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" <==== ATTENTION
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\Software\Classes\.exe: exefile =>  <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba15.msn.com/?pc=TBTE
SearchScopes: HKLM -> DefaultScope {F154C596-75A9-4028-90E8-9752BD7CA05B} URL =
SearchScopes: HKLM-x32 -> DefaultScope {1F90CCF0-DDC4-4A14-8D4A-CA861733A8AE} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-06-11] (McAfee, LLC -> McAfee, LLC)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-02-08] (McAfee, Inc. -> Intel Security)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-06-11] (McAfee, LLC -> McAfee, LLC)
BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2022-06-18] (IObit CO., LTD -> IObit)
Toolbar: HKLM - No Name - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -  No File
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-02-08] (McAfee, Inc. -> Intel Security)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\aeriagames.com -> hxxp://aeriagames.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 12:04 - 2022-08-11 22:04 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts

2017-05-23 13:21 - 2021-09-26 23:11 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\GtkSharp\2.12\bin;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ollie\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\Dropbox\Photos\305057828_1199071313971314_6164204209813313738_n.png
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Aeria Ignite"
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\StartupApproved\Run: => "Spotify Web Helper"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{B6FD034C-4AF0-4415-A6EF-C2EFDF1B17F0}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [TCP Query User{406FADDF-C74A-46EA-A9A8-0FB51DCE1BB3}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [{87D2FBE5-C2DD-44E1-A9A6-FE2AFC5AFC34}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{56B23348-835E-4CC6-8F89-55D1B0CBC628}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{3BB371F2-E9F4-4E75-A8FB-0A2AFD62965C}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [TCP Query User{58259647-D178-4C89-9CAB-F421A90BD62B}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [{85E9F5BA-EE1C-4F88-84E9-A44730C6DC28}] => (Allow) C:\Program Files (x86)\EYEDENTITY GAMES\DragonNest\DragonNest.exe (EYEDENTITYGAMES, Inc. -> Eyedentity Games) [File not signed]
FirewallRules: [{6FDD6CF9-D905-4EF4-9152-61BF472D2238}] => (Allow) C:\Program Files (x86)\EYEDENTITY GAMES\DragonNest\DragonNest.exe (EYEDENTITYGAMES, Inc. -> Eyedentity Games) [File not signed]
FirewallRules: [{ADB370D1-A196-4450-B510-826B38CD78E6}] => (Block) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [{B73F2AFB-2B5A-4EB8-9913-649C4C8EE57B}] => (Block) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [UDP Query User{097236B6-D52E-4E46-8056-157565CC066A}C:\users\ollie\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [TCP Query User{7EF910B8-0492-4D7A-9A20-EC93DEA1491D}C:\users\ollie\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [UDP Query User{5FEA143F-61A8-4EB5-959A-1D17A8B834A3}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{F4066BB0-8B23-452A-A3F9-21736B03819F}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{923F7890-DC8F-43D5-9579-00CC7FCF4334}] => (Allow) C:\AeriaGames\AuraKingdom\game.bin (X-Legend Entertainment CO., LTD. -> X-LEGEND Entertaimment)
FirewallRules: [{6363ACE9-19BE-4396-A05B-F5617D8DA1C3}] => (Allow) C:\AeriaGames\AuraKingdom\game.bin (X-Legend Entertainment CO., LTD. -> X-LEGEND Entertaimment)
FirewallRules: [UDP Query User{B9F63931-3A81-442D-A562-BAFB4FBCACF9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FF9E1E5E-2157-4109-B72A-9444FEE4509A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{88BA6C31-698E-43E1-9CEA-F78E5C7463D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0AB6CD9B-8D73-4C1A-8889-19A495FBBE41}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E9266E9C-0C03-4F9F-9EAD-036816942670}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyCrashService.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3A9493CC-6AEF-48EE-8AA0-E69E605D9861}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyCrashService.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F7FBAC44-AF13-4BE4-BA38-98A90C9F5B0F}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{858F86F7-051F-4A36-9A5F-866B40D8B867}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5A314F86-4A28-49D6-85D8-538B56979BFC}] => (Allow) C:\Program Files (x86)\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{87E6B498-E95C-4EF4-9A89-656F306B673F}] => (Allow) C:\Program Files (x86)\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DB190F44-554A-4017-A76D-468DA556D4F4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{1D359896-3062-4DE4-9BC2-A06F48924C78}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F845E869-635D-40F1-B603-5A99B12882EA}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{8E3394C7-70EB-4721-B895-25A5BD1971A8}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8F6471FD-235E-46E7-ABFC-80547494A538}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{7283B6FF-FF46-44DF-A5D2-E9314E21B598}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [UDP Query User{36B63483-92F4-4DD0-B9AF-637D0F3AA6D8}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [{F14CF007-2951-45A1-B809-78FA657C12B6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CFD91A01-CB0A-4617-A0CF-1D19F7056210}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1280AD3F-BF6A-451B-A1A5-3555E17BFAA4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{C0B02515-A719-4B5B-8CD1-DEF3FB2551DF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{80FE36A0-124B-44B8-9B6E-FFE761B915ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> )
FirewallRules: [{53664E44-D101-430B-816C-FEEF51D5D29E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> )
FirewallRules: [TCP Query User{669AC062-561D-4ED3-B3BF-3776EBCC2DDA}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{75FC68A4-4E32-453C-8108-39CE86DFC6B0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{FE252FC2-572D-4E21-A1A9-615454FF0F08}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0F49FF25-A560-46DE-84AA-E03412CE40FA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{81DE8282-DF8A-41F2-8944-CC790C7F41F6}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{46FD15FC-947A-4432-A6E0-9D25B557BA57}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{6EB9D970-884E-4145-A840-109FD9FE6091}C:\mygames\warface my.com\bin64release\game.exe] => (Allow) C:\mygames\warface my.com\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [UDP Query User{9B4A1C15-72A9-4D02-AD68-8A164E8CDD89}C:\mygames\warface my.com\bin64release\game.exe] => (Allow) C:\mygames\warface my.com\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [TCP Query User{17F4BA2C-7DC0-4151-B4A9-EE9C16FA9C81}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{309E811E-350D-4F76-8A3F-2055C15122B5}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6671DAC9-AD5D-4174-97B7-B51BB2A847A0}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{711F1F23-7BC4-4D62-9448-89FFF4AAFAF8}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{EEFEEA54-AE20-4DAC-99E1-1055734D6273}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{09772786-487C-4754-A291-02F05E1355CA}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{97F4F68E-4C6D-44B1-968A-D25FC0532B05}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{974DE4CF-992F-461B-9805-5499A7A5ED69}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CE3C29BA-1918-44E0-B8F3-1DFE345FBC02}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{847F55F9-7368-40A6-99A9-7548EFC3338C}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{F3154B9B-841F-447D-9594-95DBF9FE77A8}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{C7576527-4244-4465-9724-A2F8A872CC7F}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [TCP Query User{EF0D1960-5D00-4B63-9D2C-E114DC5B1779}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [UDP Query User{821CA653-20AE-4D36-9FF2-5891F54AA52F}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [{F0720854-FB25-4A44-8BCC-EA1EBFA30AC8}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [TCP Query User{BDBF9CBD-9476-44CA-868D-A31FB9CE4D9C}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3A7C3F4A-6C24-4BD5-9AAB-F8019B9C5561}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{0E120EB6-EED7-44FA-87AB-C8545116AB69}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BD51759E-C567-4766-83E7-D80271F88E5B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{794A935D-81B1-44F5-9EBF-222468595CFB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{12335BD4-35D5-4418-8D27-1A87D89AF2AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{01F38659-1347-4437-BC87-200211BB3887}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [UDP Query User{3C77066C-BB71-483D-B12F-D56FA5C89D9C}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [TCP Query User{AD968C38-B141-4180-99DC-D1536DFA0BCE}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [UDP Query User{17A86D93-CA5D-4496-827F-4324B05A1A03}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [TCP Query User{83BBF8E4-9989-4822-B6DA-EAC2D32A4EAB}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [UDP Query User{EBFB962C-D7B6-45CD-9FA3-BD50755005CE}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [{3A652644-FE42-4EEE-897F-3877F70C019E}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{DD826B4E-73C6-4577-A9FA-7BAA891CB62D}] => (Allow) LPort=5357
FirewallRules: [{3C939866-7017-49C3-B4F3-FDF13C81457D}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{94DE92E8-5715-4E4B-9240-8657B8FE3524}] => (Allow) C:\MyGames\Revelation Online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [{9BAC5044-2471-4442-9626-231A932D0C6D}] => (Allow) C:\MyGames\Revelation Online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [TCP Query User{F71E68F5-D934-408D-9322-1BD77B6A82FD}C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe] => (Allow) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [UDP Query User{CACB564F-0232-48C1-AFB9-DF2845A4AFAA}C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe] => (Allow) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{3194D158-9C84-49B4-B9FB-F6E96F2600E8}] => (Block) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{CF3F06D2-28AB-45AC-A51F-963797A20D78}] => (Block) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [TCP Query User{413DD2F5-D10D-4678-9713-66E6041C8C20}C:\mygames\stay out\game\sogame.exe] => (Allow) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [UDP Query User{223D7BB0-9425-4DD5-9DE3-FC3FCBD10153}C:\mygames\stay out\game\sogame.exe] => (Allow) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [{0DAF7BD0-7E64-47A3-A993-96583CA1B006}] => (Block) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [{47284D3C-45E1-4E62-A4D7-22143FA7CAD0}] => (Block) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [{362407F1-8971-4575-AFDD-34E3F9064AE8}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7B403A29-68A4-44EF-ACF5-3567477A05D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{59CAD223-BFF8-4795-A2D6-7D62BFCB5CBA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DD872463-0E4C-4D8D-BE4F-503C9FF79722}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{05C5CE72-CAB5-4A84-84AB-3DA553F43FE6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{273C67E1-6720-4D15-9ACF-9C6A58679229}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{12AB6962-4590-4C09-9059-66E497EDB844}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1CE55AF3-8480-4A60-8C83-0AB7D44457C1}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{11BB6473-C16B-460F-BA76-8B058B6BA9EA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5C84200C-A40D-4F21-8D34-31C7ADAD0941}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{0029C7CC-A4C5-44DE-844F-99D6D7633541}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{299CDF76-4DFE-48EA-A8D8-C8D739C33A48}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CF42F9BB-1F41-4C97-BB8C-C5296B64ED34}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C0E9420-339F-45CF-B90B-6DA6C3EEB44F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EC87AD6A-771C-49E5-995B-799AAE7A7103}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F8240EF7-1F8C-4ACF-9919-5CAE9B93D7A7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E6430317-7B0C-4255-9400-43195D322865}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B03F231A-0A29-409A-8A9D-46201671F206}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2EFCB821-995F-45B2-B48C-252F97E59497}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{308684F7-486E-4A3B-A8B4-AC1EE506933B}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{4867434F-CA60-4A31-8641-7CADC2BEA00C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{1FE0E71B-2037-46F5-B487-F534F7BBB575}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{7A8405E5-B055-481B-A0E3-8159648FD0C7}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{74F0D727-D080-41CC-88E8-D2BEFE4B8617}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{994DDDEA-2AC4-493D-A53B-37573247580E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian2\Bin\GuJian2.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon INFO&TEC (Shanghai)CO.,LTD)
FirewallRules: [{91A17B3D-E5C4-462B-997C-B9B3E62181EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian2\Bin\GuJian2.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon INFO&TEC (Shanghai)CO.,LTD)
FirewallRules: [{7D918867-A1F5-49AE-876E-076B2C1D88AA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F89D1AA7-EFD8-432F-BC57-7EA180A283C3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F19D289A-9677-4C37-AC3E-277E37D6B197}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{DCAA031D-17DC-4F2A-BEBF-567A45DB4476}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{7EBBC524-9517-4D16-B92D-A7557DED8905}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{75830466-ED95-40FF-B45E-C28577554F99}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5435CB93-E6F4-48EE-8753-11E0059838A0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0F295E3A-02D6-4FCB-8098-CE9EE0AC930A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{09014B1F-2347-4EED-9B88-8D8BF8233278}] => (Allow) C:\Program Files (x86)\OSTotoSoft\DriverTalent\DriverTalent.exe (Shenzhen DriveTheLife Software Technology Co.Ltd -> OSToto Co., Ltd.)
FirewallRules: [{C3E84C2F-3D12-4DD7-B226-383888588E86}] => (Allow) C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll (OSTOTO CO. LIMITED -> )
FirewallRules: [{929B470B-B0EF-4AFA-AD83-B99C74BADEC6}] => (Allow) C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{43720314-68F3-415C-A57C-31EA53119F17}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B3AF17CD-B261-4E81-B1D8-106DC380344C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3989C081-7C82-4714-8C0A-46820CEB851F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJianConfigTool.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon Info & Tec(ShangHai)Co.,LTD)
FirewallRules: [{A9F14DB3-63F2-4606-BF7F-95A03E61C888}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJianConfigTool.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon Info & Tec(ShangHai)Co.,LTD)
FirewallRules: [{F9EB72E5-4D06-4490-9B87-C927033A3DF5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\PAL4.exe (SOFTSTAR Technology CO.,LTD) [File not signed]
FirewallRules: [{6AB232AE-6414-41FF-8118-7330785EE84C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\PAL4.exe (SOFTSTAR Technology CO.,LTD) [File not signed]
FirewallRules: [{99B3DC84-B3B2-4EF9-9D38-F2903B2B9D3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\Config.exe (大宇资讯软星科技（上海）有限公司) [File not signed]
FirewallRules: [{E61CA961-65E5-49AD-B47C-3314B6570AC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\Config.exe (大宇资讯软星科技（上海）有限公司) [File not signed]
FirewallRules: [{28BF32E8-9AC6-4D57-9A47-49047413159D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B86C5AC6-A618-459E-8582-389EC526C2D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh!  Master Duel\masterduel.exe () [File not signed]
FirewallRules: [{D1DD7DBF-8779-435C-AE79-0AF53E97EDD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh!  Master Duel\masterduel.exe () [File not signed]
FirewallRules: [{D0670702-38D1-42CF-8BE3-903A97231F0A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C00DB6C1-3A28-455F-A243-E181CC661CD7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0FFFFB13-D5CD-441E-8052-95535EFB69FB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{033A2E20-47C5-446F-A28C-3ACEA4E141AE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{855F9156-013B-46F3-86B8-155DBF0C1F2D}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{DD445A29-9AAA-42FC-A4F0-E2D2619B87F0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A7D39FCB-51E8-4BCE-AC1D-51BEA6D2D19E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5AC30FDA-1D74-4E27-8402-4017DE7D8970}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{CFD7ACEB-D7DE-47CC-82C3-C73CB49C5175}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{25649013-2D1C-4A7A-A7C0-56AB7C9AC521}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8352D413-18DC-4D50-96C7-DAB2BAC841EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY IX\FF9_Launcher.exe () [File not signed]
FirewallRules: [{C18D3DCF-ADFB-413C-9B07-40926A29DB6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY IX\FF9_Launcher.exe () [File not signed]
FirewallRules: [{E5837BB4-451B-4A9A-A334-9198B993386D}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9A8907E8-14AC-4A95-BB0B-DB89F5A24EE7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E614B05C-329C-49CC-899B-875FDA6DBB3D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{10516FBF-5AB3-42BC-B995-A99680DA775A}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{4AC33DFB-5C37-492F-9CA5-409A1953BC72}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D67F452D-AE0F-479C-A230-16285169B0C2}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{3A145F18-9C72-4AAF-9A86-32A863847194}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{44BE326E-167B-416C-A9E3-18A6136BFB4E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D5594FE1-4EB7-449F-A70F-828962FAD7D5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F6F0FDBD-21BC-48F4-851D-8EDD450FC42A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{66951326-CE5E-4BDA-9AB5-FA2F363875E9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3CC9648D-F6B3-4A59-9316-D543E07EBBC4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8F67F3E4-DCA5-4818-8EBF-348DBA75148B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F7A5EF40-6A06-4665-81C0-340492B15B7D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B7A55102-1050-4E82-AD50-0B89D7286D93}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D61C520F-5697-4575-95A5-040F0BA25BEE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B5AC4795-3C23-4E01-91AC-A4D24B8F5ACB}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9B0EE4BE-C1B5-4E49-B301-A2AE84253A4B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{75B0D6A8-0704-4641-933B-4DF01D43E155}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB911326-6377-46D9-9F8F-06F8B640AF4F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FA77D88F-76E3-4072-9585-B6064F597AEB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C9B3B31-6E77-4533-BBCB-FBB4D644AAF0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{232EF58B-46D1-41C2-8303-00EB06D6EE9A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C6CACF9A-B93F-4177-858F-550AF4C93439}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3610C645-FFDB-4CF4-8234-B69C079AF57C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4240D31A-D62A-4844-A6B3-733A5CE7D794}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D581D07B-16BB-47E1-9BB6-654C801223CC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2E317017-3D1D-4858-8F4D-0049D14685AE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{63839B54-A97C-4609-841B-F99A71406A69}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7AA9CE0D-38E4-466C-B7C1-7BBEBEC062D8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{02093C16-0990-44F0-9931-C5661EF52595}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FE86009E-4B07-4587-8240-567E573AF001}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{20CCD5B4-FBB3-43DF-89AD-C8C2D710EC0E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BBD48AE6-E93A-48D9-B17D-04EDA90BC8E5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{834FF64E-4B84-434A-A9BA-43CEA26196D6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{39DC28E8-60B2-4ADD-AA10-521CD8AE86C6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E5F1651E-6EF8-43BA-BD84-F9CC400B9E4D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{79870E24-D7DF-4EA2-8DDF-6C8C516636CA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{69E4709A-408F-4750-A59B-C03B0BAE3E84}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{50E233A7-063B-4BAD-99C4-BD447E278B52}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9DB783A9-D8A1-4807-972D-A504D168B717}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D2C950BD-D8C1-445C-855C-A52B9983D431}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A3971CB5-7CBC-4032-9501-B603443F13AF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B013E9FE-6003-4E59-8FEE-DAF7C5536416}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{49B4D72E-5642-4931-B6EA-E2CBCE9278F8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0FF50793-B074-47EC-9729-9ACB7D9EE52F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D2786C70-2328-4F8E-A162-AB0378C7EF7B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CD8A5943-FE39-4373-963B-04848E10CACE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFCBEBAC-BA4E-4E5D-81C5-9DED05ACA576}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJian.exe (北京网元圣唐娱乐科技有限公司 -> 上海烛龙信息科技有限公司)
FirewallRules: [{76C83C19-FECF-4DD1-8D7E-7C15E1EB2BD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJian.exe (北京网元圣唐娱乐科技有限公司 -> 上海烛龙信息科技有限公司)
FirewallRules: [{5052F1CF-A0EB-44E3-8CE6-D73F2166747F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2AF8270A-45D0-43E3-A59C-A017C9E51064}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{85F9E84E-B7A7-4CEB-B900-DBA857736BBA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B8518F49-E380-4B60-BAD2-8397DF67C73E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E46A1263-E6B6-4E13-9A28-ED579E4942B0}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{62B1F48A-8AE8-41F8-8B1F-52F74C186F9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HonkaiImpact3rd\BH3.exe (miHoYo Co.,Ltd. -> )
FirewallRules: [{51EE1B23-06C9-41B2-AC54-8F646EB16DDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HonkaiImpact3rd\BH3.exe (miHoYo Co.,Ltd. -> )
FirewallRules: [{901B203A-8629-4CE3-B023-C7283130E9C8}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{F484F8B2-C362-4CF4-B4B0-D5DAB6DB24C6}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{34B3A55E-F564-4BF5-A26B-2F291581FCA7}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{01EE7C5B-DE81-4CDD-BED7-6F34AD6224C8}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{49D8669E-1E14-4E1F-8E9F-F5DD83BDFCAD}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{F576CBA6-7B83-4A8B-B275-D291FC3AB7E1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFA769CA-A5FF-440B-AEBE-B72A1449DEAD}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{78E34C6A-77E8-4EB9-B5F9-C469A2123823}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DD157DF3-8F93-4B92-A50C-7BFDD089CDB8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1D74061E-EC75-4EEB-94BD-A7E084D91EC4}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{CF9361C2-A73F-4336-B3A3-399BEFF6E392}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0FCBEEDB-DF43-4AA3-AE09-FB0B107B5BDB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{07A4B68D-FB31-4223-A103-D2D3DE9F0EA2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0E00A5BE-282C-42DB-B1CC-4034F50736F5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{02196FA6-78CF-43C0-839E-2608E75DB1DC}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D6BD2EBA-065F-4514-934C-56010EF51B85}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A0DF27A7-A70C-473E-B178-FBD32FFAA3AB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{52BCBDAD-1896-408F-8264-FA4EBB73F080}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F00ED9AE-8152-47A0-BA21-329A53E46C15}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9B213ECA-3F48-49B9-B78B-F3E84C200903}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{91360172-3AEF-4696-8692-9F4638A77FEA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2BDF9ABD-439E-496C-AEFA-16F5C2011644}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FA1F7332-F889-4A1F-BA39-49F50094B8D3}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{00D67BE5-B9FC-4D0A-A294-939A57C3640F}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A4632786-52AC-4B28-B761-E9B00F4FB785}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69364804-8319-4D55-A0FF-44A7719C5BC2}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/25/2022 05:25:40 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9992,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 05:15:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17984,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 05:05:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (21612,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 04:55:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (20836,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 04:44:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (22428,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 04:38:43 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (10/25/2022 04:35:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7240,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 04:25:01 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16800,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (10/25/2022 03:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The IMF Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/25/2022 12:57:21 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (10/25/2022 12:51:20 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.

Error: (10/25/2022 12:50:49 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.

Error: (10/24/2022 11:52:40 PM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: The activation of the CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} timed out waiting for the service wuauserv to stop.

Error: (10/24/2022 10:27:58 PM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: The activation of the CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} timed out waiting for the service wuauserv to stop.

Error: (10/24/2022 10:23:57 PM) (Source: DCOM) (EventID: 10029) (User: RAY)
Description: The activation of the CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} timed out waiting for the service wuauserv to stop.

Error: (10/24/2022 09:55:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.


Windows Defender:
================
Date: 2022-09-29 19:23:34.476
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-09-23 02:33:50.236
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-07-12 21:04:47.732
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
[URL unfurl="true"]https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0[/URL]
Name: Misleading:Win32/Lodi
Severity: High
Category: Potentially Unwanted Software
Path: file:_C:\Users\Administrator\Downloads\smart-defrag-setup.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\IObit\IObit Uninstaller\PPUninstaller.exe
Security intelligence Version: AV: 1.369.1040.0, AS: 1.369.1040.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.19300.2, NIS: 0.0.0.0

Date: 2022-07-12 20:35:31.981
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
[URL unfurl="true"]https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0[/URL]
Name: Misleading:Win32/Lodi
Severity: High
Category: Potentially Unwanted Software
Path: file:_C:\Users\Administrator\Downloads\smart-defrag-setup.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\IObit\IObit Uninstaller\PPUninstaller.exe
Security intelligence Version: AV: 1.369.1040.0, AS: 1.369.1040.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.19300.2, NIS: 0.0.0.0

Date: 2022-07-12 20:34:32.758
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
[URL unfurl="true"]https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0[/URL]
Name: Misleading:Win32/Lodi
Severity: High
Category: Potentially Unwanted Software
Path: file:_C:\Users\Administrator\Downloads\smart-defrag-setup.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\IObit\IObit Uninstaller\PPUninstaller.exe
Security intelligence Version: AV: 1.369.1040.0, AS: 1.369.1040.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.19300.2, NIS: 0.0.0.0
Event[0]:

Date: 2022-09-29 19:17:19.661
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

Date: 2022-09-29 19:17:19.647
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

Date: 2022-09-29 19:17:19.623
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

Date: 2022-09-29 19:13:39.747
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80072efd
Error description: A connection with the server could not be established

Date: 2022-09-29 18:57:48.063
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

==================== Memory info ===========================

BIOS: INSYDE Corp. 5.20 01/11/2016
Motherboard: FF50 06F2
Processor: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Percentage of memory in use: 51%
Total physical RAM: 16298.14 MB
Available physical RAM: 7884.9 MB
Total Virtual: 39284.54 MB
Available Virtual: 15158.86 MB

==================== Drives ================================

Drive c: (TIH0070100A local disk) (Fixed) (Total:1848.83 GB) (Free:1252.35 GB) (Model: ST2000LM003 HN-M201RAD) NTFS

\\?\Volume{8260deca-8233-4f00-97c1-59189c024e61}\ (WinRE) (Fixed) (Total:1.56 GB) (Free:1.02 GB) NTFS
\\?\Volume{76cfe2cf-1f5c-4d69-bb83-881f61eae98a}\ (HDDR) (Fixed) (Total:12.33 GB) (Free:0.97 GB) FAT32
\\?\Volume{0471ba66-9d83-479c-be4b-ae7defba75d5}\ (ESP) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

 

[Waves Rayneth]

Kinda doubled entry, Apolgise

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-10-2022
Ran by Administrator (25-10-2022 17:44:21)
Running from C:\Users\Administrator\Downloads
Microsoft Windows 10 Pro Version 1909 18363.1556 (X64) (2020-01-03 15:13:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3366790378-2559649480-2858292162-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-3366790378-2559649480-2858292162-503 - Limited - Disabled)
Guest (S-1-5-21-3366790378-2559649480-2858292162-501 - Limited - Disabled)
Ollie (S-1-5-21-3366790378-2559649480-2858292162-1001 - Limited - Enabled) => C:\Users\Ollie
WDAGUtilityAccount (S-1-5-21-3366790378-2559649480-2858292162-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: IObit Malware Fighter (Enabled - Up to date) {72254378-B0F2-858E-E23B-921FCAC3D529}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 22.003.20258 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.453 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 16.0.1 - IObit)
Apple Application Support (32-bit) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C29B636B-9015-4ED1-A12F-6375A337F23B}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Audacity 3.2.1 (HKLM-x32\...\Audacity_is1) (Version: 3.2.1 - Audacity Team)
Aura Kingdom (HKLM-x32\...\Aura Kingdom) (Version:  - )
Avast AntiTrack Premium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 3.2.740.996 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 22.3.12193.8260 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 22.3.2757.10724 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 106.0.18743.103 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
Azure AD Authentication Connected Service (HKLM-x32\...\{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.)
Bluetooth(R) Link (HKLM\...\{936D21BF-3344-4B20-BC4C-3B67580C19F5}) (Version: 4.3.04 - Toshiba Corporation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 99.1.36.116 - Brave Software Inc)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.43.53 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.259.0 - Conexant Systems)
Content Manager Assistant for PlayStation(R) (HKLM-x32\...\{C0115E87-E731-48DC-B258-DB2AD494DC80}) (Version: 3.56.7933.1204 - Sony Interactive Entertainment Inc.)
CopyTrans Control Center Uninstall Only (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\CopyTrans Suite) (Version: 4.200 - WindSolutions)
Discord (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.)
Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32\...\{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden
Driver Easy 5.7.3 (HKLM\...\DriverEasy_is1) (Version: 5.7.3 - Easeware)
Driver Talent (HKLM-x32\...\{29FE44D7-BC89-4188-8B0E-F6BA073C15A5}_is1) (Version: 8.0.9.52 - OSToto Co., Ltd.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 160.3.4670 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.639.1 - Dropbox, Inc.) Hidden
DTS Sound (HKLM-x32\...\{793B70D2-41E9-46AB-9DDC-B34C99D07DB5}) (Version: 1.02.4100 - DTS, Inc.)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
ELAN Touchpad 15.8.12.5_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.12.5 - ELAN Microelectronic Corp.)
FileZilla Client 3.54.1 (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\FileZilla Client) (Version: 3.54.1 - Tim Kosse)
FLV to AVI Video Converter v. 1.2 (HKLM-x32\...\FLV to AVI Video Converter_is1) (Version:  - FDRLab.com)
GameInput Redistributable (HKLM-x32\...\{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Version: 10.1.19041.3906 - Microsoft Corporation)
Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.15.4.0 - miHoYo Co.,Ltd)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 106.0.5249.119 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 65.0.4.0 - Google LLC)
HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.30.326 - SurfRight B.V.)
HP DeskJet 3700 series Basic Device Software (HKLM\...\{307EE3A5-A788-4D01-B615-ABAA728DFB57}) (Version: 40.12.1161.1896 - HP Inc.)
HP DeskJet 3700 series Help (HKLM-x32\...\{9D10BAEF-4767-46EC-8A40-A6E75D84432C}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{D12BC084-97D6-438A-AA7C-5962608D17A0}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{BFA42100-DB54-467A-BB87-CF70732B4065}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.13.125.1 - Intel Security)
Intel(R) Chipset Device Software (HKLM\...\{8C91A5EB-2C62-4A6D-8802-CC79FD2ED390}) (Version: 10.1.1.7 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1163 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{A5536A08-5A7F-4330-8947-0372B500A3BD}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{C6C06C9F-B452-4C7A-AB83-F5931AB9B372}) (Version: 11.0.0.1163 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{94BC10B9-159A-44E8-BEA1-34BF765FEA58}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4268 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{205AE40D-8AD7-4F29-A430-DD2168DA562D}) (Version: 14.5.0.1081 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{C1DD4078-51FD-42CC-91DA-AD4369D5F973}) (Version: 6.0.57.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{C7D64C31-3F1E-4205-87A5-B61AAE55E64B}) (Version: 3.4.1942 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{C345A462-2044-47D6-81F6-A4416453A514}) (Version: 17.1.1529.1613 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden
Intel® RealSense™ SDK 2014 Runtime  (x64): Core (HKLM\...\{37D41A97-6B02-4C30-8753-85107BE1D674}) (Version: 3.1.0.25181 - Intel Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{7D84E343-A23D-451C-B123-0195B2D903A6}) (Version: 1.42.17.0 - Intel Corporation) Hidden
IObit Malware Fighter 9 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 9.3.0.744 - IObit)
IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 5.0.0.8 - IObit)
Iobit Software Updater 4.4 (HKLM-x32\...\Iobit Software Updater 4.4) (Version: 4.4 - Company)
IObit Uninstaller 12 (HKLM-x32\...\IObitUninstall) (Version: 12.0.0.10 - IObit)
iTop Screen Recorder (HKLM-x32\...\iTop Screen Recorder_is1) (Version: 3.2.0.1168 - iTop Inc.)
iTop VPN (HKLM-x32\...\iTop VPN_is1) (Version: 4.1.0.3710 - iTop Inc.)
Kamo (HKLM-x32\...\Kamo) (Version: 4.3.605.1134 - Piriform)
Krita (x64) 5.1.1 (HKLM\...\Krita_x64) (Version: 5.1.1.101 - Krita Foundation)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Left to Survive (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Left to Survive) (Version: 1.80 - MY.GAMES)
Logitech Gaming Software (HKLM\...\{690285C2-2481-44FB-8402-162EA970A6DD}) (Version: 8.30.28 - Logitech Inc.) Hidden
Logitech Options (HKLM\...\LogiOptions) (Version:  - Logitech)
Malwarebytes Privacy version 2.9.0.563 (HKLM\...\{934873BE-C9BC-4F19-B698-9B3E3F8FF07F}_is1) (Version: 2.9.0.563 - Malwarebytes)
Malwarebytes Privacy VPN Tunnel Driver (HKLM\...\{FEE4A372-663C-47A0-BD08-A6C34320DC52}) (Version: 1.0.0.0 - Malwarebytes)
Malwarebytes version 4.5.16.217 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.16.217 - Malwarebytes)
Messenger (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 160.0.394240794 - Facebook, Inc.)
Microsoft .NET Core 5.0 SDK (HKLM-x32\...\{E092A9F3-15AE-46B4-9A25-6C25F7F44795}) (Version: 1.0.23902 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU) (HKLM-x32\...\{A223B446-EC3D-3031-828D-5188800AB782}) (Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (HKLM-x32\...\{976C3D92-0DEC-37A6-A870-FF4FC18CD029}) (Version: 4.5.21005 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Developer Pack (HKLM-x32\...\{463d5540-8dfd-4eef-92e5-b729b3b73cfb}) (Version: 4.6.1055 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.15629.20208 - Microsoft Corporation)
Microsoft Agents for Visual Studio 2015 Preview - ENU (HKLM-x32\...\{B57097EF-5F38-348C-8081-4D0F0B78757E}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
Microsoft Agents for Visual Studio 2015 Preview (HKLM-x32\...\{CE37CE67-2660-30EE-805B-78829CC3554B}) (Version: 14.0.23102 - Microsoft Corporation) Hidden
Microsoft Azure Mobile Services Connected Service (HKLM-x32\...\{107518BF-43A3-4CB6-B571-9C5A241F9586}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Azure Mobile Services SDK V2.0 (HKLM-x32\...\{A00EC54A-CE16-4CF6-A14A-5CF81A1FE03F}) (Version: 2.0.20908.0 - Microsoft Corporation) Hidden
Microsoft Azure Mobile Services Tools for Visual Studio - v1.4 (HKLM-x32\...\{5536AAD4-740A-4577-843D-4281D3F30726}) (Version: 1.4.30611.1601 - Microsoft Corporation) Hidden
Microsoft Azure Shared Components for Visual Studio 2015 - v1.8 (HKLM-x32\...\{F02B1BAC-94DA-46FB-B27B-7287FC0EF481}) (Version: 1.8.40521.1 - Microsoft Corporation) Hidden
Microsoft Azure Storage Connected Service (HKLM-x32\...\{8F15E32A-FAD1-49E3-9378-C8EE0530E192}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools 14.0 (amd64) (HKLM\...\{79750C81-714E-45F2-B5DE-42DEF00687B8}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools 14.0 (x86) (HKLM-x32\...\{6BF8837D-67E1-4359-89FB-C08BFD6F2138}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools Language Resources 14.0 (amd64) (HKLM\...\{34BFF66C-9A7E-4778-8A9F-1DA1F0F4C22E}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Build Tools Language Resources 14.0 (x86) (HKLM-x32\...\{5127B392-8820-4822-A21F-1CB78C2E25AD}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Expression Blend SDK for .NET 4 (HKLM-x32\...\{9B3A1C97-A361-463E-8817-444F9F88CDFE}) (Version: 2.0.20525.0 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.2 (HKLM-x32\...\{4740889B-2D03-3A6F-BC42-07C8AFDF3B2E}) (Version: 2.2.25420 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation)
Microsoft NuGet - Visual Studio 2015 (HKLM-x32\...\{2D170B66-A905-385C-93E0-20A47812B777}) (Version: 3.4.4.1321 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}) (Version:  - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Excel MUI (English) 2007 (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (HKLM-x32\...\{90120000-002C-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version:  - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}) (Version:  - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}) (Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (HKLM\...\{90120000-002A-0409-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (HKLM\...\{90120000-0116-0409-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (HKLM-x32\...\{90120000-0115-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\OneDriveSetup.exe) (Version: 22.196.0918.0001 - Microsoft Corporation)
Microsoft Portable Library Multi-Targeting Pack (HKLM-x32\...\{1634C655-2398-35C0-89BE-291449A72F88}) (Version: 14.0.25123.00 - Microsoft Corporation) Hidden
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu (HKLM-x32\...\{B01EE326-AFD3-30C9-804A-CBC36CBD4922}) (Version: 14.0.25420.01 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{B5664346-4402-4834-81BE-9687BF653BA2}) (Version: 3.26.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Debug Runtime - 14.0.24210 (HKLM\...\{D94D812C-B20F-3DB9-82D2-A57AC2CAF9CA}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Debug Runtime - 14.0.24210 (HKLM-x32\...\{2509566A-3416-3B50-B2FC-F7A0254C24CE}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2015 Devenv (HKLM-x32\...\{FC1F3422-0C94-3178-AD95-3EA889DF55AF}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Devenv Resources (HKLM-x32\...\{173D2989-6B09-3A90-8819-A53E43F99818}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Diagnostic Tools - amd64 (HKLM\...\{62D2E847-606F-49FB-A38B-F9D5AA936331}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Performance Collection Tools - ENU (HKLM\...\{3AE40040-2F48-4617-9228-49E999738BDB}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Performance Collection Tools (HKLM\...\{FCC6E820-B5DB-454E-96E3-B6182DDEEC8D}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Preparation (HKLM-x32\...\{919C67A9-2DE8-4929-A910-CB85E009B5CB}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Preparation (HKLM-x32\...\{93A31A4A-197C-43F0-9687-7FFC47C33D44}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Preparation (HKLM-x32\...\{9E99CC49-D305-4D42-AC34-6C732062B142}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Profiling Tools (HKLM-x32\...\{4AD3777F-D26B-4FCD-8823-B1D9784141C6}) (Version: 14.0.25123 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 SDK - ENU (HKLM-x32\...\{67A74EC1-A89D-3553-B38D-D17D4991CD2F}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Shell (Minimum) (HKLM-x32\...\{030A6785-C3A9-37DA-8530-444C320629FA}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Shell (Minimum) Interop Assemblies (HKLM-x32\...\{166EEF5C-F996-390E-91F6-DD6DFD008E9B}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Shell (Minimum) Resources (HKLM-x32\...\{7FF53256-7BAF-3EFA-91B4-DB65F37EB5E9}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Test Tools Language Pack - ENU (HKLM-x32\...\{E41854EE-D8A6-4E03-B42D-E0006C24A306}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 CTP1 Team Explorer Language Pack - ENU (HKLM-x32\...\{FFA8B646-066E-34A4-8168-C410DAFA631F}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - amd64 (HKLM\...\{9253C880-B8D2-4A37-AE3C-9DC597A2F866}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - amd64 (HKLM\...\{BCAC059C-E06C-4D45-928A-A69061678ECA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - ENU (HKLM-x32\...\{0DC92391-4C2B-4C35-A674-EBDEE5ABB375}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - x86 (HKLM-x32\...\{35B1EDF3-63B5-4908-989D-6F62DBA02C58}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - x86 (HKLM-x32\...\{7DFB810E-B924-4DAD-975A-E07F58153727}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Diagnostic Tools - x86 (HKLM-x32\...\{DFFDC6DF-D4F8-4A4C-AC63-136996ADAFAD}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Update 3 Performance Debugger Web Views (HKLM-x32\...\{A5C0F000-F324-46D3-BBD9-5F6AD1886B12}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 VsGraphics Helper Dependencies (HKLM\...\{599702AA-91EB-38C1-B994-CDE35C57E007}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Windows Diagnostic Tools - ENU (HKLM-x32\...\{AB5A27F1-57C7-4E4C-90C4-28E55272FD6F}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 Windows Diagnostic Tools (HKLM-x32\...\{D67494E9-AA13-403B-A3BE-C26C399EEA4A}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Application Timeline - ENU (HKLM-x32\...\{C3C024EC-B097-43BE-9BFC-E3D10EF45510}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Application Timeline (HKLM-x32\...\{A04247F5-CEE1-4521-87FD-90DA04C800A1}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Visual Diagnostics - ENU (HKLM-x32\...\{8BD56634-6B9E-4CDA-8857-C73F20F57907}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2015 XAML Visual Diagnostics (HKLM-x32\...\{6906ABB6-435A-4F7A-B94A-A057121DA285}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation)
Microsoft Visual Studio Connected Services (HKLM-x32\...\{76722C36-3BF4-4326-9ADF-A56ABA50AA9F}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Visual Studio Services Hub (HKLM-x32\...\{79B9B6C9-3FAF-4F50-96A9-C1651EA0DD31}) (Version: 1.0.25420.01 - Microsoft Corporation) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Office Integration (x64) (HKLM\...\{647DB777-6309-3551-9262-6B9CDB97635B}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Office Integration Language Pack (x64) - ENU (HKLM\...\{F04AB121-B3E1-39FE-8A5E-EF8484210107}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Storyboarding (x64) (HKLM\...\{4E27A682-5F47-3B82-AF7C-90218C7078C3}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft Visual Studio Team Foundation Server 2015 Update 3 CTP1 Storyboarding Language Pack (x64) - ENU (HKLM\...\{B97772BE-2F7E-3F09-93B4-D1C9E196018A}) (Version: 14.98.25331 - Microsoft) Hidden
Microsoft VisualStudio JavaScript Language Service (HKLM-x32\...\{D7DF0F16-53C8-4AAB-8D54-78F16218419A}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft VisualStudio JavaScript Project System (HKLM-x32\...\{5080852D-31F3-49D3-B6F3-7FEC8C339A03}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft.VisualStudio_Office365 (HKLM-x32\...\{3196EC29-B75D-4EE3-8AB0-46418BC31483}) (Version: 1.6.2.0 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 106.0.1 (x64 en-US)) (Version: 106.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 105.0.1 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
MY.GAMES GameCenter (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\GameCenter) (Version: 4.1542 - MY.COM B.V.)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.10 (HKLM-x32\...\{D909483F-780E-4232-9313-4C24A1B09BE8}) (Version: 4.110.9807 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.155.0.10 - Overwolf Ltd.)
PaintTool SAI Ver.1 (HKLM-x32\...\PaintToolSAI) (Version:  - )
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Product Improvement Study for HP DeskJet 3700 series (HKLM\...\{826144A0-42A2-40D3-A49B-129979BA2B0C}) (Version: 40.12.1161.1896 - HP Inc.)
Qcma (HKLM\...\Qcma) (Version: 0.4.1 - codestation)
Quantum Legacy (HKLM-x32\...\{24EBDD34-E08C-485B-8071-4DA36ABA862F}) (Version: 0.3.0 - )
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.2004.84 - Trusteer) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10130.29089 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Replay HUD (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Overwolf_hffhbjnafafjnehejohpkfhjdenpifhihebpkhni) (Version: 145.0.0 - Overwolf app)
Revelation Online (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Revelation Online) (Version: 1.239 - MY.GAMES)
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{7138CC92-123A-393F-BC30-B784794DF4E7}) (Version: 14.0.25421 - Microsoft Corporation) Hidden
Shark007 STANDARD Codecs (HKLM-x32\...\{898E81AD-6DB9-4750-866B-B8958C5DC7AA}) (Version: 9.9.2 - Shark007)
Shark007 STANDARD x64Components (HKLM\...\STANDARD x64Components_is1) (Version: 9.9.2 - Shark007)
Skyforge MyCom (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Skyforge MyCom) (Version: 1.384 - MY.GAMES)
Skype version 8.89 (HKLM-x32\...\Skype_is1) (Version: 8.89 - Skype Technologies S.A.)
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.)
Smart Defrag 8 (HKLM-x32\...\Smart Defrag_is1) (Version: 8.1.0.159 - IObit)
Spotify (HKLM-x32\...\Spotify) (Version: 1.0.5.186.ga9c24d6a - Spotify AB)
Spotify (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Spotify) (Version: 1.1.62.583.gdac868ed - Spotify AB)
Spotify (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\Spotify) (Version: 1.1.96.785.g464c973a - Spotify AB)
Stay Out (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Stay Out) (Version: 1.21 - Mobile Technologies LLC)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SuperNova Player (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\TacticsTechnologySuperNova) (Version:  - )
Surfshark (HKLM-x32\...\{48FB5A6D-1D17-45BE-9F41-AA59765AC70A}) (Version: 4.2.2999 - Surfshark) Hidden
Surfshark (HKLM-x32\...\Surfshark 4.2.2999) (Version: 4.2.2999 - Surfshark)
Surfshark TAP Driver Windows (HKLM-x32\...\{A270BA60-BE4B-44CE-A208-1028297B65C1}) (Version: 1.0.1 - Surfshark)
Surfshark TAP Driver Windows (HKLM-x32\...\{D416A6E6-F990-42CF-A790-8F9179762F34}) (Version: 1.0.1 - Surfshark)
Surfshark TUN Driver Windows (HKLM\...\{72639F74-7F85-40B8-98B8-9CB339BC701A}) (Version: 1.0 - Surfshark)
Symbaloo (HKLM-x32\...\Symbaloo) (Version: 1.1.0 - Symbaloo Launcher by Toshiba Europe GmbH)
System Checkup (HKLM-x32\...\{78B3977C-FE07-4D6C-8ECB-614482F24494}) (Version: 5.0.3.226 - iolo technologies, LLC) <==== ATTENTION
Team Explorer for Microsoft Visual Studio 2015 Update 3 CTP1 (HKLM-x32\...\{C0402801-37B7-30B1-A678-AE3E73E4C4F6}) (Version: 14.98.25331 - Microsoft) Hidden
Telegram Desktop (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.2.4 - Telegram FZ-LLC)
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Tools for .Net 3.5 (HKLM-x32\...\{1690CE56-2231-4E59-9006-A0876D949EA8}) (Version: 3.11.50727 - Microsoft Corporation) Hidden
TOSHIBA Audio Enhancement (HKLM\...\{1515F5E3-29EA-4CD1-A981-032D88880F09}) (Version: 3.0.3.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.0.1.6403 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.20 - TOSHIBA)
TOSHIBA Password Utility (HKLM\...\{26BB68BB-CF93-4A12-BC6D-A3B6F53AC8D9}) (Version: 8.1.1.0 - Toshiba Corporation) Hidden
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{26BB68BB-CF93-4A12-BC6D-A3B6F53AC8D9}) (Version: 8.1.1.0 - Toshiba Corporation)
TOSHIBA PC Diagnostic Tool (HKLM-x32\...\InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}) (Version: 3.2.15 - TOSHIBA Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{B507386D-1F61-4E55-B05B-F56ACB0086B3}) (Version: 5.01.03.6403 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.3.00.8003 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{1404E6C5-5E3A-48D5-BE44-8C63CFB2A7C9}) (Version: 3.1.2.0 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 2.00.0005 - Toshiba Corporation)
TOSHIBA System Settings (HKLM\...\{B040D5C9-C9AA-430A-A44E-696656012E61}) (Version: 3.0.6.6401 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{E4C7D9D7-19D4-4623-AF0C-EA313C466411}) (Version: 5.0.0 - Toshiba Europe GmbH)
TOSHIBA Web Camera Application (HKLM-x32\...\{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.3.38 - TOSHIBA Corporation) Hidden
TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.3.38 - TOSHIBA Corporation)
Trusteer Endpoint Protection (HKLM-x32\...\Rapport_msi) (Version: 3.5.2004.84 - Trusteer)
Twitch (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Overwolf_oepmnephgakhodlemnladfmcnhfhbfdnbgolmcok) (Version: 1.21.1 - Overwolf app)
TypeScript Power Tool (HKLM-x32\...\{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{BDB33BE7-73D0-4C02-A576-78FD17C95A8D}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
Unity (HKLM-x32\...\Unity) (Version: 5.3.5f1 - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B652B695-C849-4EF2-B09A-72771C7AD2BA}) (Version: 2.71.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
VideoCapture (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Overwolf_lnhebboianabbebhnpoodokcdcnmikacoeijpjfe) (Version: 1.0.0.0 - Overwolf app)
Visual C++ Compiler/Tools X86 Base Package (HKLM-x32\...\{7BC93EE9-44F1-3783-AD76-F6BD6C8F6B58}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ Compiler/Tools X86 Base Package (HKLM-x32\...\{BFEC9D45-BAD4-3D7C-B6A7-887D21E6C25A}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ Compiler/Tools X86 Base Resource Package (HKLM-x32\...\{62505F19-7D2A-3FD0-B1A2-D8E2FA2F96B3}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ Compiler/Tools X86 Base Resource Package (HKLM-x32\...\{85658238-483F-3148-967E-ECD533AE6FE7}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ IDE Base Package (HKLM-x32\...\{0A002F88-FD5D-379B-A350-A25D84AF128B}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Base Resource Package (HKLM-x32\...\{A3CF57ED-FFD1-3AC4-B9D7-90069B2B5EDA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Base Resource Package (HKLM-x32\...\{DC3240BB-9136-3978-8EF3-F041ACEA11BF}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Common Package (HKLM-x32\...\{BD5A23D6-1E9F-3378-89CF-E96908078D53}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Common Resource Package (HKLM-x32\...\{EFE03B21-A8A5-3CCD-81BD-7FC47007F1BA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Package (HKLM-x32\...\{01AC157E-26F2-393E-8B91-3FEBD41A4E5D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{0FDFB80D-91E1-36F1-B523-0B90421FDDC1}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{1D958A62-C980-3CB7-AC59-40EF0D1FA80E}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{1DC85000-B0F8-325F-AD01-2770D36517D5}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{2FEE4EBD-CEB0-3E26-9405-CF0D812CFA3C}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{33DA2215-AF20-3F21-A171-57F0533A5CAF}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{43027679-FD40-32E6-A9F0-7BB3CDEBE416}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{49D4D4E2-21E8-3346-A496-1A1415B18594}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{4E61EF40-8A51-3D99-AA4C-32F203370083}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{5130318D-7FEA-35E6-927D-01368910BDFC}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{66DA8EAA-D4CD-30DC-B993-0EDF728ED1F6}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{B2321364-E928-325D-A954-933D35239BE5}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{D1201DF3-F934-342A-A586-2B255CB8B215}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{D209BFE9-3EDA-3606-AF6B-DCADA87A2285}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Core Professional Plus Resource Package (HKLM-x32\...\{D9CE69E8-D77A-3C94-A910-641622794ED4}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Debugger Package (HKLM-x32\...\{26EFB5DE-50E2-3961-AE7A-15BC0FAAF208}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Debugger Resource Package (HKLM-x32\...\{E20C5867-063A-36FF-B630-A9C96CE5D8AF}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE Professional Core Package (HKLM-x32\...\{C67257E4-F24C-3C35-86BB-E9B7D5D4D9FB}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ IDE x64 Package (HKLM\...\{60DED060-0B6B-3CC1-B955-D0CD401F0FBA}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ Library PGO X86 Package (HKLM-x32\...\{023FCA1D-E591-3AF9-9D2F-9876639A511A}) (Version: 14.0.24210 - Microsoft Corporation) Hidden
Visual C++ MSBuild ARM Package (HKLM-x32\...\{51547499-4A12-3CC6-AE3D-3C5E87D72909}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild Base Package (HKLM-x32\...\{35433594-85A3-3EEA-963E-0E5E860B82D6}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild Base Resource Package (HKLM-x32\...\{D073E568-C258-381C-B9DB-965434B1DF53}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild X64 Package (HKLM-x32\...\{EE527713-BE8A-348A-8854-DACBCE5316F2}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual C++ MSBuild X86 Package (HKLM-x32\...\{8CB498C5-672B-3F6C-9143-84B0BBC1EAB3}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual Studio 2012 Verification SDK (HKLM-x32\...\{A3BCFD43-58D6-3132-A7DF-16CE04672372}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Visual Studio 2015 Prerequisites - ENU Language Pack (HKLM\...\{83B181F2-20B8-4F00-8E71-C66E951A8D4F}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Visual Studio 2015 Prerequisites (HKLM\...\{DF32E41C-24AD-4A87-B43A-B38553B1806E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation)
Visual Studio Graphics Analyzer (HKLM-x32\...\{8C26982F-B345-3C87-8D17-5E88ADDAFFF6}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
VS Update core components (HKLM-x32\...\{5C946395-4D29-3274-A47D-B77D4B10E126}) (Version: 14.0.25421 - Microsoft Corporation) Hidden
vs_update3notification (HKLM-x32\...\{B5BE6171-568A-3657-90CD-A76BEC01F62D}) (Version: 14.0.25421 - Microsoft Corporation) Hidden
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.17-3 - Wacom Technology Corp.)
Warface My.Com (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Warface My.Com) (Version: 1.184 - MY.GAMES)
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WebAdvisor by McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.596 - McAfee, LLC)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WhoCrashed 7.01 (HKLM\...\WhoCrashed_is1) (Version: 7.01 - Resplendence Software Projects Sp.)
Will To Live Online (HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\Will To Live Online) (Version: 1.20 - AlphaSoft)
Windows Driver Package - Microsoft PS Vita Type B (02/22/2013 6.1.7600.16385) (HKLM\...\A0EC80B5719D4DA4CF40C9219D7CB9CCAD6DBA40) (Version: 02/22/2013 6.1.7600.16385 - Microsoft)
Windows Espc Package (HKLM-x32\...\{42AF2A8C-6EBB-3D2E-9BF1-6135379FBABC}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Windows Espc Resource Package (HKLM-x32\...\{FC94D188-1E08-3707-9D23-F41178D44664}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Windows Phone SDK 8.0 Assemblies for Visual Studio 2015 (HKLM-x32\...\{44474AE7-7770-3676-AC63-C9DDD15011FF}) (Version: 14.0.25123 - Microsoft Corporation) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
Windows Software Development Kit DirectX x64 Remote (HKLM\...\{5247E16E-BCF8-95AB-1653-B3F8FBF8B3F1}) (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (HKLM-x32\...\{A1CB8286-CFB3-A985-D799-721A0F2A27F3}) (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (HKLM\...\{96F4525A-470D-F15C-796E-58D9988C3E5F}) (Version: 8.100.26936 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (HKLM-x32\...\{56AD3004-0B49-967F-F682-B05650B61A78}) (Version: 8.100.26936 - Microsoft Corporation) Hidden
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
Youtube Downloader HD v. 4.4.2 (HKLM-x32\...\Youtube Downloader HD_is1) (Version:  - YoutubeDownloaderHD.com)
Zoom (HKU\S-1-5-21-3366790378-2559649480-2858292162-500\...\ZoomUMX) (Version: 5.12.2 (9281) - Zoom Video Communications, Inc.)

Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2021-09-12] (Amazon.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2021-09-12] (Dolby Laboratories)
Dolby Atmos for Headphones -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforHeadphones_2.3.303.0_x64__rz1tebttyb220 [2021-09-12] (Dolby Laboratories)
eBay -> C:\Program Files\WindowsApps\eBayInc.eBay_1.6.0.34_neutral__1618n3s9xq8tw [2021-09-12] (eBay, Inc)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2021-09-12] (AMZN Mobile LLC)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-09-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-09-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-09-12] (Microsoft Studios) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2021-09-12] (Microsoft Corporation) [MS Ad]
My Toshiba -> C:\Program Files\WindowsApps\EnnovaResearch.ToshibaPlaces_3.2.49.0_x64__3s2an63h56yee [2021-09-12] (Ennova Research)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-09-12] (Netflix, Inc.)
Power Media Player for Toshiba -> C:\Program Files\WindowsApps\CyberLinkCorp.to.PowerMediaPlayerforToshiba_5.0.2006.48358_x86__0nrkv0a31nfem [2021-09-12] (CYBERLINK COM CORPORATION.)
Skyscanner -> C:\Program Files\WindowsApps\Skyscanner.Skyscanner_1.4.2.0_neutral__623c9he0pwcym [2021-09-12] (Skyscanner)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2021-09-12] (TripAdvisor LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3366790378-2559649480-2858292162-500_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Administrator\Dropbox [2022-03-18 14:42]
ShellIconOverlayIdentifiers: [                    IMFSafeBox] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ShellIconOverlayIdentifiers: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [Incinerator] -> {E8215BEA-3290-4C73-964B-75502B9B41B2} =>  -> No File
ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} =>  -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-06-18] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\65.0.4.0\drivefsext.dll [2022-10-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.56.0.dll [2022-10-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-04-28] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-29] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [25640 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [70200 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [70712 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] (Bandisoft -> )

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) <==== Cyrillic

==================== Loaded Modules (Whitelisted) =============

2018-07-18 16:27 - 2018-07-18 16:27 - 000747520 _____ () [File not signed] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2022-02-04 05:31 - 2022-07-15 15:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Administrator\Downloads\CC歌词【完整版】少年白马 (《少年白马醉春风》OP 片头曲) 演唱：Smile_小千-360p.mp4:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\Administrator\Downloads\CC歌词【完整版】春风欲渡 (《少年白马醉春风》ED 片尾曲) 演唱：汪晨蕊-360p.mp4:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\Ollie\Dropbox:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Ollie\Dropbox:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\Ollie\Dropbox:com.dropbox.folder_policy [36]
AlternateDataStreams: C:\Users\Ollie\Desktop\Mastering Manga 2 - Level Up with Mark Crilley:com.dropbox.attributes [168]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBVpnService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBVpnService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\.exe:  =>  <==== ATTENTION
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.exe\UserChoice => Applications\firefox.exe
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lnk\UserChoice => Applications\wmplayer.exe
HKU\.DEFAULT\Software\Classes\.exe: .exe_auto_file => "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" <==== ATTENTION
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\Software\Classes\.exe: exefile =>  <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba15.msn.com/?pc=TBTE
SearchScopes: HKLM -> DefaultScope {F154C596-75A9-4028-90E8-9752BD7CA05B} URL =
SearchScopes: HKLM-x32 -> DefaultScope {1F90CCF0-DDC4-4A14-8D4A-CA861733A8AE} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-08-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-06-11] (McAfee, LLC -> McAfee, LLC)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-02-08] (McAfee, Inc. -> Intel Security)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-06-11] (McAfee, LLC -> McAfee, LLC)
BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2022-06-18] (IObit CO., LTD -> IObit)
Toolbar: HKLM - No Name - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -  No File
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-02-08] (McAfee, Inc. -> Intel Security)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-10-01] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\aeriagames.com -> hxxp://aeriagames.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 12:04 - 2022-08-11 22:04 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts

2017-05-23 13:21 - 2021-09-26 23:11 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\GtkSharp\2.12\bin;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ollie\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-3366790378-2559649480-2858292162-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\Dropbox\Photos\305057828_1199071313971314_6164204209813313738_n.png
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Aeria Ignite"
HKU\S-1-5-21-3366790378-2559649480-2858292162-1001\...\StartupApproved\Run: => "Spotify Web Helper"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{B6FD034C-4AF0-4415-A6EF-C2EFDF1B17F0}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [TCP Query User{406FADDF-C74A-46EA-A9A8-0FB51DCE1BB3}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [{87D2FBE5-C2DD-44E1-A9A6-FE2AFC5AFC34}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{56B23348-835E-4CC6-8F89-55D1B0CBC628}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{3BB371F2-E9F4-4E75-A8FB-0A2AFD62965C}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [TCP Query User{58259647-D178-4C89-9CAB-F421A90BD62B}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [{85E9F5BA-EE1C-4F88-84E9-A44730C6DC28}] => (Allow) C:\Program Files (x86)\EYEDENTITY GAMES\DragonNest\DragonNest.exe (EYEDENTITYGAMES, Inc. -> Eyedentity Games) [File not signed]
FirewallRules: [{6FDD6CF9-D905-4EF4-9152-61BF472D2238}] => (Allow) C:\Program Files (x86)\EYEDENTITY GAMES\DragonNest\DragonNest.exe (EYEDENTITYGAMES, Inc. -> Eyedentity Games) [File not signed]
FirewallRules: [{ADB370D1-A196-4450-B510-826B38CD78E6}] => (Block) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [{B73F2AFB-2B5A-4EB8-9913-649C4C8EE57B}] => (Block) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [UDP Query User{097236B6-D52E-4E46-8056-157565CC066A}C:\users\ollie\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [TCP Query User{7EF910B8-0492-4D7A-9A20-EC93DEA1491D}C:\users\ollie\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\ollie\appdata\local\mycomgames\mycomgames.exe (Mail.Ru, LLC -> MY.COM B.V.)
FirewallRules: [UDP Query User{5FEA143F-61A8-4EB5-959A-1D17A8B834A3}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{F4066BB0-8B23-452A-A3F9-21736B03819F}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{923F7890-DC8F-43D5-9579-00CC7FCF4334}] => (Allow) C:\AeriaGames\AuraKingdom\game.bin (X-Legend Entertainment CO., LTD. -> X-LEGEND Entertaimment)
FirewallRules: [{6363ACE9-19BE-4396-A05B-F5617D8DA1C3}] => (Allow) C:\AeriaGames\AuraKingdom\game.bin (X-Legend Entertainment CO., LTD. -> X-LEGEND Entertaimment)
FirewallRules: [UDP Query User{B9F63931-3A81-442D-A562-BAFB4FBCACF9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FF9E1E5E-2157-4109-B72A-9444FEE4509A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{88BA6C31-698E-43E1-9CEA-F78E5C7463D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0AB6CD9B-8D73-4C1A-8889-19A495FBBE41}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E9266E9C-0C03-4F9F-9EAD-036816942670}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyCrashService.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3A9493CC-6AEF-48EE-8AA0-E69E605D9861}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyCrashService.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F7FBAC44-AF13-4BE4-BA38-98A90C9F5B0F}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{858F86F7-051F-4A36-9A5F-866B40D8B867}] => (Allow) C:\Program Files (x86)\Spotify\SpotifyWebHelper.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5A314F86-4A28-49D6-85D8-538B56979BFC}] => (Allow) C:\Program Files (x86)\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{87E6B498-E95C-4EF4-9A89-656F306B673F}] => (Allow) C:\Program Files (x86)\Spotify\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DB190F44-554A-4017-A76D-468DA556D4F4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{1D359896-3062-4DE4-9BC2-A06F48924C78}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F845E869-635D-40F1-B603-5A99B12882EA}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{8E3394C7-70EB-4721-B895-25A5BD1971A8}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{8F6471FD-235E-46E7-ABFC-80547494A538}C:\users\ollie\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ollie\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{7283B6FF-FF46-44DF-A5D2-E9314E21B598}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [UDP Query User{36B63483-92F4-4DD0-B9AF-637D0F3AA6D8}C:\users\ollie\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\ollie\appdata\local\gamecenter\gamecenter.exe (LLC Mail.Ru -> )
FirewallRules: [{F14CF007-2951-45A1-B809-78FA657C12B6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CFD91A01-CB0A-4617-A0CF-1D19F7056210}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1280AD3F-BF6A-451B-A1A5-3555E17BFAA4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{C0B02515-A719-4B5B-8CD1-DEF3FB2551DF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{80FE36A0-124B-44B8-9B6E-FFE761B915ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> )
FirewallRules: [{53664E44-D101-430B-816C-FEEF51D5D29E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> )
FirewallRules: [TCP Query User{669AC062-561D-4ED3-B3BF-3776EBCC2DDA}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{75FC68A4-4E32-453C-8108-39CE86DFC6B0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{FE252FC2-572D-4E21-A1A9-615454FF0F08}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0F49FF25-A560-46DE-84AA-E03412CE40FA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{81DE8282-DF8A-41F2-8944-CC790C7F41F6}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{46FD15FC-947A-4432-A6E0-9D25B557BA57}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{6EB9D970-884E-4145-A840-109FD9FE6091}C:\mygames\warface my.com\bin64release\game.exe] => (Allow) C:\mygames\warface my.com\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [UDP Query User{9B4A1C15-72A9-4D02-AD68-8A164E8CDD89}C:\mygames\warface my.com\bin64release\game.exe] => (Allow) C:\mygames\warface my.com\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [TCP Query User{17F4BA2C-7DC0-4151-B4A9-EE9C16FA9C81}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{309E811E-350D-4F76-8A3F-2055C15122B5}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6671DAC9-AD5D-4174-97B7-B51BB2A847A0}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{711F1F23-7BC4-4D62-9448-89FFF4AAFAF8}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{EEFEEA54-AE20-4DAC-99E1-1055734D6273}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{09772786-487C-4754-A291-02F05E1355CA}] => (Allow) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{97F4F68E-4C6D-44B1-968A-D25FC0532B05}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{974DE4CF-992F-461B-9805-5499A7A5ED69}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CE3C29BA-1918-44E0-B8F3-1DFE345FBC02}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{847F55F9-7368-40A6-99A9-7548EFC3338C}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{F3154B9B-841F-447D-9594-95DBF9FE77A8}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{C7576527-4244-4465-9724-A2F8A872CC7F}] => (Block) C:\Program Files (x86)\Overwolf\0.155.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [TCP Query User{EF0D1960-5D00-4B63-9D2C-E114DC5B1779}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [UDP Query User{821CA653-20AE-4D36-9FF2-5891F54AA52F}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [{F0720854-FB25-4A44-8BCC-EA1EBFA30AC8}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [TCP Query User{BDBF9CBD-9476-44CA-868D-A31FB9CE4D9C}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3A7C3F4A-6C24-4BD5-9AAB-F8019B9C5561}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{0E120EB6-EED7-44FA-87AB-C8545116AB69}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BD51759E-C567-4766-83E7-D80271F88E5B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{794A935D-81B1-44F5-9EBF-222468595CFB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{12335BD4-35D5-4418-8D27-1A87D89AF2AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{01F38659-1347-4437-BC87-200211BB3887}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [UDP Query User{3C77066C-BB71-483D-B12F-D56FA5C89D9C}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe () [File not signed]
FirewallRules: [TCP Query User{AD968C38-B141-4180-99DC-D1536DFA0BCE}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [UDP Query User{17A86D93-CA5D-4496-827F-4324B05A1A03}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [TCP Query User{83BBF8E4-9989-4822-B6DA-EAC2D32A4EAB}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [UDP Query User{EBFB962C-D7B6-45CD-9FA3-BD50755005CE}C:\program files (x86)\sony\content manager assistant\cma.exe] => (Allow) C:\program files (x86)\sony\content manager assistant\cma.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [{3A652644-FE42-4EEE-897F-3877F70C019E}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{DD826B4E-73C6-4577-A9FA-7BAA891CB62D}] => (Allow) LPort=5357
FirewallRules: [{3C939866-7017-49C3-B4F3-FDF13C81457D}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{94DE92E8-5715-4E4B-9240-8657B8FE3524}] => (Allow) C:\MyGames\Revelation Online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [{9BAC5044-2471-4442-9626-231A932D0C6D}] => (Allow) C:\MyGames\Revelation Online\game\tianyu.exe (MRAC Revelation Online -> Mail.Ru Group + Netease Games) [File not signed]
FirewallRules: [TCP Query User{F71E68F5-D934-408D-9322-1BD77B6A82FD}C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe] => (Allow) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [UDP Query User{CACB564F-0232-48C1-AFB9-DF2845A4AFAA}C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe] => (Allow) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{3194D158-9C84-49B4-B9FB-F6E96F2600E8}] => (Block) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{CF3F06D2-28AB-45AC-A51F-963797A20D78}] => (Block) C:\program files\windowsapps\telegrammessengerllp.telegramdesktop_2.5.1.0_x64__t4vj0pshhgkwm\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [TCP Query User{413DD2F5-D10D-4678-9713-66E6041C8C20}C:\mygames\stay out\game\sogame.exe] => (Allow) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [UDP Query User{223D7BB0-9425-4DD5-9DE3-FC3FCBD10153}C:\mygames\stay out\game\sogame.exe] => (Allow) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [{0DAF7BD0-7E64-47A3-A993-96583CA1B006}] => (Block) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [{47284D3C-45E1-4E62-A4D7-22143FA7CAD0}] => (Block) C:\mygames\stay out\game\sogame.exe (Mobile Technologies LLC) [File not signed]
FirewallRules: [{362407F1-8971-4575-AFDD-34E3F9064AE8}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7B403A29-68A4-44EF-ACF5-3567477A05D9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{59CAD223-BFF8-4795-A2D6-7D62BFCB5CBA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DD872463-0E4C-4D8D-BE4F-503C9FF79722}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{05C5CE72-CAB5-4A84-84AB-3DA553F43FE6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{273C67E1-6720-4D15-9ACF-9C6A58679229}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{12AB6962-4590-4C09-9059-66E497EDB844}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1CE55AF3-8480-4A60-8C83-0AB7D44457C1}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{11BB6473-C16B-460F-BA76-8B058B6BA9EA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5C84200C-A40D-4F21-8D34-31C7ADAD0941}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{0029C7CC-A4C5-44DE-844F-99D6D7633541}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{299CDF76-4DFE-48EA-A8D8-C8D739C33A48}C:\users\administrator\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\administrator\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CF42F9BB-1F41-4C97-BB8C-C5296B64ED34}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C0E9420-339F-45CF-B90B-6DA6C3EEB44F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EC87AD6A-771C-49E5-995B-799AAE7A7103}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F8240EF7-1F8C-4ACF-9919-5CAE9B93D7A7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E6430317-7B0C-4255-9400-43195D322865}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B03F231A-0A29-409A-8A9D-46201671F206}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2EFCB821-995F-45B2-B48C-252F97E59497}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{308684F7-486E-4A3B-A8B4-AC1EE506933B}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{4867434F-CA60-4A31-8641-7CADC2BEA00C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{1FE0E71B-2037-46F5-B487-F534F7BBB575}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{7A8405E5-B055-481B-A0E3-8159648FD0C7}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{74F0D727-D080-41CC-88E8-D2BEFE4B8617}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{994DDDEA-2AC4-493D-A53B-37573247580E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian2\Bin\GuJian2.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon INFO&TEC (Shanghai)CO.,LTD)
FirewallRules: [{91A17B3D-E5C4-462B-997C-B9B3E62181EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian2\Bin\GuJian2.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon INFO&TEC (Shanghai)CO.,LTD)
FirewallRules: [{7D918867-A1F5-49AE-876E-076B2C1D88AA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F89D1AA7-EFD8-432F-BC57-7EA180A283C3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F19D289A-9677-4C37-AC3E-277E37D6B197}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{DCAA031D-17DC-4F2A-BEBF-567A45DB4476}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{7EBBC524-9517-4D16-B92D-A7557DED8905}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{75830466-ED95-40FF-B45E-C28577554F99}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5435CB93-E6F4-48EE-8753-11E0059838A0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0F295E3A-02D6-4FCB-8098-CE9EE0AC930A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{09014B1F-2347-4EED-9B88-8D8BF8233278}] => (Allow) C:\Program Files (x86)\OSTotoSoft\DriverTalent\DriverTalent.exe (Shenzhen DriveTheLife Software Technology Co.Ltd -> OSToto Co., Ltd.)
FirewallRules: [{C3E84C2F-3D12-4DD7-B226-383888588E86}] => (Allow) C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll (OSTOTO CO. LIMITED -> )
FirewallRules: [{929B470B-B0EF-4AFA-AD83-B99C74BADEC6}] => (Allow) C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [{43720314-68F3-415C-A57C-31EA53119F17}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B3AF17CD-B261-4E81-B1D8-106DC380344C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3989C081-7C82-4714-8C0A-46820CEB851F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJianConfigTool.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon Info & Tec(ShangHai)Co.,LTD)
FirewallRules: [{A9F14DB3-63F2-4606-BF7F-95A03E61C888}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJianConfigTool.exe (北京网元圣唐娱乐科技有限公司 -> Aurogon Info & Tec(ShangHai)Co.,LTD)
FirewallRules: [{F9EB72E5-4D06-4490-9B87-C927033A3DF5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\PAL4.exe (SOFTSTAR Technology CO.,LTD) [File not signed]
FirewallRules: [{6AB232AE-6414-41FF-8118-7330785EE84C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\PAL4.exe (SOFTSTAR Technology CO.,LTD) [File not signed]
FirewallRules: [{99B3DC84-B3B2-4EF9-9D38-F2903B2B9D3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\Config.exe (大宇资讯软星科技（上海）有限公司) [File not signed]
FirewallRules: [{E61CA961-65E5-49AD-B47C-3314B6570AC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAL4\Config.exe (大宇资讯软星科技（上海）有限公司) [File not signed]
FirewallRules: [{28BF32E8-9AC6-4D57-9A47-49047413159D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B86C5AC6-A618-459E-8582-389EC526C2D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh!  Master Duel\masterduel.exe () [File not signed]
FirewallRules: [{D1DD7DBF-8779-435C-AE79-0AF53E97EDD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh!  Master Duel\masterduel.exe () [File not signed]
FirewallRules: [{D0670702-38D1-42CF-8BE3-903A97231F0A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C00DB6C1-3A28-455F-A243-E181CC661CD7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0FFFFB13-D5CD-441E-8052-95535EFB69FB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{033A2E20-47C5-446F-A28C-3ACEA4E141AE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{855F9156-013B-46F3-86B8-155DBF0C1F2D}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{DD445A29-9AAA-42FC-A4F0-E2D2619B87F0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A7D39FCB-51E8-4BCE-AC1D-51BEA6D2D19E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5AC30FDA-1D74-4E27-8402-4017DE7D8970}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{CFD7ACEB-D7DE-47CC-82C3-C73CB49C5175}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{25649013-2D1C-4A7A-A7C0-56AB7C9AC521}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8352D413-18DC-4D50-96C7-DAB2BAC841EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY IX\FF9_Launcher.exe () [File not signed]
FirewallRules: [{C18D3DCF-ADFB-413C-9B07-40926A29DB6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY IX\FF9_Launcher.exe () [File not signed]
FirewallRules: [{E5837BB4-451B-4A9A-A334-9198B993386D}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9A8907E8-14AC-4A95-BB0B-DB89F5A24EE7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E614B05C-329C-49CC-899B-875FDA6DBB3D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{10516FBF-5AB3-42BC-B995-A99680DA775A}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{4AC33DFB-5C37-492F-9CA5-409A1953BC72}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D67F452D-AE0F-479C-A230-16285169B0C2}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{3A145F18-9C72-4AAF-9A86-32A863847194}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{44BE326E-167B-416C-A9E3-18A6136BFB4E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D5594FE1-4EB7-449F-A70F-828962FAD7D5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F6F0FDBD-21BC-48F4-851D-8EDD450FC42A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{66951326-CE5E-4BDA-9AB5-FA2F363875E9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3CC9648D-F6B3-4A59-9316-D543E07EBBC4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8F67F3E4-DCA5-4818-8EBF-348DBA75148B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F7A5EF40-6A06-4665-81C0-340492B15B7D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B7A55102-1050-4E82-AD50-0B89D7286D93}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D61C520F-5697-4575-95A5-040F0BA25BEE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B5AC4795-3C23-4E01-91AC-A4D24B8F5ACB}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9B0EE4BE-C1B5-4E49-B301-A2AE84253A4B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{75B0D6A8-0704-4641-933B-4DF01D43E155}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB911326-6377-46D9-9F8F-06F8B640AF4F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FA77D88F-76E3-4072-9585-B6064F597AEB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C9B3B31-6E77-4533-BBCB-FBB4D644AAF0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{232EF58B-46D1-41C2-8303-00EB06D6EE9A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C6CACF9A-B93F-4177-858F-550AF4C93439}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3610C645-FFDB-4CF4-8234-B69C079AF57C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4240D31A-D62A-4844-A6B3-733A5CE7D794}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D581D07B-16BB-47E1-9BB6-654C801223CC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2E317017-3D1D-4858-8F4D-0049D14685AE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{63839B54-A97C-4609-841B-F99A71406A69}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7AA9CE0D-38E4-466C-B7C1-7BBEBEC062D8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{02093C16-0990-44F0-9931-C5661EF52595}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FE86009E-4B07-4587-8240-567E573AF001}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{20CCD5B4-FBB3-43DF-89AD-C8C2D710EC0E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BBD48AE6-E93A-48D9-B17D-04EDA90BC8E5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{834FF64E-4B84-434A-A9BA-43CEA26196D6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{39DC28E8-60B2-4ADD-AA10-521CD8AE86C6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E5F1651E-6EF8-43BA-BD84-F9CC400B9E4D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{79870E24-D7DF-4EA2-8DDF-6C8C516636CA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{69E4709A-408F-4750-A59B-C03B0BAE3E84}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{50E233A7-063B-4BAD-99C4-BD447E278B52}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9DB783A9-D8A1-4807-972D-A504D168B717}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D2C950BD-D8C1-445C-855C-A52B9983D431}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A3971CB5-7CBC-4032-9501-B603443F13AF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B013E9FE-6003-4E59-8FEE-DAF7C5536416}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{49B4D72E-5642-4931-B6EA-E2CBCE9278F8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0FF50793-B074-47EC-9729-9ACB7D9EE52F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D2786C70-2328-4F8E-A162-AB0378C7EF7B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CD8A5943-FE39-4373-963B-04848E10CACE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFCBEBAC-BA4E-4E5D-81C5-9DED05ACA576}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJian.exe (北京网元圣唐娱乐科技有限公司 -> 上海烛龙信息科技有限公司)
FirewallRules: [{76C83C19-FECF-4DD1-8D7E-7C15E1EB2BD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gujian\bin\GuJian.exe (北京网元圣唐娱乐科技有限公司 -> 上海烛龙信息科技有限公司)
FirewallRules: [{5052F1CF-A0EB-44E3-8CE6-D73F2166747F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2AF8270A-45D0-43E3-A59C-A017C9E51064}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{85F9E84E-B7A7-4CEB-B900-DBA857736BBA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B8518F49-E380-4B60-BAD2-8397DF67C73E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E46A1263-E6B6-4E13-9A28-ED579E4942B0}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{62B1F48A-8AE8-41F8-8B1F-52F74C186F9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HonkaiImpact3rd\BH3.exe (miHoYo Co.,Ltd. -> )
FirewallRules: [{51EE1B23-06C9-41B2-AC54-8F646EB16DDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\HonkaiImpact3rd\BH3.exe (miHoYo Co.,Ltd. -> )
FirewallRules: [{901B203A-8629-4CE3-B023-C7283130E9C8}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
FirewallRules: [{F484F8B2-C362-4CF4-B4B0-D5DAB6DB24C6}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{34B3A55E-F564-4BF5-A26B-2F291581FCA7}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{01EE7C5B-DE81-4CDD-BED7-6F34AD6224C8}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{49D8669E-1E14-4E1F-8E9F-F5DD83BDFCAD}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{F576CBA6-7B83-4A8B-B275-D291FC3AB7E1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DFA769CA-A5FF-440B-AEBE-B72A1449DEAD}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{78E34C6A-77E8-4EB9-B5F9-C469A2123823}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DD157DF3-8F93-4B92-A50C-7BFDD089CDB8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1D74061E-EC75-4EEB-94BD-A7E084D91EC4}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{CF9361C2-A73F-4336-B3A3-399BEFF6E392}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0FCBEEDB-DF43-4AA3-AE09-FB0B107B5BDB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{07A4B68D-FB31-4223-A103-D2D3DE9F0EA2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0E00A5BE-282C-42DB-B1CC-4034F50736F5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{02196FA6-78CF-43C0-839E-2608E75DB1DC}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D6BD2EBA-065F-4514-934C-56010EF51B85}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{A0DF27A7-A70C-473E-B178-FBD32FFAA3AB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{52BCBDAD-1896-408F-8264-FA4EBB73F080}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F00ED9AE-8152-47A0-BA21-329A53E46C15}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9B213ECA-3F48-49B9-B78B-F3E84C200903}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{91360172-3AEF-4696-8692-9F4638A77FEA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2BDF9ABD-439E-496C-AEFA-16F5C2011644}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FA1F7332-F889-4A1F-BA39-49F50094B8D3}] => (Allow) C:\Users\Administrator\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{00D67BE5-B9FC-4D0A-A294-939A57C3640F}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A4632786-52AC-4B28-B761-E9B00F4FB785}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69364804-8319-4D55-A0FF-44A7719C5BC2}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/25/2022 05:47:58 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16324,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 05:38:42 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Program Files\Mozilla Firefox\firefox.exe".
Dependent Assembly mozglue,language="&#x2a;",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/25/2022 05:35:01 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (19588,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 05:25:40 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9992,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 05:15:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17984,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 05:05:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (21612,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 04:55:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (20836,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/25/2022 04:44:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (22428,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (10/25/2022 03:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The IMF Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/25/2022 12:57:21 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: A fatal error occurred while creating a TLS client credential. The internal error state is 10013.

Error: (10/25/2022 12:51:20 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.

Error: (10/25/2022 12:50:49 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.

Error: (10/24/2022 11:52:40 PM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: The activation of the CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} timed out waiting for the service wuauserv to stop.

Error: (10/24/2022 10:27:58 PM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: The activation of the CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} timed out waiting for the service wuauserv to stop.

Error: (10/24/2022 10:23:57 PM) (Source: DCOM) (EventID: 10029) (User: RAY)
Description: The activation of the CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} timed out waiting for the service wuauserv to stop.

Error: (10/24/2022 09:55:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BFE service.


Windows Defender:
================
Date: 2022-09-29 19:23:34.476
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-09-23 02:33:50.236
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-07-12 21:04:47.732
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
[URL unfurl="true"]https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0[/URL]
Name: Misleading:Win32/Lodi
Severity: High
Category: Potentially Unwanted Software
Path: file:_C:\Users\Administrator\Downloads\smart-defrag-setup.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\IObit\IObit Uninstaller\PPUninstaller.exe
Security intelligence Version: AV: 1.369.1040.0, AS: 1.369.1040.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.19300.2, NIS: 0.0.0.0

Date: 2022-07-12 20:35:31.981
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
[URL unfurl="true"]https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0[/URL]
Name: Misleading:Win32/Lodi
Severity: High
Category: Potentially Unwanted Software
Path: file:_C:\Users\Administrator\Downloads\smart-defrag-setup.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\IObit\IObit Uninstaller\PPUninstaller.exe
Security intelligence Version: AV: 1.369.1040.0, AS: 1.369.1040.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.19300.2, NIS: 0.0.0.0

Date: 2022-07-12 20:34:32.758
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
[URL unfurl="true"]https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0[/URL]
Name: Misleading:Win32/Lodi
Severity: High
Category: Potentially Unwanted Software
Path: file:_C:\Users\Administrator\Downloads\smart-defrag-setup.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files (x86)\IObit\IObit Uninstaller\PPUninstaller.exe
Security intelligence Version: AV: 1.369.1040.0, AS: 1.369.1040.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.19300.2, NIS: 0.0.0.0
Event[0]:

Date: 2022-09-29 19:17:19.661
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

Date: 2022-09-29 19:17:19.647
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

Date: 2022-09-29 19:17:19.623
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

Date: 2022-09-29 19:13:39.747
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80072efd
Error description: A connection with the server could not be established

Date: 2022-09-29 18:57:48.063
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.815.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.

==================== Memory info ===========================

BIOS: INSYDE Corp. 5.20 01/11/2016
Motherboard: FF50 06F2
Processor: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Percentage of memory in use: 55%
Total physical RAM: 16298.14 MB
Available physical RAM: 7311.61 MB
Total Virtual: 39284.51 MB
Available Virtual: 13919.05 MB

==================== Drives ================================

Drive c: (TIH0070100A local disk) (Fixed) (Total:1848.83 GB) (Free:1252.35 GB) (Model: ST2000LM003 HN-M201RAD) NTFS

\\?\Volume{8260deca-8233-4f00-97c1-59189c024e61}\ (WinRE) (Fixed) (Total:1.56 GB) (Free:1.02 GB) NTFS
\\?\Volume{76cfe2cf-1f5c-4d69-bb83-881f61eae98a}\ (HDDR) (Fixed) (Total:12.33 GB) (Free:0.97 GB) FAT32
\\?\Volume{0471ba66-9d83-479c-be4b-ae7defba75d5}\ (ESP) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

 

[Malnutrition]

There is definitely some malware on your machine. We need to clean a few things up before I have a go with a FRST fix. There are so many items to remove it's gonna take me too long as it stands. So help me help you, and lets remove a few items and run a couple malware removal tools to ease up the load of crap I need to remove.

---

Any reason that Avast is blocked in your firewall? Did you do this?

FirewallRules: [{0C0E9420-339F-45CF-B90B-6DA6C3EEB44F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)

---

Adobe Flash Player is no longer supported and is a security risk.

• Download Adobe Flash Player Uninstaller and save it to your Desktop
• Right click on the icon and select Run as administrator
• Click Uninstall then Done to reboot your computer.

---

---

Uninstall the following with GeekUninstaller Use force removal for anything that defies removal.

Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 16.0.1 - IObit)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.453 - Adobe)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 22.3.2757.10724 - Avast Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
IObit Malware Fighter 9 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 9.3.0.744 - IObit)
IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 5.0.0.8 - IObit)
Iobit Software Updater 4.4 (HKLM-x32\...\Iobit Software Updater 4.4) (Version: 4.4 - Company)
IObit Uninstaller 12 (HKLM-x32\...\IObitUninstall) (Version: 12.0.0.10 - IObit)
System Checkup (HKLM-x32\...\{78B3977C-FE07-4D6C-8ECB-614482F24494}) (Version: 5.0.3.226 - iolo technologies, LLC) <==== ATTENTION
WebAdvisor by McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.596 - McAfee, LLC)

---

---

Adware Cleaner

• Download AdwCleaner and save it to your Desktop
• Right-click on AdwCleaner.exeand select, Run as Administrator
• Accept the EULA (I accept), then click on Scan Now
• Let the scan complete
• Once the scan completes, make sure that every item listed in the different tabs is checked and click on the Clean & Repair button
• Subsequently you may be asked to Run Basic Repair. This is optional. I would suggest holding off on this for now.
• Once the cleaning process is complete, AdwCleaner will ask you to restart your computer
• Close all other open windows and allow it to restart
• After the restart, Notepad will open with the AdwCleaner cleaning log
• Please Attach the contents of that log into your next reply to me

---

---

---

Please download Zhp Cleaner to your desktop. Right Click the icon and select run as administrator.
Once you have started the program, you will need to click the scanner button.
The program will close all open browsers!
Once the scan is completed, the you will want to click the Repair button.
At the end of the process you may be asked to reboot your machine.
After you reboot a report will open on your desktop.
Attach the report here in your next reply.

---

Once you have completed these steps, then please post FRESH FRST and Addition.txt logs for review.

 

[Waves Rayneth]

not that i mind that mal i trust appreciate & understand we can clear it this, also as much as it stands second thought was going make two separately issue of fakebook login identity recovery with some ID someone logged into with a different location IP +234 Nigeria something, What's wrong with the IObit Programs if i may ask. might take a while

 

[Malnutrition]

What's wrong with the IObit Programs if i may ask.

Trash software. I have been helping on forums for 10 plus years and seen many many issues with iobit software. If you could, just follow all instructions, and when we are done you can reinstall anything you like, I have a system that I use and have been doing it for years.

 

[Malnutrition]

Real question is, did you disable Avast thru your firewall? I assume not, and we need to get to the root of that, but there are so many items that need removal in your logs that it will take me too long to go over unless the initial trash is removed.

 

[Waves Rayneth]

GeekUninstaller is a Geek.zip file

 

[Malnutrition]

Unzip to your desktop and use it.

7-Zip

 

[Waves Rayneth]

Didn't need to use Run & Repair Basic repair this still needs to restart? there's no use for drivers automatic updaters or of, on the browser then.

 

[Malnutrition]

No need for driver updaters, I have had the same install of windows for ten years and only ever updated my video card drivers on one of my machines. You only update your drivers when there is a specific issue, driver update software is snake oil. You should only get driver updates from your pc manufacturer website when they release a patch for a specific issue.

 

[Malnutrition]

Didn't need to use Run & Repair Basic repair this still needs to restart

If adware cleaner request that you reboot the machine then do so, make sure and remove all detected items, prior to reboot.

 

[Waves Rayneth]

No need for driver updaters, I have had the same install of windows for ten years and only ever updated my video card drivers on one of my machines. You only update your drivers when there is a specific issue, driver update software is snake oil. You should only get driver updates from your pc manufacturer website when they release a patch for a specific issue.

atm it's using it on administrative settings, it's only Windows update isn't functioning as it should be
"some settings are managed by your organisation" I've put all preinstalled pre-packaged software being put in Quarantine