Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021 Ran by Naam (administrator) on DESKTOP-LFA65I3 (22-11-2021 11:53:18) Running from E:\Software\Farbar Recovery Scan Tool 22-11-2021 Loaded Profiles: Naam & _ashbackuppb_ Platform: Microsoft Windows 11 Home Version 21H2 22000.318 (X64) Language: Dutch (Netherlands) -> English (United States) Default browser: Chrome Boot Mode: Normal ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () [File not signed] C:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\oxHelper.exe <2> (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ArcticLine Software -> ArcticLine Software) C:\Program Files (x86)\FileMarker.NET\FileMarkerService.exe (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\backupClient-abpb.exe (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\backupService-abpb.exe (ASUSTEK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\GPU TweakII\ASUSGPUFanServiceEx.exe (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.03\atkexComSvc.exe (ASUSTEK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe <2> (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe (Corsair Memory, Inc. -> Corsair Memory, Inc) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe (DonationCoder.com -> DonationCoder) C:\Program Files (x86)\ScreenshotCaptor\ScreenshotCaptor.exe (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <38> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\EDIUS Hub\EH Application Host\EHApplicationHost.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\EHConfigStore.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\EHMessageService.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\EH Asset Store\EHAssetStore.exe (Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_a06cc03dc860e30f\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d189dc5085bb33ad\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d189dc5085bb33ad\IntelCpHeciSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c3052f80b4096eed\OneApp.IGCC.WinService.exe (Konstantin Polyakov -> Chemtable Software) C:\Program Files\Reg Organizer\RegOrganizer.exe (Konstantin Polyakov IP -> Chemtable Software) C:\Program Files\Reg Organizer\StartupCheckingService.exe (Logitech Inc -> Logitech) C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <4> (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\logi_crashpad_handler.exe <2> (London Trust Media Incorporated -> ) C:\Program Files\Private Internet Access\pia-service.exe (London Trust Media Incorporated -> Private Internet Access Incorporated) C:\Program Files\Private Internet Access\pia-client.exe (London Trust Media Incorporated -> The OpenVPN Project) C:\Program Files\Private Internet Access\pia-openvpn.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.29\msedgewebview2.exe <6> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.14326.20588.0_x64__8wekyb3d8bbwe\onenoteim.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe (Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_d3ead92e8ba045de\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe <2> (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <3> (Wargaming.net Limited -> Wargaming.net) C:\Program Files (x86)\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3> (Wargaming.net Limited -> Wargaming.net) C:\Program Files (x86)\Wargaming.net\GameCenter\wargamingerrormonitor.exe (Wargaming.net Limited -> Wargaming.net) C:\Program Files (x86)\Wargaming.net\GameCenter\wgc.exe Failed to access process -> NahimicService.exe ==================== Registry (Whitelisted) =================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [838432 2019-03-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1667208 2020-11-24] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2020-11-20] (Logitech Inc -> Logitech, Inc.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3952096 2020-03-10] (Logitech -> Logitech, Inc.) HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [10448408 2021-10-28] (Corsair Memory, Inc. -> Corsair Memory, Inc) HKLM\...\Run: [Ashampoo Backup PB] => C:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\backupClient-abpb.exe [949976 2021-11-11] (Ashampoo GmbH & Co. KG -> ) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-08-10] (Intel Corporation -> Intel) HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [409760 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-11-17] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Run: [Private Internet Access] => C:\Program Files\Private Internet Access\pia-client.exe [4425696 2020-10-28] (London Trust Media Incorporated -> Private Internet Access Incorporated) HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [597640 2020-02-07] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [568904 2020-08-02] (Dean Herbert -> ) HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Run: [Screenshot Captor] => C:\Program Files (x86)\ScreenshotCaptor\ScreenshotCaptor.exe [9458880 2020-01-27] (DonationCoder.com -> DonationCoder) HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\Run: [Wargaming.net Game Center] => C:\Program Files (x86)\Wargaming.net\GameCenter\wgc.exe [2144704 2021-11-15] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\MountPoints2: {425d4d2f-3bb6-11ec-ba59-2cfda1715cd7} - "I:\HiSuiteDownLoader.exe" HKU\S-1-5-21-499443066-2075648757-1779063864-1001\...\MountPoints2: {6c371e09-2b3e-11ec-ba16-2cfda1715cd7} - "I:\HiSuiteDownLoader.exe" HKU\S-1-5-21-499443066-2075648757-1779063864-1004\...\Run: [MicrosoftEdgeAutoLaunch_24AB326BEBCDD8A04C564D405F408910] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 HKU\S-1-5-21-499443066-2075648757-1779063864-1004\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5 HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-19] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AD99243B-F007-0000-B1CC-22A4DDD4B96F}] -> msiexec /fus {AD99243B-F007-0000-B1CC-22A4DDD4B96F} HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{AC76BA86-0000-0000-7760-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Esl\Aiod.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GV License Manager.lnk [2021-08-25] ShortcutTarget: GV License Manager.lnk -> C:\Program Files\Grass Valley\GV License Manager\AppMaintainer.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GV Video IO Hardware Driver.lnk [2021-11-05] ShortcutTarget: GV Video IO Hardware Driver.lnk -> C:\Program Files\Grass Valley\Video IO HW Driver\StormDiag.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) Startup: C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\7 Sticky Notes.lnk [2020-11-19] ShortcutTarget: 7 Sticky Notes.lnk -> C:\Program Files (x86)\7 Sticky Notes\7StickyNotes.exe (Fabio Martin) [File not signed] Startup: C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2021-11-04] ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Scheduled Tasks (Whitelisted) ============ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {000f2d75-9ed0-4ab7-8f71-6e6e310f13f1} - no filepath Task: {0014b67c-e52f-43c6-9177-3ee2524acf15} - no filepath Task: {00612e25-93b1-4409-8d57-0a6217cbb7f4} - no filepath Task: {013d082f-5eb3-417e-89d0-15916a71578b} - no filepath Task: {01446135-cd28-41de-9780-d79dc97c05f2} - no filepath Task: {015bc381-b87a-46bf-98bf-37f1ca9bb48f} - no filepath Task: {017274b3-37fe-4822-b409-aad45f93370f} - no filepath Task: {01765d51-4311-4c7f-b09a-5163a56771da} - no filepath Task: {018828ad-b038-49f2-8adb-3ba9ca275ff9} - no filepath Task: {0189ec6e-cece-4d0d-b793-5de4be033c4e} - no filepath Task: {01a4972d-df7a-4dfc-a102-b3423dbad4fc} - no filepath Task: {01be930a-8e2e-4055-9bfa-e71967fa7030} - no filepath Task: {01ec4c13-dd55-4f47-9d9c-84b4b14f7f5a} - no filepath Task: {020d7e57-ceed-4a17-9240-12fb2ba30a10} - no filepath Task: {02111449-d75d-4a72-9717-09e68323437a} - no filepath Task: {0292d491-31d8-4a91-a5c7-2c7ba594a35e} - no filepath Task: {0296f436-47fa-4d9c-bdba-44ac9a0d8b5e} - no filepath Task: {02cf93db-f88d-4859-8ab4-50be765958d5} - no filepath Task: {02e64f54-ed22-4d1f-a453-f6f551a7fdf0} - no filepath Task: {02EDE012-680B-414A-A59A-681F0142ED34} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {030ee85f-0e51-42a1-9ca8-420fbaf4b06d} - no filepath Task: {03dd5abd-923d-4e0a-8deb-8eb7ece835ad} - no filepath Task: {04061b26-9e58-4850-ada3-f4cc3d02b36a} - no filepath Task: {0441e170-7b44-47f3-976f-287d9b983833} - no filepath Task: {044bf60c-54db-490b-936c-c7f41fac0f67} - no filepath Task: {050ae20e-27c6-4e81-be46-8f54b269c28e} - no filepath Task: {0543623d-7628-4fda-8dff-a6fe24f0023f} - no filepath Task: {0585ab4b-40ff-4e77-a626-ce85c35c58e8} - no filepath Task: {05916169-9643-4adb-ab7a-866d33275e7f} - no filepath Task: {05948405-b790-4619-8e18-081b029ed721} - no filepath Task: {0620ee89-62c2-4bc1-99aa-3442a6d9d8a0} - no filepath Task: {068d61ea-df53-4672-a293-c45d0574826c} - no filepath Task: {06f07cdb-d9df-45e8-a95d-d6eec9ebb5af} - no filepath Task: {06f1b303-5735-4797-958f-e7170d77a7ae} - no filepath Task: {08148cf4-c7ef-4ef6-a3cf-d29ef9a6b9c4} - no filepath Task: {085c5780-870e-446b-baa6-df1c52489c36} - no filepath Task: {087ab125-724f-46bc-a245-74256603693f} - no filepath Task: {088fa5dc-8020-478f-88f8-a6331beab359} - no filepath Task: {08b19fa9-adb2-4ce8-a779-31b041817aad} - no filepath Task: {08e6cce8-4a70-4d6a-bf1c-0d3727d48432} - no filepath Task: {09132341-fcb8-4aeb-9429-ec71c7dcea8d} - no filepath Task: {094ab3cb-12f8-4c86-98e0-6d63e59254d0} - no filepath Task: {094af334-9a7b-4e35-ada1-4ec6efb0f3ef} - no filepath Task: {09546ebe-88df-4346-b430-629403532e0b} - no filepath Task: {096c67c2-dff8-4f8f-919f-96b5b5d5f93c} - no filepath Task: {0996afcb-b852-490a-ac29-38ef08a687b4} - no filepath Task: {09ccc80c-b8a9-4a85-86b8-79ba8e8134a7} - no filepath Task: {0a21f7ba-0bfe-44a4-b048-0acbf4b7cdbc} - no filepath Task: {0a367288-64dc-451d-81e5-0a04084d89db} - no filepath Task: {0a4b2e04-e212-4bb0-a058-e1a1c246ec61} - no filepath Task: {0ab8709c-b561-4e8e-9eba-7653b8bf2a42} - no filepath Task: {0b0e5d83-c3d2-4a9d-bd53-160f1127dc95} - no filepath Task: {0b5c72f9-fc87-4033-b05f-32a017ca6029} - no filepath Task: {0b9bcf82-6a39-469b-846c-5d391e05f806} - no filepath Task: {0bbfcf59-c402-4641-9012-b09139bcdbf4} - no filepath Task: {0bced5e2-dc17-4f49-bbb5-2b71161c8ff1} - no filepath Task: {0bfa5000-c700-49f2-b7fd-926c05f463b3} - no filepath Task: {0c029700-bbc4-4123-ae6e-2b0801d0c092} - no filepath Task: {0c1c516e-4c93-4755-8619-928fcc664789} - no filepath Task: {0c36a0fa-f9fa-42a7-8588-09ada74d32ca} - no filepath Task: {0c38059f-d87f-4d7f-a33c-6905744f5da4} - no filepath Task: {0c661f46-2ef7-44fe-adf8-6351f20a6290} - no filepath Task: {0d35296a-0f29-4600-932d-84e722040f8b} - no filepath Task: {0db18143-3df4-446c-9e3f-4381809f26aa} - no filepath Task: {0db3eedf-0636-492a-9af7-9641a0021206} - no filepath Task: {0df48359-30b8-4db9-8da4-ae9d4802d071} - no filepath Task: {0e22f0f0-8280-4ac2-98f0-6a38e3d4c7ff} - no filepath Task: {0E8892FE-D8A8-4DFD-8B28-FF720237010B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-09-28] (Mozilla Corporation -> Mozilla Foundation) Task: {0e975cec-e5cf-4d0d-ae03-3d20ea089e7c} - no filepath Task: {0ea2f384-64ee-4f4e-aa1c-3c4cf18ae37a} - no filepath Task: {0ea4abb4-d334-492b-bf16-b8baff1c73c6} - no filepath Task: {0ea7ad3c-baec-4b90-ad2e-113f1a8f0167} - no filepath Task: {0ebc35f4-9640-4f46-b0f6-781e89bf3193} - no filepath Task: {0f0cff31-3ace-4542-b8ad-89c7f14b9d07} - no filepath Task: {0f37da5f-c8ad-443c-887b-a55b2f1f5410} - no filepath Task: {0f879f6d-4d12-420f-a615-f7cf66cf1fcf} - no filepath Task: {0f88bac6-668b-4017-8276-6ec7bac9fc5a} - no filepath Task: {0f9a3ef5-6c7a-4246-a8bf-56eb8fc3c174} - no filepath Task: {0fa3602f-e382-4e0d-b272-90d34d41ac3e} - no filepath Task: {10649ecf-b5c4-49af-8270-7c2913b04b34} - no filepath Task: {1124daec-dfc3-431a-9598-bf57f08b8b13} - no filepath Task: {114cb4d6-5a54-4dfc-a06e-e9566a41a97e} - no filepath Task: {116ac830-fd95-4d04-8059-b13a58396c45} - no filepath Task: {11735c56-cc6d-4c99-be5e-a1c9783ae12a} - no filepath Task: {11b586c8-a06d-45dc-aaaf-01d8d8ed0574} - no filepath Task: {11b69b4a-e05f-48ad-803e-5d33034fba29} - no filepath Task: {11c55380-8d22-41c1-9f07-6170c6f92700} - no filepath Task: {1264b83d-8a64-491c-845c-b98e0cce3e46} - no filepath Task: {126a6d42-394a-4fda-8795-3f87006c2e2e} - no filepath Task: {1291c23b-a818-4027-a2c7-555688a49007} - no filepath Task: {12c8162c-1c3c-41d8-90b3-c28767aae899} - no filepath Task: {13a73cf1-4d2a-4ed9-917e-bc3dfa09e441} - no filepath Task: {13fd3b49-957c-4835-adc9-a9325327cbf4} - no filepath Task: {14bc9e9c-476e-4495-9012-33f10e088723} - no filepath Task: {14e8be69-4c43-4170-8a73-4713fe848aac} - no filepath Task: {151c1168-b6d2-4ebc-863b-208d2be37a9e} - no filepath Task: {159b53c1-5c3c-49e9-b950-61b6a7bd06cc} - no filepath Task: {15a3abf7-cff0-4ea2-ac20-95ac163102e8} - no filepath Task: {162a1ce6-6498-460f-b8c7-88d47826def9} - no filepath Task: {166d74b5-3473-4230-ad06-3448f8b3dab2} - no filepath Task: {166ea09d-0f4c-4c8c-a57a-e1f8fbf29b18} - no filepath Task: {168153eb-f6e8-440b-90e1-f33ebee4c81a} - no filepath Task: {17391A99-3EF8-4309-9EE6-AB0E05C631BA} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-09-13] (Intel Corporation -> Intel Corporation) Task: {173d1dca-03fa-47e4-bf3d-61a071cd71fa} - no filepath Task: {179fb01c-04cc-4ea0-9043-b510ceb5ff12} - no filepath Task: {17f0cdfc-e239-4890-87f4-4fa1dae5711f} - no filepath Task: {17f4f9a9-ce88-4068-9265-9485688ab0b2} - no filepath Task: {185e74c5-cf48-4deb-80d2-22a53965966c} - no filepath Task: {1890cc97-8f1d-4f23-b40c-0fbca6968a48} - no filepath Task: {18a9009c-127f-404e-ad63-2638eb202d69} - no filepath Task: {18cd7cfd-2b61-4e0b-92dc-dedfc783733b} - no filepath Task: {18e8fde4-3aa9-4069-97d5-db638304fb79} - no filepath Task: {18fb63a9-1c46-48ee-ace6-7bdaaf62cd07} - no filepath Task: {194932f4-9fda-4721-b037-f497037d877b} - no filepath Task: {19b278ce-4879-46ee-bb9e-bf1339f54003} - no filepath Task: {19b6c5a3-e724-4282-bbd6-95788aed2047} - no filepath Task: {1a65a5c5-612d-4afa-82b0-b94f0c0ff2da} - no filepath Task: {1ae60fac-a7c9-419c-ab20-62f2f59d6e13} - no filepath Task: {1af2b0e3-b37d-4315-8ec1-b2c2361b2ee0} - no filepath Task: {1b0a690b-2549-47c3-a601-dae6c809127f} - no filepath Task: {1b298964-5af1-4ca8-83f0-baf18906202b} - no filepath Task: {1b2d6dc7-4b06-46f3-abf4-44aeca5bce9a} - no filepath Task: {1b7138dc-29ee-42d4-ae30-37e46e8c1d27} - no filepath Task: {1bb0f7ee-63e7-4080-8747-1cd9a3635d4f} - no filepath Task: {1bbc4dfc-d305-4451-a4b9-11edadfb8349} - no filepath Task: {1c97f726-a518-4d9e-8a46-1d568f42e3e7} - no filepath Task: {1ca572ac-36fc-4e2f-8343-84c27cc0e5a3} - no filepath Task: {1cdb86a5-0cac-406c-a21b-a1c3c82aafe6} - no filepath Task: {1dd98b86-84aa-489e-bfd2-030f91f56695} - no filepath Task: {1e447f67-1dcf-4d1b-95e4-2497708cb47a} - no filepath Task: {1e4d2e12-a470-437b-a558-92089a85e6bb} - no filepath Task: {1edb6f85-f41c-443f-bf1c-745c733a64f6} - no filepath Task: {1f02232f-9b2c-4653-9d31-b9ad002ebe3c} - no filepath Task: {1f1e5ca7-5a1e-4b29-ab78-043768825d6e} - no filepath Task: {1FA06F2D-C7D2-4EBE-A710-06BE4B5DA92D} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {1fcc8164-32b3-4a2a-8157-731cc284d08f} - no filepath Task: {1fcee693-9da4-42fa-aa70-5de329c3d00b} - no filepath Task: {20333584-f949-4fd2-a623-35409d11d29d} - no filepath Task: {206039fa-94ce-489e-852d-7d6c8f2a3d06} - no filepath Task: {206c75b4-12d4-4cd3-9d61-1ba406c499b6} - no filepath Task: {2076d47f-a6c1-4fbd-b6a2-34435dab89be} - no filepath Task: {211f187b-e985-4a18-baa9-3c8f114b48a9} - no filepath Task: {216990b3-3869-4e52-a376-0bd0aa3fb6ec} - no filepath Task: {21856d77-b16d-48d3-ba7a-858fc5b4388f} - no filepath Task: {2189ef5d-82b8-44a7-80cb-8f1017191718} - no filepath Task: {21C7C103-09D7-48FD-952B-7429F945A9E7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-28] (Google LLC -> Google LLC) Task: {22095888-5d5c-46f8-8dde-af28dd0be008} - no filepath Task: {220a4269-fa33-40fa-8280-dba7ceba0d8f} - no filepath Task: {227a274b-425b-4466-8b67-f6380baf9549} - no filepath Task: {232082b4-81d9-496a-8f20-379f1d7cf226} - no filepath Task: {23e14fa8-7f31-4672-a63d-c906398b64fa} - no filepath Task: {23eae56e-ecc3-4476-9066-127b0faa6457} - no filepath Task: {23f5a1b1-a9a9-4d71-b969-a94aa915504c} - no filepath Task: {242E0586-C3E2-4AB9-9750-271CE3DEC8F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-28] (Google LLC -> Google LLC) Task: {25c02c02-6295-4aa4-8aa9-c380507f5b94} - no filepath Task: {25d798e6-13b9-4ce6-819c-6c3e3fc61a7d} - no filepath Task: {25d91416-5ceb-4b39-9bd5-df4109080761} - no filepath Task: {2626cb46-daae-4941-a30d-c2ac997611a0} - no filepath Task: {269a7e27-7314-4d6f-846e-f4f5a9f0c060} - no filepath Task: {26b304ea-f765-4a87-b3fa-577a9a80e7e8} - no filepath Task: {26e527de-8cb5-4177-aef4-806922c1246a} - no filepath Task: {26efade4-10bd-4824-9100-9cb7f573c8c2} - no filepath Task: {27339772-e35f-4e88-ba6a-f8b5b8ba4cd4} - no filepath Task: {273be051-7d23-49da-bb31-4ec956c9f6d8} - no filepath Task: {277aada5-5aa9-4901-9ae9-51a7cc858032} - no filepath Task: {27D96F80-04ED-4D4C-B722-835084B7654A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512752 2021-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {2809eb22-f845-478c-8b31-a15c860416a3} - no filepath Task: {28194ed8-9a61-477b-91f6-baf6885187fb} - no filepath Task: {2825d17d-42f1-4e92-8241-3afd7e2cbed5} - no filepath Task: {2981579a-6d6a-47be-a6f4-1ea07dcc72c7} - no filepath Task: {2a616dd9-c295-4d49-b9ce-6f4512244082} - no filepath Task: {2a7fb070-263a-460f-b41a-63faaf604eef} - no filepath Task: {2ad4a826-aad0-4b7a-9e29-911496b71408} - no filepath Task: {2af137d5-36fd-4eb6-93c6-3085cc8a2ef5} - no filepath Task: {2b2866b3-1f62-48cd-88c6-3e3e577cdce2} - no filepath Task: {2bc325cf-b0fa-4575-89dd-1c12c7df17bb} - no filepath Task: {2bdcd53c-4012-4dca-8207-0a399836ec57} - no filepath Task: {2bf354f3-5a45-4a69-a287-376e5d46622f} - no filepath Task: {2c0640c1-ca1b-4a7f-bb2e-0f42825d3251} - no filepath Task: {2c5fd7e6-1b04-42e8-ae98-75b4c82afdea} - no filepath Task: {2c7f5bfc-48ec-496b-a132-0a7d5f32bca5} - no filepath Task: {2cc9bf64-6d05-4a83-a316-530c0dc75fff} - no filepath Task: {2ccf58f6-49f2-49d9-9705-3e1d603c52eb} - no filepath Task: {2d909314-9145-4290-8581-4ccfa9c24721} - no filepath Task: {2da06d5e-3fdf-47bd-8312-2cf2cb980f5f} - no filepath Task: {2de290f9-1372-43b8-83ff-c667f6c937c7} - no filepath Task: {2e0ed2d0-9878-41d6-b632-ac86fb7df59a} - no filepath Task: {2f1c7be8-ad23-4df3-9014-32c85b6e717a} - no filepath Task: {2f227aa5-5bda-40e8-8cc9-df7a13eaa264} - no filepath Task: {2f68ce08-b018-47d9-a14c-1ba106df8f29} - no filepath Task: {305046ad-b8bf-45e3-bc4d-68086f7a4525} - no filepath Task: {3074d88d-902f-4aa5-a6d9-7c7e5ca52337} - no filepath Task: {30a4533d-8956-4807-92c1-060b34f0f142} - no filepath Task: {30b4b099-c82d-4206-a43c-0e5913078f6d} - no filepath Task: {30d65ad9-4213-4b0b-b50c-5f86c8e34b36} - no filepath Task: {31246d33-2806-4bf0-93e1-1e67f73bea2c} - no filepath Task: {3147f1bf-58fd-4c7d-8c4d-fe1f3be4ad6e} - no filepath Task: {315d6c75-b2da-496b-bb4b-89ba69c6f232} - no filepath Task: {316546f5-4f21-476f-94da-35839e897306} - no filepath Task: {31b4c402-1ac0-47a5-88ab-a770dcd94a3b} - no filepath Task: {31df4739-2416-4300-9dd8-6e4bef78ec9d} - no filepath Task: {320b278e-3177-417f-a611-c6fef2100cab} - no filepath Task: {3370ef86-652b-4dec-9f15-5d1616cf77b1} - no filepath Task: {33b10f4f-2afd-4114-8449-a1f68f55ee4e} - no filepath Task: {33bf6944-009c-4540-a60f-54663bad81a5} - no filepath Task: {33e78e5e-5a50-4abb-a0b5-1762f208cff1} - no filepath Task: {33f88494-4199-4403-9c09-1af48afcf083} - no filepath Task: {3415a0f7-9de7-47c9-8909-dbb4a3492891} - no filepath Task: {345a7ee6-88d1-4121-ae7f-cf0912139111} - no filepath Task: {34823b87-ee80-48d6-9ada-4227160431b8} - no filepath Task: {34920dc7-1fec-4595-bc3d-306c62200f00} - no filepath Task: {34b2d842-9c17-4c99-b29e-b0d0efa58ba1} - no filepath Task: {34ddc3f0-3410-4355-9425-1b6a64b336aa} - no filepath Task: {3551c67e-5032-4908-9c3c-c9d49e5a3834} - no filepath Task: {3558cf9c-19e8-4eba-af18-509682a9631e} - no filepath Task: {356e6d16-61ee-4d5f-b4e4-6dd97714bf28} - no filepath Task: {363ef9f8-447a-4f4f-8294-571f83b8a628} - no filepath Task: {3678ce39-32f9-4726-8705-c099cbad4421} - no filepath Task: {36e142f6-0b60-4d65-a0d3-bbdd8a0ed0f7} - no filepath Task: {36e3e292-ce57-4f93-be61-34b1a1f80611} - no filepath Task: {37058eee-ee11-4c7f-9789-f186ab563b83} - no filepath Task: {379b3b06-292e-4e11-af18-0f9fe08d0c3d} - no filepath Task: {37a93f39-a48c-440a-81f5-b767a637fbc0} - no filepath Task: {37bcc9c1-7d09-4ecc-aa01-4913f4662435} - no filepath Task: {37eeddb8-1402-4133-8742-9f299fb400f1} - no filepath Task: {38211309-d9e4-4318-aad3-c3e6c8283710} - no filepath Task: {38a5d55e-3d85-4db0-9150-ba4fb8f085d0} - no filepath Task: {392ae162-8b9b-487e-9345-ab01880e161c} - no filepath Task: {395bded3-0616-4cbd-a532-c05d96a733bb} - no filepath Task: {397d7bf1-ceb3-4fc0-b3d4-269347eb38f2} - no filepath Task: {39b1c13d-d286-48a0-8279-aa111cf8d746} - no filepath Task: {39b31a49-30fd-488c-beb7-22fcf990f960} - no filepath Task: {39f1cb83-49fa-4021-97f7-65bd63586e80} - no filepath Task: {3a0cbd77-6024-47ef-b80a-afdd4498b461} - no filepath Task: {3a56752a-3157-43a2-baf6-1cf7668fe10c} - no filepath Task: {3a5d4d93-82f1-4ef6-a7ba-2a39d44d3356} - no filepath Task: {3a8a21e3-9829-4301-9909-536646c5a0d0} - no filepath Task: {3b1619df-857d-4972-8074-984518857c88} - no filepath Task: {3b46655b-efa4-4fd2-9b98-fb81d8e45e5e} - no filepath Task: {3be3a802-5254-40d8-9274-0440c59d810b} - no filepath Task: {3cc1ece0-ff05-4ef0-b8f5-444149085bec} - no filepath Task: {3cc20a48-61d9-4c96-850b-a81fecc9a0ed} - no filepath Task: {3cc2c9ac-4752-4b7e-95a9-e8deeb45b559} - no filepath Task: {3cc2ecba-fd69-4ed1-8a3c-d0190272def6} - no filepath Task: {3d567a64-970d-46b5-8587-e1157f64a1a0} - no filepath Task: {3d5f34bd-49f7-4b1a-b986-87348911fcf0} - no filepath Task: {3d934ff6-6220-4083-9fd4-e66c54fd4084} - no filepath Task: {3DC3C493-DCFA-436C-A7DE-51EF18ABFEDF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {3dd0ccd4-17a2-4015-946b-d4b11a086bdd} - no filepath Task: {3ded7ccf-8986-47c4-9b58-869a870ae690} - no filepath Task: {3e92017c-f857-49e9-9948-e722b736fc7e} - no filepath Task: {3eff8386-1958-421b-b911-079cc18d40f0} - no filepath Task: {3f12a92d-8503-4f27-9652-029d9dae5079} - no filepath Task: {3fe5e9cd-5e38-4ddf-8c41-7208be230d47} - no filepath Task: {40a51318-0487-4ed3-be42-c9297415267c} - no filepath Task: {40d277d5-771b-42b9-a910-84d88fa6262d} - no filepath Task: {40f3f22d-3950-470b-805a-9ba41b6048b4} - no filepath Task: {40f92778-07f7-4310-8de0-7ef6639ac1ec} - no filepath Task: {4158149b-099e-480c-bf2b-11c13c21e9ac} - no filepath Task: {417b6f27-bf0b-4e61-b93f-d904ce30a036} - no filepath Task: {41c5e0e7-d81b-4478-8feb-2775c630868c} - no filepath Task: {41fe0132-80c4-4377-8ac0-5831487edfb7} - no filepath Task: {422f1dde-3f63-4450-8903-602ebeaed9ef} - no filepath Task: {4281d539-7f76-4e8a-a6b8-ec11fb515fd6} - no filepath Task: {42cc7c1d-b042-4c77-a2f0-f078727bebb9} - no filepath Task: {433e4ae8-aa19-47ec-89d6-1da986ca3ab2} - no filepath Task: {435687E8-6F90-484D-BB80-62A5F5948A74} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {4390d474-68e2-48c0-a431-0dfa48174b59} - no filepath Task: {43fee7e5-ba95-4751-8509-f5f503f6ea77} - no filepath Task: {440c82f4-46f0-4da7-a1b3-6d5e16fa3e68} - no filepath Task: {44173035-ba52-44de-8064-34086c8e1050} - no filepath Task: {443a2806-64fe-4c62-a27b-617ae5f46534} - no filepath Task: {44d75f54-34d6-475e-85ff-16b3689d3480} - no filepath Task: {44f4523e-2cd3-4ed5-9c86-3197b2f5c5d9} - no filepath Task: {45829f54-d24a-4278-9bc8-0c47e490be57} - no filepath Task: {46678e42-c9f7-41b1-b59d-c448f469f208} - no filepath Task: {46b656fc-152d-4b73-ba26-080d05c73d75} - no filepath Task: {47048d17-ed6f-4f9d-a16a-3d98a16ec059} - no filepath Task: {4719b546-6bcd-4de8-95db-c2669727de91} - no filepath Task: {471b71da-d04e-4539-b7bb-dfd6ad23ce47} - no filepath Task: {47331085-859e-47d1-9130-11df4f32babc} - no filepath Task: {4739444c-8aa9-4a00-8306-2f9e78453313} - no filepath Task: {4778650f-d9b2-4157-9e46-b19c6ca9cbe2} - no filepath Task: {47aa7daf-b4da-4425-be87-c2f3a9a8f805} - no filepath Task: {47e8720d-5111-4058-984f-d86a47ae40fd} - no filepath Task: {480b9405-f1c4-4bd4-b517-bf406a8e74bd} - no filepath Task: {48934cc3-812f-4743-be9c-00f2ed8f5e74} - no filepath Task: {48c30d26-fb1d-4065-8649-f34d5b10e6a7} - no filepath Task: {48d9640f-d9cb-43d7-8d40-e32fe3c159ef} - no filepath Task: {49137c39-edea-4b47-8cc2-f857674d2033} - no filepath Task: {493825f1-7401-49f1-82df-f289e27b6338} - no filepath Task: {499209de-82a7-4117-9fa7-8453262377ae} - no filepath Task: {4a5875a7-67fd-42d5-bf11-0a9d626b4bae} - no filepath Task: {4ac853d0-c8af-4f06-b99a-78dcbdf1417b} - no filepath Task: {4aec2a3d-cf55-4f49-8627-515dad680f12} - no filepath Task: {4afdb314-a3ce-43c0-a9bc-00fffd9ef0d8} - no filepath Task: {4afdbf39-de4e-4a9e-abe4-0b96d147d001} - no filepath Task: {4b025d96-ddf3-4677-8489-d91303f5ef01} - no filepath Task: {4b2cf12d-c30b-4f04-a1ee-e2117adf3a1f} - no filepath Task: {4b64a2d5-ecae-43be-a722-4520c5778e1b} - no filepath Task: {4b6da6db-e407-450e-b684-848c8f47669b} - no filepath Task: {4c2bf0d0-eb38-4fe5-8bb2-38ff04ecb079} - no filepath Task: {4c4bd6ee-0bb8-46da-a95a-f9464a8b32a6} - no filepath Task: {4c9538a8-d37e-412e-b488-6d5d0e78f0b1} - no filepath Task: {4d28c8bf-609b-42c9-8050-a60a0f9a042f} - no filepath Task: {4d67657d-73bc-41b6-a15b-d995a547ed24} - no filepath Task: {4e02d34a-7f50-4cfc-bd34-1c1e93a05d5a} - no filepath Task: {4e1729bc-4883-49da-9d5b-0d1f84f59f76} - no filepath Task: {4e21948e-c202-4596-bd14-37bc0ca5d3c8} - no filepath Task: {4e2eb691-92fa-4d90-80e7-fe67e3f686d2} - no filepath Task: {4e4f5b36-b9a0-4f4a-9172-2694117f814b} - no filepath Task: {4e5ae960-c216-41fd-b06c-6565406f67f3} - no filepath Task: {4e6a1411-f136-41b8-89bf-18646e6f8ce6} - no filepath Task: {4ec73bab-0c84-49eb-9648-be51cf255e38} - no filepath Task: {4eef6c9a-68e0-4323-9652-15788c8547bf} - no filepath Task: {4ef42c4d-1c49-4d3b-9b75-9692d3e2d104} - no filepath Task: {4f381db2-f263-4d9a-ae29-7fd92ce4e39b} - no filepath Task: {4f641c13-9f8b-44ce-929f-d6fc30404a8a} - no filepath Task: {4f890843-c68a-4d47-8c2f-69d57947ad1a} - no filepath Task: {5028a9af-2a88-4835-8e5e-5d7de2302907} - no filepath Task: {504210be-c6ce-4bf6-b720-3b3ba9d87adf} - no filepath Task: {50ca061b-b377-40da-bb59-357796e60afe} - no filepath Task: {51673dbd-28bf-4748-bccb-a696bbb7fe32} - no filepath Task: {5190a91a-62c6-4260-b83f-30991143e383} - no filepath Task: {51A7F1BD-71E6-4F0F-B28D-FAAC45290A1E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512752 2021-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {5225e4f8-a7d8-486c-a3e9-543283e29ab0} - no filepath Task: {5226747f-7714-46e4-bb7d-0555f26fbcd2} - no filepath Task: {523e4fb9-29db-41f1-a3ea-739bbcb8e8dd} - no filepath Task: {525b2af2-9fe6-4cba-8f0d-a44ba2508c8d} - no filepath Task: {52c505c4-0ca9-4cec-85b0-f115e926c021} - no filepath Task: {52cea871-31b1-43c1-bf4d-1c6db0fda852} - no filepath Task: {5322d38e-c7fc-49a9-a5b7-d50471a8667f} - no filepath Task: {53383d76-bd38-47f9-8592-e38e23585a82} - no filepath Task: {537fbf95-d1fd-4179-8d58-5b26d1ca2fd5} - no filepath Task: {53c6681f-df5c-4fba-956f-89ce4b1cc87e} - no filepath Task: {53c83ba7-8ce2-47fc-9923-628f999fc95b} - no filepath Task: {548d90d5-fe6b-4880-ba3c-ec630ddf18a6} - no filepath Task: {5498b573-c9dd-440f-80d0-111537c5581f} - no filepath Task: {54b6b732-3991-4bc2-9226-49d7048b3490} - no filepath Task: {555b87ff-02fa-4cb4-8f93-b8a8cf8cad37} - no filepath Task: {5566d1b1-7fc1-4a1f-b99a-115424d3eedd} - no filepath Task: {55788cb1-c04d-45d1-84e2-e217d9a92f73} - no filepath Task: {558E0937-CC45-4F79-8D69-F833A18D5190} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {55eba48f-ec32-4bec-8012-762db0e3a89e} - no filepath Task: {560e3156-dfe6-46e2-9c36-ae2578406024} - no filepath Task: {5613fb06-1616-4790-83f1-8e27b1af905e} - no filepath Task: {5643949e-1a8a-44a0-a1ed-f793c50d3846} - no filepath Task: {572aa8fc-75c1-4b6d-b3f6-ec4166aefedb} - no filepath Task: {57441f79-fe5d-4e79-83b8-bd6eba2a67a5} - no filepath Task: {574f4d62-dd16-496f-827b-7540ade9b6a7} - no filepath Task: {5756952d-3bc4-4286-9499-4e6d90a90903} - no filepath Task: {57CCFB2D-7828-4BA8-906F-49892F3B05CD} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1088640 2021-05-27] (A-Volute SAS -> Nahimic) Task: {57f6fddb-40bc-42ce-bcfd-96f764f25403} - no filepath Task: {581ebd4b-d41c-49a2-9c34-29a22e487437} - no filepath Task: {58B0B7A1-9E59-45C3-9B5B-128C6122FF09} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {58d71c22-6a28-4067-b572-03429108789e} - no filepath Task: {596f54c4-c5b1-471b-b566-b2a0ac1f3b0f} - no filepath Task: {59871b75-5cfd-4bc6-ae33-1e28a8dbe4e1} - no filepath Task: {599ae41a-9b46-445f-a650-d774acf4e934} - no filepath Task: {59dd205e-e0af-4627-b48e-336db0a67225} - no filepath Task: {5a5e2149-7d5b-44df-aff7-b2e128efc091} - no filepath Task: {5a7342ec-3be3-4966-9cfa-11ee42d44973} - no filepath Task: {5ab4bb49-b77c-40a9-a776-0a57ddc264a0} - no filepath Task: {5b7eb599-746b-4c0f-8743-a8c0b5138796} - no filepath Task: {5b8dec70-ca33-4a6d-938c-cb995a4da5dd} - no filepath Task: {5b9cccf5-4b0e-4632-a12b-bd1c343f01db} - no filepath Task: {5c0628ac-f97c-4541-b73f-9cb846cc7a68} - no filepath Task: {5c7700cb-6b47-4c6b-a414-aef96b1dc196} - no filepath Task: {5d44648d-8d23-413b-860c-397d0f319793} - no filepath Task: {5dd56ec0-3115-48c7-ab9a-412c2df046c5} - no filepath Task: {5df21954-8b0b-409f-91ed-97c5df57c920} - no filepath Task: {5e6553fa-e8d1-4e75-99ce-74ccefc2535c} - no filepath Task: {5e7a9aed-a4d9-4a0e-aeb6-4bd27487ed36} - no filepath Task: {5e7ce00c-66c6-4cad-96a6-7b7761975353} - no filepath Task: {5e84177d-9b59-44b8-bc55-0b877b2d5e46} - no filepath Task: {5eb6ed9c-2a07-4c5c-814d-f15051ba59b9} - no filepath Task: {5ebcf467-b7cd-4d2a-8bbb-06cb07d8fe50} - no filepath Task: {5faa3965-91c2-452a-8b92-f7ea7453580a} - no filepath Task: {601da87e-af09-4975-a533-6feba4c96b93} - no filepath Task: {60b508b0-36f1-412b-ab39-9575ee8b0cfe} - no filepath Task: {60d9b254-132a-4977-92ab-cf73db9f2bcb} - no filepath Task: {61061308-f80d-42a3-9c24-74fc0d614688} - no filepath Task: {611c204e-5a59-4054-a18f-424cd6e1c34f} - no filepath Task: {6131eab3-e7b1-4afd-a66c-b574e9d758aa} - no filepath Task: {61d630ed-f95d-4691-9b14-804c759a9c63} - no filepath Task: {620fbbe8-a92c-4000-b009-3d0b65e6f306} - no filepath Task: {623AA7FB-0173-4532-AF95-04CE775FDF04} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6288387b-78cc-4655-bf6d-f2b2b7933164} - no filepath Task: {62ee6687-a38a-44ad-a586-96162334b186} - no filepath Task: {63268393-7449-48cb-858a-b5985246a179} - no filepath Task: {633243ad-bbb2-4499-ab15-29f18726bc87} - no filepath Task: {633a1d2b-3591-4cba-8f56-af4cb720d1f5} - no filepath Task: {636dd7c4-4021-49c6-99c3-636aa766b8c0} - no filepath Task: {63977c0b-1d81-4d00-97f2-0c87fbbf327b} - no filepath Task: {6470005c-dac4-40b1-baab-bfcba29b41a2} - no filepath Task: {64837a99-5d10-48fa-8d97-80af14509b61} - no filepath Task: {64b75302-19ef-4678-a9cd-e034a4935657} - no filepath Task: {64fd7b37-d906-4c6c-8a40-e091057c8ada} - no filepath Task: {65a87016-8b61-4713-be34-34233114b3ae} - no filepath Task: {65bb0132-9b4a-4414-b76d-7a5adb93d6c1} - no filepath Task: {65c596e5-b916-4e0a-b582-c36115f5d52d} - no filepath Task: {65cc1513-d3d2-4104-842d-519282e93ae0} - no filepath Task: {65f488ce-4464-4559-866f-21447056b8d5} - no filepath Task: {6607e8d9-4a75-4b8e-bb16-b41d775638e1} - no filepath Task: {660f1caa-7959-4833-abe3-4f550218c1cc} - no filepath Task: {66606585-a6de-4627-aab6-801db09ce43a} - no filepath Task: {66744345-6767-45e2-9c5d-5d809dbbb72e} - no filepath Task: {66dad1bd-e0c6-4134-93f0-b5ea3f1d7ac2} - no filepath Task: {6718d1c1-a7b5-421b-8118-dae9f8c1b389} - no filepath Task: {672e7d88-14ba-413a-a7bc-cc815d8616a7} - no filepath Task: {67ada058-91aa-417c-a239-c4d83acd1b27} - no filepath Task: {67c65e19-aa46-4beb-9954-8d8d7b885a89} - no filepath Task: {680365ef-641e-4ee8-b038-84c1afb23362} - no filepath Task: {687596bf-8525-441e-9ede-7b39ccc5648d} - no filepath Task: {68bcfd6d-4a34-4f8f-97f2-9302312a3deb} - no filepath Task: {69507bb8-e793-4946-ba25-416b117f746c} - no filepath Task: {695a1d4e-ffce-4ce1-b380-be3720cf9770} - no filepath Task: {69765ab9-1593-4e4b-832a-a9f5bbff59e3} - no filepath Task: {6984e96b-22e8-4c1f-b5b3-e2e44e2a8587} - no filepath Task: {6993f941-1ac5-4e71-a11b-19bd2aec4867} - no filepath Task: {69f2cc8b-2e04-4282-a25b-40d011d4982c} - no filepath Task: {6a0943e1-0564-4af1-91e4-62d7b950129f} - no filepath Task: {6a162d8c-2ca7-4b2a-b5ec-9f60b34b2cad} - no filepath Task: {6a359b1c-5bca-46b9-89a4-02f581900d89} - no filepath Task: {6ab33563-e2d6-4644-a164-0c8cf7a595df} - no filepath Task: {6ad6f2ee-548a-4fa8-a299-b1e1445346cc} - no filepath Task: {6b21f735-58a5-4b37-afed-c60dc2e8f599} - no filepath Task: {6b366f02-dd64-457e-89aa-239b3b6cd401} - no filepath Task: {6b484eef-8ee1-4c25-9519-4fcdda20d73c} - no filepath Task: {6b851040-fa29-49c2-a77f-c317a52ae7a4} - no filepath Task: {6c3a34a3-db8a-4e66-98cd-f6c8c45c4cf4} - no filepath Task: {6d1654fc-f829-475a-b136-285327fd16c5} - no filepath Task: {6D5B6639-3705-416D-BEFC-423E4884C389} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6d6f9ace-68c4-45ec-969d-09d7acca83ac} - no filepath Task: {6d81a092-3eb4-40c2-b158-1c624cdc5295} - no filepath Task: {6dec06b4-0aa1-428d-845c-c08b1b83c6a8} - no filepath Task: {6e4e6d7c-1c75-4f20-ac9a-f3c4251998b9} - no filepath Task: {6e90570f-d849-4639-95c6-c51971252a31} - no filepath Task: {6eb4b490-d649-47a5-a9a6-8368351f1a61} - no filepath Task: {6ee91477-939f-4d14-a80c-52fea7ddc067} - no filepath Task: {6eff4ddc-cd3f-47f3-b1a2-c97442e5679a} - no filepath Task: {6f53c17a-ce33-4527-b88a-ed4c3eaf0bf2} - no filepath Task: {6f9fcd54-ed43-49e7-a5a2-6c3993638ff6} - no filepath Task: {6fbc39f7-a9d6-4bfa-bbf6-ab8493554b88} - no filepath Task: {6fe551ce-6d5b-4bfa-8e1f-0ace24f912ed} - no filepath Task: {700596b9-c30b-4a1a-bdf1-4692e85e8315} - no filepath Task: {71089f50-0ddf-401e-9cda-0cf50cc9e8dc} - no filepath Task: {7118eb40-71f5-456f-a354-1d4adc2e5a1b} - no filepath Task: {711c2b6d-4e96-4e16-a546-ac6ee8067ba7} - no filepath Task: {7129ade1-32b0-44a3-9a74-9a9415623bb9} - no filepath Task: {71604ae6-349b-4a4b-8b0e-a0eae2d7adf7} - no filepath Task: {71789757-c44d-4af7-86fb-90bc7c563755} - no filepath Task: {717cdcf8-d817-4f84-b788-0cab8f24a7e3} - no filepath Task: {7236ec22-f530-496d-9694-71aa3542db2b} - no filepath Task: {72dde85e-60d8-49a7-9ab4-9a03ac3d3765} - no filepath Task: {732af973-9818-4ea4-b100-8f9dada7e4ce} - no filepath Task: {737927d0-9af3-4785-aebb-b2eccf64c3bc} - no filepath Task: {7420a575-0c11-4fc5-9e4d-d03f37209856} - no filepath Task: {7604cba4-e3aa-449c-a428-38c1467e2e37} - no filepath Task: {764909ef-6e8b-4515-9c16-bf29a5e5f095} - no filepath Task: {76c01913-7a07-40d0-91ea-112a1f76fad2} - no filepath Task: {775ce352-2072-4e69-b145-3375476ddded} - no filepath Task: {776a5a64-5307-4466-804a-47105b0ebb68} - no filepath Task: {778c5f89-219d-4e1a-bd3a-c26c60d32122} - no filepath Task: {77d0f141-1584-460b-bc77-cbab5988bae5} - no filepath Task: {780C5D37-1812-46AD-84CA-FAC0BC93DB0F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {781eb6b5-da07-4c45-a403-bcadb5bb29cc} - no filepath Task: {783286ce-d902-47c1-8e48-fdef502a3844} - no filepath Task: {790bc340-8dda-4355-a229-70216ab11017} - no filepath Task: {791ffdfa-24b6-44f0-bfd6-c354b6e610fb} - no filepath Task: {7947b8df-9f9f-4701-b4bc-c72fec35c068} - no filepath Task: {79486cf1-b0ee-465c-80f0-259f2b163ef4} - no filepath Task: {7a4f76e1-28ab-4738-b11e-917f35f39ea4} - no filepath Task: {7a576b57-6056-4b4b-8716-da4ebdf20ddb} - no filepath Task: {7a5e96d9-0158-4066-b1a7-6bac566cc395} - no filepath Task: {7aa5404a-20e2-40c1-90b3-62e2fb5e01b6} - no filepath Task: {7abb9245-7720-4da4-8b43-abfcca5eeb9b} - no filepath Task: {7aeab82d-2e0c-4dc3-a2da-0d495cd10bdc} - no filepath Task: {7b116509-3100-4d25-9d6a-a14af7d1d73a} - no filepath Task: {7b15a391-d366-4085-916c-ad0a9de33049} - no filepath Task: {7b15c88c-7b17-4a18-a356-6e3882f066c9} - no filepath Task: {7b89b8d6-a672-4329-aab5-9c4fc54d7167} - no filepath Task: {7bfe372c-51f2-43fd-bc70-0a7ab090e88e} - no filepath Task: {7ce2ddd4-bc14-44ab-be09-96819c642527} - no filepath Task: {7d0e6775-3627-4b8b-82eb-4029bd72b4ad} - no filepath Task: {7d2e7164-74e4-4781-8cfd-48f4d5b34a7b} - no filepath Task: {7d37499f-ac3e-44b8-b272-7cbc8a7e56e8} - no filepath Task: {7d5d65c7-c6ab-4057-8522-6c65b34edb64} - no filepath Task: {7da93e8c-7d09-4693-8fbf-b3fcc0f3338e} - no filepath Task: {7e69fdf7-3b58-459f-bb23-0980b73d980a} - no filepath Task: {7f4d761c-c6de-410c-8b85-2e19ce94a3b7} - no filepath Task: {8008aea0-44f7-4fd6-8660-b970667cfcc4} - no filepath Task: {80a898b5-bfae-4c9a-917d-6e554f2fb8e0} - no filepath Task: {80e5c894-1f54-4216-9ae7-e59db7f9e99c} - no filepath Task: {80fd2c99-cdc5-48cc-b269-f0c800beb232} - no filepath Task: {815a5952-95f2-4dd4-9c30-050c6e6a7b3d} - no filepath Task: {81762d81-afde-4efc-9210-8cb1567e80e4} - no filepath Task: {817866bf-d7e0-4a07-af6c-85df5a922da6} - no filepath Task: {81a1866a-33d1-4113-b593-662d6b031d7c} - no filepath Task: {82480854-0e5a-435f-8f76-8c3854935f8d} - no filepath Task: {82c57d01-120d-4a7b-9747-8b4d03450589} - no filepath Task: {82c85859-9476-42d6-ac24-22c50a05fa39} - no filepath Task: {82d58d6a-929c-49f6-a4f7-40992d4a586d} - no filepath Task: {82f7c28b-5a2a-4979-b675-1cb82a5c11dd} - no filepath Task: {834d9948-a75b-4be4-9294-ddf0207e606d} - no filepath Task: {839c9d03-b01c-4cba-afea-7242d4e75b16} - no filepath Task: {83d6516b-1aa1-48f8-b836-444ec9513c8c} - no filepath Task: {83df3fc2-3eff-481a-b580-13a533299cf6} - no filepath Task: {83e9dba2-0eb6-4d56-9a4d-6ab2029c4c93} - no filepath Task: {842c6244-8112-4fd2-91bf-a4dffa7ad096} - no filepath Task: {843a3053-30fe-43c7-809c-bbf4e313a515} - no filepath Task: {8506a5d0-c240-4f67-a6ed-90a368861b68} - no filepath Task: {850def8f-1f2b-489e-aecc-2c62292cc867} - no filepath Task: {851db8df-8b40-49c2-a709-c7dd99efaaa5} - no filepath Task: {853ca40e-4b88-446b-be27-b73134a8c1b2} - no filepath Task: {859404bc-132a-4df6-adb0-f24059402ac9} - no filepath Task: {85b9362c-f9bb-4901-bda5-46d6d1e3b9d0} - no filepath Task: {85f14ad5-10b7-43e8-a427-fc2cb297cd29} - no filepath Task: {86210318-ac60-49b9-a195-1c827899d860} - no filepath Task: {8659f2b5-2ab1-40bb-b2bc-c024f46890dd} - no filepath Task: {86a22f74-1548-4efe-9a28-ee8678fbdc3d} - no filepath Task: {87373db7-63c8-4566-a879-442ac1b59e00} - no filepath Task: {87937631-00E0-4CBA-972E-E303426074B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {87c953e8-c328-4115-8e4d-96f7f32934fd} - no filepath Task: {87EAF0CA-E3C8-49C6-AB54-ACE03BBEF8AB} - System32\Tasks\NahimicTask32 => C:\WINDOWS\system32\..\SysWOW64\NahimicSvc32.exe [829568 2021-05-27] (A-Volute SAS -> Nahimic) Task: {87f020d4-b92f-49ed-914f-2fe16260ff2e} - no filepath Task: {8853bc6d-65ce-444f-b68a-553f91791a80} - no filepath Task: {886322eb-09df-4b26-b018-7eb46a512daf} - no filepath Task: {88b2d4a5-c067-439e-8eac-5293f655d7fe} - no filepath Task: {88f8fac7-7bef-4015-a9d0-8aa1fc3f3749} - no filepath Task: {8985d834-7e63-4363-885a-8eb002ae9b8e} - no filepath Task: {89d193c2-f21e-4f3e-a37a-26cb9ed59901} - no filepath Task: {89d541a4-6060-401e-928d-f444653ab42e} - no filepath Task: {89e2b19b-7231-40e3-b609-80cabbf144b8} - no filepath Task: {89e5683d-6d7a-400d-b50d-0d460831a98f} - no filepath Task: {89ecb2c9-9237-4ff3-a5f9-c2cd918a1d99} - no filepath Task: {8a195029-1b04-4b52-b2cc-eb5171225fb6} - no filepath Task: {8a209cef-9aed-49e3-8023-ed015909854a} - no filepath Task: {8A2D7BB8-9194-4E72-B6FD-670597E78215} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {8aa2daf2-f89e-44ff-b8e8-b65d8e632118} - no filepath Task: {8aa9fbbc-d9ae-4d8d-b25e-b4c781bc6abc} - no filepath Task: {8b11bbc6-2403-476a-a367-268d746d80bc} - no filepath Task: {8b129b76-9c48-4c66-a233-533cc53b1ecb} - no filepath Task: {8b13e661-e6f3-4186-a01e-f7635ee31c68} - no filepath Task: {8bb3518c-23cf-403d-94fe-d3b95e2c9b16} - no filepath Task: {8bd7bbd0-cfe3-445a-8278-73de891f9753} - no filepath Task: {8c1c5094-3e6d-4698-8f56-d0d70a3305b9} - no filepath Task: {8c85125b-b3ec-4c46-ac79-12fe30003d34} - no filepath Task: {8ce785f0-2273-49f3-a5e8-f0101edb1438} - no filepath Task: {8e0a0573-5d2a-40bb-8a1f-d57544450bce} - no filepath Task: {8e13abbe-f8da-4298-9470-cab379153a2e} - no filepath Task: {8e56709b-52a5-4666-be79-095a7eec1c02} - no filepath Task: {8eb1fe96-7fbe-4d93-809f-d258e4070512} - no filepath Task: {8ed06c4b-8928-448c-95bd-69686057fdff} - no filepath Task: {8edaacfa-988d-45d8-afad-024e5dc8dd98} - no filepath Task: {8fb3b911-5ceb-441d-b3b1-88190eed456a} - no filepath Task: {9039b94c-9e50-4070-a7c2-ec501fcda792} - no filepath Task: {904f38fc-eadb-461e-b3fd-55abf52c5168} - no filepath Task: {904f5676-eae4-49a0-98f4-8e260e8beea5} - no filepath Task: {9053cdf3-6e40-4f7a-9059-1aa51274afe7} - no filepath Task: {907aa696-befb-41da-ab1f-ca117c2a6b61} - no filepath Task: {90d141f6-14db-4047-bda6-d1ac278e3314} - no filepath Task: {91c9d496-ed29-4a27-9eeb-f9f01c02f017} - no filepath Task: {92517543-177e-437b-ae34-63e76b58f9bf} - no filepath Task: {9262e938-ee45-40fa-9b09-2d01de5e58d7} - no filepath Task: {92952ca0-f5dd-41a0-bd03-59a498ea877a} - no filepath Task: {92ad11a1-3de9-476c-a0ea-e79040f6a2c4} - no filepath Task: {930d092b-c573-442e-840a-e59f7f5bd6cc} - no filepath Task: {931a4fa3-8d7a-4341-9873-0c5b7dd59c3b} - no filepath Task: {93330b9c-3d21-4edd-b2fb-2e0ac1c38e85} - no filepath Task: {937b7566-8293-49a1-bc9c-b3ebb869a363} - no filepath Task: {93aba298-a8af-417c-bd58-82e91adc5dc6} - no filepath Task: {93ac1b32-0687-4dd1-ade7-c010552d945a} - no filepath Task: {942c5994-29a5-40b2-9e54-db643585c3f4} - no filepath Task: {946fc6d1-0824-4103-95d2-9ddc17d0a398} - no filepath Task: {94afc82e-dfcf-48fa-a992-c71900ae28b7} - no filepath Task: {94ce96bc-1dff-4fd1-9164-7ca35791b252} - no filepath Task: {94d66377-3c57-4e44-831d-19331828d7a0} - no filepath Task: {9506c619-e9e9-4064-9147-269503f372c2} - no filepath Task: {955084BD-900E-4295-9023-47548F748DC9} - System32\Tasks\NahimicTask64 => C:\WINDOWS\system32\.\NahimicSvc64.exe [1088640 2021-05-27] (A-Volute SAS -> Nahimic) Task: {95af91b1-6491-487a-81b3-6efa5b02d5e1} - no filepath Task: {95BED039-E70A-47AE-B098-6E2D8FEAD0A1} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [829568 2021-05-27] (A-Volute SAS -> Nahimic) Task: {95DC1902-D8B9-407F-9498-1C98F2D4E35D} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-09-13] (Intel Corporation -> Intel Corporation) Task: {95f8ac00-4bd9-4376-a339-73a3c370ec06} - no filepath Task: {96ca5cd9-a768-455c-97b9-088bee2455bb} - no filepath Task: {97dbde8f-1e69-4904-8f82-bf82a8eda895} - no filepath Task: {9805dbb8-9f0e-4301-800e-c4e511e67748} - no filepath Task: {98d96a89-4a1a-4855-82b2-7a9cbb34322e} - no filepath Task: {99398c71-db49-4a5f-a1f4-a00e526ab9c2} - no filepath Task: {99cd9c6e-8f72-4801-b244-87dfca5086bc} - no filepath Task: {9aa477c6-5b0e-4a90-b52a-1118824eec99} - no filepath Task: {9ab2d27b-00db-41cd-88d6-12b5cebe35c1} - no filepath Task: {9c200695-b1f7-4c5f-be06-7ff60d3d8fb2} - no filepath Task: {9cbae338-44ed-4d14-b146-99c66f1387cf} - no filepath Task: {9cf9605c-e211-4ffc-abd8-a53015bdf99e} - no filepath Task: {9d240859-035d-48d8-9efa-58c9c89d7c05} - no filepath Task: {9d3a2495-ba8d-4ea3-8cc9-a6a95c3abb1d} - no filepath Task: {9e45ff13-fa28-45bb-a3ac-ea7cac6049ab} - no filepath Task: {9e4dbe93-e5d4-4045-be1e-463450430ff5} - no filepath Task: {9e74bd48-3870-4c10-84f4-1f5ae91706be} - no filepath Task: {9e92074b-3ae1-4353-bcab-be45c35fc6be} - no filepath Task: {9e9430c5-6be1-4ceb-8994-1cfe4e968126} - no filepath Task: {9f183a3c-a59d-4026-b53c-ae997b79be43} - no filepath Task: {9f48da52-0ce5-48fd-9283-18c74ad42114} - no filepath Task: {9f5a0061-c0e7-41c3-bb35-b68709ae3940} - no filepath Task: {9f7281b4-8047-46e6-9fcf-57a5f6722b85} - no filepath Task: {9fa16a55-6f28-420f-85ab-67422047dbcc} - no filepath Task: {9fa8b77d-e382-446f-a52d-af88256ba1be} - no filepath Task: {9fb240fb-9ca7-433a-a98d-5eb065a70f40} - no filepath Task: {a00f26e8-78f5-4abc-ac96-07896638f52f} - no filepath Task: {a0992e28-8fad-4b98-8074-8ef6db5af4e2} - no filepath Task: {a0fe5211-d1ef-4b19-9877-2c64c4484df7} - no filepath Task: {a156ffb9-22e5-4291-b48c-157696e729d1} - no filepath Task: {a1801cf0-4def-4cbb-841a-29beaa57264a} - no filepath Task: {a21a86d4-c9a5-4bc9-a5e2-fcc977e02b7f} - no filepath Task: {a23401cd-486f-4400-b261-2bbf5233cb09} - no filepath Task: {a295ad60-83f8-438d-88ab-876151e970f5} - no filepath Task: {a2f70530-ab85-4ef2-a687-a62fe742c23c} - no filepath Task: {a31108c3-54b7-45f3-970a-dc5f2aff5c50} - no filepath Task: {a348ec9b-8ae2-449f-b975-8f85cc321271} - no filepath Task: {a367cabb-b44a-4128-ad74-b06e6ea208e2} - no filepath Task: {a36fa019-9253-4cc3-87fa-d8013ccd7a9f} - no filepath Task: {a3b0bd08-9c2a-4116-b39d-46340318cf74} - no filepath Task: {a3f59213-bd0e-45f8-ad84-793b663c73ee} - no filepath Task: {a3f70f9f-f6ae-4984-af44-92ec60b9ddab} - no filepath Task: {a3f8977a-c01a-4e75-9c77-cff83e3982c6} - no filepath Task: {a5272628-b121-4447-b6ab-46f4629b1824} - no filepath Task: {a550d290-e005-46b2-a174-1385a691de48} - no filepath Task: {a5b0ebb8-db83-4a56-99e3-5a71b3d02131} - no filepath Task: {a5bb02e8-34ed-43ca-b64e-f74a854beefa} - no filepath Task: {a5f52e3f-80d1-4e9f-9085-6f720e719754} - no filepath Task: {a5f7bc02-1952-4048-972f-7b847c6bc456} - no filepath Task: {a6733f25-3ee4-4c71-a73e-e8723a0e64a6} - no filepath Task: {a67f4e74-0c2c-4277-adaf-5a25883740a7} - no filepath Task: {a6cf1eb2-1793-46b2-ba82-52acf4e873d5} - no filepath Task: {a6e5887c-4531-4e0f-9513-719517b4867c} - no filepath Task: {a71df3d0-d84f-4bb2-8466-1b39fd3c52f3} - no filepath Task: {a78a7d27-8ff6-493c-98bb-8afbd5638e49} - no filepath Task: {a7a90c8a-9841-400f-8cd7-0cd196a4e6a7} - no filepath Task: {a7b96746-c98f-4357-aa40-959508cbf8a3} - no filepath Task: {a7e424a5-e26d-480d-9a72-799bfdec046b} - no filepath Task: {a7ea9740-8523-4261-b131-bf266e647790} - no filepath Task: {a8103e99-a6ee-4b44-975a-cc7b094c9e37} - no filepath Task: {a83a7d55-7e54-4aca-acc1-e2773bec1e06} - no filepath Task: {a90fc94c-a8d7-457b-a0d8-62332de50ba0} - no filepath Task: {a91a0d2f-41dd-4485-885c-e9054bfc21a7} - no filepath Task: {a9407421-7d12-44c5-b2a1-8c7318024338} - no filepath Task: {a974c052-2bca-4cec-a4ea-399c8ee998a9} - no filepath Task: {a9acaae1-f505-445c-8bf9-bd9212c0a7fa} - no filepath Task: {a9ee069c-a2bb-46cc-80cf-7e8b0d2697ff} - no filepath Task: {aa1fc538-3a77-4cd1-87e2-d901242713da} - no filepath Task: {aa35705f-8e09-421f-ba32-8dc403109a18} - no filepath Task: {aa3918cb-05cf-42e3-b3a0-0a5769db6786} - no filepath Task: {aa4745ab-84e3-45ed-a275-fc5a30edd5f5} - no filepath Task: {aab97915-f620-4704-afc7-85ce6b7d80c8} - no filepath Task: {aad29596-7c24-45b8-9f90-4e3f692599d3} - no filepath Task: {aaee0002-dbf0-43b5-b717-eade1efc9cad} - no filepath Task: {aafa7e50-cf7c-4bb6-b6fa-217a93a9b429} - no filepath Task: {ab3ffe24-23b9-4240-afb7-e03f5981050f} - no filepath Task: {ab4747f7-9236-40b0-968b-f3f43f04cbac} - no filepath Task: {ab6558d8-212c-4a79-8151-6a5ccbab8adc} - no filepath Task: {ab73b283-957e-4829-8e61-0be361cef4ba} - no filepath Task: {ac236c5f-c68f-48a6-8652-106dd7ca601b} - no filepath Task: {ad8da0e8-2846-4f9e-bb63-c72bafde94dc} - no filepath Task: {ad8fc55b-88fa-4515-a412-26b27d21d952} - no filepath Task: {adb23897-39db-4d99-aa98-7dea37e04c91} - no filepath Task: {ae53e5e6-a348-469c-a5dc-ec5dc28ba321} - no filepath Task: {ae72bc07-cfd8-4177-b361-1b098cf898f8} - no filepath Task: {ae859e84-5cbf-4819-8a2d-dbc9ff14c4a5} - no filepath Task: {ae9f3566-1bbf-41b5-912a-e838d2b06ff2} - no filepath Task: {aebd2efc-3762-4bdf-abea-3f0d7e47c9e8} - no filepath Task: {af4b9e41-ce27-4102-bc85-edf42e9bd809} - no filepath Task: {af5771f4-7367-411c-905d-1f701d9ab922} - no filepath Task: {afffefad-4a90-4811-8501-98d7d99ca59f} - no filepath Task: {b064c5d4-75ef-4a4e-8de8-5797044d74c6} - no filepath Task: {b08baab8-2b70-467e-a035-5be560d16a2d} - no filepath Task: {b09f29bb-c770-4c52-aab1-43f7c6ef2f00} - no filepath Task: {b0f24bcd-2c7f-4674-b187-9dab2cea70e4} - no filepath Task: {b12ba434-f017-49a2-9792-0e069a896421} - no filepath Task: {b1a9e330-1b06-409d-9d04-24d9129547a8} - no filepath Task: {b28afefd-69e8-4be0-8a74-36a66a0a3f7f} - no filepath Task: {b2ad52c2-1b36-447f-9176-bba4116b1e05} - no filepath Task: {b2fd7943-d66c-478b-a1ff-eb5df3d9314c} - no filepath Task: {b31bd26b-d183-49af-8b09-30de7059bc35} - no filepath Task: {b35290ba-a02a-48d5-8e90-7f382ed02ff1} - no filepath Task: {b3ff6dc8-43c0-4c28-a61d-07b6f73b910c} - no filepath Task: {b4126fd4-3d67-4284-955d-884452a66b0c} - no filepath Task: {b4325695-772b-4522-803e-388e67db4bf9} - no filepath Task: {b44d8f38-6d53-47f9-b73c-cabb82ee1d05} - no filepath Task: {b46c38de-eaa1-4357-a459-cb8cbef066f9} - no filepath Task: {b4734e62-fcc5-451d-956b-03ee9579a7bf} - no filepath Task: {b476256d-dc5d-487b-a84d-cd8022b01688} - no filepath Task: {b48b9010-e037-46d0-9d40-9f4f61c954c1} - no filepath Task: {b49b05d7-1f73-4c23-b427-c0e1a8bab1a9} - no filepath Task: {b4a8b5b6-2403-4c36-91dd-bb8c093dec42} - no filepath Task: {b4c765b5-9606-4a54-ae05-b0fc796e556f} - no filepath Task: {b4fc06c2-9f8f-4e1d-83a3-b4776a729a6e} - no filepath Task: {b52c12fe-cc02-45bf-a5c7-af239b121d7e} - no filepath Task: {b52c9aef-f3ba-4f96-aa73-552691a8e7ed} - no filepath Task: {b5fbfaa4-cf4c-44c9-a70e-f68971251345} - no filepath Task: {b642d6e4-059a-4bc3-9980-51a663cd1e72} - no filepath Task: {b696f57d-6134-4ce9-a34e-63899152e9cc} - no filepath Task: {b6b10077-c4fe-4c13-b892-9b354a489adc} - no filepath Task: {b746d596-1d83-4694-b220-7ac9e6474f28} - no filepath Task: {b749a866-473c-4641-b710-eaeb8c3d851e} - no filepath Task: {b7c8cf0b-74a7-4d6b-9e87-065e1c740ccc} - no filepath Task: {b80098e4-44fc-4236-b335-952c666b9d4b} - no filepath Task: {B85A9B32-9C3B-4DF2-B4BA-A5AF8876E4E3} - System32\Tasks\DelayedItemsByChemtableSoftware\Ashampoo Backup PB => C:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\backupClient-abpb.exe [949976 2021-11-11] (Ashampoo GmbH & Co. KG -> ) Task: {b8b420ad-b75a-448a-bdf0-38a798f80623} - no filepath Task: {b8ba234d-061f-479c-b450-6879093c5d41} - no filepath Task: {b90af304-4a97-4b28-a844-63258c025596} - no filepath Task: {b9824abb-0e38-4b81-83ca-9de0bac92fac} - no filepath Task: {b98b7245-c149-4014-972a-97d61698c582} - no filepath Task: {b9ca2f4c-80fa-4371-b828-c491844b2ce9} - no filepath Task: {b9f6b4f1-c54b-42e3-86f6-1f803219b2bd} - no filepath Task: {ba02c860-ecec-45b9-a79f-20f7ccc1203f} - no filepath Task: {ba16a864-9179-4cc1-b86d-d266388d4c71} - no filepath Task: {ba31ba26-d3ca-48c3-b5dc-5c0fbbb4d5c4} - no filepath Task: {ba3a056d-78d7-48d6-ae51-bb7a02c46c60} - no filepath Task: {BADACCB2-A0E2-4B8B-A146-817F832651FD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {badde4f2-f63e-4022-b3c1-ad3109633ce5} - no filepath Task: {baf9d7a5-de0a-4719-91ac-072c8e2f0afa} - no filepath Task: {bb25cc88-328e-43a8-9c98-32996e231305} - no filepath Task: {bb662223-d4a0-424d-8cad-9c80dec9b646} - no filepath Task: {bb8099fb-4bb0-4791-900f-5cb65b5fb481} - no filepath Task: {bb9032ca-f880-42c8-9af4-81998503616f} - no filepath Task: {bbcf7688-0009-44ad-9bf2-a605aefb47a8} - no filepath Task: {bbd7f4eb-4622-4ddb-b669-d979f47a37fb} - no filepath Task: {bc7e4d61-8663-49e1-a918-9f426430713e} - no filepath Task: {bd44541c-d3af-40ec-aab0-ca78d5ba095e} - no filepath Task: {bdcf6554-9297-4fc2-9c26-122c1022b042} - no filepath Task: {bdf2bde0-3832-4212-bfff-7cab08de64cd} - no filepath Task: {be013a90-5c1d-45d1-a097-475754a1e7f4} - no filepath Task: {be06b115-b679-426f-864f-22e7e5c930ce} - no filepath Task: {bf1ff049-8e64-4442-af0b-bd04e1e60118} - no filepath Task: {bf68ab95-8846-4536-860d-198ffcd6cd96} - no filepath Task: {C00A390A-ED0C-4C37-B475-1C57857797C6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563184 2021-11-02] (Microsoft Corporation -> Microsoft Corporation) Task: {c0318d3e-c10b-41a9-ada3-196b64ea77e3} - no filepath Task: {c04c0533-fb81-49b0-9e31-65c23317bfae} - no filepath Task: {c07eb11a-6230-4e80-9f6f-69c45ef3104e} - no filepath Task: {c0a507c4-f42a-44e5-b5a9-4062c3bd885f} - no filepath Task: {c0d87e00-f3b0-489a-9bd8-29e401471360} - no filepath Task: {c0fe4494-1256-45ff-8776-ef139f6df208} - no filepath Task: {c1739682-8ce8-4893-b591-8a132ff02df4} - no filepath Task: {c1a30cdd-46a9-4a2b-b39e-25ffe9659bcf} - no filepath Task: {c1b628a4-3fef-47de-a6da-fb16176a8b2e} - no filepath Task: {c229cbb7-4b78-49e3-ba84-394cb36a6a1c} - no filepath Task: {c2455117-7f0a-4fa4-abe0-1b602cdaccd9} - no filepath Task: {C2737E5C-01E7-44CF-83E9-FCEF9B4A7594} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {c2c62888-eeb4-4d00-b579-c1e3e4947b72} - no filepath Task: {c31f9d8b-dd9d-47e5-b62a-d802d1449186} - no filepath Task: {c33122c3-599d-4ddb-9bf1-c91c3e87c24e} - no filepath Task: {c36d3e7b-15eb-43f4-a5f8-d667bf12bfa5} - no filepath Task: {c38a0ce9-708c-408e-aa26-ee4f57edc7d8} - no filepath Task: {c444d9c2-0207-413d-ae39-dc9a58af94a6} - no filepath Task: {c466e80e-bf60-4d68-b45a-09fba1ca277e} - no filepath Task: {c48d9313-496d-4697-9a62-afc7d080613a} - no filepath Task: {c4bc4d50-aa34-4bff-a1e0-1b9db5d2f1d4} - no filepath Task: {c5367618-42c3-44c8-8d28-524396c7f6b8} - no filepath Task: {c5602e93-10c3-4e86-9ba8-5d1a9d705c90} - no filepath Task: {c67cb75f-d667-4817-9f98-6d5541bd95f9} - no filepath Task: {c69117c6-9433-4f8b-a460-276ef054ab5c} - no filepath Task: {c6ab1720-f067-423a-8246-a9707e71c6c8} - no filepath Task: {c6d8bb23-884c-44a0-b56a-087b62c78e6f} - no filepath Task: {c7260dc1-acce-4428-93ed-d81d782c634f} - no filepath Task: {c72dc901-c98f-426c-b69a-20deb3523198} - no filepath Task: {c768f32f-f5f4-4e26-bc5a-9ef4501f514b} - no filepath Task: {c7d4d8d0-15f2-4821-8f5e-02a4e066f54e} - no filepath Task: {c82008e8-5e7a-4380-bfd8-d83b8d560b65} - no filepath Task: {c8df876c-a36a-45d3-b463-13c3f9df3ee0} - no filepath Task: {c8dfc2c8-0c41-49eb-b55d-c134a82ac6b2} - no filepath Task: {c92e894a-0545-4966-8d71-252fa113e2d6} - no filepath Task: {c951c597-07a6-4994-b795-6f41f704f2e3} - no filepath Task: {c9984720-cf0b-478a-9ef2-c7d16374869e} - no filepath Task: {CA5611D7-3EF2-4E5F-9954-37369D47D843} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {ca687b13-f1c1-4d1d-b856-6de5b2a1934c} - no filepath Task: {cab6a97c-e5e7-47f4-9169-dc25d5b0fa00} - no filepath Task: {cad4cfe2-48b9-4895-b1d3-ae5d9af81417} - no filepath Task: {cb107f5e-cb23-4070-a50d-386f019489b4} - no filepath Task: {cb35e9d3-279c-44db-a5d1-8ec3980caece} - no filepath Task: {cb500b84-770a-4080-be16-542494a98d21} - no filepath Task: {cb979f1b-b78c-46ae-ad2e-097660ebfd1e} - no filepath Task: {cbc8782a-69e8-48bf-b0ef-3df0a3bea86f} - no filepath Task: {cbd8d9c0-6c9d-4143-9bee-e2d91165b5e7} - no filepath Task: {cbf1b1ef-b0d7-4d28-9ea1-f03e9223ec68} - no filepath Task: {cc0aac6f-030d-425a-99a7-ceedc87f1e68} - no filepath Task: {cc55865e-283c-445a-b38b-49d080d08946} - no filepath Task: {cc5ada22-cefa-4258-9690-44e59cb9e987} - no filepath Task: {cc6739e9-6c6c-4729-9faa-59c213e72391} - no filepath Task: {cca867e5-3166-40bc-b2fb-09b4c176b28a} - no filepath Task: {ccb6bbe6-0659-4290-bff7-82ac64ef410c} - no filepath Task: {ccd3a5e5-d4e9-4142-af21-26a0113812cd} - no filepath Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File) Task: {CCE97F70-EBCD-4124-B21E-6D75BBA17CBD} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208192 2021-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {cd0a1566-077d-4d3d-8f74-ea218139dfb1} - no filepath Task: {cd862558-fd84-435f-af50-a545a13c0311} - no filepath Task: {cdf76b40-8f85-40fa-96cf-1fced37346d4} - no filepath Task: {ce03ce16-2ffe-4fb8-a31a-4f0a077bf7f5} - no filepath Task: {ce2208a8-175a-41e4-8b16-8af8ba82ca52} - no filepath Task: {ce7af323-aa26-492e-9c0f-71b1e826568d} - no filepath Task: {ce8683fa-4869-4a9e-a833-539d3983b399} - no filepath Task: {cea45077-553c-4137-a686-620be95b3152} - no filepath Task: {cede7861-3783-49d5-a737-b9440263a0cb} - no filepath Task: {cee4f861-dca7-44be-bf4a-e9430d090128} - no filepath Task: {cf10e0ed-8b9b-4fb5-a581-7bf48d927fbf} - no filepath Task: {cfa72578-78af-4cac-8130-9cb961377d44} - no filepath Task: {cfaf8bf2-f20a-431a-928b-0460a7a393ac} - no filepath Task: {d0e0a999-4a13-4300-b434-6d3f028dd595} - no filepath Task: {d1486de1-2360-4019-9b7e-f942a824312b} - no filepath Task: {d15744c5-102c-42f1-9cca-68617ee212b9} - no filepath Task: {D1BA06B5-FD4A-4FDC-8C32-BA2CDF405965} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208192 2021-11-17] (Microsoft Corporation -> Microsoft Corporation) Task: {d2affed4-1dc6-4344-a664-21d89f4cca21} - no filepath Task: {d2f7b907-6cb6-4ce1-afdb-adc32ea3f2c8} - no filepath Task: {d31933f4-8af1-45c6-a510-725513274ff3} - no filepath Task: {d355bde7-9c0c-4be4-a694-bd89c90a1a7e} - no filepath Task: {d3729a6a-9a35-46c7-a33e-5f88f1e97311} - no filepath Task: {d39be967-3dc7-4fb2-a5c7-2f751b18dd30} - no filepath Task: {d3a8add2-7378-48d9-a351-58292c065eac} - no filepath Task: {d3ad966e-4f60-4b22-b1e1-1fcbf52fc7eb} - no filepath Task: {d3c3a56c-2751-4558-9132-67dd72a82223} - no filepath Task: {d3ce20c6-6b75-4d0c-8451-7ac2ab92dbd9} - no filepath Task: {d3f09892-368d-4150-92cb-0cf51d679182} - no filepath Task: {d4176c74-1eb6-4cac-8dd8-ad8fa1883064} - no filepath Task: {d44ec756-b384-4c0f-87b1-d1ae05d07423} - no filepath Task: {d4857c6e-f516-456f-8838-b5827875480d} - no filepath Task: {d4875954-737a-4027-adef-bfabe12024a4} - no filepath Task: {d4a48e3c-5d0f-4a1a-a874-bce81e0ef35e} - no filepath Task: {d4b49245-b9b6-4e96-9a6d-efa196562f84} - no filepath Task: {d4e7ed30-4dac-4478-b2ea-0b6a51554523} - no filepath Task: {d51afdb7-82d4-49e2-9bcb-4c2fb2bf354f} - no filepath Task: {d5a21b8c-e6fd-4d54-a26a-29ba63c4fb29} - no filepath Task: {d5ac6fd0-bcb8-473e-9054-61a98edd8fdb} - no filepath Task: {d5c3a58e-7625-4607-b76a-e21db7bf4b5d} - no filepath Task: {d61c3415-48a0-484a-a614-e5a695a38728} - no filepath Task: {d6e06135-424c-46ff-9d94-c3700e1c9060} - no filepath Task: {d701f19d-d657-4e2e-8a00-c3b03beb1101} - no filepath Task: {d70dada5-ff7b-4d9f-889f-895190ce23cc} - no filepath Task: {d7a30aef-bbbb-4235-92bc-ae79c9698df5} - no filepath Task: {d7daf963-6871-4721-886a-355ac7578221} - no filepath Task: {d7ef4fb9-8d11-4f8a-bf06-dcaf8a3b6fbc} - no filepath Task: {d7f255bb-9fdb-43ec-8ee8-135cb63a67a1} - no filepath Task: {d8524660-b3a5-4171-aad6-40a5e78b96df} - no filepath Task: {d9496fe6-c32d-4e7e-9717-987943cbd2f5} - no filepath Task: {d958ed4f-aaa2-470c-869e-b8de6ad9feb4} - no filepath Task: {d961f2fe-8bf5-4aba-9a8d-67c864d3e0de} - no filepath Task: {d97a67bf-0bc4-40da-a7f2-e0b49b2ecf14} - no filepath Task: {d9c31603-0876-4ebc-bac0-401db74d2690} - no filepath Task: {d9e613a1-602d-4f0b-b9d4-3560414c03ae} - no filepath Task: {da057b33-0b8e-4543-b293-28b330ac6184} - no filepath Task: {da1f7861-eff9-46a9-8d84-bacf208b1873} - no filepath Task: {da25165c-0d21-4ccc-bac6-6606d7a207fa} - no filepath Task: {da4d22c1-f6b6-4c0b-9821-210de86cc3d6} - no filepath Task: {da5d7b1d-a85c-4de7-b86c-6629131eeab2} - no filepath Task: {daae75dd-ad6c-47d8-aa9a-265a7ab02688} - no filepath Task: {daf3ec48-4d17-4763-a54b-9b1b129df460} - no filepath Task: {db5ab9e8-b861-4943-a285-20756279b1fb} - no filepath Task: {dba04ad0-f571-4a5c-b139-f86e68d937e5} - no filepath Task: {dbdd15c7-2ec4-4ca5-adcb-c4297f0c5523} - no filepath Task: {dc054bc0-7f0c-4161-a9bd-cd9256ee9a46} - no filepath Task: {dc469693-dcbd-49db-89d8-70754ec96505} - no filepath Task: {dc553dc9-fde8-402d-a02e-2c56df5743f8} - no filepath Task: {dc744719-d430-4cf0-b908-36cd9029cf4e} - no filepath Task: {dcc8fdf3-236b-495b-9a2d-b2249fc8a571} - no filepath Task: {dcd120c5-5b8d-4361-b43f-8cec34c8713a} - no filepath Task: {dd01a7e1-cc78-4364-b6c9-6cebc035818b} - no filepath Task: {dd434ffe-e65b-4b24-a7e4-67b0cb1e3fa1} - no filepath Task: {dd589410-7213-4fa2-b692-235819b02f8c} - no filepath Task: {dd759cb8-a285-4ed0-bde2-ec2d6d1c16a2} - no filepath Task: {ddb1c67b-f5f3-4f18-bd40-0e06e48bf6ba} - no filepath Task: {ddc047ac-be27-47d3-badc-f38f0efb1dd4} - no filepath Task: {ddf674e7-a444-447d-9568-6d84892968a4} - no filepath Task: {de11a1e7-14fc-4c6f-bf99-520608184f08} - no filepath Task: {de19591e-8e47-4655-87c7-8c7672e9ed2c} - no filepath Task: {de5bb293-df84-4ba1-9efa-04ce85a89317} - no filepath Task: {de723d0c-dc94-41fa-ae03-474bbb323e2b} - no filepath Task: {dea2f40e-e7ee-450a-8636-f8d580be7006} - no filepath Task: {debd5359-16d3-45f7-9751-f4ef1b8ef22e} - no filepath Task: {DEC562E5-2E30-42EB-9AD1-F26A2FAFCF72} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {dee3c905-225c-412b-a8ec-6af660b86415} - no filepath Task: {deefcc37-d57a-4c51-9e91-cec0f83c859d} - no filepath Task: {df467425-f3e5-468d-aefb-1a8512779e57} - no filepath Task: {df8f0a69-4db8-4ab7-9ba6-0d97deb4d01b} - no filepath Task: {dfa6202b-dbbd-4ca8-a337-79b5f230b05b} - no filepath Task: {e0c4b114-469c-4cf9-97f8-95d4c8e1e3e4} - no filepath Task: {e0cb1b54-4d32-4d70-ba8d-913272885970} - no filepath Task: {e1047075-3615-4cef-8cfc-a3758086942c} - no filepath Task: {e14d6ef3-a1a3-4ba3-a6f2-c87f0b03d1fd} - no filepath Task: {e15aebd5-1918-4758-8cad-6cbba6b0103e} - no filepath Task: {e17c97bb-c47f-490d-b8ae-4fc6c3a6bfec} - no filepath Task: {e18b0d8c-1624-4844-8de6-5e21d4f42b23} - no filepath Task: {e1bbf9de-b4c7-4f98-a8eb-6235962b62ef} - no filepath Task: {e1d7022a-f730-4bd4-be0d-e2ff89dc3b74} - no filepath Task: {e2269b7c-ea28-4bdc-b537-c0f52d4d5162} - no filepath Task: {e2328a11-c8e6-4902-b980-15a68a71877c} - no filepath Task: {e318cecd-1010-485b-8a28-0e27caee07a5} - no filepath Task: {e32779f9-c03e-418c-a0db-fe84afd150de} - no filepath Task: {e3876576-179c-4811-9462-d415413f501d} - no filepath Task: {e3930c0f-e742-45d7-a488-95d0ffe0b617} - no filepath Task: {e3c7bc02-9622-4e56-95ff-7ee242b7512c} - no filepath Task: {e3d6ce72-ce2b-478c-b2de-9f299c8f2fba} - no filepath Task: {e3e9fb18-e981-4d37-995c-d62778cd1a29} - no filepath Task: {e438437d-23f1-4501-9b49-39c8986b3037} - no filepath Task: {e4d51f68-83fe-4d7a-9bda-f70cfc9dd79c} - no filepath Task: {e4de8de3-7c17-4e03-b5e4-c4895ba75ef1} - no filepath Task: {e57dc14e-b1c9-48ea-8a60-6a301622587b} - no filepath Task: {e5cdda61-3235-47bb-934a-b98965ccd7a2} - no filepath Task: {e711db71-fca2-4144-a762-e9c1bd2a9b33} - no filepath Task: {e719450b-e76d-4fb1-a8ea-ba79f66f72af} - no filepath Task: {e78a93f5-679f-4ab6-bc23-c48801cd678d} - no filepath Task: {e7a6aab1-c013-42f8-85e3-ddd18aad3bd0} - no filepath Task: {e7d09a76-cf47-47c1-abf9-3f50b895ed2a} - no filepath Task: {e7d36f5c-e0cd-4d16-b051-214804a51764} - no filepath Task: {e7fd593e-06f9-4e0c-a13d-de303ef1244e} - no filepath Task: {e83bb838-a247-433a-b8ca-39f3c6768512} - no filepath Task: {e8d23827-46df-477d-a5c8-7894c1585bb0} - no filepath Task: {e9341a60-6379-4a11-a01f-6a28729eefff} - no filepath Task: {e93a0933-569d-4f46-a88d-144c2a936db7} - no filepath Task: {e94fd3d4-dd70-4d34-82ed-aab12d5f7f10} - no filepath Task: {e95f55d0-438a-41a0-9043-99f746b64fe1} - no filepath Task: {e9d478a3-4b38-481f-bb18-9b2db1dfae96} - no filepath Task: {e9e46efa-ca18-46bb-a3f0-c6cb06530412} - no filepath Task: {ea1d8b5f-cfd2-4d3f-9b56-7ee80e8713bf} - no filepath Task: {ea2070de-3bd0-4137-a984-80c6a51f1f57} - no filepath Task: {ea2241bb-a0de-4042-95d2-fdd7875dbe30} - no filepath Task: {ea54ba17-6159-4cfb-9a91-f173d2395539} - no filepath Task: {ea6f1858-4f4b-4909-8597-514d0ddd1545} - no filepath Task: {ea8e0058-28f1-4858-a7f3-468f4f2a2f53} - no filepath Task: {eac1aeed-1778-4207-a882-49ea0112fe84} - no filepath Task: {ead197d8-0e08-440d-aec0-f5f140ed7017} - no filepath Task: {eb05a891-6f69-40e5-bdd1-5957b505523a} - no filepath Task: {eb8ca3f3-af6f-4a9e-9d5d-9b6a1276ada2} - no filepath Task: {ebbca66f-70f4-428d-bfd5-6faa1893332c} - no filepath Task: {ec0013ff-e0e1-441d-89a6-988f0c9cf32f} - no filepath Task: {ec496f3c-367f-4cf1-a5b1-87f4e27254bc} - no filepath Task: {ec79aca2-0b03-4829-b261-a17ee4140e2c} - no filepath Task: {ecb10101-6c10-4cda-b300-097d01344381} - no filepath Task: {ecdde908-c2f1-43e0-9c1f-53932c241777} - no filepath Task: {ed4bcb13-631a-4bd9-bb06-db3e6b508d3b} - no filepath Task: {ed4bd75a-018c-4313-a9e8-62b6f458682c} - no filepath Task: {ed6a3b55-9a84-42fc-830c-3a6edc9279d7} - no filepath Task: {edc155e2-56c9-494f-bcb6-c43e106b9a5e} - no filepath Task: {ee75195e-2a35-435d-9270-53a432f73328} - no filepath Task: {eeb86145-1440-4b37-b2ac-4831fae5ed60} - no filepath Task: {eef97062-7c75-436f-af3a-be9c50fc94c0} - no filepath Task: {ef33a5a3-3b4b-4b71-8742-543e96a9e66b} - no filepath Task: {ef62ad22-5a30-4a80-bb7f-a49ed38ce241} - no filepath Task: {ef70e64d-13b1-4fa7-b85e-b9a2b406b6ad} - no filepath Task: {efabb02f-a776-43be-aeb6-76b4902ca9ec} - no filepath Task: {EFCD30FF-8D4E-42BB-8C96-4BCFE9B68B9E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563184 2021-11-02] (Microsoft Corporation -> Microsoft Corporation) Task: {efd62488-7845-4563-9086-e63ab6eac38b} - no filepath Task: {efd9c3b2-8aac-4289-a5d9-567eb3e39b85} - no filepath Task: {f020bdc6-d7a3-4827-a4fa-8c91825e551a} - no filepath Task: {f0556feb-32b1-45b4-a674-3a05886aa980} - no filepath Task: {f09a7523-ffc5-4e95-ad11-aad16e673ecd} - no filepath Task: {f13d589c-94c0-4de5-834b-94af7c4ac416} - no filepath Task: {F142CB19-6969-4876-92C9-AD7A9A1E6157} - System32\Tasks\GPU Tweak II => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [13036128 2021-02-23] (ASUSTEK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {f170bd9c-7c1a-4560-80ec-7a5ec01b99b0} - no filepath Task: {f1c188fe-4236-4073-b184-d8d512bd422e} - no filepath Task: {f1fabea6-9a88-44bb-92e2-3df6057aa4fe} - no filepath Task: {f21bc594-91c0-4300-a4ee-d1841384dc52} - no filepath Task: {f3a6d2db-11ab-455b-86e9-cb6069da3850} - no filepath Task: {f3d3b711-ff6b-4775-862e-31ae8d46c31a} - no filepath Task: {f3da7e24-e8f1-4b6a-9493-12bbc3eaf88a} - no filepath Task: {f440cabb-22cb-44c9-80c9-474263ab1c7e} - no filepath Task: {f4a4747b-7898-448e-84e4-742ca374da86} - no filepath Task: {f4db5866-6e99-4137-9ebe-199d5dd1fe56} - no filepath Task: {f585d421-f4b2-45f9-a9f1-03150a688268} - no filepath Task: {f5cdaffa-5735-43e2-9df4-69ebd9d1bad6} - no filepath Task: {f5f3dc8e-1cbd-4a58-8d0f-acaaf01e4197} - no filepath Task: {f61992fa-7aea-484a-a163-07dd7094667d} - no filepath Task: {f647bd9a-ad4c-4949-b605-bfad6724bda4} - no filepath Task: {f69fbe80-2a9a-42ae-b6e2-44b7149baec9} - no filepath Task: {f6a419c0-9a20-4b4b-a43c-581560dbc6b1} - no filepath Task: {f6ffb92c-673f-4b82-925f-e2c2ae9e5dc4} - no filepath Task: {f73e80da-f10c-40cc-8ebb-784667c3a573} - no filepath Task: {f74f3e66-a8a1-4e0e-b446-76d63719084b} - no filepath Task: {f75a1a78-ac72-4a3f-ab72-1bb28bacb13f} - no filepath Task: {f78e6593-ec04-4c59-8d1d-34e047a7de3f} - no filepath Task: {f7a3b673-a07f-41bd-be22-f01e001072ae} - no filepath Task: {f7c77229-b49a-437b-b3bd-fedfa5e04c15} - no filepath Task: {f7ffaa86-a43a-41c0-84d9-52201281e2d9} - no filepath Task: {f8e3b078-5bab-47fb-a2ef-189c9e24b2e2} - no filepath Task: {f8e8f3f2-0e33-42d8-8946-11ed904e54aa} - no filepath Task: {f8edd3e0-673c-4bf0-b645-dfbf4609d54a} - no filepath Task: {f91a11e6-bba9-477d-89e8-5eb48f112c7f} - no filepath Task: {F98661A0-9C00-4CB3-93EC-AAD756C098FB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {f9b24a42-e640-4416-96e4-37638c8804e2} - no filepath Task: {f9c150fc-6abc-4f43-ad4b-2fa308c49d47} - no filepath Task: {f9d2682a-bca7-4640-a9f2-f4a02df62c80} - no filepath Task: {fa9dbd76-7b82-4520-b0f8-bcc40831b485} - no filepath Task: {faa670b7-c34d-4db9-8b3e-42590ce71ee5} - no filepath Task: {fafcf8a2-d3ed-49a8-b423-9f44c094326d} - no filepath Task: {fb266832-03ad-4288-87e8-2dea404791c5} - no filepath Task: {FB463365-6CEC-455D-893E-0C73F82D90CB} - System32\Tasks\Reg Organizer => C:\Program Files\Reg Organizer\RegOrganizer.exe -Minimize Task: {fb5434d0-2f8f-4ddb-8808-6bb06c73e2c0} - no filepath Task: {fba4506f-179f-43c5-8121-45f667378eb2} - no filepath Task: {fbe5a836-38c8-499a-9e26-7d1b1cba6761} - no filepath Task: {fc137d14-85de-48ea-b27b-14ed26f9e05e} - no filepath Task: {fd0ec4f0-ad68-4cce-8bc7-25fe0e24ea11} - no filepath Task: {fd99ac92-0578-410c-8aa4-a323ec1810b0} - no filepath Task: {fddb1636-fc02-4f5e-a0f3-a25208a32f21} - no filepath Task: {fe1a5d73-7994-4381-a80a-789dbfd7327c} - no filepath Task: {fe512dae-f674-4944-867c-aa44805b333e} - no filepath Task: {fe92f648-f9e3-4ff2-b371-61969befee33} - no filepath Task: {fed560d3-7ecf-4a28-9ae4-16ae92ec96b1} - no filepath Task: {ff7fc131-2bd3-414b-9475-32325a38dc65} - no filepath Task: {ffd7bc8a-6a42-47a0-a8da-61026005946c} - no filepath (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 89.101.251.228 89.101.251.229 Tcpip\..\Interfaces\{0ec94fb2-3f8f-4b0b-90d1-b61fb46324f2}: [DhcpNameServer] 10.0.0.243 Tcpip\..\Interfaces\{6e7751e3-1d2a-4a42-96e2-b765d51c4ff1}: [DhcpNameServer] 89.101.251.228 89.101.251.229 Tcpip\..\Interfaces\{9bbf4721-5e84-432a-a5e5-7ea609046676}: [DhcpNameServer] 89.101.251.228 89.101.251.229 Tcpip\..\Interfaces\{9f779410-bf0e-4b7b-8813-f29b67852488}: [DhcpNameServer] 89.101.251.228 89.101.251.229 Edge: ======= Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found] Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found] Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found] Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found] Edge DefaultProfile: Default Edge Profile: C:\Users\Naam\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-21] Edge Extension: (Google Translate) - C:\Users\Naam\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-24] Edge Extension: (Adblock for Youtube™) - C:\Users\Naam\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2021-10-06] Edge Extension: (Grammarly for Microsoft Edge) - C:\Users\Naam\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2021-11-13] Edge Extension: (Logitech Smooth Scrolling) - C:\Users\Naam\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2021-03-25] FireFox: ======== FF DefaultProfile: g50zfk06.default FF ProfilePath: C:\Users\Naam\AppData\Roaming\Mozilla\Firefox\Profiles\g50zfk06.default [2020-09-01] FF ProfilePath: C:\Users\Naam\AppData\Roaming\Mozilla\Firefox\Profiles\set7qd85.default-release [2021-10-06] FF Homepage: Mozilla\Firefox\Profiles\set7qd85.default-release -> hxxps://www.msn.com/?pc=W069&ocid=MSNHP_W069 FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2020-07-29] [Legacy] [not signed] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2021-04-09] [not signed] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-07-28] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-26] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-07-28] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-07-28] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-06-29] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-26] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default [2021-11-22] CHR Notifications: Default -> hxxps://autos.trovit.nl; hxxps://calendar.google.com; hxxps://coonwood.ru; hxxps://cosplaybattle.ru; hxxps://mp3-j.icu; hxxps://videoconverter.wondershare.com; hxxps://www.aliexpress.com; hxxps://www.autowereld.nl; hxxps://www.chess.com; hxxps://www.messenger.com; hxxps://www.netflix.com CHR HomePage: Default -> msn.com CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3321538&octid=EB_ORIGINAL_CTID&ISID=MECF93823-6DB8-489E-A332-704BE4852A88&SearchSource=55&CUI=&UM=5&UP=&SSPV=" CHR Extension: (Google Translate) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-14] CHR Extension: (Adobe Acrobat) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-11-16] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-11-05] CHR Extension: (AdBlock — best ad blocker) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-12] CHR Extension: (Google Keep - Notes and Lists) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2021-11-17] CHR Extension: (Grammarly for Chrome) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-11-13] CHR Extension: (Google Keep Chrome Extension) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-11-17] CHR Extension: (MSN Homepage, Bing Search & Trending Topics) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\medgkifjblgfagaamokjbagbgocccepj [2021-07-20] CHR Extension: (Chrome Web Store Payments) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Extension: (Bitwarden - Free Password Manager) - C:\Users\Naam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2021-10-28] CHR Profile: C:\Users\Naam\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-21] CHR HKU\S-1-5-21-499443066-2075648757-1779063864-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [medgkifjblgfagaamokjbagbgocccepj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-12-03] ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S4 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk, Inc -> Autodesk Inc.) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169032 2020-05-08] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-07-26] (Adobe Inc. -> Adobe Inc.) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2704872 2018-09-10] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-05-20] (Apple Inc. -> Apple Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.03\atkexComSvc.exe [449336 2021-01-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 ashbackuppb; c:\Program Files\Ashampoo\Ashampoo Backup Pro 16\bin\backupService-abpb.exe [34008 2021-11-11] (Ashampoo GmbH & Co. KG -> ) R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [313008 2020-10-21] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) R2 Chemtable Startup Checking; C:\Program Files\Reg Organizer\StartupCheckingService.exe [ ] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482672 2021-11-02] (Microsoft Corporation -> Microsoft Corporation) R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421536 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [80544 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [36792 2021-08-10] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [176568 2021-08-10] (Intel Corporation -> Intel) R2 EHApplicationHost; C:\Program Files\Grass Valley\EDIUS Hub\EH Application Host\EHApplicationHost.exe [55796208 2021-08-02] (GRASS VALLEY K.K. -> Grass Valley K.K.) R2 EHAssetStore; C:\Program Files\Grass Valley\EH Asset Store\EHAssetStore.exe [184544 2021-08-02] (GRASS VALLEY K.K. -> Grass Valley K.K.) R2 EHConfigStore; C:\Program Files\Grass Valley\EDIUS Hub\EH Config Store\EHConfigStore.exe [184544 2021-08-02] (GRASS VALLEY K.K. -> Grass Valley K.K.) R2 EHMessageService; C:\Program Files\Grass Valley\EDIUS Hub\EH Message Service\EHMessageService.exe [184544 2021-08-02] (GRASS VALLEY K.K. -> Grass Valley K.K.) R2 EHRenderService; C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe [184544 2021-08-02] (GRASS VALLEY K.K. -> Grass Valley K.K.) R2 FileMarkerApplyIconService; C:\Program Files (x86)\FileMarker.NET\FileMarkerService.exe [6245920 2019-07-19] (ArcticLine Software -> ArcticLine Software) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-10-11] (Huawei Technologies Co., Ltd. -> ) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11162688 2021-11-17] (Logitech Inc -> Logitech, Inc.) S4 mitsijm2016; C:\Program Files\Autodesk\Inventor 2016\Moldflow\bin\mitsijm.exe [968480 2014-09-30] (Autodesk, Inc -> Autodesk, Inc.) S2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic) R2 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [4490376 2020-09-18] (Logitech Inc -> Logitech) R2 PrivateInternetAccessService; C:\Program Files\Private Internet Access\pia-service.exe [1985536 2020-10-28] (London Trust Media Incorporated -> ) S3 PrivateInternetAccessWireguard; C:\Program Files\Private Internet Access\pia-wgservice.exe [4448632 2020-10-28] (London Trust Media Incorporated -> ) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14676264 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_d3ead92e8ba045de\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_d3ead92e8ba045de\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [43920 2020-12-16] (ASUSTeK Computer Inc. -> ) S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-11-22] (CPUID S.A.R.L.U. -> CPUID) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [35344 2020-11-02] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [124608 2020-07-10] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-09-15] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-09-15] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-09-15] (Logitech Inc -> Logitech) R3 tap-pia-0901; C:\WINDOWS\System32\drivers\tap-pia-0901.sys [39944 2020-01-27] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-05] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-11-22 11:44 - 2021-11-22 11:46 - 000000211 _____ C:\Users\Naam\Desktop\PC Helpforum Farbar Recovery Scan 22-11-2021.url 2021-11-22 11:43 - 2021-11-22 11:53 - 000000000 ____D C:\FRST 2021-11-22 11:35 - 2021-11-22 11:36 - 002311680 _____ (Farbar) C:\Users\Naam\Downloads\FRST64.exe 2021-11-21 23:21 - 2021-11-21 23:21 - 000002172 _____ C:\Users\Naam\Desktop\mbam-log-2021-11-21 (23-20-24).lnk 2021-11-21 23:13 - 2021-11-21 23:13 - 000002466 _____ C:\Users\Naam\Desktop\Anti-Malware LOG 21-11-2021.txt 2021-11-21 23:06 - 2021-11-21 23:06 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Malwarebytes 2021-11-21 23:05 - 2021-11-21 23:05 - 000001078 _____ C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk 2021-11-21 23:05 - 2021-11-21 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware 2021-11-21 23:05 - 2021-11-21 23:05 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-11-21 23:05 - 2021-11-21 23:05 - 000000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2021-11-21 23:05 - 2010-04-29 15:39 - 000038224 _____ (Malwarebytes Corporation) C:\WINDOWS\SysWOW64\Drivers\mbamswissarmy.sys 2021-11-21 23:05 - 2010-04-29 15:39 - 000024664 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2021-11-21 19:14 - 2021-11-21 19:14 - 000000000 ____D C:\WINDOWS\Panther 2021-11-21 16:52 - 2021-11-21 16:52 - 008226104 _____ (Flagship Industries, Inc.) C:\Users\Naam\Downloads\ventrilopro-411-windows-x64.exe 2021-11-21 16:52 - 2021-11-21 16:52 - 000001933 _____ C:\Users\Public\Desktop\VentriloPro.lnk 2021-11-21 16:25 - 2021-11-21 16:25 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel(R) Memory and Storage Tool 2021-11-21 16:24 - 2021-11-21 16:24 - 000000000 ____D C:\Users\Naam\Downloads\Intel_MAS_GUI_Tool_Win_1.11 2021-11-21 16:23 - 2021-11-21 16:23 - 127156472 _____ C:\Users\Naam\Downloads\Intel_MAS_GUI_Tool_Win_1.11.zip 2021-11-21 15:28 - 2021-11-21 15:28 - 000000000 ____D C:\Users\Naam\Downloads\incomplete 2021-11-21 15:28 - 2021-11-21 15:28 - 000000000 ____D C:\Users\Naam\AppData\Local\sabnzbd 2021-11-20 11:18 - 2021-11-20 11:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\DelayedItemsByChemtableSoftware 2021-11-19 19:59 - 2021-11-19 19:59 - 000000349 _____ C:\Users\Naam\Desktop\Deur Spion Bol.com.url 2021-11-19 18:12 - 2021-11-19 18:12 - 000000000 ___HD C:\$WinREAgent 2021-11-17 20:22 - 2021-11-17 20:22 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2021-11-17 20:17 - 2021-11-17 20:17 - 084547416 _____ (Aslain ) C:\Users\Naam\Downloads\Aslains_WoT_Modpack_Installer_v.1.14.1.3_04.exe 2021-11-17 20:15 - 2021-11-17 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2021-11-17 20:15 - 2021-11-17 20:15 - 000000000 ____D C:\Program Files\LGHUB 2021-11-17 14:46 - 2021-11-18 12:19 - 000000000 ____D C:\Users\_ashbackuppb_.DESKTOP-LFA65I3.000 2021-11-17 14:46 - 2021-11-17 14:46 - 000000155 _____ C:\Users\Naam\Desktop\ANWB .url 2021-11-17 14:46 - 2021-11-17 14:46 - 000000020 ___SH C:\Users\_ashbackuppb_.DESKTOP-LFA65I3.000\ntuser.ini 2021-11-17 14:46 - 2021-11-17 14:46 - 000000000 ____D C:\Users\_ashbackuppb_.DESKTOP-LFA65I3.000\AppData\Local\Ashampoo 2021-11-17 14:46 - 2021-06-05 13:04 - 000001281 _____ C:\Users\_ashbackuppb_.DESKTOP-LFA65I3.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2021-11-17 14:46 - 2021-06-05 13:04 - 000000407 _____ C:\Users\_ashbackuppb_.DESKTOP-LFA65I3.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2021-11-17 14:46 - 2020-07-28 13:31 - 000000000 ____D C:\Users\_ashbackuppb_.DESKTOP-LFA65I3.000\AppData\Roaming\Macromedia 2021-11-17 10:53 - 2021-11-17 10:53 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7bf66e8efa6ae 2021-11-16 23:03 - 2021-11-16 23:03 - 000000118 _____ C:\Users\Naam\Desktop\The Sons of the dessert.url 2021-11-14 22:10 - 2021-11-14 22:12 - 000000191 _____ C:\Users\Naam\Desktop\Compare Tier 8 Big Ones 14-11-2021.url 2021-11-13 18:16 - 2021-11-14 18:01 - 009680518 _____ C:\Users\Naam\Downloads\513851__x3nus__crash-site.flac 2021-11-13 18:16 - 2021-11-13 18:16 - 000273172 _____ C:\Users\Naam\Downloads\513851__x3nus__crash-site.flac.ewc2 2021-11-13 18:16 - 2021-11-13 18:10 - 000112756 _____ C:\Users\Naam\Downloads\519128__wi-photos__winter-wind.mp3.ewc2 2021-11-13 18:16 - 2021-11-13 18:08 - 000189684 _____ C:\Users\Naam\Downloads\574552__trp__winter-storm-wind-lashing-snow-distilery-190212.flac.ewc2 2021-11-13 18:16 - 2021-11-13 18:06 - 000023988 _____ C:\Users\Naam\Downloads\453168__florianreichelt__footsteps-in-fresh-snow.wav.ewc2 2021-11-13 18:08 - 2021-11-14 18:01 - 023119057 _____ C:\Users\Naam\Downloads\Winter-storm-wind-lashing-snow-distilery.flac 2021-11-13 18:06 - 2021-11-14 18:01 - 003072062 _____ C:\Users\Naam\Downloads\Footsteps-in-fresh-snow.wav 2021-11-12 17:58 - 2021-11-12 17:58 - 000000168 _____ C:\Users\Naam\Desktop\Mijn Nationale NL.url 2021-11-11 20:37 - 2021-11-11 20:37 - 084549014 _____ (Aslain ) C:\Users\Naam\Downloads\Aslains_WoT_Modpack_Installer_v.1.14.1.3_03.exe 2021-11-10 18:30 - 2021-11-10 18:30 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe 2021-11-10 18:30 - 2021-11-10 18:30 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-10 18:30 - 2021-11-10 18:30 - 000014756 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-11-08 09:24 - 2021-11-10 18:34 - 000000000 ____D C:\Program Files\dotnet 2021-11-08 08:53 - 2021-11-08 08:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HandBrake 2021-11-07 18:31 - 2021-11-08 09:37 - 000000000 ____D C:\Program Files\HandBrake 2021-11-07 18:31 - 2021-11-08 09:36 - 000000000 ____D C:\Users\Naam\AppData\Roaming\HandBrake 2021-11-07 10:07 - 2021-11-07 10:07 - 000000193 _____ C:\Users\Naam\Desktop\Edius Export Problem.url 2021-11-06 20:28 - 2021-11-06 20:29 - 000000225 _____ C:\Users\Naam\Desktop\Microsoft Comunity Vraag over OneNote.url 2021-11-06 12:48 - 2021-11-06 12:48 - 000000195 _____ C:\Users\Naam\Desktop\Microsoft Forum OneNote.url 2021-11-06 09:54 - 2021-11-06 09:54 - 000000000 ____D C:\Users\Naam\AppData\Local\Package Cache 2021-11-06 09:54 - 2021-11-06 09:54 - 000000000 ____D C:\Users\Naam\AppData\Local\Grammarly 2021-11-06 09:40 - 2021-11-06 09:40 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Grammarly Editor 2021-11-05 19:31 - 2021-11-05 19:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2021-11-05 18:12 - 2021-11-05 18:12 - 000002103 _____ C:\Users\Public\Desktop\EDIUS X.lnk 2021-11-05 16:37 - 2021-11-05 16:37 - 000000000 ____D C:\Users\Naam\AppData\Roaming\PowerISO 2021-11-03 14:10 - 2021-11-03 14:10 - 000000000 ____D C:\Users\Naam\AppData\Local\OneDrive 2021-11-03 08:56 - 2021-11-03 08:56 - 000000000 ____D C:\Users\Naam\Documents\OneNote Notebooks 2021-11-02 09:35 - 2021-11-02 09:35 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiSuite 2021-11-02 09:35 - 2021-11-02 09:35 - 000000000 ____D C:\Program Files (x86)\HiSuite 2021-11-02 09:23 - 2021-11-02 09:23 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\ChemTable Software 2021-11-02 09:18 - 2021-11-02 09:18 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Intel 2021-11-02 09:18 - 2021-11-02 09:18 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\CEF 2021-11-02 09:17 - 2021-11-02 09:18 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NVIDIA Corporation 2021-11-02 09:16 - 2021-11-02 09:16 - 000000000 __RSD C:\Users\defaultuser100000\Documents\McAfee Vaults 2021-11-02 09:16 - 2021-11-02 09:16 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NhNotifSys 2021-11-02 09:16 - 2021-11-02 09:16 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\McAfee File Lock 2021-11-02 09:15 - 2021-11-02 09:22 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\NVIDIA 2021-11-02 09:15 - 2021-11-02 09:17 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\Packages 2021-11-02 09:15 - 2021-11-02 09:15 - 000000020 ___SH C:\Users\defaultuser100000\ntuser.ini 2021-11-02 09:15 - 2021-11-02 09:15 - 000000000 ____D C:\Users\defaultuser100000\AppData\Local\ConnectedDevicesPlatform 2021-11-02 09:15 - 2021-11-02 09:15 - 000000000 ____D C:\Users\defaultuser100000 2021-11-02 09:15 - 2021-06-05 13:04 - 000001281 _____ C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk 2021-11-02 09:15 - 2021-06-05 13:04 - 000000407 _____ C:\Users\defaultuser100000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk 2021-11-02 09:15 - 2020-07-28 13:31 - 000000000 ____D C:\Users\defaultuser100000\AppData\Roaming\Macromedia 2021-11-01 08:39 - 2021-11-01 08:39 - 000000000 ____D C:\Program Files (x86)\OBS Studio - FTL 2021-11-01 08:28 - 2021-11-01 08:28 - 000000000 ____D C:\Users\Naam\AppData\Local\CEF 2021-11-01 08:27 - 2021-11-01 08:27 - 000000000 ____D C:\Users\Naam\AppData\Local\Comms 2021-10-30 22:57 - 2021-10-30 22:57 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification 2021-10-30 09:49 - 2020-02-16 12:16 - 000000055 _____ C:\Open Downloads.bat 2021-10-30 09:42 - 2021-10-30 09:45 - 000000000 ____D C:\Batch files JAMO 2021-10-28 13:17 - 2021-10-28 13:17 - 000000000 ____D C:\Program Files (x86)\Ashampoo 2021-10-26 14:33 - 2021-10-26 14:33 - 000000000 ____D C:\Users\Naam\AppData\Local\SplitMovie 2021-10-26 14:06 - 2021-10-26 14:06 - 000000000 ____D C:\Users\Naam\AppData\Local\MediaPlayer 2021-10-26 13:49 - 2021-10-26 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2021-10-26 13:49 - 2021-10-26 13:49 - 000000000 ____D C:\Program Files\VideoLAN 2021-10-26 13:40 - 2021-11-21 15:59 - 000000000 ____D C:\Users\Naam\AppData\Roaming\vlc 2021-10-23 10:20 - 2021-10-23 10:20 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll 2021-10-23 10:20 - 2021-10-23 10:20 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll 2021-10-23 10:20 - 2021-10-23 10:20 - 000208896 _____ C:\WINDOWS\system32\IHDS.dll 2021-10-23 10:20 - 2021-10-23 10:20 - 000167936 _____ C:\WINDOWS\system32\TpmTool.exe 2021-10-23 10:20 - 2021-10-23 10:20 - 000121344 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-10-23 10:20 - 2021-10-23 10:20 - 000024576 _____ C:\WINDOWS\system32\nrtapi.dll 2021-10-23 10:20 - 2021-10-23 10:20 - 000006656 _____ C:\WINDOWS\SysWOW64\nrtapi.dll ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-11-22 11:33 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-22 11:33 - 2021-02-23 09:58 - 000000000 ____D C:\ProgramData\NVIDIA 2021-11-22 11:20 - 2020-07-28 13:31 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-22 11:19 - 2020-09-25 13:13 - 000000000 ____D C:\Users\Naam\AppData\Local\LGHUB 2021-11-22 10:46 - 2020-08-03 14:50 - 000000000 ____D C:\Users\Naam\AppData\Local\Ashampoo Backup PB 2021-11-22 10:43 - 2021-10-12 13:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-11-22 10:42 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-11-22 10:42 - 2020-08-05 10:09 - 000000000 ____D C:\Users\Naam\AppData\Local\CrashDumps 2021-11-22 10:41 - 2021-10-12 13:47 - 000003112 _____ C:\WINDOWS\system32\Tasks\NahimicTask32 2021-11-22 10:41 - 2021-10-12 13:47 - 000003112 _____ C:\WINDOWS\system32\Tasks\GPU Tweak II 2021-11-22 10:41 - 2021-10-12 13:47 - 000003092 _____ C:\WINDOWS\system32\Tasks\NahimicTask64 2021-11-22 10:41 - 2021-10-12 13:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-11-22 10:41 - 2021-07-01 17:15 - 000000000 ____D C:\Program Files\TeamViewer 2021-11-22 10:41 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-11-22 10:41 - 2020-09-25 13:13 - 000000000 ____D C:\Users\Naam\AppData\Roaming\LGHUB 2021-11-22 10:41 - 2020-07-27 15:54 - 000012288 ___SH C:\DumpStack.log.tmp 2021-11-21 23:47 - 2021-06-05 13:01 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-11-21 23:12 - 2021-03-01 09:55 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2021-11-21 19:18 - 2020-07-28 18:18 - 000000000 ____D C:\Users\Naam\AppData\Local\D3DSCache 2021-11-21 19:16 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF 2021-11-21 19:15 - 2021-02-22 11:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-11-21 16:54 - 2021-02-17 12:51 - 000000000 ____D C:\Users\Naam\AppData\Local\DataMigration 2021-11-21 16:53 - 2020-09-09 14:29 - 000000000 ____D C:\Users\Naam\Documents\VentriloData 2021-11-21 16:52 - 2020-09-09 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VentriloPro 2021-11-21 16:52 - 2020-09-09 14:25 - 000000000 ____D C:\Program Files\VentriloPro 2021-11-21 16:25 - 2021-02-13 13:30 - 000000000 ____D C:\Program Files\Intel 2021-11-21 16:11 - 2020-07-28 13:28 - 000000000 ___RD C:\Users\Naam\OneDrive 2021-11-21 15:58 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-21 15:58 - 2020-07-28 13:26 - 000000000 ____D C:\Users\Naam\AppData\Local\Packages 2021-11-21 11:00 - 2020-08-28 13:10 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-20 13:25 - 2021-03-04 17:14 - 000000000 ____D C:\Users\Naam\AppData\Roaming\WhatsApp 2021-11-19 10:44 - 2020-07-28 13:31 - 000002321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-11-19 10:38 - 2020-09-25 13:12 - 000000000 ____D C:\ProgramData\LGHUB 2021-11-18 19:00 - 2021-09-02 09:09 - 000000000 ____D C:\Users\Naam\AppData\Local\WhatsApp 2021-11-18 12:19 - 2021-10-12 13:30 - 000000000 ____D C:\Users\Naam 2021-11-17 20:22 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-11-17 20:22 - 2020-07-28 17:50 - 000000000 ____D C:\Program Files\Microsoft Office 2021-11-17 14:45 - 2021-10-13 20:02 - 000000000 ____D C:\Users\_ashbackuppb_ 2021-11-17 14:45 - 2020-08-03 14:50 - 000000000 ____D C:\ProgramData\Ashampoo 2021-11-17 13:37 - 2020-07-29 17:20 - 000000000 ____D C:\ProgramData\FLEXnet 2021-11-17 10:53 - 2021-10-12 13:47 - 000003674 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-16 12:08 - 2020-07-28 13:29 - 000000000 ____D C:\Users\Naam\AppData\Local\PlaceholderTileLogoFolder 2021-11-13 17:58 - 2021-03-03 18:16 - 000000000 ____D C:\VIDEO MONTAGE 2021-11-12 23:19 - 2021-10-12 13:47 - 001799410 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-11-12 23:19 - 2021-06-05 18:56 - 000800476 _____ C:\WINDOWS\system32\perfh013.dat 2021-11-12 23:19 - 2021-06-05 18:56 - 000159126 _____ C:\WINDOWS\system32\perfc013.dat 2021-11-12 19:21 - 2020-10-28 13:20 - 000000000 ____D C:\Users\Naam\AppData\Roaming\dvdcss 2021-11-10 18:34 - 2020-07-28 23:22 - 000000000 ____D C:\ProgramData\Package Cache 2021-11-10 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-11-10 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-10 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources 2021-11-10 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-11-10 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-11-10 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-11-10 18:31 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-11-10 18:31 - 2020-07-28 13:29 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-11-10 18:31 - 2020-07-28 13:29 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-11-09 21:44 - 2021-03-15 16:03 - 000000000 ____D C:\Users\Naam\AppData\Local\GHISLER 2021-11-08 12:16 - 2021-05-30 13:25 - 000000000 ____D C:\Users\Naam\AppData\Roaming\ColorCop 2021-11-06 10:17 - 2020-07-29 09:04 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Grammarly 2021-11-06 09:40 - 2020-07-29 10:21 - 000000000 ____D C:\Users\Naam\AppData\Local\GrammarlyForWindows 2021-11-06 09:40 - 2020-07-29 09:04 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Grammarly 2021-11-05 19:29 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-11-05 18:13 - 2020-07-29 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grass Valley 2021-11-05 18:13 - 2020-07-29 17:20 - 000000000 ____D C:\Program Files\Grass Valley 2021-11-05 16:22 - 2020-07-27 15:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-11-05 16:11 - 2020-07-28 13:29 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2021-11-05 16:10 - 2021-10-12 13:30 - 000000000 ____D C:\Users\_ashbackuppb_.DESKTOP-LFA65I3 2021-11-03 22:12 - 2020-08-17 10:51 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Scoretec 2021-11-02 21:51 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-11-02 09:36 - 2020-08-01 17:04 - 000000000 ____D C:\Users\Naam\AppData\Local\HiSuite 2021-11-02 09:15 - 2020-07-28 13:26 - 000000000 ____D C:\Users\Naam\AppData\Local\ConnectedDevicesPlatform 2021-11-01 12:53 - 2020-10-31 14:01 - 000000000 ____D C:\Users\Naam\AppData\Local\ElevatedDiagnostics 2021-11-01 08:39 - 2021-06-15 08:27 - 000001145 _____ C:\Users\Public\Desktop\Stream Deck.lnk 2021-11-01 08:31 - 2021-10-12 18:30 - 000000000 ____D C:\Users\Naam\AppData\Local\D3DSCache 2021-11-01 08:30 - 2021-10-12 18:30 - 000000000 __RSD C:\Users\Naam\Documents\McAfee Vaults 2021-11-01 08:29 - 2021-10-12 18:30 - 000000000 ____D C:\Users\Naam\AppData\Local\CrashDumps 2021-11-01 08:28 - 2021-10-12 18:29 - 000000000 ____D C:\Users\Naam\AppData\Local\Packages 2021-11-01 08:28 - 2021-10-12 18:29 - 000000000 ____D C:\Users\Naam\AppData\Local\NVIDIA Corporation 2021-11-01 08:27 - 2021-10-12 18:31 - 000002376 _____ C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-10-30 22:55 - 2021-10-12 18:29 - 000000000 ____D C:\Users\Naam 2021-10-30 22:55 - 2021-10-12 13:30 - 000000000 ____D C:\Users\James 2021-10-30 22:55 - 2021-06-15 08:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato 2021-10-30 22:55 - 2021-03-15 16:02 - 000000000 ____D C:\Users\Naam\AppData\Roaming\GHISLER 2021-10-30 22:55 - 2020-07-31 09:59 - 000000000 ____D C:\ProgramData\A-Volute 2021-10-30 22:55 - 2020-07-30 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reg Organizer 2021-10-30 22:55 - 2020-07-29 06:41 - 000000000 ____D C:\Users\Naam\AppData\Roaming\IrfanView 2021-10-30 22:48 - 2021-10-15 20:45 - 000000000 ____D C:\Program Files\Elgato 2021-10-30 22:48 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\registration 2021-10-30 22:48 - 2020-08-03 14:50 - 000000000 ____D C:\ProgramData\Ashampoo Backup PB 2021-10-30 11:27 - 2020-11-12 17:50 - 000000000 ____D C:\Users\Naam\AppData\Roaming\NewBlueFX 2021-10-29 12:02 - 2020-07-28 23:22 - 000000000 ____D C:\Users\Naam\AppData\Roaming\TS3Client 2021-10-29 12:01 - 2021-08-11 08:35 - 000000000 ____D C:\Program Files\WinRAR 2021-10-29 09:27 - 2021-08-11 08:35 - 000000000 ____D C:\Users\Naam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-10-29 09:27 - 2021-08-11 08:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-10-28 13:17 - 2021-10-13 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2021-10-27 20:35 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-10-27 15:41 - 2020-09-08 08:26 - 000000000 ____D C:\Users\Naam\AppData\Roaming\obs-studio 2021-10-27 15:20 - 2020-07-30 17:50 - 000000000 ____D C:\Program Files\Reg Organizer 2021-10-26 14:33 - 2021-09-28 17:46 - 000000000 ____D C:\Users\Naam\.fontconfig 2021-10-25 21:43 - 2021-02-22 11:49 - 000508240 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2021-10-25 21:43 - 2021-02-22 11:49 - 000500048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-10-23 10:30 - 2021-10-12 13:44 - 000981168 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-10-23 10:29 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-10-23 10:29 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-10-23 10:29 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing ==================== Files in the root of some directories ======== 2020-07-28 19:23 - 2020-07-28 19:23 - 000000058 _____ () C:\Users\Naam\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat 2021-04-26 20:35 - 2021-10-14 10:09 - 001065984 _____ () C:\Users\Naam\AppData\Local\file__0.localstorage 2020-08-01 19:31 - 2020-08-01 19:31 - 000007605 _____ () C:\Users\Naam\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) ==================== End of FRST.txt ========================