Jump to content

"Name Not Available" in volume mixer. Microphones not working.


Recommended Posts

My microphones suddenly stopped working today with no visible cause in my Windows 10 recording devices. All I could find was something called "Name Not Available" in my volume mixer. Malwarebytes doesn't come up with anything after a standard scan. 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-05-2016 02
Ran by Chrome (administrator) on CHROME-PC (31-05-2016 23:57:45)
Running from C:\Farbar
Loaded Profiles: Chrome (Available Profiles: Chrome & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\btwdins.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Scarlet.Crush Productions) C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\AsusAudioCenter.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\System\HsMgr64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe
(Hammer & Chisel, Inc.) C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe
(Scarlet.Crush Productions) C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hammer & Chisel, Inc.) C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SndVol.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated)
HKLM\...\Run: [Cmaudio8788] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\WINDOWS\syswow64\HsMgr.exe [200704 2016-01-07] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\WINDOWS\system\HsMgr64.exe [282112 2016-01-07] ()
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15642744 2016-03-30] (Logitech Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2313408 2016-04-07] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4127488 2015-06-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Corsair Gaming Headset Software] => C:\Program Files (x86)\Corsair\Corsair Gaming Headset Software\HeadsetControlPanel.exe [2916160 2015-09-21] (Corsair Components, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Pidgin] => C:\Program Files (x86)\Pidgin\pidgin.exe [60176 2014-11-23] (The Pidgin developer community)
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [3985976 2016-05-20] (GOG.com)
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Amazon Music] => C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe [5907944 2016-04-15] ()
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Dxtory Update Checker 2.0] => C:\Program Files (x86)\ExKode\Dxtory2.0\UpdateChecker.exe [93696 2010-10-17] (Dxtory Software)
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [Discord] => C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\Discord.exe [57924280 2016-05-06] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3334528 2016-02-22] (Echobit LLC)
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\MountPoints2: {3f6ec3b8-e2cb-11e5-9c6b-f079596d81c7} - "F:\HTC_Sync_Manager_PC.exe" 
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-08-04]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ASUS\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk [2016-04-12]
ShortcutTarget: ScpToolkit Tray Notifications.lnk -> C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe (Scarlet.Crush Productions)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6ac48a59-6400-4e4a-ba33-c345720fe802}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a4b211d9-ba18-479b-b662-1b1957f70969}: [NameServer] 90.207.238.97,90.207.238.99

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3534360900-3526396429-430733197-1000 -> {E1554096-ED83-45B4-B2CF-D8179CFFF8EA} URL = hxxps://uk.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24] (Oracle Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-27] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-24] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-27] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-24] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-20] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-20] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3534360900-3526396429-430733197-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-04-24] ()

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Profile: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (BetterTTV) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-11-18]
CHR Extension: (YouTube) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google Search) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (AdBlock) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-05-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-07]
CHR Extension: (Gmail) - C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-11]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] ()
R2 btwdins; C:\Program Files\ASUS\Bluetooth Software\btwdins.exe [978688 2014-11-21] (Broadcom Corporation.)
R2 Ds3Service; C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe [389632 2016-01-10] (Scarlet.Crush Productions) [File not signed]
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [243984 2016-03-05] (EasyAntiCheat Ltd)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2016-02-22] (Echobit LLC)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [246328 2016-05-20] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6167096 2016-05-20] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-03-30] (Logitech Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-04] (Electronic Arts)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1750712 2015-06-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2102496 2015-06-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [224712 2015-07-24] (Safer-Networking Ltd.)
S3 updater; C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [464384 2016-01-10] (Nefarius Software Solutions) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2015-06-02] (C-Media Inc)
S3 CorsairAudioFilter; C:\Windows\system32\DRIVERS\corsveng2kamd64.sys [112808 2015-09-21] (Corsair Components, Inc.)
R3 EvolveVirtualAdapter; C:\Windows\System32\drivers\evolve.sys [21656 2016-02-22] (Echobit, LLC)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47200 2016-04-12] (hxxp://libusb-win32.sourceforge.net)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [36904 2016-04-25] (Wellbia.com Co., Ltd.)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-31 23:57 - 2016-05-31 23:57 - 00000000 ____D C:\FRST
2016-05-31 23:57 - 2016-05-31 23:57 - 00000000 ____D C:\Farbar
2016-05-31 22:32 - 2009-06-10 22:00 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20160531-223227.backup
2016-05-31 22:31 - 2016-05-31 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2016-05-31 22:31 - 2016-05-31 22:31 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2016-05-31 22:30 - 2016-05-31 22:30 - 16409960 _____ (Safer Networking Limited ) C:\Users\Chrome\Downloads\spybotsd162.exe
2016-05-31 19:52 - 2016-05-31 19:52 - 00000000 ____D C:\Users\Chrome\AppData\Local\MicMute
2016-05-31 19:46 - 2016-05-31 19:45 - 00044544 _____ (NirSoft) C:\WINDOWS\nircmd.exe
2016-05-31 19:44 - 2016-05-31 19:44 - 00121625 _____ C:\Users\Chrome\Downloads\nircmd.zip
2016-05-31 17:34 - 2016-05-31 17:36 - 13435557 _____ (KLCP ) C:\Users\Chrome\Downloads\K-Lite_Codec_Pack_1215_Basic.exe
2016-05-31 17:33 - 2016-05-31 17:33 - 00643143 _____ (UMEZAWA Takeshi ) C:\Users\Chrome\Downloads\utvideo-16.1.0-win.exe
2016-05-31 17:12 - 2016-05-31 17:12 - 00715038 _____ C:\WINDOWS\unins000.exe
2016-05-31 17:12 - 2016-05-31 17:12 - 00443445 _____ ( ) C:\Users\Chrome\Downloads\LagarithSetup_1327.exe
2016-05-31 17:12 - 2016-05-31 17:12 - 00443445 _____ ( ) C:\Users\Chrome\Downloads\LagarithSetup_1327 (1).exe
2016-05-31 16:13 - 2016-05-31 16:13 - 00000184 _____ C:\Users\Chrome\Downloads\DxtoryLicenceFile (1).dxtorylic
2016-05-31 15:52 - 2016-05-31 16:11 - 05952872 _____ (ExKode Co. Ltd. ) C:\Users\Chrome\Downloads\DxtorySetup2.0.134.exe
2016-05-27 19:31 - 2016-05-27 19:31 - 00001226 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-27 17:16 - 2016-05-27 17:16 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\The Creative Assembly
2016-05-25 21:18 - 2016-05-25 21:18 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-05-25 21:18 - 2016-05-25 21:18 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-05-25 21:18 - 2016-05-20 02:57 - 00113208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-05-25 21:18 - 2016-05-04 03:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-05-25 21:18 - 2016-05-04 03:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-05-25 21:18 - 2016-05-04 03:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-05-25 21:18 - 2016-05-04 03:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-05-25 21:17 - 2016-05-21 22:09 - 01581624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco64.dll
2016-05-25 21:17 - 2016-05-21 22:09 - 00046024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 39977920 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 35117112 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 31639096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 25401280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 21802816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 21346520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 18145256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 17740664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 10642912 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 08733280 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 02791360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 02419768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436822.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436822.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00909760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00786360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00772152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00708032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00669952 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00631104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00601936 _____ C:\WINDOWS\system32\nvmcumd.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00565208 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00549240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00452616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00423360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00379480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00377792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00346560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00315936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00178136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00155952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00153416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00131768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-05-25 21:17 - 2016-05-20 09:03 - 00000594 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-05-25 21:17 - 2016-05-20 09:03 - 00000594 _____ C:\WINDOWS\system32\nv-vk64.json
2016-05-25 17:54 - 2016-05-25 17:59 - 92261488 _____ C:\Users\Chrome\Downloads\OBS-Studio-0.14.2-With-Browser-Installer.exe
2016-05-25 17:44 - 2016-05-25 17:45 - 78327943 _____ C:\Users\Chrome\Downloads\obs-browser-1.22.zip
2016-05-23 13:51 - 2016-05-31 15:10 - 00007629 _____ C:\Users\Chrome\AppData\Local\Resmon.ResmonCfg
2016-05-21 16:57 - 2016-05-21 16:57 - 00000000 ____D C:\Users\Public\Documents\Monolith Productions
2016-05-20 14:21 - 2016-05-20 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2016-05-18 15:35 - 2016-05-18 15:35 - 02283873 _____ C:\Users\Chrome\Downloads\x264vfw_full_43_2694bm_43159_fix.exe
2016-05-18 15:35 - 2016-05-18 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x264vfw
2016-05-18 15:35 - 2016-05-18 15:35 - 00000000 ____D C:\Program Files (x86)\x264vfw
2016-05-17 16:29 - 2016-05-17 16:29 - 00002788 _____ C:\WINDOWS\System32\Tasks\klcp_update
2016-05-17 16:29 - 2016-05-17 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-05-17 16:29 - 2016-05-17 16:29 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-05-17 16:17 - 2016-05-17 16:27 - 27227952 _____ (KLCP ) C:\Users\Chrome\Downloads\K-Lite_Codec_Pack_1210_Standard.exe
2016-05-12 17:58 - 2016-05-12 17:59 - 15177944 _____ C:\Users\Chrome\Downloads\ffmpeg-20160512-git-cd244fa-win64-static.7z
2016-05-11 21:44 - 2016-04-14 06:38 - 00113216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-05-11 21:44 - 2016-04-14 06:38 - 00102976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-05-11 11:19 - 2016-04-23 05:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-05-11 11:19 - 2016-04-23 05:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-05-11 11:19 - 2016-04-23 05:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-05-11 11:19 - 2016-04-23 05:19 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-05-11 11:19 - 2016-04-23 05:19 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-05-11 11:19 - 2016-04-23 05:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-05-11 11:19 - 2016-04-23 05:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-05-11 11:19 - 2016-04-23 05:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-05-11 11:18 - 2016-05-06 05:53 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys
2016-05-11 11:18 - 2016-05-06 05:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-05-11 11:18 - 2016-05-06 05:03 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-05-11 11:18 - 2016-05-06 04:53 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-05-11 11:18 - 2016-05-06 04:49 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-11 11:18 - 2016-05-06 04:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-05-11 11:18 - 2016-05-06 04:43 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-05-11 11:18 - 2016-05-06 04:23 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-05-11 11:18 - 2016-04-30 07:42 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-05-11 11:18 - 2016-04-30 07:31 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-05-11 11:18 - 2016-04-23 07:12 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-05-11 11:18 - 2016-04-23 07:12 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-05-11 11:18 - 2016-04-23 07:12 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-05-11 11:18 - 2016-04-23 07:12 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-05-11 11:18 - 2016-04-23 07:12 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-05-11 11:18 - 2016-04-23 07:12 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-05-11 11:18 - 2016-04-23 07:12 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-05-11 11:18 - 2016-04-23 07:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-05-11 11:18 - 2016-04-23 06:28 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-05-11 11:18 - 2016-04-23 06:28 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-05-11 11:18 - 2016-04-23 06:26 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-05-11 11:18 - 2016-04-23 06:24 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 11:18 - 2016-04-23 06:24 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-05-11 11:18 - 2016-04-23 06:24 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-05-11 11:18 - 2016-04-23 06:24 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-05-11 11:18 - 2016-04-23 06:24 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-05-11 11:18 - 2016-04-23 06:24 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-05-11 11:18 - 2016-04-23 06:24 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-05-11 11:18 - 2016-04-23 06:22 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 11:18 - 2016-04-23 06:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-05-11 11:18 - 2016-04-23 06:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-05-11 11:18 - 2016-04-23 06:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-05-11 11:18 - 2016-04-23 06:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-05-11 11:18 - 2016-04-23 06:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-05-11 11:18 - 2016-04-23 06:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2016-05-11 11:18 - 2016-04-23 06:12 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-05-11 11:18 - 2016-04-23 06:11 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-05-11 11:18 - 2016-04-23 06:11 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-05-11 11:18 - 2016-04-23 06:11 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-11 11:18 - 2016-04-23 06:11 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-05-11 11:18 - 2016-04-23 06:11 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-05-11 11:18 - 2016-04-23 06:11 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-05-11 11:18 - 2016-04-23 06:10 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-05-11 11:18 - 2016-04-23 06:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-05-11 11:18 - 2016-04-23 06:10 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-05-11 11:18 - 2016-04-23 06:09 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-05-11 11:18 - 2016-04-23 06:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-05-11 11:18 - 2016-04-23 06:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-05-11 11:18 - 2016-04-23 06:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-05-11 11:18 - 2016-04-23 06:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-05-11 11:18 - 2016-04-23 06:09 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-11 11:18 - 2016-04-23 06:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-05-11 11:18 - 2016-04-23 06:09 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-05-11 11:18 - 2016-04-23 06:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-05-11 11:18 - 2016-04-23 06:08 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-05-11 11:18 - 2016-04-23 06:08 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-05-11 11:18 - 2016-04-23 06:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-05-11 11:18 - 2016-04-23 06:07 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-05-11 11:18 - 2016-04-23 06:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-05-11 11:18 - 2016-04-23 06:07 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-05-11 11:18 - 2016-04-23 06:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-05-11 11:18 - 2016-04-23 06:06 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-05-11 11:18 - 2016-04-23 06:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-05-11 11:18 - 2016-04-23 06:01 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-11 11:18 - 2016-04-23 06:01 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-05-11 11:18 - 2016-04-23 06:01 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 11:18 - 2016-04-23 06:01 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-05-11 11:18 - 2016-04-23 06:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-05-11 11:18 - 2016-04-23 06:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-05-11 11:18 - 2016-04-23 06:01 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-05-11 11:18 - 2016-04-23 06:01 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2016-05-11 11:18 - 2016-04-23 06:00 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll
2016-05-11 11:18 - 2016-04-23 05:56 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-05-11 11:18 - 2016-04-23 05:39 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-05-11 11:18 - 2016-04-23 05:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-05-11 11:18 - 2016-04-23 05:34 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-05-11 11:18 - 2016-04-23 05:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2016-05-11 11:18 - 2016-04-23 05:34 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-05-11 11:18 - 2016-04-23 05:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-11 11:18 - 2016-04-23 05:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-05-11 11:18 - 2016-04-23 05:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2016-05-11 11:18 - 2016-04-23 05:33 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-11 11:18 - 2016-04-23 05:32 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-05-11 11:18 - 2016-04-23 05:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 11:18 - 2016-04-23 05:32 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-05-11 11:18 - 2016-04-23 05:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-05-11 11:18 - 2016-04-23 05:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-05-11 11:18 - 2016-04-23 05:30 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-05-11 11:18 - 2016-04-23 05:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-05-11 11:18 - 2016-04-23 05:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-05-11 11:18 - 2016-04-23 05:29 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-05-11 11:18 - 2016-04-23 05:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-11 11:18 - 2016-04-23 05:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys
2016-05-11 11:18 - 2016-04-23 05:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-11 11:18 - 2016-04-23 05:29 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-05-11 11:18 - 2016-04-23 05:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2016-05-11 11:18 - 2016-04-23 05:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2016-05-11 11:18 - 2016-04-23 05:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-05-11 11:18 - 2016-04-23 05:28 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-11 11:18 - 2016-04-23 05:28 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-11 11:18 - 2016-04-23 05:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-11 11:18 - 2016-04-23 05:28 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-05-11 11:18 - 2016-04-23 05:28 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-05-11 11:18 - 2016-04-23 05:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-05-11 11:18 - 2016-04-23 05:27 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-05-11 11:18 - 2016-04-23 05:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-05-11 11:18 - 2016-04-23 05:26 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-05-11 11:18 - 2016-04-23 05:26 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2016-05-11 11:18 - 2016-04-23 05:25 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-05-11 11:18 - 2016-04-23 05:25 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-05-11 11:18 - 2016-04-23 05:25 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2016-05-11 11:18 - 2016-04-23 05:25 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-05-11 11:18 - 2016-04-23 05:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-05-11 11:18 - 2016-04-23 05:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-05-11 11:18 - 2016-04-23 05:24 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-05-11 11:18 - 2016-04-23 05:24 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-05-11 11:18 - 2016-04-23 05:24 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-05-11 11:18 - 2016-04-23 05:24 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-11 11:18 - 2016-04-23 05:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-05-11 11:18 - 2016-04-23 05:23 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-05-11 11:18 - 2016-04-23 05:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-05-11 11:18 - 2016-04-23 05:23 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-05-11 11:18 - 2016-04-23 05:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-11 11:18 - 2016-04-23 05:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-05-11 11:18 - 2016-04-23 05:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-05-11 11:18 - 2016-04-23 05:22 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-05-11 11:18 - 2016-04-23 05:21 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-11 11:18 - 2016-04-23 05:21 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-05-11 11:18 - 2016-04-23 05:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-05-11 11:18 - 2016-04-23 05:19 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-05-11 11:18 - 2016-04-23 05:19 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-11 11:18 - 2016-04-23 05:19 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-11 11:18 - 2016-04-23 05:19 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2016-05-11 11:18 - 2016-04-23 05:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-05-11 11:18 - 2016-04-23 05:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-11 11:18 - 2016-04-23 05:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-05-11 11:18 - 2016-04-23 05:17 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-05-11 11:18 - 2016-04-23 05:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-05-11 11:18 - 2016-04-23 05:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-05-11 11:18 - 2016-04-23 05:17 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2016-05-11 11:18 - 2016-04-23 05:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-11 11:18 - 2016-04-23 05:16 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-05-11 11:18 - 2016-04-23 05:15 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-05-11 11:18 - 2016-04-23 05:15 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-11 11:18 - 2016-04-23 05:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-05-11 11:18 - 2016-04-23 05:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-05-11 11:18 - 2016-04-23 05:15 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 11:18 - 2016-04-23 05:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-05-11 11:18 - 2016-04-23 05:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-05-11 11:18 - 2016-04-23 05:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-05-11 11:18 - 2016-04-23 05:13 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-05-11 11:18 - 2016-04-23 05:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-05-11 11:18 - 2016-04-23 05:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-05-11 11:18 - 2016-04-23 05:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-05-11 11:18 - 2016-04-23 05:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-05-11 11:18 - 2016-04-23 05:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-05-11 11:18 - 2016-04-23 05:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-05-11 11:18 - 2016-04-23 05:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-05-11 11:18 - 2016-04-23 05:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-05-11 11:18 - 2016-04-23 05:09 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-05-11 11:18 - 2016-04-23 05:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-05-11 11:18 - 2016-04-23 05:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-05-11 11:18 - 2016-04-23 05:07 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-05-11 11:18 - 2016-04-23 05:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-05-11 11:18 - 2016-04-23 05:07 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-05-11 11:18 - 2016-04-23 05:06 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-05-11 11:18 - 2016-04-23 05:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-05-11 11:18 - 2016-04-23 05:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-05-11 11:18 - 2016-04-23 05:04 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-11 11:18 - 2016-04-23 05:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-05-11 11:18 - 2016-04-23 05:03 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-11 11:18 - 2016-04-23 05:03 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-05-11 11:18 - 2016-04-23 05:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-05-11 11:18 - 2016-04-23 05:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-05-11 11:18 - 2016-04-23 05:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-05-11 11:18 - 2016-04-23 05:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-05-11 11:18 - 2016-04-23 05:02 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-05-11 11:18 - 2016-04-23 05:02 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-05-11 11:18 - 2016-04-23 05:01 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-05-11 11:18 - 2016-04-23 05:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-05-11 11:18 - 2016-04-23 05:00 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-11 11:18 - 2016-04-23 04:45 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-05-11 11:18 - 2016-04-23 03:10 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-05-11 11:18 - 2016-04-23 03:10 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2016-05-11 11:18 - 2016-04-18 23:30 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2016-05-08 10:19 - 2016-05-08 10:19 - 03642880 _____ (x264vfw project) C:\WINDOWS\system32\x264vfw64.dll
2016-05-08 10:19 - 2016-05-08 10:19 - 03621888 _____ (x264vfw project) C:\WINDOWS\SysWOW64\x264vfw.dll
2016-05-05 19:18 - 2016-05-05 19:18 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Codeusa Software
2016-05-04 03:23 - 2016-05-04 03:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-11-1.dll
2016-05-04 03:22 - 2016-05-04 03:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1-1-0-11-1.dll
2016-05-04 03:22 - 2016-05-04 03:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-11-1.exe
2016-05-04 03:22 - 2016-05-04 03:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-11-1.exe
2016-05-03 11:12 - 2016-04-27 15:33 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436510.dll
2016-05-03 11:12 - 2016-04-27 15:33 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436510.dll
2016-05-02 18:52 - 2016-05-25 21:59 - 00000000 ____D C:\Users\Chrome\Documents\Overwatch
2016-05-02 18:26 - 2016-05-02 18:26 - 00001218 _____ C:\Users\Public\Desktop\Overwatch.lnk
2016-05-02 18:26 - 2016-05-02 18:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-05-02 18:01 - 2016-05-27 14:01 - 00000000 ____D C:\Program Files (x86)\Overwatch

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-31 23:47 - 2016-02-09 00:56 - 00000000 ____D C:\Users\Chrome\AppData\Local\Sony
2016-05-31 23:40 - 2016-01-06 05:49 - 01011572 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-31 23:40 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2016-05-31 23:38 - 2015-04-11 22:43 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\.purple
2016-05-31 23:35 - 2015-04-11 19:12 - 00000000 ____D C:\Program Files (x86)\Steam
2016-05-31 23:34 - 2016-01-31 15:30 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-31 23:34 - 2016-01-06 05:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-31 23:34 - 2015-04-11 19:07 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-31 23:33 - 2015-10-30 07:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-05-31 22:34 - 2016-02-09 01:17 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-05-31 22:34 - 2015-09-10 20:53 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-05-31 22:32 - 2016-02-04 14:50 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-05-31 22:02 - 2015-04-11 19:07 - 00000926 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-31 21:57 - 2015-04-21 01:44 - 00000000 ____D C:\Users\Chrome\AppData\Local\Battle.net
2016-05-31 21:48 - 2016-02-09 21:55 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-05-31 21:47 - 2015-06-17 18:41 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\TS3Client
2016-05-31 19:43 - 2015-10-15 19:22 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\OBS
2016-05-31 17:43 - 2016-01-30 20:51 - 00000000 ____D C:\Users\Chrome\AppData\Local\CrashDumps
2016-05-31 17:40 - 2016-02-17 12:29 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\obs-studio
2016-05-31 17:37 - 2015-11-19 16:13 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\vlc
2016-05-31 17:33 - 2015-11-19 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ut Video Codec Suite
2016-05-31 17:33 - 2015-11-19 15:29 - 00000000 ____D C:\Program Files\utvideo
2016-05-31 17:12 - 2015-11-19 15:29 - 00004888 _____ C:\WINDOWS\unins000.dat
2016-05-31 16:12 - 2015-11-29 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
2016-05-31 16:12 - 2015-11-19 15:07 - 00000000 ____D C:\Users\Chrome\AppData\Local\Dxtory Software
2016-05-31 16:12 - 2015-11-19 15:07 - 00000000 ____D C:\Program Files (x86)\ExKode
2016-05-31 14:59 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-31 14:57 - 2015-04-15 12:51 - 00000000 ____D C:\Users\Chrome\AppData\Local\Adobe
2016-05-31 14:54 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-31 00:24 - 2016-01-06 05:49 - 00000000 ____D C:\Users\Chrome
2016-05-31 00:08 - 2015-10-15 19:47 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Skype
2016-05-30 16:43 - 2015-08-23 14:16 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Audacity
2016-05-30 13:31 - 2016-01-06 05:48 - 04929048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-27 19:31 - 2015-09-10 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-05-27 19:31 - 2015-09-10 20:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-25 21:19 - 2016-01-06 05:48 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-05-25 21:19 - 2015-04-11 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-05-25 21:19 - 2015-04-11 18:21 - 00000000 ____D C:\Temp
2016-05-25 17:59 - 2016-02-17 12:29 - 00001330 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2016-05-25 17:46 - 2016-02-17 12:29 - 00000000 ____D C:\Program Files (x86)\obs-studio
2016-05-25 11:35 - 2015-08-30 17:43 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-05-25 11:34 - 2015-09-28 22:52 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\HandBrake
2016-05-25 11:34 - 2015-08-30 17:36 - 00000000 ___RD C:\Users\Chrome\Creative Cloud Files
2016-05-25 10:51 - 2015-09-02 22:52 - 00000000 __RHD C:\Users\Chrome\syphax1337@sky.com Creative Cloud Files
2016-05-24 23:45 - 2015-05-29 11:27 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-05-22 22:02 - 2016-01-10 01:40 - 13509184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-05-21 23:25 - 2015-04-20 00:30 - 00000000 ____D C:\Users\Chrome\Documents\My Games
2016-05-21 22:09 - 2015-12-06 18:48 - 00141256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2016-05-21 15:29 - 2015-04-15 12:52 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-20 12:39 - 2015-05-29 01:02 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2016-05-20 09:03 - 2016-01-10 01:40 - 20305768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-05-20 09:03 - 2016-01-10 01:40 - 17662432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-05-20 09:03 - 2016-01-10 01:40 - 17379520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-05-20 09:03 - 2016-01-10 01:40 - 14410024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-05-20 09:03 - 2016-01-10 01:40 - 03811440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-05-20 09:03 - 2016-01-10 01:40 - 03371648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-05-20 09:03 - 2016-01-10 01:40 - 00040084 _____ C:\WINDOWS\system32\nvinfo.pb
2016-05-20 03:08 - 2016-01-31 15:30 - 06348344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-05-20 03:08 - 2016-01-31 15:30 - 02454976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-05-20 03:08 - 2016-01-31 15:30 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-05-20 03:08 - 2016-01-31 15:30 - 01352760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-05-20 03:08 - 2016-01-31 15:30 - 00533560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-05-20 03:08 - 2016-01-31 15:30 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-05-20 03:08 - 2016-01-31 15:30 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-05-20 03:08 - 2016-01-31 15:30 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-05-18 09:37 - 2016-01-31 15:30 - 06448223 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-05-14 17:36 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-13 12:31 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2016-05-13 00:03 - 2015-04-11 19:07 - 00002327 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-12 23:04 - 2015-07-30 17:08 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-05-12 21:25 - 2015-10-30 10:07 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-12 21:25 - 2015-10-30 08:24 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-12 21:25 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-12 13:34 - 2016-04-12 00:16 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\DarkSoulsIII
2016-05-12 11:29 - 2015-04-15 12:52 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-05-11 21:44 - 2015-04-11 18:26 - 00000000 ____D C:\Users\Chrome\AppData\Local\NVIDIA
2016-05-11 20:57 - 2015-10-30 08:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-05-11 20:57 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-11 13:07 - 2015-07-22 15:08 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-11 13:03 - 2015-07-22 15:08 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-05-11 10:57 - 2015-04-11 19:07 - 00003984 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-11 10:57 - 2015-04-11 19:07 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-09 17:23 - 2015-08-08 14:26 - 00000000 ____D C:\Users\Chrome\Documents\Paradox Interactive
2016-05-07 02:05 - 2016-01-26 21:33 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\discord
2016-05-06 10:58 - 2016-01-26 21:33 - 00002275 _____ C:\Users\Chrome\Desktop\Discord.lnk
2016-05-06 10:58 - 2016-01-26 21:33 - 00000000 ____D C:\Users\Chrome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-05-06 10:58 - 2016-01-26 21:33 - 00000000 ____D C:\Users\Chrome\AppData\Local\Discord
2016-05-06 10:58 - 2015-09-16 16:45 - 00000000 ____D C:\Users\Chrome\AppData\Local\SquirrelTemp
2016-05-05 22:53 - 2015-08-28 00:30 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-05-03 22:06 - 2015-11-19 15:29 - 00304640 _____ C:\WINDOWS\system32\utv_core.dll
2016-05-03 22:06 - 2015-11-19 15:29 - 00273920 _____ (TODO: <会社名>) C:\WINDOWS\system32\utv_dmo.dll
2016-05-03 22:06 - 2015-11-19 15:29 - 00132608 _____ C:\WINDOWS\system32\utv_vcm.dll
2016-05-03 22:05 - 2015-11-19 15:29 - 00221696 _____ C:\WINDOWS\SysWOW64\utv_core.dll
2016-05-03 22:05 - 2015-11-19 15:29 - 00213504 _____ (TODO: <会社名>) C:\WINDOWS\SysWOW64\utv_dmo.dll
2016-05-03 22:05 - 2015-11-19 15:29 - 00109056 _____ C:\WINDOWS\SysWOW64\utv_vcm.dll
2016-05-03 11:15 - 2015-07-24 15:09 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2016-05-03 11:12 - 2016-01-06 05:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-05-03 11:12 - 2015-07-30 17:08 - 00000000 ____D C:\Users\Chrome\AppData\Local\Packages
2016-05-03 11:11 - 2016-01-06 05:48 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2016-05-03 11:11 - 2015-08-16 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-05-03 11:07 - 2016-01-05 02:56 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-05-03 11:07 - 2015-10-15 19:47 - 00000000 ____D C:\ProgramData\Skype
2016-05-02 18:05 - 2016-01-28 18:08 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-05-02 18:05 - 2015-04-21 01:46 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2016-05-02 06:39 - 2015-04-11 18:25 - 01377800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-05-02 06:39 - 2015-04-11 18:25 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-05-02 06:38 - 2015-11-21 02:45 - 00112032 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-05-02 06:38 - 2015-04-11 18:25 - 01767944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-05-02 06:38 - 2015-04-11 18:25 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll

==================== Files in the root of some directories =======

2016-02-27 22:24 - 2016-02-27 22:24 - 0052536 _____ () C:\Users\Chrome\AppData\Roaming\StardewValley.rar
2016-01-25 23:03 - 2016-02-18 17:00 - 0001456 _____ () C:\Users\Chrome\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-12-27 16:22 - 2015-12-27 16:22 - 0002731 _____ () C:\Users\Chrome\AppData\Local\recently-used.xbel
2016-05-23 13:51 - 2016-05-31 15:10 - 0007629 _____ () C:\Users\Chrome\AppData\Local\Resmon.ResmonCfg
2015-10-31 16:37 - 2015-10-31 16:37 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2015-11-19 19:17 - 2015-11-19 19:17 - 0000016 _____ () C:\ProgramData\mntemp

Some files in TEMP:
====================
C:\Users\Chrome\AppData\Local\Temp\6699d3ee8dd9cf775caae782c8f44f03.dll
C:\Users\Chrome\AppData\Local\Temp\c0bc19d87de4680655f839ccad11be16.dll
C:\Users\Chrome\AppData\Local\Temp\CloudDriveInstaller.exe
C:\Users\Chrome\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Chrome\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Chrome\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Chrome\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Chrome\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Chrome\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Chrome\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-05-30 16:58

==================== End of FRST.txt ============================

 

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-05-2016 02
Ran by Chrome (2016-05-31 23:58:02)
Running from C:\Farbar
Windows 10 Pro Version 1511 (X64) (2016-01-06 04:53:36)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3534360900-3526396429-430733197-500 - Administrator - Disabled)
Chrome (S-1-5-21-3534360900-3526396429-430733197-1000 - Administrator - Enabled) => C:\Users\Chrome
DefaultAccount (S-1-5-21-3534360900-3526396429-430733197-503 - Limited - Disabled)
Guest (S-1-5-21-3534360900-3526396429-430733197-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.016.20041 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.2.0 - Adobe Systems Incorporated)
Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version:  - Triumph Studios)
Amazon Cloud Drive (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Cloud Drive) (Version: 3.3.1.32 - Amazon.com, Inc.)
Amazon Music (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Amazon Music) (Version: 4.3.0.1330 - Amazon Services LLC)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Ashes of the Singularity (HKLM-x32\...\Steam App 228880) (Version:  - Oxide Games)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version:  - Ubisoft)
Assassin's Creed Rogue (HKLM\...\Steam App 311560) (Version:  - Ubisoft Sofia)
ASUS Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.1.170 - ASUS)
ASUS Xonar DGX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version:   - ASUSTeK Computer Inc.)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version:  - WB Games Montreal)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Black Desert Character Creator (HKLM-x32\...\{83AC6E37-6497-4A01-BB5D-AA845BA08832}) (Version: 1.0.0.2 - Daum Games EU)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU)
Blood Bowl 2 (HKLM-x32\...\Steam App 236690) (Version:  - Cyanide Studios)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderless Gaming (HKLM\...\Steam App 388080) (Version:  - AndrewMD5)
Broforce (HKLM-x32\...\Steam App 274190) (Version:  - Free Lives)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version:  - Canon Inc.)
Catacomb Kids (HKLM-x32\...\Steam App 315840) (Version:  - FourbitFriday)
Corsair Gaming Headset Software (HKLM-x32\...\{88ADDCAA-6591-4D41-A7F1-2F38B7B049BB}) (Version: 2.0.37 - Corsair)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version:  - Paradox Development Studio)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DARK SOULS III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Discord) (Version: 0.0.290 - Hammer & Chisel, Inc.)
Dishonored (HKLM\...\Steam App 205100) (Version:  - Arkane Studios)
Distant Worlds: Universe (HKLM\...\Steam App 261470) (Version:  - Code Force)
Dragon's Dogma: Dark Arisen (HKLM-x32\...\Steam App 367500) (Version:  - Capcom)
Duck Game (HKLM-x32\...\Steam App 312530) (Version:  - Landon Podbielski)
DuelystLauncher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\launcher) (Version: 0.0.4 - Counterplay Games Inc.)
Dungeons & Dragons: Chronicles of Mystara (HKLM-x32\...\Steam App 229480) (Version:  - Iron Galaxy Studios)
Dxtory version 2.0.134 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.134 - ExKode Co. Ltd.)
Enter the Gungeon (HKLM\...\Steam App 311690) (Version:  - Dodge Roll)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version:  - Paradox Development Studio)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
FortressCraft Evolved (HKLM\...\Steam App 254200) (Version:  - ProjectorGames)
Freedom Planet (HKLM-x32\...\Steam App 248310) (Version:  - GalaxyTrail)
Frozen Synapse (HKLM-x32\...\Steam App 98200) (Version:  - Mode 7)
FTL -  Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com)
GameRanger (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\GameRanger) (Version:  - GameRanger Technologies)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Hand of Fate (HKLM\...\Steam App 266510) (Version:  - Defiant Development)
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
HELLDIVERS™ (HKLM-x32\...\Steam App 394510) (Version:  - Arrowhead Game Studios)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hotline Miami 2: Wrong Number (HKLM\...\Steam App 274170) (Version:  - Dennaton Games)
HOTSLogsUploader (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\99a83d131490dc73) (Version: 1.0.0.12 - HOTSLogsUploader)
Intel(R) Chipset Device Software (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Invisible, Inc. (HKLM-x32\...\Steam App 243970) (Version:  - Klei Entertainment)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Keep Talking and Nobody Explodes (HKLM-x32\...\Steam App 341800) (Version:  - Steel Crate Games)
Kerbal Space Program (HKLM-x32\...\{ED501254-06B8-4883-B7F3-4799C9EDD288}_is1) (Version: 1.0 - Squad)
K-Lite Codec Pack 12.1.0 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
Lame ACM MP3 Codec (HKLM-x32\...\LameACM) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Logitech Gaming Software 8.82 (HKLM\...\Logitech Gaming Software) (Version: 8.82.151 - Logitech Inc.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
Mumble 1.2.10 (HKLM-x32\...\{63243F5C-E941-4461-A4B0-2689A9A3BF13}) (Version: 1.2.10 - Thorvald Natvig)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team)
Nuclear Throne (HKLM-x32\...\Steam App 242680) (Version:  - Vlambeer)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.2 - OBS Project)
Offworld Trading Company (HKLM\...\Steam App 271240) (Version:  - Mohawk Games)
One Finger Death Punch (HKLM-x32\...\Steam App 264200) (Version:  - Silver Dollar Games)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
PlanetSide 2 (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
Prison Architect (HKLM-x32\...\Steam App 233450) (Version:  - Introversion Software)
Project Zomboid (HKLM-x32\...\Steam App 108600) (Version:  - The Indie Stone)
Project Zomboid Dedicated Server (HKLM-x32\...\Steam App 380870) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games)
ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions)
Sentinels of the Multiverse (HKLM\...\Steam App 337150) (Version:  - Handelabra Games Inc.)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version:  - Yacht Club Games)
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.001 - ASUSTeKcomputer.Inc)
Space Engineers (HKLM-x32\...\Steam App 244850) (Version:  - Keen Software House)
Spec Ops: The Line (HKLM\...\Steam App 50300) (Version:  - Yager Development)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.)
Squad (HKLM-x32\...\Steam App 393380) (Version:  - Offworld Industries)
Star Citizen Launcher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Star Citizen Launcher) (Version: 00.01.00.00 - Cloud Imperium Games)
Star Realms (HKLM\...\Steam App 438140) (Version:  - White Wizard Games)
Stardew Valley (HKLM-x32\...\Steam App 413150) (Version:  - ConcernedApe)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM\...\Steam App 281990) (Version:  - Paradox Development Studio)
Stronghold HD (HKLM-x32\...\1207658712_is1) (Version: 2.3.0.5 - GOG.com)
Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version:  - Berserk Games)
TeamSpeak 3 Client (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Culling (HKLM-x32\...\Steam App 437220) (Version:  - Xaviant)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.12.1.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.12.1.0 - GOG.com)
Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version:  - Creative Assembly)
Undertale (HKLM-x32\...\Steam App 391540) (Version:  - tobyfox)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 16.1.0 - UMEZAWA Takeshi)
Vagante (HKLM-x32\...\Steam App 323220) (Version:  - Nuke Nine)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WS Launcher (HKLM-x32\...\WS Launcher 30.0.4.3) (Version: 30.0.4.3 - WS.ARMA.SU)
WS Launcher (x32 Version: 30.0.4.3 - WS.ARMA.SU) Hidden
x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version:  - )
XCom Long War EW Mod version 1.0 (HKLM-x32\...\{860C3266-65B9-4BF2-937A-1778483046B5}_is1) (Version: 1.0 - JohnnyLump)
Zeus and Poseidon (HKLM-x32\...\1207659039_is1) (Version: 2.1.0.9 - GOG.com)
Ziggurat (HKLM\...\Steam App 308420) (Version:  - Milkstone Studios)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-873DD02DC4E5}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Chrome\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07649589-DD2E-40BA-B5EB-72331EB194EA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {08467819-93BE-4000-90D6-6395665339B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {0D1D20F9-46CE-4281-B972-EBA497CECC5D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0FDD84DB-8BB3-480D-8CF9-D88095261BDA} - System32\Tasks\Amazon Music Helper => 
Task: {103981AC-AC4E-4ED5-B708-0B1CAB69C090} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {12A81D19-0101-433B-BDA1-5F194DC6F14D} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {19F0EDB4-BAF1-42BD-BABC-CE39795F2FE3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {1BA447D3-7019-4290-B20F-81CD041A3850} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {1D1DC3FC-7279-417F-854D-29BF0F8B6F6B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {20F19358-3843-4784-946F-E3ED46A68156} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {27FC2565-643F-4DF9-95F3-1A5429B0BCDA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {298F7C97-2736-42C2-8C59-288CD0140D49} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2DCAB4DE-D52A-4D2A-ACF6-37EB307BBDF1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3101DDF6-5797-48AF-9145-FE19C30E0917} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {3881AA14-CFF5-41EA-9479-670C3B3E3F28} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation)
Task: {389A8380-0159-4346-B5A4-663178B13451} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3AFC2BFC-9355-4920-B389-6A692E101082} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {566164D4-0638-48AA-8F53-B433E2FD20FA} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] ()
Task: {5A21CFFC-5200-4BE4-BBFC-37609F7B0280} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {5C86DD5B-4483-41A7-83C8-EA0F78E345CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {5F992197-D1CC-496C-BCFB-B18927DB046A} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {6242E5DA-393C-49FF-8817-2EF97FE74473} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {6F6D4983-251B-4DED-833B-7C40C7819416} - System32\Tasks\updater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [2016-01-10] (Nefarius Software Solutions)
Task: {71C618B9-519D-4090-99BF-5651A6131ABE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7C461958-C8D1-409C-8711-CD501B9505F7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {7F8C13AE-1DF5-4C43-BC1A-09DBD16207E0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {8091AEBC-C752-45AC-A187-BBDB0E7A5678} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {80D1E8A8-4C9F-4371-A653-04058B3D074B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {95A21824-44D9-41FE-B9FC-10100110DD7B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {99BF0477-D4C3-4788-B2CE-CF4CDB1C9276} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {9C35E768-012C-4EC1-A2C2-15AC7637A4D6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {B5CF8B00-8DD3-4F99-B5A0-131F21255EAA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C59D0FEE-AEB9-494D-B84C-3CEA256B5E72} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {D461E812-2DDF-433B-8784-D138D2938FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {D8EFC2BC-8D24-46DE-A679-6F7615B24CBB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DB43FED6-2C1D-43DA-A005-4B1CC6D94B85} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E35A5455-F44A-4D16-9749-433A79FB815C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E8456778-BE22-4362-8D55-D7E5B13CA4D5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {EE102F5A-7415-4429-B3D8-838F9D76C13B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {F4D91A46-D489-4FAE-861D-ADDC17E178C0} - System32\Tasks\AdobeAAMUpdater-1.0-Chrome-PC-Chrome => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated)
Task: {FD6F58A3-6E84-419D-A040-9CE21B4363D1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {FE761C93-4741-4927-90B0-48F6B5F1FE4C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-01-31 15:30 - 2016-05-20 03:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-01-06 05:48 - 2014-01-28 04:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2014-11-21 18:51 - 2014-11-21 18:51 - 00049408 _____ () C:\Program Files\ASUS\Bluetooth Software\btwleapi.dll
2015-04-11 18:10 - 2014-04-24 07:29 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2016-05-13 12:19 - 2016-05-13 12:19 - 00307712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ReactiveSockets\8646218657a9e1a03dfd1082f11cb43d\ReactiveSockets.ni.dll
2014-05-02 11:52 - 2014-05-02 11:52 - 00599040 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\irrKlang.NET4.dll
2014-05-02 06:55 - 2014-05-02 06:55 - 00185344 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpflac.dll
2014-05-02 06:05 - 2014-05-02 06:05 - 00173056 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpmp3.dll
2016-02-27 14:58 - 2016-05-02 06:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-12-27 16:53 - 2016-05-02 06:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-02-27 14:58 - 2016-05-02 06:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-27 21:42 - 2016-05-02 06:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-04-27 21:42 - 2016-05-02 06:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-27 21:42 - 2016-05-02 06:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-27 21:42 - 2016-05-02 06:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-30 15:33 - 2016-05-02 06:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-04-27 21:42 - 2016-05-02 06:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-04-27 21:42 - 2016-05-02 06:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-06-23 17:19 - 2016-04-15 01:44 - 05907944 _____ () C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe
2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-01-06 18:57 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-11 11:18 - 2016-04-23 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-11 11:18 - 2016-04-23 05:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-11 11:18 - 2016-04-23 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-11 11:18 - 2016-04-23 04:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-11 11:18 - 2016-04-23 05:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-08-06 15:13 - 2013-06-21 11:01 - 00109848 _____ () C:\WINDOWS\SYSTEM32\AcpiServiceVnA64.dll
2015-08-06 15:13 - 2014-05-22 16:24 - 00096568 _____ () C:\WINDOWS\SYSTEM32\audioLibVc.dll
2015-08-13 19:58 - 2016-01-07 16:15 - 00200704 _____ () C:\Windows\SysWOW64\HsMgr.exe
2015-08-13 19:58 - 2016-01-07 16:15 - 00282112 _____ () C:\Windows\System\HsMgr64.exe
2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2016-03-30 18:17 - 2016-03-30 18:17 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2016-03-30 18:17 - 2016-03-30 18:17 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2016-04-19 13:32 - 2016-04-19 13:33 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-01-06 05:48 - 2016-05-31 23:34 - 00043152 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2016-01-06 05:48 - 2014-01-28 04:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2016-02-04 14:50 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-02-04 14:50 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-02-04 14:50 - 2014-05-13 13:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-02-04 14:50 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-04-12 00:02 - 2016-05-02 07:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-01-07 16:13 - 2012-06-06 02:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00100352 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 01274655 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00328186 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00107365 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00190464 _____ () C:\Program Files (x86)\Pidgin\libsasl.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 02097721 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00818985 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2015-11-08 03:39 - 2015-11-08 03:39 - 00125151 _____ () C:\Program Files (x86)\Pidgin\plugins\libskypeweb.dll
2015-03-13 01:52 - 2015-03-13 01:52 - 00278906 _____ () C:\Program Files (x86)\Pidgin\libjson-glib-1.0.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00417758 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00029225 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00102400 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00115712 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00140288 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2016-05-06 10:58 - 2016-05-06 06:40 - 02757304 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\libdiscord.dll
2016-05-06 10:58 - 2016-05-06 10:58 - 01746104 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\ffmpeg.dll
2016-05-06 10:58 - 2016-05-06 06:40 - 00244920 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\resources\node_modules\discord_toaster\discord_toaster.node
2016-05-06 10:58 - 2016-05-06 06:40 - 00112312 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\resources\node_modules\discord_overlay\discord_overlay.node
2016-05-06 10:58 - 2016-05-06 06:40 - 01843896 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\libglesv2.dll
2016-05-06 10:58 - 2016-05-06 06:40 - 00020664 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.290\libegl.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2015-04-11 19:13 - 2016-04-29 21:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-04-11 19:13 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-04-11 19:13 - 2016-04-30 01:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
2015-04-11 19:13 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-04-11 19:13 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-04-11 19:13 - 2016-04-30 01:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-04-11 19:13 - 2016-04-28 02:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-04-19 13:32 - 2016-04-19 13:33 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 13:32 - 2016-04-19 13:33 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-05-13 00:03 - 2016-05-11 12:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
2016-05-13 00:03 - 2016-05-11 12:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
2016-05-31 23:38 - 2016-05-31 23:38 - 00140800 _____ () \\?\C:\Users\Chrome\AppData\Local\Temp\D562.tmp.node
2016-05-13 00:03 - 2016-05-11 12:48 - 17565848 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll
2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en\WindowsLive.Writer.Localization.resources.dll
2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en-GB\WindowsLive.Writer.Localization.resources.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7902 more sites.

IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123simsen.com -> www.123simsen.com

There are 7902 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2016-05-31 22:32 - 00452621 ____R C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    1000gratisproben.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    10sek.com
127.0.0.1    www.10sek.com
127.0.0.1    www.1-2005-search.com
127.0.0.1    1-2005-search.com
127.0.0.1    123fporn.info
127.0.0.1    www.123fporn.info
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123haustiereundmehr.com
127.0.0.1    123moviedownload.com
127.0.0.1    www.123moviedownload.com

There are 15530 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3534360900-3526396429-430733197-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Chrome\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{59cb0d1f-5276-4153-8cef-1080b239f0ba}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKLM\...\StartupApproved\Run32: => "Corsair Gaming Headset Software"
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "EvolveClient"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{42B2120D-FC90-45DC-8420-AC93644E110F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
FirewallRules: [{1FFF9F36-F041-4956-B3F5-5E132578CA1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
FirewallRules: [{7FD64335-77AB-4202-B096-D660284D6184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe
FirewallRules: [{5EACADEF-D345-497F-9DF7-DC8514D9CC9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe
FirewallRules: [{6B563140-F2AF-404E-BF17-B48666E7C65E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{41C7FE7C-C0E4-46A3-85C4-BB814AAC68A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{A634B882-2683-4548-82D5-8F40F36C0CDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{DF7CE8F5-3049-4C11-AA0C-22A3C481CB4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{3ED26C78-EE01-4CB3-B564-747C5329C976}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{816A429B-9C2F-4C04-B28E-033B9E462D02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{ACED841E-9E4B-40CD-8031-BAB20A5A0AA2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{19F39831-A6EF-4A8B-8190-6C3ACDF6BA4C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{B7C6BDDC-3868-474A-B983-17A49B1BB707}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{1177AAA4-09D9-4145-A53F-F835DB0194A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{BB480C0D-B9BA-4A55-B0CD-15B74CE53F47}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D2B5F4EA-A7FF-4014-BCEB-E36A4D08547C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe
FirewallRules: [{0877938F-D38E-4822-9FE6-D2C5B08CAC9B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe
FirewallRules: [{417DD305-8ECD-49FB-B18D-F761C2834E7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe
FirewallRules: [{CA090C47-152A-4D3A-B6A5-60EEF7F28448}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe
FirewallRules: [{E49864C5-06AD-4256-AD71-1B8DD7CDF41D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{77B9D513-77FC-4BE8-9E67-10E16C545214}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{8CB7F7CB-A3C5-42EC-A267-D0D4D0C0222D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [{106D4CCD-6E7B-46C3-88A8-16526A6E6E54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [{1704D386-BA75-42BF-8CFB-DC3A51B510B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{BE442F5E-A3C3-4973-8B3B-2A44BF32C290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{99CCA4A7-FAD6-4434-A977-A6D268C3F80B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe
FirewallRules: [{FB6D7A7A-D4B1-4283-A434-B438BCF01F9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe
FirewallRules: [{7EBACC13-D0B3-4A87-844F-E2A9A646CF7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe
FirewallRules: [{F88BC024-650F-41B0-AF20-5F39898C5674}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe
FirewallRules: [{9C7D1D65-A5DE-4621-A777-D0F49BDF3C51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{FF863D92-B244-4796-BB14-8DCB2B388A32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{AB8C7E3A-D21C-4428-BD7C-9340A1389748}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{211619D3-B695-489A-9E6A-31B4CFAE1FD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{C8EE8E71-DC26-4C94-845E-7617042459B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{CBAAA87B-F3DC-4DCD-80FD-E44EF0B203E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{C062E813-A20C-4F7D-AE16-EA91C9634DAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
FirewallRules: [{32890334-962F-4259-ABA4-7286879ADF06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
FirewallRules: [{A0B1753D-1030-40EB-B678-11C879764BA6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe
FirewallRules: [{263780F5-1C86-4EA5-A55A-EBF612E4BDF7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe
FirewallRules: [{7A93660D-46BE-4E7E-ABF7-013D9EC42E3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{14C5C4A9-92DC-4589-A8C2-0341C0015212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{FE95B31F-8BE0-4854-8D81-32640F504371}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [{DEE3ADEB-BEA8-464F-B460-57AEC7E16CBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [{5791843D-A024-4174-BEDF-4036752F514A}] => (Allow) LPort=1900
FirewallRules: [{D7B4B599-5B25-4E0C-B032-8D5D5D59539D}] => (Allow) LPort=2869
FirewallRules: [{580CC525-077D-4126-83DC-AE2E1EE6D9DE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{F08181D2-2B7E-4F10-BA34-A5E544C60789}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{9B505671-061F-42E1-BE11-21C1D2D36ED2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [UDP Query User{211EA8AC-2374-4F8B-A74C-743BB611526E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{6DB3B0A1-C51C-440B-8D33-FDA94E86D971}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{262061AE-ED76-42FB-8AF5-DC1055496182}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DA1512A1-EC86-4D01-84D5-F23635DDDE49}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{41B0C4D5-40FD-4DEE-8745-E9180C0D7501}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DDE18B2A-47BE-413F-BBC7-7FF18781DF2B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{101978AB-6241-48D6-885B-3E93ACDA66D6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B23C943B-23CB-4C8E-9934-28D68DE21BF2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8A62768B-CE4D-423A-93EE-26E9719D0A73}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F17F03E6-BA75-4B22-A375-D25951DFD072}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5439F702-CB64-425A-A607-FECA7249D3C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4171695E-ECA8-4C53-87D9-B71AEDDA4E0D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{6B10DB0F-D3A9-4D27-9D44-2B5029CF4EED}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{5314C92C-2CCE-43D5-9BC1-5616C6585A9C}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{08A1B0E5-768D-4672-9075-B3732E661FB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{B20E6F58-42C0-48AA-8911-0B180872A33A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{7D1B6F19-D4F1-4FAE-B7E8-66CA49D23A1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{FCF1F3E0-0B0A-4F2E-A87C-908BB7971479}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{7FC89701-142C-49A7-89A6-7DA90D8DE19F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{D99C6495-ACB3-4C74-B977-4B2A7E2464E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{85560EC6-5875-42E9-9DF0-FCD3AF93B97E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{FEE96929-AB79-4111-ADE7-6DAE078C395B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{AFBF4F10-A557-4592-B35E-B8974D9A5A65}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B763A22C-BE37-4B2E-B08F-1B7E098352A3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{8000B980-63CB-4C7B-BAE1-9C2150893FC8}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{2553592E-970A-4850-9058-0C94985DBA59}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [{30B7E0E7-85A5-4050-831F-1138AE21B285}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{1102369C-4EFF-4F77-B314-26D2C6C2CF4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [TCP Query User{29D1B479-34BB-4731-9046-F883E9EE8F98}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{44FC230E-F537-418E-B964-CEBFE3DA7148}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{D844C2AB-3081-4C7A-ABBB-9521BE469E93}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{CA30C963-EB65-4771-A19C-7CF86B52C362}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{FF29E651-5069-44FE-AE55-3FD3586B49D0}] => (Allow) LPort=1542
FirewallRules: [{7E4393A1-00FD-479F-816D-36B3F64616F4}] => (Allow) LPort=1542
FirewallRules: [{9679AA36-25A4-4FEA-ACAE-17D2B926148A}] => (Allow) LPort=53
FirewallRules: [{670428EE-EC7B-4590-9429-F179DA0A5E32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{916935FF-7530-4CA2-8EEE-5BC71F846942}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [TCP Query User{1E062D3F-9499-4454-A097-A8B0C0826E06}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{2AF9E8E4-C8D5-4E55-8095-0B0F179A8F81}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{FCDCE93D-29A0-47CE-80F6-BCE7F62882ED}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{B52E82B2-7FEF-49CD-8753-BF6F344B3104}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [TCP Query User{264719E5-E622-4054-8273-84F77C9A03C5}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{6D19437D-8562-4BF4-B4AB-A7B3E7865C41}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{6CD64D70-2D44-4995-816F-F3E9EC205CE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe
FirewallRules: [{40D0E929-8624-4D36-9C39-C48850D5BB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe
FirewallRules: [{0169B266-A3FF-4A6D-8340-5797078E748F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{88749B37-3727-4925-A1CF-C35F6CB12FCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{AAC61384-EB30-476C-A35D-96D5C1F9140E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{C23F54DE-53F4-4782-B926-ACB223C06829}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{032D6843-A93B-4156-83A8-FB7B0BF52BCF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{932A5B25-433C-4F6A-B913-E618B238468E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BF4552D4-82E9-45E0-9223-E0CDA8085E8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FD9B2D32-4771-4ED5-AD5B-4AF510F55AF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ECDAEF85-D47C-49E7-8D12-10A80C2CA839}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F808D909-3EBD-4E2C-AF07-4DC5B958FB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{55169821-6D6A-4D40-A660-4978504E6BE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{B918BB39-14E9-49F0-8EFB-A06D584C0B72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{65D51746-E283-4740-88F9-F22FB6808E4C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{9E404795-DAAC-4C84-A47E-339B8A0551DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{D4D03C04-1AC7-4FDD-85A1-4D46DE231EAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{B109D6B9-52F9-4DEC-B8F8-90C2E6B26642}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe
FirewallRules: [{FBDAD585-8631-4449-9191-8870216C3AA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe
FirewallRules: [{C1C6710C-EC87-4262-A1DE-2A1B414BC9C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{58C93C26-3ACC-44F3-BFFF-C9136776888A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{2DB836B7-C1A7-4C74-9729-CAAADC419CA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{7CA0660F-B4FF-4797-B039-5307F6FD1743}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{5992C3E4-2BB8-43A3-92DD-1644ACA78182}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{CF975FAB-B51B-48CC-926F-9751F55BD056}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{51F5E18E-2B94-4C2A-AD71-CF343E631F26}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe
FirewallRules: [{67A69C83-4985-40B3-A9EA-E57759FC1D8E}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{117FDE8E-DDEA-4D7E-8653-8EF64CFD7277}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{FA4D4DD2-7479-4860-ADF6-050AA6CAF5D9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe
FirewallRules: [{6E4269EE-310C-49D1-B748-5729DF35C853}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe
FirewallRules: [{6E9ABF56-A041-4375-B1F6-1AFC96924E02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe
FirewallRules: [{ED81CA35-C888-475F-A4D7-BCDC870BDA71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{D0DF3543-BDFB-408D-8713-E6C1ED1EE7EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{CE12D7F0-8E98-42F1-AE4F-8AEA5355104D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [{BE28E1B7-0C86-4798-8EE7-4EF50E776E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [{47C7D361-E7E6-4874-B89E-0F31839099B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe
FirewallRules: [{BFDDBEF7-83A9-407C-B8A7-FDF89E37AC8A}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe
FirewallRules: [{5593C214-F8E6-49E9-8174-C71F52DD37F0}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{75C77B76-7386-4FBF-A285-A53197268C48}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{C3E19BDE-8B38-4A67-948E-C6E30F10F2B2}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{1F746533-2659-42B2-AD35-06DB7D28CF72}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{6335D248-9BBB-4554-B763-6B5A3EFC0B6E}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{6E4CA175-0935-48A4-A34D-B5B133A63A3F}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{90268FD8-A47B-447D-8555-F9A39C39CEEA}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{0702CAA4-6E2D-49D2-8194-CF2982A0ECCF}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{55EC18F9-5378-4D1D-9608-CE97601E90B9}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{E16F3BF1-E933-4DE9-B41C-E77918736F28}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{37A8572A-3214-491F-AE12-F4E8186D3468}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe
FirewallRules: [{6BAD560C-F304-446D-9C19-9EDFA364F647}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe
FirewallRules: [{AF138567-F675-4729-A6AC-E24A26758345}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{D50396FA-DCC7-4AD7-937F-0266735D0048}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{365CF014-33D1-4DEF-B323-BA269EBA3BD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{1D254D4B-38B0-42F0-AE8C-884861B37C9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{FF1B4FAC-051F-4D96-81CA-14E3B82DF1C2}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{97314E51-49D8-45C5-B4B4-138AA5C3386F}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{C0D363CA-5B45-4C1A-AF32-20D385BAF8FD}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{23F4FEE0-4106-404A-9822-7CD7039BE0D4}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{1D4A5E4A-9D00-46A3-BEFD-D03433100C77}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe
FirewallRules: [{C2CBECE8-E5BB-4454-BE23-8EED84F6B5F2}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{5EC3A64A-850F-49F8-A92D-65801C635F2A}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{924AF97F-4834-4521-9CF5-228D17448DD9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe
FirewallRules: [{4FC0FAC6-A0AE-4309-8AF2-8D5FA5BC9A12}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe
FirewallRules: [{8FC638D5-0022-4944-8D00-E9C0624C88D6}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe
FirewallRules: [{BB014947-750D-46C4-A431-CDA832CA1F42}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{3AE70C61-91B8-4DC9-BA83-CC6F6489D3BB}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{8B3C7D7E-6B7B-44E4-A927-0B0195D0C4EF}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe
FirewallRules: [{3CA3F9D7-A09D-4CD4-B563-96EEA4901C08}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe
FirewallRules: [{7FB5C8DC-182A-4F18-9282-BF1E5C0243B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe
FirewallRules: [{6324292C-12CD-473C-8320-34BE8BF8721E}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe
FirewallRules: [{540C1D79-B7B1-409B-9528-BFC185E8CC17}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe
FirewallRules: [{2B43051E-5F2A-4FD5-8DF5-2C9249B21351}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe
FirewallRules: [{E5D0B986-59ED-4ED5-A18E-B918FFDFD8E8}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe
FirewallRules: [{F7C020C2-A729-440A-A524-A0636F719323}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe
FirewallRules: [{D80A8286-F90A-4258-855A-516EB40CCD48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{6F40E3BE-43F2-4CB9-BA0B-841D3B597E09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{04236A0B-3DD4-41D7-BA47-B95F91873714}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{13DA6AEA-50D1-4A6A-8A98-AAE612F32F7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{6C6D8B25-4566-48AC-9482-AEFA847A689B}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe
FirewallRules: [{A2C55BDA-1C3F-4C6A-8259-F6FD963CFA37}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe
FirewallRules: [{3587BF52-206C-4FAA-ADCA-79083EE39686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{DF2C3CBD-B92F-4664-B2A3-4A3F78CE5A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{E059D07B-28F2-4B51-95A7-51FD5EE86DEC}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{7023411E-BD64-4C02-949E-2B3AD7263BA5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{C30FF631-0D4A-4A66-94A0-363DE26010B5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{052B8CB3-6559-4C1C-9927-CF8C413D97B6}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{CCF95C31-0FCF-464E-BCC2-C0241E76DECE}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{B958393A-FE2D-4706-8469-21800C6FCD7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{2A463812-DFE8-4F7F-9A04-558CA9097749}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe
FirewallRules: [{7CEDD67F-8A52-4FD3-9621-1D00F8A2F85F}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe
FirewallRules: [{ADB9A6C5-CC4C-4F3D-AC86-CE67A971E558}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{3F647DEC-CFF7-4B35-A0B3-0F32FAF3FAEE}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{D13F87F6-2B72-4BA2-B315-0797A57C9E1D}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe
FirewallRules: [{71EBD196-4E23-416F-98CF-E7EF6172E80A}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe
FirewallRules: [{13E3FEAC-3A91-4F50-ABA2-61F85F4891A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8E9EA377-66B0-4BF9-8192-29F986F6C30A}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{BECAB396-0123-42A0-81A9-F49B79369CB7}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{11D980D6-ABB5-4ABB-B908-CD71DEADE80D}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{DE7880AC-CBFA-47BA-B9F0-4198DE3980F9}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{9C575885-BBD4-44D9-B1FE-BFC2854515EB}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [{E0887D86-2A37-4A2F-B4AB-A75A4479257E}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [{EBFA8969-9DF5-4CD9-B033-F01501E2DE09}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{7DBCFBF8-1D22-4356-9C92-5B0B93AC4BA4}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{289E3845-7CF9-4701-B0B1-125F3A975EE7}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{D91EB0A9-878D-494C-8665-FCA3A8F1C171}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

12-05-2016 12:54:42 Windows Update
20-05-2016 14:20:57 Installed DirectX
21-05-2016 16:56:58 Installed DirectX
30-05-2016 18:36:56 Scheduled Checkpoint
31-05-2016 23:47:42 Removed Vegas Pro 13.0 (64-bit)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/31/2016 11:47:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (05/31/2016 10:34:05 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Chrome-PC)
Description: Activation of app Microsoft.Getstarted_3.5.11.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca failed with error: -2144927149 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (05/31/2016 10:31:26 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (05/31/2016 10:31:26 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   19 2.B.1.C.D.F.D.7.D.5.4.0.1.5.5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Chrome-PC-2.local.

Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.9:5353   17 2.B.1.C.D.F.D.7.D.5.4.0.1.5.5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Chrome-PC.local.

Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   19 9.0.168.192.in-addr.arpa. PTR Chrome-PC-2.local.

Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.9:5353   17 9.0.168.192.in-addr.arpa. PTR Chrome-PC.local.

Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Chrome-PC.local already in use; will try Chrome-PC-2.local instead

Error: (05/31/2016 10:26:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister   16 Chrome-PC.local. AAAA FE80:0000:0000:0000:0551:045D:7DFD:C1B2


System errors:
=============
Error: (05/31/2016 11:34:47 PM) (Source: ACPI) (EventID: 13) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (05/31/2016 11:34:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error: 
%%1058

Error: (05/31/2016 11:33:35 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (05/31/2016 11:33:27 PM) (Source: DCOM) (EventID: 10005) (User: Chrome-PC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}


CodeIntegrity:
===================================
  Date: 2016-05-22 13:13:25.406
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-15 18:02:50.824
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-15 12:17:29.437
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-13 13:57:03.567
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-12 23:03:04.829
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-12 11:30:27.252
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-30 19:13:49.387
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-14 13:32:52.542
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-08 16:07:54.261
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-07 17:01:25.920
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 17%
Total physical RAM: 16325.69 MB
Available physical RAM: 13504.25 MB
Total Virtual: 20517.69 MB
Available Virtual: 17379.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.22 GB) (Free:123.43 GB) NTFS
Drive d: () (Fixed) (Total:297.87 GB) (Free:156.44 GB) NTFS
Drive e: (Terra Drive) (Fixed) (Total:931.51 GB) (Free:491.29 GB) NTFS
Drive z: (Recorder's Keep) (Fixed) (Total:2794.39 GB) (Free:2500.8 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0BE386AE)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: 0BE70F86)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F9952B5E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Link to post
Share on other sites

  • Root Admin

Hello and :welcome:

Please read the following and post back the logs when ready and we'll see about getting you cleaned up.

Before we proceed further, please read all of the following instructions carefully.
If there is anything that you do not understand kindly ask before proceeding.
If needed please print out these instructions.

  • Please do not post logs using CODE, QUOTE, or FONT tags. Just paste them as direct text.
  • If the log is too large then you can use attachments by clicking on the More Reply Options button.
  • Please enable your system to show hidden files: How to see hidden files in Windows
  • Make sure you're subscribed to this topic:
  • Click on the Follow This Topic Button (at the top right of this page), make sure that the Receive notification box is checked and that it is set to Instantly
  • Removing malware can be unpredictable...It is unlikely but things can go very wrong! Please make sure you Backup all files that cannot be replaced if something were to happen. You can copy them to a CD/DVD, external drive or a pen drive
  • Please don't run any other scans, download, install or uninstall any programs unless requested by me while I'm working with you.
  • The removal of malware is not instantaneous, please be patient. Often we are also on a different Time Zone.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of the issue.
  • You can check here if you're not sure if your computer is 32-bit or 64-bit
  • Please disable your antivirus while running any requested scanners so that they do not interfere with the scanners.
  • When we are done, I'll give you instructions on how to cleanup all the tools and logs
  • Please stick with me until I give you the "all clear" and Please don't waste my time by leaving before that.
  • Your topic will be closed if you haven't replied within 3 days
  • (If I have not responded within 24 hours, please send me a Private Message as a reminder)



STEP 01
RKill is a program that was developed at BleepingComputer.com that attempts to terminate known malware processes
so that your normal security software can then run and clean your computer of infections.
When RKill runs it will kill malware processes and then removes incorrect executable associations and fixes policies
that stop us from using certain tools. When finished it will display a log file that shows the processes that were
terminated while the program was running.

As RKill only terminates a program's running process, and does not delete any files, after running it you should not reboot
your computer as any malware processes that are configured to start automatically will just be started again.
Instead, after running RKill you should immediately scan your computer using the requested scans I've included.

Please download Rkill by Grinler from one of the links below and save it to your desktop.

Link 1 | Link 2

  • On Windows XP double-click on the Rkill desktop icon to run the tool.
  • On Windows Vista/Windows 7 or 8, right-click on the Rkill desktop icon and select Run As Administrator
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.



STEP 02
Backup the Registry:
Modifying the Registry can create unforeseen problems, so it always wise to create a backup before doing so.

  • Please download ERUNT from one of the following links: Link1 | Link2 | Link3
  • ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.
  • Double click on erunt-setup.exe to Install ERUNT by following the prompts.
  • NOTE: Do not choose to allow ERUNT to add an Entry to the Startup folder. Click NO.
  • Start ERUNT either by double clicking on the desktop icon or choosing to start the program at the end of the setup process.
  • Choose a location for the backup.
    • Note: the default location is C:\Windows\ERDNT which is acceptable.
  • Make sure that at least the first two check boxes are selected.
  • Click on OK
  • Then click on YES to create the folder.
  • Note: if it is necessary to restore the registry, open the backup folder and start ERDNT.exe



STEP 03
Please run a Threat Scan with MBAM. If you're unable to run or complete the scan as shown below please see the following:
MBAM Clean Removal Process 2x
When reinstalling the program please try the latest version.

Right click and choose "Run as administrator" to open Malwarebytes Anti-Malware and from the Dashboard please Check for Updates by clicking the Update Now... link
Open up Malwarebytes > Settings > Detection and Protection > Enable Scan for rootkit and Under Non Malware Protection set both PUP and PUM to Treat detections as malware.
Click on the SCAN button and run a Threat Scan with Malwarebytes Anti-Malware by clicking the Scan Now>> button.
Once completed please click on the History > Application Logs and find your scan log and open it and then click on the "copy to clipboard" button and post back the results on your next reply.

Link to post
Share on other sites

Malwarebytes log below (nothing found). Do you want the Rkill log as well?

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/3/2016
Scan Time: 2:51 PM
Logfile: scanlog.txt
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2016.06.03.02
Rootkit Database: v2016.05.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: Chrome

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 357089
Time Elapsed: 6 min, 38 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

Link to post
Share on other sites

  • Root Admin

No, the log you posted is okay.

 

Please go ahead and run through the following steps and post back the logs when ready.

STEP 04
Please download Junkware Removal Tool to your desktop.

  • Shutdown your antivirus to avoid any conflicts.
  • Right click over JRT.exe and select Run as administrator on Windows Vista or Windows 7, double-click on XP.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next reply message
  • When completed make sure to re-enable your antivirus



STEP 05
Lets clean out any adware now: (this will require a reboot so save all your work)

Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.
    Vista / Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • When it's done you'll see: Pending: Please uncheck elements you don't want removed.
  • Now click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • Look over the log especially under Files/Folders for any program you want to save.
  • If there's a program you may want to save, just uncheck it from AdwCleaner.
  • If you're not sure, post the log for review. (all items found are adware/spyware/foistware)
  • If you're ready to clean it all up.....click the Clean button.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • Items that are deleted are moved to the Quarantine Folder: C:\AdwCleaner\Quarantine
  • To restore an item that has been deleted:
  • Go to Tools > Quarantine Manager > check what you want restored > now click on Restore.


STEP 06
button_eos.gif

Please go here to run the online antivirus scannner from ESET.

  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activex control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings and ensure these options are ticked:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click Scan
  • Wait for the scan to finish
  • If any threats were found, click the 'List of found threats' , then click Export to text file....
  • Save it to your desktop, then please copy and paste that log as a reply to this topic.



STEP 07
Please download the Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. You can check here if you're not sure if your computer is 32-bit or 64-bit

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press the Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
  • The first time the tool is run, it also makes another log (Addition.txt). Please attach it to your reply as well.
Link to post
Share on other sites

I'm having a problem with step 6. When I run ESET it get's into my second HDD, get's about half way through (finding 4 threats) and then seems to stop working after a length of time. Having run it twice the information bars turn black, then I lose the program's graphics altogether and several minutes after that it crashes.

Link to post
Share on other sites

Not to worry at all. I'm thankful for the help :)

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 10 Pro x64 
Ran by Chrome (Administrator) on Sat 06/04/2016 at 11:23:08.39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


File System: 11 

Successfully deleted: C:\ProgramData\mntemp (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\crashrpt (Folder) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\ysearchutil (Folder) 
Successfully deleted: C:\WINDOWS\wininit.ini (File) 
Successfully deleted: C:\WINDOWS\SysWOW64\REN7FFF.tmp (File) 

Registry: 1 

Successfully deleted: HKLM\Software\Google\Chrome\Extensions\npdicihegicnhaangkdmcgbjceoemeoo (Registry Key) 


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 06/04/2016 at 11:24:07.17
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

# AdwCleaner v5.119 - Logfile created 04/06/2016 at 11:26:56
# Updated 30/05/2016 by Xplode
# Database : 2016-06-03.1 [Server]
# Operating system : Windows 10 Pro  (X64)
# Username : Chrome - CHROME-PC
# Running from : C:\Users\Chrome\Desktop\AdwCleaner.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : Updater

***** [ Folders ] *****


***** [ Files ] *****

File Found : C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_zvsuhljiha-a.akamaihd.net_0.localstorage
File Found : C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_zvsuhljiha-a.akamaihd.net_0.localstorage-journal

***** [ DLL ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

[C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : npdicihegicnhaangkdmcgbjceoemeoo

*************************

C:\AdwCleaner\AdwCleaner[S1].txt - [794 bytes] - [04/06/2016 11:26:23]
C:\AdwCleaner\AdwCleaner[S2].txt - [1135 bytes] - [04/06/2016 11:26:56]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1208 bytes] ##########
 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 10 Pro x64 
Ran by Chrome (Administrator) on Sat 06/04/2016 at 11:23:08.39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


File System: 11 

Successfully deleted: C:\ProgramData\mntemp (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\crashrpt (Folder) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage (File) 
Successfully deleted: C:\Users\Chrome\AppData\Local\ysearchutil (Folder) 
Successfully deleted: C:\WINDOWS\wininit.ini (File) 
Successfully deleted: C:\WINDOWS\SysWOW64\REN7FFF.tmp (File) 

Registry: 1 

Successfully deleted: HKLM\Software\Google\Chrome\Extensions\npdicihegicnhaangkdmcgbjceoemeoo (Registry Key) 


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 06/04/2016 at 11:24:07.17
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version:06-06-2016
Ran by Chrome (2016-06-07 13:37:29)
Running from C:\Users\Chrome\Desktop\Removal\FARBAR
Windows 10 Pro Version 1511 (X64) (2016-01-06 04:53:36)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3534360900-3526396429-430733197-500 - Administrator - Disabled)
Chrome (S-1-5-21-3534360900-3526396429-430733197-1000 - Administrator - Enabled) => C:\Users\Chrome
DefaultAccount (S-1-5-21-3534360900-3526396429-430733197-503 - Limited - Disabled)
Guest (S-1-5-21-3534360900-3526396429-430733197-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.2.0 - Adobe Systems Incorporated)
Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version:  - Triumph Studios)
Amazon Cloud Drive (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Cloud Drive) (Version: 3.3.1.32 - Amazon.com, Inc.)
Amazon Music (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Amazon Amazon Music) (Version: 4.3.1.1354 - Amazon Services LLC)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Ashes of the Singularity (HKLM-x32\...\Steam App 228880) (Version:  - Oxide Games)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version:  - Ubisoft)
Assassin's Creed Rogue (HKLM\...\Steam App 311560) (Version:  - Ubisoft Sofia)
ASUS Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.1.170 - ASUS)
ASUS Xonar DGX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version:   - ASUSTeK Computer Inc.)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version:  - WB Games Montreal)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Black Desert Character Creator (HKLM-x32\...\{83AC6E37-6497-4A01-BB5D-AA845BA08832}) (Version: 1.0.0.2 - Daum Games EU)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU)
Blood Bowl 2 (HKLM-x32\...\Steam App 236690) (Version:  - Cyanide Studios)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderless Gaming (HKLM\...\Steam App 388080) (Version:  - AndrewMD5)
Broforce (HKLM-x32\...\Steam App 274190) (Version:  - Free Lives)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version:  - Canon Inc.)
Catacomb Kids (HKLM-x32\...\Steam App 315840) (Version:  - FourbitFriday)
Chronicle: RuneScape Legends (HKLM\...\Steam App 205890) (Version:  - Jagex)
Corsair Gaming Headset Software (HKLM-x32\...\{88ADDCAA-6591-4D41-A7F1-2F38B7B049BB}) (Version: 2.0.37 - Corsair)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version:  - Paradox Development Studio)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DARK SOULS III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Discord) (Version: 0.0.291 - Hammer & Chisel, Inc.)
Dishonored (HKLM\...\Steam App 205100) (Version:  - Arkane Studios)
Distant Worlds: Universe (HKLM\...\Steam App 261470) (Version:  - Code Force)
Dragon's Dogma: Dark Arisen (HKLM-x32\...\Steam App 367500) (Version:  - Capcom)
Duck Game (HKLM-x32\...\Steam App 312530) (Version:  - Landon Podbielski)
DuelystLauncher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\launcher) (Version: 0.0.4 - Counterplay Games Inc.)
Dungeons & Dragons: Chronicles of Mystara (HKLM-x32\...\Steam App 229480) (Version:  - Iron Galaxy Studios)
Dxtory version 2.0.134 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.134 - ExKode Co. Ltd.)
Enter the Gungeon (HKLM\...\Steam App 311690) (Version:  - Dodge Roll)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version:  - Lars Hederer)
Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version:  - Paradox Development Studio)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
FortressCraft Evolved (HKLM\...\Steam App 254200) (Version:  - ProjectorGames)
Freedom Planet (HKLM-x32\...\Steam App 248310) (Version:  - GalaxyTrail)
Frozen Synapse (HKLM-x32\...\Steam App 98200) (Version:  - Mode 7)
FTL -  Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com)
GameRanger (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\GameRanger) (Version:  - GameRanger Technologies)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Hand of Fate (HKLM\...\Steam App 266510) (Version:  - Defiant Development)
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
HELLDIVERS™ (HKLM-x32\...\Steam App 394510) (Version:  - Arrowhead Game Studios)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hotline Miami 2: Wrong Number (HKLM\...\Steam App 274170) (Version:  - Dennaton Games)
HOTSLogsUploader (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\99a83d131490dc73) (Version: 1.0.0.12 - HOTSLogsUploader)
Intel(R) Chipset Device Software (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Invisible, Inc. (HKLM-x32\...\Steam App 243970) (Version:  - Klei Entertainment)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Keep Talking and Nobody Explodes (HKLM-x32\...\Steam App 341800) (Version:  - Steel Crate Games)
Kerbal Space Program (HKLM-x32\...\{ED501254-06B8-4883-B7F3-4799C9EDD288}_is1) (Version: 1.0 - Squad)
K-Lite Codec Pack 12.1.0 Standard (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
Lame ACM MP3 Codec (HKLM-x32\...\LameACM) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Logitech Gaming Software 8.82 (HKLM\...\Logitech Gaming Software) (Version: 8.82.151 - Logitech Inc.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MicMute 0.1.8.4 (HKLM-x32\...\{A1FDC62A-32EC-4AA3-BBB6-80A7977CCAE2}_is1) (Version: 0.1.8.4 - Mist Poryvaev)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
Mumble 1.2.10 (HKLM-x32\...\{63243F5C-E941-4461-A4B0-2689A9A3BF13}) (Version: 1.2.10 - Thorvald Natvig)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team)
Nuclear Throne (HKLM-x32\...\Steam App 242680) (Version:  - Vlambeer)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.2 - OBS Project)
Offworld Trading Company (HKLM\...\Steam App 271240) (Version:  - Mohawk Games)
One Finger Death Punch (HKLM-x32\...\Steam App 264200) (Version:  - Silver Dollar Games)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
PlanetSide 2 (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
Prison Architect (HKLM-x32\...\Steam App 233450) (Version:  - Introversion Software)
Project Zomboid (HKLM-x32\...\Steam App 108600) (Version:  - The Indie Stone)
Project Zomboid Dedicated Server (HKLM-x32\...\Steam App 380870) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games)
ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions)
Sentinels of the Multiverse (HKLM\...\Steam App 337150) (Version:  - Handelabra Games Inc.)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version:  - Yacht Club Games)
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
Sonic Radar II (HKLM\...\{203BCA8D-BC00-4DD5-85DF-2F84DB803B57}) (Version: 2.1.001 - ASUSTeKcomputer.Inc)
Space Engineers (HKLM-x32\...\Steam App 244850) (Version:  - Keen Software House)
Spec Ops: The Line (HKLM\...\Steam App 50300) (Version:  - Yager Development)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.)
Squad (HKLM-x32\...\Steam App 393380) (Version:  - Offworld Industries)
Star Citizen Launcher (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\Star Citizen Launcher) (Version: 00.01.00.00 - Cloud Imperium Games)
Star Realms (HKLM\...\Steam App 438140) (Version:  - White Wizard Games)
Stardew Valley (HKLM-x32\...\Steam App 413150) (Version:  - ConcernedApe)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM\...\Steam App 281990) (Version:  - Paradox Development Studio)
Stronghold HD (HKLM-x32\...\1207658712_is1) (Version: 2.3.0.5 - GOG.com)
Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version:  - Berserk Games)
TeamSpeak 3 Client (HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Culling (HKLM-x32\...\Steam App 437220) (Version:  - Xaviant)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.12.1.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.12.1.0 - GOG.com)
Total War™: WARHAMMER® (HKLM\...\Steam App 364360) (Version:  - Creative Assembly)
Undertale (HKLM-x32\...\Steam App 391540) (Version:  - tobyfox)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 16.1.0 - UMEZAWA Takeshi)
Vagante (HKLM-x32\...\Steam App 323220) (Version:  - Nuke Nine)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WS Launcher (HKLM-x32\...\WS Launcher 30.0.4.3) (Version: 30.0.4.3 - WS.ARMA.SU)
WS Launcher (x32 Version: 30.0.4.3 - WS.ARMA.SU) Hidden
x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version:  - )
XCom Long War EW Mod version 1.0 (HKLM-x32\...\{860C3266-65B9-4BF2-937A-1778483046B5}_is1) (Version: 1.0 - JohnnyLump)
Zeus and Poseidon (HKLM-x32\...\1207659039_is1) (Version: 2.1.0.9 - GOG.com)
Ziggurat (HKLM\...\Steam App 308420) (Version:  - Milkstone Studios)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-873DD02DC4E5}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Chrome\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3534360900-3526396429-430733197-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07649589-DD2E-40BA-B5EB-72331EB194EA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {08467819-93BE-4000-90D6-6395665339B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {0D1D20F9-46CE-4281-B972-EBA497CECC5D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {0FDD84DB-8BB3-480D-8CF9-D88095261BDA} - System32\Tasks\Amazon Music Helper => 
Task: {103981AC-AC4E-4ED5-B708-0B1CAB69C090} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {112F4F2A-BC3B-47C3-9F25-98C35640B0BE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {12A81D19-0101-433B-BDA1-5F194DC6F14D} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {19F0EDB4-BAF1-42BD-BABC-CE39795F2FE3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {1D1DC3FC-7279-417F-854D-29BF0F8B6F6B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {20F19358-3843-4784-946F-E3ED46A68156} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {24DFF1BF-CE58-4BD3-844F-7AB57891221C} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {27FC2565-643F-4DF9-95F3-1A5429B0BCDA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {298F7C97-2736-42C2-8C59-288CD0140D49} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2DCAB4DE-D52A-4D2A-ACF6-37EB307BBDF1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3101DDF6-5797-48AF-9145-FE19C30E0917} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {3881AA14-CFF5-41EA-9479-670C3B3E3F28} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation)
Task: {389A8380-0159-4346-B5A4-663178B13451} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {3AFC2BFC-9355-4920-B389-6A692E101082} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {566164D4-0638-48AA-8F53-B433E2FD20FA} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] ()
Task: {5A21CFFC-5200-4BE4-BBFC-37609F7B0280} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {5C86DD5B-4483-41A7-83C8-EA0F78E345CF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {5F992197-D1CC-496C-BCFB-B18927DB046A} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {6242E5DA-393C-49FF-8817-2EF97FE74473} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {6F6D4983-251B-4DED-833B-7C40C7819416} - System32\Tasks\updater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [2016-01-10] (Nefarius Software Solutions)
Task: {71C618B9-519D-4090-99BF-5651A6131ABE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7C461958-C8D1-409C-8711-CD501B9505F7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {7F8C13AE-1DF5-4C43-BC1A-09DBD16207E0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {8091AEBC-C752-45AC-A187-BBDB0E7A5678} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {80D1E8A8-4C9F-4371-A653-04058B3D074B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {95A21824-44D9-41FE-B9FC-10100110DD7B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {99BF0477-D4C3-4788-B2CE-CF4CDB1C9276} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {9BD61961-3B0B-4DFE-9D26-102AA2947285} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {9C35E768-012C-4EC1-A2C2-15AC7637A4D6} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {B5CF8B00-8DD3-4F99-B5A0-131F21255EAA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C59D0FEE-AEB9-494D-B84C-3CEA256B5E72} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {D461E812-2DDF-433B-8784-D138D2938FD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {D8EFC2BC-8D24-46DE-A679-6F7615B24CBB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DB43FED6-2C1D-43DA-A005-4B1CC6D94B85} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E35A5455-F44A-4D16-9749-433A79FB815C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E8456778-BE22-4362-8D55-D7E5B13CA4D5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {EE102F5A-7415-4429-B3D8-838F9D76C13B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {F4D91A46-D489-4FAE-861D-ADDC17E178C0} - System32\Tasks\AdobeAAMUpdater-1.0-Chrome-PC-Chrome => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-03-22] (Adobe Systems Incorporated)
Task: {FD6F58A3-6E84-419D-A040-9CE21B4363D1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {FE761C93-4741-4927-90B0-48F6B5F1FE4C} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-01-06 05:48 - 2014-01-28 04:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2014-11-21 18:51 - 2014-11-21 18:51 - 00049408 _____ () C:\Program Files\ASUS\Bluetooth Software\btwleapi.dll
2015-04-11 18:10 - 2014-04-24 07:29 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2016-05-13 12:19 - 2016-05-13 12:19 - 00307712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ReactiveSockets\8646218657a9e1a03dfd1082f11cb43d\ReactiveSockets.ni.dll
2014-05-02 11:52 - 2014-05-02 11:52 - 00599040 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\irrKlang.NET4.dll
2014-05-02 06:55 - 2014-05-02 06:55 - 00185344 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpflac.dll
2014-05-02 06:05 - 2014-05-02 06:05 - 00173056 _____ () C:\Program Files\Nefarius Software Solutions\ScpToolkit\irrKlang\amd64\ikpmp3.dll
2016-02-27 14:58 - 2016-05-02 06:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-12-27 16:53 - 2016-05-02 06:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-04-27 21:42 - 2016-05-02 06:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-27 14:58 - 2016-05-02 06:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-27 21:42 - 2016-05-02 06:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-27 21:42 - 2016-05-02 06:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-27 21:42 - 2016-05-02 06:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-30 15:33 - 2016-05-02 06:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-01-31 15:30 - 2016-05-20 03:08 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-06-23 17:19 - 2016-05-25 01:00 - 05908968 _____ () C:\Users\Chrome\AppData\Local\Amazon Music\Amazon Music Helper.exe
2016-04-13 13:36 - 2016-03-29 11:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-04-01 23:18 - 2016-04-01 23:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-01-06 18:57 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-11 11:18 - 2016-04-23 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-11 11:18 - 2016-04-23 05:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-11 11:18 - 2016-04-23 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-05-11 11:18 - 2016-04-23 04:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-11 11:18 - 2016-04-23 05:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-08-06 15:13 - 2013-06-21 11:01 - 00109848 _____ () C:\WINDOWS\SYSTEM32\AcpiServiceVnA64.dll
2015-08-06 15:13 - 2014-05-22 16:24 - 00096568 _____ () C:\WINDOWS\SYSTEM32\audioLibVc.dll
2015-08-13 19:58 - 2016-01-07 16:15 - 00200704 _____ () C:\Windows\SysWOW64\HsMgr.exe
2015-08-13 19:58 - 2016-01-07 16:15 - 00282112 _____ () C:\Windows\System\HsMgr64.exe
2015-04-11 18:25 - 2016-05-02 07:00 - 00167480 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2015-04-11 18:25 - 2016-05-02 07:01 - 00862776 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2016-03-30 18:17 - 2016-03-30 18:17 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2016-03-30 18:17 - 2016-03-30 18:17 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2016-04-27 21:42 - 2016-05-02 06:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-04-27 21:42 - 2016-05-02 06:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-04-19 13:32 - 2016-04-19 13:33 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-03 11:53 - 2016-06-03 11:53 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-06-03 11:53 - 2016-06-03 11:53 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-03 11:53 - 2016-06-03 11:53 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-03-05 13:18 - 2016-03-05 13:19 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-04-30 11:19 - 2016-04-30 11:19 - 10256384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11602.1.26.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2016-01-06 05:48 - 2016-06-04 11:34 - 00043152 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2016-01-06 05:48 - 2014-01-28 04:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2016-02-04 14:50 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-02-04 14:50 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-06-01 00:34 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-06-01 00:34 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-04-12 00:02 - 2016-05-02 07:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-01-07 16:13 - 2012-06-06 02:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll
2015-04-11 19:13 - 2016-04-29 21:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-04-11 19:13 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-04-11 19:13 - 2016-04-30 01:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-04-11 19:13 - 2016-02-09 00:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-04-11 19:13 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-04-11 19:13 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-04-11 19:13 - 2016-04-30 01:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-04-07 13:42 - 2016-02-17 23:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00100352 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 01274655 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00311021 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00092398 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00328186 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00107365 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00190464 _____ () C:\Program Files (x86)\Pidgin\libsasl.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00150598 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 02097721 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00818985 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2015-11-08 03:39 - 2015-11-08 03:39 - 00125151 _____ () C:\Program Files (x86)\Pidgin\plugins\libskypeweb.dll
2015-03-13 01:52 - 2015-03-13 01:52 - 00278906 _____ () C:\Program Files (x86)\Pidgin\libjson-glib-1.0.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00417758 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00029225 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00102400 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00115712 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00140288 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll
2014-11-23 18:33 - 2014-11-23 18:33 - 00102912 _____ () C:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll
2014-11-23 18:34 - 2014-11-23 18:34 - 00486400 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
2015-04-11 22:42 - 2015-04-11 22:42 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2016-05-13 00:03 - 2016-05-11 12:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
2016-05-13 00:03 - 2016-05-11 12:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
2016-06-04 11:20 - 2016-06-03 01:40 - 02779832 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\libdiscord.dll
2016-06-04 11:20 - 2016-06-03 01:40 - 01746104 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\ffmpeg.dll
2016-06-04 11:20 - 2016-06-03 01:40 - 00244920 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\resources\node_modules\discord_toaster\discord_toaster.node
2016-06-04 11:20 - 2016-06-03 01:40 - 00112312 _____ () \\?\C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\resources\node_modules\discord_overlay\discord_overlay.node
2015-04-11 19:13 - 2016-04-28 02:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-06-04 11:20 - 2016-06-03 01:40 - 01843896 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\libglesv2.dll
2016-06-04 11:20 - 2016-06-03 01:40 - 00020664 _____ () C:\Users\Chrome\AppData\Local\Discord\app-0.0.291\libegl.dll
2016-06-07 11:15 - 2016-06-07 11:15 - 00140800 _____ () \\?\C:\Users\Chrome\AppData\Local\Temp\530F.tmp.node
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2016-04-19 13:32 - 2016-04-19 13:33 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 13:32 - 2016-04-19 13:33 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-04-11 19:13 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en\WindowsLive.Writer.Localization.resources.dll
2014-03-31 21:35 - 2014-03-31 21:35 - 00270016 _____ () C:\Program Files (x86)\Windows Live\Writer\en-GB\WindowsLive.Writer.Localization.resources.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7902 more sites.

IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\123simsen.com -> www.123simsen.com

There are 7902 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2016-06-03 17:03 - 00452679 ___RA C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    1000gratisproben.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    10sek.com
127.0.0.1    www.10sek.com
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123haustiereundmehr.com
127.0.0.1    123moviedownload.com
127.0.0.1    www.123moviedownload.com
127.0.0.1    123simsen.com
127.0.0.1    www.123simsen.com
127.0.0.1    123topsearch.com
127.0.0.1    www.123topsearch.com
127.0.0.1    125sms.co.uk
127.0.0.1    www.125sms.co.uk

There are 15530 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3534360900-3526396429-430733197-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Chrome\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{59cb0d1f-5276-4153-8cef-1080b239f0ba}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKLM\...\StartupApproved\Run32: => "Corsair Gaming Headset Software"
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-3534360900-3526396429-430733197-1000\...\StartupApproved\Run: => "EvolveClient"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{42B2120D-FC90-45DC-8420-AC93644E110F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
FirewallRules: [{1FFF9F36-F041-4956-B3F5-5E132578CA1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
FirewallRules: [{7FD64335-77AB-4202-B096-D660284D6184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe
FirewallRules: [{5EACADEF-D345-497F-9DF7-DC8514D9CC9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe
FirewallRules: [{6B563140-F2AF-404E-BF17-B48666E7C65E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{41C7FE7C-C0E4-46A3-85C4-BB814AAC68A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{A634B882-2683-4548-82D5-8F40F36C0CDB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{DF7CE8F5-3049-4C11-AA0C-22A3C481CB4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{3ED26C78-EE01-4CB3-B564-747C5329C976}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{816A429B-9C2F-4C04-B28E-033B9E462D02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{ACED841E-9E4B-40CD-8031-BAB20A5A0AA2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{19F39831-A6EF-4A8B-8190-6C3ACDF6BA4C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{B7C6BDDC-3868-474A-B983-17A49B1BB707}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{1177AAA4-09D9-4145-A53F-F835DB0194A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{BB480C0D-B9BA-4A55-B0CD-15B74CE53F47}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D2B5F4EA-A7FF-4014-BCEB-E36A4D08547C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe
FirewallRules: [{0877938F-D38E-4822-9FE6-D2C5B08CAC9B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Open Beta\RainbowSix.exe
FirewallRules: [{417DD305-8ECD-49FB-B18D-F761C2834E7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe
FirewallRules: [{CA090C47-152A-4D3A-B6A5-60EEF7F28448}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons & Dragons HD\ManaGame.exe
FirewallRules: [{E49864C5-06AD-4256-AD71-1B8DD7CDF41D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{77B9D513-77FC-4BE8-9E67-10E16C545214}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{8CB7F7CB-A3C5-42EC-A267-D0D4D0C0222D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [{106D4CCD-6E7B-46C3-88A8-16526A6E6E54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Undertale\UNDERTALE.exe
FirewallRules: [{1704D386-BA75-42BF-8CFB-DC3A51B510B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{BE442F5E-A3C3-4973-8B3B-2A44BF32C290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{99CCA4A7-FAD6-4434-A977-A6D268C3F80B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe
FirewallRules: [{FB6D7A7A-D4B1-4283-A434-B438BCF01F9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX12.exe
FirewallRules: [{7EBACC13-D0B3-4A87-844F-E2A9A646CF7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe
FirewallRules: [{F88BC024-650F-41B0-AF20-5F39898C5674}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ashes of the Singularity\Ashes_DX11.exe
FirewallRules: [{9C7D1D65-A5DE-4621-A777-D0F49BDF3C51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{FF863D92-B244-4796-BB14-8DCB2B388A32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{AB8C7E3A-D21C-4428-BD7C-9340A1389748}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{211619D3-B695-489A-9E6A-31B4CFAE1FD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{C8EE8E71-DC26-4C94-845E-7617042459B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{CBAAA87B-F3DC-4DCD-80FD-E44EF0B203E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe
FirewallRules: [{C062E813-A20C-4F7D-AE16-EA91C9634DAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
FirewallRules: [{32890334-962F-4259-ABA4-7286879ADF06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
FirewallRules: [{A0B1753D-1030-40EB-B678-11C879764BA6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe
FirewallRules: [{263780F5-1C86-4EA5-A55A-EBF612E4BDF7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rainbow Six Siege - Closed Beta\RainbowSix.exe
FirewallRules: [{7A93660D-46BE-4E7E-ABF7-013D9EC42E3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{14C5C4A9-92DC-4589-A8C2-0341C0015212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{FE95B31F-8BE0-4854-8D81-32640F504371}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [{DEE3ADEB-BEA8-464F-B460-57AEC7E16CBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [{5791843D-A024-4174-BEDF-4036752F514A}] => (Allow) LPort=1900
FirewallRules: [{D7B4B599-5B25-4E0C-B032-8D5D5D59539D}] => (Allow) LPort=2869
FirewallRules: [{580CC525-077D-4126-83DC-AE2E1EE6D9DE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{F08181D2-2B7E-4F10-BA34-A5E544C60789}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{9B505671-061F-42E1-BE11-21C1D2D36ED2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [UDP Query User{211EA8AC-2374-4F8B-A74C-743BB611526E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{6DB3B0A1-C51C-440B-8D33-FDA94E86D971}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{262061AE-ED76-42FB-8AF5-DC1055496182}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DA1512A1-EC86-4D01-84D5-F23635DDDE49}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{41B0C4D5-40FD-4DEE-8745-E9180C0D7501}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DDE18B2A-47BE-413F-BBC7-7FF18781DF2B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{101978AB-6241-48D6-885B-3E93ACDA66D6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B23C943B-23CB-4C8E-9934-28D68DE21BF2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8A62768B-CE4D-423A-93EE-26E9719D0A73}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F17F03E6-BA75-4B22-A375-D25951DFD072}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5439F702-CB64-425A-A607-FECA7249D3C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4171695E-ECA8-4C53-87D9-B71AEDDA4E0D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{6B10DB0F-D3A9-4D27-9D44-2B5029CF4EED}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{5314C92C-2CCE-43D5-9BC1-5616C6585A9C}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{08A1B0E5-768D-4672-9075-B3732E661FB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{B20E6F58-42C0-48AA-8911-0B180872A33A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{7D1B6F19-D4F1-4FAE-B7E8-66CA49D23A1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{FCF1F3E0-0B0A-4F2E-A87C-908BB7971479}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{7FC89701-142C-49A7-89A6-7DA90D8DE19F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{D99C6495-ACB3-4C74-B977-4B2A7E2464E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{85560EC6-5875-42E9-9DF0-FCD3AF93B97E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{FEE96929-AB79-4111-ADE7-6DAE078C395B}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{AFBF4F10-A557-4592-B35E-B8974D9A5A65}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B763A22C-BE37-4B2E-B08F-1B7E098352A3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{8000B980-63CB-4C7B-BAE1-9C2150893FC8}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{2553592E-970A-4850-9058-0C94985DBA59}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [{30B7E0E7-85A5-4050-831F-1138AE21B285}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{1102369C-4EFF-4F77-B314-26D2C6C2CF4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [TCP Query User{29D1B479-34BB-4731-9046-F883E9EE8F98}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{44FC230E-F537-418E-B964-CEBFE3DA7148}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{D844C2AB-3081-4C7A-ABBB-9521BE469E93}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{CA30C963-EB65-4771-A19C-7CF86B52C362}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
FirewallRules: [{FF29E651-5069-44FE-AE55-3FD3586B49D0}] => (Allow) LPort=1542
FirewallRules: [{7E4393A1-00FD-479F-816D-36B3F64616F4}] => (Allow) LPort=1542
FirewallRules: [{9679AA36-25A4-4FEA-ACAE-17D2B926148A}] => (Allow) LPort=53
FirewallRules: [{670428EE-EC7B-4590-9429-F179DA0A5E32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [{916935FF-7530-4CA2-8EEE-5BC71F846942}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe
FirewallRules: [TCP Query User{1E062D3F-9499-4454-A097-A8B0C0826E06}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{2AF9E8E4-C8D5-4E55-8095-0B0F179A8F81}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{FCDCE93D-29A0-47CE-80F6-BCE7F62882ED}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{B52E82B2-7FEF-49CD-8753-BF6F344B3104}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [TCP Query User{264719E5-E622-4054-8273-84F77C9A03C5}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{6D19437D-8562-4BF4-B4AB-A7B3E7865C41}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{6CD64D70-2D44-4995-816F-F3E9EC205CE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe
FirewallRules: [{40D0E929-8624-4D36-9C39-C48850D5BB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\spacegame-Win64-Shipping.exe
FirewallRules: [{0169B266-A3FF-4A6D-8340-5797078E748F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{88749B37-3727-4925-A1CF-C35F6CB12FCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{AAC61384-EB30-476C-A35D-96D5C1F9140E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{C23F54DE-53F4-4782-B926-ACB223C06829}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{032D6843-A93B-4156-83A8-FB7B0BF52BCF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{932A5B25-433C-4F6A-B913-E618B238468E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BF4552D4-82E9-45E0-9223-E0CDA8085E8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FD9B2D32-4771-4ED5-AD5B-4AF510F55AF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ECDAEF85-D47C-49E7-8D12-10A80C2CA839}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F808D909-3EBD-4E2C-AF07-4DC5B958FB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{55169821-6D6A-4D40-A660-4978504E6BE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{B918BB39-14E9-49F0-8EFB-A06D584C0B72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{65D51746-E283-4740-88F9-F22FB6808E4C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
FirewallRules: [{9E404795-DAAC-4C84-A47E-339B8A0551DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{D4D03C04-1AC7-4FDD-85A1-4D46DE231EAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
FirewallRules: [{B109D6B9-52F9-4DEC-B8F8-90C2E6B26642}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe
FirewallRules: [{FBDAD585-8631-4449-9191-8870216C3AA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Zomboid Dedicated Server\ProjectZomboid64.exe
FirewallRules: [{C1C6710C-EC87-4262-A1DE-2A1B414BC9C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{58C93C26-3ACC-44F3-BFFF-C9136776888A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{2DB836B7-C1A7-4C74-9729-CAAADC419CA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{7CA0660F-B4FF-4797-B039-5307F6FD1743}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
FirewallRules: [{5992C3E4-2BB8-43A3-92DD-1644ACA78182}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{CF975FAB-B51B-48CC-926F-9751F55BD056}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{51F5E18E-2B94-4C2A-AD71-CF343E631F26}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe
FirewallRules: [{67A69C83-4985-40B3-A9EA-E57759FC1D8E}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{117FDE8E-DDEA-4D7E-8653-8EF64CFD7277}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{FA4D4DD2-7479-4860-ADF6-050AA6CAF5D9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe
FirewallRules: [{6E4269EE-310C-49D1-B748-5729DF35C853}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe
FirewallRules: [{6E9ABF56-A041-4375-B1F6-1AFC96924E02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\Squad.exe
FirewallRules: [{ED81CA35-C888-475F-A4D7-BCDC870BDA71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{D0DF3543-BDFB-408D-8713-E6C1ED1EE7EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{CE12D7F0-8E98-42F1-AE4F-8AEA5355104D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [{BE28E1B7-0C86-4798-8EE7-4EF50E776E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Squad\squad_launcher.exe
FirewallRules: [{47C7D361-E7E6-4874-B89E-0F31839099B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe
FirewallRules: [{BFDDBEF7-83A9-407C-B8A7-FDF89E37AC8A}] => (Allow) Z:\SteamLibrary\steamapps\common\Frozen Synapse\FrozenSynapse.exe
FirewallRules: [{5593C214-F8E6-49E9-8174-C71F52DD37F0}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{75C77B76-7386-4FBF-A285-A53197268C48}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{C3E19BDE-8B38-4A67-948E-C6E30F10F2B2}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{1F746533-2659-42B2-AD35-06DB7D28CF72}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{6335D248-9BBB-4554-B763-6B5A3EFC0B6E}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{6E4CA175-0935-48A4-A34D-B5B133A63A3F}] => (Allow) Z:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{90268FD8-A47B-447D-8555-F9A39C39CEEA}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{0702CAA4-6E2D-49D2-8194-CF2982A0ECCF}] => (Allow) Z:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{55EC18F9-5378-4D1D-9608-CE97601E90B9}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{E16F3BF1-E933-4DE9-B41C-E77918736F28}] => (Allow) Z:\SteamLibrary\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{37A8572A-3214-491F-AE12-F4E8186D3468}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe
FirewallRules: [{6BAD560C-F304-446D-9C19-9EDFA364F647}] => (Allow) Z:\SteamLibrary\steamapps\common\vagante\vagante.exe
FirewallRules: [{AF138567-F675-4729-A6AC-E24A26758345}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{D50396FA-DCC7-4AD7-937F-0266735D0048}] => (Allow) Z:\SteamLibrary\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{365CF014-33D1-4DEF-B323-BA269EBA3BD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{1D254D4B-38B0-42F0-AE8C-884861B37C9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{FF1B4FAC-051F-4D96-81CA-14E3B82DF1C2}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{97314E51-49D8-45C5-B4B4-138AA5C3386F}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{C0D363CA-5B45-4C1A-AF32-20D385BAF8FD}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{23F4FEE0-4106-404A-9822-7CD7039BE0D4}] => (Allow) Z:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{1D4A5E4A-9D00-46A3-BEFD-D03433100C77}] => (Allow) C:\Users\Chrome\Downloads\bin\BlackDesert32.exe
FirewallRules: [{C2CBECE8-E5BB-4454-BE23-8EED84F6B5F2}] => (Allow) C:\Users\Chrome\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{5EC3A64A-850F-49F8-A92D-65801C635F2A}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{924AF97F-4834-4521-9CF5-228D17448DD9}] => (Allow) C:\Users\Chrome\Downloads\BlackDesert_Downloader.exe
FirewallRules: [{4FC0FAC6-A0AE-4309-8AF2-8D5FA5BC9A12}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe
FirewallRules: [{8FC638D5-0022-4944-8D00-E9C0624C88D6}] => (Allow) Z:\SteamLibrary\steamapps\common\FortressCraft\64\FC_64.exe
FirewallRules: [{BB014947-750D-46C4-A431-CDA832CA1F42}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{3AE70C61-91B8-4DC9-BA83-CC6F6489D3BB}] => (Allow) Z:\SteamLibrary\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{8B3C7D7E-6B7B-44E4-A927-0B0195D0C4EF}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe
FirewallRules: [{3CA3F9D7-A09D-4CD4-B563-96EEA4901C08}] => (Allow) Z:\SteamLibrary\steamapps\common\Star Realms\StarRealms.exe
FirewallRules: [{7FB5C8DC-182A-4F18-9282-BF1E5C0243B3}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe
FirewallRules: [{6324292C-12CD-473C-8320-34BE8BF8721E}] => (Allow) Z:\SteamLibrary\steamapps\common\Enter the Gungeon\EtG.exe
FirewallRules: [{540C1D79-B7B1-409B-9528-BFC185E8CC17}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe
FirewallRules: [{2B43051E-5F2A-4FD5-8DF5-2C9249B21351}] => (Allow) Z:\SteamLibrary\steamapps\common\Hand of Fate\Hand of Fate.exe
FirewallRules: [{E5D0B986-59ED-4ED5-A18E-B918FFDFD8E8}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe
FirewallRules: [{F7C020C2-A729-440A-A524-A0636F719323}] => (Allow) Z:\SteamLibrary\steamapps\common\Distant Worlds Universe\autorun.exe
FirewallRules: [{D80A8286-F90A-4258-855A-516EB40CCD48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{6F40E3BE-43F2-4CB9-BA0B-841D3B597E09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{04236A0B-3DD4-41D7-BA47-B95F91873714}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{13DA6AEA-50D1-4A6A-8A98-AAE612F32F7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{6C6D8B25-4566-48AC-9482-AEFA847A689B}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe
FirewallRules: [{A2C55BDA-1C3F-4C6A-8259-F6FD963CFA37}] => (Allow) Z:\SteamLibrary\steamapps\common\Sentinels of the Multiverse\Sentinels.exe
FirewallRules: [{3587BF52-206C-4FAA-ADCA-79083EE39686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{DF2C3CBD-B92F-4664-B2A3-4A3F78CE5A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{E059D07B-28F2-4B51-95A7-51FD5EE86DEC}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{7023411E-BD64-4C02-949E-2B3AD7263BA5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{C30FF631-0D4A-4A66-94A0-363DE26010B5}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{052B8CB3-6559-4C1C-9927-CF8C413D97B6}] => (Allow) Z:\Program Files (x86)\Ubisoft\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{CCF95C31-0FCF-464E-BCC2-C0241E76DECE}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{B958393A-FE2D-4706-8469-21800C6FCD7E}] => (Allow) Z:\SteamLibrary\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{2A463812-DFE8-4F7F-9A04-558CA9097749}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe
FirewallRules: [{7CEDD67F-8A52-4FD3-9621-1D00F8A2F85F}] => (Allow) Z:\SteamLibrary\steamapps\common\Borderless Gaming\BorderlessGaming.exe
FirewallRules: [{ADB9A6C5-CC4C-4F3D-AC86-CE67A971E558}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{3F647DEC-CFF7-4B35-A0B3-0F32FAF3FAEE}] => (Allow) Z:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{D13F87F6-2B72-4BA2-B315-0797A57C9E1D}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe
FirewallRules: [{71EBD196-4E23-416F-98CF-E7EF6172E80A}] => (Allow) Z:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe
FirewallRules: [{13E3FEAC-3A91-4F50-ABA2-61F85F4891A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8E9EA377-66B0-4BF9-8192-29F986F6C30A}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{BECAB396-0123-42A0-81A9-F49B79369CB7}] => (Allow) Z:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{11D980D6-ABB5-4ABB-B908-CD71DEADE80D}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{DE7880AC-CBFA-47BA-B9F0-4198DE3980F9}] => (Allow) Z:\SteamLibrary\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{9C575885-BBD4-44D9-B1FE-BFC2854515EB}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [{E0887D86-2A37-4A2F-B4AB-A75A4479257E}] => (Allow) Z:\SteamLibrary\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [{EBFA8969-9DF5-4CD9-B033-F01501E2DE09}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{7DBCFBF8-1D22-4356-9C92-5B0B93AC4BA4}] => (Allow) Z:\SteamLibrary\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{289E3845-7CF9-4701-B0B1-125F3A975EE7}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{D91EB0A9-878D-494C-8665-FCA3A8F1C171}] => (Allow) Z:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{9DDE2F3F-A0B9-4678-B83F-0F426BF79562}] => (Allow) Z:\SteamLibrary\steamapps\common\Chronicle\Chronicle.exe
FirewallRules: [{AE63BD26-023B-4620-A238-567FCC08A5D5}] => (Allow) Z:\SteamLibrary\steamapps\common\Chronicle\Chronicle.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

21-05-2016 16:56:58 Installed DirectX
30-05-2016 18:36:56 Scheduled Checkpoint
31-05-2016 23:47:42 Removed Vegas Pro 13.0 (64-bit)
04-06-2016 11:23:22 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/06/2016 03:29:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 21219

Error: (06/06/2016 03:29:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 21219

Error: (06/06/2016 03:29:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/06/2016 03:29:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 20219

Error: (06/06/2016 03:29:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 20219

Error: (06/06/2016 03:29:50 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/06/2016 03:29:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19204

Error: (06/06/2016 03:29:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19204

Error: (06/06/2016 03:29:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/06/2016 03:29:48 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18204


System errors:
=============
Error: (06/07/2016 11:15:25 AM) (Source: ACPI) (EventID: 13) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (06/06/2016 03:29:17 PM) (Source: DCOM) (EventID: 10010) (User: Chrome-PC)
Description: {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}

Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Access_1ebab2d3 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Storage_1ebab2d3 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Contact Data_1ebab2d3 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (06/06/2016 03:29:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_1ebab2d3 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (06/06/2016 11:56:02 AM) (Source: ACPI) (EventID: 13) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.

Error: (06/05/2016 11:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Access_1a3f0f54 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (06/05/2016 11:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Storage_1a3f0f54 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (06/05/2016 11:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Contact Data_1a3f0f54 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.


CodeIntegrity:
===================================
  Date: 2016-05-22 13:13:25.406
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-15 18:02:50.824
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-15 12:17:29.437
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-13 13:57:03.567
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-12 23:03:04.829
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-12 11:30:27.252
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-30 19:13:49.387
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-14 13:32:52.542
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-08 16:07:54.261
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-07 17:01:25.920
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 26%
Total physical RAM: 16325.69 MB
Available physical RAM: 12075.46 MB
Total Virtual: 20517.69 MB
Available Virtual: 15097.9 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.22 GB) (Free:114.94 GB) NTFS
Drive d: () (Fixed) (Total:297.87 GB) (Free:156.44 GB) NTFS
Drive e: (Terra Drive) (Fixed) (Total:931.51 GB) (Free:491.29 GB) NTFS
Drive z: (Recorder's Keep) (Fixed) (Total:2794.39 GB) (Free:2523.69 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0BE386AE)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: 0BE70F86)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F9952B5E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

 

 

Link to post
Share on other sites

  • Root Admin

You should visit the support web page for your computer and see if they have an updated BIOS to help correct this issue.It could also be that you have some custom setting in your BIOS that isn't working well.

 

Error: (06/07/2016 11:15:25 AM) (Source: ACPI) (EventID: 13) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.


We've removed a lot of undesirable junk but not sure that had any real impact on the audio issue for you. How is that now?

 

Link to post
Share on other sites

  • Root Admin

You're quite welcome. Let me give you a cleanup speech about the tools we've used.

 

At this time there are no more signs of an infection on your system.
However if you are still seeing any signs of an infection please let me know.

Let's go ahead and remove the tools and logs we've used during this process.

Most of the tools used are potentially dangerous to use unsupervised or if ran at the wrong time.
They are often updated daily so if you went to use them again in the future they would be outdated anyways.

The following procedures will implement some cleanup procedures to remove these tools.
 
bwebb7v.jpgDownload Delfix from here and save it to your desktop. (you may already have this)

  • Ensure Remove disinfection tools is checked.
  • Click the Run button.
  • Reboot


Any other programs or logs that are still remaining, you can manually delete. (right click.....Delete)
IE: RogueKiller.exe, RKreport.txt, RK_Quarantine folder, C:\FRST folder, FRST-OlderVersion folder, MBAR folder, etc....AdwCleaner > just run the program and click uninstall.


 
If there are any other left over Folders, Files, Logs then you can delete them on your own.
 
Please visit the following link to see how to delete old System Restore Points. Please delete all of them and create a new one at this time.
How to Delete System Protection Restore Points in Windows 7 and Windows 8

Remove all but the most recent Restore Point on Windows XP


As Java seems to get exploited on a regular basis I advise not using Java if possible but to at least disable java in your web browsers
How do I disable Java in my web browser? - Disable Java

A lot of reading here but if you take the time to read a bit of it you'll see why/how infections and general damage are so easily inflicted on the computer. There is also advice on how to prevent it and keep the system working well. Don't forget about good, solid backups of your data to an external drive that is not connected except when backing up your data. If you leave a backup drive connected and you do get infected it can easily damage, encrypt, delete, or corrupt your backups as well and then you'd lose all data.
Nothing is 100% bulletproof but with a little bit of education you can certainly swing things in your favor.


If you're not currently using Malwarebytes Premium then you may want to consider purchasing the product which can also help greatly reduce the risk of a future infection.

 

Link to post
Share on other sites

  • 2 months later...
  • Root Admin

Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.