Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-11-2021 Ran by Naam (22-11-2021 11:54:25) Running from E:\Software\Farbar Recovery Scan Tool 22-11-2021 Microsoft Windows 11 Home Version 21H2 22000.318 (X64) (2021-10-12 12:47:52) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= (If an entry is included in the fixlist, it will be removed.) Administrator (S-1-5-21-499443066-2075648757-1779063864-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-499443066-2075648757-1779063864-503 - Limited - Disabled) Gast (S-1-5-21-499443066-2075648757-1779063864-501 - Limited - Disabled) Naam (S-1-5-21-499443066-2075648757-1779063864-1001 - Administrator - Enabled) => C:\Users\Naam Naam (S-1-5-21-499443066-2075648757-1779063864-1004 - Limited - Enabled) => C:\Users\Naam Naamm (S-1-5-21-499443066-2075648757-1779063864-1003 - Administrator - Enabled) James (S-1-5-21-499443066-2075648757-1779063864-1005 - Administrator - Enabled) => C:\Users\James WDAGUtilityAccount (S-1-5-21-499443066-2075648757-1779063864-504 - Limited - Disabled) _ashbackuppb_ (S-1-5-21-499443066-2075648757-1779063864-1010 - Administrator - Enabled) => C:\Users\_ashbackuppb_.DESKTOP-LFA65I3.000 ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) «WGMods Essentials» - #5 (HKLM-x32\...\WGMods_Essentials_ENG_is1) (Version: 1.12.1.2 - WGMods.net) 1394 OHCI Compliant Host Controller (Legacy) (HKLM-x32\...\{B12878BB-DA05-4F25-96E7-E0200428B220}) (Version: 0.0.1 - Microsoft Corporation) 7 Sticky Notes (HKLM-x32\...\{2DB7DD8E-F17B-408A-B93B-92867EF7974D}_is1) (Version: - Fabio Martin) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) A360 Desktop (HKLM\...\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}) (Version: 6.0.3.1100 - Autodesk) Acon Digital EDIUS Editions 1.0.3 (HKLM\...\{999F244F-11E3-4294-810D-75446AE63D02}_is1) (Version: 1.0.3 - Acon AS) Adobe Acrobat Reader DC - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated) Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.10 - Adobe Systems) Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_0_4) (Version: 17.0.4 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.9.0.515 - Adobe Systems Incorporated) Adobe Illustrator 2021 (HKLM-x32\...\ILST_25_0) (Version: 25.0 - Adobe Inc.) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_1_2) (Version: 21.1.2 - Adobe Systems Incorporated) Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0_1) (Version: 14.0.1 - Adobe Systems Incorporated) Apple Application Support (32-bit) (HKLM-x32\...\{11C4575B-4B32-44D2-A097-D59A00BA60DE}) (Version: 8.5 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{D39B163A-9E12-442C-95E9-33FA5746AB21}) (Version: 8.5 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C788AE25-3D4E-4D18-811B-3219F778487E}) (Version: 13.5.1.2 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Ashampoo Backup Pro 16 (HKLM\...\{34B007AF-FD8B-5808-C9F5-68AE48F6C094}_is1) (Version: 16.03 - Ashampoo GmbH & Co. KG) Ashampoo Burning Studio 2010 (HKLM-x32\...\Ashampoo Burning Studio 2010_is1) (Version: 9.1.0 - ashampoo GmbH & Co. KG) Aslain's WoT Modpack version 1.14.1.3.04 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 1.14.1.3.04 - Aslain) ASUS GPU TweakII (HKLM-x32\...\InstallShield_{2914BAB6-CA16-4B5A-BF41-2466656C7040}) (Version: 2.3.0.3 - ASUSTek COMPUTER INC.) Audacity 3.0.0 (HKLM-x32\...\Audacity_is1) (Version: 3.0.0 - Audacity Team) Audacity 3.0.3 (64-bit) (HKLM\...\Audacity_is1) (Version: 3.0.3 - Audacity Team) Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk) Autodesk Configurator 360 addin (HKLM-x32\...\{563941AA-C055-4FAA-8B04-A4E024A61F7E}) (Version: 20.0.10300 - Autodesk) Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.) Autodesk DWG TrueView 2016 - English (HKLM\...\DWG TrueView 2016 - English) (Version: 20.1.49.0 - Autodesk) Autodesk Inventor Content Center Libraries 2016 (Desktop Content) (HKLM\...\{B46DECD1-2064-4EF1-0000-22D71E81877C}) (Version: 20.0.13800.0000 - Autodesk) Autodesk Inventor Electrical Catalog Browser 2016 - English (HKLM\...\{AD99243B-F007-0000-B1CC-22A4DDD4B96F}) (Version: 13.0.46.0 - Autodesk) Hidden Autodesk Inventor Electrical Catalog Browser 2016 - English (HKLM\...\Autodesk Inventor Electrical Catalog Browser 2016 - English) (Version: 13.0.46.0 - Autodesk) Autodesk Inventor Electrical Catalog Browser 2016 Language Pack - English (HKLM\...\{AD99243B-F007-0409-B1CC-22A4DDD4B96F}) (Version: 13.0.46.0 - Autodesk) Hidden Autodesk Inventor Professional 2016 - English (HKLM\...\Autodesk Inventor Professional 2016) (Version: 20.0.13800.0000 - Autodesk) Autodesk Inventor Professional 2016 (HKLM\...\{7F4DD591-2064-0001-0000-7107D70F3DB4}) (Version: 20.0.13800.0000 - Autodesk) Hidden Autodesk Inventor Professional 2016 English Language Pack (HKLM\...\{7F4DD591-2064-0001-1033-7107D70F3DB4}) (Version: 20.0.13800.0000 - Autodesk) Hidden Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk) Autodesk Material Library Low Resolution Image Library 2016 (HKLM-x32\...\{FA5DF4D1-CD59-4183-B3D4-779A56498786}) (Version: 6.3.0.15 - Autodesk) Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk) Autodesk Revit Interoperability for Inventor 2016 (HKLM\...\{0BB716E0-1600-0210-0000-097DC2F354DF}) (Version: 16.0.421.0 - Autodesk) Hidden Autodesk Revit Interoperability for Inventor 2016 (HKLM\...\Autodesk Revit Interoperability for Inventor 2016) (Version: 16.0.421.0 - Autodesk) Autodesk Vault Basic 2016 (Client) (HKLM\...\{CF526A26-2164-0000-0000-02E95019B628}) (Version: 21.0.50.0 - Autodesk) Hidden Autodesk Vault Basic 2016 (Client) (HKLM\...\Autodesk Vault Basic 2016 (Client)) (Version: 21.0.50.0 - Autodesk) Autodesk Vault Basic 2016 (Client) English Language Pack (HKLM\...\{266597A9-2164-0000-0100-DCBF2B69166B}) (Version: 21.0.50.0 - Autodesk) Hidden Bitwarden (HKLM\...\173a9bac-6f0d-50c4-8202-4744c69d091a) (Version: 1.23.1 - Bitwarden Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Bulk Rename Utility 3.4.2.0 (64-bit) (HKLM\...\Bulk Rename Utility Installation_is1) (Version: - TGRMN Software) calibre 64bit (HKLM\...\{5AC45CD0-2E08-456B-B15E-72726064D8B5}) (Version: 5.7.2 - Kovid Goyal) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP) CORSAIR iCUE Software (HKLM-x32\...\{3D350B22-542B-4FB4-B3AC-EA760941C319}) (Version: 3.38.61 - Corsair) CrystalDiskInfo 8.12.6 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.12.6 - Crystal Dew World) Eco Materials Adviser for Autodesk Inventor 2016 (64-bit) (HKLM\...\{1A56BE00-916E-432D-A576-EB00D2FF8450}) (Version: 5.6.4.44 - Granta Design Limited) EDIUS (HKLM\...\{8649384D-99D2-4302-86F4-29E81D9091FB}) (Version: 10.20.7821 - Grass Valley K.K.) Hidden EDIUS Hub (HKLM\...\{63BC135F-E5D5-4A07-88C4-106F0504AC14}) (Version: 10.20.7821 - Grass Valley K.K.) EDIUS X (HKLM-x32\...\{b887792b-1f9a-4db5-97b9-bdad2c91ed17}) (Version: 10.20.7821 - Grass Valley K.K.) EDIUS X DVD Menu Style (HKLM\...\{69BD7C2D-299D-4349-A017-E19C1000E9A1}) (Version: 10.00.6544 - Grass Valley K.K.) EDIUS.NET Manager 1.3.0 (HKLM-x32\...\{CB2AC859-E64E-4761-A1DA-3B9E3ED922EE}_is1) (Version: 1.3.0 - magic multi media GmbH - EDIUS.NET) EH Asset Store (HKLM\...\{4072D038-84AE-4B1D-8C77-2CD34B543C0F}) (Version: 10.20.7821 - Grass Valley K.K.) EH Render Service (HKLM\...\{A3C92D30-6E73-484A-8255-C67C9E7F4B70}) (Version: 10.20.7821 - Grass Valley K.K.) Elgato Stream Deck (HKLM\...\{39025522-918B-46A3-9C75-740B2D4572EF}) (Version: 5.1.3.14750 - Elgato Systems GmbH) FARO LS 1.1.503.3 (64bit) (HKLM-x32\...\{1C05E654-FB81-4274-BF32-292E3707701D}) (Version: 5.3.3.38662 - FARO Scanner Production) FileMarker.NET Free (HKLM\...\{A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1) (Version: 2.1 - ArcticLine Software) Folder Marker Free (HKLM\...\Folder Marker Free_is1) (Version: 4.3 - ArcticLine Software) Geeks3D FurMark 1.28.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.28.0.0 - Geeks3D) GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team) Google Chrome (HKLM\...\{7D3E762F-10ED-3B29-92CD-6E288B9A5C06}) (Version: 96.0.4664.45 - Google LLC) GrabIt 1.7.5 Beta 3 (build 1022) (HKLM-x32\...\GrabIt_is1) (Version: - Ilan Shemes) Grammarly Editor (HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\GrammarlyForWindows) (Version: 1.5.80 - Grammarly) Grammarly for Microsoft® Office Suite (HKLM\...\{D55C414A-684A-4B84-A003-C248B40FD7C6}) (Version: 6.8.263 - Grammarly) Hidden Grammarly for Microsoft® Office Suite (HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\{54da24a3-a032-400b-8762-669a8bf92df5}) (Version: 6.8.263 - Grammarly) GV License Manager (HKLM\...\{3C0B744D-639B-496B-A13E-23388B38F934}) (Version: 10.20.7821 - Grass Valley K.K.) GV Video I/O Hardware Driver (HKLM\...\{6724CB85-13DB-4618-B00B-9A8B4EB9D6BB}) (Version: 10.20.7821 - Grass Valley K.K.) HandBrake 1.4.2 (HKLM-x32\...\HandBrake) (Version: 1.4.2 - ) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.580 - Huawei Technologies Co., Ltd.) HP Color LaserJet Pro MFP M377 (HKLM-x32\...\{f2b49807-8568-453a-9e9a-b8712593f013}) (Version: 16.0.19137.323 - Hewlett-Packard) HP Dropbox Plugin (HKLM-x32\...\{19EDEC5D-055E-4AD0-88AC-C342608FC47E}) (Version: 36.0.445.57508 - HP) HP Google Drive Plugin (HKLM-x32\...\{1B225296-B1F1-40B3-8427-844E97CB2D1B}) (Version: 36.0.445.57508 - HP) HPCLJProMFPM377 (HKLM-x32\...\{6E415F2B-0F24-4753-83AC-35117B584A82}) (Version: 0.00.0005 - Hewlett-Packard) Hidden I.R.I.S. OCR (HKLM-x32\...\{CF10F6BC-C710-4F6F-B7E1-4057699A59AA}) (Version: 12.3.6.10 - HP) Intel Driver && Support Assistant (HKLM-x32\...\{BC82D1AD-802A-4733-BB90-A8E59AB8434A}) (Version: 21.5.33.3 - Intel) Hidden Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) Intel(R) Computing Improvement Program (HKLM\...\{88B98508-2D8F-46F1-90AD-557BE40C7067}) (Version: 2.4.07642 - Intel Corporation) Intel(R) Memory and Storage Tool (HKLM\...\{D9F2D22C-A2FB-45D1-B84D-FFBE8950459D}) (Version: 1.11.165 - Intel) Intel® Driver & Support Assistant (HKLM-x32\...\{b09ce953-882c-4131-a693-2e1d73b1e50d}) (Version: 21.5.33.3 - Intel) IrfanView 4.58 (64-bit) (HKLM\...\IrfanView64) (Version: 4.58 - Irfan Skiljan) iTunes (HKLM\...\{2155F4C1-B409-4927-BFDE-6A98FCD65A92}) (Version: 12.10.7.3 - Apple Inc.) Kits Configuration Installer (HKLM-x32\...\{C661B45B-1D2A-AF7C-27D0-B4FFD670A4FE}) (Version: 10.1.14393.0 - Microsoft) Hidden Label Designer Plus DELUXE 11 (HKLM-x32\...\LDPD11_is1) (Version: - CAM Development) Logitech Camera Settings (HKLM-x32\...\LogiUCDPP) (Version: 2.12.8.0 - Logitech Europe S.A.) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.12.4779 - Logitech) Logitech Options (HKLM\...\LogiOptions) (Version: 8.36.86 - Logitech) Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech) Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech) Malwarebytes' Anti-Malware (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: - Malwarebytes Corporation) Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.29 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.29 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Volume - en-us) (Version: 16.0.10380.20037 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - nl-nl (HKLM\...\ProPlus2019Volume - nl-nl) (Version: 16.0.10380.20037 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-499443066-2075648757-1779063864-1004\...\OneDriveSetup.exe) (Version: 21.196.0921.0007 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-499443066-2075648757-1779063864-1005\...\OneDriveSetup.exe) (Version: 21.062.0328.0001 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{2FA9DAAC-895B-4E99-99D9-DC2965FBE79C}) (Version: 2.87.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29914 (HKLM-x32\...\{43d1ce82-6f55-4860-a938-20e5deb28b98}) (Version: 14.28.29914.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29914 (HKLM-x32\...\{1b5476d9-ab8e-4b0d-b004-059a1bd5568b}) (Version: 14.28.29914.0 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 5.0.12 (x64) (HKLM-x32\...\{ce8037d8-35f7-4142-ad18-23609ac5db17}) (Version: 5.0.12.30623 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Movavi Video Suite 21 (HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Movavi Video Suite 21) (Version: 21.4.0 - Movavi) Mozilla Firefox 89.0.2 (x64 nl) (HKLM\...\Mozilla Firefox 89.0.2 (x64 nl)) (Version: 89.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.0.2 - Mozilla) MSTech Folder Icon Pro 4.1.0.0 (HKLM-x32\...\{1ADC000A-8BFE-49DD-927D-A0FCA33543FA}_is1) (Version: 4.1.0.0 - MSTech (Modern Software Technology)) Mync (HKLM\...\{89657D7C-B782-4D35-950C-2E37604EDBC2}) (Version: 10.20.7821 - Grass Valley K.K.) Hidden Mync (HKLM-x32\...\{324ea969-70b2-4b54-9c9b-9f4e398c776d}) (Version: 10.20.7821 - Grass Valley K.K.) NewBlue OFX Bridge 2 (HKLM-x32\...\NewBlue OFX Bridge 2) (Version: 1.0.210609 - NewBlue) NewBlue Reflections Collection (HKLM\...\NewBlue Reflections Collection) (Version: 1.0.180615 - NewBlue) NewBlue Titler Pro 7 (HKLM\...\NewBlue Titler Pro 7) (Version: 7.8.210922 - NewBlue) NewsLeecher version V8.0 Beta 4 (HKLM-x32\...\NewsLeecher_is1) (Version: V8.0 Beta 4 - ) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.1.9.2 - Notepad++ Team) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Graphics Driver 472.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 472.12 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation) NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NZBGet (HKLM-x32\...\NZBGet) (Version: - Andrey Prygunkov) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.0.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10380.20037 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10380.20037 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.10380.20037 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.10380.20037 - Microsoft Corporation) Hidden Privacy Eraser Pro (HKLM-x32\...\{F7AD1EF2-2670-40C2-A541-939265AF2F18}_is1) (Version: Privacy Eraser Pro 9.70 - PrivacyEraser Computing, Inc.) Private Internet Access (HKLM\...\{33023371-7761-4F81-BBB1-0E0D0D175ACF}) (Version: 2.5.1+05676 - Private Internet Access, Inc.) Private Internet Access WinTUN Driver (HKLM\...\{0419A0C0-4CC8-459E-9BAE-F3BF5D2E2CCB}) (Version: 1.0 - Private Internet Access, Inc.) Hidden proDAD Vitascene 3.0 (64bit) (HKLM\...\proDAD-Vitascene-3.0) (Version: 3.0.262 - proDAD GmbH) proDAD Vitascene 4.0 (64bit) (HKLM\...\proDAD-Vitascene-4.0) (Version: 4.0.280 - proDAD GmbH) puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert) Quick Batch File Compiler 3.6.0.0 (HKLM-x32\...\Quick Batch File Compiler_is1) (Version: 3.6.0.0 - AbyssMedia.com) QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8666 - Realtek Semiconductor Corp.) Reg Organizer version 8.81 (HKLM\...\Reg Organizer_is1) (Version: 8.81 - ChemTable Software) SABnzbd 3.2.0 (HKLM-x32\...\SABnzbd) (Version: 3.2.0 - The SABnzbd Team) Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 4.0.0.14 - Samsung) Screenshot Captor 4.36.2 (HKLM-x32\...\ScreenshotCaptor_is1) (Version: - ) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Spotnet (HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Spotnet) (Version: 2.0.0.284 - Spotnet) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH) TeamViewer (HKLM\...\TeamViewer) (Version: 15.19.5 - TeamViewer) Toolkit Documentation (HKLM-x32\...\{6143A694-5FE1-BDF6-F78E-4F7BF3E9419B}) (Version: 10.1.14393.0 - Microsoft) Hidden Topaz Video Enhance AI (HKLM\...\Topaz Video Enhance AI 2.1.1) (Version: 2.1.1 - Topaz Labs LLC) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH) UltraISO Premium V9.75 (HKLM-x32\...\UltraISO_is1) (Version: 9.75 - EZB Systems, Inc.) VentriloPro-x64 (HKLM\...\{A2EC940C-F6C3-48C0-9BDB-8F06E83A2A99}) (Version: 4.01.0001.1000 - Flagship Industries, Inc.) VisTitle Ver2.956 (HKLM-x32\...\{4493C04C-A228-496B-B5F0-FDC0B0EB867B}) (Version: 2.9.5.6 - Videostar Co., Ltd.) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) Voxengo Elephant (HKLM\...\Voxengo Elephant_is1) (Version: 4.15 - Voxengo) Voxengo Voxformer (HKLM\...\Voxengo Voxformer_is1) (Version: 2.19 - Voxengo) Wargaming.net Game Center (HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Wargaming.net Game Center) (Version: 21.7.3.7062 - Wargaming.net) WhatsApp (HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\WhatsApp) (Version: 2.2144.11 - WhatsApp) Windows 11 Installation Assistant (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1285 - Microsoft Corporation) Windows Assessment and Deployment Kit - Windows 10 (HKLM-x32\...\{39ebb79f-797c-418f-b329-97cfdf92b7ab}) (Version: 10.1.14393.0 - Microsoft Corporation) Windows Pc-statuscontrole (HKLM\...\{A62417A3-2860-430C-AAA1-081C47C97592}) (Version: 3.1.2109.29003 - Microsoft Corporation) WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH) World of Tanks EU (HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net) Packages: ========= Amazon Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.82.0_x64__pwbj9vvecjh7j [2021-11-16] (Amazon Development Centre (London) Ltd) Bing Fall Colors -> C:\Program Files\WindowsApps\Microsoft.BingFallColors_1.0.0.0_neutral__8wekyb3d8bbwe [2021-10-30] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_132.3.262.0_x64__v10z8vjag6ke6 [2021-11-18] (HP Inc.) Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-10-30] (INTEL CORP) [Startup Task] Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-10-30] (INTEL CORP) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-10-30] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-10-30] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-11-01] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-31] (NVIDIA Corp.) Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-10-30] (Microsoft Corporation) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.175.0_x64__dt26b99r8h8gj [2021-10-30] (Realtek Semiconductor Corp) Sonic Radar 3 -> C:\Program Files\WindowsApps\A-Volute.28054DF1F58B4_3.16.19.0_x64__w2gh52qy24etm [2021-10-30] (A-Volute) Sonic Studio 3 -> C:\Program Files\WindowsApps\A-Volute.SonicStudio3_3.16.19.0_x64__w2gh52qy24etm [2021-10-30] (A-Volute) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0 [2021-11-13] (Spotify AB) [Startup Task] VLC -> C:\Program Files\WindowsApps\VideoLAN.VLC_3.2.1.0_x64__paz6r1rewnh0a [2021-10-30] (VideoLAN) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) [File not signed] CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\iDrop.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{2AD206F1-152C-4F9D-A24E-6F93FE7A4AFC}\InprocServer32 -> C:\Users\Naam\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.263\982AA0C258\GrammarlyShim64.dll (Grammarly, Inc. -> CompanyName) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppDocView.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{4BE56754-B616-4998-B825-D16983AEE1B2}\InprocServer32 -> C:\Users\Naam\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.263\982AA0C258\Grammarly.AddIn.Connect.ActiveX.dll (Grammarly, Inc. -> Grammarly) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppDocView.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxTest.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> C:\Users\Naam\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (A-Volute SAS -> A-Volute) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtCp.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxAppCtrl.Ocx (Autodesk, Inc.) [File not signed] CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\SolidObject.Dll (Autodesk, Inc. -> ) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) [File not signed] CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\UCxTextBtn.Ocx (Autodesk, Inc.) [File not signed] CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\SolidObject.Dll (Autodesk, Inc. -> ) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\Inventor.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxApprenticeServer.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{D5C4136A-93E5-4678-A6F8-0B2D9BB10999}\localserver32 -> C:\WINDOWS\System32\RunDll32.exe "C:\Program Files\Reg Organizer\Notifications.dll",Activate -ToastActivated => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx (Autodesk, Inc.) [File not signed] CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ColorButton.Ocx (Autodesk, Inc.) [File not signed] CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\AcInetUI.dll (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\RxInventorUtilities.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DTInterop.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\InvResc.dll (Autodesk, Inc. -> Autodesk) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\ServiceModule.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\InvTXTStack.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2016\Bin\DTInterop.dll (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll => No File CustomCLSID: HKU\S-1-5-21-499443066-2075648757-1779063864-1001_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll => No File ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc -> Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed] ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2015-02-06] (Autodesk, Inc -> Autodesk) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2021-11-21] (Notepad++ -> ) ContextMenuHandlers1-x32: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files (x86)\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2012-01-06] (Autodesk, Inc -> Autodesk, Inc.) ContextMenuHandlers1: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2021-02-03] (TGRMN Software -> Bulk Rename Utility) ContextMenuHandlers1: [File Marker] -> {B70B7A24-5180-4092-B3BA-6266F914C053} => C:\Program Files (x86)\FileMarker.NET\FileMarkerShlExt64.dll [2019-07-19] (ArcticLine Software -> ArcticLine Software) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2021-02-03] (TGRMN Software -> Bulk Rename Utility) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2020-07-13] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll [2010-04-29] (Malwarebytes Corporation -> Malwarebytes Corporation) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed] ContextMenuHandlers4: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2021-02-03] (TGRMN Software -> Bulk Rename Utility) ContextMenuHandlers4: [MSTechFolderIconProShellEx] -> {ad5c5cbf-7003-3a1e-b4a8-089702575451} => C:\MSTech (Modern Software Technology)\MSTech Folder Icon Pro\MSTechFolderIconProShellEx.DLL [2020-04-22] (MSTech (Modern Software Technology)) [File not signed] ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2020-07-13] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_d3ead92e8ba045de\nvshext.dll [2021-09-16] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed] ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers6: [FMMenuExt] -> {47C91696-894C-46A1-B196-2C7CA1952F45} => C:\Program Files (x86)\Folder Marker\ShellExt64.dll [2017-04-26] (ArcticLine Software -> ArcticLine Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll [2010-04-29] (Malwarebytes Corporation -> Malwarebytes Corporation) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2020-07-13] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6_S-1-5-21-499443066-2075648757-1779063864-1001: [InventorMenu] -> {6FDE7A70-351B-11d6-988B-0010B57A8BB7} => C:\Program Files\Autodesk\Inventor 2016\Bin\DtBridge.dll [2015-03-04] (Autodesk, Inc. -> Autodesk, Inc.) ==================== Codecs (Whitelisted) ==================== ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Google Keep - notities en lijsten.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki ShortcutWithArgument: C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ShortcutWithArgument: C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Ziggo Mail Postvak IN.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iinbdeoelklpelnkpegoligfckmieomi ShortcutWithArgument: C:\Users\Naam\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ==================== Loaded Modules (Whitelisted) ============= 2021-08-02 13:05 - 2021-08-02 13:05 - 000022528 _____ () [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderWatchLib.dll 2021-11-17 20:15 - 2021-11-17 20:14 - 000635904 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node 2019-11-20 14:38 - 2019-11-20 14:38 - 000412160 _____ () [File not signed] C:\Program Files (x86)\ASUS\GPU TweakII\CPUPackageTempDLL.dll 2021-03-05 17:44 - 2021-03-05 17:44 - 000209408 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll 2021-03-05 17:44 - 2021-03-05 17:44 - 000101376 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll 2021-04-13 11:36 - 2021-04-13 11:36 - 005745664 _____ () [File not signed] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000065024 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\ashinetutil.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000225792 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\jsoncpp.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000056832 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\lzma.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000111616 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\minizip.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000225792 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\party.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000680448 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\sqlite.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 001074688 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\webdave.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000084480 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\zdll.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000074752 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\ziputil.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000026112 _____ () [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\zlibutil.dll 2021-10-14 11:11 - 2021-10-14 11:11 - 000038400 _____ () [File not signed] C:\Program Files\Elgato\StreamDeck\giflib5.dll 2021-10-14 11:11 - 2021-10-14 11:11 - 000098816 _____ () [File not signed] C:\Program Files\Elgato\StreamDeck\QtZeroConf.dll 2021-10-14 11:11 - 2021-10-14 11:11 - 000720384 _____ () [File not signed] C:\Program Files\Elgato\StreamDeck\turbojpeg.dll 2020-09-22 23:29 - 2020-09-22 23:29 - 003280896 _____ () [File not signed] C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\x64\LiteCore.dll 2020-09-22 23:29 - 2020-09-22 23:29 - 003280896 _____ () [File not signed] C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\x64\LiteCore.dll 2019-08-15 18:13 - 2019-08-15 18:13 - 001265664 _____ () [File not signed] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\e_sqlite3.DLL 2020-09-22 23:29 - 2020-09-22 23:29 - 003280896 _____ () [File not signed] C:\Program Files\Grass Valley\EH Asset Store\x64\LiteCore.dll 2021-04-26 16:54 - 2021-11-22 10:41 - 000043776 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.02.03\PEbiosinterface32.dll 2020-11-13 17:01 - 2020-11-13 17:01 - 000376832 _____ (Couchbase, Inc.) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\Couchbase.Lite.dll 2020-11-13 17:01 - 2020-11-13 17:01 - 000012288 _____ (Couchbase, Inc.) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\Couchbase.Lite.Support.NetDesktop.dll 2020-11-13 17:01 - 2020-11-13 17:01 - 000376832 _____ (Couchbase, Inc.) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\Couchbase.Lite.dll 2020-11-13 17:01 - 2020-11-13 17:01 - 000012288 _____ (Couchbase, Inc.) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\Couchbase.Lite.Support.NetDesktop.dll 2020-11-13 17:01 - 2020-11-13 17:01 - 000376832 _____ (Couchbase, Inc.) [File not signed] [File is in use] C:\Program Files\Grass Valley\EH Asset Store\Couchbase.Lite.dll 2020-11-13 17:01 - 2020-11-13 17:01 - 000012288 _____ (Couchbase, Inc.) [File not signed] [File is in use] C:\Program Files\Grass Valley\EH Asset Store\Couchbase.Lite.Support.NetDesktop.dll 2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll 2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll 2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll 2020-07-28 13:32 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll 2020-07-28 13:32 - 2019-02-21 17:00 - 000050688 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip32.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000093336 _____ (London Trust Media Incorporated -> ) [File not signed] C:\Program Files\Private Internet Access\libpkcs11-helper-1.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000199832 _____ (London Trust Media Incorporated -> ) [File not signed] C:\Program Files\Private Internet Access\lzo2.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 001179288 _____ (London Trust Media Incorporated -> ) [File not signed] C:\Program Files\Private Internet Access\pia-clientlib.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000056984 _____ (London Trust Media Incorporated -> ) [File not signed] C:\Program Files\Private Internet Access\pia-winrtsupport.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000580760 _____ (London Trust Media Incorporated -> Microsoft Corporation) [File not signed] C:\Program Files\Private Internet Access\MSVCP140.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000021656 _____ (London Trust Media Incorporated -> Microsoft Corporation) [File not signed] C:\Program Files\Private Internet Access\MSVCP140_1.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000091800 _____ (London Trust Media Incorporated -> Microsoft Corporation) [File not signed] C:\Program Files\Private Internet Access\VCRUNTIME140.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000034456 _____ (London Trust Media Incorporated -> Microsoft Corporation) [File not signed] C:\Program Files\Private Internet Access\VCRUNTIME140_1.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 003429528 _____ (London Trust Media Incorporated -> The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Private Internet Access\libcrypto-1_1-x64.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000693400 _____ (London Trust Media Incorporated -> The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Private Internet Access\libssl-1_1-x64.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 005999768 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Core.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 007086232 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Gui.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 001350296 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Network.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 003783832 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Qml.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000444056 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5QmlModels.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000058008 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5QmlWorkerScript.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 004195480 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Quick.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000176280 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5QuickControls2.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 001120920 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5QuickTemplates2.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000330904 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Svg.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 005517976 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Widgets.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000470680 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5WinExtras.dll 2020-12-07 15:09 - 2020-10-28 20:57 - 000214168 _____ (London Trust Media Incorporated -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\Qt5Xml.dll 2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll 2020-07-28 17:50 - 2020-07-28 17:50 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2020-07-28 17:50 - 2020-07-28 17:50 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll 2021-11-08 09:42 - 2021-11-08 09:42 - 000137184 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll 2020-12-16 08:26 - 2020-12-16 08:26 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll 2017-10-21 13:58 - 2017-10-21 13:58 - 000378368 _____ (Simple Injector) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\SimpleInjector.dll 2017-10-21 13:58 - 2017-10-21 13:58 - 000378368 _____ (Simple Injector) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\SimpleInjector.dll 2017-10-21 13:58 - 2017-10-21 13:58 - 000378368 _____ (Simple Injector) [File not signed] [File is in use] C:\Program Files\Grass Valley\EH Asset Store\SimpleInjector.dll 2019-11-01 17:24 - 2019-11-01 17:24 - 000006144 _____ (SourceGear) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\SQLitePCLRaw.batteries_v2.dll 2019-11-01 17:23 - 2019-11-01 17:23 - 000046080 _____ (SourceGear) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\SQLitePCLRaw.core.dll 2019-11-01 17:23 - 2019-11-01 17:23 - 000005632 _____ (SourceGear) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\SQLitePCLRaw.nativelibrary.dll 2019-11-01 17:23 - 2019-11-01 17:23 - 000056832 _____ (SourceGear) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\SQLitePCLRaw.provider.dynamic_cdecl.dll 2021-10-14 11:11 - 2021-10-14 11:11 - 001742848 _____ (SQLite Development Team) [File not signed] C:\Program Files\Elgato\StreamDeck\sqlite3.dll 2021-07-23 10:36 - 2021-07-23 10:36 - 002122240 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000019968 _____ (Swashbuckle.AspNetCore.Annotations) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\Swashbuckle.AspNetCore.Annotations.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000019968 _____ (Swashbuckle.AspNetCore.Annotations) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\Swashbuckle.AspNetCore.Annotations.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000019968 _____ (Swashbuckle.AspNetCore.Annotations) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\Swashbuckle.AspNetCore.Annotations.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000019968 _____ (Swashbuckle.AspNetCore.Annotations) [File not signed] [File is in use] C:\Program Files\Grass Valley\EH Asset Store\Swashbuckle.AspNetCore.Annotations.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000015360 _____ (Swashbuckle.AspNetCore.Newtonsoft) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\Swashbuckle.AspNetCore.Newtonsoft.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000015872 _____ (Swashbuckle.AspNetCore.Swagger) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\Swashbuckle.AspNetCore.Swagger.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000015872 _____ (Swashbuckle.AspNetCore.Swagger) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\Swashbuckle.AspNetCore.Swagger.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000015872 _____ (Swashbuckle.AspNetCore.Swagger) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\Swashbuckle.AspNetCore.Swagger.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000015872 _____ (Swashbuckle.AspNetCore.Swagger) [File not signed] [File is in use] C:\Program Files\Grass Valley\EH Asset Store\Swashbuckle.AspNetCore.Swagger.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000080384 _____ (Swashbuckle.AspNetCore.SwaggerGen) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\Swashbuckle.AspNetCore.SwaggerGen.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000080384 _____ (Swashbuckle.AspNetCore.SwaggerGen) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\Swashbuckle.AspNetCore.SwaggerGen.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000080384 _____ (Swashbuckle.AspNetCore.SwaggerGen) [File not signed] [File is in use] C:\Program Files\Grass Valley\EDIUS X\EHRenderService\Swashbuckle.AspNetCore.SwaggerGen.dll 2020-09-23 12:47 - 2020-09-23 12:47 - 000080384 _____ (Swashbuckle.AspNetCore.SwaggerGen) [File not signed] [File is in use] C:\Program Files\Grass Valley\EH Asset Store\Swashbuckle.AspNetCore.SwaggerGen.dll 2021-10-13 20:02 - 2018-06-27 09:58 - 002135040 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\ash_libcurl.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000432128 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\libcurl.dll 2021-03-05 17:43 - 2021-03-05 17:43 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll 2021-03-05 17:43 - 2021-03-05 17:43 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 003427328 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\libcrypto-1_1-x64.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000684544 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\libssl-1_1-x64.dll 2021-10-14 11:11 - 2021-10-14 11:11 - 002696704 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Elgato\StreamDeck\libcrypto-1_1-x64.dll 2021-10-14 11:11 - 2021-10-14 11:11 - 000642560 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Elgato\StreamDeck\libssl-1_1-x64.dll 2020-12-07 15:09 - 2020-05-11 16:05 - 000028112 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\imageformats\qsvg.dll 2020-12-07 15:09 - 2020-05-11 16:03 - 000506832 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files\Private Internet Access\imageformats\qwebp.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000152064 _____ (wxWidgets development team) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxbase310u_net_vc_ox.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 002171904 _____ (wxWidgets development team) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxbase310u_vc_ox.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000165888 _____ (wxWidgets development team) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxbase310u_xml_vc_ox.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 001377280 _____ (wxWidgets development team) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxmsw310u_adv_vc_ox.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 004945920 _____ (wxWidgets development team) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxmsw310u_core_vc_ox.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000642048 _____ (wxWidgets development team) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxmsw310u_html_vc_ox.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000108032 _____ (wxWidgets development team) [File not signed] C:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxmsw310u_webview_vc_ox.dll 2021-10-13 20:02 - 2021-11-11 11:46 - 000764416 _____ (wxWidgets development team) [File not signed] c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\wxmsw310u_xrc_vc_ox.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== ==================== Association (Whitelisted) ================= ==================== Internet Explorer (Whitelisted) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-499443066-2075648757-1779063864-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-499443066-2075648757-1779063864-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-499443066-2075648757-1779063864-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-07-28] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-12-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-12-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-07-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2021-04-20] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-12-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-09-23] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2020-08-03 12:23 - 2020-08-03 12:23 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\VisTitle;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\Calibre2\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\;C:\Program Files\Intel\Intel(R) Memory and Storage Tool\ HKU\S-1-5-21-499443066-2075648757-1779063864-1001\Control Panel\Desktop\\Wallpaper -> HKU\S-1-5-21-499443066-2075648757-1779063864-1004\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg HKU\S-1-5-21-499443066-2075648757-1779063864-1005\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg HKU\S-1-5-21-499443066-2075648757-1779063864-1010\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 10.0.0.243 - 89.101.251.228 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) HKLM\...\StartupApproved\StartupFolder: => "GV Video IO Hardware Driver.lnk" HKLM\...\StartupApproved\StartupFolder: => "GV License Manager.lnk" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run: => "RtkAudUService" HKLM\...\StartupApproved\Run: => "LogiOptions" HKLM\...\StartupApproved\Run: => "EvtMgr6" HKLM\...\StartupApproved\Run: => "Ashampoo Backup PB" HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant" HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\StartupApproved\StartupFolder: => "7 Sticky Notes.lnk" HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\StartupApproved\Run: => "puush" HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\StartupApproved\Run: => "CCXProcess" ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [TCP Query User{37113A71-6FBB-4820-BCE1-A4AAC162A38C}C:\vistitle\vistitle.exe] => (Allow) C:\vistitle\vistitle.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [UDP Query User{5F29646C-78BC-4EA1-9293-8FA17AC667FD}C:\vistitle\vistitle.exe] => (Allow) C:\vistitle\vistitle.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{259FABB7-8ABD-4DD5-B3E8-47AA17130B73}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\XREAdminConsole.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{7CA3D16D-1861-4B64-93A4-E15663F8D633}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\XREAdminConsole.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{48942BD0-91B2-4AA7-8884-801FA757BD12}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\XREAdminConsole.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{25DCCB0F-2663-4DDE-84C1-735B54F3F394}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\XREAdminConsole.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{CDD0C6F1-E58D-4B4B-8953-2BC465226C89}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{A580CEA1-058A-4662-B13F-BC6A9C1A0CEE}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{D8CC174F-AA5C-4735-A8A6-10DFC8AE6304}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{488C9CDB-23F7-4288-9C9F-7955A555E677}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{582BE1DE-71EF-477C-A86A-3CC3BFE64192}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderService.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{52C3E805-212C-47A0-8913-9AC83F8B6A8F}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderService.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{F2778348-7368-4BA2-8210-A9BD62EF4093}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderService.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{4683B2F4-1E8F-4837-A03B-883C55B4E81B}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderService.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{612DF1BF-7DA9-4B72-A161-F78A28050DB2}] => (Allow) C:\VisTitle\VisLicenseManager.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> BeiJing Videostar Co., Ltd.) FirewallRules: [{980D3470-0D52-42BD-80AD-0EC1BCD30C3E}] => (Allow) C:\VisTitle\VisLicenseManager.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> BeiJing Videostar Co., Ltd.) FirewallRules: [{5BC0601D-1E0E-4048-9B66-C3D23A0DA303}] => (Allow) C:\VisTitle\VisLicenseManager.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> BeiJing Videostar Co., Ltd.) FirewallRules: [{C94198A6-A2F3-4911-AD35-24A203678818}] => (Allow) C:\VisTitle\VisLicenseManager.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> BeiJing Videostar Co., Ltd.) FirewallRules: [{316BF864-499A-4C6C-B5FB-404DFBD3CB45}] => (Allow) C:\VisTitle\VisTitleLauncher.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{82B8E171-B01C-4F50-B29E-E3A1BF9965B1}] => (Allow) C:\VisTitle\VisTitleLauncher.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{CF6914E2-9CD8-4EFA-AC3C-60B86E2DFB06}] => (Allow) C:\VisTitle\VisTitleLauncher.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{00177EC4-39EB-40FF-9412-6A1DE37E5268}] => (Allow) C:\VisTitle\VisTitleLauncher.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{DF75DBDE-E1D8-4755-819C-DF082EC78587}] => (Allow) C:\VisTitle\VxMvMaker.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{7808C792-6B6E-42C0-BF15-E99F63030BF5}] => (Allow) C:\VisTitle\VxMvMaker.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{04639FF6-FB26-421D-834B-D3A14B29D110}] => (Allow) C:\VisTitle\VxMvMaker.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{14ECB80D-9461-41CB-B007-384B9B4624AE}] => (Allow) C:\VisTitle\VxMvMaker.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> Beijing Videostar Co., Ltd.) FirewallRules: [{587381BB-F12B-4124-B31F-2F9659A522D2}] => (Allow) C:\VisTitle\VxQTServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{7B8B29BD-D5FD-489C-B694-BAB88F14DEC0}] => (Allow) C:\VisTitle\VxQTServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{591CC4B8-56B8-4CA5-8AD7-49AA811E95D1}] => (Allow) C:\VisTitle\VxQTServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{5BB0DFD6-B40C-45BE-B7C1-A81A7FAC96DF}] => (Allow) C:\VisTitle\VxQTServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{3F610768-339D-4AF3-9692-D40170B6EA82}] => (Allow) C:\VisTitle\VxMpegDecodeServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{CDD1F43E-F1C0-4063-BFB7-FD46361967A2}] => (Allow) C:\VisTitle\VxMpegDecodeServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{1AA68013-4D56-4801-878E-E83BE143D764}] => (Allow) C:\VisTitle\VxMpegDecodeServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{6F6C8F08-DC71-4231-8665-251DF6ABC4D1}] => (Allow) C:\VisTitle\VxMpegDecodeServer32.exe (Beijing Lei Te Shi Chuang Technology Co.,Ltd. -> TODO: ) FirewallRules: [{C993D4D4-CF93-4171-AFD9-E375B06D41BD}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EDIUS.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{0C781FB1-EE53-4B5D-A132-911E0BD02476}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EDIUS.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{F8C4651D-7DE5-4E6B-89A5-8C2C26D5D2DE}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EDIUS.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{5D0176F5-2733-4A45-BC85-DEAD7B97E954}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EDIUS.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{860790BD-E40B-470F-848D-561EDECBB982}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderEngine.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{8DE848B2-7EC2-42CD-BA42-546A1B0C105E}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderEngine.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{F445836A-0F8B-4A47-9CD1-D24AE370BDED}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderEngine.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{568D6560-1DDF-4EAA-BB33-F8624A242E53}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\EHRenderEngine.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{C3CED2BE-E172-4AAE-8370-08A2A9CEA076}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\QuickTitler.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{216DFFB1-150B-41EA-9168-58E759316181}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\QuickTitler.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{5A4E17F0-4225-43C6-BEC6-5314CA7F9D73}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\QuickTitler.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{51FA3457-313A-49C8-B702-5B170D99F1B8}] => (Allow) C:\Program Files\Grass Valley\EDIUS X\QuickTitler.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) FirewallRules: [{6447AD3C-2BB4-4F60-943D-3650619A37F5}] => (Allow) C:\Program Files (x86)\EDIUS Manager\edius_manager.exe (magic multi media GmbH -> ) FirewallRules: [{2AE92CA6-81BF-4779-A38E-D9F05E5537F6}] => (Allow) C:\Program Files (x86)\EDIUS Manager\edius_manager.exe (magic multi media GmbH -> ) FirewallRules: [{1751CACA-A69A-42A2-9DC6-2EBE3FA11FE1}] => (Allow) C:\Program Files (x86)\EDIUS Manager\edius_manager.exe (magic multi media GmbH -> ) FirewallRules: [{36BF1ABB-24EA-4314-855B-23130DBD6CD3}] => (Allow) C:\Program Files (x86)\EDIUS Manager\edius_manager.exe (magic multi media GmbH -> ) FirewallRules: [{3200B811-6F6B-410B-9D4E-E533297D38E2}] => (Allow) C:\Program Files\NewBlueFX\Common\ApplicationManager64.exe (NewBlue, Inc) [File not signed] FirewallRules: [{9DD20719-90F2-44E6-82B0-6607706D9680}] => (Allow) C:\Program Files\NewBlueFX\Common\ApplicationManager64.exe (NewBlue, Inc) [File not signed] FirewallRules: [{ED1F0CDE-42F2-4644-A685-9FA3F6ED3971}] => (Allow) C:\Program Files\NewBlueFX\Common\ApplicationManager64.exe (NewBlue, Inc) [File not signed] FirewallRules: [{7B1DF555-1649-4EF5-8028-698CD1FD9962}] => (Allow) C:\Program Files\NewBlueFX\Common\ApplicationManager64.exe (NewBlue, Inc) [File not signed] FirewallRules: [{8F6F33E0-E2FF-447D-BC3B-0F8F6D7A3AED}] => (Allow) C:\Program Files (x86)\NewBlueFX\Common\ApplicationManager.exe (NewBlue, Inc) [File not signed] FirewallRules: [{B1B0FC9A-C3B7-4455-A384-BCDA67E1C0F4}] => (Allow) C:\Program Files (x86)\NewBlueFX\Common\ApplicationManager.exe (NewBlue, Inc) [File not signed] FirewallRules: [{3E4FABED-F1A4-4846-9DAB-03C5792535F2}] => (Allow) C:\Program Files (x86)\NewBlueFX\Common\ApplicationManager.exe (NewBlue, Inc) [File not signed] FirewallRules: [{FE603868-3508-49FC-9844-6BBFB5FB61A8}] => (Allow) C:\Program Files (x86)\NewBlueFX\Common\ApplicationManager.exe (NewBlue, Inc) [File not signed] FirewallRules: [{2B2B0954-30CF-4894-8D16-1FAFA3056DDE}] => (Allow) C:\Program Files\NewBlueFX\Titler\TitlerStandalone.exe () [File not signed] FirewallRules: [{AC93A292-9622-4083-8989-340351E9B1A2}] => (Allow) C:\Program Files\NewBlueFX\Titler\TitlerStandalone.exe () [File not signed] FirewallRules: [{09ED725E-0579-4073-9045-F16EEEDC8B4D}] => (Allow) C:\Program Files\NewBlueFX\Titler\TitlerStandalone.exe () [File not signed] FirewallRules: [{BC79A5B5-649E-44A1-BD56-36C33EB93574}] => (Allow) C:\Program Files\NewBlueFX\Titler\TitlerStandalone.exe () [File not signed] FirewallRules: [TCP Query User{93131BBD-992A-40B5-85E1-BB6808273931}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{58401502-F662-4BDF-9D8E-BD183F7C6197}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{252976D0-6ACE-4F4D-A3F4-1ED5E9A26971}] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{D83E8F4A-B515-4719-97F7-2A065361E1A6}] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{85750159-CA49-4D73-A8EC-368742FF37CB}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{9E49D432-CFC5-4730-B2B0-83CB1574AFAB}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [TCP Query User{28D247C1-68D1-44AE-91A0-E0A1F8DD171C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{E2411F85-CE60-4872-8841-75396881606A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{50095E9B-1E08-439B-9868-3A069F6FA9C4}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{2C61CAFE-33C2-4095-9052-B559473B091B}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{B7F8181A-92DA-44D7-9F69-2D53F2D21980}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{23F5D38C-B259-4A1D-9680-5B9D15D4BB87}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{8F167736-C345-453F-8405-8917563FEFB8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{94D39A10-0F2B-4118-B3C7-E8776C855CCC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{96C63139-9B13-43A8-94B2-04CBF86FF713}] => (Block) C:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{2C1BD307-27C4-414D-940A-87BC9E1AB8D0}] => (Block) C:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{A66421F3-B053-45C8-B97F-E4B149BFDA45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B6A07D6F-7173-42EB-8DE7-0EAD16833E58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E5952611-3053-4E8F-A895-53C5CB96AE24}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EA500E6C-568C-4F03-88BA-F2CF1D910B6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0CCE37B5-3CDD-410A-BDA5-DE476569EDE8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{27128492-AD3F-4C2A-9B27-D399BCCD359E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{323259E6-5FDF-4FD4-BF58-651914F1D618}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2EC76322-A938-470F-AAB9-C28FDBFA727E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F454D6C2-8335-49A0-B8FA-6BFDAC83C891}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B0E55B5F-1E92-4D8F-BB2B-57AE4BDBC2A9}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F4E819D7-4C2F-4F30-911E-E8C3CB972572}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A69BD2C0-D972-42CE-BCDC-CE0EF8725B28}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A2A3AE51-0344-4258-B601-7D19363A99DE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{227EAA0F-4727-4364-A55F-BF51856A1327}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{1D688F23-C856-43AA-8810-DAD4EAF79FE9}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.29\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8A1B7175-BCC1-4A0D-A438-172659703EF1}] => (Allow) C:\Program Files (x86)\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{27BB7A78-6278-4152-BC2D-1AF26FBBB01F}] => (Allow) C:\Program Files (x86)\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{7A6F02D5-DDFA-4EEC-862A-78945DDAC186}] => (Allow) C:\Games\World_of_Tanks_EU\WorldOfTanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{585EF464-2D4C-46FD-A30F-9D8FD7159E4E}] => (Allow) C:\Games\World_of_Tanks_EU\WorldOfTanks.exe (Wargaming.net Limited -> Wargaming.net) ==================== Restore Points ========================= 05-11-2021 18:12:09 EDIUS X 07-11-2021 19:21:49 Windows Modules Installer 08-11-2021 14:10:25 Herstelpunt JAMO na Windows 11 Update 8-11-2021 14:10 10-11-2021 18:29:23 Windows Modules Installer 10-11-2021 18:35:45 Herstelpunt JAMO na Windows 11 update 10-11-2021 18-11-2021 19:34:07 Scheduled Checkpoint 20-11-2021 11:40:55 Herstelpunt jamo 20-11-2021 11:41 20-11-2021 11:48:01 New Recover point after cleaning PC 20-11-2021 21-11-2021 16:24:41 Installed Intel(R) Memory and Storage Tool ==================== Faulty Device Manager Devices ============ ==================== Event log errors: ======================== Application errors: ================== Error: (11/22/2021 10:41:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicSvc32.exe, version: 2.6.3.0, time stamp: 0x6061c87e Faulting module name: DynamicSMProfileDaemonModule.dll, version: 2.2.19.0, time stamp: 0x61111227 Exception code: 0xc0000005 Fault offset: 0x00007345 Faulting process id: 0x1500 Faulting application start time: 0x01d7df8531c7ce67 Faulting application path: C:\WINDOWS\SysWOW64\NahimicSvc32.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\DynamicSMProfileDaemonModule.dll Report Id: 16e69a49-2f09-4e98-bb7e-4b7c1c43574e Faulting package full name: Faulting package-relative application ID: Error: (11/22/2021 10:41:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicService.exe, version: 2.6.3.0, time stamp: 0x6061c8ab Faulting module name: SonicMapperProfileRpcDynamicDaemonModule.dll, version: 2.2.19.0, time stamp: 0x611112bf Exception code: 0xc0000005 Fault offset: 0x000000000000d549 Faulting process id: 0x253c Faulting application start time: 0x01d7df852d2ace38 Faulting application path: C:\WINDOWS\system32\NahimicService.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\SonicMapperProfileRpcDynamicDaemonModule.dll Report Id: bad2696b-1144-4f49-9223-ef21f419b52f Faulting package full name: Faulting package-relative application ID: Error: (11/22/2021 10:41:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicSvc32.exe, version: 2.6.3.0, time stamp: 0x6061c87e Faulting module name: DynamicSMProfileDaemonModule.dll, version: 2.2.19.0, time stamp: 0x61111227 Exception code: 0xc0000005 Fault offset: 0x00007345 Faulting process id: 0x35b8 Faulting application start time: 0x01d7df852ad0a198 Faulting application path: C:\WINDOWS\SysWOW64\NahimicSvc32.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\DynamicSMProfileDaemonModule.dll Report Id: 2ad0f2ca-6da5-427d-a5d5-4fb308bbab5f Faulting package full name: Faulting package-relative application ID: Error: (11/22/2021 10:41:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicService.exe, version: 2.6.3.0, time stamp: 0x6061c8ab Faulting module name: SonicMapperProfileRpcDynamicDaemonModule.dll, version: 2.2.19.0, time stamp: 0x611112bf Exception code: 0xc0000005 Fault offset: 0x000000000000d549 Faulting process id: 0x2878 Faulting application start time: 0x01d7df8525f20a6f Faulting application path: C:\WINDOWS\system32\NahimicService.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\SonicMapperProfileRpcDynamicDaemonModule.dll Report Id: 9bfb45f4-9f84-43c8-9eb0-b6a6dbd548e7 Faulting package full name: Faulting package-relative application ID: Error: (11/22/2021 10:41:13 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicSvc32.exe, version: 2.6.3.0, time stamp: 0x6061c87e Faulting module name: DynamicSMProfileDaemonModule.dll, version: 2.2.19.0, time stamp: 0x61111227 Exception code: 0xc0000005 Fault offset: 0x00007345 Faulting process id: 0x3740 Faulting application start time: 0x01d7df8515e5e80c Faulting application path: C:\WINDOWS\SysWOW64\NahimicSvc32.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\DynamicSMProfileDaemonModule.dll Report Id: 84534776-fdde-419f-a1d5-f270a99a416e Faulting package full name: Faulting package-relative application ID: Error: (11/22/2021 10:41:12 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicService.exe, version: 2.6.3.0, time stamp: 0x6061c8ab Faulting module name: SonicMapperProfileRpcDynamicDaemonModule.dll, version: 2.2.19.0, time stamp: 0x611112bf Exception code: 0xc0000005 Fault offset: 0x000000000000d549 Faulting process id: 0x1758 Faulting application start time: 0x01d7df85108a5290 Faulting application path: C:\WINDOWS\system32\NahimicService.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\SonicMapperProfileRpcDynamicDaemonModule.dll Report Id: c7e0415b-58c4-4fb4-b4c0-d1aced404a08 Faulting package full name: Faulting package-relative application ID: Error: (11/21/2021 11:23:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicSvc32.exe, version: 2.6.3.0, time stamp: 0x6061c87e Faulting module name: DynamicSMProfileDaemonModule.dll, version: 2.2.19.0, time stamp: 0x61111227 Exception code: 0xc0000005 Fault offset: 0x00007345 Faulting process id: 0x19d8 Faulting application start time: 0x01d7df26625585fc Faulting application path: C:\WINDOWS\SysWOW64\NahimicSvc32.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\ScheduledModules\DynamicSMProfileDaemonModule.dll Report Id: 65337d03-296e-40bd-ad62-a6cd4616f4df Faulting package full name: Faulting package-relative application ID: Error: (11/21/2021 11:23:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: NahimicService.exe, version: 2.6.3.0, time stamp: 0x6061c8ab Faulting module name: SonicMapperProfileRpcDynamicDaemonModule.dll, version: 2.2.19.0, time stamp: 0x611112bf Exception code: 0xc0000005 Fault offset: 0x000000000000d549 Faulting process id: 0x2eb4 Faulting application start time: 0x01d7df265db87ef7 Faulting application path: C:\WINDOWS\system32\NahimicService.exe Faulting module path: C:\ProgramData\A-Volute\A-Volute.28054DF1F58B4\Modules\SonicMapperProfileRpcDynamicDaemonModule.dll Report Id: f1aa0a1b-30c4-4eff-8fd4-6b5e3f53afab Faulting package full name: Faulting package-relative application ID: System errors: ============= Error: (11/22/2021 10:51:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Intel(R) SUR QC Software Asset Manager service to connect. Error: (11/22/2021 10:42:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Nahimic service service terminated unexpectedly. It has done this 3 time(s). Error: (11/22/2021 10:41:48 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Nahimic service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 3000 milliseconds: Restart the service. Error: (11/22/2021 10:41:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Nahimic service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 3000 milliseconds: Restart the service. Error: (11/22/2021 10:41:36 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Intel(R) SUR QC Software Asset Manager service to connect. Error: (11/21/2021 11:47:01 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LFA65I3) Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout. Error: (11/21/2021 11:47:01 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LFA65I3) Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout. Error: (11/21/2021 11:32:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Intel(R) SUR QC Software Asset Manager service to connect. Windows Defender: ================ Date: 2021-11-19 19:55:08 Description: Scan van Microsoft Defender Antivirus is gestopt voordat deze was voltooid. Scan-id: {FE21C30F-7B1E-4F91-8A20-E08E1131F7DE} Type scan: Antimalware Scanparameters: Quick Scan Gebruiker: NT AUTHORITY\SYSTEM ਍ Date: 2021-11-18 19:11:09 Description: N/A Date: 2021-11-18 18:46:36 Description: N/A Date: 2021-11-16 21:20:37 Description: N/A Date: 2021-11-16 21:15:20 Description: N/A Event[0] Date: 2021-11-19 10:49:43 Description: Microsoft Defender Antivirus heeft een fout ontdekt tijdens het bijwerken van beveiligingsinformatie. Nieuwe versie van beveiligingsinformatie: Vorige versie van beveiligingsinformatie: 1.353.1213.0 Updatebron: Microsoft Update Server Type beveiligingsinformatie: AntiVirus Updatetype: Full Gebruiker: NT AUTHORITY\SYSTEM Huidige engineversie: Vorige engineversie: 1.1.18700.4 Foutcode: 0x8024402c Foutbeschrijving: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. ਍ CodeIntegrity: =============== Date: 2021-11-08 08:37:04 Description: Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.44\msedgewebview2.exe) attempted to load \Device\HarddiskVolume9\ProgramData\A-Volute\A-Volute.SonicStudio3\Modules\ScheduledModules\x64\AudioDevProps2.dll that did not meet the Microsoft signing level requirements. ਍ ==================== Memory info =========================== BIOS: American Megatrends Inc. 2401 07/12/2019 Motherboard: ASUSTeK COMPUTER INC. ROG STRIX Z370-E GAMING Processor: Intel(R) Core(TM) i7-8700K CPU @ 3.70GHz Percentage of memory in use: 33% Total physical RAM: 32625.6 MB Available physical RAM: 21622.63 MB Total Virtual: 35625.6 MB Available Virtual: 20973.71 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:1861.77 GB) (Free:1625.71 GB) NTFS Drive d: (Samsung1TB) (Fixed) (Total:931.5 GB) (Free:808.22 GB) NTFS Drive e: ( ) (Fixed) (Total:2794.39 GB) (Free:1923.84 GB) NTFS Drive f: ( ) (Fixed) (Total:1863.01 GB) (Free:451.05 GB) NTFS Drive g: (BIGWOLF) (Fixed) (Total:9313.98 GB) (Free:7436.99 GB) NTFS Drive j: (Seagate Expansion Drive 5TB) (Fixed) (Total:4657.4 GB) (Free:4325.56 GB) NTFS Drive k: (Seagate Expansion Drive 2TB) (Fixed) (Total:1863.01 GB) (Free:890.45 GB) NTFS \\?\Volume{e9e4dacf-7155-11eb-b702-2cfda1715cd7}\ (Door systeem gereserveerd) (Fixed) (Total:0.05 GB) (Free:0.04 GB) NTFS \\?\Volume{24457dd5-8476-430d-a594-b9a851988c90}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS \\?\Volume{e9e4dad2-7155-11eb-b702-2cfda1715cd7}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS \\?\Volume{e9e4dad1-7155-11eb-b702-2cfda1715cd7}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partition Table ==================== ==================== End of Addition.txt =======================