Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2017
Ran by juang (12-01-2017 18:18:40)
Running from E:\Users\juang\Downloads
Windows 10 Pro Version 1607 (X64) (2016-09-23 07:54:53)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-463900854-2142852480-2626321906-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-463900854-2142852480-2626321906-503 - Limited - Disabled)
Guest (S-1-5-21-463900854-2142852480-2626321906-501 - Limited - Disabled)
juang (S-1-5-21-463900854-2142852480-2626321906-1001 - Administrator - Enabled) => C:\Users\juang

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Panda Free Antivirus (Enabled - Up to date) {AAF74A68-8713-CDF1-004F-30003398BE9E}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Free Antivirus (Enabled - Up to date) {1196AB8C-A129-C27F-3AFF-0B72481FF423}
AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Panda Firewall (Disabled) {92CCCB4D-CD7C-CCA9-2B10-9935CD4BF9E5}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS B16.0307.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B16.0307.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
7 Days to Die (HKLM\...\Steam App 251570) (Version:  - The Fun Pimps)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0E0F06755100}) (Version: 15.006.30279 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AC0F074E4100}) (Version: 15.023.20053 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.0 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version:  - ALLPlayer Group, Ltd.)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 1.00.1606.0301 - GIGABYTE)
APP Center (x32 Version: 1.00.1606.0301 - GIGABYTE) Hidden
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version:  - Studio Wildcard)
Arma 3 (HKLM\...\Steam App 107410) (Version:  - Bohemia Interactive)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.12.0013 - Bloody)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.5.78.7302 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Breaking Point (x32 Version: 5.0.2.9 - The Zombie Infection) Hidden
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.16.1020.1 - GIGABYTE)
calibre 64bit (HKLM\...\{872CC218-5C6E-4598-B9C1-3B72BDB2BE44}) (Version: 2.40.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Citrix Online Launcher (HKLM-x32\...\{678753E6-E526-4AE5-A144-00240772543A}) (Version: 1.0.393 - Citrix)
Citrix online plug-in - web (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 12.0.0.6410 - Citrix Systems, Inc.)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
CPUID HWMonitor 1.30 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd)
Dashlane (HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\Dashlane) (Version: 4.6.6.23032 - Dashlane SAS)
Discord (HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 17.4.33 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DubWars (HKLM\...\Steam App 290000) (Version:  - MURA Interactive)
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.16.0614 - GIGABYTE)
EasyTuneEngineService (x32 Version: 1.16.0614 - GIGABYTE) Hidden
Empyrion - Galactic Survival (HKLM\...\Steam App 383120) (Version:  - Eleon Game Studios)
EndNote X7 (HKLM-x32\...\{86B3F2D6-AC2B-0017-8AE1-F2F77F781B0C}) (Version: 17.7.1.10036 - Thomson Reuters)
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ExamView Assessment Suite (HKLM-x32\...\{C59DE8FB-B81E-4386-B719-A8C95C16544B}) (Version: 8.1.107.70421 - eInstruction)
ExamView Content (WWN_youmay3) (HKLM-x32\...\{40942002-297d-4c43-971b-3f53d64a4a18}) (Version: 8.1.107.70421 - eInstruction)
Fallout 4 (HKLM\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Gephi 0.9.1 (HKLM-x32\...\{51722911-C391-4118-97BF-B50100D2AB15}_is1) (Version:  - Gephi)
Git version 2.11.0 (HKLM\...\Git_is1) (Version: 2.11.0 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
H-Hour: World's Elite (HKLM\...\Steam App 293220) (Version:  - SOF Studios Ltd)
IBM SPSS Statistics 22 (HKLM\...\{104875A1-D083-4A34-BC4F-3F635B7F8EF7}) (Version: 22.0.0.0 - IBM Corp)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
KNIME Analytics Platform (HKLM\...\{61835C86-6D51-497F-A6BD-F0B4A8F0014A}_is1) (Version: 3.3.1 - KNIME GmbH)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.6965.2115 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Update 1 (HKLM-x32\...\{1d03ad7c-fa27-4517-91b0-410bb49f94d9}) (Version: 14.0.24720.1 - Microsoft Corporation)
MiKTeX 2.9 (HKLM\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 50.1.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 en-US)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version:  - )
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.2.2 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.2.2.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.2.49 - NVIDIA Corporation)
NVIDIA Graphics Driver 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.2.2.49 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.2.1 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.2 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.4 - OBS Project)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.6965.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6965.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.6965.2115 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Osiris: New Dawn (HKLM\...\Steam App 402710) (Version:  - Fenix Fire Entertainment)
Panda Devices Agent (x32 Version: 1.03.07 - Panda Security) Hidden
Panda Devices Agent (x32 Version: 1.06.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 16.0.2 - Panda Security)
Panda Free Antivirus (Version: 8.04.00.0000 - Panda Security) Hidden
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Plex Media Server (HKLM-x32\...\{d685b3b4-91da-4364-9e7d-f365a614d42b}) (Version: 1.3.3.3148 - Plex, Inc.)
Plex Media Server (x32 Version: 1.3.3148 - Plex, Inc.) Hidden
PNY Drive Utility (HKLM-x32\...\{F7F0273F-68B7-44EA-AD7B-1C9F9C29C562}) (Version: 1.0.8 - PNY Technologies)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Project Argo (Prototype) (HKLM\...\Steam App 530700) (Version:  - )
Pulse Secure (Version: 5.1.61491 - Pulse Secure, LLC) Hidden
Pulse Secure 5.1 (HKLM-x32\...\Pulse Secure 5.1) (Version: 5.1.61491 - Pulse Secure, LLC)
Pulse Secure Setup Client (HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\Juniper_Setup_Client) (Version: 8.1.6.61491 - Pulse Secure, LLC)
Pulse Secure Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Pulse Secure, LLC)
Pulse Secure Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Pulse Secure, LLC)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Python 2.7.12 (HKLM-x32\...\{9DA28CE5-0AA5-429E-86D8-686ED898C665}) (Version: 2.7.12150 - Python Software Foundation)
qBittorrent 3.3.10 (HKLM-x32\...\qBittorrent) (Version: 3.3.10 - The qBittorrent project)
R for Windows 3.3.1 (HKLM\...\R for Windows 3.3.1_is1) (Version: 3.3.1 - R Core Team)
R for Windows 3.3.2 (HKLM\...\R for Windows 3.3.2_is1) (Version: 3.3.2 - R Core Team)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Remote PC Agent (HKLM-x32\...\{82730AAC-04BA-4684-A63F-286FB9847C15}) (Version: 5.00.000 - RSUPPORT)
ResearchSoft Direct Export Helper (HKLM-x32\...\ResearchSoft Direct Export Helper) (Version:  - Thomson Reuters)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24723 - Microsoft Corporation) Hidden
RStudio (HKLM-x32\...\RStudio) (Version: 1.0.44 - RStudio)
Rtools 3.4 (HKLM-x32\...\Rtools_is1) (Version:  - The R Foundation)
SeaTools for Windows 1.4.0.4 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.4 - Seagate Technology)
Shattered Skies version 1.0 (HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\{F0B60558-163B-4E90-833B-4C77E6FE0F14}}_is1) (Version: 1.0 - Free Reign Entertainment)
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.2.49 - NVIDIA Corporation) Hidden
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
Smart Backup B16.0516.1  (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0003 - GIGABYTE)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.)
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteamVR Performance Test (HKLM\...\Steam App 323910) (Version:  - Valve)
Stopping Plex (x32 Version: 1.3.3148 - Plex, Inc.) Hidden
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
TeXstudio 2.11.2 (HKLM-x32\...\TeXstudio_is1) (Version: 2.11.2 - Benito van der Zander)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Tukui Client (HKLM-x32\...\{BAD6EBBD-A6A9-41C9-898A-8C868A552E4C}) (Version: 2.4.6 - Tukui)
TypeScript Power Tool (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.4.0 (HKLM-x32\...\{33e2204a-4ec6-4458-895a-47e2a404d990}) (Version: 1.7.24720.0 - Microsoft Corporation)
UCINET 6.624 (HKLM-x32\...\UCINET) (Version: 6.624 - Analytic Technologies)
Unity Web Player (HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\UnityWebPlayer) (Version: 5.3.1f1 - Unity Technologies ApS)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 17.0 - Ubisoft)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version:  - Ubisoft)
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Windows Driver Package - Acronis (tib_mounter) AcronisDevices  (07/17/2015 4.3.0.2230) (HKLM\...\9FBC4712AB557BB7B6EA69DAB21AB317ADF9A8C7) (Version: 07/17/2015 4.3.0.2230 - Acronis)
Windows Driver Package - AMD (amdkmpfd) System  (02/12/2015 15.20.0.0000) (HKLM\...\708AE871DE4DE98C022B914117B48025341D07B8) (Version: 02/12/2015 15.20.0.0000 - AMD)
Windows Driver Package - AMD (amdkmpfd) System  (08/10/2015 15.201.0.0000) (HKLM\...\77418A2019FA69F93B068CA252F72AE8FCA06AFC) (Version: 08/10/2015 15.201.0.0000 - AMD)
Windows Driver Package - ASMedia Technology Inc (asmthub3) USB  (01/21/2016 1.16.32.1) (HKLM\...\FCAC9D7FA3D915474FBD2FAF94326F3B6B7C4923) (Version: 01/21/2016 1.16.32.1 - ASMedia Technology Inc)
Windows Driver Package - ASMedia Technology Inc (asmtxhci) USB  (01/21/2016 1.16.32.1) (HKLM\...\F5C39A0924FCED66AFE36466D3621FB889A76A84) (Version: 01/21/2016 1.16.32.1 - ASMedia Technology Inc)
Windows Driver Package - ASMedia Technology Inc (asmtxhci) USB  (04/11/2016 1.16.35.1) (HKLM\...\0F7766D72740CB9EB4224712F01741B1D4A6773E) (Version: 04/11/2016 1.16.35.1 - ASMedia Technology Inc)
Windows Driver Package - ASMedia Technology Inc (asmtxhci) USB  (10/12/2015 1.16.29.1) (HKLM\...\DD455218111001C2BFFE8040C7142756001BA93E) (Version: 10/12/2015 1.16.29.1 - ASMedia Technology Inc)
Windows Driver Package - Compal Electronics, INC. (RadioSwitchHid) HIDClass  (11/25/2014 1.0.0.5) (HKLM\...\41439C53BF81572B2E179478239AB8D71353CD8C) (Version: 11/25/2014 1.0.0.5 - Compal Electronics, INC.)
Windows Driver Package - Cypress Semiconductor, Inc (cykbfltrService) Keyboard  (06/24/2015 2.5.1.72) (HKLM\...\1ECD12B803C107D8EDB315C6205B99B9E2265F43) (Version: 06/24/2015 2.5.1.72 - Cypress Semiconductor, Inc)
Windows Driver Package - ELAN SMBus (ETDSMBus) System  (08/06/2015 15.1.2.5) (HKLM\...\94D4ADBD3EF82E234DF58F1B9BD18B24B775A6D0) (Version: 08/06/2015 15.1.2.5 - ELAN SMBus)
Windows Driver Package - ELAN SMBus (ETDSMBus) System  (09/07/2015 15.1.8.5) (HKLM\...\8C51EBB00CD5442CFBF99198B944C9B53C9B6854) (Version: 09/07/2015 15.1.8.5 - ELAN SMBus)
Windows Driver Package - ELAN SMBus (ETDSMBus) System  (12/14/2015 15.1.2.8) (HKLM\...\6168882EA454F93FCDCE03E891193A3F56F09386) (Version: 12/14/2015 15.1.2.8 - ELAN SMBus)
Windows Driver Package - Intel (e1dexpress) Net  (01/14/2016 12.13.17.7) (HKLM\...\FC13404ED3476E5F3BCDD6C3AE7D652D7154BD70) (Version: 01/14/2016 12.13.17.7 - Intel)
Windows Driver Package - Intel (e1dexpress) Net  (01/27/2016 12.15.22.6) (HKLM\...\CB3A14852D3535E16F952FC22F6004C37D9EA490) (Version: 01/27/2016 12.15.22.6 - Intel)
Windows Driver Package - Intel (e1dexpress) Net  (05/10/2016 12.15.23.1) (HKLM\...\12C81864814CE5B7114E3D50C680BB79DEC07802) (Version: 05/10/2016 12.15.23.1 - Intel)
Windows Driver Package - Intel (ICCWDT) System  (09/20/2015 11.0.0.1007) (HKLM\...\2C8BF84CDD1779C9F2F280CB9F57EDE2A692565B) (Version: 09/20/2015 11.0.0.1007 - Intel)
Windows Driver Package - Intel (MEIx64) System  (02/04/2016 11.0.0.1181) (HKLM\...\7A3C2BD57BAC29BAA270D69BD827E98DD34CA72A) (Version: 02/04/2016 11.0.0.1181 - Intel)
Windows Driver Package - Intel (MEIx64) System  (03/28/2016 11.0.5.1189) (HKLM\...\63CEF5543DBF9887E6220C5C2F7F85C2D4C726D5) (Version: 03/28/2016 11.0.5.1189 - Intel)
Windows Driver Package - Intel (MEIx64) System  (10/08/2015 11.0.0.1172) (HKLM\...\5C253A305A9B81390BDF72537C0C93D01AFD2AA8) (Version: 10/08/2015 11.0.0.1172 - Intel)
Windows Driver Package - Intel (MEIx64) System  (12/24/2015 11.0.0.1176) (HKLM\...\6DDEF21B3A2297AF0AEE820F8731F50C42034672) (Version: 12/24/2015 11.0.0.1176 - Intel)
Windows Driver Package - Intel (XtuAcpiDriver) System  (06/22/2015 5.0.0.0) (HKLM\...\DB384F9DF1EDFD290D030C2C87B6140BECEF2AEA) (Version: 06/22/2015 5.0.0.0 - Intel)
Windows Driver Package - Intel Corp (hswultpep) System  (01/30/2013 1.0.5.591) (HKLM\...\9D406FEE18ADC9C102B04926FB415C1F530F5C77) (Version: 01/30/2013 1.0.5.591 - Intel Corp)
Windows Driver Package - INTEL System  (01/26/2016 10.1.1.14) (HKLM\...\C44BD225CBCAD2883798C3BAA2BA69AE6F27EE20) (Version: 01/26/2016 10.1.1.14 - INTEL)
Windows Driver Package - INTEL System  (01/26/2016 10.1.1.14) (HKLM\...\DB95970A14816D2D55C7E96694DF7459F7563DB4) (Version: 01/26/2016 10.1.1.14 - INTEL)
Windows Driver Package - INTEL System  (04/04/2016 10.1.1.18) (HKLM\...\306BFD6134B0B3D67E9E99276E3DE1DDE6C9B0DC) (Version: 04/04/2016 10.1.1.18 - INTEL)
Windows Driver Package - INTEL System  (04/04/2016 10.1.1.18) (HKLM\...\5B82A7556BD9221502EDCB0506084EE4E680864D) (Version: 04/04/2016 10.1.1.18 - INTEL)
Windows Driver Package - INTEL System  (07/14/2015 10.1.1.10) (HKLM\...\5EBB49080F680217E3D3C2082DAEAC05F24F3336) (Version: 07/14/2015 10.1.1.10 - INTEL)
Windows Driver Package - INTEL System  (07/28/2015 10.1.2.9) (HKLM\...\E7526085DB3D12B98CEA02A3D47EBA891E636A4D) (Version: 07/28/2015 10.1.2.9 - INTEL)
Windows Driver Package - INTEL System  (10/28/2015 10.1.1.13) (HKLM\...\286B25D8E04717B7F70442D1A51158B1496662F7) (Version: 10/28/2015 10.1.1.13 - INTEL)
Windows Driver Package - INTEL System  (10/28/2015 10.1.1.13) (HKLM\...\F71B76DA4F5201E5B408B826C9425031B4CD7B3A) (Version: 10/28/2015 10.1.1.13 - INTEL)
Windows Driver Package - INTEL System  (10/28/2015 10.1.1.13) (HKLM\...\FDF4BFCC61347856F27D9DD5C8DE01340E2B45A9) (Version: 10/28/2015 10.1.1.13 - INTEL)
Windows Driver Package - INTEL System  (11/29/2015 10.1.1.13) (HKLM\...\EEC9E078808E05D1B0E3E6285CF081F14AB2952D) (Version: 11/29/2015 10.1.1.13 - INTEL)
Windows Driver Package - INTEL System  (12/16/2015 10.1.2.19) (HKLM\...\EB9115A82AA92A665975DDF2F1BE578588AC2391) (Version: 12/16/2015 10.1.2.19 - INTEL)
Windows Driver Package - Intel USB  (02/25/2013 9.3.0.1027) (HKLM\...\2593EA261EAA13AD91B7640B0C4AB7B2E5A2E23F) (Version: 02/25/2013 9.3.0.1027 - Intel)
Windows Driver Package - Intel USB  (07/09/2013 9.3.0.1028) (HKLM\...\6AB557A44DB5C90C1F398266C338F5468520E2C0) (Version: 07/09/2013 9.3.0.1028 - Intel)
Windows Driver Package - Intel(R) Corporation (IntcDAud) MEDIA  (01/26/2016 8.20.00.865) (HKLM\...\A45C5D1A60F3E09131C155E4329FFFB33E6CE51F) (Version: 01/26/2016 8.20.00.865 - Intel(R) Corporation)
Windows Driver Package - Juniper Networks (JnprVaMgr) Net  (07/13/2010 5.1.3.8041) (HKLM\...\C072D009E927212B055F81FEF62D743F5D959D12) (Version: 07/13/2010 5.1.3.8041 - Juniper Networks)
Windows Driver Package - LG Electronics Inc. (AirModeBtn) HIDClass  (08/12/2015 1.0.1508.1201) (HKLM\...\488F076C8A3658890AFD8181D71BB3E02C79B505) (Version: 08/12/2015 1.0.1508.1201 - LG Electronics Inc.)
Windows Driver Package - LG Electronics Inc. (Serial) Ports  (03/05/2015 6.3.9600.4) (HKLM\...\23D08292B2639E56E3531B935E22B475F6700AAA) (Version: 03/05/2015 6.3.9600.4 - LG Electronics Inc.)
Windows Driver Package - OEM (PegaRadioSwitch) HIDClass  (05/25/2015 15.56.17.593) (HKLM\...\B8F84F8C3D55C7204B7570FE49B25AD6329873DF) (Version: 05/25/2015 15.56.17.593 - OEM)
Windows Driver Package - Realtek (rt640x64) Net  (07/03/2015 10.002.0703.2015) (HKLM\...\CD45634117155F2D54182DE2298B01F55590D6CF) (Version: 07/03/2015 10.002.0703.2015 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net  (07/23/2015 10.003.0723.2015) (HKLM\...\EBD6C9FFA0364C8EF8DBF5AF48CD49882F9794A7) (Version: 07/23/2015 10.003.0723.2015 - Realtek)
Windows Driver Package - Realtek (rt640x64) Net  (10/01/2015 10.006.1001.2015) (HKLM\...\8C869877E6B13D11BE068A1FF0AB655A587B57C7) (Version: 10/01/2015 10.006.1001.2015 - Realtek)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (02/02/2016 6.0.1.7738) (HKLM\...\EFF0145B6FDAE669B803C732D3F07968939B14C4) (Version: 02/02/2016 6.0.1.7738 - Realtek Semiconductor Corp.)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (02/16/2016 6.0.1.7743) (HKLM\...\EC3CF3D8604589667D20615AF3FF1D882A17971D) (Version: 02/16/2016 6.0.1.7743 - Realtek Semiconductor Corp.)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (06/14/2016 6.0.1.7848) (HKLM\...\A9F291B4FF61ADA07B8EECC94DF5B268D409A176) (Version: 06/14/2016 6.0.1.7848 - Realtek Semiconductor Corp.)
Windows Driver Package - Synaptics (SmbDrv) System  (09/26/2013 16.2.19.13) (HKLM\...\578049704DC09ADE759A1ADD481A4D2FD66E9A52) (Version: 09/26/2013 16.2.19.13 - Synaptics)
WinHTTrack Website Copier 3.48-22 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.48.22 - HTTrack)
WinRAR 5.30 beta 5 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.5 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
XTREME GAMING ENGINE (HKLM-x32\...\GIGABYTE XTREME GAMING ENGINE_is1) (Version: 1.1.8.1 - GIGABYTE Technology Co.,Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {13A88B5D-6640-4FFB-BFCD-F2CCF0AE5708} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {21F0615C-A8FD-4F87-B097-E6FB1BBE5965} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-05] (NVIDIA Corporation)
Task: {29E37172-3D8A-4CDB-AC46-F8DED0831BCF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {3B46D756-A9A3-4F47-AFD8-7E36B7CD2ACA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {3D81B5AD-91AD-4F2C-BCEE-D5162AF06546} - \DropboxUpdateTaskMachineCore -> No File <==== ATTENTION
Task: {43AA0EE0-B80A-419A-A047-E8447D7119EE} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-12-10] (Microsoft Corporation)
Task: {480DE7F5-7AE5-448C-94D7-0B2566573C1B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-09] (Microsoft Corporation)
Task: {5B3150B4-FA1A-4F8C-8E09-C378FBB7F567} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {5CD569BA-FE8F-4B8D-9391-BB1B5C835CED} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-09] (Microsoft Corporation)
Task: {6DE57878-F21F-4295-B747-74D2514390A0} - \DropboxUpdateTaskMachineUA -> No File <==== ATTENTION
Task: {7A364721-AA99-4595-BF02-492A9A713CEF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-05] (NVIDIA Corporation)
Task: {7B17E669-0831-4FB3-9E88-927013938D20} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {8A10201D-6E81-4FAE-BFE8-6401AECB503A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-05] (NVIDIA Corporation)
Task: {9E4750FE-F52F-49B0-A361-9BA82164B73D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-12-10] (Microsoft Corporation)
Task: {A1E7C9AA-DC3E-4B01-A3C0-34BA6DF44DB0} - \{A314B3CC-41FC-49CB-8743-00A0FA60E725} -> No File <==== ATTENTION
Task: {AC4ED370-BFE5-4381-A8DC-81E4291909F3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-12-10] (Microsoft Corporation)
Task: {B5AFBCD6-AA10-4E47-BD0B-BAB485096B00} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-01-11] (Microsoft Corporation)
Task: {BDBF6A91-BB7E-470B-8936-17C67CB04163} - System32\Tasks\Launcher GIGABYTE XTREME GAMING ENGINE => C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\Xtreme.exe [2016-11-02] (GIGABYTE Technology Co.,Ltd.)
Task: {C0516482-96E5-4768-866A-C68B574A3302} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-05] (NVIDIA Corporation)
Task: {CFB278B9-F151-4619-958C-C9F6C4EC7073} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-05] (NVIDIA Corporation)
Task: {FE0425A7-BB6D-4273-946E-C244C4D1B83E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-05] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 06:42 - 2016-07-16 06:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-13 15:01 - 2016-12-09 05:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-06-25 08:45 - 2015-06-25 08:45 - 00017920 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
2015-05-19 08:11 - 2015-05-19 08:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-12-01 15:53 - 2017-01-05 20:10 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-01 15:53 - 2017-01-05 20:10 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-26 17:12 - 2016-11-26 17:12 - 00076152 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe
2016-12-01 15:52 - 2016-12-11 13:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-13 15:01 - 2016-12-09 05:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-23 06:42 - 2016-09-23 06:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 13:12 - 2016-12-21 02:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-06-03 09:21 - 2016-06-03 09:21 - 01850152 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
2017-01-11 13:11 - 2016-12-21 01:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 13:11 - 2016-12-21 01:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 13:11 - 2016-12-21 01:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 13:11 - 2016-12-21 01:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 13:11 - 2016-12-21 01:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-14 10:51 - 2016-12-14 10:52 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-12-14 10:51 - 2016-12-14 10:51 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-12-14 10:51 - 2016-12-14 10:52 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 10:51 - 2016-12-14 10:51 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll
2016-06-03 04:44 - 2017-01-05 08:37 - 00536960 _____ () C:\Users\juang\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-09-23 08:17 - 2016-09-23 08:17 - 00959168 _____ () C:\Users\juang\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64\ClientTelemetry.dll
2016-05-07 12:19 - 2016-12-09 18:33 - 08919752 _____ () C:\Program Files\Microsoft Office\root\Office16\1033\GrooveIntlResource.dll
2016-12-14 17:13 - 2016-12-08 03:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-14 17:13 - 2016-12-08 03:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2013-04-12 12:23 - 2013-04-12 12:23 - 00612664 _____ () C:\Program Files (x86)\Panda Security\Panda Security Protection\SQLite3.dll
2016-12-15 13:53 - 2016-12-15 13:53 - 00083440 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2016-12-15 13:53 - 2016-12-15 13:53 - 00203248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2015-10-10 22:38 - 2014-05-13 11:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-10-10 22:38 - 2014-05-13 11:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-10-10 22:38 - 2014-05-13 11:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-10-10 23:01 - 2012-08-23 09:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-02-17 00:47 - 2015-02-17 00:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\ycc.dll
2016-12-01 15:53 - 2017-01-05 20:10 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-12-01 15:53 - 2017-01-05 20:10 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-01 15:53 - 2017-01-05 20:10 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2014-01-21 20:53 - 2014-01-21 20:53 - 01607680 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2015-02-16 09:47 - 2015-02-16 09:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ycc.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 00344960 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 00441216 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 00471424 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 63168896 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 00292736 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 06328192 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 07643008 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 13834112 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 02285440 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.6.23032.dll
2017-01-05 08:37 - 2017-01-05 08:37 - 00335232 _____ () C:\Users\juang\AppData\Roaming\Dashlane\4.6.6.23032\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.6.23032.dll
2016-12-07 11:51 - 2016-12-01 08:49 - 03306496 _____ () C:\Program Files (x86)\Bluestacks\libGLESv2.dll
2016-12-01 15:53 - 2017-01-05 20:10 - 64246840 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-12-01 15:53 - 2017-01-05 19:09 - 00527416 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-12-01 15:53 - 2017-01-05 19:09 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-12-01 15:53 - 2017-01-05 19:09 - 02807232 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-12-01 15:53 - 2017-01-05 19:09 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-12-01 15:53 - 2017-01-05 19:09 - 00449080 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-12-01 15:53 - 2017-01-05 19:09 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-12-01 15:53 - 2017-01-05 19:09 - 01003456 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-15 15:16 - 2017-01-05 19:09 - 00954816 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
2016-12-01 16:02 - 2016-08-18 20:26 - 00225792 _____ () C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\GvFireware.dll
2016-12-01 16:02 - 2014-05-01 02:49 - 00025088 _____ () C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\BSL430.dll
2015-07-10 22:37 - 2015-07-10 22:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7924 more sites.

IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\123simsen.com -> www.123simsen.com

There are 7924 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 06:04 - 2017-01-12 14:31 - 00454123 ____R C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	10sek.com
127.0.0.1	www.10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	123fporn.info
127.0.0.1	www.123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123moviedownload.com
127.0.0.1	www.123moviedownload.com

There are 15578 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-463900854-2142852480-2626321906-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\StartupFolder: => "HandyAndy.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run: => "Seagate Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKLM\...\StartupApproved\Run32: => "ConnectionCenter"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "RemoteView5 Tray"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "PulseSecure"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "DiscWizardMonitor.exe"
HKLM\...\StartupApproved\Run32: => "DiscordPTB"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Seagate Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Discord"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "ALLUpdate"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "MyComGames"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "MySQL Notifier"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "DiscordPTB"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "ALLPlayer WiFi Remote"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "Bloody2"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "Plex Media Server"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-463900854-2142852480-2626321906-1001\...\StartupApproved\Run: => "TSMApplication"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [UDP Query User{9A5C17C2-F77D-4BC4-86C4-85DAD2BAF5B0}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => C:\program files (x86)\gigabyte\@bios\flashbios.exe
FirewallRules: [TCP Query User{AC55509F-C27B-4AD4-BE01-7D149531DC20}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => C:\program files (x86)\gigabyte\@bios\flashbios.exe
FirewallRules: [{8D8D5162-147F-4E4E-B6C5-3D5345770C34}] => C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe
FirewallRules: [{C92D6573-C512-4516-A5B9-90458B573AF0}] => C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
FirewallRules: [UDP Query User{9BF08ED2-3A4B-4195-914D-15B8FF393139}C:\program files (x86)\plex\plex media server\plex dlna server.exe] => C:\program files (x86)\plex\plex media server\plex dlna server.exe
FirewallRules: [TCP Query User{2F7DF3AB-193B-4C22-8D4B-5FC92D94F675}C:\program files (x86)\plex\plex media server\plex dlna server.exe] => C:\program files (x86)\plex\plex media server\plex dlna server.exe
FirewallRules: [{3B125C1D-9CCB-44CA-ABD3-0590BE56F16E}] => C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A59B1562-E5A6-4AA2-A8B1-A33E2F877837}] => C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{BE84C53A-2E57-47F2-BABE-081E593B63E9}] => C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{6FD53A18-3B9D-4265-9814-B5FE5ADCFCEF}] => C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{FAE2E4D4-CB14-4633-9BD6-E76CCFB6E8C2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F214DAC3-78B9-482B-ABC8-78AE792B636C}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{58990318-17C2-4C34-8B3D-36CF41D54EA0}] => LPort=3306
FirewallRules: [{4EEBC879-9DB9-4056-BC73-75B859AAEA96}] => LPort=3306
FirewallRules: [{AADC77F7-B097-43F1-80FF-3BFF8EAC64B6}] => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{4DACE87C-C68A-4689-9C85-B8A76A6D68BB}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{0707581E-39A4-4188-BE35-D1213D15647C}] => C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{CB0B47B7-8DFC-493B-96A9-D5ABCD81EB2F}] => C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{1A0961CC-4064-4164-B441-0FD80D183ACC}] => C:\Program Files\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{8B3965D1-7B4C-429E-95A0-7267943F129D}] => C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{519A8E91-753F-4D4C-A80B-68BEDC407F95}] => C:\Program Files\IBM\SPSS\Statistics\22\WinWrapIDE.exe
FirewallRules: [{96E2020B-DCAA-469F-A58E-B0B796CE404C}] => C:\Program Files\IBM\SPSS\Statistics\22\stats.com
FirewallRules: [{4809DB31-720F-4A63-9EC8-A299F86B2181}] => %ProgramFiles%\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [{2E80D891-C74C-4062-B4DF-F9601F622980}] => %ProgramFiles%\IBM\SPSS\Statistics\22\stats.exe
FirewallRules: [TCP Query User{AD4D8BF9-4239-4469-B0AC-E63745659F99}C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe] => C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe
FirewallRules: [UDP Query User{8B58E315-6B6E-4BEA-B50F-7DE8195D07D0}C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe] => C:\program files\ibm\spss\statistics\22\jre\bin\javaw.exe
FirewallRules: [{AB91A23D-CC6D-45FD-94FE-EAAD482B37F3}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{96102BC2-C797-471A-B2FE-D3DDBFC67D73}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A02A8CB9-7A16-4298-8824-1A2E2D93B08A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5D81BEE1-6CE0-48CF-B2FA-123242A85FBC}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{65C7BB48-851F-4AA7-B520-DF2FB6A04D65}] => C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{30F88AD4-5E57-4505-8196-8ECBB38A09D0}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{92A7FF57-D745-4BBE-84F6-5F483A5CF8E2}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E110B69D-42C9-4E9C-8940-B481976A70EA}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7DE3812C-12B0-474A-895C-19AC82C8DD9F}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{5AE6BCD7-90F2-415C-8B33-CF1B3030DD98}C:\windows\system32\mmc.exe] => C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{070D502F-670F-41EB-9C59-5BC03771437C}C:\windows\system32\mmc.exe] => C:\windows\system32\mmc.exe
FirewallRules: [{22A31FDC-71B9-4E25-8531-697BDF309581}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{DECA7F0E-0CB6-4C37-88DD-5F4FEE80CCBE}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{87EC753C-AFEF-41DF-BACB-EF7D0E580622}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A4DFEC1A-5C1C-40E4-8657-A546FA0AD92B}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6ED0936D-A279-4BA9-A872-D96DEF50F723}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{F75C3C62-A7FB-40F1-966B-366BB0AF77A4}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{BF4483DB-EF82-4FEF-BC45-18ED8782367D}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{AB8447CB-114A-420C-9C98-14D63F8D6877}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6CBAEE8E-163D-4282-A5D2-81A393BD2BD6}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{01092F82-5B34-40DD-8C09-AA54F4CD9887}] => E:\Games\WATCH_DOGS2\bin\WatchDogs2.exe
FirewallRules: [{A5A10A9A-EE57-4715-9BFC-725B75026A40}] => E:\Games\WATCH_DOGS2\bin\WatchDogs2.exe
FirewallRules: [{D6664CFB-05D8-4296-9722-AA7314A236E0}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{2D4B235D-7BEF-4909-AF65-E7977CE3CC58}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{960B52C8-6C5C-46CF-A3B4-5E170AC34CF3}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{56911942-5C03-4B3F-9C2C-99D08F0BAA9B}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{D9A6F0C8-8BC9-4A79-A0B3-4D7B3B4AAADF}] => C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{5D4E804A-ACEF-4307-9BEC-3CCD29FBFA7F}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{1DD88E2D-938D-4661-B908-C78BE23E5CBA}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{AD81741D-7376-4E7D-8C76-16026EF4045E}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{EF1F0278-43AF-4B67-BFC8-E559778DB000}] => C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{7BDFED00-2265-4165-9C38-BB0E3CE0C1A0}] => E:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{F49C54C6-64F8-4D15-A64C-948335E080C6}] => E:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{142D34DA-7135-4C8B-9A75-9D639AB83226}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02F6B251-30ED-4949-9C2D-2967850EB060}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{2CCBE1B5-844C-4790-98DC-D05A3984A600}] => E:\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe
FirewallRules: [{5AF551B4-B3CA-4FAA-9456-6F91A58E9E47}] => E:\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe
FirewallRules: [{EA8E7FBF-DABC-4DB7-9069-3CD4ED60D5C9}] => E:\Steam\steamapps\common\Project Argo (Prototype)\argobattleye.exe
FirewallRules: [{1B32EABD-E30E-4B00-A3BC-D3012C017D8B}] => E:\Steam\steamapps\common\Project Argo (Prototype)\argobattleye.exe
FirewallRules: [TCP Query User{6E12111B-2E92-4B09-8A54-2F45ACE4ACE5}E:\steam\steamapps\common\empyrion - galactic survival\empyrion.exe] => E:\steam\steamapps\common\empyrion - galactic survival\empyrion.exe
FirewallRules: [UDP Query User{9D41F860-2281-403B-B307-BD04AAE7BCBF}E:\steam\steamapps\common\empyrion - galactic survival\empyrion.exe] => E:\steam\steamapps\common\empyrion - galactic survival\empyrion.exe
FirewallRules: [{73B12ABE-6098-4325-B9A3-13ADD9AFA28F}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{896EC922-5B1F-4477-AE09-ED2D7A5CB88E}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{84605415-B196-4AAD-938A-AFFBD8618C76}E:\users\juang\appdata\local\shatteredskies\launcher.exe] => E:\users\juang\appdata\local\shatteredskies\launcher.exe
FirewallRules: [UDP Query User{1D1969A6-9EBD-4803-B4FE-97C8D57C85CE}E:\users\juang\appdata\local\shatteredskies\launcher.exe] => E:\users\juang\appdata\local\shatteredskies\launcher.exe
FirewallRules: [TCP Query User{7DCA43BF-4034-4EB1-8C54-2FE8FF20F420}E:\users\juang\appdata\local\shatteredskies\launcher.exe.new.exe] => E:\users\juang\appdata\local\shatteredskies\launcher.exe.new.exe
FirewallRules: [UDP Query User{AC5D8097-9BE8-46E1-930D-023D438CEB27}E:\users\juang\appdata\local\shatteredskies\launcher.exe.new.exe] => E:\users\juang\appdata\local\shatteredskies\launcher.exe.new.exe
FirewallRules: [{DB4C2DEE-7726-4371-8FC8-7CBA11122F51}] => E:\Steam\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [{47A432D0-00EE-4DAD-9709-6A59C09F9E8D}] => E:\Steam\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [{8D701774-A645-463D-843A-72387CEDC316}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [{3A50758C-B8D4-4538-8FBE-CC481C982365}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [{13E9A154-C19D-4D20-8898-15CF91B26B4E}] => E:\Steam\steamapps\common\DubWars\DubWars.exe
FirewallRules: [{5B090E91-14F9-4E61-BC95-42AA4AB3EEDA}] => E:\Steam\steamapps\common\DubWars\DubWars.exe
FirewallRules: [TCP Query User{3EE17926-3BEB-445D-9C5A-C76ECAB8F189}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{066A2EB4-6776-4990-AE57-917CEE692A04}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{8C73EA28-1809-49B5-BB8E-1BB05C0CB204}] => E:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{5FEECD5F-A8EB-43B0-9DBF-E3154B31E4B5}] => E:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{E9409623-CC52-4372-A4B2-EE0041B39D68}] => E:\Steam\steamapps\common\H-Hour Worlds Elite\HHourGame\Binaries\Win64\HHourGame.exe
FirewallRules: [{B5C69635-9BF7-4314-A035-FFBC0536190C}] => E:\Steam\steamapps\common\H-Hour Worlds Elite\HHourGame\Binaries\Win64\HHourGame.exe
FirewallRules: [{BF850AE3-6DB6-4589-B996-D0F04D4512A4}] => C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{268CF955-84C7-46A8-9584-D5CA2DC05316}] => C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{D6BA482D-6AC5-47CD-AA66-2A0EE8EE750F}] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
FirewallRules: [{1FA7B1A2-CC85-4B9C-B443-28B5AD60D75D}] => C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
FirewallRules: [{C83C72F8-F9F1-4555-B57C-E23744A868B1}] => C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
FirewallRules: [TCP Query User{1C60FA6F-8DEB-4F34-8508-F3119D7DE298}E:\steam\steamapps\common\project argo (prototype)\argo.exe] => E:\steam\steamapps\common\project argo (prototype)\argo.exe
FirewallRules: [UDP Query User{E440A1E9-49C1-4389-A904-FEFFCAEF7E7C}E:\steam\steamapps\common\project argo (prototype)\argo.exe] => E:\steam\steamapps\common\project argo (prototype)\argo.exe
FirewallRules: [{A945334E-E49B-498B-AD23-04B15FB717A2}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

28-12-2016 11:52:27 Scheduled Checkpoint
06-01-2017 12:54:01 Scheduled Checkpoint
08-01-2017 22:57:30 Installed DirectX
12-01-2017 14:32:41 Checkpoint by HitmanPro
12-01-2017 14:33:36 Checkpoint by HitmanPro
12-01-2017 14:53:24 JRT Pre-Junkware Removal
12-01-2017 15:48:16 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/12/2017 06:08:53 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (01/12/2017 06:08:53 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code.

Error: (01/12/2017 06:08:52 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (01/12/2017 06:08:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (01/12/2017 06:08:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (01/12/2017 06:08:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (01/12/2017 06:08:27 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) The system cannot find the file specified.

Error: (01/12/2017 03:48:16 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddWin32ServiceFiles: Unable to back up image of service NVIDIA Wireless Controller Service since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.
.

Error: (01/12/2017 03:48:16 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (01/12/2017 02:53:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSUAMain.exe, version: 4.0.0.646, time stamp: 0x56291049
Faulting module name: CC3290MT.DLL, version: 9.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0005d522
Faulting process id: 0x33dc
Faulting application start time: 0x01d26d0d07f039fb
Faulting application path: C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
Faulting module path: C:\Program Files (x86)\Panda Security\Panda Security Protection\CC3290MT.DLL
Report Id: a997edab-c718-47b5-8f8b-66be8665b475
Faulting package full name: 
Faulting package-relative application ID:


System errors:
=============
Error: (01/12/2017 06:08:34 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/12/2017 06:07:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/12/2017 03:48:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (01/12/2017 02:53:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The NVIDIA LocalSystem Container service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (01/12/2017 02:39:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel(R) Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/12/2017 02:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (01/12/2017 02:39:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (01/12/2017 02:39:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The EasyTune Engine service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/12/2017 02:39:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Spybot-S&D 2 Security Center Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (01/12/2017 02:39:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Spybot-S&D 2 Updating Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.


CodeIntegrity:
===================================
  Date: 2017-01-12 14:45:11.968
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET74CB.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.960
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET74CB.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.953
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET74CB.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.908
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET5B29.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.892
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET5B29.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.877
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET5B29.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.782
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET3F19.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.620
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET3F19.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:11.496
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET3F19.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-12 14:45:10.926
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SET33E2.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Percentage of memory in use: 13%
Total physical RAM: 32720.43 MB
Available physical RAM: 28261.05 MB
Total Virtual: 65488.43 MB
Available Virtual: 60753.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:446.64 GB) (Free:185.37 GB) NTFS
Drive e: (New Volume) (Fixed) (Total:931.51 GB) (Free:296.38 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F06B97AA)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 447.1 GB) (Disk ID: 43073AC7)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=446.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================