Serveur minecraft

Enregistreur de frappe potentiel ? – Aide à la suppression des virus, chevaux de Troie, logiciels espions et logiciels malveillants – Resoudre les problemes d’un serveur MineCraft

Par Titanfall , le 13 août 2021 - 82 minutes de lecture

[bzkshopping keyword= »Minecraft » count= »8″ template= »grid »]

Bonjour,

J'ai eu mes informations de carte de crédit compromises 1 à 2 fois par an au cours des dernières années, et j'ai peur qu'un keylogger puisse être une cause potentielle. J'espérais que quelqu'un pourrait examiner mon journal pour tout problème.

Mon PC fonctionne généralement bien, aucun comportement manifestement suspect.

Merci!

FRST.txt

Résultat de l'analyse de l'outil d'analyse de récupération Farbar (FRST) (x64) Version : 19-07-2021 01

Exécuté par snowf (administrateur) sur DESKTOP-JPSPHV0 (Dell Inc. XPS 8930) (26-07-2021 21:16:53)

Exécuté depuis E:Téléchargements

Profils chargés : snowf

Plate-forme : Windows 10 Pro Version 20H2 19042.1052 (X64) Langue : Anglais (États-Unis)

Navigateur par défaut : Chrome

Mode de démarrage : Normal

==================== Processus (liste blanche) ==================

(Si une entrée est incluse dans la fixlist, le processus sera fermé. Le fichier ne sera pas déplacé.)

() [File not signed] C:Program FilesDropItDropIt.exe

() [File not signed] C:Program FilesPrivate Internet Accesspia-service.exe

(Adobe Inc. -> ) C:Program Files (x86)AdobeAdobe SyncCoreSyncCoreSync.exe

(Adobe Inc. -> Adobe Inc) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonIPCBoxAdobeIPCBroker.exe

(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonADSAdobe Desktop Service.exe

(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonElevationManagerAdobe Installer.exe

(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonElevationManagerAdobeUpdateService.exe

(Adobe Inc. -> Adobe Inc.) C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe

(Adobe Inc. -> Adobe Inc.) C:Program FilesAdobeAdobe Creative CloudACCCreative Cloud Helper.exe <2>

(Adobe Inc. -> Adobe Systems Inc.) C:Program Files (x86)AdobeAcrobat 2017Acrobatacrotray.exe

(Adobe Inc. -> Adobe Systems Incorporated) C:Program FilesAdobeAdobe Creative Cloud ExperienceCCXProcess.exe

(Adobe Inc. -> Adobe Systems Incorporated) C:Program FilesCommon FilesAdobeCreative Cloud LibrariesCCLibrary.exe

(Adobe Inc. -> Adobe Systems, Incorporated) C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe

(Adobe Inc. -> Adobe Systems, Incorporated) C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe

(Adobe Systems Incorporated) C:Program FilesWindowsAppsAdobeNotificationClient_2.0.1.8_x86__enpm4xejd91ycAdobeNotificationClient.exe

(Code42 Software Inc -> Code42 Software, Inc.) C:Program FilesCode42Code42Service.exe

(Code42 Software Inc -> Code42 Software, Inc.) C:Program FilesCode42electronCode42Desktop.exe <4>

(Dell Inc -> ) C:Program Files (x86)DellUpdateServiceServiceShell.exe

(Elaborate Bytes AG -> Elaborate Bytes AG) C:Program Files (x86)Elaborate BytesVirtualCloneDriveVCDDaemon.exe

(Garmin International, Inc. -> Garmin Ltd. ou ses filiales) C:Program Files (x86)GarminExpressexpress.exe

(Google LLC -> ) C:Program FilesGoogleDrivegoogledrivesync.exe <2>

(Google LLC -> Google LLC) C:Program Files (x86)GoogleChromeApplicationchrome.exe <47>

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.92GoogleCrashHandler.exe

(Google LLC -> Google LLC) C:Program Files (x86)GoogleUpdate1.3.36.92GoogleCrashHandler64.exe

(Hewlett-Packard Company -> HP Development Company, L.P.) C:Program Files (x86)HPStatusAlertsbinHPStatusAlerts.exe

(HP) [File not signed] C:Program Files (x86)HPHPLaserJetServiceHPLaserJetService.exe

(Intel Corporation -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorysgx_psw.inf_amd64_69d915519e0a2ac8aesm_service.exe

(Groupe Intel® Embedded Subsystems and IP Blocks -> Intel Corporation) C:Program Files (x86)IntelIntel® Management Engine ComponentsLMSLMS.exe

(Groupe sous-systèmes et blocs IP intégrés Intel® -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositorydal.inf_amd64_ffc75848a6342fdfjhi_service.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2dadf80722c4f751igfxCUIService.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2dadf80722c4f751igfxEM.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2dadf80722c4f751IntelCpHDCPSvc.exe

(Intel® pGFX 2020 -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2dadf80722c4f751IntelCpHeciSvc.exe

(Intel® Rapid Storage Technology -> Intel Corporation) C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorDataMgrSvc.exe

(Intel® Rapid Storage Technology -> Intel Corporation) C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorIcon.exe

(Technologie de stockage Intel® Rapid -> Intel Corporation) C:WindowsSystem32DriverStoreFileRepositoryiaahcic.inf_amd64_ffd80069472091bcRstMwService.exe

(Intel® Trust Services -> Intel® Corporation) C:WindowsSystem32DriverStoreFileRepositoryiclsclient.inf_amd64_75ffca5eec865b4blibSocketHeciServer.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe

(Malwarebytes Inc -> Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe

(Microsoft Corporation -> Microsoft Corporation) C:Program Files (x86)Microsoft OfficerootOffice16ONENOTEM.EXE

(Microsoft Corporation -> Microsoft Corporation) C:Program Files (x86)Microsoft OfficerootOffice16OUTLOOK.EXE

(Microsoft Corporation -> Microsoft Corporation) C:Program FilesCommon Filesmicrosoft sharedClickToRunOfficeClickToRun.exe

(Microsoft Corporation -> Microsoft Corporation) C:Program Filesdotnetdotnet.exe

(Microsoft Corporation -> Microsoft Corporation) C:UserssnowfAppDataLocalMicrosoftOneDriveOneDrive.exe

(Microsoft Corporation -> Microsoft Corporation) C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe

(Microsoft Corporation -> Microsoft® Corporation) C:Program Files (x86)Microsoft Money PlusMNYCoreFilesmsmoney.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsImmersiveControlPanelSystemSettings.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32dllhost.exe <3>

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32MoUsoCoreWorker.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32oobeUserOOBEBroker.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C:WindowsSystem32wiawow64.exe

(Éditeur de compatibilité matérielle Microsoft Windows -> Fournisseur DDK Windows ® Win 7) C:WindowsSystem32driversAdminService.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MsMpEng.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0NisSrv.exe

(Node.js Foundation -> Node.js) C:Program FilesAdobeAdobe Creative Cloud Experiencelibsnode.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:Program Files (x86)NVIDIA CorporationNvTelemetryNvTelemetryContainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:Program FilesNVIDIA CorporationDisplay.NvContainerNVDisplay.Container.exe <2>

(OpenJS Foundation -> Node.js) C:Program FilesCommon FilesAdobeCreative Cloud Librarieslibsnode.exe

(Oracle America, Inc. -> Oracle Corporation) C:Program Files (x86)Common FilesJavaJava Updatejusched.exe

(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:Program FilesMacriumCommonMacriumService.exe

(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:Program FilesMacriumCommonReflectMonitor.exe

(Paramount Software UK Ltd -> Paramount Software UK Ltd) C:Program FilesMacriumCommonReflectUI.exe

(PFU LIMITÉ) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsMon.exe

(Accès Internet privé incorporé) [File not signed] C:Program FilesPrivate Internet Accesspia-client.exe

(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:WindowsSystem32driversQcomWlanSrvx64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVBg64.exe <2>

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkAudioService64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:Program FilesRealtekAudioHDARtkNGUI64.exe

(Rivet Networks LLC -> Rivet Networks LLC) C:WindowsSystem32driversRivetNetworksKillerxTendUtility.exe

(Rivet Networks LLC -> Rivet Networks) C:WindowsSystem32driversRivetNetworksKillerKillerAnalyticsService.exe

(Rivet Networks LLC -> Rivet Networks) C:WindowsSystem32driversRivetNetworksKillerKillerNetworkService.exe

(Rivet Networks LLC -> Rivet Networks, LLC.) C:WindowsSystem32driversRivetNetworksKillerxTendUtilityService.exe

(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:WindowsSystem32escsvc64.exe

(Synology Inc. -> ) [File not signed] C:Program Files (x86)SynologyAssistantUsbClientService.exe

(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:Program Files (x86)TeamViewerTeamViewer.exe

(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:Program Files (x86)TeamViewerTeamViewer_Service.exe

(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:Program Files (x86)TeamViewertv_w32.exe

(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:Program Files (x86)TeamViewertv_x64.exe

(Tyrrrz) [File not signed] C:Program Files (x86)LightBulbLightBulb.exe

(Waves Inc -> Waves Audio Ltd.) C:Program FilesWavesMaxxAudioWavesSvc64.exe

(Waves Inc -> Waves Audio Ltd.) C:Program FilesWavesMaxxAudioWavesSysSvc64.exe

==================== Registre (liste blanche) ====================

(Si une entrée est incluse dans la liste de correctifs, l'élément de registre sera restauré par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM…Exécuter : [RTHDVCPL] => C:Program FilesRealtekAudioHDARtkNGUI64.exe [11102816 2021-01-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM…Exécuter : [RtHDVBg_PushButton] => C:Program FilesRealtekAudioHDARAVBg64.exe [3618096 2021-01-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM…Exécuter : [IAStorIcon] => C:Program FilesIntelIntel® Rapid Storage TechnologyIAStorIcon.exe [321096 2017-07-25] (Technologie de stockage Intel® Rapid -> Intel Corporation)

HKLM…Exécuter : [Reflect UI] => C:Program FilesMacriumCommonReflectUI.exe [3465608 2017-10-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

HKLM…Exécuter : [AdobeAAMUpdater-1.0] => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

HKLM…Exécuter : [AdobeGCInvoker-1.0] => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)

HKLM…Exécuter : [Code42Tray] => C:Program FilesCode42electronCode42Desktop.exe [90355120 2021-05-24] (Code42 Software Inc -> Code42 Software, Inc.)

HKLM…Exécuter : [Logitech Download Assistant] => C:WindowsSystem32LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)

HKLM…Exécuter : [WavesSvc] => C:Program FilesWavesMaxxAudioWavesSvc64.exe [1236688 2020-12-04] (Waves Inc -> Waves Audio Ltd.)

HKLM-x32…Exécuter : [StatusAlerts] => C:Program Files (x86)HPStatusAlertsbinHPStatusAlerts.exe [329992 2015-06-17] (Hewlett-Packard Company -> HP Development Company, L.P.)

HKLM-x32…Exécuter : [Adobe Creative Cloud] => C:Program FilesAdobeAdobe Creative CloudACCCreative Cloud.exe [779440 2021-04-24] (Adobe Inc. -> Adobe Inc.)

HKLM-x32…Exécuter : [Acrobat Assistant 8.0] => C:Program Files (x86)AdobeAcrobat 2017AcrobatAcrotray.exe [1996512 2021-06-26] (Adobe Inc. -> Adobe Systems Inc.)

HKLM-x32…Exécuter : [SunJavaUpdateSched] => C:Program Files (x86)Common FilesJavaJava Updatejusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)

HKLM-x32…Exécuter : [VirtualCloneDrive] => C:Program Files (x86)Elaborate BytesVirtualCloneDriveVCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)

HKLM-x32…Exécuter : [] => [X]

HKLM-x32…Exécuter : [Adobe CCXProcess] => C:Program Files (x86)AdobeAdobe Creative Cloud ExperienceCCXProcess.exe [129288 2021-04-24] (Adobe Inc. -> )

HKUS-1-5-21-1619883276-1864714895-2913937634-1001…Exécuter : [GoogleDriveSync] => C:Program FilesGoogleDrivegoogledrivesync.exe [49925280 2021-06-18] (Google LLC -> )

HKUS-1-5-21-1619883276-1864714895-2913937634-1001…Exécuter : [Private Internet Access] => C:Program FilesPrivate Internet Accesspia-client.exe [4391936 2020-09-04] (Accès Internet privé incorporé) [File not signed]

HKUS-1-5-21-1619883276-1864714895-2913937634-1001…Exécuter : [GarminExpress] => C:Program Files (x86)GarminExpressexpress.exe [30885360 2020-03-04] (Garmin International, Inc. -> Garmin Ltd. ou ses filiales)

HKUS-1-5-21-1619883276-1864714895-2913937634-1001…Exécuter : [LightBulb] => C:Program Files (x86)LightBulbLightBulb.exe [90624 2021-06-14] (Tyrrrz) [File not signed]

HKLM…PrintMonitorsAdobe PDF Port Monitor : C:Windowssystem32AdobePDF.dll [65176 2021-05-24] (Adobe Inc. -> Adobe Systems Inc)

HKLM…PrintMonitorsPort TCP/IP standard HP : C:Windowssystem32HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]

HKLMSoftwareMicrosoftActive SetupComposants installés : [OpenVPN_UserSetup] -> reg supprimer HKCUSoftwareMicrosoftWindowsCurrentVersionRun /v OPENVPN-GUI /f

HKLMSoftwareMicrosoftActive SetupComposants installés : [8A69D345-D564-463c-AFF1-A69D9E530F96] -> C:Program Files (x86)GoogleChromeApplication92.0.4515.107Installerchrmstp.exe [2021-07-26] (Google LLC -> Google LLC)

Démarrage : C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupScanSnap Manager.lnk [2017-12-07]

Raccourci cible : ScanSnap Manager.lnk -> C:Program Files (x86)PFUScanSnapDriverPfuSsMon.exe (PFU LIMITED) [File not signed]

Démarrage : C:UserssnowfAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupDropIt.lnk [2019-04-10]

Raccourci cible : DropIt.lnk -> C:Program FilesDropItDropIt.exe () [File not signed]

Démarrage : C:UserssnowfAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupSend to OneNote.lnk [2021-07-10]

ShortcutTarget : Envoyer à OneNote.lnk -> C:Program Files (x86)Microsoft OfficerootOffice16ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

GroupPolicy : Restriction ? <==== ATTENTION

Politiques : C:ProgramDataNTUSER.pol : Restriction <==== ATTENTION

==================== Tâches planifiées (liste blanche) ============

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé à moins qu'il ne soit répertorié séparément.)

Tâche : 01A4CAA1-F331-4E51-9BAC-4D00F1CDB684 – System32TasksSamsungMagician => C:Program Files (x86)SamsungSamsung MagicianSamsungMagician.exe [1112576 2017-05-19] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)

Tâche : 0637D8DF-3967-443A-B094-203BF0A5A1E2 – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cleanup => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MpCmdRun. EXE [644888 2021-07-09] (Éditeur Microsoft Windows -> Microsoft Corporation)

Tâche : 0686C08A-2D9E-499E-9FE1-D8CEEE88B8FD – System32TasksAdobe Acrobat Update Task => C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)

Tâche : 06E6DD3F-9CA0-461A-B164-06E132DBDC70 – System32TasksNvTmMon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationUpdate CoreNvTmMon.exe [654784 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : 08B43FFF-1233-4065-BAD7-118B61BA005D – System32TasksMacrium-Backup-B6D3C6CD-3FDA-4BFF-858A-A2D44EC69DA0 => C:program filesmacriumreflectReflect.exe [1167336 2017-11-21] (Paramount Software UK Ltd -> Paramount Software UK Ltd) -> -e -w "E:Mes documentsReflectC Drive Backup.xml" -full -g B6D3C6CD-3FDA-4BFF-858A-A2D44EC69DA0

Tâche : 0F8CA219-4BEE-4D46-BE22-F051487C0BF2 – System32TasksNvTmRepCR3_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationUpdate CoreNvTmRep [934848 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : 12E279C2-078B-45EB-A237-678B53DD2633 – System32TasksMozillaFirefox Default Browser Agent 308046B0AF4A39CB => C:Program FilesMozilla Firefoxdefault-browser-agent.exe [123600 2020-08-12] (Mozilla Corporation -> Fondation Mozilla)

Tâche : 131D1E5F-1D54-4F62-922E-89C9F229D994 – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Scheduled Scan => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MpCmdRun .EXE [644888 2021-07-09] (Éditeur Microsoft Windows -> Microsoft Corporation)

Tâche : 1DC4E091-F559-45ED-8759-BD60030EF383 – System32TasksMicrosoftOfficeOffice Automatic Updates 2.0 => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23253376 2021-07-23] (Microsoft Corporation -> Microsoft Corporation)

Tâche : 20013E63-EDDD-40A0-A8ED-33CA3E9D7345 – System32TasksNvTmRepCR2_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationUpdate CoreNvTmRep [934848 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : 2906B942-B3E8-4487-820E-1B7A928E460B – System32TasksHPLJCustParticipation => C:Program Files (x86)HPHPLJUTHPLJUTSCH.exe [89840 2014-10-19] (Entreprise Hewlett-Packard -> Hewlett Packard)

Tâche : 2CB72302-9FDA-4325-9FCB-E7C5B184F766 – System32TasksMicrosoftOfficeOfficeTelemetryAgentFallBack2016 => C:Program Files (x86)Microsoft OfficerootOffice16msoia.exe [4282288 2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

Tâche : 2DBA4CB3-BDCD-4C61-963A-5F47012CD3AE – System32TasksMacrium-Backup-06E8AA25-E7B0-46D6-84EF-1165A64819CF => C:program filesmacriumreflectReflect.exe [1167336 2017-11-21] (Paramount Software UK Ltd -> Paramount Software UK Ltd) -> -e -w "E:Mes documentsReflectC Drive Backup.xml" -diff -g 06E8AA25-E7B0-46D6-84EF-1165A64819CF

Tâche : 3774755A-067F-4927-8A40-8237293B7219 – System32TasksNvTmRepCR1_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationUpdate CoreNvTmRep.exe. [934848 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : 395BDB87-6C8A-40BA-AE88-98A721F95AB3 – System32TasksNVIDIA GeForce Experience SelfUpdate_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNVIDIA GeForce ExperienceNVIDIA Experience.exe [3297728 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : 3E27521C-3874-4E9A-8DA9-7323E4AE8375 – System32TasksGoogleUpdateTaskMachineUA => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2017-12-05] (Google Inc -> Google Inc.)

Tâche : 4042D642-1424-4B13-BA04-9B3CBB5F8489 – System32TasksMicrosoftOfficeOffice Feature Updates => C:Program Files (x86)Microsoft OfficerootOffice16sdxhelper.exe [113992 2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

Tâche : 43DFDBEF-BBAB-4B38-AAE2-FE8166DADFF7 – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Cache Maintenance => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MpCmdRun .EXE [644888 2021-07-09] (Éditeur Microsoft Windows -> Microsoft Corporation)

Tâche : 6943EC7C-61B5-41EE-8F2F-4F0D7E3BD1B2 – System32TasksAdobe Flash Player PPAPI Notifier => C:WINDOWSSysWOW64MacromedFlashFlashUtil32_32_0_0_293_pepper.exe [1453112 2019-11-30] (Adobe Inc. -> Adobe)

Tâche : 70DFA973-5965-4246-877F-64069EFBE92E – System32TasksAdobeGCInvoker-1.0 => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)

Tâche : 72B76CE6-BAE3-4286-AC21-9A31E1F98AF9 – System32TasksMicrosoftOfficeOffice Fonctionnalités d'ouverture de session => C:Program Files (x86)Microsoft OfficerootOffice16sdxhelper.exe [113992 2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

Tâche : 782F112A-0EA1-4074-A468-6C361EEDE9D2 – System32TasksNvTmRep_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationUpdate CoreNvTmRep.exe [934848 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : 7F9A6699-867A-4C89-B4E8-60C3F13E2A00 – System32TasksAdobeAAMUpdater-1.0-MicrosoftAccount-snowfiend131@hotmail.com => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWA UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

Tâche : A354D39A-43F3-47BA-84D1-98B3E6931CA4 – System32TasksNvDriverUpdateCheckDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvContainer.exenvcon [764352 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:Program FilesNVIDIA CorporationNvDriverUpdateCheck" -l 3 -f C:ProgramDataNVIDIANvContainerDriverUpdateCheck.log

Tâche : BDD806E2-B68F-436F-AA0A-C3F4EFBF73FB – System32TasksNvNodeLauncher_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program Files (x86)NVIDIA CorporationNvNodelanvnocher [982464 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : BE97AAC4-4A63-4699-AFF2-5CDD7FB90D6A – System32Tasks2BrightSparksSyncBackFreeDESKTOP-JPSPHV0-snowfSyncBackFree Weekly Backup => C:Program Files (x86)2BrightSparksSyncBackFreeSyncBackFree.exe [27496504 2017-12-04] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)

Tâche : C43002FF-A947-42C8-9D5F-3963E5B5E76A – System32TasksMicrosoftOfficeOffice ClickToRun Service Monitor => C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeC2RClient.exe [23253376 2021-07-23] (Microsoft Corporation -> Microsoft Corporation)

Tâche : C8307371-1E0C-4401-BB59-C6207681409E – System32TasksNvBatteryBoostCheckOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe. [764352 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:Program FilesNVIDIA CorporationNvBackendNvBatteryBoostCheck" -l 3 -f C:ProgramDataNVIDIANvContainerBatteryBoostCheck.log

Tâche : C87D9564-D9B3-460F-9B2A-A0C05E0A6833 – System32TasksGoogleUpdateTaskMachineCore => C:Program Files (x86)GoogleUpdateGoogleUpdate.exe [153168 2017-12-05] (Google Inc -> Google Inc.)

Tâche : D097DC51-C82D-4376-883A-B261F71B160B – System32TasksMicrosoftWindowsWindows DefenderWindows Defender Verification => C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MpCmdRun. EXE [644888 2021-07-09] (Éditeur Microsoft Windows -> Microsoft Corporation)

Tâche : D0B055E5-6B8E-454A-B93B-4003A49AD1B1 – System32Tasks2BrightSparksSyncBackFreeDESKTOP-JPSPHV0-snowfSyncBackFree Daily Backup => C:Program Files (x86)2BrightSparksSyncBackFreeSyncBackFree.exe [27496504 2017-12-04] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)

Tâche : D1E18CA3-9873-400A-A92E-B6650B532646 – System32TasksCCleanerSkipUAC => C:Program FilesCCleanerCCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)

Tâche : D8769835-C439-4E0B-955A-4578A635907B – System32TasksNvProfileUpdaterDaily_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationUpdate CoreNvexeProfileUpdater [857024 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : D9413D12-D56D-41E9-A11F-DBAAFC6BADDA – System32TasksNvProfileUpdaterOnLogon_B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 => C:Program FilesNVIDIA CorporationUpdate CoreNvexeProfileUpdate [857024 2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Tâche : DCDB5CF0-7CDC-40BD-8A50-8DCA5E496DE1 – System32TasksCCleaner Update => C:Program FilesCCleanerCCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)

Tâche : E8DC90AD-79B0-4B34-B528-DA7EA87312B7 – System32TasksGarminUpdaterTask => C:Program Files (x86)GarminExpress SelfUpdaterExpressSelfUpdater.exe [40432 2020-03-04] (Garmin International, Inc. -> )

Tâche : F7259860-D80B-4B1D-AB7B-D6418E1BA24E – System32TasksMicrosoftOfficeOfficeTelemetryAgentLogOn2016 => C:Program Files (x86)Microsoft OfficerootOffice16msoia.exe [4282288 2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

(Si une entrée est incluse dans la liste de correctifs, le fichier de tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

==================== Internet (liste blanche) ====================

(Si un élément est inclus dans la liste de correctifs, s'il s'agit d'un élément de registre, il sera supprimé ou restauré par défaut.)

TcpipParamètres : [DhcpNameServer] 192.168.1.1

Tcpip..Interfaces28d2d79e-6f6d-413e-81ed-1e99d9f2f228 : [DhcpNameServer] 192.168.1.1

Tcpip..Interfaces406252f7-8ab1-4a53-89d5-2f70f74d088c : [DhcpNameServer] 192.168.1.1

Bord:

=======

DownloadDir: E:Téléchargements

Extension Edge : (sans nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsAutoFormFill [not found]

Extension Edge : (sans nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsBookViewer [not found]

Extension Edge : (sans nom) -> hdokiejnpimakedhajhdlcegeplioahd_LastPassLastPassFreePasswordManager_qq0fmhteeht3j => C:Program FilesWindowsAppsLastPass.LastPassFreePasswordManager_4.60.0.0_neutral__qq0fmhteeht3j [not found]

Extension Edge : (sans nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsLearningTools [not found]

Extension Edge : (sans nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:WindowsSystemAppsMicrosoft.MicrosoftEdge_8wekyb3d8bbweAssetsHostExtensionsPinJSAPI [not found]

Profil Edge : C:UserssnowfAppDataLocalMicrosoftEdgeUser DataDefault [2021-07-26]

Restauration de session Edge : par défaut -> est activé.

FireFox :

========

Profil par défaut FF : fbkbl792.default

Chemin de profil FF : C:UserssnowfAppDataRoamingMozillaFirefoxProfilesfbkbl792.default [2020-06-08]

Chemin de profil FF : C:UserssnowfAppDataRoamingMozillaFirefoxProfilesu360ej6a.default-release [2020-08-22]

FF HKLM…FirefoxExtensions : [web2pdfextension.17@acrobat.adobe.com] – C:Program Files (x86)AdobeAcrobat 2017AcrobatBrowserWCFirefoxExtnWebExtnsigned_extnadobe_acrobat-1.0-windows.xpi

Extension FF : (Adobe Acrobat) – C:Program Files (x86)AdobeAcrobat 2017AcrobatBrowserWCFirefoxExtnWebExtnsigned_extnadobe_acrobat-1.0-windows.xpi [2019-05-01]

FF HKLM-x32…FirefoxExtensions : [web2pdfextension.17@acrobat.adobe.com] – C:Program Files (x86)AdobeAcrobat 2017AcrobatBrowserWCFirefoxExtnWebExtnsigned_extnadobe_acrobat-1.0-windows.xpi

Plugin FF : adobe.com/AdobeAAMDetect -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll [2021-04-24] (Adobe Inc. -> Systèmes Adobe)

Plugin FF-x32 : @java.com/DTPlugin, version=11.231.2 -> C:Program Files (x86)Javajre1.8.0_231bindtpluginnpDeployJava1.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)

Plugin FF-x32 : @java.com/JavaPlugin, version=11.231.2 -> C:Program Files (x86)Javajre1.8.0_231binplugin2npjp2.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)

Plugin FF-x32 : @microsoft.com/Lync, version=15.0 -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX86Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2021-06-29] (Microsoft Corporation -> Microsoft Corporation)

Plugin FF-x32 : @Microsoft.com/NpCtrl,version=1.0 -> C:Program Files (x86)Microsoft Silverlight5.1.50907.0npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)

Plugin FF-x32 : @microsoft.com/SharePoint, version=14.0 -> C:Program Files (x86)Microsoft OfficerootOffice16NPSPWRAP.DLL [2021-06-29] (Microsoft Corporation -> Microsoft Corporation)

Plugin FF-x32 : @nvidia.com/3DVision -> C:Program Files (x86)NVIDIA Corporation3D Visionnpnv3dv.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Plugin FF-x32 : @nvidia.com/3DVisionStreaming -> C:Program Files (x86)NVIDIA Corporation3D Visionnpnv3dvstreaming.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

Plugin FF-x32 : Adobe Acrobat -> C:Program Files (x86)AdobeAcrobat 2017AcrobatAirnppdf32.dll [2021-06-26] (Adobe Inc. -> Adobe Systems Inc.)

Plugin FF-x32 : Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.)

Plugin FF-x32 : adobe.com/AdobeAAMDetect -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect32.dll [2021-04-24] (Adobe Inc. -> Systèmes Adobe)

Chrome:

=======

Profil CHR : C:UserssnowfAppDataLocalGoogleChromeUser DataDefault [2021-07-26]

Notifications CHR : Par défaut -> hxxps://play.google.com ; hxxps://www.ae.com ; hxxps://www.youtube.com

Restauration de session CHR : Par défaut -> est activé.

Extension CHR : (diapositives) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2017-12-05]

Extension CHR : (Docs) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2017-12-05]

Extension CHR : (Google Drive) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2020-11-13]

Extension CHR : (YouTube) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-05]

Extension CHR : (Adblock Plus – bloqueur de publicités gratuit) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionscfhdojbkjhnklbpkdaibdccddilifddb [2021-05-25]

Extension CHR : (Extension de bibliothèque) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionschkgcmmjoejpekoegkedcpifgfhpjmec [2021-07-26]

Extension CHR : (uBlock Origin) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionscjpalhdlnbpafiamejdnhcphjbkeiagm [2021-07-26]

Extension CHR : (Adobe Acrobat) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsefaidnbmnnnibpcajpcglclefindmkaj [2021-03-04]

Extension CHR : (Google Play Musique) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsfahmaaghhglfmonjliepjlchgpgfmobi [2021-01-03]

Extension CHR : (Feuilles) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2017-12-05]

Extension CHR : (Téléchargements du routeur) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsfgkboeogiiklpklnjgdiaghaiehcknjo [2017-12-05]

Extension CHR : (Google Docs Offline) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-01]

Extension CHR : (The Camelizer) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsghnomdcacenbmilgjigehppbamfndblo [2021-03-10]

Extension CHR : (OneNote Web Clipper) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsgojbdfnpnhogfdgjbigejoaolejmgdhk [2021-07-26]

Extension CHR : (Google Photos) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionshcglmfcclpfgljeaiahehebeoaiicbko [2017-12-05]

Extension CHR : (onglet IE) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionshehijbfgiekmjfkfjpbkbammjbdenadd [2021-07-01]

Extension CHR : (Utilitaire de récupération Chromebook) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsjndclpdbaamdhonoechobihbbiimdgai [2021-07-01]

Extension CHR : (Evernote Web) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionslbfehkoinhhcknnbdgnnmjhiladcgbol [2017-12-05]

Extension CHR : (Lanceur d'applications pour Drive (par Google)) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionslmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-30]

Extension CHR : (Chrome Web Store Payments) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]

Extension CHR : (Bitwarden – Gestionnaire de mots de passe gratuit) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsnngceckbapebfimnlniiiahkandclblb [2021-07-26]

Extension CHR : (version imprimable et PDF) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionsohlencieiipommannpdfcmfdpjjmeolj [2021-05-25]

Extension CHR : (uBlock Origin Extra) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionspgdnlhfefecpicbbihgmbmffkjpaplco [2019-09-15]

Extension CHR : (Evernote Web Clipper) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionspioclpoplcdbaefihamjohnefbikjilc [2021-07-26]

Extension CHR : (Gmail) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2020-11-13]

Extension CHR : (Chrome Media Router) – C:UserssnowfAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-26]

CHR HKUS-1-5-21-1619883276-1864714895-2913937634-1001SOFTWAREGoogleChromeExtensions…ChromeExtension : [lmjegmlicamnimmfhcmpkclmigmmcbeh]

CHR HKLM-x32…ChromeExtension : [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (liste blanche) ====================

(Si une entrée est incluse dans la liste de correctifs, elle sera supprimée du registre. Le fichier ne sera pas déplacé à moins qu'il ne soit répertorié séparément.)

Service AdobeARM R2 ; C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)

Service de mise à jour Adobe R2 ; C:Program Files (x86)Common FilesAdobeAdobe Desktop CommonElevationManagerAdobeUpdateService.exe [842416 2021-04-24] (Adobe Inc. -> Adobe Inc.)

R2 AGMService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)

R2 AGSService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)

R2 ClickToRunSvc; C:Program FilesCommon FilesMicrosoft SharedClickToRunOfficeClickToRun.exe [9141648 2021-07-21] (Microsoft Corporation -> Microsoft Corporation)

R2 Code42Service; C:Program FilesCode42Code42Service.exe [662960 2021-05-24] (Code42 Software Inc -> Code42 Software, Inc.)

R2 DellClientManagementService; C:Program Files (x86)DellUpdateServiceServiceShell.exe [37056 2020-07-29] (Dell Inc -> )

R2 EpsonScanSvc; C:WINDOWSsystem32EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation)

R2 HP LaserJet Service; C:Program Files (x86)HPHPLaserJetServiceHPLaserJetService.exe [176128 2014-06-25] (HP) [File not signed]

S3 IRMTService; C:Program FilesIntelIntel® Ready Mode TechnologyIRMTService.exe [182400 2017-04-20] (Intel® RMT -> Intel Corporation)

S3 KAPSService; C:WINDOWSSystem32driversRivetNetworksKillerKAPSService.exe [73480 2021-03-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 Killer Analytics Service; C:WINDOWSSystem32driversRivetNetworksKillerKillerAnalyticsService.exe [1775392 2021-03-24] (Rivet Networks LLC -> Rivet Networks)

R2 Killer Network Service; C:WINDOWSSystem32driversRivetNetworksKillerKillerNetworkService.exe [2663208 2021-03-24] (Rivet Networks LLC -> Rivet Networks)

S3 KNDBWM; C:WINDOWSSystem32driversRivetNetworksKillerKNDBWMService.exe [73496 2021-03-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 MacriumService; C:Program FilesMacriumCommonMacriumService.exe [4091112 2017-11-09] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

R3 MBAMService; C:Program FilesMalwarebytesAnti-Malwarembamservice.exe [7477704 2021-07-26] (Malwarebytes Inc -> Malwarebytes)

R2 PrivateInternetAccessService; C:Program FilesPrivate Internet Accesspia-service.exe [1900032 2020-09-04] () [File not signed]

S3 PrivateInternetAccessWireguard; C:Program FilesPrivate Internet Accesspia-wgservice.exe [4433920 2020-09-04] () [File not signed]

S3 Sense; C:Program FilesWindows Defender Advanced Threat ProtectionMsSense.exe [5393304 2021-07-05] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 TeamViewer; C:Program Files (x86)TeamViewerTeamViewer_Service.exe [13257000 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

R2 UsbClientService; C:Program Files (x86)SynologyAssistantUsbClientService.exe [248856 2017-08-08] (Synology Inc. -> ) [File not signed]

S3 VBoxSDS; C:Program FilesOracleVirtualBoxVBoxSDS.exe [746504 2020-07-10] (Oracle Corporation -> Oracle Corporation)

R3 WdNisSvc; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0NisSrv.exe [2665432 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WinDefend; C:ProgramDataMicrosoftWindows DefenderPlatform4.18.2106.6-0MsMpEng.exe [136640 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation)

S2 xTendSoftAPService; C:WINDOWSSystem32driversRivetNetworksKillerxTendSoftAPService.exe [73504 2021-03-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 xTendUtilityService; C:WINDOWSSystem32driversRivetNetworksKillerxTendUtilityService.exe [73504 2021-03-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:WINDOWSSystem32driversBthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]

R3 busenum; C:WINDOWSSystem32driversbusenum.sys [57824 2012-08-03] (Synology Inc. -> Windows ® Win 7 DDK provider)

R3 DBUtilDrv2; C:WINDOWSSystem32driversDBUtilDrv2.sys [24968 2021-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell)

S3 DellProf; C:WINDOWSsystem32driversDellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)

R1 ElbyCDIO; C:WINDOWSSystem32DriversElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)

R3 IntelReadyModeDriver; C:WINDOWSSystem32driversIntelReadyModeDriver.sys [34712 2017-04-20] (Intel Corporation -> Intel Corporation)

R3 KfeCoSvc; C:WINDOWSSystem32driversRivetNetworksKillerKfeCo10X64.sys [184400 2021-03-24] (Rivet Networks LLC -> Rivet Networks, LLC.)

R2 MBAMChameleon; C:WINDOWSSystem32DriversMbamChameleon.sys [220752 2021-07-26] (Malwarebytes Inc -> Malwarebytes)

S0 MbamElam; C:WINDOWSSystem32DRIVERSMbamElam.sys [19912 2021-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MBAMSwissArmy; C:WINDOWSSystem32Driversmbamswissarmy.sys [248992 2021-07-26] (Malwarebytes Inc -> Malwarebytes)

S3 msvad_simple; C:WINDOWSsystem32driverspovrtdev.sys [28528 2015-10-29] (MediaMall Technologies, Inc. -> MediaMall Technologies, Inc.)

S3 PSMounterEx; C:Windowssystem32driverspsmounterex.sys [189152 2017-08-08] (Paramount Software UK Ltd -> Windows ® Win 7 DDK provider)

S3 PSVolAcc; C:WindowsSystem32DriversPSVolAcc.sys [31856 2017-03-23] (Paramount Software UK Ltd -> Windows ® Win 7 DDK provider)

R0 pwdrvio; C:WINDOWSSystem32pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )

S3 pwdspio; C:Windowssystem32pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )

R3 tap-pia-0901; C:WINDOWSSystem32driverstap-pia-0901.sys [39944 2020-01-27] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)

S3 tap0901; C:WINDOWSSystem32driverstap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)

S3 tap_ovpnconnect; C:WINDOWSSystem32driverstap_ovpnconnect.sys [40128 2020-10-27] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)

R1 VBoxNetLwf; C:WINDOWSsystem32DRIVERSVBoxNetLwf.sys [247232 2020-07-11] (Oracle Corporation -> Oracle Corporation)

R3 VClone; C:WINDOWSSystem32driversVClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)

S0 WdBoot; C:WINDOWSSystem32driverswdWdBoot.sys [49560 2021-07-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

R0 WdFilter; C:WINDOWSSystem32driverswdWdFilter.sys [425192 2021-07-09] (Microsoft Windows -> Microsoft Corporation)

R3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [76008 2021-07-09] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-26 21:16 – 2021-07-26 21:17 – 000000000 ____D C:FRST

2021-07-26 20:53 – 2021-07-26 20:53 – 000024968 _____ (Dell) C:WINDOWSsystem32DriversDBUtilDrv2.sys

2021-07-26 20:51 – 2021-07-26 20:51 – 000220752 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamChameleon.sys

2021-07-26 20:51 – 2021-07-26 20:51 – 000002035 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes.lnk

2021-07-26 20:51 – 2021-07-26 20:46 – 000019912 _____ (Malwarebytes) C:WINDOWSsystem32DriversMbamElam.sys

2021-07-26 20:49 – 2021-07-26 20:49 – 000248992 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbamswissarmy.sys

2021-07-17 07:20 – 2021-07-17 07:32 – 000000000 ____D C:Program FilesCrystalDiskMark8

2021-07-17 07:20 – 2021-07-17 07:20 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCrystalDiskMark8

2021-07-17 07:18 – 2021-07-17 07:18 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsCrystalDiskInfo

2021-07-17 07:17 – 2021-07-17 07:18 – 000000000 ____D C:Program FilesCrystalDiskInfo

2021-07-05 03:00 – 2021-07-05 03:00 – 002755584 _____ (Microsoft Corporation) C:WINDOWSSysWOW64mshtml.tlb

2021-07-05 03:00 – 2021-07-05 03:00 – 002755584 _____ (Microsoft Corporation) C:WINDOWSsystem32mshtml.tlb

2021-07-05 03:00 – 2021-07-05 03:00 – 001314120 _____ (Microsoft Corporation) C:WINDOWSsystem32SecConfig.efi

2021-07-05 03:00 – 2021-07-05 03:00 – 000568832 _____ (Microsoft Corporation) C:WINDOWSsystem32inetcpl.cpl

2021-07-05 03:00 – 2021-07-05 03:00 – 000451072 _____ (Microsoft Corporation) C:WINDOWSSysWOW64inetcpl.cpl

2021-07-05 03:00 – 2021-07-05 03:00 – 000011353 _____ C:WINDOWSsystem32DrtmAuthTxt.wim

2021-07-05 02:59 – 2021-07-05 02:59 – 002260480 _____ (The ICU Project) C:WINDOWSsystem32icu.dll

2021-07-05 02:59 – 2021-07-05 02:59 – 001864192 _____ (The ICU Project) C:WINDOWSSysWOW64icu.dll

2021-07-05 02:59 – 2021-07-05 02:59 – 001823792 _____ (Microsoft Corporation) C:WINDOWSsystem32winload.efi

2021-07-05 02:59 – 2021-07-05 02:59 – 001393496 _____ (Microsoft Corporation) C:WINDOWSsystem32winresume.efi

2021-07-05 02:59 – 2021-07-05 02:59 – 000657464 _____ C:WINDOWSsystem32WindowManagementAPI.dll

2021-07-05 02:59 – 2021-07-05 02:59 – 000563712 _____ (Microsoft Corporation) C:WINDOWSsystem32winspool.drv

2021-07-05 02:59 – 2021-07-05 02:59 – 000468440 _____ C:WINDOWSSysWOW64WindowManagementAPI.dll

2021-07-05 02:59 – 2021-07-05 02:59 – 000423936 _____ (Microsoft Corporation) C:WINDOWSSysWOW64winspool.drv

2021-07-05 02:59 – 2021-07-05 02:59 – 000287232 _____ C:WINDOWSsystem32CoreMas.dll

2021-07-05 02:59 – 2021-07-05 02:59 – 000272384 _____ C:WINDOWSsystem32TpmTool.exe

2021-07-05 02:59 – 2021-07-05 02:59 – 000223744 _____ C:WINDOWSSysWOW64TpmTool.exe

2021-07-05 02:59 – 2021-07-05 02:59 – 000097280 _____ C:WINDOWSsystem32Driverscimfs.sys

2021-07-01 18:10 – 2021-07-01 18:10 – 000000000 ____D C:UserssnowfAppDataRoamingLibreOffice

2021-07-01 17:49 – 2021-07-01 17:49 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Office Tools

2021-07-01 17:45 – 2021-07-01 17:45 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsLibreOffice 7.0

2021-07-01 17:44 – 2021-07-01 17:44 – 000000000 ____D C:Program FilesLibreOffice

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-07-26 21:12 – 2019-12-07 03:14 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft

2021-07-26 20:57 – 2021-01-02 17:14 – 000842458 _____ C:WINDOWSsystem32PerfStringBackup.INI

2021-07-26 20:57 – 2019-12-07 03:13 – 000000000 ____D C:WINDOWSINF

2021-07-26 20:54 – 2018-10-20 15:18 – 000000000 ___RD C:UserssnowfCreative Cloud Files

2021-07-26 20:54 – 2017-12-05 22:06 – 000000000 ____D C:Program Files (x86)Google

2021-07-26 20:53 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSRegistration

2021-07-26 20:53 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSAppReadiness

2021-07-26 20:53 – 2017-11-22 04:02 – 000000000 ____D C:ProgramDataNVIDIA

2021-07-26 20:52 – 2020-06-09 19:42 – 000000504 _____ C:WINDOWSsystem32Driversetchosts.ics

2021-07-26 20:51 – 2021-01-02 17:12 – 000000006 ____H C:WINDOWSTasksSA.DAT

2021-07-26 20:51 – 2019-12-07 03:14 – 000000000 ___RD C:WINDOWSImmersiveControlPanel

2021-07-26 20:51 – 2019-12-07 03:14 – 000000000 ___HD C:WINDOWSELAMBKUP

2021-07-26 20:51 – 2017-12-13 22:15 – 000000000 ____D C:Program Files (x86)TeamViewer

2021-07-26 20:51 – 2017-12-05 21:34 – 000000000 __SHD C:UserssnowfIntelGraphicsProfiles

2021-07-26 20:51 – 2017-11-22 03:46 – 000000000 ____D C:Intel

2021-07-26 20:50 – 2021-01-02 17:02 – 000001527 _____ C:WINDOWSsystem32configVSMIDK

2021-07-26 20:50 – 2019-12-07 03:03 – 000786432 _____ C:WINDOWSsystem32configBBI

2021-07-26 20:50 – 2017-11-22 04:14 – 000000000 ____D C:Program Files (x86)Microsoft Office

2021-07-26 20:49 – 2021-01-02 17:02 – 000647528 _____ C:WINDOWSsystem32FNTCACHE.DAT

2021-07-26 20:48 – 2021-01-02 17:50 – 000000000 ____D C:Program FilesHyper-V

2021-07-26 20:48 – 2019-12-07 03:54 – 000000000 ____D C:Program FilesWindows Defender Advanced Threat Protection

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ___RD C:WINDOWSPrintDialog

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64lv-LV

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64et-EE

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64es-MX

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64Dism

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSystemResources

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32oobe

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32migwiz

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32lv-LV

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32et-EE

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32es-MX

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32Dism

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSPolicyDefinitions

2021-07-26 20:48 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSbcastdvr

2021-07-26 20:46 – 2019-06-26 18:40 – 000199128 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbae64.sys

2021-07-26 20:46 – 2017-12-05 22:06 – 000002303 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk

2021-07-26 20:46 – 2017-12-05 22:05 – 000000000 ____D C:UserssnowfAppDataLocalCrashDumps

2021-07-26 20:45 – 2017-12-09 07:46 – 000000000 ____D C:Lightroom

2021-07-26 20:43 – 2018-06-08 21:34 – 000000000 ____D C:UserssnowfAppDataLocalGoogle

2021-07-26 20:36 – 2017-12-07 21:45 – 000000000 ____D C:UserssnowfAppDataRoamingqBittorrent

2021-07-26 20:31 – 2021-01-02 17:02 – 000000000 ____D C:WINDOWSsystem32SleepStudy

2021-07-25 21:25 – 2019-12-07 03:14 – 000000000 ___HD C:Program FilesWindowsApps

2021-07-24 11:51 – 2021-01-02 17:05 – 000002440 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft Edge.lnk

2021-07-19 03:02 – 2019-12-07 03:03 – 000000000 ____D C:WINDOWSCbsTemp

2021-07-19 03:02 – 2017-12-06 00:06 – 000000000 ____D C:WINDOWSsystem32MRT

2021-07-19 02:51 – 2017-12-06 00:06 – 133422552 ____C (Microsoft Corporation) C:WINDOWSsystem32MRT.exe

2021-07-15 18:40 – 2021-01-02 17:12 – 000003418 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineUA

2021-07-15 18:40 – 2021-01-02 17:12 – 000003294 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineCore

2021-07-15 06:30 – 2021-01-02 17:12 – 000003380 _____ C:WINDOWSsystem32TasksOneDrive Standalone Update Task-S-1-5-21-1619883276-1864714895-2913937634-1001

2021-07-15 06:30 – 2021-01-02 17:05 – 000002385 _____ C:UserssnowfAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk

2021-07-15 00:54 – 2017-12-09 07:11 – 000002126 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAdobe Acrobat Distiller 2017.lnk

2021-07-15 00:54 – 2017-12-09 07:11 – 000002115 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAdobe Acrobat 2017.lnk

2021-07-14 21:23 – 2017-12-07 20:38 – 000002138 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAcrobat Reader DC.lnk

2021-07-09 17:59 – 2018-02-26 04:58 – 000000000 ____D C:WINDOWSsystem32Driverswd

2021-07-09 17:58 – 2017-12-10 19:33 – 000000000 ____D C:UserssnowfAppDataRoamingvlc

2021-07-07 19:42 – 2017-12-13 23:29 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsBackup and Sync from Google

2021-07-05 02:53 – 2020-06-10 09:31 – 000000000 ___HD C:$WinREAgent

2021-07-01 19:45 – 2021-01-03 03:18 – 000003480 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineUA

2021-07-01 19:45 – 2021-01-03 03:18 – 000003386 _____ C:WINDOWSsystem32TasksMicrosoftEdgeUpdateTaskMachineCore1d6e15bbd897b57

2021-07-01 17:49 – 2019-04-04 06:26 – 000002500 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsSkype for Business.lnk

2021-07-01 17:49 – 2019-04-04 06:26 – 000002495 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsWord.lnk

2021-07-01 17:49 – 2019-04-04 06:26 – 000002494 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsPowerPoint.lnk

2021-07-01 17:49 – 2019-04-04 06:26 – 000002458 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsAccess.lnk

2021-07-01 17:49 – 2019-04-04 06:26 – 000002457 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsExcel.lnk

2021-07-01 17:49 – 2019-04-04 06:26 – 000002451 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOutlook.lnk

2021-07-01 17:49 – 2019-04-04 06:26 – 000002445 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsPublisher.lnk

2021-07-01 17:49 – 2019-04-04 06:26 – 000002437 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsOneNote.lnk

2021-07-01 17:47 – 2019-12-07 03:51 – 000000000 ____D C:WINDOWSsystem32OpenSSH

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64WinMetadata

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64setup

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64oobe

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSSysWOW64lt-LT

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32WinMetadata

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32SystemResetPlatform

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32setup

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSsystem32lt-LT

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSProvisioning

2021-07-01 17:47 – 2019-12-07 03:14 – 000000000 ____D C:WINDOWSDiagTrack

2021-06-27 20:10 – 2017-12-24 11:25 – 000000000 ____D C:UserssnowfAppDataRoamingMediaMonkey

==================== Files in the root of some directories ========

2018-09-26 04:07 – 2018-09-26 04:07 – 000000000 _____ () C:UserssnowfAppDataLocaloobelibMkey.log

2017-12-16 17:46 – 2020-07-21 18:10 – 000007639 _____ () C:UserssnowfAppDataLocalresmon.resmoncfg

==================== FLock ==============================

2021-01-02 17:02 C:Recovery

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01

Ran by snowf (26-07-2021 21:18:23)

Running from E:Downloads

Windows 10 Pro Version 20H2 19042.1052 (X64) (2021-01-02 23:12:57)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1619883276-1864714895-2913937634-500 – Administrator – Disabled)

DefaultAccount (S-1-5-21-1619883276-1864714895-2913937634-503 – Limited – Disabled)

Guest (S-1-5-21-1619883276-1864714895-2913937634-501 – Limited – Disabled)

snowf (S-1-5-21-1619883276-1864714895-2913937634-1001 – Administrator – Enabled) => C:Userssnowf

WDAGUtilityAccount (S-1-5-21-1619883276-1864714895-2913937634-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

AS: Windows Defender (Enabled – Up to date) D68DDC3A-831F-4fae-9E44-DA132C1ACF46

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 17.01 beta (x64) (HKLM…7-Zip) (Version: 17.01 beta – Igor Pavlov)

Adobe Acrobat 2017 (HKLM-x32…AC76BA86-1033-FFFF-7760-0E1108756300) (Version: 17.011.30199 – Adobe Systems Incorporated)

Adobe Acrobat Reader DC (HKLM-x32…AC76BA86-7AD7-1033-7B44-AC0F074E4100) (Version: 21.005.20058 – Adobe Systems Incorporated)

Adobe Creative Cloud (HKLM-x32…Adobe Creative Cloud) (Version: 5.4.3.544 – Adobe Inc.)

Adobe Digital Editions 2.0 (HKLM-x32…Adobe Digital Editions 2.0) (Version: 2.0.1 – Adobe Systems Incorporated)

Adobe Flash Player 32 PPAPI (HKLM-x32…Adobe Flash Player PPAPI) (Version: 32.0.0.293 – Adobe)

Adobe Genuine Service (HKLM-x32…AdobeGenuineService) (Version:  – Adobe)

Adobe Lightroom Classic (HKLM-x32…LTRM_10_2) (Version: 10.2 – Adobe Inc.)

Adobe Photoshop 2021 (HKLM-x32…PHSP_22_3_1) (Version: 22.3.1.122 – Adobe Inc.)

Adobe Premiere Pro CC 2018 (HKLM-x32…PPRO_12_0_0) (Version: 12.0.0 – Adobe Systems Incorporated)

ANT Drivers Installer x64 (HKLM…9A9FF300-3725-4934-A0D7-86F109A88ACF) (Version: 2.3.4 – Garmin Ltd or its subsidiaries) Hidden

Backup and Sync from Google (HKLM…A0397FA8-34ED-4A41-A8C9-30EE0B89C464) (Version: 3.56.3802.7766 – Google, Inc.)

Bit Che (HKLM-x32…D9DA5C41-964F-455F-B5E7-3664519440E8_is1) (Version: 3.5 build 50 – Convivea Inc.)

Bitwarden (HKLM…173a9bac-6f0d-50c4-8202-4744c69d091a) (Version: 1.17.2 – Bitwarden Inc.)

calibre 64bit (HKLM…C9FD7BFF-6054-449C-BCDB-C2A0B43516A7) (Version: 4.5.0 – Kovid Goyal)

CCleaner (HKLM…CCleaner) (Version: 5.46 – Piriform)

Code42 (HKLM…C2B5208B-239C-49D9-A21C-DE3B034FDDB6) (Version: 8.6.1.3 – Code42 Software)

CPUID CPU-Z 1.89 (HKLM…CPUID CPU-Z_is1) (Version: 1.89 – CPUID, Inc.)

CrystalDiskInfo 8.12.4 (HKLM…CrystalDiskInfo_is1) (Version: 8.12.4 – Crystal Dew World)

CrystalDiskMark 8.0.4 (HKLM…CrystalDiskMark8_is1) (Version: 8.0.4 – Crystal Dew World)

CSV2OFX (HKLM-x32…CSV2OFX_is1) (Version: 3.0.0.7 – ProperSoft Inc.)

Dell Digital Delivery (HKLM-x32…4B38FF9D-7308-411D-93BF-CCF259B476ED) (Version: 3.5.2013.0 – Dell Products, LP)

Dell Update – SupportAssist Update Plugin (HKLM…6DE68941-66DE-48DE-9C80-FE60C9DE0AD4) (Version: 4.0.1.5857 – Dell Inc.) Hidden

Dell Update – SupportAssist Update Plugin (HKLM-x32…1dbe752f-b00e-4567-9276-141812b20d28) (Version: 4.0.1.5857 – Dell Inc.)

Dell Update (HKLM-x32…5EBBC1DA-975F-44A0-B438-F325BCD45577) (Version: 3.1.3 – Dell Inc.)

DropIt (v8.5.1) (HKLM…DropIt_is1) (Version: 8.5.1 – Lupo PenSuite Team)

Elevated Installer (HKLM-x32…9427DAC2-91FD-418E-87D4-8914B437CC06) (Version: 6.21.0.0 – Garmin Ltd or its subsidiaries) Hidden

Epson Copy Utility 4 (HKLM-x32…6A7E8AB-2856-4490-BAA9-F338ABE7695A) (Version: 4.01.0001 – Seiko Epson Corporation)

EPSON Scan (HKLM-x32…EPSON Scanner) (Version:  – Seiko Epson Corporation)

FileZilla Client 3.51.0 (HKLM-x32…FileZilla Client) (Version: 3.51.0 – Tim Kosse)

Garmin Express (HKLM-x32…934EADA-3DAF-4A21-829D-1BB3C315DCB4) (Version: 6.21.0.0 – Garmin Ltd or its subsidiaries) Hidden

Garmin Express (HKLM-x32…d3b4366e-9163-44f4-a381-d431031c2841) (Version: 6.21.0.0 – Garmin Ltd or its subsidiaries)

Google Chrome (HKLM-x32…Google Chrome) (Version: 92.0.4515.107 – Google LLC)

Google Earth Pro (HKLM…FB8010D4-05F4-420D-8DFC-2F911A6DD100) (Version: 7.3.3.7786 – Google)

HP Color LaserJet Pro M252 (HKLM-x32…f584356a-5cc7-401c-9245-9eced8f01414) (Version: 14.0.15309.432 – Hewlett-Packard)

HPCLJProM252 (HKLM-x32…4A85BF98-D131-4FA3-B380-1D6B24834291) (Version: 1.00.0000 – Hewlett-Packard) Hidden

HPLJUTCore (HKLM-x32…B445502B-2F83-4873-90F1-06059F71A46A) (Version: 014.000.0001 – HP) Hidden

HPLJUTM252 (HKLM-x32…E51FBBC-4147-4264-A786-AFDAF75A3FA7) (Version: 014.000.0001 – HP) Hidden

hppM252LaserJetService (HKLM-x32…CBEE14D1-2D7B-4994-8464-3C49F0DC2490) (Version: 001.034.00686 – Hewlett-Packard) Hidden

hpStatusAlerts (HKLM-x32…EACC40D7-58F4-4A7A-9786-953DC9A1850B) (Version: 170.040.00259 – HP Development Company, L.P.) Hidden

hpStatusAlertsM252 (HKLM-x32…C34FBD21-5F3F-46D4-95C7-477DB6A450AD) (Version: 140.046.00129 – Hewlett-Packard) Hidden

iCopy (HKLM-x32…iCopy) (Version: 1.6.3 – Matteo Rossi)

ImgBurn (HKLM-x32…ImgBurn) (Version: 2.5.8.0 – LIGHTNING UK!)

Intel® Chipset Device Software (HKLM-x32…17408817-d415-4768-a160-ae6d46d6bdb0) (Version: 10.1.1.44 – Intel® Corporation) Hidden

Intel® Management Engine Components (HKLM…1CEAC85D-2590-4760-800F-8DE5E91F3700) (Version: 11.7.0.1054 – Intel Corporation)

Intel® Rapid Storage Technology (HKLM…409CB30E-E457-4008-9B1A-ED1B9EA21140) (Version: 15.8.0.1006 – Intel Corporation)

Intel® Ready Mode Technology (HKLM…A4C6EDDB-A7BC-4A63-823A-FB25057ED718) (Version: 1.1.70.532 – Intel Corporation)

Intel® Serial IO (HKLM…9FD91C5C-44AE-4D9D-85BE-AE52816B0294) (Version: 30.100.1725.1 – Intel Corporation)

Intel® Trusted Connect Service Client x86 (HKLM-x32…C9552825-7BF2-4344-BA91-D3CD46F4C441) (Version: 1.47.866.0 – Intel Corporation) Hidden

Intel® Trusted Connect Services Client (HKLM-x32…246c6cc0-9810-4728-9a29-28474de2eec5) (Version: 1.47.866.0 – Intel Corporation) Hidden

Java 8 Update 231 (HKLM-x32…26A24AE4-039D-4CA4-87B4-2F32180231F0) (Version: 8.0.2310.11 – Oracle Corporation)

JDiskReport 1.4.1 (HKLM-x32…JDiskReport 1.4.1) (Version: 1.4.1 (2014-02-26 11:50:44) – JGoodies Karsten Lentzsch)

Killer Performance Driver Suite UWD (HKLM…3CDA97F4-59EC-4D3D-AC1A-BCC7995F46DE) (Version: 1.7.1089 – Rivet Networks)

LibreOffice 7.0.6.2 (HKLM…9F9A9C01-5A65-4C2E-A243-FC88C81BC35F) (Version: 7.0.6.2 – The Document Foundation)

LightBulb 2.3 (HKLM-x32…892F745F-A497-42ED-B503-8D74936D0BEB_is1) (Version: 2.3 – Alexey 'Tyrrrz' Golub)

Macrium Reflect Free Edition (HKLM…614251E7-949D-485D-8263-8C775A8FD56D) (Version: 7.1.2722 – Paramount Software (UK) Ltd.) Hidden

Macrium Reflect Free Edition (HKLM…MacriumReflect) (Version: 7.1 – Paramount Software (UK) Ltd.)

Malwarebytes version 4.4.3.125 (HKLM…35065F43-4BB2-439A-BFF7-0F1014F2E0CD_is1) (Version: 4.4.3.125 – Malwarebytes)

MaxiLink2 (HKLM-x32…72F31D9E-EF43-47AE-987A-AEF1B4609034) (Version: 1.11.43 – Autel) Hidden

MaxiLink2 (HKLM-x32…InstallShield_72F31D9E-EF43-47AE-987A-AEF1B4609034) (Version: 1.11.43 – Autel)

Maxx Audio Installer (x64) (HKLM…307032B2-6AF2-46D7-B933-62438DEB2B9A) (Version: 2.7.13058.0 – Waves Audio Ltd.) Hidden

MediaMonkey 4.1 (HKLM-x32…MediaMonkey_is1) (Version: 4.1 – Ventis Media Inc.)

Microsoft Edge (HKLM-x32…Microsoft Edge) (Version: 92.0.902.55 – Microsoft Corporation)

Microsoft Money Plus (HKLM-x32…Money2008b) (Version: 17 – Microsoft)

Microsoft Office Professional Plus 2016 – en-us (HKLM…ProPlusRetail – en-us) (Version: 16.0.14228.20204 – Microsoft Corporation)

Microsoft OneDrive (HKUS-1-5-21-1619883276-1864714895-2913937634-1001…OneDriveSetup.exe) (Version: 21.129.0627.0002 – Microsoft Corporation)

Microsoft Silverlight (HKLM-x32…89F4137D-6C26-4A84-BDB8-2E5A4BB71E00) (Version: 5.1.50907.0 – Microsoft Corporation)

Microsoft Update Health Tools (HKLM…E5A95BC5-81DF-4F0C-B910-B59DD012F037) (Version: 2.81.0.0 – Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32…7299052b-02a4-4627-81f2-1818da5d550d) (Version: 8.0.56336 – Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32…A49F249F-0C91-497F-86DF-B2585E8E76B7) (Version: 8.0.50727.42 – Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…71c9b48-7c32-4621-a0ac-3f809523288f) (Version: 8.0.56336 – Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM…6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A) (Version: 8.0.50727.42 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 (HKLM…8220EEFE-38CD-377E-8595-13398D740ACE) (Version: 9.0.30729 – Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable – x86 9.0.30729.17 (HKLM-x32…9A25302D-30C0-39D9-BD6F-21E6EC160475) (Version: 9.0.30729 – Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable – 10.0.40219 (HKLM…1D8E6291-B0D5-35EC-8441-6616F567A0F7) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable – 10.0.40219 (HKLM-x32…F0C3E5D1-1ADE-321E-8167-68EF0DE699A5) (Version: 10.0.40219 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32…ca67548a-5ebe-413a-b50c-4b9ceb6d66c6) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) – 11.0.61030 (HKLM-x32…33d1fd90-4274-48a1-9bc1-97e33d9c2d6f) (Version: 11.0.61030.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…50d4fc8-5d48-4b8f-8972-47c82c46020f) (Version: 12.0.30501.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.40664 (HKLM-x32…42d26ef-3dbe-4c25-95d3-4c1b11b235a7) (Version: 12.0.40664.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…f65db027-aff3-4070-886a-0d87064aabb1) (Version: 12.0.30501.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.40660 (HKLM-x32…61087a79-ac85-455c-934d-1fa22cc64f36) (Version: 12.0.40660.0 – Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.40664 (HKLM-x32…9dff3540-fc85-4ed5-ac84-9e3c7fd8bece) (Version: 12.0.40664.0 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.24.28127 (HKLM-x32…282975d8-55fe-4991-bbbb-06a72581ce58) (Version: 14.24.28127.4 – Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.24.28127 (HKLM-x32…e31cb1a4-76b5-46a5-a084-3fa419e82201) (Version: 14.24.28127.4 – Microsoft Corporation)

Microsoft Windows Desktop Runtime – 3.1.3 (x64) (HKLM-x32…f7152f3d-2c9d-4752-8a92-045a03b85f42) (Version: 3.1.3.28628 – Microsoft Corporation)

MiniTool Partition Wizard Free 10.2.2 (HKLM…5D996FA-ADCB-4D23-BA3C-A7C184A8FAC6_is1) (Version:  – MiniTool Solution Ltd.)

Mozilla Firefox 79.0 (x64 en-US) (HKLM…Mozilla Firefox 79.0 (x64 en-US)) (Version: 79.0 – Mozilla)

Mozilla Maintenance Service (HKLM…MozillaMaintenanceService) (Version: 77.0.1 – Mozilla)

MSXML 4.0 SP2 Parser and SDK (HKLM-x32…716E0306-8318-4364-8B8F-0CC4E9376BAC) (Version: 4.20.9818.0 – Microsoft Corporation)

MyHarmony (HKLM-x32…2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4) (Version: 1.0.308 – Logitech)

Notepad++ (32-bit x86) (HKLM-x32…Notepad++) (Version: 7.8.4 – Notepad++ Team)

NVIDIA 3D Vision Controller Driver 390.41 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.NVIRUSB) (Version: 390.41 – NVIDIA Corporation)

NVIDIA 3D Vision Driver 398.36 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.3DVision) (Version: 398.36 – NVIDIA Corporation)

NVIDIA GeForce Experience 3.14.0.139 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.GFExperience) (Version: 3.14.0.139 – NVIDIA Corporation)

NVIDIA Graphics Driver 398.36 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.Driver) (Version: 398.36 – NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.37.4 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_HDAudio.Driver) (Version: 1.3.37.4 – NVIDIA Corporation)

NVIDIA PhysX System Software 9.17.0524 (HKLM…B2FE1952-0186-46C3-BAEC-A80AA35AC5B8_Display.PhysX) (Version: 9.17.0524 – NVIDIA Corporation)

Office 16 Click-to-Run Extensibility Component (HKLM-x32…90160000-008C-0000-0000-0000000FF1CE) (Version: 16.0.14228.20204 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM…90160000-00DD-0000-1000-0000000FF1CE) (Version: 16.0.14228.20204 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Licensing Component (HKLM…90160000-008F-0000-1000-0000000FF1CE) (Version: 16.0.14228.20204 – Microsoft Corporation) Hidden

Office 16 Click-to-Run Localization Component (HKLM-x32…90160000-008C-0409-0000-0000000FF1CE) (Version: 16.0.14131.20278 – Microsoft Corporation) Hidden

OLYMPUS Digital Camera Updater (HKLM-x32…7E59353-651A-4266-BC46-BE28FF4376D7) (Version: 2.1.1 – Olympus Corporation)

Oracle VM VirtualBox 6.1.12 (HKLM…BD4C2875-9059-4C94-A7B5-493A538AC180) (Version: 6.1.12 – Oracle Corporation)

Pdf995 (HKLM-x32…Pdf995) (Version:  – )

PicPick (HKLM-x32…PicPick) (Version: 5.1.3 – NGWIN)

Private Internet Access (HKLM…33023371-7761-4F81-BBB1-0E0D0D175ACF) (Version: 2.4.0+05574 – Private Internet Access, Inc.)

Private Internet Access WinTUN Driver (HKLM…419A0C0-4CC8-459E-9BAE-F3BF5D2E2CCB) (Version: 1.0 – Private Internet Access, Inc.) Hidden

Python 3.5.2 (32-bit) (HKUS-1-5-21-1619883276-1864714895-2913937634-1001…cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e) (Version: 3.5.2150.0 – Python Software Foundation)

Python 3.5.2 Core Interpreter (32-bit) (HKLM-x32…EB0611B2-7F10-4D97-BCF2-DCAAB1199498) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 Development Libraries (32-bit) (HKLM-x32…5DB2183B-62D3-407F-BBC1-EAD2F36283FA) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 Documentation (32-bit) (HKLM-x32…1FBA5182-78DD-4940-9F06-96E5042B7061) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 Executables (32-bit) (HKLM-x32…33B10015-A9B1-4210-B50A-26C6443979B0) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 pip Bootstrap (32-bit) (HKLM-x32…9ADF9987-3327-48C6-91B3-B10900366491) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 Standard Library (32-bit) (HKLM-x32…FCBB04F4-D2CF-4F55-BE92-B3898696B318) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 Tcl/Tk Support (32-bit) (HKLM-x32…C1153533-FDC4-4922-892D-B71810F69566) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 Test Suite (32-bit) (HKLM-x32…9D50A6D7-410A-4469-87B7-35FA84CBD479) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python 3.5.2 Utility Scripts (32-bit) (HKLM-x32…E6DEBF43-7ACF-4E88-9BBF-9B5945683281) (Version: 3.5.2150.0 – Python Software Foundation) Hidden

Python Launcher (HKLM-x32…963ECCDD-F09F-4C24-9367-8B5D748AA7C8) (Version: 3.5.2121.0 – Python Software Foundation)

qBittorrent 4.0.4 (HKLM-x32…qBittorrent) (Version: 4.0.4 – The qBittorrent project)

Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32…E7086B15-806E-4519-A876-DBA9FDDE9A13) (Version: 11.0.0.10443 – Qualcomm)

Realtek High Definition Audio Driver (HKLM-x32…F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC) (Version: 6.0.9107.1 – Realtek Semiconductor Corp.)

Samsung Data Migration (HKLM-x32…3B304604-0BF5-488E-AB95-F2F2E31206F3) (Version: 3.1 – Samsung)

Samsung Magician (HKLM-x32…29AE3F9F-7158-4ca7-B1ED-28A73ECDB215_is1) (Version: 5.1.0.1120 – Samsung Electronics)

ScanSnap Manager (HKLM-x32…DBCDB997-EEEB-4BE9-BAFF-26B4094DBDE6) (Version: V5.5L10 – PFU)

ShareX (HKLM…82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.4.0 – ShareX Team)

Speccy (HKLM…Speccy) (Version: 1.31 – Piriform)

SyncBackFree (HKLM-x32…SyncBackFree_is1) (Version: 8.5.5.0 – 2BrightSparks)

Synology Assistant (remove only) (HKLM-x32…Synology Assistant) (Version: 6.1-15163 – Synology)

TeamViewer (HKLM-x32…TeamViewer) (Version: 15.19.5 – TeamViewer)

TrueCrypt (HKLM-x32…TrueCrypt) (Version: 7.2 – TrueCrypt Foundation)

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM…32DC821E-4A7D-4878-BEE8-337FA153D7F2) (Version: 2.63.0.0 – Microsoft Corporation) Hidden

VirtualCloneDrive (HKLM-x32…VirtualCloneDrive) (Version: 5.5.2.0 – Elaborate Bytes)

VLC media player (HKLM-x32…VLC media player) (Version: 2.2.8 – VideoLAN)

Vulkan Run Time Libraries 1.0.54.1 (HKLM…VulkanRT1.0.54.1) (Version: 1.0.54.1 – LunarG, Inc.) Hidden

Vulkan Run Time Libraries 1.0.54.1 (HKLM…VulkanRT1.0.54.1-2) (Version: 1.0.54.1 – LunarG, Inc.) Hidden

Vulkan Run Time Libraries 1.0.54.1 (HKLM…VulkanRT1.0.54.1-3) (Version: 1.0.54.1 – LunarG, Inc.) Hidden

Vulkan Run Time Libraries 1.0.54.1 (HKLM…VulkanRT1.0.54.1-4) (Version: 1.0.54.1 – LunarG, Inc.) Hidden

Windows Driver Package – Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM…F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 – Dynastream Innovations, Inc.)

Windows Driver Package – OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (HKLM…2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB) (Version: 09/09/2009 1.0.0.0 – OLYMPUS IMAGING CORP.)

Windows Driver Package – Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM…D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 – Silicon Labs Software)

Zoom (HKUS-1-5-21-1619883276-1864714895-2913937634-1001…ZoomUMX) (Version: 5.5.2 (12494.0204) – Zoom Video Communications, Inc.)

Packages:

=========

Adobe Notification Client -> C:Program FilesWindowsAppsAdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-04-24] (Adobe Systems Incorporated)

Autodesk SketchBook -> C:Program FilesWindowsApps89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)

Dell Customer Connect -> C:Program FilesWindowsAppsDellInc.DellCustomerConnect_5.2.52.0_x64__htrsf667h5kn2 [2021-04-08] (Dell Inc)

Dell Help & Support -> C:Program FilesWindowsAppsDellInc.DellHelpSupport_3.2.1.0_x64__htrsf667h5kn2 [2018-03-09] (Dell Inc)

Dell Product Registration -> C:Program FilesWindowsAppsDellInc.DellProductRegistration_3.4.6.0_x64__htrsf667h5kn2 [2018-07-20] (Dell Inc)

Disney Magic Kingdoms -> C:Program FilesWindowsAppsA278AB0D.DisneyMagicKingdoms_6.1.13.0_x86__h6adky7gbf63m [2021-07-13] (Gameloft SE)

Dropbox promotion -> C:Program FilesWindowsAppsC27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-01-17] (Dropbox Inc.)

Evernote -> C:Program FilesWindowsAppsEvernote.Evernote_10.17.8.0_x86__q4d96b2w5wcc2 [2021-07-24] (Evernote)

HP Smart -> C:Program FilesWindowsAppsAD2F1837.HPPrinterControl_129.1.234.0_x64__v10z8vjag6ke6 [2021-07-24] (HP Inc.)

Keeper – Password Manager & Secure File Storage -> C:Program FilesWindowsAppsKeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-30] (Keeper Security Inc)

Killer Control Center -> C:Program FilesWindowsAppsRivetNetworks.KillerControlCenter_2.4.3337.0_x64__rh07ty8m5nkag [2021-06-27] (Rivet Networks LLC) [Startup Task]

LastPass: Free Password Manager -> C:Program FilesWindowsAppsLastPass.LastPassFreePasswordManager_4.69.0.0_neutral__qq0fmhteeht3j [2021-04-10] (LastPass)

Media Suite Essentials for Dell -> C:Program FilesWindowsAppsDB6EA5DB.MediaSuiteEssentialsforDell_2.6.4028.0_x86__mcezb6ze687jp [2020-03-26] (CYBERLINK CORPORATION.)

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]

Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-19] (Microsoft Studios) [MS Ad]

Minecraft for Windows 10 -> C:Program FilesWindowsAppsMicrosoft.MinecraftUWP_1.17.1004.0_x64__8wekyb3d8bbwe [2021-07-13] (Microsoft Studios)

Netflix -> C:Program FilesWindowsApps4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)

Power Media Player for Dell -> C:Program FilesWindowsAppsDB6EA5DB.PowerMediaPlayerforDell_14.2.3708.0_x86__mcezb6ze687jp [2021-07-15] (CYBERLINK CORPORATION.)

Power2Go for Dell -> C:Program FilesWindowsAppsDB6EA5DB.Power2GoforDell_11.0.3920.0_x86__mcezb6ze687jp [2020-08-13] (CYBERLINK CORPORATION.) [Startup Task]

PowerDirector for Dell -> C:Program FilesWindowsAppsDB6EA5DB.PowerDirectorforDell_15.0.4409.0_x64__mcezb6ze687jp [2018-08-17] (CYBERLINK CORPORATION.)

Spotify Music -> C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0 [2021-07-22] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDE270DAA-1BE6-48F2-AC49-CBCA81245ABD -> [Creative Cloud Files] => C:UserssnowfCreative Cloud Files [2018-10-20 15:18]

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID2F81B25E-7507-4844-BFF2-77D2CC24CED4localserver32 -> C:Program FilesAdobeAdobe Creative CloudACCCreative Cloud.exe (Adobe Inc. -> Adobe Inc.)

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID46406D82-6EC0-47CC-8A75-1F33C6DEDBBEInprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.35.442psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID540C17A8-04F2-4B66-95D7-B2FEF9A19B54InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.35.422psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID62634D95-960B-4834-8E71-A70408AD8FD9InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.34.7psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID6D264B70-DA18-401D-910C-B202D89670C6InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.36.32psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID84EB3779-151B-4C71-AEF0-A0FEE9481401InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.35.342psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID86508D42-E5D7-4D10-9C6F-D427AEEB85B5InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.34.11psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSID91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.33.7psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDA804CF1A-91E5-4F0C-9E8C-DB39E74056DDInprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.33.23psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDa9872fee-5a55-4ecb-9b0f-b06fedcf14d1localserver32 -> C:Program FilesWavesMaxxAudioMaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDCA8FA699-91CD-412F-9D13-9B1222F4370EInprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.36.82psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDCA919489-0396-4164-A6E7-94CDED45A707InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.36.52psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDDEDF773D-E27B-485E-8E7D-85C5B0EB5A67InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.36.72psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDe8c77137-e224-5791-b6e9-ff0305797a13InprocServer32 -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDE9E7529D-7F09-410B-AF2A-CC154473B19CInprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.35.452psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDEA724FD3-844D-43A9-A8C9-A5BC35FC20E4InprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.33.17psuser_64.dll => No File

CustomCLSID: HKUS-1-5-21-1619883276-1864714895-2913937634-1001_ClassesCLSIDEF076C91-DC9E-43E3-84ED-3D219E065A4FInprocServer32 -> C:UserssnowfAppDataLocalGoogleUpdate1.3.35.302psuser_64.dll => No File

ShellIconOverlayIdentifiers: [   AccExtIco1] -> AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2021-04-24] (Adobe Inc. -> )

ShellIconOverlayIdentifiers: [   AccExtIco2] -> 853B7E05-C47D-4985-909A-D0DC5C6D7303 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2021-04-24] (Adobe Inc. -> )

ShellIconOverlayIdentifiers: [   AccExtIco3] -> 42D38F2E-98E9-4382-B546-E24E4D6D04BB => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2021-04-24] (Adobe Inc. -> )

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> 81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42 => C:Program FilesGoogleDrivegoogledrivesync64.dll [2021-06-18] (Google LLC -> Google)

ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> 81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40 => C:Program FilesGoogleDrivegoogledrivesync64.dll [2021-06-18] (Google LLC -> Google)

ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> 81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41 => C:Program FilesGoogleDrivegoogledrivesync64.dll [2021-06-18] (Google LLC -> Google)

ContextMenuHandlers1: [7-Zip] -> 23170F69-40C1-278A-1000-000100020000 => C:Program Files7-Zip7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]

ContextMenuHandlers1: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2021-04-24] (Adobe Inc. -> )

ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> A6595CD1-BF77-430A-A452-18696685F7C7 => C:Program Files (x86)AdobeAcrobat 2017Acrobat ElementsContextMenuShim64.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

ContextMenuHandlers1: [ANotepad++64] -> B298D29A-A6ED-11DE-BA8C-A68E55D89593 => C:Program Files (x86)Notepad++NppShell_06.dll [2020-01-29] (Notepad++ -> )

ContextMenuHandlers1: [GDContextMenu] -> BB02B294-8425-42E5-983F-41A1FA970CD6 => C:Program FilesGoogleDrivecontextmenu64.dll [2021-06-18] (Google LLC -> Google)

ContextMenuHandlers1: [ReflectShellExt] -> DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611 => C:Program FilesMacriumReflectRContextMenu.dll [2017-10-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers1: [VirtualCloneDrive] -> B7056B8E-4F99-44f8-8CBD-282390FE5428 => C:Program Files (x86)Elaborate BytesVirtualCloneDriveElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)

ContextMenuHandlers2: [ReflectShellExt] -> DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611 => C:Program FilesMacriumReflectRContextMenu.dll [2017-10-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)

ContextMenuHandlers2: [VirtualCloneDrive] -> B7056B8E-4F99-44f8-8CBD-282390FE5428 => C:Program Files (x86)Elaborate BytesVirtualCloneDriveElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)

ContextMenuHandlers3: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers4: [7-Zip] -> 23170F69-40C1-278A-1000-000100020000 => C:Program Files7-Zip7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]

ContextMenuHandlers4: [GDContextMenu] -> BB02B294-8425-42E5-983F-41A1FA970CD6 => C:Program FilesGoogleDrivecontextmenu64.dll [2021-06-18] (Google LLC -> Google)

ContextMenuHandlers5: [igfxcui] -> 3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4 =>  -> No File

ContextMenuHandlers5: [igfxDTCM] -> 9B5F5829-A529-4B12-814A-E81BCB8D93FC => C:WINDOWSSystem32DriverStoreFileRepositoryigdlh64.inf_amd64_2dadf80722c4f751igfxDTCM.dll [2021-01-18] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

ContextMenuHandlers5: [NvCplDesktopContext] -> 3D1975AF-48C6-4f8e-A182-BE0E08FA86A9 => C:WINDOWSsystem32nvshext.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)

ContextMenuHandlers6: [7-Zip] -> 23170F69-40C1-278A-1000-000100020000 => C:Program Files7-Zip7-zip.dll [2017-08-28] (Igor Pavlov) [File not signed]

ContextMenuHandlers6: [AccExt] -> 2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4 => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2021-04-24] (Adobe Inc. -> )

ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> A6595CD1-BF77-430A-A452-18696685F7C7 => C:Program Files (x86)AdobeAcrobat 2017Acrobat ElementsContextMenuShim64.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

ContextMenuHandlers6: [MBAMShlExt] -> 57CE581A-0CB6-4266-9CA0-19364C90A0B3 => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:UserssnowfAppDataRoamingMicrosoftWindowsStart MenuProgramsJDiskReport 1.4.1JGoodies Home Page.lnk -> hxxp://www.jgoodies.com

ShortcutWithArgument: C:UserssnowfAppDataRoamingMicrosoftWindowsStart MenuProgramsChrome AppsChromebook Recovery Utility.lnk -> C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC) ->  –profile-directory=Default –app-id=jndclpdbaamdhonoechobihbbiimdgai

ShortcutWithArgument: C:UserssnowfAppDataRoamingMicrosoftWindowsStart MenuProgramsChrome AppsGoogle Play Music.lnk -> C:Program Files (x86)GoogleChromeApplicationchrome_proxy.exe (Google LLC) ->  –profile-directory=Default –app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2019-09-09 07:13 – 2019-09-09 07:13 – 001364992 _____ () [File not signed] [File is in use] C:Program Files (x86)GarminExpressCefSharp.Core.dll

2020-03-04 11:22 – 2020-03-04 11:22 – 000073216 _____ () [File not signed] [File is in use] C:Program Files (x86)GarminExpressFixBootSector.dll

2017-05-08 09:35 – 2017-05-08 09:35 – 000325632 _____ () [File not signed] [File is in use] C:Program Files (x86)GarminExpressGpsImgWrapper.dll

2019-07-27 08:57 – 2019-07-27 08:57 – 096071680 _____ () [File not signed] C:Program Files (x86)GarminExpresslibcef.dll

2017-12-07 22:27 – 2015-04-14 16:50 – 000385024 _____ () [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsConfig.dll

2017-12-07 22:27 – 2015-04-14 16:49 – 000233472 _____ () [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsExtention.dll

2017-12-07 22:27 – 2003-03-26 19:46 – 000135168 _____ () [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsImgIO.dll

2017-12-07 22:27 – 2010-08-24 17:56 – 000167936 _____ () [File not signed] C:Program Files (x86)PFUScanSnapDriverSSsltsa.dll

2019-04-10 19:49 – 2017-10-15 18:44 – 000023040 _____ () [File not signed] C:Program FilesDropItLibrdcRDC.dll

2020-09-28 20:39 – 2020-09-04 12:19 – 001154560 _____ () [File not signed] C:Program FilesPrivate Internet Accesspia-clientlib.dll

2020-09-28 20:39 – 2020-09-04 12:18 – 000050176 _____ () [File not signed] C:Program FilesPrivate Internet Accesspia-winrtsupport.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000957440 _____ () [File not signed] C:ProgramDataCrashPlanconftmpsqlite-3.20.0-cb32b9f5-f0b4-4c80-b05e-912e9175ec48-sqlitejdbc.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000114176 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_ctypes.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000172544 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_elementtree.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 002255872 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_hashlib.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000032256 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_multiprocessing.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000046080 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_psutil_windows.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000047616 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_socket.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 002825216 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_ssl.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000026112 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522_yappi.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000080896 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522bz2.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000015872 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522common.time34.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000007680 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522hashobjs_ext.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000301568 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522PIL._imaging.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000168448 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522pyexpat.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 001084416 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522pysqlite2._sqlite.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000548864 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522pythoncom27.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000137728 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522pywintypes27.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000010752 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522select.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000020992 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522thumbnails_ext.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000689664 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522unicodedata.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000119808 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522usb_ext.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000128512 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32api.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000438784 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32com.shell.shell.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000011776 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32crypt.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000023040 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32event.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000149504 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32file.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000223232 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32gui.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000048128 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32inet.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000029696 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32pdh.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000027648 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32pipe.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000044032 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32process.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000020480 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32profile.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000136192 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32security.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000026624 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522win32ts.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000034304 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522windows.conditional.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000037888 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522windows.connectivity.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000071680 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522windows.device_monitor.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000103936 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522windows.volumes.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000019968 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522windows.winwrap.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 001325056 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wx._controls_.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 001489408 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wx._core_.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 001007104 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wx._gdi_.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000103424 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wx._html2.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 000916992 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wx._misc_.pyd

2021-07-26 20:53 – 2021-07-26 20:53 – 001039872 _____ () [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wx._windows_.pyd

2017-12-07 22:27 – 2003-04-21 15:19 – 000020480 _____ () [File not signed] C:WINDOWSSSDriverfi5110fjipl.dll

2017-12-07 22:27 – 2003-04-21 15:19 – 000851968 _____ () [File not signed] C:WINDOWSSSDriverfi5110fjiplA6.DLL

2021-02-05 19:55 – 2021-06-14 18:14 – 000145408 _____ (Antony Male) [File not signed] [File is in use] C:Program Files (x86)LightBulbStylet.dll

2020-03-04 11:22 – 2020-03-04 11:22 – 001976832 _____ (Apache Software Foundation) [File not signed] C:Program Files (x86)GarminExpressXercesLib.dll

2020-03-04 11:25 – 2020-03-04 11:25 – 000234496 _____ (Dynastream Innovations Inc.) [File not signed] C:Program Files (x86)GarminExpressANT_WrappedLib.dll

2017-12-07 22:27 – 2015-06-18 23:40 – 010477568 _____ (Foxit Software Inc.) [File not signed] C:Program Files (x86)PFUScanSnapDriverfsdk_win32.dll

2017-12-07 22:27 – 2011-12-27 16:17 – 001294336 _____ (FUJITSU) [File not signed] C:WINDOWSSSDriverfi5110fjtw32.dll

2021-07-26 20:53 – 2004-12-02 10:36 – 000122880 _____ (FUJITSU) [File not signed] C:WINDOWSSSDriverfi5110Fjtw6400.fds

2017-12-07 22:27 – 2011-12-27 16:17 – 000352256 _____ (FUJITSU) [File not signed] C:WINDOWSSSDriverfi5110MERCURY.DLL

2020-03-04 11:22 – 2020-03-04 11:22 – 002711552 _____ (Garmin International) [File not signed] [File is in use] C:Program Files (x86)GarminExpresslegacyio.dll

2017-05-08 09:35 – 2017-05-08 09:35 – 000343552 _____ (Garmin International, Inc.) [File not signed] C:Program Files (x86)GarminExpressIMG_GPSMAP.dll

2020-03-04 11:22 – 2020-03-04 11:22 – 000425472 _____ (Garmin) [File not signed] C:Program Files (x86)GarminExpressXMLdll.dll

2021-06-14 06:14 – 2021-06-14 18:14 – 000103424 _____ (hardcodet.net) [File not signed] [File is in use] C:Program Files (x86)LightBulbHardcodet.NotifyIcon.Wpf.dll

2009-09-16 19:44 – 2009-09-16 19:44 – 000153088 _____ (Hewlett Packard) [File not signed] C:WINDOWSSystem32hptcpmib.dll

2009-09-16 19:45 – 2009-09-16 19:45 – 000331264 _____ (Hewlett Packard) [File not signed] C:WINDOWSSystem32HpTcpMon.dll

2009-09-16 12:44 – 2009-09-16 12:44 – 000132096 _____ (Hewlett Packard) [File not signed] C:WINDOWSSystem32hpzjrd01.dll

2014-06-25 00:31 – 2014-06-25 00:31 – 000041472 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:Program Files (x86)HPHPLaserJetServiceHPHTTPProxy.dll

2014-06-25 00:31 – 2014-06-25 00:31 – 000073728 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:Program Files (x86)HPHPLaserJetServiceHPTools.dll

2014-06-25 00:31 – 2014-06-25 00:31 – 001222656 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:Program Files (x86)HPHPLaserJetServiceLEDMXMLObjects.dll

2014-06-25 00:31 – 2014-06-25 00:31 – 000034816 _____ (HP) [File not signed] [File is in use] C:Program Files (x86)HPHPLaserJetServiceHPServiceCommunicator.dll

2017-12-07 22:27 – 2004-09-14 13:16 – 000352256 _____ (Intel Corporation) [File not signed] C:Program Files (x86)PFUScanSnapDriverijl15.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000254464 ____N (Java™ Native Access (JNA)) [File not signed] C:WindowsTempjna-1060845270jna6424001576395865264.dll

2009-09-16 19:45 – 2009-09-16 19:45 – 000317440 _____ (Microsoft Corporation) [File not signed] C:WINDOWSSystem32HPTcpMUI.dll

2021-01-02 17:06 – 2021-01-02 17:06 – 000097280 _____ (Microsoft Corporation) [File not signed] C:WINDOWSWinSxSx86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1ATL80.DLL

2020-04-09 18:34 – 2020-04-09 18:34 – 000000000 ____L (Microsoft Corporation) C:Program Files (x86)Microsoft OfficerootOffice16AppVIsvSubsystems32.dll

2020-04-09 18:34 – 2020-04-09 18:34 – 000000000 ____L (Microsoft Corporation) C:Program Files (x86)Microsoft OfficerootOffice16c2r32.dll

2021-02-05 19:55 – 2021-06-14 18:14 – 008172544 _____ (Mulholland Software/James Willock) [File not signed] [File is in use] C:Program Files (x86)LightBulbMaterialDesignThemes.Wpf.dll

2021-02-05 19:55 – 2021-06-14 18:14 – 000636416 _____ (Newtonsoft) [File not signed] [File is in use] C:Program Files (x86)LightBulbNewtonsoft.Json.dll

2017-12-07 22:27 – 2005-02-17 12:55 – 000069632 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverdistortion.dll

2017-12-07 22:27 – 2002-02-25 19:00 – 000069632 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverIMGPROC2.dll

2017-12-07 22:27 – 2008-10-29 15:00 – 000061440 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverMonoComp.DLL

2017-12-07 22:27 – 2010-07-02 11:20 – 000880640 _____ (PFU Limited) [File not signed] C:Program Files (x86)PFUScanSnapDriverOptionSSCarrierSheetOptionP2IUnite.dll

2017-12-07 22:27 – 2009-03-30 22:31 – 000765952 _____ (PFU Limited) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2IBSKEW.dll

2017-12-07 22:27 – 2010-07-23 10:54 – 000823296 _____ (PFU Limited) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2ICRPPR.dll

2017-12-07 22:27 – 2008-07-03 18:58 – 000118784 _____ (PFU Limited) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2IERSDW.dll

2017-12-07 22:27 – 2015-04-17 11:53 – 000629760 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuIPLib.dll

2017-12-07 22:27 – 2012-07-04 14:26 – 000249856 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverpfumkocr.dll

2017-12-07 22:27 – 2015-01-11 14:13 – 000352256 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPFUOCR.DLL

2017-12-07 22:27 – 2016-03-02 22:49 – 000819712 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuPDFLib.dll

2017-12-07 22:27 – 2011-12-21 14:20 – 000266240 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsCommon.dll

2017-12-07 22:27 – 2011-12-14 22:49 – 000258048 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsLaunchapp.dll

2017-12-07 22:27 – 2008-11-27 20:23 – 000053248 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsOrgFolder.dll

2017-12-07 22:27 – 2016-01-23 14:21 – 001626112 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsQMLiteSetting.dll

2017-12-07 22:27 – 2011-01-27 13:36 – 000315392 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsSvc.dll

2017-12-07 22:27 – 2014-09-10 11:10 – 000262144 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsXMLLite.dll

2017-12-07 22:27 – 2015-12-25 12:51 – 000175616 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuXMPLib.dll

2017-12-07 22:27 – 2006-11-01 20:50 – 000054544 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverPtsaaEIf.dll

2017-12-07 22:27 – 2005-11-24 13:28 – 000188416 _____ (PFU LIMITED) [File not signed] C:Program Files (x86)PFUScanSnapDriverSignLib.dll

2017-12-07 22:27 – 2008-02-28 20:36 – 001069056 _____ (PFU Limited) [File not signed] C:Program Files (x86)PFUScanSnapDriverSsIjl.dll

2017-12-07 22:27 – 2008-01-24 17:26 – 000077824 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverErrorDifusion.dll

2017-12-07 22:27 – 2010-04-20 11:33 – 000069632 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2IATRES.DLL

2017-12-07 22:27 – 2012-06-26 11:38 – 000159744 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2ICMUKIS.dll

2017-12-07 22:27 – 2009-06-17 11:41 – 000126976 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2IDEPTH.DLL

2017-12-07 22:27 – 2008-07-04 10:28 – 000118784 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2Igr2mo.dll

2017-12-07 22:27 – 2008-01-18 15:20 – 000106496 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2IJDGWP.dll

2017-12-07 22:27 – 2012-07-04 13:45 – 000094208 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2IMOCR.dll

2017-12-07 22:27 – 2008-07-03 19:02 – 000057344 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2IROTAT.dll

2017-12-07 22:27 – 2008-02-04 12:15 – 000065536 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverP2Iscale.dll

2017-12-07 22:27 – 2015-02-10 10:12 – 000458752 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsCtl.dll

2017-12-07 22:27 – 2008-10-29 14:59 – 000053248 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverPfuSsSRGB.dll

2017-12-07 22:27 – 2002-06-19 20:11 – 000516179 _____ (PFU) [File not signed] C:Program Files (x86)PFUScanSnapDriverpgd_file.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 003043328 _____ (Python Software Foundation) [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522python27.dll

2020-03-04 11:23 – 2020-03-04 11:23 – 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:Program Files (x86)GarminExpressDSI_SiUSBXp_3_1.DLL

2019-07-27 08:57 – 2019-07-27 08:57 – 000762368 _____ (The Chromium Authors) [File not signed] C:Program Files (x86)GarminExpresschrome_elf.dll

2020-09-28 20:39 – 2020-09-04 12:18 – 003422720 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:Program FilesPrivate Internet Accesslibcrypto-1_1-x64.dll

2020-09-28 20:39 – 2020-09-04 12:18 – 000686592 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:Program FilesPrivate Internet Accesslibssl-1_1-x64.dll

2020-09-28 20:39 – 2020-05-11 09:05 – 000028112 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:Program FilesPrivate Internet Accessimageformatsqsvg.dll

2020-09-28 20:39 – 2020-05-11 09:03 – 000506832 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:Program FilesPrivate Internet Accessimageformatsqwebp.dll

2021-04-03 15:35 – 2021-06-14 18:14 – 000017408 _____ (Tyrrrz) [File not signed] [File is in use] C:Program Files (x86)LightBulbLightBulb.Core.dll

2021-02-05 19:55 – 2021-06-14 18:14 – 000223232 _____ (Tyrrrz) [File not signed] [File is in use] C:Program Files (x86)LightBulbLightBulb.dll

2021-02-05 19:55 – 2021-06-14 18:14 – 000022528 _____ (Tyrrrz) [File not signed] [File is in use] C:Program Files (x86)LightBulbLightBulb.WindowsApi.dll

2021-02-05 19:55 – 2021-06-14 18:14 – 000094208 _____ (Tyrrrz) [File not signed] [File is in use] C:Program Files (x86)LightBulbOnova.dll

2021-02-05 19:55 – 2021-06-14 18:14 – 000027648 _____ (Tyrrrz) [File not signed] [File is in use] C:Program Files (x86)LightBulbTyrrrz.Extensions.dll

2021-02-05 19:55 – 2021-06-14 18:14 – 000011776 _____ (Tyrrrz) [File not signed] [File is in use] C:Program Files (x86)LightBulbTyrrrz.Settings.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000202240 _____ (wxWidgets development team) [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wxbase30u_net_vc90_x64.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 002831872 _____ (wxWidgets development team) [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wxbase30u_vc90_x64.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 001654784 _____ (wxWidgets development team) [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wxmsw30u_adv_vc90_x64.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 006542336 _____ (wxWidgets development team) [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wxmsw30u_core_vc90_x64.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000773632 _____ (wxWidgets development team) [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wxmsw30u_html_vc90_x64.dll

2021-07-26 20:53 – 2021-07-26 20:53 – 000137216 _____ (wxWidgets development team) [File not signed] C:UserssnowfAppDataLocalTemp_MEI159522wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => ""="Service"

HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKUS-1-5-21-1619883276-1864714895-2913937634-1001SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE

HKUS-1-5-21-1619883276-1864714895-2913937634-1001SoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE

SearchScopes: HKUS-1-5-21-1619883276-1864714895-2913937634-1001 -> DefaultScope F70D7B1E-8594-4F22-A198-11BB3B2B7BD0 URL =

SearchScopes: HKUS-1-5-21-1619883276-1864714895-2913937634-1001 -> F70D7B1E-8594-4F22-A198-11BB3B2B7BD0 URL =

BHO: Skype for Business Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C:Program Files (x86)Microsoft OfficerootVFSProgramFilesX64Microsoft OfficeOffice16OCHelper.dll [2021-06-29] (Microsoft Corporation -> Microsoft Corporation)

BHO: Adobe Acrobat Create PDF Helper -> AE7CD045-E861-484f-8273-0445EE161910 -> C:Program Files (x86)Common FilesAdobeAcrobatWCIEActiveX2017x64AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

BHO: Adobe Acrobat Create PDF from Selection -> F4971EE7-DAA0-4053-9964-665D8EE6A077 -> C:Program Files (x86)Common FilesAdobeAcrobatWCIEActiveX2017x64AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

BHO-x32: Skype for Business Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA -> C:Program Files (x86)Microsoft OfficerootOffice16OCHelper.dll [2021-06-29] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Java™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C:Program Files (x86)Javajre1.8.0_231binssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)

BHO-x32: Adobe Acrobat Create PDF Helper -> AE7CD045-E861-484f-8273-0445EE161910 -> C:Program Files (x86)Common FilesAdobeAcrobatWCIEActiveX2017AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

BHO-x32: Java™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C:Program Files (x86)Javajre1.8.0_231binjp2ssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)

BHO-x32: Adobe Acrobat Create PDF from Selection -> F4971EE7-DAA0-4053-9964-665D8EE6A077 -> C:Program Files (x86)Common FilesAdobeAcrobatWCIEActiveX2017AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Toolbar: HKLM – Adobe Acrobat Create PDF Toolbar – 47833539-D0C5-4125-9FA8-0819E2EAAC93 – C:Program Files (x86)Common FilesAdobeAcrobatWCIEActiveX2017x64AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Toolbar: HKLM-x32 – Adobe Acrobat Create PDF Toolbar – 47833539-D0C5-4125-9FA8-0819E2EAAC93 – C:Program Files (x86)Common FilesAdobeAcrobatWCIEActiveX2017AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Handler-x32: mso-minsb-roaming.16 – 83C25742-A9F7-49FB-9138-434302C88D07 – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf-roaming.16 – 42089D2D-912D-4018-9087-2B87803E93FB – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf.16 – 5504BE45-A83B-4808-900A-3A5C36E7F77A – C:Program Files (x86)Microsoft OfficerootOffice16MSOSB.DLL [2021-07-26] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 15:03 – 2017-03-18 15:01 – 000000824 _____ C:WINDOWSsystem32driversetchosts

2020-06-09 19:42 – 2021-07-26 20:52 – 000000504 _____ C:WINDOWSsystem32driversetchosts.ics

172.17.32.1 DESKTOP-JPSPHV0.mshome.net # 2026 7 0 26 2 52 53 781

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program Files (x86)Common FilesOracleJavajavapath;C:Program Files (x86)InteliCLS Client;C:Program FilesInteliCLS Client;C:Windowssystem32;C:Windows;C:WindowsSystem32Wbem;C:WindowsSystem32WindowsPowerShellv1.0;C:Program Files (x86)NVIDIA CorporationPhysXCommon;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;C:Program FilesCalibre2;%SYSTEMROOT%System32OpenSSH;C:Program Files (x86)IntelIntel® Management Engine ComponentsDAL;C:Program FilesIntelIntel® Management Engine ComponentsDAL;C:Program Files (x86)IntelIntel® Management Engine ComponentsIPT;C:Program FilesIntelIntel® Management Engine ComponentsIPT;C:Program Filesdotnet

HKUS-1-5-21-1619883276-1864714895-2913937634-1001Control PanelDesktop\Wallpaper -> E:PhotosExportDesktop WallpaperP7250673.jpg

DNS Servers: 192.168.1.1

HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

Network Binding:

=============

Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

Local Area Connection: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

vEthernet (Default Switch): VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM…StartupApprovedRun: => "Logitech Download Assistant"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [39EB51E0-9739-4552-8F13-28B7207D80C5] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [13BF857E-A19C-43FD-A57C-B4E38C00E15F] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [18362184-8386-48D7-B4A0-CA3C114A72F0] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [309A8B13-66E2-42FF-8DF5-1C7690AB49F0] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5cSkypeSkype.exe => No File

FirewallRules: [A48211AC-A9D7-498A-ACE8-CFAD14DF5DD4] => (Block) C:program filesopenvpnbinopenvpn.exe => No File

FirewallRules: [8E42645B-5C21-47E2-9C38-91C9D82D410C] => (Block) C:program filesopenvpnbinopenvpn.exe => No File

FirewallRules: [UDP Query UserA3220E94-073D-4105-9707-5D3D2E685496C:program filesopenvpnbinopenvpn.exe] => (Allow) C:program filesopenvpnbinopenvpn.exe => No File

FirewallRules: [TCP Query User58589040-F9BB-4474-9D3F-0B562E144798C:program filesopenvpnbinopenvpn.exe] => (Allow) C:program filesopenvpnbinopenvpn.exe => No File

FirewallRules: [C7B64364-252D-4436-AB15-7529FCC1E2A9] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [91C8AA4F-3C21-4DA9-89C8-D2D3F0D3DF90] => (Allow) C:Program FilesMozilla Firefoxfirefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [52DBF1E8-D66D-412A-931A-7520E0BACED8] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [568A7571-D020-4412-BF7B-BF71A01E41F3] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [6FA13510-F1EC-49FC-B41D-2C13ACA7075F] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [CF71EC6B-675F-4932-A126-A1B8016FDCDC] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [C0D4DAC9-83C5-458D-8A81-A5B9026C67E4] => (Allow) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]

FirewallRules: [52BC9316-8CE3-4F5B-86B8-B1ECBDB06121] => (Allow) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]

FirewallRules: [018BC21D-8CEE-487D-874F-FCB271B84217] => (Allow) C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe => No File

FirewallRules: [09369ED6-3568-45D4-B7F9-D5E4554555D8] => (Allow) C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe => No File

FirewallRules: [2011F2F8-5DCA-4DD9-AB52-D200F8278F84] => (Allow) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]

FirewallRules: [EA723501-5EA4-44F1-B03E-8209E8306E08] => (Allow) C:Program FilesqBittorrentqbittorrent.exe () [File not signed]

FirewallRules: [7312CF8A-A520-4056-BFF1-C371C0C662A2] => (Allow) C:Program Files (x86)Common FilesMcafeeMMSSHostMMSSHost.exe => No File

FirewallRules: [81A4F965-E9C1-4F97-B4A5-18A2B6A49671] => (Allow) C:Program FilesCommon FilesMcAfeeMMSSHostMMSSHost.exe => No File

FirewallRules: [CBC5456B-BF03-43C2-B3BC-F11E056C6748] => (Allow) C:Program Files (x86)HPHP Color LaserJet Pro M252binEWSProxy.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [B2B22980-787E-44D4-B70D-6719F8813DE4] => (Allow) C:Program Files (x86)HPHP Color LaserJet Pro M252BinHPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [TCP Query User67F3E90F-049B-4B24-8B01-1371E72432D3C:program files (x86)synologyassistantdsassistant.exe] => (Allow) C:program files (x86)synologyassistantdsassistant.exe (Synology Inc. -> ) [File not signed]

FirewallRules: [UDP Query User72408B30-5875-4C99-969E-A5FB0B8B616AC:program files (x86)synologyassistantdsassistant.exe] => (Allow) C:program files (x86)synologyassistantdsassistant.exe (Synology Inc. -> ) [File not signed]

FirewallRules: [A879565A-86FD-45AF-8814-3F46C2606199] => (Allow) C:Program Files (x86)MediaMonkeyMediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)

FirewallRules: [54BDCD43-7FDB-4D00-B7EC-316BE6CA7A76] => (Allow) C:Program Files (x86)MediaMonkeyMediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)

FirewallRules: [9B0C29ED-DCDC-4EE5-B346-435D856BCA87] => (Allow) C:Program Files (x86)MediaMonkeyMediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)

FirewallRules: [9EF9367C-5907-40EA-B99D-1BFC6FC6E197] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [4A8E5680-B56B-4809-A6B7-25C132A1D269] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [50AEF8AC-3F8C-46DD-8024-C7E907E5255E] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [143D225F-CC78-49F2-9C86-A86EA88E9B78] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [EBC3B41D-22BD-4424-891F-8F84472B78F4] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [2B2630AA-4164-4090-AB5C-1E50340DA014] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [E8496644-13D0-4F06-90BE-D82823E52DEA] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [962C6AEE-4B94-4724-A054-F35143F0EE4F] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [58DACB63-1224-4C38-97D3-212B00DCDF0A] => (Allow) C:Program FilesCCleanerCCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [AC7D8FD5-6F4B-49D5-927E-DCB9CEC060AC] => (Allow) C:Program FilesCCleanerCCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [B69ABA5F-4FFB-451A-9156-EF09C07E7A65] => (Allow) C:UserssnowfAppDataRoamingZoombinZoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

FirewallRules: [8FF548FE-C69F-4B90-B8E3-E5735E3B4C1D] => (Allow) C:UserssnowfAppDataRoamingZoombinairhost.exe => No File

FirewallRules: [F0580888-93E1-4CDC-89D8-B6E0B652DEF1] => (Allow) C:UserssnowfAppDataRoamingZoombinairhost.exe => No File

FirewallRules: [11586562-A663-42E2-90E2-BD5B04992F95] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [CFF8419D-E114-4E93-BFF3-57BC914D653B] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [2002C75A-DDEB-4177-B24F-1A6E7A3276B0] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [83EB4D8E-22D9-4E1C-BEAA-354D2897CB9E] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [828C6535-0D40-4F78-B0EB-3C9BED0ACD5A] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [C0289A52-9A4F-465B-A520-6DE5DC631390] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [D0E9FC53-9623-451F-9AE9-65E56F4489E2] => (Allow) C:Program Files (x86)Microsoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [265DFEBE-4075-45C1-8BF4-B3222F94B0A6] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [1706A363-5A08-4EC2-B819-1CFD6CE06A68] => (Allow) C:Program Files (x86)TeamViewerTeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [24B1EDC0-27CB-4B1D-94D5-9165F44D38A3] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [777D3ACA-D866-4CF2-84E3-C82B61A9665D] => (Allow) C:Program Files (x86)TeamViewerTeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

FirewallRules: [615E46F8-F9AA-4EDD-A7CE-863B21FA6926] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [60DE168D-C8F1-4BCC-AB63-1A9807A0E85E] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [C4FC5AC8-880F-4720-A871-8C8256A969E1] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [B188543F-14EC-4D3E-96D6-567A105BF4FE] => (Allow) C:Program FilesWindowsAppsMicrosoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5cSkypeSkype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [8AC94954-5FE7-4C35-8189-8F83D875E40D] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [958F65B0-C90C-425A-B7BC-852692A96133] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [2799F209-1309-433F-8F05-804AE4BCC4F5] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [D81E7E0D-5217-4833-BA52-8FF67501BAE6] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [FA722D21-A2BE-440D-9CBB-3012F1E05F61] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [DAC46D2D-6BE6-4BF3-B541-EEBFF7A7988F] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [B64FC83B-AC76-4DFD-B42D-FBFDF04246FA] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [1C2C49C9-C949-4DF7-B957-8A88B72F8E86] => (Allow) C:Program FilesWindowsAppsSpotifyAB.SpotifyMusic_1.164.561.0_x86__zpdnekdrzrea0Spotify.exe (Spotify AB -> Spotify Ltd)

FirewallRules: [C6CBBCBE-C45D-4F31-A56C-C7B2277523A4] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

05-07-2021 02:54:34 Windows Modules Installer

12-07-2021 17:49:15 Scheduled Checkpoint

21-07-2021 17:48:53 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:

==================

Error: (07/26/2021 08:53:08 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: DeliveryService.exe, version: 3.5.2013.0, time stamp: 0x5d025c33

Faulting module name: KERNELBASE.dll, version: 10.0.19041.1023, time stamp: 0xcbf6f7d1

Exception code: 0xe0434352

Fault offset: 0x0012a6f2

Faulting process id: 0x2470

Faulting application start time: 0x01d78292874a1c43

Faulting application path: C:Program Files (x86)Dell Digital DeliveryDeliveryService.exe

Faulting module path: C:WINDOWSSystem32KERNELBASE.dll

Report Id: 2ac46247-fd60-41b7-9832-11c2b839b9b3

Faulting package full name:

Faulting package-relative application ID:

Error: (07/26/2021 08:53:08 PM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Application: DeliveryService.exe

Framework Version: v4.0.30319

Description: The process was terminated due to an unhandled exception.

Exception Info: System.IO.FileNotFoundException

at Dell.ClientFulfillmentService.ClientFulfillmentService.RetrieveAppConfig()

at Dell.ClientFulfillmentService.ClientFulfillmentService.ProcessAppConfig()

at Dell.ClientFulfillmentService.ClientFulfillmentService.InitializeService(System.Object)

at System.Threading.TimerQueueTimer.CallCallbackInContext(System.Object)

at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

at System.Threading.TimerQueueTimer.CallCallback()

at System.Threading.TimerQueueTimer.Fire()

at System.Threading.TimerQueue.FireNextTimers()

at System.Threading.TimerQueue.AppDomainTimerCallback(Int32)

Error: (07/26/2021 08:48:38 PM) (Source: VSS) (EventID: 8193) (User: )

Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.

.

Error: (07/26/2021 08:48:38 PM) (Source: VSS) (EventID: 13) (User: )

Description: Volume Shadow Copy Service information: The COM Server with CLSID 4e14fba2-2e22-11d1-9964-00c04fbbb345 and name CEventSystem cannot be started.[0x8007045bAsystemshutdownisinprogress[0x8007045bAsystemshutdownisinprogress[0x8007045bAsystemshutdownisinprogress[0x8007045bAsystemshutdownisinprogress

]

Error: (07/26/2021 08:48:38 PM) (Source: VSS) (EventID: 8193) (User: )

Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x8007045b, A system shutdown is in progress.

.

Error: (07/26/2021 08:48:38 PM) (Source: VSS) (EventID: 13) (User: )

Description: Volume Shadow Copy Service information: The COM Server with CLSID 4e14fba2-2e22-11d1-9964-00c04fbbb345 and name CEventSystem cannot be started.[0x8007045bAsystemshutdownisinprogress[0x8007045bAsystemshutdownisinprogress[0x8007045bAsystemshutdownisinprogress[0x8007045bAsystemshutdownisinprogress

]

Error: (07/26/2021 08:46:45 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: mbamtray.exe, version: 3.1.0.1807, time stamp: 0x5cc0b4e2

Faulting module name: mbamtray.exe, version: 3.1.0.1807, time stamp: 0x5cc0b4e2

Exception code: 0xc0000005

Fault offset: 0x000df170

Faulting process id: 0x24ab4

Faulting application start time: 0x01d78291a0975a6b

Faulting application path: C:Program FilesMalwarebytesAnti-Malwarembamtray.exe

Faulting module path: C:Program FilesMalwarebytesAnti-Malwarembamtray.exe

Report Id: 3f39f7ed-a38d-4c79-bf8d-8f5ddf3ed7c2

Faulting package full name:

Faulting package-relative application ID:

Error: (07/25/2021 05:51:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )

Description: The storage optimizer couldn't complete retrim on Data (E:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)

System errors:

=============

Error: (07/26/2021 08:53:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Dell Digital Delivery Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (07/26/2021 08:50:57 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )

Description: The driver detected an internal driver error on DeviceVBoxNetLwf.

Error: (07/26/2021 08:49:08 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )

Description: The driver detected an internal driver error on DeviceVBoxNetLwf.

Error: (07/26/2021 08:47:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JPSPHV0)

Description: The server 9BA05972-F6A8-11CF-A442-00A0C90A8F39 did not register with DCOM within the required timeout.

Error: (07/26/2021 08:47:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Malwarebytes Service service failed to start due to the following error:

Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Error: (07/19/2021 03:03:40 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)

Description: The server E60687F7-01A1-40AA-86AC-DB1CBF673334 did not register with DCOM within the required timeout.

Error: (07/15/2021 04:06:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Print Spooler service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (07/02/2021 09:06:26 PM) (Source: disk) (EventID: 11) (User: )

Description: The driver detected a controller error on DeviceHarddisk2DR2.

Windows Defender:

================

Date: 2021-07-26 19:02:46

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-07-25 19:25:54

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-07-23 19:48:46

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-07-22 19:33:26

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

Date: 2021-07-21 19:24:21

La description:

Microsoft Defender Antivirus scan has been stopped before completion.

Scan Type: Antimalware

Scan Parameters: Quick Scan

CodeIntegrity:

===============

Date: 2021-07-26 20:47:09

La description:

Code Integrity determined that a process (DeviceHarddiskVolume5WindowsSystem32services.exe) attempted to load DeviceHarddiskVolume5Program FilesMalwarebytesAnti-MalwareMBAMService.exe that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: Dell Inc. 1.0.10 05/17/2018

Motherboard: Dell Inc. 0DF42J

Processor: Intel® Core™ i7-8700 CPU @ 3.20GHz

Percentage of memory in use: 30%

Total physical RAM: 32578.71 MB

Available physical RAM: 22679.84 MB

Total Virtual: 58178.71 MB

Available Virtual: 46272.41 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:231.37 GB) (Free:40.08 GB) NTFS

Drive e: (Data) (Fixed) (Total:3726.02 GB) (Free:1138.21 GB) NTFS

\?Volume30878232-da40-11e7-9ecf-b05216a09aae (WINRETOOLS) (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS

\?Volumeedd18c15-ff19-40e3-b5d5-9ebe0e8b2579 (ESP) (Fixed) (Total:0.48 GB) (Free:0.41 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (Size: 232.9 GB) (Disk ID: A13688F9)

Partition: GPT.

==========================================================

Disk: 1 (Size: 3726 GB) (Disk ID: 02C6D58D)

Partition: GPT.

==================== End of Addition.txt =======================

Click to rate this post!
[Total: 0 Average: 0]

Commentaires

Laisser un commentaire

Votre commentaire sera révisé par les administrateurs si besoin.