Yes, would like some assistance. It was these logs you wanted me to post?
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2021
Ran by DagArne (administrator) on LAPTOP-5LS6TKUL (HP HP Pavilion Notebook) (12-07-2021 20:40:19)
Running from C:\Users\DagArne\Downloads
Loaded Profiles: DagArne
Platform: Windows 10 Home Version 2004 19041.1083 (X64) Language: Engelsk (Storbritannia) -> Norsk bokmål (Norge)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine VPN\VpnSvc.exe
(Clan Servers Hosting LLC -> ClanServers Hosting LLC) C:\Program Files (x86)\GameTracker\GSInGameService.exe
(CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\126.4.4618\QtWebEngineProcess.exe <3>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(HP Inc.) [File not signed] C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <13>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Presentation Point GCV -> PresentationPoint) C:\Program Files (x86)\PresentationPoint\iPoint\Player\PlayerKernel.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPHelper.exe
(Synology Inc. -> ) [File not signed] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(WildTangent Inc -> WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-07-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5296352 2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8107808 2021-07-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4079824 2021-07-07] (Opera Software AS -> Opera Software)
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\Run: [HP Photosmart 7520 series (NET)] => C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\Run: [GameTracker] => C:\Program Files (x86)\GameTracker\GTLite.exe [4019992 2013-12-19] (Clan Servers Hosting LLC -> ClanServers Hosting LLC)
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5549280 2021-05-28] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\DagArne\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\DagArne\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\RunOnce: [Uninstall 21.109.0530.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\DagArne\AppData\Local\Microsoft\OneDrive\21.109.0530.0001"
HKLM\...\Windows x64\Print Processors\Lexmark S300-S400 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxeadrpp.dll [189440 2009-11-04] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\windows\system32\AdobePDF.dll [65160 2021-05-28] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\HP BC11 Status Monitor: C:\windows\system32\hpinkstsBC11LM.dll [331664 2012-06-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Photosmart 7520 series): C:\windows\system32\HPDiscoPMBC11.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\S300-S400 Series Port: C:\windows\system32\lxealmpm.DLL [892416 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.124\Installer\chrmstp.exe [2021-06-25] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2021-07-10]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Player.lnk [2021-04-12]
ShortcutTarget: Player.lnk -> C:\Program Files (x86)\PresentationPoint\iPoint\Player\Player.exe (Presentation Point GCV -> )
Startup: C:\Users\DagArne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Photosmart 7520 series (Network).lnk [2019-09-02]
ShortcutAndArgument: Monitor Ink Alerts - HP Photosmart 7520 series (Network).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Photosmart 7520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2CD3B2KS05VV;CONNECTION=NW;MONITOR=1;
Startup: C:\Users\DagArne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HPD50A3E (HP Photosmart 7520 series).lnk [2020-01-16]
ShortcutAndArgument: Monitor Ink Alerts - HPD50A3E (HP Photosmart 7520 series).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Photosmart 7520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2CD3B2KS05VV;CONNECTION=NW;MONITOR=1;
Startup: C:\Users\DagArne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Overvåk blekkvarsler - .lnk [2021-05-02]
ShortcutAndArgument: Overvåk blekkvarsler - .lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Photosmart 7520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2CD3B2KS05VV;CONNECTION=NW;MONITOR=1;
Startup: C:\Users\DagArne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Overvåk blekkvarsler - HPD50A3E (HP Photosmart 7520 series) (Copy 1).lnk [2021-05-13]
ShortcutAndArgument: Overvåk blekkvarsler - HPD50A3E (HP Photosmart 7520 series) (Copy 1).lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Photosmart 7520 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2CD3B2KS05VV;CONNECTION=NW;MONITOR=1;
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0255DDA9-1F3C-47DA-B99E-5B700FDC1F22} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [560816 2021-07-03] (HP Inc. -> HP Inc.)
Task: {030166D6-6E89-43FE-B9BC-EF81522C16B5} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1356008 2016-01-21] (Hewlett-Packard Company -> HP Development Company, L.P.)
Task: {0794515C-AEEE-45A9-ABA3-1C637F9841AF} - System32\Tasks\Opera scheduled Autoupdate 1494661281 => C:\Program Files\Opera\launcher.exe [2264784 2021-07-07] (Opera Software AS -> Opera Software)
Task: {1B4CCE4C-5039-47DA-877C-59C8C405DAE2} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-07-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {1BDF50FB-EA99-44A2-BDDF-7922E6B9B6C0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1C406355-B42F-4733-BAE0-F0A258A6CA63} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773160 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {21C6D561-01F1-4027-A224-F93A0644C6D2} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs]
Task: {24834F42-3E9E-4D3F-9741-6B9B75B63ED8} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {2F8C5BC1-8699-415B-A543-7591BDB24C13} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [695848 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3272A69A-C742-4BFA-9A31-F5F67B974B29} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1140608 2021-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {36F0F0AE-97DD-4246-9A2B-155B52D191CD} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {3C1CB6E9-D997-4DAA-B07B-4A8EBACA5368} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {437E55E4-8FCC-4730-83AF-663480E98E6E} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950312 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4575914A-6FCC-4FCD-A216-85DDE0B08929} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1118896 2021-07-03] (HP Inc. -> HP Inc.)
Task: {49DD234D-490B-4AB5-9AA0-E4DA1B4719F8} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4755224 2021-07-07] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --guid 42602874-51df-404a-a1b2-c34767b3df12
Task: {4C2A612D-1591-4497-BAF7-160A4F03DB6A} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38504 2021-05-11] (HP Inc. -> HP Inc.)
Task: {5278ED1E-B47D-46DA-8B71-5B6ECEB7A36E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {55D7E24D-2BFB-45BD-A7EF-741C71B24867} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118096 2021-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {59FFF22F-E3DA-4870-A3DF-99CE37CF5AAD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5DDE1783-95C8-4162-A8ED-C141E5B29BAB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F1367F9-7EAD-4FAF-AA0A-791E66AE2DE5} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773160 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {614C794B-8CD9-4D2D-AF0B-A4F55B9A7B07} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {74FAD078-113A-45D5-ACE6-F04B32403EC6} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950312 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {789DD3BE-A441-4D4A-82F3-16F5DA089062} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {79F1C27C-AE96-4C99-8D64-2E140FA649E5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3487272 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7BD0AECE-0142-47D0-AC07-361B6CCA1C3E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7C8862CD-F932-4B5A-ABC6-64D718429E51} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950312 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7FF683EA-9BD8-43E3-97B6-CD6692149D86} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23180168 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DC45BC0-2DE4-4BEE-A8B3-A9803A02751F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8E680002-B786-4EF7-B427-62AAEDC68AA1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {8EF52FB2-763F-4228-9C2C-ACCB288904C6} - System32\Tasks\Avast SecureLine => C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
Task: {9405E62A-5E04-4445-98F6-C58B47B0250D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118096 2021-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {96658002-02D6-4936-B516-E567D1BFC21B} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1199384 2021-07-07] (Avast Software s.r.o. -> AVAST Software)
Task: {9F5E9463-DD67-4EFC-8D5D-26732C6B1ED9} - System32\Tasks\HP AR Program Upload - 6a604d0decb84cd6bddc00652dbf3eeb7723f412f3074ecf9f64895e83fdcf19 => C:\Program Files\HP\HP Photosmart 7520 series\bin\HPRewards.exe [3513960 2012-10-17] (Hewlett Packard -> TODO: <Company name>)
Task: {A6266222-41CA-48F3-8F83-AEEF98F1245E} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [38504 2021-05-11] (HP Inc. -> HP Inc.)
Task: {A92238C9-F1C2-424D-9308-CEA9E8B1BAE4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {AE3DFC08-A525-49E8-931D-7576E185CC9C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855592 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA965312-05C6-45F7-B605-51C40DF845D0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-13] (Google Inc -> Google Inc.)
Task: {BF403B71-334D-4DF5-B198-251D8FAC921A} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel(R) Software -> Intel Corporation)
Task: {C19129E4-82E6-4DBA-B4C9-B140BD3DA438} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C67EE5F2-AD4D-4752-8475-392617CE35A9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CC848013-8775-4858-956F-F998AE7A2EA4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855592 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CCC640C0-A5A2-46AD-80AD-F44A6B455537} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-05-13] (Google Inc -> Google Inc.)
Task: {CE893163-7C7D-47BC-ADB5-06ED2FC659D3} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [6098200 2021-07-02] (Avast Software s.r.o. -> Avast Software)
Task: {CEDA02CE-0C64-4B7D-B550-287ECF01027F} - System32\Tasks\Opera scheduled assistant Autoupdate 1582305530 => C:\Program Files\Opera\launcher.exe [2264784 2021-07-07] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {D29F5B86-5D94-4EA6-8C16-27679F067A1C} - System32\Tasks\HP AR Program Upload - 926b196a35424ae6a972826fdefee79947aa60185af648e8a86e2ba0262ebc4d => C:\Program Files\HP\HP Photosmart 7520 series\bin\HPRewards.exe [3513960 2012-10-17] (Hewlett Packard -> TODO: <Company name>)
Task: {D2E78784-8D10-4B9D-9EA2-CB0A01BCC9C7} - System32\Tasks\HPCustParticipation HP Photosmart 7520 series => C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe [4119656 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {D3383829-E1F8-4DB0-B421-9683296CC7E8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [994856 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E2A0B5AC-E42D-4286-9740-31DAE669DD6E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950312 2018-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E39F8E3B-7C5B-41B7-AAF9-A6C74ECBD12A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-07-03] (HP Inc. -> HP Inc.)
Task: {E58D5D10-8FED-4F25-8E1F-1B25FA38A08A} - System32\Tasks\Nvbackend => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {EB740447-DD82-4AFF-880E-4AC995D53BDE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {F0E63612-CF3A-4CF6-93A3-14BA4BD73867} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {F5E7E00F-ACA4-4550-9AA4-25E526C87186} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{4dc2b347-3358-4eb2-8c2a-c395155bf9e2}: [DhcpNameServer] 40.23.1.13
Tcpip\..\Interfaces\{72eebfc3-002a-401e-bc91-b1c06eafe319}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{dabbe3d5-7560-487c-a40d-bf09063a5e70}: [DhcpNameServer] 192.168.43.1
Edge:
=======
Edge Notifications: HKU\S-1-5-21-851365862-1173847423-415781296-1001 -> hxxps://www.tradingview.com; hxxps://uk.tradingview.com; hxxp://www.xtrainvestor.com; hxxp://chat-prod.xtrainvestor.com
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\DagArne\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-10]
Edge Notifications: Default -> hxxp://chat-prod.xtrainvestor.com; hxxp://www.xtrainvestor.com; hxxps://uk.tradingview.com; hxxps://www.tradingview.com
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\DagArne\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-07-04]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: f68xguam.default
FF ProfilePath: C:\Users\DagArne\AppData\Roaming\Mozilla\Firefox\Profiles\f68xguam.default [2021-07-12]
FF Notifications: Mozilla\Firefox\Profiles\f68xguam.default -> hxxps://www.tradingview.com; hxxps://tekinvestor.no; hxxps://af.ryver.com; hxxps://chat.skatteetaten.no; hxxps://www.xtrainvestor.com; hxxps://forum.doktoronline.no; hxxps://web.telegram.org; hxxps://www.valuta-kurser.no; hxxps://tradedirect365.com.au; hxxps://www.dailystar.co.uk; hxxps://chat.ikea.no
FF HKLM\...\Firefox\Extensions: [
web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKLM-x32\...\Firefox\Extensions: [
web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.978\npSurveillancePlugin_x86_64.dll [2016-09-23] (Synology Inc. -> Synology) [File not signed]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll [2015-06-26] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] (WildTangent Inc -> )
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.978\npSurveillancePlugin.dll [2016-09-23] (Synology Inc. -> Synology) [File not signed]
FF Plugin HKU\S-1-5-21-851365862-1173847423-415781296-1001:
www.mydlink.com/Uplayer -> C:\Users\DagArne\AppData\Roaming\D-Link\mydlink services plugin\1.0.2.7\npUplayer.dll [2015-12-11] (D-LINK CORPORATION -> D-Link Corporation)
Chrome:
=======
CHR Profile: C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default [2021-07-03]
CHR Extension: (Slides) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-17]
CHR Extension: (Docs) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-17]
CHR Extension: (Google Drive) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-27]
CHR Extension: (YouTube) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-13]
CHR Extension: (Steam Market Extended) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\djmpjhobbpaljlpbalflmbmamkflnpdf [2021-04-11]
CHR Extension: (Adobe Acrobat) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-16]
CHR Extension: (Sheets) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-17]
CHR Extension: (Google Docs Offline) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-18]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-04-18]
CHR Extension: (mydlink services plugin) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldibdoepbjbkkcbgndfljnphngpglhbb [2017-05-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-11]
CHR Extension: (Gmail) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-27]
CHR Extension: (Chrome Media Router) - C:\Users\DagArne\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-11]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR Profile: C:\Users\DagArne\AppData\Roaming\Opera Software\Opera Stable [2021-07-10]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\DagArne\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-07-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9056656 2021-06-28] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-10] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-10] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-07-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent Inc -> WildTangent)
R2 GS In-Game Service; C:\Program Files (x86)\GameTracker\GSInGameService.exe [1677080 2013-12-19] (Clan Servers Hosting LLC -> ClanServers Hosting LLC)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1309184 2016-10-07] (HP Inc.) [File not signed]
R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [734760 2021-07-03] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [733224 2021-07-03] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [733216 2021-07-03] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-11] (HP Inc. -> HP Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [733760 2021-07-03] (HP Inc. -> HP Inc.)
S2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-09-17] (Intel(R) Software Asset Manager -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7462200 2021-07-10] (Malwarebytes Inc -> Malwarebytes)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [8700696 2021-07-07] (Avast Software s.r.o. -> AVAST Software)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248840 2016-03-18] (Synology Inc. -> ) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone\Library\DriverInstaller\DriverInstall.exe [120016 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [44640 2015-08-01] (AVAST Software a.s. -> The OpenVPN Project)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [59312 2020-06-30] (Avast Software s.r.o. -> Avast Software)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-08] (Malwarebytes Inc -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-07-10] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-07-10] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69016 2021-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-07-10] (Malwarebytes Inc -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425192 2021-07-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-10] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-07-12 20:40 - 2021-07-12 20:41 - 000041901 _____ C:\Users\DagArne\Downloads\FRST.txt
2021-07-12 20:39 - 2021-07-12 20:40 - 000000000 ____D C:\FRST
2021-07-12 20:38 - 2021-07-12 20:38 - 002301440 _____ (Farbar) C:\Users\DagArne\Downloads\FRST64.exe
2021-07-10 22:02 - 2021-07-10 22:02 - 103284736 _____ C:\WINDOWS\system32\config\SOFTWARE
2021-07-10 21:58 - 2021-07-10 22:02 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2021-07-10 20:13 - 2021-07-10 20:13 - 000001047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2021-07-10 20:13 - 2021-07-10 20:13 - 000001035 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2021-07-10 20:03 - 2021-07-10 20:03 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-07-10 20:03 - 2021-07-10 20:03 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-07-10 20:03 - 2021-07-10 20:03 - 000069016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-07-10 19:44 - 2021-07-10 19:44 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-07-09 17:39 - 2021-07-09 17:39 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-07-09 17:39 - 2021-07-09 17:39 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-07-09 17:39 - 2021-07-09 17:39 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-07-09 17:39 - 2021-07-09 17:39 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-07-09 17:39 - 2021-07-09 17:39 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-07-09 17:39 - 2021-07-09 17:39 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-07-09 17:39 - 2021-07-09 17:39 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-09 17:38 - 2021-07-09 17:38 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-07-09 17:38 - 2021-07-09 17:38 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-09 17:38 - 2021-07-09 17:38 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-07-09 17:38 - 2021-07-09 17:38 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-07-09 17:38 - 2021-07-09 17:38 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-07-08 17:45 - 2021-07-08 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-07-03 12:58 - 2021-07-03 12:58 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-07-03 12:58 - 2021-07-03 12:58 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-07-03 12:58 - 2021-07-03 12:58 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-07-03 12:58 - 2021-07-03 12:58 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-07-03 07:59 - 2021-07-03 08:02 - 000000022 _____ C:\Users\DagArne\Downloads\MinSky(4).zip
2021-07-03 07:39 - 2021-07-03 07:39 - 001533826 _____ C:\Users\DagArne\Downloads\OneDrive-2021-07-02.zip
2021-07-02 20:36 - 2021-07-02 20:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-30 22:38 - 2021-06-30 22:38 - 000000000 ____D C:\Users\DagArne\AppData\Roaming\HP
2021-06-30 22:30 - 2021-06-30 22:30 - 000001170 _____ C:\Users\Public\Desktop\HP Support Assistant.lnk
2021-06-22 21:09 - 2021-06-22 21:09 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-17 21:58 - 2021-07-10 12:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-07-12 20:40 - 2020-01-07 21:59 - 000000000 ____D C:\Program Files\CCleaner
2021-07-12 20:39 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-07-12 20:32 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-12 20:14 - 2020-11-13 02:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-07-12 19:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-07-12 16:44 - 2019-10-03 21:52 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-07-12 16:44 - 2017-05-14 09:15 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-11 23:37 - 2020-11-13 02:53 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-851365862-1173847423-415781296-1001
2021-07-11 23:37 - 2020-11-13 02:47 - 000002444 _____ C:\Users\DagArne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-11 23:37 - 2016-12-09 23:18 - 000000000 ___RD C:\Users\DagArne\OneDrive
2021-07-11 12:34 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-10 20:16 - 2019-02-04 21:00 - 000000000 ____D C:\ProgramData\Mozilla
2021-07-10 20:15 - 2017-01-05 01:38 - 000000000 ____D C:\Users\DagArne\AppData\LocalLow\Mozilla
2021-07-10 20:14 - 2017-01-07 17:27 - 000000000 ____D C:\Users\DagArne\AppData\Local\TeamViewer
2021-07-10 20:13 - 2017-01-07 17:26 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-07-10 20:10 - 2020-11-13 03:26 - 000453912 _____ C:\WINDOWS\system32\perfh014.dat
2021-07-10 20:10 - 2020-11-13 03:26 - 000077908 _____ C:\WINDOWS\system32\perfc014.dat
2021-07-10 20:10 - 2020-11-13 02:51 - 001452474 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-07-10 20:03 - 2020-11-13 02:53 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2021-07-10 20:03 - 2020-11-13 02:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-07-10 20:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-07-10 20:03 - 2016-12-09 23:16 - 000000000 __SHD C:\Users\DagArne\IntelGraphicsProfiles
2021-07-10 20:03 - 2016-10-07 21:54 - 000000000 ____D C:\ProgramData\AVAST Software
2021-07-10 19:58 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-07-10 19:44 - 2020-08-07 19:18 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-07-10 19:44 - 2019-10-19 10:12 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-07-10 12:27 - 2020-11-13 02:45 - 000602896 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-10 12:27 - 2017-05-13 09:40 - 000000000 ____D C:\Program Files\Opera
2021-07-10 12:27 - 2016-12-30 23:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-10 12:27 - 2016-04-06 03:52 - 000001040 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-07-10 12:27 - 2016-04-06 03:52 - 000001036 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-07-10 12:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-10 11:38 - 2020-06-09 18:28 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-10 11:38 - 2020-06-09 18:28 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-07-10 11:09 - 2020-11-13 02:53 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-07-10 00:05 - 2018-02-25 02:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-07-09 20:21 - 2020-11-13 02:53 - 000003958 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1494661281
2021-07-09 20:21 - 2017-07-01 00:26 - 000001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera browser.lnk
2021-07-09 17:42 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-08 19:34 - 2020-11-13 02:53 - 000004170 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582305530
2021-07-08 17:45 - 2016-04-06 03:52 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-07-04 10:25 - 2016-12-09 23:18 - 000000000 ____D C:\Users\DagArne\AppData\Local\HP_Inc
2021-07-03 21:47 - 2016-04-06 03:49 - 000000000 ____D C:\Program Files\HP
2021-07-02 21:42 - 2016-04-06 03:54 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-07-02 20:36 - 2016-12-30 23:18 - 000001235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-07-02 19:32 - 2020-11-30 18:56 - 000003448 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b9571e0fc54f
2021-07-02 19:32 - 2020-11-13 02:53 - 000003542 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-02 11:12 - 2020-06-30 16:55 - 000036120 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2021-06-30 22:48 - 2016-10-07 21:53 - 000000000 ____D C:\ProgramData\HP
2021-06-30 22:30 - 2017-11-21 09:29 - 000000000 ____D C:\Users\DagArne\AppData\Local\Packages
2021-06-30 22:30 - 2017-05-14 09:15 - 000000000 ____D C:\Program Files (x86)\HP
2021-06-30 22:30 - 2016-12-09 23:18 - 000000000 ____D C:\Users\DagArne\AppData\Local\HP
2021-06-30 22:30 - 2016-12-09 23:17 - 000000000 ____D C:\Users\DagArne\AppData\Local\Hewlett-Packard
2021-06-30 22:29 - 2016-10-07 21:16 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2021-06-30 22:28 - 2016-10-07 21:18 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2021-06-30 22:28 - 2016-04-06 11:24 - 000000000 ____D C:\SWSetup
2021-06-30 22:28 - 2016-04-06 03:50 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2021-06-25 19:38 - 2017-05-13 00:04 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-25 19:38 - 2017-05-13 00:04 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-06-25 17:03 - 2016-12-10 00:23 - 000000000 ____D C:\Users\DagArne\AppData\Local\CrashDumps
2021-06-25 14:37 - 2020-11-13 02:53 - 000004100 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-06-25 14:37 - 2020-11-13 02:53 - 000003868 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-06-20 15:00 - 2016-12-09 23:16 - 000000000 ____D C:\Users\DagArne\AppData\Local\NVIDIA Corporation
2021-06-20 09:24 - 2020-10-03 00:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-15 21:57 - 2016-12-11 00:05 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-15 00:03 - 2021-03-07 18:21 - 000000000 ____D C:\WINDOWS\Minidump
2021-06-15 00:03 - 2020-11-12 00:39 - 000000000 ___DC C:\WINDOWS\Panther
==================== Files in the root of some directories ========
2018-09-30 21:58 - 2018-09-30 21:58 - 000000000 _____ () C:\Users\DagArne\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-07-2021
Ran by DagArne (12-07-2021 20:42:50)
Running from C:\Users\DagArne\Downloads
Windows 10 Home Version 2004 19041.1083 (X64) (2020-11-13 00:54:10)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-851365862-1173847423-415781296-500 - Administrator - Disabled)
DagArne (S-1-5-21-851365862-1173847423-415781296-1001 - Administrator - Enabled) => C:\Users\DagArne
DefaultAccount (S-1-5-21-851365862-1173847423-415781296-503 - Limited - Disabled)
Guest (S-1-5-21-851365862-1173847423-415781296-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-851365862-1173847423-415781296-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.159 - Adobe Systems, Inc.)
Avast SecureLine VPN (HKLM\...\%V_PRODUCT_UNINSTALL_REG_KEY%) (Version: 5.6.4971.434 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.12.5611.2566 - Avast Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CandleScanner 4.4.5 (HKLM-x32\...\{87D36978-2A54-4D00-AF56-E72422D24557}_is1) (Version: 4.4.5 - LEMPART)
CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform)
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6.7428 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - Ditt företagsnamn) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - CyberLink Corp.)
DataPoint Runtime edition (HKLM-x32\...\{4B29DEDC-91B3-4CFC-B325-9E91B87A526D}) (Version: 16.0.171 - PresentationPoint) Hidden
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
dr.fone (Version 9.6.0) (HKLM-x32\...\{E8F86DA8-B8E4-42C7-AFD4-EBB692AC43FD}_is1) (Version: 9.6.0.21 - Wondershare Technology Co.,Ltd.)
dr.fone toolkit for Android (Version 8.3.3) (HKLM-x32\...\{7B08A1E1-3644-4237-B39D-762B5F5564D0}_is1) (Version: 8.3.3.64 - Wondershare Technology Co.,Ltd.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 126.4.4618 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.485.1 - Dropbox, Inc.) Hidden
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
eSignal (HKLM\...\{A73576CE-6EA4-467A-AAAE-77C4C0E5C83E}) (Version: 12.15.5824.1034 - Interactive Data)
GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version: - ClanServers Hosting LLC.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC)
HP CoolSense (HKLM-x32\...\{0C723C74-62DF-4B35-9490-A207546D866D}) (Version: 2.21.4 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{88970959-baf7-4864-a39a-69a58e8ae5cf}) (Version: 5.0.18701 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Photosmart 7520 series Basic Device Software (HKLM\...\{27ABA988-D480-4F44-B0FD-45E5656D2CFE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 7520 series Help (HKLM-x32\...\{08295D09-E002-48F8-905D-34E4B08509BA}) (Version: 28.0.0 - Hewlett Packard)
HP Photosmart 7520 series Product Improvement Study (HKLM\...\{16B872EE-C458-41BD-BEAE-52758A3F3168}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8318.5320 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{5F084DD8-AF2C-4004-9C92-820C32E4BD55}) (Version: 12.18.34.21 - HP)
HP Sure Connect (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 1.0.0.29 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{ABE95EB9-5EA1-42A3-8009-BA7602127ED6}) (Version: 1.4.25 - HP Inc.)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.)
Intel(R) Chipset Device Software (HKLM-x32\...\{226be6c3-8e08-4d52-bd3a-d361008448c5}) (Version: 10.1.1.37 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11000.2996 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4836 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.9.8.1051 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) WiDi (HKLM\...\{6B15F1EF-F3A8-4C29-BF9E-18EB3683A83D}) (Version: 6.0.60.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{AC8973AF-7F4C-40F4-BFE1-C02FE95ED2C2}) (Version: 3.2.1184 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{F381F456-3520-40BE-8855-61EA72292950}) (Version: 19.00.1621.3340 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
iPoint (HKLM-x32\...\{E8410B55-1499-44EE-8F8A-7F996BC6A758}) (Version: 1.5.43 - PresentationPoint) Hidden
LBRY 0.33.2 (HKLM\...\e406725b-d361-5b1c-81f7-0a4c5ac54cb3) (Version: 0.33.2 - LBRY Inc.)
Malwarebytes version 4.4.2.123 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.2.123 - Malwarebytes)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.14131.20278 - Microsoft Corporation)
Microsoft 365 - nb-no (HKLM\...\O365HomePremRetail - nb-no) (Version: 16.0.14131.20278 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.67 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\OneDriveSetup.exe) (Version: 21.119.0613.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.40303 - Microsoft Corporation)
Mozilla Firefox 89.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 89.0.2 (x64 en-US)) (Version: 89.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 89.0.2.7843 - Mozilla)
mydlink services plugin (HKLM-x32\...\{1A9B665A-5F27-4F71-BF90-22FDFE7A1635}) (Version: 1.0.2.7 - D-Link Corporation)
NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation)
NVIDIA Graphics Driver 462.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.30 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0414-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{9D74A0AE-CB0C-49DD-9B44-1B49855FCE13}) (Version: 4.13.9783 - Apache Software Foundation)
Opera Stable 77.0.4054.203 (HKLM-x32\...\Opera 77.0.4054.203) (Version: 77.0.4054.203 - Opera Software)
PresentationPoint DataPoint Runtime edition (HKLM-x32\...\DataPoint Runtime edition 16.0.171) (Version: 16.0.171 - PresentationPoint)
PresentationPoint iPoint (HKLM-x32\...\iPoint 1.5.43) (Version: 1.5.43 - PresentationPoint)
PrimeTrader 7.5 (HKLM\...\PrimeTrader_is1) (Version: - Netfonds Bank ASA)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21287 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
Språkpakke for Microsoft Visual Studio 2010 Tools for Office Runtime (x64) – NOR (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - NOR) (Version: 10.0.40303 - Microsoft Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SurveillancePlugin (HKLM-x32\...\{932013D5-5469-4985-9920-9CA33C144FBE}) (Version: 1.0.0.978 - Synology)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - )
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-2) (Version: 1.0.42.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-3) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-4) (Version: 1.0.54.1 - Intel Corporation Inc.)
Wargaming.net Game Center (HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\Wargaming.net Game Center) (Version: 20.1.0.9514 - Wargaming.net)
WickrMe (HKLM\...\{B4C54516-1A63-482E-B380-EF3E09400FE5}) (Version: 5.75.16 - Wickr Inc.)
WildTangent Games App for HP (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.1.1.12 - WildTangent)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
Wondershare MobileTrans ( Version 7.9.9 ) (HKLM-x32\...\{18CDCEAA-A9E4-4A4C-AC0E-C15E87C30EA5}_is1) (Version: 7.9.9 - Wondershare)
Zoom (HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.)
Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2020-03-01] (Amazon.com)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.)
HP LOUNGE -> C:\Program Files\WindowsApps\UniversalMusicMobile.HPLOUNGE_2.1.1.0_x64__3ms5eyejfeart [2021-01-25] (Universal Music Mobile)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_128.1.219.0_x64__v10z8vjag6ke6 [2021-07-03] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.7.536.0_x64__v10z8vjag6ke6 [2021-07-03] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-11-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-19] (Netflix, Inc.)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.2.5.0_x64__kx24dqmazqk8j [2021-04-10] (Random Salad Games LLC)
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-03-19] (Synaptics Incorporated)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2020-12-18] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-11] (Twitter Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-851365862-1173847423-415781296-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\DagArne\Dropbox [2020-04-23 20:52]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.48.0.dll [2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\igfxDTCM.dll [2018-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-04-05] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\DagArne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameTracker Lite\Visit GameTracker Website.lnk -> hxxp://www.gametracker.com
ShortcutWithArgument: C:\Users\DagArne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\mydlink services plugin.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=ldibdoepbjbkkcbgndfljnphngpglhbb
ShortcutWithArgument: C:\Users\DagArne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AmazonShopping.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://www.amazon.co.uk/gp/bit/amazonbookmark.html?tag=hp2-desktop-uk-21&partner=HP
==================== Loaded Modules (Whitelisted) =============
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\nb_no\acrotray.nor
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\S-1-5-21-851365862-1173847423-415781296-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://no.msn.com/?ocid=U220DHP&pc=U220
HKU\S-1-5-21-851365862-1173847423-415781296-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
SearchScopes: HKLM-x32 -> {223A9163-0844-4878-B01A-C527008B8B1D} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-851365862-1173847423-415781296-1001 -> {223A9163-0844-4878-B01A-C527008B8B1D} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-27] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-08-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2021-06-30] (HP Inc. -> HP Inc.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-08-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-08-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2021-06-30] (HP Inc. -> HP Inc.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-08-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-08-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-08-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-851365862-1173847423-415781296-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-08-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-02] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-851365862-1173847423-415781296-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\StartupApproved\Run: => "GameTracker"
HKU\S-1-5-21-851365862-1173847423-415781296-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{138D064D-2B94-449D-8FCC-8F0196060365}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{C350D196-72B4-44EF-A068-A01349995BDA}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{3389A9A2-FB23-4B0D-A636-C8418687B1F3}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E37571D9-02DA-484F-88CD-125CFF4FA38C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A298381E-5787-4BD6-86D2-C65B2875C950}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{584AE35C-888D-4F51-AF6C-07650EFF3498}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{57B67567-A903-4AE8-A013-A628A3C628E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F6C4F594-14ED-47DC-8B8D-2835CEF1B3B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2DA9C666-0205-4574-928D-B5B32FEAF36E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1C5AB34-5CA0-4ECE-96B7-E715854C9E9F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0DAB5B13-F543-4167-A061-17EC7E8849AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C8BE4A33-974D-4C34-B8A7-A7707E684D95}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C97D8515-51EE-438B-9A74-63B7ACED14BB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C4677BFC-4797-42C6-9516-0E47E7925753}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B61E3641-187F-4C54-97F3-BF2653FBAFFE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{49715FA0-8B80-40C5-86E0-CD8024EC06E2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5B8F9FF1-93BD-4983-A484-88257BF957E7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{8F1B5DE6-5856-4A82-A4D8-0FC46CB2DD0B}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [File not signed]
FirewallRules: [UDP Query User{2A2A39AD-3F5C-4E96-A6DB-DABE398D3ECC}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [File not signed]
FirewallRules: [TCP Query User{2366C3A0-3AB2-475D-BA7F-DF8A776F5370}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [File not signed]
FirewallRules: [UDP Query User{EC5E7D5D-1602-468E-B1FC-A847CAF12CD5}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [File not signed]
FirewallRules: [{F8498BC1-FD42-4EB7-82CC-B5F54BC27FAC}] => (Allow) C:\WINDOWS\system32\lxeacoms.exe (Lexmark International, Inc. -> )
FirewallRules: [{EA3C654A-6F4F-490F-9253-E1A558300938}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\FaxApplications.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{AB297FAB-0047-43E8-96AB-4798884F399C}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\DigitalWizards.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{D8526FFA-222A-4BB4-9851-49D103A25CF6}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\SendAFax.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{866A5C5D-3212-4D07-839B-85CA570F12F8}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{317259EE-81CE-498B-9D06-BD121E09A1E7}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{82193CB1-F344-49F7-91E6-1368090BF7F0}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{3CCBAC5E-38C6-4921-9E3B-2AD168A6FE5E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{AD118D8F-4803-4617-AD73-3BE5BFC5D21D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9B484C15-A01C-4B68-8EED-318DD23FD1E2}] => (Allow) D:\SteamLibrary\steamapps\common\Anarchy Online\AnarchyOnline.exe (FUNCOM OSLO -> Funcom Oslo AS)
FirewallRules: [{A367E814-7EED-4CA8-A2C3-3A9442E5B9BB}] => (Allow) D:\SteamLibrary\steamapps\common\Anarchy Online\AnarchyOnline.exe (FUNCOM OSLO -> Funcom Oslo AS)
FirewallRules: [{09795259-3D03-4913-97F3-6255960D4007}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{4DDF165A-D6B5-4F58-B6C1-90DD50265906}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{4FC2491B-48BB-41D4-8BCF-8E2E28EDA536}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CB9B839D-62E6-48C9-84EB-96817565C6CD}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [TCP Query User{A6945FA3-DFE5-4DCA-B598-27CF1B6D41D5}C:\program files\lbry\resources\static\daemon\lbrynet.exe] => (Allow) C:\program files\lbry\resources\static\daemon\lbrynet.exe (LBRY, Inc -> )
FirewallRules: [UDP Query User{C6DD1D10-8479-42C7-A667-539F4F563472}C:\program files\lbry\resources\static\daemon\lbrynet.exe] => (Allow) C:\program files\lbry\resources\static\daemon\lbrynet.exe (LBRY, Inc -> )
FirewallRules: [{78CE92DC-731D-4604-9F89-8ADB36114BFC}] => (Allow) C:\Users\DagArne\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{6AE7C765-E886-4027-9CBF-5D0B4225FA04}] => (Allow) C:\Users\DagArne\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{9D835CF1-EB8C-4D1A-8EAD-1B78C643175B}] => (Allow) C:\Users\DagArne\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{955EB523-F438-4EE5-A092-344528E246F4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AD07DD4C-3890-4DEF-ABAA-AD77BCE36B43}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{637D9A36-01CC-4F67-80F8-CBBFC43AD5B0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1D497F39-D40A-4B6C-822E-698C1EA4330A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{791507C7-A722-42F4-B5A7-DED448BDA061}C:\program files (x86)\common files\interactive data\dm\winros.exe] => (Allow) C:\program files (x86)\common files\interactive data\dm\winros.exe (Interactive Data) [File not signed]
FirewallRules: [UDP Query User{46B739E3-73C9-4DCB-8122-BC31BF36008B}C:\program files (x86)\common files\interactive data\dm\winros.exe] => (Allow) C:\program files (x86)\common files\interactive data\dm\winros.exe (Interactive Data) [File not signed]
FirewallRules: [TCP Query User{AC4D5060-77C3-481E-9591-254AF84A47D3}C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe] => (Allow) C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe (Presentation Point GCV -> PresentationPoint)
FirewallRules: [UDP Query User{263CDF60-B164-4EA3-9D8D-4703A18163FF}C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe] => (Allow) C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe (Presentation Point GCV -> PresentationPoint)
FirewallRules: [TCP Query User{07B7F012-78A4-4AD6-B539-1D0BC6A74760}C:\program files (x86)\ninjatrader 8\bin64\ninjatrader.exe] => (Allow) C:\program files (x86)\ninjatrader 8\bin64\ninjatrader.exe => No File
FirewallRules: [UDP Query User{88B041C8-B688-46AB-AEFF-2259D6C12CE0}C:\program files (x86)\ninjatrader 8\bin64\ninjatrader.exe] => (Allow) C:\program files (x86)\ninjatrader 8\bin64\ninjatrader.exe => No File
FirewallRules: [TCP Query User{2EC33DD3-8B2E-4B53-AAB3-6FFE8187A73B}C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe] => (Block) C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe (Presentation Point GCV -> PresentationPoint)
FirewallRules: [UDP Query User{662895C7-D7D5-47EB-AF56-11645D4993E8}C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe] => (Block) C:\program files (x86)\presentationpoint\ipoint\player\playerkernel.exe (Presentation Point GCV -> PresentationPoint)
FirewallRules: [{F9F7F32C-DEC3-4EC4-BDDF-0267ACCB8336}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{863711AD-4E2C-432D-AE84-2FC130B03B2B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E615AE58-A646-4BA5-BF06-7DF3830C5E99}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04D4DF0C-0568-4AC3-80A2-893647D75972}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{035F855A-57A4-4AAB-8CC6-06E6C779267A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2B04AF34-CA02-4B82-A99E-CE3B77BB67E1}] => (Allow) C:\Program Files\Opera\77.0.4054.172\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{9F6573C9-877B-4565-BE47-A67162C1FE58}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6239F771-1BE4-4B7B-B71A-4E63FC374ECC}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{6787F608-5BAF-44F2-B763-5CB50A020508}] => (Allow) C:\Program Files\Opera\77.0.4054.203\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{64A45E92-3CA8-4EAE-9D8C-2F77BDB509F7}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4A3CB54C-C274-4FB7-8C25-2A2A977DB184}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A6901FCC-2D10-4B90-8C25-23031BD83DF9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF3270B1-CFDE-4167-89C3-261DC43012DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{48B221E0-7B81-4D48-896E-2D288315A474}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118.01 GB) (Free:32.06 GB) (27%)
==================== Faulty Device Manager Devices ============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (07/12/2021 04:44:56 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (07/12/2021 04:41:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 2.0.A.1.E.2.E.4.9.B.D.E.5.D.4.9.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR LAPTOP-5LS6TKUL.local.
Error: (07/12/2021 04:41:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.43.102:5353 25 2.0.A.1.E.2.E.4.9.B.D.E.5.D.4.9.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR LAPTOP-5LS6TKUL-2.local.
Error: (07/12/2021 04:41:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 2.0.A.1.E.2.E.4.9.B.D.E.5.D.4.9.9.2.2.8.4.C.2.0.1.2.1.2.2.0.A.2.ip6.arpa. PTR LAPTOP-5LS6TKUL.local.
Error: (07/12/2021 04:41:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.43.102:5353 25 2.0.A.1.E.2.E.4.9.B.D.E.5.D.4.9.9.2.2.8.4.C.2.0.1.2.1.2.2.0.A.2.ip6.arpa. PTR LAPTOP-5LS6TKUL-2.local.
Error: (07/12/2021 04:41:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 102.43.168.192.in-addr.arpa. PTR LAPTOP-5LS6TKUL.local.
Error: (07/12/2021 04:41:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.43.102:5353 25 102.43.168.192.in-addr.arpa. PTR LAPTOP-5LS6TKUL-2.local.
Error: (07/12/2021 04:41:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 1.0.0.127.in-addr.arpa. PTR LAPTOP-5LS6TKUL-2.local.
System errors:
=============
Error: (07/10/2021 08:03:10 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT AUTHORITY)
Description: 0x8000002a36\SystemRoot\System32\Config\SOFTWARE
Error: (07/10/2021 07:58:17 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-5LS6TKUL)
Description: Serveren {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ble ikke registrert hos DCOM innen fristen for tidsavbrudd.
Error: (07/10/2021 07:58:17 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-5LS6TKUL)
Description: Serveren {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ble ikke registrert hos DCOM innen fristen for tidsavbrudd.
Error: (07/10/2021 07:58:17 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-5LS6TKUL)
Description: Serveren {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ble ikke registrert hos DCOM innen fristen for tidsavbrudd.
Error: (07/10/2021 07:58:17 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-5LS6TKUL)
Description: Serveren {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ble ikke registrert hos DCOM innen fristen for tidsavbrudd.
Error: (07/10/2021 07:58:17 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-5LS6TKUL)
Description: Serveren {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ble ikke registrert hos DCOM innen fristen for tidsavbrudd.
Error: (07/10/2021 07:58:17 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-5LS6TKUL)
Description: Serveren {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ble ikke registrert hos DCOM innen fristen for tidsavbrudd.
Error: (07/10/2021 07:58:17 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-5LS6TKUL)
Description: Serveren {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ble ikke registrert hos DCOM innen fristen for tidsavbrudd.
Windows Defender:
================
Date: 2021-07-12 17:38:45
Description:
Skanning av Microsoft Defender Antivirus er stoppet før fullføring.
Skanne-ID: {BA92C280-5253-4105-8674-5B3A2889EAD2}
Skannetype: Antimalware
Skanneparametere: Quick Scan
Bruker: NT AUTHORITY\SYSTEM
Date: 2021-07-11 01:06:41
Description:
Skanning av Microsoft Defender Antivirus er stoppet før fullføring.
Skanne-ID: {273C7537-4B40-42F2-BDA8-6AE255A54626}
Skannetype: Antimalware
Skanneparametere: Quick Scan
Bruker: NT AUTHORITY\SYSTEM
Date: 2021-07-10 03:08:31
Description:
Skanning av Microsoft Defender Antivirus er stoppet før fullføring.
Skanne-ID: {81590AE0-4FA9-4488-9DE1-1DB76B006EE0}
Skannetype: Antimalware
Skanneparametere: Quick Scan
Bruker: NT AUTHORITY\SYSTEM
Date: 2021-07-10 01:14:10
Description:
Skanning av Microsoft Defender Antivirus er stoppet før fullføring.
Skanne-ID: {4B08F2BC-521A-405E-8697-D7B2C36DC7EF}
Skannetype: Antimalware
Skanneparametere: Quick Scan
Bruker: NT AUTHORITY\SYSTEM
Date: 2021-07-09 17:58:13
Description:
Skanning av Microsoft Defender Antivirus er stoppet før fullføring.
Skanne-ID: {654225CD-1943-4CD1-A839-FE44F554A37D}
Skannetype: Antimalware
Skanneparametere: Quick Scan
Bruker: NT AUTHORITY\SYSTEM
Date: 2021-06-29 19:31:35
Description:
Microsoft Defender Antivirus støtte på en feilmelding mens den prøvde å oppdatere sikkerhetsinformasjonen.
Ny versjon av sikkerhetsinformasjon: 1.343.25.0
Tidligere versjon av sikkerhetsinformasjon: 1.341.1626.0
Oppdater kilde: User
Type sikkerhetsinformasjon: AntiSpyware
Oppdater type: Delta
Bruker: NT AUTHORITY\SYSTEM
Gjeldende motorversjon: 1.1.18300.4
Tidligere motorversjon: 1.1.18200.4
Feilmelding: 0x80070666
Feilbeskrivelse: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
Date: 2021-06-29 19:31:35
Description:
Microsoft Defender Antivirus støtte på en feilmelding mens den prøvde å oppdatere sikkerhetsinformasjonen.
Ny versjon av sikkerhetsinformasjon: 1.343.25.0
Tidligere versjon av sikkerhetsinformasjon: 1.341.1626.0
Oppdater kilde: User
Type sikkerhetsinformasjon: AntiVirus
Oppdater type: Delta
Bruker: NT AUTHORITY\SYSTEM
Gjeldende motorversjon: 1.1.18300.4
Tidligere motorversjon: 1.1.18200.4
Feilmelding: 0x80070666
Feilbeskrivelse: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
Date: 2021-06-29 19:31:35
Description:
Microsoft Defender Antivirus har støtt på en feil under forsøk på å oppdatere motoren.
Ny motorversjon: 1.1.18300.4
Forrige motorversjon: 1.1.18200.4
Bruker: NT AUTHORITY\SYSTEM
Feilkode: 0x80070666
Feilbeskrivelse: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
Date: 2021-06-04 10:03:29
Description:
Microsoft Defender Antivirus støtte på en feilmelding mens den prøvde å oppdatere sikkerhetsinformasjonen.
Ny versjon av sikkerhetsinformasjon: 1.341.28.0
Tidligere versjon av sikkerhetsinformasjon: 1.339.1926.0
Oppdater kilde: User
Type sikkerhetsinformasjon: AntiSpyware
Oppdater type: Delta
Bruker: NT AUTHORITY\SYSTEM
Gjeldende motorversjon: 1.1.18200.4
Tidligere motorversjon: 1.1.18100.6
Feilmelding: 0x80070666
Feilbeskrivelse: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
Date: 2021-06-04 10:03:29
Description:
Microsoft Defender Antivirus støtte på en feilmelding mens den prøvde å oppdatere sikkerhetsinformasjonen.
Ny versjon av sikkerhetsinformasjon: 1.341.28.0
Tidligere versjon av sikkerhetsinformasjon: 1.339.1926.0
Oppdater kilde: User
Type sikkerhetsinformasjon: AntiVirus
Oppdater type: Delta
Bruker: NT AUTHORITY\SYSTEM
Gjeldende motorversjon: 1.1.18200.4
Tidligere motorversjon: 1.1.18100.6
Feilmelding: 0x80070666
Feilbeskrivelse: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.
CodeIntegrity:
===============
Date: 2021-07-10 19:44:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Insyde F.53 12/12/2019
Motherboard: HP 820D
Processor: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz
Percentage of memory in use: 85%
Total physical RAM: 8081.91 MB
Available physical RAM: 1153.06 MB
Total Virtual: 20369.91 MB
Available Virtual: 6348.39 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:118.01 GB) (Free:32.07 GB) NTFS
Drive d: (DATA) (Fixed) (Total:915.29 GB) (Free:899.35 GB) NTFS
Drive e: (RECOVERY) (Fixed) (Total:16.22 GB) (Free:1.71 GB) NTFS ==>[system with boot components (obtained from drive)]
\\?\Volume{300706e0-2b68-4de8-a132-9103336f317c}\ () (Fixed) (Total:0.96 GB) (Free:0.36 GB) NTFS
\\?\Volume{f26183ca-7459-4018-9d6d-a8ae65964aad}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: F26CBEB3)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 140126FA)
Partition: GPT.
==================== End of Addition.txt =======================