Chromatism

Members

View Profile See their activity

Posts
6
Joined
May 31, 2016
Last visited
June 7, 2016

Content Type

All Activity

Events

Profiles

Forums

Topics
Posts

Everything posted by Chromatism

"Name Not Available" in volume mixer. Microphones not working.

Chromatism replied to Chromatism's topic in Resolved Malware Removal Logs

Everything seems to be working, though Name Not Available is still appearing in my volume mixer. I'll see if there's an update available and let you know, but otherwise thank you for taking the time. I very much appreciate it.
- June 7, 2016
- 12 replies
"Name Not Available" in volume mixer. Microphones not working.

Chromatism replied to Chromatism's topic in Resolved Malware Removal Logs

Apologies. Something went a bit screwy there and I missed the FRST.txt. Posted below FRST.txt
- June 7, 2016
- 12 replies
"Name Not Available" in volume mixer. Microphones not working.

Chromatism replied to Chromatism's topic in Resolved Malware Removal Logs

Not to worry at all. I'm thankful for the help ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.0.6 (04.25.2016) Operating System: Windows 10 Pro x64 Ran by Chrome (Administrator) on Sat 06/04/2016 at 11:23:08.39 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 11 Successfully deleted: C:\ProgramData\mntemp (File) Successfully deleted: C:\Users\Chrome\AppData\Local\crashrpt (Folder) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage (File) Successfully deleted: C:\Users\Chrome\AppData\Local\ysearchutil (Folder) Successfully deleted: C:\WINDOWS\wininit.ini (File) Successfully deleted: C:\WINDOWS\SysWOW64\REN7FFF.tmp (File) Registry: 1 Successfully deleted: HKLM\Software\Google\Chrome\Extensions\npdicihegicnhaangkdmcgbjceoemeoo (Registry Key) ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Sat 06/04/2016 at 11:24:07.17 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # AdwCleaner v5.119 - Logfile created 04/06/2016 at 11:26:56 # Updated 30/05/2016 by Xplode # Database : 2016-06-03.1 [Server] # Operating system : Windows 10 Pro (X64) # Username : Chrome - CHROME-PC # Running from : C:\Users\Chrome\Desktop\AdwCleaner.exe # Option : Scan # Support : http://toolslib.net/forum ***** [ Services ] ***** Service Found : Updater ***** [ Folders ] ***** ***** [ Files ] ***** File Found : C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_zvsuhljiha-a.akamaihd.net_0.localstorage File Found : C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_zvsuhljiha-a.akamaihd.net_0.localstorage-journal ***** [ DLL ] ***** ***** [ WMI ] ***** ***** [ Shortcuts ] ***** ***** [ Scheduled tasks ] ***** ***** [ Registry ] ***** ***** [ Web browsers ] ***** [C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : npdicihegicnhaangkdmcgbjceoemeoo ************************* C:\AdwCleaner\AdwCleaner[S1].txt - [794 bytes] - [04/06/2016 11:26:23] C:\AdwCleaner\AdwCleaner[S2].txt - [1135 bytes] - [04/06/2016 11:26:56] ########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1208 bytes] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.0.6 (04.25.2016) Operating System: Windows 10 Pro x64 Ran by Chrome (Administrator) on Sat 06/04/2016 at 11:23:08.39 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 11 Successfully deleted: C:\ProgramData\mntemp (File) Successfully deleted: C:\Users\Chrome\AppData\Local\crashrpt (Folder) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal (File) Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage (File) Successfully deleted: C:\Users\Chrome\AppData\Local\ysearchutil (Folder) Successfully deleted: C:\WINDOWS\wininit.ini (File) Successfully deleted: C:\WINDOWS\SysWOW64\REN7FFF.tmp (File) Registry: 1 Successfully deleted: HKLM\Software\Google\Chrome\Extensions\npdicihegicnhaangkdmcgbjceoemeoo (Registry Key) ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Sat 06/04/2016 at 11:24:07.17 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Additional scan result of Farbar Recovery Scan Tool (x64) Version:06-06-2016 Ran by Chrome (2016-06-07 13:37:29) Running from C:\Users\Chrome\Desktop\Removal\FARBAR Windows 10 Pro Version 1511 (X64) (2016-01-06 04:53:36) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3534360900-3526396429-430733197-500 - Administrator - Disabled) Chrome (S-1-5-21-3534360900-3526396429-430733197-1000 - Administrator - Enabled) => C:\Users\Chrome DefaultAccount (S-1-5-21-3534360900-3526396429-430733197-503 - Limited - Disabled) Guest (S-1-5-21-3534360900-3526396429-430733197-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.2.0 - Adobe Systems Incorporated) Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version: - Triumph Studios) Amazon Cloud Drive (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Cloud Drive) (Version: 3.3.1.32 - Amazon.com, Inc.) Amazon Music (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Amazon Music) (Version: 4.3.1.1354 - Amazon Services LLC) Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive) Ashes of the Singularity (HKLM-x32\...\Steam App 228880) (Version: - Oxide Games) Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft) Assassin's Creed Rogue (HKLM\...\Steam App 311560) (Version: - Ubisoft Sofia) ASUS Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.1.170 - ASUS) ASUS Xonar DGX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version: - ASUSTeK Computer Inc.) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version: - WB Games Montreal) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Black Desert Character Creator (HKLM-x32\...\{83AC6E37-6497-4A01-BB5D-AA845BA08832}) (Version: 1.0.0.2 - Daum Games EU) Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU) Blood Bowl 2 (HKLM-x32\...\Steam App 236690) (Version: - Cyanide Studios) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Borderless Gaming (HKLM\...\Steam App 388080) (Version: - AndrewMD5) Broforce (HKLM-x32\...\Steam App 274190) (Version: - Free Lives) CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - ) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.) Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.) Catacomb Kids (HKLM-x32\...\Steam App 315840) (Version: - FourbitFriday) Chronicle: RuneScape Legends (HKLM\...\Steam App 205890) (Version: - Jagex) Corsair Gaming Headset Software (HKLM-x32\...\{88ADDCAA-6591-4D41-A7F1-2F38B7B049BB}) (Version: 2.0.37 - Corsair) CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version: - Paradox Development Studio) Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DARK SOULS III (HKLM\...\Steam App 374320) (Version: - FromSoftware, Inc.) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Discord) (Version: 0.0.291 - Hammer & Chisel, Inc.) Dishonored (HKLM\...\Steam App 205100) (Version: - Arkane Studios) Distant Worlds: Universe (HKLM\...\Steam App 261470) (Version: - Code Force) Dragon's Dogma: Dark Arisen (HKLM-x32\...\Steam App 367500) (Version: - Capcom) Duck Game (HKLM-x32\...\Steam App 312530) (Version: - Landon Podbielski) DuelystLauncher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\launcher) (Version: 0.0.4 - Counterplay Games Inc.) Dungeons & Dragons: Chronicles of Mystara (HKLM-x32\...\Steam App 229480) (Version: - Iron Galaxy Studios) Dxtory version 2.0.134 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.134 - ExKode Co. Ltd.) Enter the Gungeon (HKLM\...\Steam App 311690) (Version: - Dodge Roll) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version: - Lars Hederer) Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version: - Paradox Development Studio) Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC) FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.) FortressCraft Evolved (HKLM\...\Steam App 254200) (Version: - ProjectorGames) Freedom Planet (HKLM-x32\...\Steam App 248310) (Version: - GalaxyTrail) Frozen Synapse (HKLM-x32\...\Steam App 98200) (Version: - Mode 7) FTL - Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com) GameRanger (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\GameRanger) (Version: - GameRanger Technologies) GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Hand of Fate (HKLM\...\Steam App 266510) (Version: - Defiant Development) HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - ) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HELLDIVERS™ (HKLM-x32\...\Steam App 394510) (Version: - Arrowhead Game Studios) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Hotline Miami 2: Wrong Number (HKLM\...\Steam App 274170) (Version: - Dennaton Games) HOTSLogsUploader (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\99a83d131490dc73) (Version: 1.0.0.12 - HOTSLogsUploader) Intel(R) Chipset Device Software (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation) Invisible, Inc. (HKLM-x32\...\Steam App 243970) (Version: - Klei Entertainment) Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Keep Talking and Nobody Explodes (HKLM-x32\...\Steam App 341800) (Version: - Steel Crate Games) Kerbal Space Program (HKLM-x32\...\{ED501254-06B8-4883-B7F3-4799C9EDD288}_is1) (Version: 1.0 - Squad) K-Lite Codec Pack 12.1.0 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP) Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - ) Lame ACM MP3 Codec (HKLM-x32\...\LameACM) (Version: - ) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Logitech Gaming Software 8.82 (HKLM\...\Logitech Gaming Software) (Version: 8.82.151 - Logitech Inc.) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) MicMute 0.1.8.4 (HKLM-x32\...\{A1FDC62A-32EC-4AA3-BBB6-80A7977CCAE2}_is1) (Version: 0.1.8.4 - Mist Poryvaev) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD) Mumble 1.2.10 (HKLM-x32\...\{63243F5C-E941-4461-A4B0-2689A9A3BF13}) (Version: 1.2.10 - Thorvald Natvig) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team) Nuclear Throne (HKLM-x32\...\Steam App 242680) (Version: - Vlambeer) NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation) NVIDIA 3D Vision Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation) NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation) NVIDIA Graphics Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation) NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.2 - OBS Project) Offworld Trading Company (HKLM\...\Steam App 271240) (Version: - Mohawk Games) One Finger Death Punch (HKLM-x32\...\Steam App 264200) (Version: - Silver Dollar Games) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - ) PlanetSide 2 (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\DG0-PlanetSide 2) (Version: - Sony Online Entertainment) Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software) Project Zomboid (HKLM-x32\...\Steam App 108600) (Version: - The Indie Stone) Project Zomboid Dedicated Server (HKLM-x32\...\Steam App 380870) (Version: - ) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games) ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions) Sentinels of the Multiverse (HKLM\...\Steam App 337150) (Version: - Handelabra Games Inc.) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Shovel Knight (HKLM-x32\...\Steam App 250760) (Version: - Yacht Club Games) Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.) Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.001 - ASUSTeKcomputer.Inc) Space Engineers (HKLM-x32\...\Steam App 244850) (Version: - Keen Software House) Spec Ops: The Line (HKLM\...\Steam App 50300) (Version: - Yager Development) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.) Squad (HKLM-x32\...\Steam App 393380) (Version: - Offworld Industries) Star Citizen Launcher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Star Citizen Launcher) (Version: 00.01.00.00 - Cloud Imperium Games) Star Realms (HKLM\...\Steam App 438140) (Version: - White Wizard Games) Stardew Valley (HKLM-x32\...\Steam App 413150) (Version: - ConcernedApe) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stellaris (HKLM\...\Steam App 281990) (Version: - Paradox Development Studio) Stronghold HD (HKLM-x32\...\1207658712_is1) (Version: 2.3.0.5 - GOG.com) Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version: - Berserk Games) TeamSpeak 3 Client (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Culling (HKLM-x32\...\Steam App 437220) (Version: - Xaviant) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.12.1.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.12.1.0 - GOG.com) Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version: - Creative Assembly) Undertale (HKLM-x32\...\Steam App 391540) (Version: - tobyfox) Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft) Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 16.1.0 - UMEZAWA Takeshi) Vagante (HKLM-x32\...\Steam App 323220) (Version: - Nuke Nine) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) WS Launcher (HKLM-x32\...\WS Launcher 30.0.4.3) (Version: 30.0.4.3 - WS.ARMA.SU) WS Launcher (x32 Version: 30.0.4.3 - WS.ARMA.SU) Hidden x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version: - ) XCom Long War EW Mod version 1.0 (HKLM-x32\...\{860C3266-65B9-4BF2-937A-1778483046B5}_is1) (Version: 1.0 - JohnnyLump) Zeus and Poseidon (HKLM-x32\...\1207659039_is1) (Version: 2.1.0.9 - GOG.com) Ziggurat (HKLM\...\Steam App 308420) (Version: - Milkstone Studios) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-873DD02DC4E5}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Chrome\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {07649589-DD2E-40BA-B5EB-72331EB194EA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {08467819-93BE-4000-90D6-6395665339B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {0D1D20F9-46CE-4281-B972-EBA497CECC5D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {0FDD84DB-8BB3-480D-8CF9-D88095261BDA} - System32\Tasks\Amazon Music Helper => Task: {103981AC-AC4E-4ED5-B708-0B1CAB69C090} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {112F4F2A-BC3B-47C3-9F25-98C35640B0BE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.) Task: {12A81D19-0101-433B-BDA1-5F194DC6F14D} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {19F0EDB4-BAF1-42BD-BABC-CE39795F2FE3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {1D1DC3FC-7279-417F-854D-29BF0F8B6F6B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {20F19358-3843-4784-946F-E3ED46A68156} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {24DFF1BF-CE58-4BD3-844F-7AB57891221C} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.) Task: {27FC2565-643F-4DF9-95F3-1A5429B0BCDA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {298F7C97-2736-42C2-8C59-288CD0140D49} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {2DCAB4DE-D52A-4D2A-ACF6-37EB307BBDF1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {3101DDF6-5797-48AF-9145-FE19C30E0917} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {3881AA14-CFF5-41EA-9479-670C3B3E3F28} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation) Task: {389A8380-0159-4346-B5A4-663178B13451} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {3AFC2BFC-9355-4920-B389-6A692E101082} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {566164D4-0638-48AA-8F53-B433E2FD20FA} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] () Task: {5A21CFFC-5200-4BE4-BBFC-37609F7B0280} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {5C86DD5B-4483-41A7-83C8-EA0F78E345CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {5F992197-D1CC-496C-BCFB-B18927DB046A} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {6242E5DA-393C-49FF-8817-2EF97FE74473} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {6F6D4983-251B-4DED-833B-7C40C7819416} - System32\Tasks\updater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [2016-01-10] (Nefarius Software Solutions) Task: {71C618B9-519D-4090-99BF-5651A6131ABE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {7C461958-C8D1-409C-8711-CD501B9505F7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {7F8C13AE-1DF5-4C43-BC1A-09DBD16207E0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {8091AEBC-C752-45AC-A187-BBDB0E7A5678} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {80D1E8A8-4C9F-4371-A653-04058B3D074B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION Task: {95A21824-44D9-41FE-B9FC-10100110DD7B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {99BF0477-D4C3-4788-B2CE-CF4CDB1C9276} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {9BD61961-3B0B-4DFE-9D26-102AA2947285} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.) Task: {9C35E768-012C-4EC1-A2C2-15AC7637A4D6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {B5CF8B00-8DD3-4F99-B5A0-131F21255EAA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {C59D0FEE-AEB9-494D-B84C-3CEA256B5E72} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {D461E812-2DDF-433B-8784-D138D2938FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {D8EFC2BC-8D24-46DE-A679-6F7615B24CBB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {DB43FED6-2C1D-43DA-A005-4B1CC6D94B85} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {E35A5455-F44A-4D16-9749-433A79FB815C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {E8456778-BE22-4362-8D55-D7E5B13CA4D5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {EE102F5A-7415-4429-B3D8-838F9D76C13B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {F4D91A46-D489-4FAE-861D-ADDC17E178C0} - System32\Tasks\AdobeAAMUpdater-1.0-Chrome-PC-Chrome => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated) Task: {FD6F58A3-6E84-419D-A040-9CE21B4363D1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {FE761C93-4741-4927-90B0-48F6B5F1FE4C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2016-01-06 05:48 - 2014-01-28 04:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe 2014-11-21 18:51 - 2014-11-21 18:51 - 00049408 _____ () C:\Program Files\ASUS\Bluetooth Software\btwleapi.dll 2015-04-11 18:10 - 2014-04-24 07:29 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe 2016-05-13 12:19 - 2016-05-13 12:19 - 00307712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ReactiveSockets\8646218657a9e1a03dfd1082f11cb43d\ReactiveSockets.ni.dll 2014-05-02 11:52 - 2014-05-02 11:52 - 00599040 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\irrKlang.NET4.dll 2014-05-02 06:55 - 2014-05-02 06:55 - 00185344 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpflac.dll 2014-05-02 06:05 - 2014-05-02 06:05 - 00173056 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpmp3.dll 2016-02-27 14:58 - 2016-05-02 06:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2015-12-27 16:53 - 2016-05-02 06:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-04-27 21:42 - 2016-05-02 06:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-02-27 14:58 - 2016-05-02 06:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-04-27 21:42 - 2016-05-02 06:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-04-27 21:42 - 2016-05-02 06:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-04-27 21:42 - 2016-05-02 06:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-01-30 15:33 - 2016-05-02 06:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-01-31 15:30 - 2016-05-20 03:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-06-23 17:19 - 2016-05-25 01:00 - 05908968 _____ () C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe 2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2016-01-06 18:57 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-05-11 11:18 - 2016-04-23 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-05-11 11:18 - 2016-04-23 05:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-05-11 11:18 - 2016-04-23 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-05-11 11:18 - 2016-04-23 04:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-05-11 11:18 - 2016-04-23 05:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-08-06 15:13 - 2013-06-21 11:01 - 00109848 _____ () C:\WINDOWS\SYSTEM32\AcpiServiceVnA64.dll 2015-08-06 15:13 - 2014-05-22 16:24 - 00096568 _____ () C:\WINDOWS\SYSTEM32\audioLibVc.dll 2015-08-13 19:58 - 2016-01-07 16:15 - 00200704 _____ () C:\Windows\SysWOW64\HsMgr.exe 2015-08-13 19:58 - 2016-01-07 16:15 - 00282112 _____ () C:\Windows\System\HsMgr64.exe 2015-04-11 18:25 - 2016-05-02 07:00 - 00167480 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll 2015-04-11 18:25 - 2016-05-02 07:01 - 00862776 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2016-03-30 18:17 - 2016-03-30 18:17 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2016-03-30 18:17 - 2016-03-30 18:17 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe 2016-04-27 21:42 - 2016-05-02 06:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-04-27 21:42 - 2016-05-02 06:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-04-19 13:32 - 2016-04-19 13:33 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-06-03 11:53 - 2016-06-03 11:53 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2016-06-03 11:53 - 2016-06-03 11:53 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2016-06-03 11:53 - 2016-06-03 11:53 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll 2016-03-05 13:18 - 2016-03-05 13:19 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2016-04-30 11:19 - 2016-04-30 11:19 - 10256384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11602.1.26.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll 2016-01-06 05:48 - 2016-06-04 11:34 - 00043152 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll 2016-01-06 05:48 - 2014-01-28 04:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll 2016-02-04 14:50 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2016-02-04 14:50 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2016-06-01 00:34 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2016-06-01 00:34 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-04-12 00:02 - 2016-05-02 07:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-01-07 16:13 - 2012-06-06 02:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll 2015-04-11 19:13 - 2016-04-29 21:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-04-11 19:13 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-04-11 19:13 - 2016-04-30 01:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-04-11 19:13 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-04-11 19:13 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-04-11 19:13 - 2016-04-30 01:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-04-07 13:42 - 2016-02-17 23:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00100352 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 01274655 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00328186 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00107365 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00190464 _____ () C:\Program Files (x86)\Pidgin\libsasl.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 02097721 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00818985 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll 2015-11-08 03:39 - 2015-11-08 03:39 - 00125151 _____ () C:\Program Files (x86)\Pidgin\plugins\libskypeweb.dll 2015-03-13 01:52 - 2015-03-13 01:52 - 00278906 _____ () C:\Program Files (x86)\Pidgin\libjson-glib-1.0.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00417758 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00029225 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00102400 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00115712 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00140288 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll 2016-05-13 00:03 - 2016-05-11 12:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll 2016-05-13 00:03 - 2016-05-11 12:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll 2016-06-04 11:20 - 2016-06-03 01:40 - 02779832 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\libdiscord.dll 2016-06-04 11:20 - 2016-06-03 01:40 - 01746104 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\ffmpeg.dll 2016-06-04 11:20 - 2016-06-03 01:40 - 00244920 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\resources\node_modules\discord_toaster\discord_toaster.node 2016-06-04 11:20 - 2016-06-03 01:40 - 00112312 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\resources\node_modules\discord_overlay\discord_overlay.node 2015-04-11 19:13 - 2016-04-28 02:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2016-06-04 11:20 - 2016-06-03 01:40 - 01843896 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\libglesv2.dll 2016-06-04 11:20 - 2016-06-03 01:40 - 00020664 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\libegl.dll 2016-06-07 11:15 - 2016-06-07 11:15 - 00140800 _____ () \\?\C:\Users\Chrome\AppData\Local\Temp\530F.tmp.node 2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll 2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll 2016-04-19 13:32 - 2016-04-19 13:33 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 13:32 - 2016-04-19 13:33 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2015-04-11 19:13 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll 2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en\WindowsLive.Writer.Localization.resources.dll 2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en-GB\WindowsLive.Writer.Localization.resources.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com There are 7902 more sites. IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123simsen.com -> www.123simsen.com There are 7902 more sites. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2016-06-03 17:03 - 00452679 ___RA C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com 127.0.0.1 123simsen.com 127.0.0.1 www.123simsen.com 127.0.0.1 123topsearch.com 127.0.0.1 www.123topsearch.com 127.0.0.1 125sms.co.uk 127.0.0.1 www.125sms.co.uk There are 15530 more lines. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Chrome\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{59cb0d1f-5276-4153-8cef-1080b239f0ba}.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "SDTray" HKLM\...\StartupApproved\Run32: => "Corsair Gaming Headset Software" HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "EvolveClient" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{42B2120D-FC90-45DC-8420-AC93644E110F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe FirewallRules: [{1FFF9F36-F041-4956-B3F5-5E132578CA1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe FirewallRules: [{7FD64335-77AB-4202-B096-D660284D6184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe FirewallRules: [{5EACADEF-D345-497F-9DF7-DC8514D9CC9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe FirewallRules: [{6B563140-F2AF-404E-BF17-B48666E7C65E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe FirewallRules: [{41C7FE7C-C0E4-46A3-85C4-BB814AAC68A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe FirewallRules: [{A634B882-2683-4548-82D5-8F40F36C0CDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe FirewallRules: [{DF7CE8F5-3049-4C11-AA0C-22A3C481CB4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe FirewallRules: [{3ED26C78-EE01-4CB3-B564-747C5329C976}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe FirewallRules: [{816A429B-9C2F-4C04-B28E-033B9E462D02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe FirewallRules: [{ACED841E-9E4B-40CD-8031-BAB20A5A0AA2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{19F39831-A6EF-4A8B-8190-6C3ACDF6BA4C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{B7C6BDDC-3868-474A-B983-17A49B1BB707}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe FirewallRules: [{1177AAA4-09D9-4145-A53F-F835DB0194A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe FirewallRules: [{BB480C0D-B9BA-4A55-B0CD-15B74CE53F47}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{D2B5F4EA-A7FF-4014-BCEB-E36A4D08547C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe FirewallRules: [{0877938F-D38E-4822-9FE6-D2C5B08CAC9B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe FirewallRules: [{417DD305-8ECD-49FB-B18D-F761C2834E7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe FirewallRules: [{CA090C47-152A-4D3A-B6A5-60EEF7F28448}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe FirewallRules: [{E49864C5-06AD-4256-AD71-1B8DD7CDF41D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe FirewallRules: [{77B9D513-77FC-4BE8-9E67-10E16C545214}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe FirewallRules: [{8CB7F7CB-A3C5-42EC-A267-D0D4D0C0222D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe FirewallRules: [{106D4CCD-6E7B-46C3-88A8-16526A6E6E54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe FirewallRules: [{1704D386-BA75-42BF-8CFB-DC3A51B510B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe FirewallRules: [{BE442F5E-A3C3-4973-8B3B-2A44BF32C290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe FirewallRules: [{99CCA4A7-FAD6-4434-A977-A6D268C3F80B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe FirewallRules: [{FB6D7A7A-D4B1-4283-A434-B438BCF01F9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe FirewallRules: [{7EBACC13-D0B3-4A87-844F-E2A9A646CF7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe FirewallRules: [{F88BC024-650F-41B0-AF20-5F39898C5674}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe FirewallRules: [{9C7D1D65-A5DE-4621-A777-D0F49BDF3C51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe FirewallRules: [{FF863D92-B244-4796-BB14-8DCB2B388A32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe FirewallRules: [{AB8C7E3A-D21C-4428-BD7C-9340A1389748}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe FirewallRules: [{211619D3-B695-489A-9E6A-31B4CFAE1FD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe FirewallRules: [{C8EE8E71-DC26-4C94-845E-7617042459B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe FirewallRules: [{CBAAA87B-F3DC-4DCD-80FD-E44EF0B203E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe FirewallRules: [{C062E813-A20C-4F7D-AE16-EA91C9634DAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe FirewallRules: [{32890334-962F-4259-ABA4-7286879ADF06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe FirewallRules: [{A0B1753D-1030-40EB-B678-11C879764BA6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe FirewallRules: [{263780F5-1C86-4EA5-A55A-EBF612E4BDF7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe FirewallRules: [{7A93660D-46BE-4E7E-ABF7-013D9EC42E3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe FirewallRules: [{14C5C4A9-92DC-4589-A8C2-0341C0015212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe FirewallRules: [{FE95B31F-8BE0-4854-8D81-32640F504371}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe FirewallRules: [{DEE3ADEB-BEA8-464F-B460-57AEC7E16CBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe FirewallRules: [{5791843D-A024-4174-BEDF-4036752F514A}] => (Allow) LPort=1900 FirewallRules: [{D7B4B599-5B25-4E0C-B032-8D5D5D59539D}] => (Allow) LPort=2869 FirewallRules: [{580CC525-077D-4126-83DC-AE2E1EE6D9DE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{F08181D2-2B7E-4F10-BA34-A5E544C60789}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe FirewallRules: [{9B505671-061F-42E1-BE11-21C1D2D36ED2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe FirewallRules: [UDP Query User{211EA8AC-2374-4F8B-A74C-743BB611526E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{6DB3B0A1-C51C-440B-8D33-FDA94E86D971}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{262061AE-ED76-42FB-8AF5-DC1055496182}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{DA1512A1-EC86-4D01-84D5-F23635DDDE49}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{41B0C4D5-40FD-4DEE-8745-E9180C0D7501}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DDE18B2A-47BE-413F-BBC7-7FF18781DF2B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{101978AB-6241-48D6-885B-3E93ACDA66D6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{B23C943B-23CB-4C8E-9934-28D68DE21BF2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{8A62768B-CE4D-423A-93EE-26E9719D0A73}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F17F03E6-BA75-4B22-A375-D25951DFD072}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5439F702-CB64-425A-A607-FECA7249D3C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{4171695E-ECA8-4C53-87D9-B71AEDDA4E0D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{6B10DB0F-D3A9-4D27-9D44-2B5029CF4EED}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{5314C92C-2CCE-43D5-9BC1-5616C6585A9C}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [{08A1B0E5-768D-4672-9075-B3732E661FB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe FirewallRules: [{B20E6F58-42C0-48AA-8911-0B180872A33A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe FirewallRules: [{7D1B6F19-D4F1-4FAE-B7E8-66CA49D23A1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe FirewallRules: [{FCF1F3E0-0B0A-4F2E-A87C-908BB7971479}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe FirewallRules: [{7FC89701-142C-49A7-89A6-7DA90D8DE19F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe FirewallRules: [{D99C6495-ACB3-4C74-B977-4B2A7E2464E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe FirewallRules: [{85560EC6-5875-42E9-9DF0-FCD3AF93B97E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{FEE96929-AB79-4111-ADE7-6DAE078C395B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [TCP Query User{AFBF4F10-A557-4592-B35E-B8974D9A5A65}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{B763A22C-BE37-4B2E-B08F-1B7E098352A3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{8000B980-63CB-4C7B-BAE1-9C2150893FC8}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{2553592E-970A-4850-9058-0C94985DBA59}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [{30B7E0E7-85A5-4050-831F-1138AE21B285}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{1102369C-4EFF-4F77-B314-26D2C6C2CF4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [TCP Query User{29D1B479-34BB-4731-9046-F883E9EE8F98}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [UDP Query User{44FC230E-F537-418E-B964-CEBFE3DA7148}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [{D844C2AB-3081-4C7A-ABBB-9521BE469E93}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{CA30C963-EB65-4771-A19C-7CF86B52C362}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{FF29E651-5069-44FE-AE55-3FD3586B49D0}] => (Allow) LPort=1542 FirewallRules: [{7E4393A1-00FD-479F-816D-36B3F64616F4}] => (Allow) LPort=1542 FirewallRules: [{9679AA36-25A4-4FEA-ACAE-17D2B926148A}] => (Allow) LPort=53 FirewallRules: [{670428EE-EC7B-4590-9429-F179DA0A5E32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [{916935FF-7530-4CA2-8EEE-5BC71F846942}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [TCP Query User{1E062D3F-9499-4454-A097-A8B0C0826E06}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{2AF9E8E4-C8D5-4E55-8095-0B0F179A8F81}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{FCDCE93D-29A0-47CE-80F6-BCE7F62882ED}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [UDP Query User{B52E82B2-7FEF-49CD-8753-BF6F344B3104}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [TCP Query User{264719E5-E622-4054-8273-84F77C9A03C5}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{6D19437D-8562-4BF4-B4AB-A7B3E7865C41}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe FirewallRules: [{6CD64D70-2D44-4995-816F-F3E9EC205CE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe FirewallRules: [{40D0E929-8624-4D36-9C39-C48850D5BB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe FirewallRules: [{0169B266-A3FF-4A6D-8340-5797078E748F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe FirewallRules: [{88749B37-3727-4925-A1CF-C35F6CB12FCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe FirewallRules: [{AAC61384-EB30-476C-A35D-96D5C1F9140E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{C23F54DE-53F4-4782-B926-ACB223C06829}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{032D6843-A93B-4156-83A8-FB7B0BF52BCF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{932A5B25-433C-4F6A-B913-E618B238468E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BF4552D4-82E9-45E0-9223-E0CDA8085E8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{FD9B2D32-4771-4ED5-AD5B-4AF510F55AF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{ECDAEF85-D47C-49E7-8D12-10A80C2CA839}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F808D909-3EBD-4E2C-AF07-4DC5B958FB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [{55169821-6D6A-4D40-A660-4978504E6BE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [{B918BB39-14E9-49F0-8EFB-A06D584C0B72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe FirewallRules: [{65D51746-E283-4740-88F9-F22FB6808E4C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe FirewallRules: [{9E404795-DAAC-4C84-A47E-339B8A0551DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe FirewallRules: [{D4D03C04-1AC7-4FDD-85A1-4D46DE231EAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe FirewallRules: [{B109D6B9-52F9-4DEC-B8F8-90C2E6B26642}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe FirewallRules: [{FBDAD585-8631-4449-9191-8870216C3AA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe FirewallRules: [{C1C6710C-EC87-4262-A1DE-2A1B414BC9C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe FirewallRules: [{58C93C26-3ACC-44F3-BFFF-C9136776888A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe FirewallRules: [{2DB836B7-C1A7-4C74-9729-CAAADC419CA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe FirewallRules: [{7CA0660F-B4FF-4797-B039-5307F6FD1743}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe FirewallRules: [{5992C3E4-2BB8-43A3-92DD-1644ACA78182}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{CF975FAB-B51B-48CC-926F-9751F55BD056}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{51F5E18E-2B94-4C2A-AD71-CF343E631F26}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe FirewallRules: [{67A69C83-4985-40B3-A9EA-E57759FC1D8E}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe FirewallRules: [{117FDE8E-DDEA-4D7E-8653-8EF64CFD7277}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe FirewallRules: [{FA4D4DD2-7479-4860-ADF6-050AA6CAF5D9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe FirewallRules: [{6E4269EE-310C-49D1-B748-5729DF35C853}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe FirewallRules: [{6E9ABF56-A041-4375-B1F6-1AFC96924E02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe FirewallRules: [{ED81CA35-C888-475F-A4D7-BCDC870BDA71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{D0DF3543-BDFB-408D-8713-E6C1ED1EE7EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{CE12D7F0-8E98-42F1-AE4F-8AEA5355104D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe FirewallRules: [{BE28E1B7-0C86-4798-8EE7-4EF50E776E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe FirewallRules: [{47C7D361-E7E6-4874-B89E-0F31839099B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe FirewallRules: [{BFDDBEF7-83A9-407C-B8A7-FDF89E37AC8A}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe FirewallRules: [{5593C214-F8E6-49E9-8174-C71F52DD37F0}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe FirewallRules: [{75C77B76-7386-4FBF-A285-A53197268C48}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe FirewallRules: [{C3E19BDE-8B38-4A67-948E-C6E30F10F2B2}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{1F746533-2659-42B2-AD35-06DB7D28CF72}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{6335D248-9BBB-4554-B763-6B5A3EFC0B6E}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [{6E4CA175-0935-48A4-A34D-B5B133A63A3F}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [{90268FD8-A47B-447D-8555-F9A39C39CEEA}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [{0702CAA4-6E2D-49D2-8194-CF2982A0ECCF}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [{55EC18F9-5378-4D1D-9608-CE97601E90B9}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe FirewallRules: [{E16F3BF1-E933-4DE9-B41C-E77918736F28}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe FirewallRules: [{37A8572A-3214-491F-AE12-F4E8186D3468}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe FirewallRules: [{6BAD560C-F304-446D-9C19-9EDFA364F647}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe FirewallRules: [{AF138567-F675-4729-A6AC-E24A26758345}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe FirewallRules: [{D50396FA-DCC7-4AD7-937F-0266735D0048}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe FirewallRules: [{365CF014-33D1-4DEF-B323-BA269EBA3BD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{1D254D4B-38B0-42F0-AE8C-884861B37C9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{FF1B4FAC-051F-4D96-81CA-14E3B82DF1C2}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{97314E51-49D8-45C5-B4B4-138AA5C3386F}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{C0D363CA-5B45-4C1A-AF32-20D385BAF8FD}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe FirewallRules: [{23F4FEE0-4106-404A-9822-7CD7039BE0D4}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe FirewallRules: [{1D4A5E4A-9D00-46A3-BEFD-D03433100C77}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe FirewallRules: [{C2CBECE8-E5BB-4454-BE23-8EED84F6B5F2}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe FirewallRules: [{5EC3A64A-850F-49F8-A92D-65801C635F2A}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe FirewallRules: [{924AF97F-4834-4521-9CF5-228D17448DD9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe FirewallRules: [{4FC0FAC6-A0AE-4309-8AF2-8D5FA5BC9A12}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe FirewallRules: [{8FC638D5-0022-4944-8D00-E9C0624C88D6}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe FirewallRules: [{BB014947-750D-46C4-A431-CDA832CA1F42}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe FirewallRules: [{3AE70C61-91B8-4DC9-BA83-CC6F6489D3BB}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe FirewallRules: [{8B3C7D7E-6B7B-44E4-A927-0B0195D0C4EF}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe FirewallRules: [{3CA3F9D7-A09D-4CD4-B563-96EEA4901C08}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe FirewallRules: [{7FB5C8DC-182A-4F18-9282-BF1E5C0243B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe FirewallRules: [{6324292C-12CD-473C-8320-34BE8BF8721E}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe FirewallRules: [{540C1D79-B7B1-409B-9528-BFC185E8CC17}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe FirewallRules: [{2B43051E-5F2A-4FD5-8DF5-2C9249B21351}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe FirewallRules: [{E5D0B986-59ED-4ED5-A18E-B918FFDFD8E8}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe FirewallRules: [{F7C020C2-A729-440A-A524-A0636F719323}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe FirewallRules: [{D80A8286-F90A-4258-855A-516EB40CCD48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{6F40E3BE-43F2-4CB9-BA0B-841D3B597E09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{04236A0B-3DD4-41D7-BA47-B95F91873714}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe FirewallRules: [{13DA6AEA-50D1-4A6A-8A98-AAE612F32F7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe FirewallRules: [{6C6D8B25-4566-48AC-9482-AEFA847A689B}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe FirewallRules: [{A2C55BDA-1C3F-4C6A-8259-F6FD963CFA37}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe FirewallRules: [{3587BF52-206C-4FAA-ADCA-79083EE39686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe FirewallRules: [{DF2C3CBD-B92F-4664-B2A3-4A3F78CE5A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe FirewallRules: [{E059D07B-28F2-4B51-95A7-51FD5EE86DEC}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe FirewallRules: [{7023411E-BD64-4C02-949E-2B3AD7263BA5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe FirewallRules: [{C30FF631-0D4A-4A66-94A0-363DE26010B5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe FirewallRules: [{052B8CB3-6559-4C1C-9927-CF8C413D97B6}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe FirewallRules: [{CCF95C31-0FCF-464E-BCC2-C0241E76DECE}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe FirewallRules: [{B958393A-FE2D-4706-8469-21800C6FCD7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe FirewallRules: [{2A463812-DFE8-4F7F-9A04-558CA9097749}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe FirewallRules: [{7CEDD67F-8A52-4FD3-9621-1D00F8A2F85F}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe FirewallRules: [{ADB9A6C5-CC4C-4F3D-AC86-CE67A971E558}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe FirewallRules: [{3F647DEC-CFF7-4B35-A0B3-0F32FAF3FAEE}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe FirewallRules: [{D13F87F6-2B72-4BA2-B315-0797A57C9E1D}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe FirewallRules: [{71EBD196-4E23-416F-98CF-E7EF6172E80A}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe FirewallRules: [{13E3FEAC-3A91-4F50-ABA2-61F85F4891A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{8E9EA377-66B0-4BF9-8192-29F986F6C30A}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{BECAB396-0123-42A0-81A9-F49B79369CB7}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{11D980D6-ABB5-4ABB-B908-CD71DEADE80D}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe FirewallRules: [{DE7880AC-CBFA-47BA-B9F0-4198DE3980F9}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe FirewallRules: [{9C575885-BBD4-44D9-B1FE-BFC2854515EB}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe FirewallRules: [{E0887D86-2A37-4A2F-B4AB-A75A4479257E}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe FirewallRules: [{EBFA8969-9DF5-4CD9-B033-F01501E2DE09}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe FirewallRules: [{7DBCFBF8-1D22-4356-9C92-5B0B93AC4BA4}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe FirewallRules: [{289E3845-7CF9-4701-B0B1-125F3A975EE7}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe FirewallRules: [{D91EB0A9-878D-494C-8665-FCA3A8F1C171}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe FirewallRules: [{9DDE2F3F-A0B9-4678-B83F-0F426BF79562}] => (Allow) Z:\SteamLibrary\steamapps\common\Chronicle\Chronicle.exe FirewallRules: [{AE63BD26-023B-4620-A238-567FCC08A5D5}] => (Allow) Z:\SteamLibrary\steamapps\common\Chronicle\Chronicle.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Restore Points ========================= 21-05-2016 16:56:58 Installed DirectX 30-05-2016 18:36:56 Scheduled Checkpoint 31-05-2016 23:47:42 Removed Vegas Pro 13.0 (64-bit) 04-06-2016 11:23:22 JRT Pre-Junkware Removal ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/06/2016 03:29:51 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 21219 Error: (06/06/2016 03:29:51 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 21219 Error: (06/06/2016 03:29:51 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (06/06/2016 03:29:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 20219 Error: (06/06/2016 03:29:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 20219 Error: (06/06/2016 03:29:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (06/06/2016 03:29:49 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 19204 Error: (06/06/2016 03:29:49 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 19204 Error: (06/06/2016 03:29:49 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (06/06/2016 03:29:48 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 18204 System errors: ============= Error: (06/07/2016 11:15:25 AM) (Source: ACPI) (EventID: 13) (User: ) Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly. Error: (06/06/2016 03:29:17 PM) (Source: DCOM) (EventID: 10010) (User: Chrome-PC) Description: {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Access_1ebab2d3 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Storage_1ebab2d3 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Contact Data_1ebab2d3 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Sync Host_1ebab2d3 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (06/06/2016 11:56:02 AM) (Source: ACPI) (EventID: 13) (User: ) Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly. Error: (06/05/2016 11:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Access_1a3f0f54 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (06/05/2016 11:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The User Data Storage_1a3f0f54 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (06/05/2016 11:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Contact Data_1a3f0f54 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. CodeIntegrity: =================================== Date: 2016-05-22 13:13:25.406 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-15 18:02:50.824 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-15 12:17:29.437 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-13 13:57:03.567 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-12 23:03:04.829 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-12 11:30:27.252 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-30 19:13:49.387 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-14 13:32:52.542 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-08 16:07:54.261 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-07 17:01:25.920 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz Percentage of memory in use: 26% Total physical RAM: 16325.69 MB Available physical RAM: 12075.46 MB Total Virtual: 20517.69 MB Available Virtual: 15097.9 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.22 GB) (Free:114.94 GB) NTFS Drive d: () (Fixed) (Total:297.87 GB) (Free:156.44 GB) NTFS Drive e: (Terra Drive) (Fixed) (Total:931.51 GB) (Free:491.29 GB) NTFS Drive z: (Recorder's Keep) (Fixed) (Total:2794.39 GB) (Free:2523.69 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0BE386AE) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 298.1 GB) (Disk ID: 0BE70F86) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F9952B5E) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ============================
- June 7, 2016
- 12 replies
"Name Not Available" in volume mixer. Microphones not working.

Chromatism replied to Chromatism's topic in Resolved Malware Removal Logs

I'm having a problem with step 6. When I run ESET it get's into my second HDD, get's about half way through (finding 4 threats) and then seems to stop working after a length of time. Having run it twice the information bars turn black, then I lose the program's graphics altogether and several minutes after that it crashes.
- June 4, 2016
- 12 replies
"Name Not Available" in volume mixer. Microphones not working.

Chromatism replied to Chromatism's topic in Resolved Malware Removal Logs

Malwarebytes log below (nothing found). Do you want the Rkill log as well? Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 6/3/2016 Scan Time: 2:51 PM Logfile: scanlog.txt Administrator: Yes Version: 2.2.1.1043 Malware Database: v2016.06.03.02 Rootkit Database: v2016.05.27.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 10 CPU: x64 File System: NTFS User: Chrome Scan Type: Threat Scan Result: Completed Objects Scanned: 357089 Time Elapsed: 6 min, 38 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 0 (No malicious items detected) Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 0 (No malicious items detected) Files: 0 (No malicious items detected) Physical Sectors: 0 (No malicious items detected) (end)
- June 3, 2016
- 12 replies
"Name Not Available" in volume mixer. Microphones not working.

Chromatism posted a topic in Resolved Malware Removal Logs

My microphones suddenly stopped working today with no visible cause in my Windows 10 recording devices. All I could find was something called "Name Not Available" in my volume mixer. Malwarebytes doesn't come up with anything after a standard scan. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-05-2016 02 Ran by Chrome (administrator) on CHROME-PC (31-05-2016 23:57:45) Running from C:\Farbar Loaded Profiles: Chrome (Available Profiles: Chrome & DefaultAppPool) Platform: Windows 10 Pro Version 1511 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\btwdins.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Scarlet.Crush Productions) C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe () C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\AsusAudioCenter.exe () C:\Windows\SysWOW64\HsMgr.exe () C:\Windows\System\HsMgr64.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe (Hammer & Chisel, Inc.) C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe (Hammer & Chisel, Inc.) C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe (Scarlet.Crush Productions) C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Hammer & Chisel, Inc.) C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\SndVol.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated) HKLM\...\Run: [Cmaudio8788] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd HKLM\...\Run: [Cmaudio8788GX] => C:\WINDOWS\syswow64\HsMgr.exe [200704 2016-01-07] () HKLM\...\Run: [Cmaudio8788GX64] => C:\WINDOWS\system\HsMgr64.exe [282112 2016-01-07] () HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15642744 2016-03-30] (Logitech Inc.) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4127488 2015-06-16] (Safer-Networking Ltd.) HKLM-x32\...\Run: [Corsair Gaming Headset Software] => C:\Program Files (x86)\Corsair\Corsair Gaming Headset Software\HeadsetControlPanel.exe [2916160 2015-09-21] (Corsair Components, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Pidgin] => C:\Program Files (x86)\Pidgin\pidgin.exe [60176 2014-11-23] (The Pidgin developer community) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [3985976 2016-05-20] (GOG.com) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Amazon Music] => C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe [5907944 2016-04-15] () HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Dxtory Update Checker 2.0] => C:\Program Files (x86)\ExKode\Dxtory2.0\UpdateChecker.exe [93696 2010-10-17] (Dxtory Software) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Discord] => C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe [57924280 2016-05-06] (Hammer & Chisel, Inc.) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3334528 2016-02-22] (Echobit LLC) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\MountPoints2: {3f6ec3b8-e2cb-11e5-9c6b-f079596d81c7} - "F:\HTC_Sync_Manager_PC.exe" ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-08-04] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ASUS\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk [2016-04-12] ShortcutTarget: ScpToolkit Tray Notifications.lnk -> C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe (Scarlet.Crush Productions) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{6ac48a59-6400-4e4a-ba33-c345720fe802}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{a4b211d9-ba18-479b-b662-1b1957f70969}: [NameServer] 90.207.238.97,90.207.238.99 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-3534360900-3526396429-430733197-1000 -> {E1554096-ED83-45B4-B2CF-D8179CFFF8EA} URL = hxxps://uk.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24] (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24] (Oracle Corporation) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-27] () FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-24] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-24] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-27] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-24] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-24] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-20] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-20] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems) FF Plugin HKU\S-1-5-21-3534360900-3526396429-430733197-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-04-24] () Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default CHR DefaultSearchKeyword: Default -> Yahoo CHR DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10 CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll () CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\ppGoogleNaClPluginChrome.dll => No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\pdf.dll => No File CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Profile: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (BetterTTV) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-11-18] CHR Extension: (YouTube) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27] CHR Extension: (Google Search) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (AdBlock) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-05-27] CHR Extension: (Chrome Web Store Payments) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-07] CHR Extension: (Gmail) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-11] CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] () R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [File not signed] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] () R2 btwdins; C:\Program Files\ASUS\Bluetooth Software\btwdins.exe [978688 2014-11-21] (Broadcom Corporation.) R2 Ds3Service; C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe [389632 2016-01-10] (Scarlet.Crush Productions) [File not signed] S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [243984 2016-03-05] (EasyAntiCheat Ltd) S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2016-02-22] (Echobit LLC) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [246328 2016-05-20] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6167096 2016-05-20] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-03-30] (Logitech Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation) S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-04] (Electronic Arts) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1750712 2015-06-16] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2102496 2015-06-16] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [224712 2015-07-24] (Safer-Networking Ltd.) S3 updater; C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [464384 2016-01-10] (Nefarius Software Solutions) [File not signed] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] () R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2015-06-02] (C-Media Inc) S3 CorsairAudioFilter; C:\Windows\system32\DRIVERS\corsveng2kamd64.sys [112808 2015-09-21] (Corsair Components, Inc.) R3 EvolveVirtualAdapter; C:\Windows\System32\drivers\evolve.sys [21656 2016-02-22] (Echobit, LLC) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech) R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.) R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47200 2016-04-12] (hxxp://libusb-win32.sourceforge.net) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation) R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [36904 2016-04-25] (Wellbia.com Co., Ltd.) U3 idsvc; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-05-31 23:57 - 2016-05-31 23:57 - 00000000 ____D C:\FRST 2016-05-31 23:57 - 2016-05-31 23:57 - 00000000 ____D C:\Farbar 2016-05-31 22:32 - 2009-06-10 22:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20160531-223227.backup 2016-05-31 22:31 - 2016-05-31 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2016-05-31 22:31 - 2016-05-31 22:31 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2016-05-31 22:30 - 2016-05-31 22:30 - 16409960 _____ (Safer Networking Limited ) C:\Users\Chrome\Downloads\spybotsd162.exe 2016-05-31 19:52 - 2016-05-31 19:52 - 00000000 ____D C:\Users\Chrome\AppData\Local\MicMute 2016-05-31 19:46 - 2016-05-31 19:45 - 00044544 _____ (NirSoft) C:\WINDOWS\nircmd.exe 2016-05-31 19:44 - 2016-05-31 19:44 - 00121625 _____ C:\Users\Chrome\Downloads\nircmd.zip 2016-05-31 17:34 - 2016-05-31 17:36 - 13435557 _____ (KLCP ) C:\Users\Chrome\Downloads\K-Lite_Codec_Pack_1215_Basic.exe 2016-05-31 17:33 - 2016-05-31 17:33 - 00643143 _____ (UMEZAWA Takeshi ) C:\Users\Chrome\Downloads\utvideo-16.1.0-win.exe 2016-05-31 17:12 - 2016-05-31 17:12 - 00715038 _____ C:\WINDOWS\unins000.exe 2016-05-31 17:12 - 2016-05-31 17:12 - 00443445 _____ ( ) C:\Users\Chrome\Downloads\LagarithSetup_1327.exe 2016-05-31 17:12 - 2016-05-31 17:12 - 00443445 _____ ( ) C:\Users\Chrome\Downloads\LagarithSetup_1327 (1).exe 2016-05-31 16:13 - 2016-05-31 16:13 - 00000184 _____ C:\Users\Chrome\Downloads\DxtoryLicenceFile (1).dxtorylic 2016-05-31 15:52 - 2016-05-31 16:11 - 05952872 _____ (ExKode Co. Ltd. ) C:\Users\Chrome\Downloads\DxtorySetup2.0.134.exe 2016-05-27 19:31 - 2016-05-27 19:31 - 00001226 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-05-27 17:16 - 2016-05-27 17:16 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\The Creative Assembly 2016-05-25 21:18 - 2016-05-25 21:18 - 00000000 ____D C:\WINDOWS\LastGood.Tmp 2016-05-25 21:18 - 2016-05-25 21:18 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-05-25 21:18 - 2016-05-20 02:57 - 00113208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2016-05-25 21:18 - 2016-05-04 03:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2016-05-25 21:18 - 2016-05-04 03:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1.dll 2016-05-25 21:18 - 2016-05-04 03:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo.exe 2016-05-25 21:18 - 2016-05-04 03:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2016-05-25 21:17 - 2016-05-21 22:09 - 01581624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco64.dll 2016-05-25 21:17 - 2016-05-21 22:09 - 00046024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 39977920 _____ C:\WINDOWS\system32\nvcompiler.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 35117112 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 31639096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 25401280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 21802816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 21346520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 18145256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 17740664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 10642912 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 08733280 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 02791360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 02419768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436822.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436822.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00909760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00786360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00772152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00708032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00669952 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00631104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00601936 _____ C:\WINDOWS\system32\nvmcumd.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00565208 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00549240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00452616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00423360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00379480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00377792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00346560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00315936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00178136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00155952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00153416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00131768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll 2016-05-25 21:17 - 2016-05-20 09:03 - 00000594 _____ C:\WINDOWS\SysWOW64\nv-vk32.json 2016-05-25 21:17 - 2016-05-20 09:03 - 00000594 _____ C:\WINDOWS\system32\nv-vk64.json 2016-05-25 17:54 - 2016-05-25 17:59 - 92261488 _____ C:\Users\Chrome\Downloads\OBS-Studio-0.14.2-With-Browser-Installer.exe 2016-05-25 17:44 - 2016-05-25 17:45 - 78327943 _____ C:\Users\Chrome\Downloads\obs-browser-1.22.zip 2016-05-23 13:51 - 2016-05-31 15:10 - 00007629 _____ C:\Users\Chrome\AppData\Local\Resmon.ResmonCfg 2016-05-21 16:57 - 2016-05-21 16:57 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions 2016-05-20 14:21 - 2016-05-20 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com] 2016-05-18 15:35 - 2016-05-18 15:35 - 02283873 _____ C:\Users\Chrome\Downloads\x264vfw_full_43_2694bm_43159_fix.exe 2016-05-18 15:35 - 2016-05-18 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x264vfw 2016-05-18 15:35 - 2016-05-18 15:35 - 00000000 ____D C:\Program Files (x86)\x264vfw 2016-05-17 16:29 - 2016-05-17 16:29 - 00002788 _____ C:\WINDOWS\System32\Tasks\klcp_update 2016-05-17 16:29 - 2016-05-17 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2016-05-17 16:29 - 2016-05-17 16:29 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2016-05-17 16:17 - 2016-05-17 16:27 - 27227952 _____ (KLCP ) C:\Users\Chrome\Downloads\K-Lite_Codec_Pack_1210_Standard.exe 2016-05-12 17:58 - 2016-05-12 17:59 - 15177944 _____ C:\Users\Chrome\Downloads\ffmpeg-20160512-git-cd244fa-win64-static.7z 2016-05-11 21:44 - 2016-04-14 06:38 - 00113216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2016-05-11 21:44 - 2016-04-14 06:38 - 00102976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2016-05-11 11:19 - 2016-04-23 05:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2016-05-11 11:19 - 2016-04-23 05:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2016-05-11 11:19 - 2016-04-23 05:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2016-05-11 11:19 - 2016-04-23 05:19 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-05-11 11:19 - 2016-04-23 05:19 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-05-11 11:19 - 2016-04-23 05:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2016-05-11 11:19 - 2016-04-23 05:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-05-11 11:19 - 2016-04-23 05:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2016-05-11 11:18 - 2016-05-06 05:53 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys 2016-05-11 11:18 - 2016-05-06 05:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2016-05-11 11:18 - 2016-05-06 05:03 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2016-05-11 11:18 - 2016-05-06 04:53 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2016-05-11 11:18 - 2016-05-06 04:49 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2016-05-11 11:18 - 2016-05-06 04:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2016-05-11 11:18 - 2016-05-06 04:43 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2016-05-11 11:18 - 2016-05-06 04:23 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2016-05-11 11:18 - 2016-04-30 07:42 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-05-11 11:18 - 2016-04-30 07:31 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-05-11 11:18 - 2016-04-23 07:12 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-05-11 11:18 - 2016-04-23 07:12 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-05-11 11:18 - 2016-04-23 07:12 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-05-11 11:18 - 2016-04-23 07:12 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-05-11 11:18 - 2016-04-23 07:12 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-05-11 11:18 - 2016-04-23 07:12 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2016-05-11 11:18 - 2016-04-23 07:12 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-05-11 11:18 - 2016-04-23 07:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2016-05-11 11:18 - 2016-04-23 06:28 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2016-05-11 11:18 - 2016-04-23 06:28 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2016-05-11 11:18 - 2016-04-23 06:26 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2016-05-11 11:18 - 2016-04-23 06:24 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-05-11 11:18 - 2016-04-23 06:24 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-05-11 11:18 - 2016-04-23 06:24 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-05-11 11:18 - 2016-04-23 06:24 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-05-11 11:18 - 2016-04-23 06:24 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2016-05-11 11:18 - 2016-04-23 06:24 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2016-05-11 11:18 - 2016-04-23 06:24 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2016-05-11 11:18 - 2016-04-23 06:22 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2016-05-11 11:18 - 2016-04-23 06:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-05-11 11:18 - 2016-04-23 06:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2016-05-11 11:18 - 2016-04-23 06:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll 2016-05-11 11:18 - 2016-04-23 06:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2016-05-11 11:18 - 2016-04-23 06:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2016-05-11 11:18 - 2016-04-23 06:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2016-05-11 11:18 - 2016-04-23 06:12 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2016-05-11 11:18 - 2016-04-23 06:11 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2016-05-11 11:18 - 2016-04-23 06:11 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-05-11 11:18 - 2016-04-23 06:11 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2016-05-11 11:18 - 2016-04-23 06:11 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2016-05-11 11:18 - 2016-04-23 06:11 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys 2016-05-11 11:18 - 2016-04-23 06:11 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2016-05-11 11:18 - 2016-04-23 06:10 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-05-11 11:18 - 2016-04-23 06:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-05-11 11:18 - 2016-04-23 06:10 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2016-05-11 11:18 - 2016-04-23 06:09 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-05-11 11:18 - 2016-04-23 06:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-05-11 11:18 - 2016-04-23 06:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2016-05-11 11:18 - 2016-04-23 06:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2016-05-11 11:18 - 2016-04-23 06:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2016-05-11 11:18 - 2016-04-23 06:09 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2016-05-11 11:18 - 2016-04-23 06:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2016-05-11 11:18 - 2016-04-23 06:09 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2016-05-11 11:18 - 2016-04-23 06:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-05-11 11:18 - 2016-04-23 06:08 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2016-05-11 11:18 - 2016-04-23 06:08 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-05-11 11:18 - 2016-04-23 06:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2016-05-11 11:18 - 2016-04-23 06:07 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2016-05-11 11:18 - 2016-04-23 06:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2016-05-11 11:18 - 2016-04-23 06:07 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2016-05-11 11:18 - 2016-04-23 06:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2016-05-11 11:18 - 2016-04-23 06:06 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2016-05-11 11:18 - 2016-04-23 06:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2016-05-11 11:18 - 2016-04-23 06:01 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-05-11 11:18 - 2016-04-23 06:01 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2016-05-11 11:18 - 2016-04-23 06:01 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll 2016-05-11 11:18 - 2016-04-23 06:01 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-05-11 11:18 - 2016-04-23 06:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2016-05-11 11:18 - 2016-04-23 06:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll 2016-05-11 11:18 - 2016-04-23 06:01 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-05-11 11:18 - 2016-04-23 06:01 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2016-05-11 11:18 - 2016-04-23 06:00 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll 2016-05-11 11:18 - 2016-04-23 05:56 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2016-05-11 11:18 - 2016-04-23 05:39 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2016-05-11 11:18 - 2016-04-23 05:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2016-05-11 11:18 - 2016-04-23 05:34 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys 2016-05-11 11:18 - 2016-04-23 05:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll 2016-05-11 11:18 - 2016-04-23 05:34 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2016-05-11 11:18 - 2016-04-23 05:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2016-05-11 11:18 - 2016-04-23 05:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll 2016-05-11 11:18 - 2016-04-23 05:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys 2016-05-11 11:18 - 2016-04-23 05:33 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe 2016-05-11 11:18 - 2016-04-23 05:32 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll 2016-05-11 11:18 - 2016-04-23 05:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-05-11 11:18 - 2016-04-23 05:32 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2016-05-11 11:18 - 2016-04-23 05:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-05-11 11:18 - 2016-04-23 05:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2016-05-11 11:18 - 2016-04-23 05:30 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-05-11 11:18 - 2016-04-23 05:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2016-05-11 11:18 - 2016-04-23 05:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2016-05-11 11:18 - 2016-04-23 05:29 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2016-05-11 11:18 - 2016-04-23 05:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2016-05-11 11:18 - 2016-04-23 05:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys 2016-05-11 11:18 - 2016-04-23 05:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2016-05-11 11:18 - 2016-04-23 05:29 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2016-05-11 11:18 - 2016-04-23 05:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll 2016-05-11 11:18 - 2016-04-23 05:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe 2016-05-11 11:18 - 2016-04-23 05:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2016-05-11 11:18 - 2016-04-23 05:28 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-05-11 11:18 - 2016-04-23 05:28 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll 2016-05-11 11:18 - 2016-04-23 05:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll 2016-05-11 11:18 - 2016-04-23 05:28 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll 2016-05-11 11:18 - 2016-04-23 05:28 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2016-05-11 11:18 - 2016-04-23 05:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll 2016-05-11 11:18 - 2016-04-23 05:27 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2016-05-11 11:18 - 2016-04-23 05:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll 2016-05-11 11:18 - 2016-04-23 05:26 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2016-05-11 11:18 - 2016-04-23 05:26 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2016-05-11 11:18 - 2016-04-23 05:25 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2016-05-11 11:18 - 2016-04-23 05:25 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2016-05-11 11:18 - 2016-04-23 05:25 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2016-05-11 11:18 - 2016-04-23 05:25 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2016-05-11 11:18 - 2016-04-23 05:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-05-11 11:18 - 2016-04-23 05:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2016-05-11 11:18 - 2016-04-23 05:24 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2016-05-11 11:18 - 2016-04-23 05:24 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2016-05-11 11:18 - 2016-04-23 05:24 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2016-05-11 11:18 - 2016-04-23 05:24 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2016-05-11 11:18 - 2016-04-23 05:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll 2016-05-11 11:18 - 2016-04-23 05:23 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-05-11 11:18 - 2016-04-23 05:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2016-05-11 11:18 - 2016-04-23 05:23 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll 2016-05-11 11:18 - 2016-04-23 05:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll 2016-05-11 11:18 - 2016-04-23 05:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll 2016-05-11 11:18 - 2016-04-23 05:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-05-11 11:18 - 2016-04-23 05:22 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2016-05-11 11:18 - 2016-04-23 05:21 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2016-05-11 11:18 - 2016-04-23 05:21 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2016-05-11 11:18 - 2016-04-23 05:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2016-05-11 11:18 - 2016-04-23 05:19 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-05-11 11:18 - 2016-04-23 05:19 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-05-11 11:18 - 2016-04-23 05:19 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2016-05-11 11:18 - 2016-04-23 05:19 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll 2016-05-11 11:18 - 2016-04-23 05:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-05-11 11:18 - 2016-04-23 05:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2016-05-11 11:18 - 2016-04-23 05:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2016-05-11 11:18 - 2016-04-23 05:17 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-05-11 11:18 - 2016-04-23 05:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2016-05-11 11:18 - 2016-04-23 05:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2016-05-11 11:18 - 2016-04-23 05:17 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll 2016-05-11 11:18 - 2016-04-23 05:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2016-05-11 11:18 - 2016-04-23 05:16 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-05-11 11:18 - 2016-04-23 05:15 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-05-11 11:18 - 2016-04-23 05:15 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-05-11 11:18 - 2016-04-23 05:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-05-11 11:18 - 2016-04-23 05:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2016-05-11 11:18 - 2016-04-23 05:15 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2016-05-11 11:18 - 2016-04-23 05:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2016-05-11 11:18 - 2016-04-23 05:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll 2016-05-11 11:18 - 2016-04-23 05:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2016-05-11 11:18 - 2016-04-23 05:13 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-05-11 11:18 - 2016-04-23 05:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2016-05-11 11:18 - 2016-04-23 05:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2016-05-11 11:18 - 2016-04-23 05:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2016-05-11 11:18 - 2016-04-23 05:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2016-05-11 11:18 - 2016-04-23 05:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-05-11 11:18 - 2016-04-23 05:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-05-11 11:18 - 2016-04-23 05:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-05-11 11:18 - 2016-04-23 05:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-05-11 11:18 - 2016-04-23 05:09 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-05-11 11:18 - 2016-04-23 05:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-05-11 11:18 - 2016-04-23 05:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-05-11 11:18 - 2016-04-23 05:07 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-05-11 11:18 - 2016-04-23 05:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-05-11 11:18 - 2016-04-23 05:07 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-05-11 11:18 - 2016-04-23 05:06 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2016-05-11 11:18 - 2016-04-23 05:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2016-05-11 11:18 - 2016-04-23 05:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2016-05-11 11:18 - 2016-04-23 05:04 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-05-11 11:18 - 2016-04-23 05:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-05-11 11:18 - 2016-04-23 05:03 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-05-11 11:18 - 2016-04-23 05:03 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-05-11 11:18 - 2016-04-23 05:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2016-05-11 11:18 - 2016-04-23 05:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-05-11 11:18 - 2016-04-23 05:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-05-11 11:18 - 2016-04-23 05:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2016-05-11 11:18 - 2016-04-23 05:02 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-05-11 11:18 - 2016-04-23 05:02 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-05-11 11:18 - 2016-04-23 05:01 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-05-11 11:18 - 2016-04-23 05:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-05-11 11:18 - 2016-04-23 05:00 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-05-11 11:18 - 2016-04-23 04:45 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2016-05-11 11:18 - 2016-04-23 03:10 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2016-05-11 11:18 - 2016-04-23 03:10 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml 2016-05-11 11:18 - 2016-04-18 23:30 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml 2016-05-08 10:19 - 2016-05-08 10:19 - 03642880 _____ (x264vfw project) C:\WINDOWS\system32\x264vfw64.dll 2016-05-08 10:19 - 2016-05-08 10:19 - 03621888 _____ (x264vfw project) C:\WINDOWS\SysWOW64\x264vfw.dll 2016-05-05 19:18 - 2016-05-05 19:18 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Codeusa Software 2016-05-04 03:23 - 2016-05-04 03:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-11-1.dll 2016-05-04 03:22 - 2016-05-04 03:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1-1-0-11-1.dll 2016-05-04 03:22 - 2016-05-04 03:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-11-1.exe 2016-05-04 03:22 - 2016-05-04 03:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-11-1.exe 2016-05-03 11:12 - 2016-04-27 15:33 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436510.dll 2016-05-03 11:12 - 2016-04-27 15:33 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436510.dll 2016-05-02 18:52 - 2016-05-25 21:59 - 00000000 ____D C:\Users\Chrome\Documents\Overwatch 2016-05-02 18:26 - 2016-05-02 18:26 - 00001218 _____ C:\Users\Public\Desktop\Overwatch.lnk 2016-05-02 18:26 - 2016-05-02 18:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch 2016-05-02 18:01 - 2016-05-27 14:01 - 00000000 ____D C:\Program Files (x86)\Overwatch ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-05-31 23:47 - 2016-02-09 00:56 - 00000000 ____D C:\Users\Chrome\AppData\Local\Sony 2016-05-31 23:40 - 2016-01-06 05:49 - 01011572 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-05-31 23:40 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF 2016-05-31 23:38 - 2015-04-11 22:43 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\.purple 2016-05-31 23:35 - 2015-04-11 19:12 - 00000000 ____D C:\Program Files (x86)\Steam 2016-05-31 23:34 - 2016-01-31 15:30 - 00000000 ____D C:\ProgramData\NVIDIA 2016-05-31 23:34 - 2016-01-06 05:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-05-31 23:34 - 2015-04-11 19:07 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-05-31 23:33 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2016-05-31 22:34 - 2016-02-09 01:17 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2016-05-31 22:34 - 2015-09-10 20:53 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-05-31 22:32 - 2016-02-04 14:50 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy 2016-05-31 22:02 - 2015-04-11 19:07 - 00000926 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-05-31 21:57 - 2015-04-21 01:44 - 00000000 ____D C:\Users\Chrome\AppData\Local\Battle.net 2016-05-31 21:48 - 2016-02-09 21:55 - 00000000 ____D C:\Program Files (x86)\Battle.net 2016-05-31 21:47 - 2015-06-17 18:41 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\TS3Client 2016-05-31 19:43 - 2015-10-15 19:22 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\OBS 2016-05-31 17:43 - 2016-01-30 20:51 - 00000000 ____D C:\Users\Chrome\AppData\Local\CrashDumps 2016-05-31 17:40 - 2016-02-17 12:29 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\obs-studio 2016-05-31 17:37 - 2015-11-19 16:13 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\vlc 2016-05-31 17:33 - 2015-11-19 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ut Video Codec Suite 2016-05-31 17:33 - 2015-11-19 15:29 - 00000000 ____D C:\Program Files\utvideo 2016-05-31 17:12 - 2015-11-19 15:29 - 00004888 _____ C:\WINDOWS\unins000.dat 2016-05-31 16:12 - 2015-11-29 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0 2016-05-31 16:12 - 2015-11-19 15:07 - 00000000 ____D C:\Users\Chrome\AppData\Local\Dxtory Software 2016-05-31 16:12 - 2015-11-19 15:07 - 00000000 ____D C:\Program Files (x86)\ExKode 2016-05-31 14:59 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-05-31 14:57 - 2015-04-15 12:51 - 00000000 ____D C:\Users\Chrome\AppData\Local\Adobe 2016-05-31 14:54 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps 2016-05-31 00:24 - 2016-01-06 05:49 - 00000000 ____D C:\Users\Chrome 2016-05-31 00:08 - 2015-10-15 19:47 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Skype 2016-05-30 16:43 - 2015-08-23 14:16 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Audacity 2016-05-30 13:31 - 2016-01-06 05:48 - 04929048 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-05-27 19:31 - 2015-09-10 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-05-27 19:31 - 2015-09-10 20:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-05-25 21:19 - 2016-01-06 05:48 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-05-25 21:19 - 2015-04-11 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-05-25 21:19 - 2015-04-11 18:21 - 00000000 ____D C:\Temp 2016-05-25 17:59 - 2016-02-17 12:29 - 00001330 _____ C:\Users\Public\Desktop\OBS Studio.lnk 2016-05-25 17:46 - 2016-02-17 12:29 - 00000000 ____D C:\Program Files (x86)\obs-studio 2016-05-25 11:35 - 2015-08-30 17:43 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2016-05-25 11:34 - 2015-09-28 22:52 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\HandBrake 2016-05-25 11:34 - 2015-08-30 17:36 - 00000000 ___RD C:\Users\Chrome\Creative Cloud Files 2016-05-25 10:51 - 2015-09-02 22:52 - 00000000 __RHD C:\Users\Chrome\syphax1337@sky.com Creative Cloud Files 2016-05-24 23:45 - 2015-05-29 11:27 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-05-22 22:02 - 2016-01-10 01:40 - 13509184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2016-05-21 23:25 - 2015-04-20 00:30 - 00000000 ____D C:\Users\Chrome\Documents\My Games 2016-05-21 22:09 - 2015-12-06 18:48 - 00141256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2016-05-21 15:29 - 2015-04-15 12:52 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-05-20 12:39 - 2015-05-29 01:02 - 00000000 ____D C:\Program Files (x86)\GalaxyClient 2016-05-20 09:03 - 2016-01-10 01:40 - 20305768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll 2016-05-20 09:03 - 2016-01-10 01:40 - 17662432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll 2016-05-20 09:03 - 2016-01-10 01:40 - 17379520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll 2016-05-20 09:03 - 2016-01-10 01:40 - 14410024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll 2016-05-20 09:03 - 2016-01-10 01:40 - 03811440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2016-05-20 09:03 - 2016-01-10 01:40 - 03371648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2016-05-20 09:03 - 2016-01-10 01:40 - 00040084 _____ C:\WINDOWS\system32\nvinfo.pb 2016-05-20 03:08 - 2016-01-31 15:30 - 06348344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2016-05-20 03:08 - 2016-01-31 15:30 - 02454976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2016-05-20 03:08 - 2016-01-31 15:30 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2016-05-20 03:08 - 2016-01-31 15:30 - 01352760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2016-05-20 03:08 - 2016-01-31 15:30 - 00533560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2016-05-20 03:08 - 2016-01-31 15:30 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2016-05-20 03:08 - 2016-01-31 15:30 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2016-05-20 03:08 - 2016-01-31 15:30 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2016-05-18 09:37 - 2016-01-31 15:30 - 06448223 _____ C:\WINDOWS\system32\nvcoproc.bin 2016-05-14 17:36 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-05-13 12:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache 2016-05-13 00:03 - 2015-04-11 19:07 - 00002327 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-05-12 23:04 - 2015-07-30 17:08 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-05-12 21:25 - 2015-10-30 10:07 - 00000000 ____D C:\Program Files\Windows Journal 2016-05-12 21:25 - 2015-10-30 08:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe 2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning 2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr 2016-05-12 13:34 - 2016-04-12 00:16 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\DarkSoulsIII 2016-05-12 11:29 - 2015-04-15 12:52 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2016-05-11 21:44 - 2015-04-11 18:26 - 00000000 ____D C:\Users\Chrome\AppData\Local\NVIDIA 2016-05-11 20:57 - 2015-10-30 08:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-05-11 20:57 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-05-11 13:07 - 2015-07-22 15:08 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-05-11 13:03 - 2015-07-22 15:08 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-05-11 10:57 - 2015-04-11 19:07 - 00003984 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-05-11 10:57 - 2015-04-11 19:07 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-05-09 17:23 - 2015-08-08 14:26 - 00000000 ____D C:\Users\Chrome\Documents\Paradox Interactive 2016-05-07 02:05 - 2016-01-26 21:33 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\discord 2016-05-06 10:58 - 2016-01-26 21:33 - 00002275 _____ C:\Users\Chrome\Desktop\Discord.lnk 2016-05-06 10:58 - 2016-01-26 21:33 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc 2016-05-06 10:58 - 2016-01-26 21:33 - 00000000 ____D C:\Users\Chrome\AppData\Local\Discord 2016-05-06 10:58 - 2015-09-16 16:45 - 00000000 ____D C:\Users\Chrome\AppData\Local\SquirrelTemp 2016-05-05 22:53 - 2015-08-28 00:30 - 00000000 ____D C:\Program Files (x86)\Hearthstone 2016-05-03 22:06 - 2015-11-19 15:29 - 00304640 _____ C:\WINDOWS\system32\utv_core.dll 2016-05-03 22:06 - 2015-11-19 15:29 - 00273920 _____ (TODO: <会社名>) C:\WINDOWS\system32\utv_dmo.dll 2016-05-03 22:06 - 2015-11-19 15:29 - 00132608 _____ C:\WINDOWS\system32\utv_vcm.dll 2016-05-03 22:05 - 2015-11-19 15:29 - 00221696 _____ C:\WINDOWS\SysWOW64\utv_core.dll 2016-05-03 22:05 - 2015-11-19 15:29 - 00213504 _____ (TODO: <会社名>) C:\WINDOWS\SysWOW64\utv_dmo.dll 2016-05-03 22:05 - 2015-11-19 15:29 - 00109056 _____ C:\WINDOWS\SysWOW64\utv_vcm.dll 2016-05-03 11:15 - 2015-07-24 15:09 - 00000000 ____D C:\Program Files\Logitech Gaming Software 2016-05-03 11:12 - 2016-01-06 05:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-05-03 11:12 - 2015-07-30 17:08 - 00000000 ____D C:\Users\Chrome\AppData\Local\Packages 2016-05-03 11:11 - 2016-01-06 05:48 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys 2016-05-03 11:11 - 2015-08-16 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2016-05-03 11:07 - 2016-01-05 02:56 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-05-03 11:07 - 2015-10-15 19:47 - 00000000 ____D C:\ProgramData\Skype 2016-05-02 18:05 - 2016-01-28 18:08 - 00000000 ____D C:\Program Files (x86)\Diablo III 2016-05-02 18:05 - 2015-04-21 01:46 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm 2016-05-02 06:39 - 2015-04-11 18:25 - 01377800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2016-05-02 06:39 - 2015-04-11 18:25 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll 2016-05-02 06:38 - 2015-11-21 02:45 - 00112032 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll 2016-05-02 06:38 - 2015-04-11 18:25 - 01767944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2016-05-02 06:38 - 2015-04-11 18:25 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll ==================== Files in the root of some directories ======= 2016-02-27 22:24 - 2016-02-27 22:24 - 0052536 _____ () C:\Users\Chrome\AppData\Roaming\StardewValley.rar 2016-01-25 23:03 - 2016-02-18 17:00 - 0001456 _____ () C:\Users\Chrome\AppData\Local\Adobe Save for Web 13.0 Prefs 2015-12-27 16:22 - 2015-12-27 16:22 - 0002731 _____ () C:\Users\Chrome\AppData\Local\recently-used.xbel 2016-05-23 13:51 - 2016-05-31 15:10 - 0007629 _____ () C:\Users\Chrome\AppData\Local\Resmon.ResmonCfg 2015-10-31 16:37 - 2015-10-31 16:37 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc 2015-11-19 19:17 - 2015-11-19 19:17 - 0000016 _____ () C:\ProgramData\mntemp Some files in TEMP: ==================== C:\Users\Chrome\AppData\Local\Temp\6699d3ee8dd9cf775caae782c8f44f03.dll C:\Users\Chrome\AppData\Local\Temp\c0bc19d87de4680655f839ccad11be16.dll C:\Users\Chrome\AppData\Local\Temp\CloudDriveInstaller.exe C:\Users\Chrome\AppData\Local\Temp\jre-8u73-windows-au.exe C:\Users\Chrome\AppData\Local\Temp\jre-8u77-windows-au.exe C:\Users\Chrome\AppData\Local\Temp\jre-8u91-windows-au.exe C:\Users\Chrome\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Chrome\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\Chrome\AppData\Local\Temp\nvSCPAPISvr.exe C:\Users\Chrome\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-05-30 16:58 ==================== End of FRST.txt ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-05-2016 02 Ran by Chrome (2016-05-31 23:58:02) Running from C:\Farbar Windows 10 Pro Version 1511 (X64) (2016-01-06 04:53:36) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3534360900-3526396429-430733197-500 - Administrator - Disabled) Chrome (S-1-5-21-3534360900-3526396429-430733197-1000 - Administrator - Enabled) => C:\Users\Chrome DefaultAccount (S-1-5-21-3534360900-3526396429-430733197-503 - Limited - Disabled) Guest (S-1-5-21-3534360900-3526396429-430733197-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.016.20041 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.2.0 - Adobe Systems Incorporated) Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version: - Triumph Studios) Amazon Cloud Drive (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Cloud Drive) (Version: 3.3.1.32 - Amazon.com, Inc.) Amazon Music (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Amazon Music) (Version: 4.3.0.1330 - Amazon Services LLC) Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive) Ashes of the Singularity (HKLM-x32\...\Steam App 228880) (Version: - Oxide Games) Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft) Assassin's Creed Rogue (HKLM\...\Steam App 311560) (Version: - Ubisoft Sofia) ASUS Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.1.170 - ASUS) ASUS Xonar DGX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version: - ASUSTeK Computer Inc.) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version: - WB Games Montreal) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Black Desert Character Creator (HKLM-x32\...\{83AC6E37-6497-4A01-BB5D-AA845BA08832}) (Version: 1.0.0.2 - Daum Games EU) Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU) Blood Bowl 2 (HKLM-x32\...\Steam App 236690) (Version: - Cyanide Studios) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Borderless Gaming (HKLM\...\Steam App 388080) (Version: - AndrewMD5) Broforce (HKLM-x32\...\Steam App 274190) (Version: - Free Lives) CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - ) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.) Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.) Catacomb Kids (HKLM-x32\...\Steam App 315840) (Version: - FourbitFriday) Corsair Gaming Headset Software (HKLM-x32\...\{88ADDCAA-6591-4D41-A7F1-2F38B7B049BB}) (Version: 2.0.37 - Corsair) CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version: - Paradox Development Studio) Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DARK SOULS III (HKLM\...\Steam App 374320) (Version: - FromSoftware, Inc.) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Discord) (Version: 0.0.290 - Hammer & Chisel, Inc.) Dishonored (HKLM\...\Steam App 205100) (Version: - Arkane Studios) Distant Worlds: Universe (HKLM\...\Steam App 261470) (Version: - Code Force) Dragon's Dogma: Dark Arisen (HKLM-x32\...\Steam App 367500) (Version: - Capcom) Duck Game (HKLM-x32\...\Steam App 312530) (Version: - Landon Podbielski) DuelystLauncher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\launcher) (Version: 0.0.4 - Counterplay Games Inc.) Dungeons & Dragons: Chronicles of Mystara (HKLM-x32\...\Steam App 229480) (Version: - Iron Galaxy Studios) Dxtory version 2.0.134 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.134 - ExKode Co. Ltd.) Enter the Gungeon (HKLM\...\Steam App 311690) (Version: - Dodge Roll) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version: - Paradox Development Studio) Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC) FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.) FortressCraft Evolved (HKLM\...\Steam App 254200) (Version: - ProjectorGames) Freedom Planet (HKLM-x32\...\Steam App 248310) (Version: - GalaxyTrail) Frozen Synapse (HKLM-x32\...\Steam App 98200) (Version: - Mode 7) FTL - Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com) GameRanger (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\GameRanger) (Version: - GameRanger Technologies) GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.) Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Hand of Fate (HKLM\...\Steam App 266510) (Version: - Defiant Development) HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - ) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HELLDIVERS™ (HKLM-x32\...\Steam App 394510) (Version: - Arrowhead Game Studios) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Hotline Miami 2: Wrong Number (HKLM\...\Steam App 274170) (Version: - Dennaton Games) HOTSLogsUploader (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\99a83d131490dc73) (Version: 1.0.0.12 - HOTSLogsUploader) Intel(R) Chipset Device Software (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation) Invisible, Inc. (HKLM-x32\...\Steam App 243970) (Version: - Klei Entertainment) Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Keep Talking and Nobody Explodes (HKLM-x32\...\Steam App 341800) (Version: - Steel Crate Games) Kerbal Space Program (HKLM-x32\...\{ED501254-06B8-4883-B7F3-4799C9EDD288}_is1) (Version: 1.0 - Squad) K-Lite Codec Pack 12.1.0 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP) Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - ) Lame ACM MP3 Codec (HKLM-x32\...\LameACM) (Version: - ) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Logitech Gaming Software 8.82 (HKLM\...\Logitech Gaming Software) (Version: 8.82.151 - Logitech Inc.) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD) Mumble 1.2.10 (HKLM-x32\...\{63243F5C-E941-4461-A4B0-2689A9A3BF13}) (Version: 1.2.10 - Thorvald Natvig) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team) Nuclear Throne (HKLM-x32\...\Steam App 242680) (Version: - Vlambeer) NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation) NVIDIA 3D Vision Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation) NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation) NVIDIA Graphics Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation) NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.2 - OBS Project) Offworld Trading Company (HKLM\...\Steam App 271240) (Version: - Mohawk Games) One Finger Death Punch (HKLM-x32\...\Steam App 264200) (Version: - Silver Dollar Games) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - ) PlanetSide 2 (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\DG0-PlanetSide 2) (Version: - Sony Online Entertainment) Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software) Project Zomboid (HKLM-x32\...\Steam App 108600) (Version: - The Indie Stone) Project Zomboid Dedicated Server (HKLM-x32\...\Steam App 380870) (Version: - ) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games) ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions) Sentinels of the Multiverse (HKLM\...\Steam App 337150) (Version: - Handelabra Games Inc.) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Shovel Knight (HKLM-x32\...\Steam App 250760) (Version: - Yacht Club Games) Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.) Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.001 - ASUSTeKcomputer.Inc) Space Engineers (HKLM-x32\...\Steam App 244850) (Version: - Keen Software House) Spec Ops: The Line (HKLM\...\Steam App 50300) (Version: - Yager Development) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.) Squad (HKLM-x32\...\Steam App 393380) (Version: - Offworld Industries) Star Citizen Launcher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Star Citizen Launcher) (Version: 00.01.00.00 - Cloud Imperium Games) Star Realms (HKLM\...\Steam App 438140) (Version: - White Wizard Games) Stardew Valley (HKLM-x32\...\Steam App 413150) (Version: - ConcernedApe) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stellaris (HKLM\...\Steam App 281990) (Version: - Paradox Development Studio) Stronghold HD (HKLM-x32\...\1207658712_is1) (Version: 2.3.0.5 - GOG.com) Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version: - Berserk Games) TeamSpeak 3 Client (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Culling (HKLM-x32\...\Steam App 437220) (Version: - Xaviant) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.12.1.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.12.1.0 - GOG.com) Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version: - Creative Assembly) Undertale (HKLM-x32\...\Steam App 391540) (Version: - tobyfox) Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft) Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 16.1.0 - UMEZAWA Takeshi) Vagante (HKLM-x32\...\Steam App 323220) (Version: - Nuke Nine) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) WS Launcher (HKLM-x32\...\WS Launcher 30.0.4.3) (Version: 30.0.4.3 - WS.ARMA.SU) WS Launcher (x32 Version: 30.0.4.3 - WS.ARMA.SU) Hidden x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version: - ) XCom Long War EW Mod version 1.0 (HKLM-x32\...\{860C3266-65B9-4BF2-937A-1778483046B5}_is1) (Version: 1.0 - JohnnyLump) Zeus and Poseidon (HKLM-x32\...\1207659039_is1) (Version: 2.1.0.9 - GOG.com) Ziggurat (HKLM\...\Steam App 308420) (Version: - Milkstone Studios) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-873DD02DC4E5}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Chrome\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {07649589-DD2E-40BA-B5EB-72331EB194EA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {08467819-93BE-4000-90D6-6395665339B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {0D1D20F9-46CE-4281-B972-EBA497CECC5D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {0FDD84DB-8BB3-480D-8CF9-D88095261BDA} - System32\Tasks\Amazon Music Helper => Task: {103981AC-AC4E-4ED5-B708-0B1CAB69C090} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {12A81D19-0101-433B-BDA1-5F194DC6F14D} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {19F0EDB4-BAF1-42BD-BABC-CE39795F2FE3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {1BA447D3-7019-4290-B20F-81CD041A3850} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.) Task: {1D1DC3FC-7279-417F-854D-29BF0F8B6F6B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {20F19358-3843-4784-946F-E3ED46A68156} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {27FC2565-643F-4DF9-95F3-1A5429B0BCDA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {298F7C97-2736-42C2-8C59-288CD0140D49} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {2DCAB4DE-D52A-4D2A-ACF6-37EB307BBDF1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {3101DDF6-5797-48AF-9145-FE19C30E0917} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {3881AA14-CFF5-41EA-9479-670C3B3E3F28} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation) Task: {389A8380-0159-4346-B5A4-663178B13451} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {3AFC2BFC-9355-4920-B389-6A692E101082} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {566164D4-0638-48AA-8F53-B433E2FD20FA} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] () Task: {5A21CFFC-5200-4BE4-BBFC-37609F7B0280} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {5C86DD5B-4483-41A7-83C8-EA0F78E345CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {5F992197-D1CC-496C-BCFB-B18927DB046A} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {6242E5DA-393C-49FF-8817-2EF97FE74473} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {6F6D4983-251B-4DED-833B-7C40C7819416} - System32\Tasks\updater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [2016-01-10] (Nefarius Software Solutions) Task: {71C618B9-519D-4090-99BF-5651A6131ABE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {7C461958-C8D1-409C-8711-CD501B9505F7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {7F8C13AE-1DF5-4C43-BC1A-09DBD16207E0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {8091AEBC-C752-45AC-A187-BBDB0E7A5678} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {80D1E8A8-4C9F-4371-A653-04058B3D074B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION Task: {95A21824-44D9-41FE-B9FC-10100110DD7B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {99BF0477-D4C3-4788-B2CE-CF4CDB1C9276} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {9C35E768-012C-4EC1-A2C2-15AC7637A4D6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {B5CF8B00-8DD3-4F99-B5A0-131F21255EAA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {C59D0FEE-AEB9-494D-B84C-3CEA256B5E72} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {D461E812-2DDF-433B-8784-D138D2938FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {D8EFC2BC-8D24-46DE-A679-6F7615B24CBB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {DB43FED6-2C1D-43DA-A005-4B1CC6D94B85} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {E35A5455-F44A-4D16-9749-433A79FB815C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {E8456778-BE22-4362-8D55-D7E5B13CA4D5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {EE102F5A-7415-4429-B3D8-838F9D76C13B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {F4D91A46-D489-4FAE-861D-ADDC17E178C0} - System32\Tasks\AdobeAAMUpdater-1.0-Chrome-PC-Chrome => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated) Task: {FD6F58A3-6E84-419D-A040-9CE21B4363D1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {FE761C93-4741-4927-90B0-48F6B5F1FE4C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-01-31 15:30 - 2016-05-20 03:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-01-06 05:48 - 2014-01-28 04:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe 2014-11-21 18:51 - 2014-11-21 18:51 - 00049408 _____ () C:\Program Files\ASUS\Bluetooth Software\btwleapi.dll 2015-04-11 18:10 - 2014-04-24 07:29 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe 2016-05-13 12:19 - 2016-05-13 12:19 - 00307712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ReactiveSockets\8646218657a9e1a03dfd1082f11cb43d\ReactiveSockets.ni.dll 2014-05-02 11:52 - 2014-05-02 11:52 - 00599040 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\irrKlang.NET4.dll 2014-05-02 06:55 - 2014-05-02 06:55 - 00185344 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpflac.dll 2014-05-02 06:05 - 2014-05-02 06:05 - 00173056 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpmp3.dll 2016-02-27 14:58 - 2016-05-02 06:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2015-12-27 16:53 - 2016-05-02 06:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-02-27 14:58 - 2016-05-02 06:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-04-27 21:42 - 2016-05-02 06:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-04-27 21:42 - 2016-05-02 06:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-04-27 21:42 - 2016-05-02 06:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-04-27 21:42 - 2016-05-02 06:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-01-30 15:33 - 2016-05-02 06:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-04-27 21:42 - 2016-05-02 06:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-04-27 21:42 - 2016-05-02 06:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-06-23 17:19 - 2016-04-15 01:44 - 05907944 _____ () C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe 2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2016-01-06 18:57 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-05-11 11:18 - 2016-04-23 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-05-11 11:18 - 2016-04-23 05:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-05-11 11:18 - 2016-04-23 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-05-11 11:18 - 2016-04-23 04:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-05-11 11:18 - 2016-04-23 05:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-08-06 15:13 - 2013-06-21 11:01 - 00109848 _____ () C:\WINDOWS\SYSTEM32\AcpiServiceVnA64.dll 2015-08-06 15:13 - 2014-05-22 16:24 - 00096568 _____ () C:\WINDOWS\SYSTEM32\audioLibVc.dll 2015-08-13 19:58 - 2016-01-07 16:15 - 00200704 _____ () C:\Windows\SysWOW64\HsMgr.exe 2015-08-13 19:58 - 2016-01-07 16:15 - 00282112 _____ () C:\Windows\System\HsMgr64.exe 2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2016-03-30 18:17 - 2016-03-30 18:17 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2016-03-30 18:17 - 2016-03-30 18:17 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe 2016-04-19 13:32 - 2016-04-19 13:33 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-01-06 05:48 - 2016-05-31 23:34 - 00043152 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll 2016-01-06 05:48 - 2014-01-28 04:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll 2016-02-04 14:50 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2016-02-04 14:50 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2016-02-04 14:50 - 2014-05-13 13:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2016-02-04 14:50 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2015-04-12 00:02 - 2016-05-02 07:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-01-07 16:13 - 2012-06-06 02:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00100352 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 01274655 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00328186 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00107365 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00190464 _____ () C:\Program Files (x86)\Pidgin\libsasl.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 02097721 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00818985 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll 2015-11-08 03:39 - 2015-11-08 03:39 - 00125151 _____ () C:\Program Files (x86)\Pidgin\plugins\libskypeweb.dll 2015-03-13 01:52 - 2015-03-13 01:52 - 00278906 _____ () C:\Program Files (x86)\Pidgin\libjson-glib-1.0.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00417758 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00029225 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00102400 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00115712 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00140288 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll 2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll 2014-11-23 18:34 - 2014-11-23 18:34 - 00486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll 2015-04-11 22:42 - 2015-04-11 22:42 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll 2016-05-06 10:58 - 2016-05-06 06:40 - 02757304 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\libdiscord.dll 2016-05-06 10:58 - 2016-05-06 10:58 - 01746104 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\ffmpeg.dll 2016-05-06 10:58 - 2016-05-06 06:40 - 00244920 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\resources\node_modules\discord_toaster\discord_toaster.node 2016-05-06 10:58 - 2016-05-06 06:40 - 00112312 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\resources\node_modules\discord_overlay\discord_overlay.node 2016-05-06 10:58 - 2016-05-06 06:40 - 01843896 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\libglesv2.dll 2016-05-06 10:58 - 2016-05-06 06:40 - 00020664 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\libegl.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll 2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll 2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll 2015-04-11 19:13 - 2016-04-29 21:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-04-11 19:13 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-04-11 19:13 - 2016-04-30 01:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll 2015-04-11 19:13 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-04-11 19:13 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-04-11 19:13 - 2016-02-09 00:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-04-11 19:13 - 2016-04-30 01:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2015-04-11 19:13 - 2016-04-28 02:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-04-19 13:32 - 2016-04-19 13:33 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 13:32 - 2016-04-19 13:33 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-05-13 00:03 - 2016-05-11 12:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll 2016-05-13 00:03 - 2016-05-11 12:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll 2016-05-31 23:38 - 2016-05-31 23:38 - 00140800 _____ () \\?\C:\Users\Chrome\AppData\Local\Temp\D562.tmp.node 2016-05-13 00:03 - 2016-05-11 12:48 - 17565848 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll 2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en\WindowsLive.Writer.Localization.resources.dll 2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en-GB\WindowsLive.Writer.Localization.resources.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com There are 7902 more sites. IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123simsen.com -> www.123simsen.com There are 7902 more sites. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2016-05-31 22:32 - 00452621 ____R C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com There are 15530 more lines. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3534360900-3526396429-430733197-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Chrome\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{59cb0d1f-5276-4153-8cef-1080b239f0ba}.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "SDTray" HKLM\...\StartupApproved\Run32: => "Corsair Gaming Headset Software" HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "EvolveClient" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{42B2120D-FC90-45DC-8420-AC93644E110F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe FirewallRules: [{1FFF9F36-F041-4956-B3F5-5E132578CA1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe FirewallRules: [{7FD64335-77AB-4202-B096-D660284D6184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe FirewallRules: [{5EACADEF-D345-497F-9DF7-DC8514D9CC9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe FirewallRules: [{6B563140-F2AF-404E-BF17-B48666E7C65E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe FirewallRules: [{41C7FE7C-C0E4-46A3-85C4-BB814AAC68A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe FirewallRules: [{A634B882-2683-4548-82D5-8F40F36C0CDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe FirewallRules: [{DF7CE8F5-3049-4C11-AA0C-22A3C481CB4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe FirewallRules: [{3ED26C78-EE01-4CB3-B564-747C5329C976}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe FirewallRules: [{816A429B-9C2F-4C04-B28E-033B9E462D02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe FirewallRules: [{ACED841E-9E4B-40CD-8031-BAB20A5A0AA2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{19F39831-A6EF-4A8B-8190-6C3ACDF6BA4C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{B7C6BDDC-3868-474A-B983-17A49B1BB707}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe FirewallRules: [{1177AAA4-09D9-4145-A53F-F835DB0194A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe FirewallRules: [{BB480C0D-B9BA-4A55-B0CD-15B74CE53F47}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{D2B5F4EA-A7FF-4014-BCEB-E36A4D08547C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe FirewallRules: [{0877938F-D38E-4822-9FE6-D2C5B08CAC9B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe FirewallRules: [{417DD305-8ECD-49FB-B18D-F761C2834E7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe FirewallRules: [{CA090C47-152A-4D3A-B6A5-60EEF7F28448}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe FirewallRules: [{E49864C5-06AD-4256-AD71-1B8DD7CDF41D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe FirewallRules: [{77B9D513-77FC-4BE8-9E67-10E16C545214}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe FirewallRules: [{8CB7F7CB-A3C5-42EC-A267-D0D4D0C0222D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe FirewallRules: [{106D4CCD-6E7B-46C3-88A8-16526A6E6E54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe FirewallRules: [{1704D386-BA75-42BF-8CFB-DC3A51B510B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe FirewallRules: [{BE442F5E-A3C3-4973-8B3B-2A44BF32C290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe FirewallRules: [{99CCA4A7-FAD6-4434-A977-A6D268C3F80B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe FirewallRules: [{FB6D7A7A-D4B1-4283-A434-B438BCF01F9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe FirewallRules: [{7EBACC13-D0B3-4A87-844F-E2A9A646CF7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe FirewallRules: [{F88BC024-650F-41B0-AF20-5F39898C5674}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe FirewallRules: [{9C7D1D65-A5DE-4621-A777-D0F49BDF3C51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe FirewallRules: [{FF863D92-B244-4796-BB14-8DCB2B388A32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe FirewallRules: [{AB8C7E3A-D21C-4428-BD7C-9340A1389748}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe FirewallRules: [{211619D3-B695-489A-9E6A-31B4CFAE1FD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe FirewallRules: [{C8EE8E71-DC26-4C94-845E-7617042459B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe FirewallRules: [{CBAAA87B-F3DC-4DCD-80FD-E44EF0B203E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe FirewallRules: [{C062E813-A20C-4F7D-AE16-EA91C9634DAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe FirewallRules: [{32890334-962F-4259-ABA4-7286879ADF06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe FirewallRules: [{A0B1753D-1030-40EB-B678-11C879764BA6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe FirewallRules: [{263780F5-1C86-4EA5-A55A-EBF612E4BDF7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe FirewallRules: [{7A93660D-46BE-4E7E-ABF7-013D9EC42E3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe FirewallRules: [{14C5C4A9-92DC-4589-A8C2-0341C0015212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe FirewallRules: [{FE95B31F-8BE0-4854-8D81-32640F504371}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe FirewallRules: [{DEE3ADEB-BEA8-464F-B460-57AEC7E16CBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe FirewallRules: [{5791843D-A024-4174-BEDF-4036752F514A}] => (Allow) LPort=1900 FirewallRules: [{D7B4B599-5B25-4E0C-B032-8D5D5D59539D}] => (Allow) LPort=2869 FirewallRules: [{580CC525-077D-4126-83DC-AE2E1EE6D9DE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{F08181D2-2B7E-4F10-BA34-A5E544C60789}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe FirewallRules: [{9B505671-061F-42E1-BE11-21C1D2D36ED2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe FirewallRules: [UDP Query User{211EA8AC-2374-4F8B-A74C-743BB611526E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{6DB3B0A1-C51C-440B-8D33-FDA94E86D971}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{262061AE-ED76-42FB-8AF5-DC1055496182}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{DA1512A1-EC86-4D01-84D5-F23635DDDE49}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{41B0C4D5-40FD-4DEE-8745-E9180C0D7501}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DDE18B2A-47BE-413F-BBC7-7FF18781DF2B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{101978AB-6241-48D6-885B-3E93ACDA66D6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{B23C943B-23CB-4C8E-9934-28D68DE21BF2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{8A62768B-CE4D-423A-93EE-26E9719D0A73}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F17F03E6-BA75-4B22-A375-D25951DFD072}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5439F702-CB64-425A-A607-FECA7249D3C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{4171695E-ECA8-4C53-87D9-B71AEDDA4E0D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{6B10DB0F-D3A9-4D27-9D44-2B5029CF4EED}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{5314C92C-2CCE-43D5-9BC1-5616C6585A9C}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [{08A1B0E5-768D-4672-9075-B3732E661FB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe FirewallRules: [{B20E6F58-42C0-48AA-8911-0B180872A33A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe FirewallRules: [{7D1B6F19-D4F1-4FAE-B7E8-66CA49D23A1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe FirewallRules: [{FCF1F3E0-0B0A-4F2E-A87C-908BB7971479}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe FirewallRules: [{7FC89701-142C-49A7-89A6-7DA90D8DE19F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe FirewallRules: [{D99C6495-ACB3-4C74-B977-4B2A7E2464E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe FirewallRules: [{85560EC6-5875-42E9-9DF0-FCD3AF93B97E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{FEE96929-AB79-4111-ADE7-6DAE078C395B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [TCP Query User{AFBF4F10-A557-4592-B35E-B8974D9A5A65}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{B763A22C-BE37-4B2E-B08F-1B7E098352A3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{8000B980-63CB-4C7B-BAE1-9C2150893FC8}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{2553592E-970A-4850-9058-0C94985DBA59}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe FirewallRules: [{30B7E0E7-85A5-4050-831F-1138AE21B285}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{1102369C-4EFF-4F77-B314-26D2C6C2CF4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [TCP Query User{29D1B479-34BB-4731-9046-F883E9EE8F98}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [UDP Query User{44FC230E-F537-418E-B964-CEBFE3DA7148}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [{D844C2AB-3081-4C7A-ABBB-9521BE469E93}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{CA30C963-EB65-4771-A19C-7CF86B52C362}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{FF29E651-5069-44FE-AE55-3FD3586B49D0}] => (Allow) LPort=1542 FirewallRules: [{7E4393A1-00FD-479F-816D-36B3F64616F4}] => (Allow) LPort=1542 FirewallRules: [{9679AA36-25A4-4FEA-ACAE-17D2B926148A}] => (Allow) LPort=53 FirewallRules: [{670428EE-EC7B-4590-9429-F179DA0A5E32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [{916935FF-7530-4CA2-8EEE-5BC71F846942}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [TCP Query User{1E062D3F-9499-4454-A097-A8B0C0826E06}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{2AF9E8E4-C8D5-4E55-8095-0B0F179A8F81}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{FCDCE93D-29A0-47CE-80F6-BCE7F62882ED}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [UDP Query User{B52E82B2-7FEF-49CD-8753-BF6F344B3104}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [TCP Query User{264719E5-E622-4054-8273-84F77C9A03C5}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{6D19437D-8562-4BF4-B4AB-A7B3E7865C41}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe FirewallRules: [{6CD64D70-2D44-4995-816F-F3E9EC205CE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe FirewallRules: [{40D0E929-8624-4D36-9C39-C48850D5BB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe FirewallRules: [{0169B266-A3FF-4A6D-8340-5797078E748F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe FirewallRules: [{88749B37-3727-4925-A1CF-C35F6CB12FCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe FirewallRules: [{AAC61384-EB30-476C-A35D-96D5C1F9140E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{C23F54DE-53F4-4782-B926-ACB223C06829}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{032D6843-A93B-4156-83A8-FB7B0BF52BCF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{932A5B25-433C-4F6A-B913-E618B238468E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BF4552D4-82E9-45E0-9223-E0CDA8085E8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{FD9B2D32-4771-4ED5-AD5B-4AF510F55AF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{ECDAEF85-D47C-49E7-8D12-10A80C2CA839}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F808D909-3EBD-4E2C-AF07-4DC5B958FB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [{55169821-6D6A-4D40-A660-4978504E6BE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe FirewallRules: [{B918BB39-14E9-49F0-8EFB-A06D584C0B72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe FirewallRules: [{65D51746-E283-4740-88F9-F22FB6808E4C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe FirewallRules: [{9E404795-DAAC-4C84-A47E-339B8A0551DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe FirewallRules: [{D4D03C04-1AC7-4FDD-85A1-4D46DE231EAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe FirewallRules: [{B109D6B9-52F9-4DEC-B8F8-90C2E6B26642}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe FirewallRules: [{FBDAD585-8631-4449-9191-8870216C3AA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe FirewallRules: [{C1C6710C-EC87-4262-A1DE-2A1B414BC9C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe FirewallRules: [{58C93C26-3ACC-44F3-BFFF-C9136776888A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe FirewallRules: [{2DB836B7-C1A7-4C74-9729-CAAADC419CA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe FirewallRules: [{7CA0660F-B4FF-4797-B039-5307F6FD1743}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe FirewallRules: [{5992C3E4-2BB8-43A3-92DD-1644ACA78182}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{CF975FAB-B51B-48CC-926F-9751F55BD056}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{51F5E18E-2B94-4C2A-AD71-CF343E631F26}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe FirewallRules: [{67A69C83-4985-40B3-A9EA-E57759FC1D8E}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe FirewallRules: [{117FDE8E-DDEA-4D7E-8653-8EF64CFD7277}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe FirewallRules: [{FA4D4DD2-7479-4860-ADF6-050AA6CAF5D9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe FirewallRules: [{6E4269EE-310C-49D1-B748-5729DF35C853}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe FirewallRules: [{6E9ABF56-A041-4375-B1F6-1AFC96924E02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe FirewallRules: [{ED81CA35-C888-475F-A4D7-BCDC870BDA71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{D0DF3543-BDFB-408D-8713-E6C1ED1EE7EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{CE12D7F0-8E98-42F1-AE4F-8AEA5355104D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe FirewallRules: [{BE28E1B7-0C86-4798-8EE7-4EF50E776E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe FirewallRules: [{47C7D361-E7E6-4874-B89E-0F31839099B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe FirewallRules: [{BFDDBEF7-83A9-407C-B8A7-FDF89E37AC8A}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe FirewallRules: [{5593C214-F8E6-49E9-8174-C71F52DD37F0}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe FirewallRules: [{75C77B76-7386-4FBF-A285-A53197268C48}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe FirewallRules: [{C3E19BDE-8B38-4A67-948E-C6E30F10F2B2}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{1F746533-2659-42B2-AD35-06DB7D28CF72}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{6335D248-9BBB-4554-B763-6B5A3EFC0B6E}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [{6E4CA175-0935-48A4-A34D-B5B133A63A3F}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [{90268FD8-A47B-447D-8555-F9A39C39CEEA}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [{0702CAA4-6E2D-49D2-8194-CF2982A0ECCF}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [{55EC18F9-5378-4D1D-9608-CE97601E90B9}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe FirewallRules: [{E16F3BF1-E933-4DE9-B41C-E77918736F28}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe FirewallRules: [{37A8572A-3214-491F-AE12-F4E8186D3468}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe FirewallRules: [{6BAD560C-F304-446D-9C19-9EDFA364F647}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe FirewallRules: [{AF138567-F675-4729-A6AC-E24A26758345}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe FirewallRules: [{D50396FA-DCC7-4AD7-937F-0266735D0048}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe FirewallRules: [{365CF014-33D1-4DEF-B323-BA269EBA3BD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{1D254D4B-38B0-42F0-AE8C-884861B37C9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{FF1B4FAC-051F-4D96-81CA-14E3B82DF1C2}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{97314E51-49D8-45C5-B4B4-138AA5C3386F}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{C0D363CA-5B45-4C1A-AF32-20D385BAF8FD}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe FirewallRules: [{23F4FEE0-4106-404A-9822-7CD7039BE0D4}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe FirewallRules: [{1D4A5E4A-9D00-46A3-BEFD-D03433100C77}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe FirewallRules: [{C2CBECE8-E5BB-4454-BE23-8EED84F6B5F2}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe FirewallRules: [{5EC3A64A-850F-49F8-A92D-65801C635F2A}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe FirewallRules: [{924AF97F-4834-4521-9CF5-228D17448DD9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe FirewallRules: [{4FC0FAC6-A0AE-4309-8AF2-8D5FA5BC9A12}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe FirewallRules: [{8FC638D5-0022-4944-8D00-E9C0624C88D6}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe FirewallRules: [{BB014947-750D-46C4-A431-CDA832CA1F42}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe FirewallRules: [{3AE70C61-91B8-4DC9-BA83-CC6F6489D3BB}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe FirewallRules: [{8B3C7D7E-6B7B-44E4-A927-0B0195D0C4EF}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe FirewallRules: [{3CA3F9D7-A09D-4CD4-B563-96EEA4901C08}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe FirewallRules: [{7FB5C8DC-182A-4F18-9282-BF1E5C0243B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe FirewallRules: [{6324292C-12CD-473C-8320-34BE8BF8721E}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe FirewallRules: [{540C1D79-B7B1-409B-9528-BFC185E8CC17}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe FirewallRules: [{2B43051E-5F2A-4FD5-8DF5-2C9249B21351}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe FirewallRules: [{E5D0B986-59ED-4ED5-A18E-B918FFDFD8E8}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe FirewallRules: [{F7C020C2-A729-440A-A524-A0636F719323}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe FirewallRules: [{D80A8286-F90A-4258-855A-516EB40CCD48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{6F40E3BE-43F2-4CB9-BA0B-841D3B597E09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{04236A0B-3DD4-41D7-BA47-B95F91873714}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe FirewallRules: [{13DA6AEA-50D1-4A6A-8A98-AAE612F32F7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe FirewallRules: [{6C6D8B25-4566-48AC-9482-AEFA847A689B}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe FirewallRules: [{A2C55BDA-1C3F-4C6A-8259-F6FD963CFA37}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe FirewallRules: [{3587BF52-206C-4FAA-ADCA-79083EE39686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe FirewallRules: [{DF2C3CBD-B92F-4664-B2A3-4A3F78CE5A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe FirewallRules: [{E059D07B-28F2-4B51-95A7-51FD5EE86DEC}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe FirewallRules: [{7023411E-BD64-4C02-949E-2B3AD7263BA5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe FirewallRules: [{C30FF631-0D4A-4A66-94A0-363DE26010B5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe FirewallRules: [{052B8CB3-6559-4C1C-9927-CF8C413D97B6}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe FirewallRules: [{CCF95C31-0FCF-464E-BCC2-C0241E76DECE}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe FirewallRules: [{B958393A-FE2D-4706-8469-21800C6FCD7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe FirewallRules: [{2A463812-DFE8-4F7F-9A04-558CA9097749}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe FirewallRules: [{7CEDD67F-8A52-4FD3-9621-1D00F8A2F85F}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe FirewallRules: [{ADB9A6C5-CC4C-4F3D-AC86-CE67A971E558}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe FirewallRules: [{3F647DEC-CFF7-4B35-A0B3-0F32FAF3FAEE}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe FirewallRules: [{D13F87F6-2B72-4BA2-B315-0797A57C9E1D}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe FirewallRules: [{71EBD196-4E23-416F-98CF-E7EF6172E80A}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe FirewallRules: [{13E3FEAC-3A91-4F50-ABA2-61F85F4891A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{8E9EA377-66B0-4BF9-8192-29F986F6C30A}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{BECAB396-0123-42A0-81A9-F49B79369CB7}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{11D980D6-ABB5-4ABB-B908-CD71DEADE80D}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe FirewallRules: [{DE7880AC-CBFA-47BA-B9F0-4198DE3980F9}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe FirewallRules: [{9C575885-BBD4-44D9-B1FE-BFC2854515EB}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe FirewallRules: [{E0887D86-2A37-4A2F-B4AB-A75A4479257E}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe FirewallRules: [{EBFA8969-9DF5-4CD9-B033-F01501E2DE09}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe FirewallRules: [{7DBCFBF8-1D22-4356-9C92-5B0B93AC4BA4}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe FirewallRules: [{289E3845-7CF9-4701-B0B1-125F3A975EE7}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe FirewallRules: [{D91EB0A9-878D-494C-8665-FCA3A8F1C171}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Restore Points ========================= 12-05-2016 12:54:42 Windows Update 20-05-2016 14:20:57 Installed DirectX 21-05-2016 16:56:58 Installed DirectX 30-05-2016 18:36:56 Scheduled Checkpoint 31-05-2016 23:47:42 Removed Vegas Pro 13.0 (64-bit) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (05/31/2016 11:47:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Access is denied. . Error: (05/31/2016 10:34:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Chrome-PC) Description: Activation of app Microsoft.Getstarted_3.5.11.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (05/31/2016 10:31:26 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3. The value "*" of attribute "language" in element "assemblyIdentity" is invalid. Error: (05/31/2016 10:31:26 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3. The value "*" of attribute "language" in element "assemblyIdentity" is invalid. Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 19 2.B.1.C.D.F.D.7.D.5.4.0.1.5.5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Chrome-PC-2.local. Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.9:5353 17 2.B.1.C.D.F.D.7.D.5.4.0.1.5.5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Chrome-PC.local. Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 19 9.0.168.192.in-addr.arpa. PTR Chrome-PC-2.local. Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.0.9:5353 17 9.0.168.192.in-addr.arpa. PTR Chrome-PC.local. Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname Chrome-PC.local already in use; will try Chrome-PC-2.local instead Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 16 Chrome-PC.local. AAAA FE80:0000:0000:0000:0551:045D:7DFD:C1B2 System errors: ============= Error: (05/31/2016 11:34:47 PM) (Source: ACPI) (EventID: 13) (User: ) Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly. Error: (05/31/2016 11:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error: %%1058 Error: (05/31/2016 11:33:35 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC} Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC) Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} CodeIntegrity: =================================== Date: 2016-05-22 13:13:25.406 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-15 18:02:50.824 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-15 12:17:29.437 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-13 13:57:03.567 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-12 23:03:04.829 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-12 11:30:27.252 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-30 19:13:49.387 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-14 13:32:52.542 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-08 16:07:54.261 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-07 17:01:25.920 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz Percentage of memory in use: 17% Total physical RAM: 16325.69 MB Available physical RAM: 13504.25 MB Total Virtual: 20517.69 MB Available Virtual: 17379.79 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.22 GB) (Free:123.43 GB) NTFS Drive d: () (Fixed) (Total:297.87 GB) (Free:156.44 GB) NTFS Drive e: (Terra Drive) (Fixed) (Total:931.51 GB) (Free:491.29 GB) NTFS Drive z: (Recorder's Keep) (Fixed) (Total:2794.39 GB) (Free:2500.8 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0BE386AE) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 298.1 GB) (Disk ID: 0BE70F86) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F9952B5E) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ============================
- May 31, 2016
- 12 replies

Sign In

Chromatism

Posts

Joined

Last visited

Content Type

Events

Profiles

Forums

Everything posted by Chromatism

"Name Not Available" in volume mixer. Microphones not working.

"Name Not Available" in volume mixer. Microphones not working.

"Name Not Available" in volume mixer. Microphones not working.

"Name Not Available" in volume mixer. Microphones not working.

"Name Not Available" in volume mixer. Microphones not working.

"Name Not Available" in volume mixer. Microphones not working.

Browse

Activity

Personal

Business

Business Modules

Partners

Learn

Start here

Type of malware/attacks

How does it get on my computer?

Scams and grifts

Support

Important Information